Removing avz. Checking the system for viruses. Restoring program launches

Good day. Let's talk about antivirus AVZ .

Today I will tell you, my regular and not so regular readers, as well as all visitors who have picked up viruses willy-nilly, about how and with what, in fact, quickly and extremely adequately kill these most evil biological creatures of electronic origin that are causing mischief on your computer.

An antivirus utility will help us in this matter. AVZ, which is not a full-fledged antivirus (which, by the way, is good, because it does not conflict with what is already installed), but just a utility, but it does not require installation and often helps even in the most difficult cases, which has been confirmed by me and thousands of visitors over the course of for a long time.

Often it is with the help AVZ manages to let the system breathe again widely enough to at least revive/install a normal antivirus and finish off any riffraff with it (one way or another, it is recommended to start with AVZ and read the entire article, as it also contains links to further materials, in case this one does not help).

Introductory

In order to achieve full results, you must strictly follow the instructions written below. Deviations from the instructions may result in poor quality cleaning, possible errors in the further operation of the program or system, as well as other problems.

Where to download and how to run

Instructions for use:

How to scan for viruses using AVZ

On the "tab" Search area"Tick off all hard disks, flash drives (if not inserted, then insert). On the right we put a tick - " Carry out treatment".

In the first four lines select " Delete", in the penultimate " Treat"and in the latter too, of course" Delete". Also check the boxes " Copy suspicious files to Quarantine and Infected". Picture-illustration with correct settings is presented below:

Now the harshest part:

1. Go to the tab " File types". Then there are three checking options: very long, long and fast.
   

   What is the difference? The difference is in the quality of the scan - the longer, the more thorough and the greater the chance that all viruses will be removed. The faster, the less chance of removing all viruses, but the less time scanning takes and the greater the chance of eliminating the most critical problem quickly, and dealing with the rest later;

2. Go to the tab " Search options". Slider" Heuristic analysis"move to the very top (if we want to scan longer, but with better quality) and check the box" Advanced Analysis", and below we put two checkmarks " Block RootKit User-Mode" And " RootKit Kerner-Mode" (this is necessary so that not a single virus can escape anywhere, launch anything that interferes with the operation of the antivirus, and does not kick at all).
   
   Even lower, check the boxes " Automatically correct errors in SPI/LSP", "Searching for TCP/UDP program ports", "Search for keyboard hooks", and " Automatically fix system errors ". In general, we do everything as in the picture above;
3. Tired? That's not all :) Next, click on " AVZGuard"(in the menu next to " File", "Service"etc) -> Enable AVZGuard and AVZPM -> "Install the advanced process monitoring driver". If a reboot is required, you can agree, but keep in mind that you will have to do all the steps except installing the driver again.
   Note! Not on all operating systems (this is especially true Windows 7 And Windows 8) can work and run " AVZGuard". If it gives an error and does not start, then skip this point and move on without making the error of great significance;
4. That's it. Feel free to press the button " Start" and wait for the check to finish.

Attention!

During the check, most likely, you will not be able to run almost any program on the computer, or enter the system drive (usually C:\).

It's better to leave the computer alone. Why is that? The fact is that AVZ thus blocks all possible movements of viruses, programs, etc., i.e. any attempts to deceive the scanner (to run away, hide, pretend to be something else, etc.) or to cause mischief with their last breath.

Necessary actions after removing AVZ viruses

When you've finished working with the antivirus utility, before exiting (or after rebooting, if there was one), click AVZPM -> "Remove and unload the advanced process monitoring driver". Then " File" -> "Exit" and be sure to restart your computer.

After the reboot, you may be prompted to install unknown hardware found - do not be alarmed and cancel the offer. It shouldn't bother you anymore. If it is still harmful and appears, then do the following:

Go to "Start - Settings - Control Panel - System - Hardware - Device Manager". There we find something with a yellow question mark among other devices. Click on it right click mouse and select " Delete".

If it doesn't help, then so be it AVZ, try the following: " File- Standard Scripts", then next check the box " Removing All AVZ Drivers and Registry Keys" and press " Execute marked scripts".

If it still doesn’t work out, please contact me via .

Test results and their analysis

Don’t panic if, during the scan, the utility found those that work with the network, can make calls, or programs that are included in the startup. It is likely that this is not a virus, but something from utility software.

As for suspicious files found but not deleted: after such a scan (even a quick one), most likely, most of the serious (or not completely) viruses that lived on you up to this point did not survive on your computer, but I urgently I recommend that you definitely check it with some good, full-fledged antivirus.

Which one? My personal choice is Dr.Web, but in general the choice of antivirus is a personal matter for everyone, because an ideal antivirus still does not exist.

Additional cleaning after AVZ

• "What is spyware and how to deal with it. Part 1" and "". Very important articles that will help you remove such a thing as spyware. These are not exactly viruses, but in fact they do no less harm, if not more, and they are not always removed by ordinary antiviruses;
• "How to remove viruses. Part 2". Article on general installation and use full version full-fledged antivirus Doctor Web for continuous protection, as well as for one-time search and removal of viruses of a wide variety of nature. This also includes the article “Removing viruses. Part 4.” for a one-time full scan without installing the full version of the antivirus (check it out, it may be useful);
• "How to clean viruses. Part 3". A very very useful and important thing that allows you to search and find viruses before the system boots. Helps in the most advanced cases, because the anti-virus utility is written to disk, then launched from it even before starting Windows, which prevents viruses from loading into memory and in any way counteracting scanning.

This is probably all I can suggest for now from general recommendations for virus removal. It goes without saying that more than anything useful information on this topic, as well as on the topic of security in general (antiviruses, firewalls, anti-, anti- spyware and so on, etc.), you can read in the section ""

Regarding decryption of reports and logs in particularly difficult cases (i.e. you just can’t cope using this article and links to all the others) You can contact us on the forum in this section (you must first register on the forum).

Video format of the article

For those who can’t do something, there is a video format:

Our announcer has a speech impediment, so please don’t be scared.

Afterword

The steps described above have been carried out repeatedly and tested for personal experience, on different computers etc. Problems that arise may be caused by the specifics of your operating system, the type of virus or the actions that you have performed.

As always, I am ready to answer any of your questions, help with analysis of scan reports and other virus killings. Write, if necessary, using , but it’s better, of course, contact us on the forum (I gave the link just above in the text).

PS: Thank you for your attention. Keep your computer clean!

Modern antiviruses have acquired various additional functionality so much that some users have questions while using them. In this lesson we will tell you about all key features AVZ antivirus operation.

Let's take a closer look at practical examples What is AVZ? The following functions deserve the main attention of the average user.

Checking the system for viruses

Any antivirus should be able to detect malware on your computer and deal with it (treat or remove it). It is natural that this function is also present in AVZ. Let's see in practice what such a check is like.

1. Let's launch AVZ.
2. A small utility window will appear on the screen. In the area marked in the screenshot below, you will find three tabs. They all relate to the process of searching for vulnerabilities on a computer and contain different options.



3. On the first tab "Search area" you need to tick those folders and sections hard drive that you want to scan. A little lower you will see three lines that allow you to enable additional options. We put marks in front of all positions. This will allow you to perform a special heuristic analysis, scan additional running processes and even identify potentially dangerous software.



4. After that, go to the tab "File Types". Here you can choose what data the utility should scan.
5. If you are doing a regular check, then just check the box "Potentially dangerous files". If viruses have taken deep roots, then you should choose "All files".
6. In addition to ordinary documents, AVZ easily scans archives, something that many other antiviruses cannot boast of. In this tab you can enable or disable this check. We recommend unchecking the box next to scanning large archives if you want to achieve maximum results.
7. In total, your second tab should look like this.



8. Next we go to the last section "Search Options".
9. At the very top you will see a vertical slider. Move it all the way up. This will allow the utility to respond to all suspicious objects. In addition, we include checking API and RootKit interceptors, searching for keyloggers, and checking SPI/LSP settings. The general appearance of your last tab should be something like this.



10. Now you need to configure the actions that AVZ will take when a particular threat is detected. To do this, you first need to check the box next to the line "Carry out treatment" in the right area of ​​the window.



11. Next to each type of threat, we recommend setting the parameter "Delete". The only exceptions are threats like "HackTool". Here we recommend leaving the parameter "Treat". In addition, check the two lines below the list of threats.



12. The second parameter will allow the utility to copy the unsafe document to a specially designated location. You can then view all the contents, and then safely delete them. This is done so that you can exclude from the list of infected data those that are not actually infected (activators, key generators, password generators, and so on).
13. When all the settings and search parameters have been set, you can begin the scanning itself. To do this, click the corresponding button "Start".



14. The verification process will begin. Her progress will be displayed in a special area "Protocol".
15. After some time, which depends on the amount of data being scanned, the scanning will be completed. A message indicating the completion of the operation will appear in the log. The total time spent on analyzing files will also be indicated, as well as statistics on scanning and identified threats.



16. By clicking on the button marked in the image below, you can see in a separate window all suspicious and dangerous objects, which were identified by AVZ during the inspection.



17. The path to the dangerous file, its description and type will be indicated here. If you check the box next to the name of such software, you can move it to quarantine or completely remove it from your computer. When the operation is complete, press the button "OK" at the bottom.



18. After cleaning your computer, you can close the program window.

System functions

Besides standard check for the presence of malware, AVZ can perform many other functions. Let's look at those that may be useful to the average user. In the main menu of the program at the very top, click on the line "File". The result will be context menu, which contains all the available helper functions.

The first three lines are responsible for starting, stopping and pausing the scan. These are analogues of the corresponding buttons in the AVZ main menu.

System Research

This function will allow the utility to collect all information about your system. This does not mean the technical part, but the hardware. Such information includes a list of processes, various modules, system files and protocols. After you click on the line "System Research", a separate window will appear. Here you can specify what information AVZ should collect. After checking all the necessary boxes, you should click the button "Start" at the bottom.


After this, a save window will open. In it you can select the location of the document with detailed information, and also indicate the name of the file itself. Please note that all information will be saved as HTML file. It opens in any web browser. Having specified the path and name for the saved file, you need to click the button "Save".


As a result, the process of scanning the system and collecting information will start. At the very end, the utility will display a window in which you will be asked to immediately view all the collected information.

System Restore

By using this set functions, you can return operating system elements to their original form and reset various settings. Most often, malware tries to block access to the Registry Editor, Task Manager and write its values ​​in the system document. You can unlock such elements using the option "System Restore". To do this, just click on the name of the option itself, and then check the boxes for the actions that need to be performed.


After this you need to press the button “Perform marked operations” in the lower area of ​​the window.

A window will appear on the screen in which you must confirm the action.


After some time, you will see a message indicating that all tasks have completed. Just close this window by clicking the button "OK".

Scripts

In the list of parameters there are two lines related to working with scripts in AVZ - "Standard scripts" And "Run script".

Clicking on a line "Standard scripts", you will open a window with a list of ready-made scripts. All you need to do is tick the boxes that you want to run. After this, click the button at the bottom of the window "Run".


In the second case, you will launch the script editor. Here you can write it yourself or download it from your computer. Don't forget to click the button after writing or uploading "Run" in the same window.

Database update

This item is the most important of the entire list. By clicking on the corresponding line, you will open the AVZ database update window.

We do not recommend changing settings in this window. Leave everything as it is and press the button "Start".


After some time, a message will appear on the screen indicating that the database update is complete. All you have to do is close this window.

Viewing the contents of the Quarantine and Infected folders

By clicking on these lines in the list of options, you can view all potentially dangerous files that AVZ detected while scanning your system.

In the windows that open, you can permanently delete such files or restore them if they actually do not pose a threat.


Please note that in order for suspicious files to be placed in these folders, you must check the appropriate boxes in the system scanning settings.

This is the last option from this list, which the average user may need. As the name suggests, these parameters allow you to save the preliminary antivirus configuration (search method, scanning mode, etc.) to your computer, and also load it back.

When saving, you will only need to specify the file name, as well as the folder in which you want to save it. When loading the configuration, just select required file with settings and press the button "Open".

Exit

It would seem that this is an obvious and well-known button. But it is worth mentioning that in some situations - when a particularly dangerous software— AVZ blocks all methods of its own closing, except for this button. In other words, you will not be able to close the program with a keyboard shortcut "Alt+F4" or by clicking on the banal cross in the corner. This is done so that viruses cannot interfere with the correct operation of AVZ. But by clicking this button, you can close the antivirus if necessary for sure.

In addition to the options described, there are also others in the list, but they most likely will not be needed by ordinary users. Therefore, we did not focus on them. If you still need help regarding the use of functions that are not described, write about it in the comments. And we move on.

List of services

In order to see the full list of services offered by AVZ, you need to click on the line "Service" at the very top of the program.

As in the last section, we will go over only those that may be useful to the average user.

Process Manager

By clicking on the very first line from the list, you will open a window "Process Manager". In it you can see a list of all executable files that are running on a computer or laptop in this moment time. In the same window you can read a description of the process, find out its manufacturer and the full path to the executable file itself.


You can also terminate a particular process. To do this, just select the required process from the list, then click on the corresponding button in the form of a black cross with right side window.


This service is an excellent replacement for the standard one. The service acquires particular value in situations where "Task Manager" blocked by a virus.

Services and Driver Manager

This is the second service in the general list. By clicking on the line with the same name, you will open the window for managing services and drivers. You can switch between them using a special switch.

In the same window, each item is accompanied by a description of the service itself, status (enabled or disabled), as well as the location of the executable file.


You can select the required item, after which you will have the options to enable, disable or complete removal services/drivers. These buttons are located at the top of the work area.

Startup Manager

This service will allow you to fully customize autorun settings. Moreover, unlike standard managers, this list also includes system modules. By clicking on the line with the same name, you will see the following.


In order to disable the selected element, you only need to uncheck the box next to its name. In addition, it is possible to completely delete the required entry. To do this we simply select the desired line and click on the button at the top of the window in the form of a black cross.

