Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
ClearQuarantineEx(true);
QuarantineFile('C:\Documents and Settings\User\Главное меню\Программы\Автозагрузка\pic.bmp','');
QuarantineFile('C:\Documents and Settings\User\Главное меню\Программы\Автозагрузка\22640efd.exe','');
QuarantineFile('C:\DOCUME~1\User\LOCALS~1\Temp\Rar$DI00.296\OOO_STROYINVEST.scr','');
QuarantineFile('C:\DOCUME~1\User\LOCALS~1\Temp\10c45661.exe','');
QuarantineFile('C:\DOCUME~1\ALLUSE~1\LOCALS~1\Temp\msovpv.cmd','');
DeleteFile('C:\DOCUME~1\ALLUSE~1\LOCALS~1\Temp\msovpv.cmd','32');
DeleteFile('C:\DOCUME~1\User\LOCALS~1\Temp\10c45661.exe','32');
DeleteFile('C:\DOCUME~1\User\LOCALS~1\Temp\Rar$DI00.296\OOO_STROYINVEST.scr','32');
DeleteFile('C:\Documents and Settings\User\Главное меню\Программы\Автозагрузка\22640efd.exe','32');
DeleteFile('C:\Documents and Settings\User\Главное меню\Программы\Автозагрузка\pic.bmp','32');
DeleteFile('C:\WINDOWS\Tasks\System Security.job','32');
DeleteFile('C:\WINDOWS\Tasks\System Components Update.job','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','8808');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','System Security');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','System Security');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','System Security');
RegKeyParamDel('HKEY_USERS','.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run','System Security');
RegKeyParamDel('HKEY_USERS','.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','System Security');
RegKeyParamDel('HKEY_USERS','S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run','System Security');
RegKeyParamDel('HKEY_USERS','S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','System Security');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','dskchk');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','mobilegeni daemon');
BC_ImportAll;
ExecuteSysClean;
ExecuteWizard('SCU', 2, 3, true);
ExecuteWizard('TSW',2,3,true);
BC_Activate;
RebootWindows(true);
end.