Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('C:\Windows\sysdriver32_.exe','');
QuarantineFile('C:\Windows\services32.exe','');
QuarantineFile('C:\Windows\Temp\9216031.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\9699802.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\9692677.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\9371527.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\9067069.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\8907528.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\8706136.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\8404445.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\8356891.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\792097.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\7903715.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\7733799.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\7707630.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\7586180.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\6860030.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\6651392.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\6314355.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\5589377.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\547838.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\5324104.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\4252440.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\4196766.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\325432.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\3107400.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\2933714.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\2702598.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\2381665.exe','');
QuarantineFile('C:\Users\Катя\AppData\Local\Temp\1190246.exe','');
QuarantineFile('C:\Users\0C18~1\AppData\Local\Temp\8651966.exe','');
QuarantineFile('C:\Users\0C18~1\AppData\Local\Temp\585761.exe','');
QuarantineFile('C:\Users\0C18~1\AppData\Local\Temp\3195475.exe','');
DeleteService('srvsysdriver32');
DeleteService('srviecheck');
QuarantineFile('C:\Windows\update.2\svchost.exe','');
QuarantineFile('c:\windows\systemup.exe','');
TerminateProcessByName('c:\windows\systemup.exe');
QuarantineFile('c:\windows\sysdriver32.exe','');
TerminateProcessByName('c:\windows\sysdriver32.exe');
QuarantineFile('c:\windows\update.tray-14-0\svchost.exe','');
TerminateProcessByName('c:\windows\update.tray-14-0\svchost.exe');
QuarantineFile('c:\windows\update.tray-15-0\svchost.exe','');
TerminateProcessByName('c:\windows\update.tray-15-0\svchost.exe');
QuarantineFile('c:\windows\update.tray-8-0\svchost.exe','');
TerminateProcessByName('c:\windows\update.tray-8-0\svchost.exe');
QuarantineFile('c:\windows\l1rezerv.exe','');
TerminateProcessByName('c:\windows\l1rezerv.exe');
DeleteFile('c:\windows\l1rezerv.exe');
DeleteFile('c:\windows\update.tray-8-0\svchost.exe');
DeleteFile('c:\windows\update.tray-15-0\svchost.exe');
DeleteFile('c:\windows\update.tray-14-0\svchost.exe');
DeleteFile('c:\windows\sysdriver32.exe');
DeleteFile('c:\windows\systemup.exe');
DeleteFile('C:\Windows\update.2\svchost.exe');
DeleteFile('C:\Users\0C18~1\AppData\Local\Temp\3195475.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','3195475.exe');
DeleteFile('C:\Users\0C18~1\AppData\Local\Temp\585761.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','585761.exe');
DeleteFile('C:\Users\0C18~1\AppData\Local\Temp\8651966.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','8651966.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\1190246.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','1190246.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\2381665.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','2381665.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\2702598.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','2702598.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\2933714.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','2933714.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\3107400.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','3107400.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\325432.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','325432.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\4196766.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','4196766.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\4252440.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','4252440.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\5324104.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','5324104.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\547838.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','547838.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\5589377.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','5589377.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\6314355.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','6314355.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\6651392.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','6651392.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\6860030.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','6860030.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\7586180.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','7586180.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\7707630.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','7707630.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\7733799.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','7733799.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\7903715.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','7903715.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\792097.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','792097.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\8356891.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','8356891.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\8404445.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','8404445.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\8706136.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','8706136.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\8907528.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','8907528.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\9067069.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','9067069.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\9371527.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','9371527.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\9692677.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','9692677.exe');
DeleteFile('C:\Users\Катя\AppData\Local\Temp\9699802.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','9699802.exe');
DeleteFile('C:\Windows\Temp\9216031.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','9216031.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','l1rezerv.exe');
DeleteFile('C:\Windows\services32.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','wxpdrv');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','sysdriver32.exe');
DeleteFile('C:\Windows\sysdriver32_.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','sysdriver32_.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','systemup');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','tray_ico1');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','tray_ico0');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','tray_ico2');
RegKeyParamDel('HKEY_LOCAL_MACHINE','System\CurrentControlSet\Control\SafeBoot','AlternateShell');
BC_ImportDeletedList;
ExecuteSysClean;
ExecuteRepair(13);
BC_Activate;
RebootWindows(true);
end.
После выполнения скрипта компьютер перезагрузится!