Please note that a deleted value cannot be returned. Therefore, be extremely careful not to erase vital system startup records.

Manager Hosts file

We mentioned a little above that the virus sometimes writes its own values ​​into the system file "Hosts". And in some cases, malware also blocks access to it so that you cannot correct the changes made. This service will help you in such situations.

By clicking on the line shown in the image above in the list, you will open a manager window. You cannot add your own values ​​here, but you can delete existing ones. To do this, select the desired line with the left mouse button, and then press the delete button, which is located in the upper area of ​​the work area.


After this, a small window will appear in which you need to confirm the action. To do this, just press the button "Yes".


When the selected line is deleted, you just need to close this window.

Be careful not to delete lines whose purpose you don't know. To file "Hosts" Not only viruses, but also other programs can write their values.

System utilities

WITH using AVZ you can also launch the most popular system utilities. You can see their list if you hover your mouse over the line with the corresponding name.


By clicking on the name of a particular utility, you will launch it. After this, you can make changes to (regedit), configure the system (msconfig) or check system files (sfc).

These are all the services we wanted to mention. Beginner users are unlikely to need a protocol manager, extensions, or other additional services. Such functions are more suitable for more advanced users.

AVZGuard

This function was developed to combat the most cunning viruses that using standard methods do not delete. It simply adds malware to a list of untrusted software that is prohibited from performing its operations. To enable this function you need to click on the line "AVZGuard" in the upper AVZ area. In the drop-down window, click on the item "Enable AVZGuard".

Be sure to close everything third party applications before enabling this feature, otherwise they will also be included in the list of untrusted software. The operation of such applications may be disrupted in the future.

All programs that are marked as trusted will be protected from deletion or modification. And the work of untrusted software will be suspended. This will allow you to safely remove dangerous files using a standard scan. After this, you should disable AVZGuard back. To do this, click again on a similar line at the top of the program window, and then click on the button to disable the function.

AVZPM

The technology indicated in the name will monitor all started, stopped and modified processes/drivers. To use it, you must first enable the corresponding service.

Click on the AVZPM line at the top of the window.
In the drop-down menu, click on the line “Install the advanced process monitoring driver”.


Within seconds required modules will be installed. Now, when changes are detected in any processes, you will receive a corresponding notification. If you no longer need such monitoring, you will need to simply click on the line marked in the image below in the previous drop-down window. This will unload all AVZ processes and remove previously installed drivers.

Please note that the AVZGuard and AVZPM buttons may be grayed out and inactive. This means that you have an x64 operating system installed. Unfortunately, the mentioned utilities do not work on an OS with this bit depth.

This brings this article to its logical conclusion. We tried to tell you how to use the most popular features in AVZ. If you still have questions after reading this lesson, you can ask them in the comments to this post. We will be happy to pay attention to each question and try to give the most detailed answer.

A computer virus is always unpleasant. It is doubly unpleasant and offensive if a virus has already appeared on your computer, bypassing the installed anti-virus software. This is a fact - there is no universal antivirus, and each of them, no matter how good it is, is not designed to search for and neutralize absolutely all malicious files. And if this program did not “see” the virus “on the fly”, there is a high probability that even if full scan it will not detect it on the computer and, as a result, will not delete it.

In this case, the AVZ anti-virus utility comes to our aid, which can operate on the computer simultaneously with your regular anti-virus and not conflict with it. This utility also does not require installation, which is extremely attractive to inexperienced PC users, but it is very effective and helps even in the most advanced cases. And even more so, AVZ will be useful to you if there is no other anti-virus software on your computer yet, or if the signatures are out of date.

Launching the AVZ utility is extremely easy and quick. First you need to download it to your computer. You can do this using the link at the end of the article. It will “arrive” in the form of an archive that can be unpacked to any location on your machine. After unpacking, run the file avz.exe. In the dialog box that appears, select “Database Update” from the “File” menu and click “Start”. After some time, the “Close” button will become active. Click it, the program has updated the anti-virus database and is ready to work.

Select the “Search Area” tab. This lists all the local and removable drives on your computer. During the first check, it is advisable to check all of them by checking them; later you can check only what you consider necessary. Opposite is the “Treatment Method” tab. The “Perform treatment” item must be checked. All possible types are listed below computer viruses and malware that can enter your computer. For all of them you need to set the “delete” option, except for the “hakc tool” type - here you need to select “cure”. Why? Yes, because on your machine there may be hacked “with the best intentions,” so to speak, programs, as well as their unlicensed versions. It would be a shame to be left without software if the AVZ utility removes some of its components. All other items on this program settings page should also be checked.

