begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
QuarantineFileF('C:\Users\Bogdan\AppData\Roaming\Tencent', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js, *.com', true, '', 0, 0);
QuarantineFileF('C:\Program Files (x86)\Common Files\Tencent', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js, *.com', true, '', 0, 0);
DelBHO('{DDD362CF-523B-4BC9-8FDC-58F93B6BC945}');
DeleteFileMask('C:\Users\Bogdan\AppData\Roaming\Tencent','*', true);
DeleteFileMask('C:\Program Files (x86)\Common Files\Tencent','*', true);
DeleteDirectory('C:\Users\Bogdan\AppData\Roaming\Tencent');
DeleteDirectory('C:\Program Files (x86)\Common Files\Tencent');
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
ExecuteSysClean;
RebootWindows(true);
end.
start
CreateRestorePoint:
BHO-x32: No Name -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> No File
FF Plugin-x32: @qq.com/npchrome -> C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll [No File]
FF Plugin-x32: @qq.com/npqscall -> C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll [No File]
CHR StartupUrls: Default -> "hxxp://mysearch.avg.com?cid={324349E1-3F5E-422B-A71B-31B16CE7EF05}&mid=03229ff289d047d2bf1fd15097ffcbab-ff39341b102b7cbcfd7f7560c33e91f7eb4b0f56&lang=ru/finishurl=hxxp://toolbar.avg.com/p-install?lang=ru&ds=ht011&coid=avgtbdisht&cmpid=&pr=sa&d=2014-02-17 16:50:05&v=17.3.1.91&pid=safeguard&sg=&sap=hp","hxxp://www.mystartsearch.com/?type=hp&ts=1418766771&from=smt&uid=ST1000DM003-1ER162_W4Y0LYH3XXXXW4Y0LYH3","hxxp://www.delta-homes.com/?type=hp&ts=1427437355&from=wpm032731&uid=ST1000DM003-1ER162_W4Y0LYH3XXXXW4Y0LYH3"
CHR Plugin: (QQMail Plugin) - C:\Program Files (x86)\QQMailPlugin\npQQMailWebKit.dll => No File
CHR Plugin: (QQ2013 Firefox Plugin) - C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll => No File
CHR Extension: (Prezi) - C:\Users\Bogdan\AppData\Local\Google\Chrome\User Data\Default\Extensions\acoonfmhnndodekhecidldfdjgooefpg [2014-12-07]
EmptyTemp:
Reboot:
end
AdwareА из-за чего это было?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?