Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(true);
end;
QuarantineFile('C:\Windows\System32\dllhost.exe', 'MBAM: Spyware.Banker');
QuarantineFile('C:\Windows\System32\vds.exe', 'MBAM: Trojan.FakeMS');
QuarantineFile('C:\Windows\System32\VSSVC.exe', 'MBAM: Trojan.FakeMS');
QuarantineFile('C:\Windows\System32\wbem\WmiApSrv.exe', 'MBAM: Trojan.FakeMS');
QuarantineFile('C:\Windows\System32\snmptrap.exe', 'MBAM: Trojan.FakeMS');
QuarantineFile('C:\RECYCLER\S-1-5-21-1644491937-1580436667-725345543-500\Dc3414.exe', 'MBAM: Trojan.FakeMS');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\29\101fadd-4df83b8e', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\5\48b9d3c5-318697b2', 'MBAM: Trojan.Agent.PE5');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\13\3fa20e0d-31041e4e', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\18\e8b1a92-40968f36', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\24\6829fc98-591cfb0a', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\25\1fb5a319-33952568', 'MBAM: Trojan.Zbot.CBCGen');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\28\fec679c-7cbde9f6', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\37\5623d9a5-28830c3f', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\45\5f6609ed-724c0f38', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\46\540781ee-13062515', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\56\1d808278-16a56ad8', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\58\2aa8befa-74d853ba', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\59\5f22ae3b-4b1366e0', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\60\1ec054fc-744abd19', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\61\3586ffbd-3b4c37ed', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\7\3ab254c7-14e3cb7a', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\161.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\16E.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\1721.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\9B5.tmp', 'MBAM: Trojan.Agent.PE5');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\26D.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\83.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\85.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\AD4.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\1F19.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\1F81.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\2161.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\44C.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\48D.tmp', 'MBAM: Trojan.Agent');
QuarantineFile('D:\Valve\PerX.exe', 'MBAM: HackTool.Agent');
DeleteFile('C:\RECYCLER\S-1-5-21-1644491937-1580436667-725345543-500\Dc3414.exe');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00001.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00002.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00003.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00004.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00005.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00006.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00007.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00008.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00009.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00010.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00011.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00012.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00013.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00014.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00015.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00016.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00017.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00018.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00019.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00020.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00021.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00022.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00023.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00024.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00025.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00026.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00027.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00028.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00029.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00030.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00031.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00032.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00033.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00034.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00035.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00036.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00037.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00038.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00039.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00040.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00041.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00042.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00043.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00044.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00045.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00046.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00047.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00048.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00049.dta');
DeleteFile('C:\Users\wArz\Desktop\avz4\Quarantine\2011-11-13\avz00050.dta');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\29\101fadd-4df83b8e');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\5\48b9d3c5-318697b2');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\13\3fa20e0d-31041e4e');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\18\e8b1a92-40968f36');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\24\6829fc98-591cfb0a');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\25\1fb5a319-33952568');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\28\fec679c-7cbde9f6');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\37\5623d9a5-28830c3f');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\45\5f6609ed-724c0f38');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\46\540781ee-13062515');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\56\1d808278-16a56ad8');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\58\2aa8befa-74d853ba');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\59\5f22ae3b-4b1366e0');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\60\1ec054fc-744abd19');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\61\3586ffbd-3b4c37ed');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Application Data\Sun\Java\Deployment\cache\6.0\7\3ab254c7-14e3cb7a');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\161.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\16E.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\1721.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\9B5.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\26D.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\83.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\85.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\AD4.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\1F19.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\1F81.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\2161.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\44C.tmp');
DeleteFile('C:\Windows.old\Documents and Settings\Admin\Local Settings\Temp\48D.tmp');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
Компьютер перезагрузится.