The next step in setting up the program is choosing a scan option: fast, long, very long. Depending on the selected time of the inspection, its thoroughness will also vary, keep this in mind. For the most thorough scan, in the settings of the “very long” option, you should set the ability to scan all files on the computer, even those stored in large archives. To do this, on the “File Types” tab, uncheck the box next to the words “Do not scan archives larger than 10MB.”

Set the search parameters on the tab of the same name. In order for the check to be as effective as possible, you should enable “Advanced Search” and set the maximum level of “Heuristic Analysis”. Just below there are several more search parameters, they all need to be ticked.

The last step is to install the driver for advanced monitoring of all processes occurring on the computer. The menu item of the same name is located in the “AVZGuard” tab. There you also need to “enable” AVZGuard and AVZPM, and then you can click “Start” and wait for the scan to finish.

The peculiarity of the AVZ anti-virus utility is that during its operation it will completely “take over” your machine - you will not be able to work with documents, play games, or view content system disk. The program simply blocks almost all computer actions so that, figuratively speaking, all files “are in their place” so that the scanner sequentially looks through them all, one after another.

So, the verification is completed. What's next? You should select “Remove and unload the advanced process monitoring driver” in the “AVZPM” menu, and then exit the program using the “Exit” button in the “File” tab and be sure to restart the computer. Sometimes, immediately after a reboot, a message about unknown hardware found may appear on the screen - just ignore this message.

I look forward to your comments and questions about this wonderful utility.

You must download the utility from the manufacturer’s website -

What's happened AVZ

AVZ is a direct analogue of programs TrojanHunter And LavaSoft Ad-aware.

The first version appeared in 2004. Developer AVZ- Oleg Zaitsev.

– built-in for searching files on disk (with saving search results). Allows you to search for a file using various criteria; the search system’s capabilities exceed search capabilities;

– built-in for searching data in (with saving search results). Allows you to search for keys and parameters according to a given pattern;

– built-in analyzer of open TCP/UDP;

– built-in analyzer of shared resources, network sessions and files opened over the network;

– built-in analyzer Downloaded Program Files (DPF);

– system recovery firmware. Restoring settings , program launch options and other system parameters damaged by malware. Restoration is started manually, the parameters to be restored are indicated;

– control scripts. Allows the administrator to write a script that performs dialing specified operations. Scripts allow you to use AVZ on the corporate network, including its launch during system boot;

– process analyzer. Uses neural networks and analysis firmware, enabled when advanced analysis is enabled at the maximum heuristic level. Designed to search for suspicious processes in memory;

– system AVZGuard. Designed to combat hard-to-remove malware;

– a direct disk access system for working with locked files. Works for FAT16/FAT32/ , supported on all operating systems of the line NT, allows the scanner to analyze blocked files and quarantine them;

– unpack the archive;

– run the file avz.exe;

– in the utility window on the tab Search area specify the location to search for malware (disks, folders);

– check the boxes if necessary Heuristic file deletion, Copy deleted files to Infected, Copy suspicious ones to quarantine;

– on the tab File types installed – Potentially dangerous files, Check NTFS streams, Check archives, Do not scan archives larger than 10MB - make the necessary adjustments if necessary;

– on the tab Search options installed – Medium level of heuristics, Detect API and RootKit interceptors, Check SPI/LSP settings, Search for keyboard loggers (Keylogger)– if necessary, make the necessary amendments;

– press the button Start;

– wait until the scanning is completed;

– in a scrollable list Protocol check out the results;

– if you suspect the presence of viruses in the system (or other questions about AVZ), you can contact the conference – virusinfo.info.

What to do, if AVZ discovered (or allegedly discovered!) a virus or malware?

Let's give the floor to the developer:

« AVZ conceived as, equipped with a mass of various checks and analyzers, sometimes paranoid. This was done on purpose, because... AVZ often used for analysis , testing of which by other means did not yield anything. Therefore, false positives are possible, and in this case the protocol for the object contains the wording "Suspicion of..."(malware category and additional details).

If suspicious objects are detected, the following procedure should be followed:

1. Under no circumstances should you destroy suspicious files. The fact that a file is suspected by the analyzer does not mean that it is dangerous. Suspicious files must be quarantined AVZ and send it to my address [email protected] . When creating an archive manually, it is highly advisable to set a password, otherwise the letter may be blocked by your mail server;

2. The letter must briefly outline the essence of the problem and any suspicions. It is highly advisable to attach the protocol AVZ;

3. Wait for a response with the results of the analysis.”

Extended capabilities AVZ

– IE extension manager (BHO, panels);

– Control Panel Applet Manager (CPL);

– Explorer Extensions Manager;

– Printing System Extensions Manager;

– Task Scheduler Manager;

– Protocol and Handler Manager;

– Downloaded Program Files Manager;

– Active Setup Manager;

– Winsock SPI Manager (LSP, NSP, TSP);

– Hosts File Manager;

– Open TCP/UDP;

– Shares and Network Sessions;

– generate text containing a script based on templates.

