Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
DelCLSID('{31IOP6M8-1DAB-81AD-BOK1-78OC5H3987645}');
DelCLSID('{51H3Y8I7-1GRQ-45DK-OOL9-09001D765456}');
DelCLSID('{63MAD6M8-1MAD-81AD-JIM6-26OP5G6789085}');
DelCLSID('{63MAD6M8-1MAD-81AD-JIM6-32OP5G1234521}');
DelCLSID('{63MAD6M8-1MAD-81AD-JIM6-56OP5G1234999}');
DelCLSID('{67MAD3M8-3MAD-81AD-MAD6-78OP5G1234521}');
DelCLSID('{67MAD6M8-1MAD-81AD-MAD6-32OP5G1234521}');
DelCLSID('{G0NP7z2v-B1Zd-qHJB-52lr-OUa3XrMOqGOk}');
QuarantineFile('C:\Feast\Ival\Feast.exe','');
QuarantineFile('C:\MAD\TRACK\mad.exe','');
QuarantineFile('C:\Driver\Files\zerX.exe','');
QuarantineFile('c:\NEXT\GENERATION\NeXT.exe','');
QuarantineFile('C:\jim\carry\jIm.exe','');
QuarantineFile('C:\AKON\BYONC\AKON.exe','');
QuarantineFile('c:\Heroes\FILES\NVeB.exe','');
QuarantineFile('c:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\DCM.exe','');
QuarantineFile('C:\xAVx\ReleAsE\xAVy.exe','');
QuarantineFile('C:\WINDOWS\system32\NVUKZ.exe','');
QuarantineFile('C:\WINDOWS\System32\winlogon.exe','');
QuarantineFile('C:\DOCUME~1\ECD5~1\LOCALS~1\Temp\mtfsys32.exe','');
QuarantineFile('C:\DOCUME~1\ECD5~1\LOCALS~1\Temp\WinUpdate.exe','');
DeleteFile('C:\DOCUME~1\ECD5~1\LOCALS~1\Temp\WinUpdate.exe');
DeleteFile('C:\DOCUME~1\ECD5~1\LOCALS~1\Temp\mtfsys32.exe');
DeleteFile('C:\Documents and Settings\Баяж\bghurkr.exe');
DeleteFile('C:\WINDOWS\system32\NVUKZ.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','zvb0dl2X8tt');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','9UmxQPSiTJMbA');
DeleteFile('C:\xAVx\ReleAsE\xAVy.exe');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','NEXT GENERATION');
DeleteFile('c:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\DCM.exe');
DeleteFile('c:\Heroes\FILES\NVeB.exe');
DeleteFile('C:\AKON\BYONC\AKON.exe');
DeleteFile('C:\jim\carry\jIm.exe');
DeleteFile('c:\NEXT\GENERATION\NeXT.exe');
DeleteFile('C:\Driver\Files\zerX.exe');
DeleteFile('C:\MAD\TRACK\mad.exe');
DeleteFile('C:\Feast\Ival\Feast.exe');
DeleteFileMask('C:\Feast', '*.*', true);
DeleteDirectory('C:\Feast');
DeleteFileMask('C:\MAD', '*.*', true);
DeleteDirectory('C:\MAD');
DeleteFileMask('c:\NEXT', '*.*', true);
DeleteDirectory('c:\NEXTt');
DeleteFileMask('C:\jim', '*.*', true);
DeleteDirectory('C:\jim');
DeleteFileMask('C:\AKON', '*.*', true);
DeleteDirectory('C:\AKON');
DeleteFileMask('c:\Heroes', '*.*', true);
DeleteDirectory('c:\Heroes');
DeleteFileMask('C:\xAVx', '*.*', true);
DeleteDirectory('C:\xAVx');
QuarantineFile('C:\windows\explorer.exe','');
QuarantineFile('C:\windows\system32\dllcache\explorer.exe','');
QuarantineFile('C:\windows\system32\dllcache\winlogon.exe','');
BC_ImportAll;
ExecuteSysClean;
ExecuteWizard('TSW', 2, 2, true);
ExecuteWizard('SCU', 2, 2, true);
RegKeyIntParamWrite('HKLM','SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer','NoDriveTypeAutoRun',221);
BC_Activate;
RebootWindows(true);
end.
После перезагрузки: