Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.'+#13#10+'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(true);
end;
ClearQuarantine;
TerminateProcessByName('c:\program files (x86)\clearthink\bin\utilclearthink.exe');
TerminateProcessByName('c:\program files (x86)\clearthink\updateclearthink.exe');
SetServiceStart('{bcd08fc8-cb56-41a3-8b19-3c556687a504}w64', 4);
SetServiceStart('Util ClearThink', 4);
SetServiceStart('Update ClearThink', 4);
StopService('{bcd08fc8-cb56-41a3-8b19-3c556687a504}w64');
StopService('Util ClearThink');
StopService('Update ClearThink');
QuarantineFile('C:\Users\админ\AppData\Roaming\Gameo\gameo.exe','');
QuarantineFile('C:\iexplore.bat','');
QuarantineFile('C:\WinNER6\winner6.exe','');
QuarantineFile('C:\Users\админ\AppData\Local\Yandex\browser.bat','');
QuarantineFile('C:\Program Files (x86)\baidu\BindEx.exe','');
QuarantineFile('C:\Program Files (x86)\Google\chrome.bat','');
QuarantineFile('C:\Program Files (x86)\PennyBee\PennyBee.exe','');
QuarantineFile('C:\Windows\system32\drivers\{bcd08fc8-cb56-41a3-8b19-3c556687a504}w64.sys','');
QuarantineFile('c:\program files (x86)\clearthink\bin\utilclearthink.exe','');
QuarantineFile('c:\program files (x86)\clearthink\updateclearthink.exe','');
DeleteFile('c:\program files (x86)\clearthink\updateclearthink.exe','32');
DeleteFile('c:\program files (x86)\clearthink\bin\utilclearthink.exe','32');
DeleteFile('C:\Windows\system32\drivers\{bcd08fc8-cb56-41a3-8b19-3c556687a504}w64.sys','32');
DeleteFile('C:\Program Files (x86)\PennyBee\PennyBee.exe','32');
DeleteFile('C:\Windows\system32\drivers\{0729a3ff-5ca9-4654-a275-96df29273fbf}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{0c7dc56c-1fb8-4d6b-a40f-10611881a3b6}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{0e195523-6785-4f9c-bb2f-0a791b0c99d0}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{18fa7aee-6838-42dd-8d32-3fd665a7e664}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{1fe5a9eb-d0ad-44c6-8e0e-e079118db915}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{2429c312-24d3-4127-94ed-c247fe9e02fc}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{38f72c19-9857-4bc2-b729-9d00bd429872}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{4dbbe3b0-af29-43dd-bcba-7bfabd419f61}Gw64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{4dbbe3b0-af29-43dd-bcba-7bfabd419f61}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{6cfec6a5-9d93-4492-985a-470a68eff4e9}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{75729234-632f-47d7-8e20-2e89ba1587cf}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{9390ab08-5703-448b-94f8-b8b1934c8841}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{94538859-34de-4cd4-9dc6-aa29e98ff214}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{ad28a4d5-ff34-4e4c-af95-b3aa1bbc1d20}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{b35afcf6-0992-4551-b2da-3af8a5dc5119}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{c5d2a915-f26c-4145-b1b0-0ab69f6f538f}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{c89879cb-75b8-4cb6-bc13-07c704396fd0}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{d609e0eb-8157-494a-b166-6f24f8a1cbb4}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{d8d78a9d-86d1-41f9-9ce3-85bbe0b8cce8}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{e5e8bd85-21de-4190-b364-33beb625e47f}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{ea2115a6-5989-483c-b1ee-19fba43198ff}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{f8280ede-2ab0-420d-ae0f-169ba406978b}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{fe90d265-3be8-45cd-8d93-3ca3523fd9ea}w64.sys','32');
DeleteFile('C:\Program Files (x86)\Google\chrome.bat','32');
DeleteFile('C:\Program Files (x86)\baidu\BindEx.exe','32');
DeleteFile('C:\Users\админ\AppData\Local\Yandex\browser.bat','32');
DeleteFile('C:\iexplore.bat','32');
DeleteFile('C:\Windows\Tasks\PennyBee.job','64');
DeleteFile('C:\Windows\system32\Tasks\PennyBee','64');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','baidu');
DeleteService('{fe90d265-3be8-45cd-8d93-3ca3523fd9ea}w64');
DeleteService('{f8280ede-2ab0-420d-ae0f-169ba406978b}w64');
DeleteService('{ea2115a6-5989-483c-b1ee-19fba43198ff}w64');
DeleteService('{e5e8bd85-21de-4190-b364-33beb625e47f}w64');
DeleteService('{d8d78a9d-86d1-41f9-9ce3-85bbe0b8cce8}w64');
DeleteService('{d609e0eb-8157-494a-b166-6f24f8a1cbb4}w64');
DeleteService('{c89879cb-75b8-4cb6-bc13-07c704396fd0}w64');
DeleteService('{c5d2a915-f26c-4145-b1b0-0ab69f6f538f}w64');
DeleteService('{b35afcf6-0992-4551-b2da-3af8a5dc5119}w64');
DeleteService('{ad28a4d5-ff34-4e4c-af95-b3aa1bbc1d20}w64');
DeleteService('{94538859-34de-4cd4-9dc6-aa29e98ff214}w64');
DeleteService('{9390ab08-5703-448b-94f8-b8b1934c8841}w64');
DeleteService('{75729234-632f-47d7-8e20-2e89ba1587cf}w64');
DeleteService('{6cfec6a5-9d93-4492-985a-470a68eff4e9}w64');
DeleteService('{4dbbe3b0-af29-43dd-bcba-7bfabd419f61}w64');
DeleteService('{4dbbe3b0-af29-43dd-bcba-7bfabd419f61}Gw64');
DeleteService('{38f72c19-9857-4bc2-b729-9d00bd429872}w64');
DeleteService('{2429c312-24d3-4127-94ed-c247fe9e02fc}w64');
DeleteService('{1fe5a9eb-d0ad-44c6-8e0e-e079118db915}w64');
DeleteService('{18fa7aee-6838-42dd-8d32-3fd665a7e664}w64');
DeleteService('{0e195523-6785-4f9c-bb2f-0a791b0c99d0}w64');
DeleteService('{0c7dc56c-1fb8-4d6b-a40f-10611881a3b6}w64');
DeleteService('{0729a3ff-5ca9-4654-a275-96df29273fbf}w64');
DeleteService('{bcd08fc8-cb56-41a3-8b19-3c556687a504}w64');
DeleteService('PennyBee');
DeleteService('Util ClearThink');
DeleteService('Update ClearThink');
DeleteFileMask('c:\program files (x86)\clearthink', '*', true, ' ');
DeleteDirectory('c:\program files (x86)\clearthink');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.