The editor supports options command line– as the first parameter you can specify the name of the script that should be loaded after launching the editor.

The script editor can be downloaded from the download page – www.z-oleg.com/secur/avz/download.php.

Update AVZ

To update, select menu File –> Database Update;

- in the window Operational automatic update select the update source, check the settings;

– click Start;

– wait for the update process to complete.

Manual update AVZ

– close the program AVZ;

– download the latest databases for AVZ link z-oleg.com/secur/avz_up/avzbase.zip;

– unpack the downloaded archive into a folder Base programs AVZ(authorizing file replacement - Yes for everyone).

Notes

Tweet

There are programs that are as universal as a Swiss Army knife. The hero of my article is just such a “station wagon”. His name is AVZ(Zaitsev Antivirus). With the help of this free Antivirus and viruses can be caught, the system can be optimized, and problems can be fixed.

AVZ capabilities

About what it is antivirus program, I already told in . About AVZ's work as one-time antivirus(more precisely, an anti-rootkit) is well described in the help for it, but I will show you another side of the program: checking and restoring settings.

What can be “fixed” with AVZ:

• Restore startup of programs (.exe, .com, .pif files)
• Reset Internet settings Explorer to standard
• Restore desktop settings
• Remove rights restrictions (for example, if a virus has blocked programs from launching)
• Remove a banner or window that appears before you log in
• Remove viruses that can run along with any program
• Unblock the task manager and registry editor (if the virus has prevented them from running)
• Clear file
• Prohibit autorun of programs from flash drives and disks
• Remove unnecessary files from your hard drive
• Fix desktop problems
• And much more

You can also use it to check for safety Windows settings(in order to better protect against viruses), and also optimize the system by cleaning startup.

The AVZ download page is located.

The program is free.

First, let's protect your Windows from careless actions.

The AVZ program has Very many functions affecting Windows operation. This dangerous, because if there is a mistake, disaster can happen. Please read the text and help carefully before doing anything. The author of the article is not responsible for your actions.

In order to be able to “return everything as it was” after careless work with AVZ, I wrote this chapter.

This is a mandatory step, essentially creating an “escape route” in case of careless actions - thanks to the restore point, it will be possible to restore the settings, Windows registry to an earlier state.

System Windows recovery- a mandatory component of all Windows versions, starting with Windows ME. It’s a pity that they usually don’t remember about it and waste time reinstalling Windows and programs, although you could just click a couple of times and avoid all the problems.

If the damage is serious (for example, part of the system files), then System Restore will not help. In other cases - if you configured Windows incorrectly, messed around with the registry, installed a program that prevents Windows from booting, or used the AVZ program incorrectly - System Restore should help.

After work, AVZ creates subfolders with backup copies in its folder:

/Backup- are stored there backups registry

/Infected- copies of deleted viruses.

/Quarantine- copies of suspicious files.

If after using AVZ problems started (for example, you thoughtlessly used the AVZ “System Restore” tool and the Internet stopped working) and Recovery Windows systems did not roll back the changes made, you can open registry backups from the folder Backup.

How to create a restore point

Let's go to Start - Control Panel - System - System Protection:

Click “System Protection” in the “System” window.

Click the “Create” button.

The process of creating a restore point can take ten minutes. Then a window will appear:

A restore point will be created. By the way, they are automatically created when installing programs and drivers, but not always. Therefore, before dangerous actions (setting up, cleaning the system), it is better to once again create a restore point, so that in case of trouble you can praise yourself for your foresight.

How to restore your computer using a restore point

There are two options for running System Restore - from under running Windows and using the installation disc.

Option 1 - if Windows starts

Let's go to Start - All Programs - Accessories - System Tools - System Restore:

Will start Select a different restore point and press Further. A list of restore points will open. Select the one you need:

The computer will automatically restart. After downloading, all settings, its registry and some important files will be restored.

Option 2 - if Windows does not boot

You need an “installation” disk with Windows 7 or Windows 8. I wrote in where to get it (or download it).

Boot from the disk (how to boot from boot disks is written) and select:

Select "System Restore" instead Windows installations

Repairing the system after viruses or inept actions with the computer

Before all actions, get rid of viruses, for example, using. Otherwise, there will be no point - the running virus will “break” the corrected settings again.

Restoring program launches

If a virus has blocked the launch of any programs, then AVZ will help you. Of course, you still need to launch AVZ itself, but it’s quite easy:

First we go to Control Panel- set any type of viewing, except Category - Folders settings - View- uncheck Hide extensions for registered file types - OK. Now you can see for each file extension- several characters after the last dot in the name. This is usually the case with programs. .exe And .com. To run AVZ antivirus on a computer where running programs is prohibited, rename the extension to cmd or pif:

Then AVZ will start. Then in the program window itself, click File - :

Points to note:

1. Restoring startup parameters of .exe, .com, .pif files(actually, it solves the problem of launching programs)

6. Removing all Policies (restrictions) current user (in some rare cases, this item also helps solve the problem of starting programs if the virus is very harmful)

9. Removing debuggers system processes (it is very advisable to note this point, because even if you checked the system with an antivirus, something could remain from the virus. It also helps if the Desktop does not appear when the system starts)

, confirm the action, a window appears with the text “System restoration completed.” Afterwards, all that remains is to restart the computer - the problem with launching programs will be solved!

Restoring the Desktop launch

Enough common problem- When the system starts, the Desktop does not appear.

Launch Desktop you can do this: press Ctrl+Alt+Del, launch Task Manager, there press File - New task (Run...) - enter explorer.exe:

OK- The desktop will start. But this is only a temporary solution to the problem - the next time you turn on the computer you will have to repeat everything again.

To avoid doing this every time, you need to restore the program launch key explorer(“Conductor”, who is responsible for standard view folder contents and desktop operation). In AVZ click File- and mark the item

Perform marked operations, confirm the action, press OK. Now when you start your computer, the desktop will launch normally.

Unlocking Task Manager and Registry Editor

If a virus has blocked the launch of the two above-mentioned programs, you can remove the ban through the AVZ program window. Just check two points:

11. Unlock task manager

17. Unlocking the registry editor

And press Perform the marked operations.

Problems with the Internet (VKontakte, Odnoklassniki and antivirus sites do not open)

Cleaning the system from unnecessary files

Programs AVZ knows how to clean your computer unnecessary files. If the program is not installed on your computer cleaning hard disk, then AVZ will do, fortunately there are many possibilities:

More details about the points:

1. Clear system cache Prefetch- cleaning the folder with information about which files to load in advance for quick launch programs. The option is useless, because Windows itself quite successfully monitors the Prefetch folder and cleans it when required.
2. Delete Windows Log Files- you can clear various databases and files that store various records about events occurring in the operating system. The option is useful if you need to free up a dozen or two megabytes of space on your hard drive. That is, the benefit from using it is negligible, the option is useless.
3. Delete memory dump files- in case of critical Windows errors interrupts its work and shows BSOD ( blue screen death), at the same time preserving information about running programs and drivers to a file for subsequent analysis special programs to identify the culprit of the failure. The option is almost useless, since it allows you to win only ten megabytes of free space. Clearing memory dump files does not harm the system.
4. Clear list of Recent documents- oddly enough, the option clears the Recent Documents list. This list is located in the Start menu. You can also clear the list manually by right-clicking on this item in the Start menu and selecting “Clear list last elements" The option is useful: I noticed that clearing the list of recent documents allows the Start menu to display its menus a little faster. It won't harm the system.
5. Clearing the TEMP folder- The Holy Grail for those who are looking for the reason for the disappearance of free space on the C: drive. The fact is that many programs store files in the TEMP folder for temporary use, forgetting to “clean up after themselves” later. A typical example is archivers. They will unpack the files there and forget to delete them. Clearing the TEMP folder does not harm the system; it can free up a lot of space (in particularly advanced cases, the gain in free space reaches fifty gigabytes!).
6. Adobe Flash Player- cleaning temporary files- "flash player" can save files for temporary use. They can be removed. Sometimes (rarely) this option helps in dealing with Flash Player glitches. For example, with problems playing video and audio on the VKontakte website. There is no harm from use.
7. Clearing the terminal client cache- as far as I know, this option clears temporary files Windows component called "Remote Desktop Connection" ( remote access to computers by RDP protocol). Option it seems does no harm, frees up a dozen megabytes of space at best. There is no point in using it.
8. IIS - Deleting HTTP Error Log- it takes a long time to explain what it is. Let me just say that it is better not to enable the IIS log clearing option. In any case, it does no harm, and no benefit either.
9. Macromedia Flash Player- item duplicates « Adobe Flash Player - clearing temporary files", but affects rather ancient versions of Flash Player.
10. Java - clearing cache- gives you a gain of a couple of megabytes on your hard drive. I don't use Java programs, so I haven't checked the consequences of enabling the option. I don't recommend turning it on.
11. Emptying the Trash- the purpose of this item is absolutely clear from its name.
12. Remove system update installation logs- Windows keeps a log installed updates. Enabling this option clears the log. The option is useless because there is no gain in free space.
13. Delete Windows protocol Update- similar to the previous point, but other files are deleted. Also a useless option.
14. Clear MountPoints database- if when you connect a flash drive or hard drive, icons with them are not created in the Computer window, this option can help. I advise you to enable it only if you have problems connecting flash drives and disks.
15. Internet Explorer- cache clearing- cleans Internet Explorer temporary files. The option is safe and useful.
16. Microsoft Office- cache clearing- cleans temporary files Microsoft programs Office - Word, Excel, PowerPoint and others. I can't check the security options because I don't have Microsoft Office.
17. Clearing the CD burning system cache- a useful option that allows you to delete files that you have prepared for burning to disks.
18. Cleaning system folder TEMP- Unlike custom folder TEMP (see point 5) cleaning this folder is not always safe, and it usually frees up little space. I don't recommend turning it on.
19. MSI - cleaning the Config.Msi folder- This folder stores various files created by program installers. The folder is large if the installers did not complete their work correctly, so cleaning the Config.Msi folder is justified. However, I warn you - there may be problems with uninstalling programs that use .msi installers (for example, Microsoft Office).
20. Clear task scheduler logs- Scheduler Windows tasks keeps a log where he records information about completed tasks. I don’t recommend enabling this item, because there is no benefit, but it will add problems - Windows Task Scheduler is a rather buggy component.
21. Remove Windows Setup Logs- winning a place is insignificant, there is no point in deleting.
22. Windows - clearing icon cache- useful if you have problems with shortcuts. For example, when the Desktop appears, icons do not appear immediately. Enabling this option will not affect system stability.
23. Google Chrome- cache clearing- a very useful option. Google Chrome stores copies of pages in a designated folder to help open sites faster (pages are loaded from your hard drive instead of downloading over the Internet). Sometimes the size of this folder reaches half a gigabyte. Cleaning is useful because it frees up space on your hard drive; it does not affect the stability of either Windows or Google Chrome.
24. Mozilla Firefox- cleaning the CrashReports folder- every time when Firefox browser a problem occurs and it closes abnormally, report files are created. This option deletes report files. The gain in free space reaches a couple of tens of megabytes, that is, the option is of little use, but it is there. On Windows stability and Mozilla Firefox has no effect.

Depending on the installed programs, the number of items will vary. For example, if installed Opera browser, you can clear its cache too.

Cleaning the list of startup programs

A surefire way to speed up your computer's startup and speed is to clean the startup list. If unnecessary programs will not start, then the computer will not only turn on faster, but also work faster - due to the freed up resources, which will not be taken up by programs running in the background.

AVZ can view almost all loopholes in Windows through which programs are launched. You can view the autorun list in the Tools - Autorun Manager menu:

The average user has absolutely no need for such powerful functionality, so I urge don't turn everything off. It is enough to look at only two points - Autorun folders And Run*.

AVZ displays autorun not only for your user, but also for all other profiles:

In chapter Run* It’s better not to disable programs located in the section HKEY_USERS- this may disrupt the operation of other user profiles and the operating system itself. In chapter Autorun folders you can turn off everything you don't need.

The lines identified by the antivirus as known are marked in green. This includes both system Windows programs, so third party programs with a digital signature.

All other programs are marked in black. This does not mean that such programs are viruses or anything like that, just that not all programs are digitally signed.

Don't forget to make the first column wider so that the program name is visible. Simply unchecking the checkbox will temporarily disable the program's autorun (you can then check the box again), highlighting the item and pressing the button with a black cross will delete the entry forever (or until the program registers itself in autorun again).

The question arises: how to determine what can be turned off and what cannot? There are two solutions:

Firstly, there is common sense: you can make a decision based on the name of the .exe file of the program. For example, Skype program When installed, it creates an entry to start automatically when you turn on the computer. If you don’t need this, uncheck the box ending with skype.exe. By the way, many programs (including Skype) can remove themselves from startup; just uncheck the corresponding item in the settings of the program itself.

Secondly, you can search the Internet for information about the program. Based on the information received, it remains to make a decision: to remove it from autorun or not. AVZ makes it easy to find information about items: just right-click on the item and select your favorite search engine:

By disabling unnecessary programs, you will significantly speed up your computer startup. However, it is not advisable to disable everything - this risks losing the layout indicator, disabling the antivirus, etc.

Disable only those programs that you know for sure - you don’t need them at startup.

Bottom line

Basically, what I wrote about in the article is akin to hammering nails with a microscope - the AVZ program is suitable for Windows optimization, but in general it is a complex and powerful tool suitable for performing a wide variety of tasks. However, to use AVZ on full blast, you need to know Windows thoroughly, so you can start small - namely with what I described above.

If you have any questions or comments, there is a comment section under the articles where you can write to me. I am monitoring the comments and will try to respond to you as quickly as possible.