Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
QuarantineFile('C:\Documents and Settings\Home\applic~1\pricef~1\update~1\update~1.exe','');
DelBHO('{1bb456da-878f-44a5-b013-4bfe0ae02fce}');
QuarantineFile('C:\Program Files\Solution Real\SolutionRealBHO.dll','');
QuarantineFile('C:\Documents and Settings\Home\Application Data\Xstwtt.exe','');
QuarantineFile('C:\DOCUME~1\Home\APPLIC~1\PriceFountain\UpdateProc\bkup.dat','');
QuarantineFile('C:\DOCUME~1\Home\APPLIC~1\DigitalSites\UpdateProc\bkup.dat','');
SetServiceStart('{693a0a5b-aa08-4a3c-b7e8-398a93e02cf2}Gt', 4);
DeleteService('{693a0a5b-aa08-4a3c-b7e8-398a93e02cf2}Gt');
SetServiceStart('{5c281c6e-0132-4ac6-ad9d-d1d95d218412}t', 4);
DeleteService('{5c281c6e-0132-4ac6-ad9d-d1d95d218412}t');
SetServiceStart('{4cff408a-d9e7-47c3-a711-95133fcf7f45}Gt', 4);
DeleteService('{4cff408a-d9e7-47c3-a711-95133fcf7f45}Gt');
SetServiceStart('Util Solution Real', 4);
DeleteService('Util Solution Real');
SetServiceStart('Update Solution Real', 4);
DeleteService('Update Solution Real');
QuarantineFile('C:\WINDOWS\system32\drivers\{6e9af5d3-a8f9-4461-ad38-1433888f55dc}Gt.sys','');
QuarantineFile('C:\WINDOWS\system32\drivers\{693a0a5b-aa08-4a3c-b7e8-398a93e02cf2}Gt.sys','');
QuarantineFile('C:\WINDOWS\system32\drivers\{5c281c6e-0132-4ac6-ad9d-d1d95d218412}t.sys','');
QuarantineFile('C:\WINDOWS\system32\drivers\{4cff408a-d9e7-47c3-a711-95133fcf7f45}Gt.sys','');
TerminateProcessByName('c:\program files\solution real\bin\utilsolutionreal.exe');
QuarantineFile('c:\program files\solution real\bin\utilsolutionreal.exe','');
TerminateProcessByName('c:\program files\solution real\updatesolutionreal.exe');
QuarantineFile('c:\program files\solution real\updatesolutionreal.exe','');
TerminateProcessByName('c:\program files\solution real\bin\solutionreal.browseradapter.exe');
QuarantineFile('c:\program files\solution real\bin\solutionreal.browseradapter.exe','');
DeleteFile('c:\program files\solution real\bin\solutionreal.browseradapter.exe','32');
DeleteFile('c:\program files\solution real\updatesolutionreal.exe','32');
DeleteFile('c:\program files\solution real\bin\utilsolutionreal.exe','32');
DeleteFile('C:\WINDOWS\system32\drivers\{4cff408a-d9e7-47c3-a711-95133fcf7f45}Gt.sys','32');
DeleteFile('C:\WINDOWS\system32\drivers\{5c281c6e-0132-4ac6-ad9d-d1d95d218412}t.sys','32');
DeleteFile('C:\WINDOWS\system32\drivers\{693a0a5b-aa08-4a3c-b7e8-398a93e02cf2}Gt.sys','32');
DeleteFile('C:\WINDOWS\system32\drivers\{6e9af5d3-a8f9-4461-ad38-1433888f55dc}Gt.sys','32');
DeleteFile('C:\DOCUME~1\Home\APPLIC~1\DigitalSites\UpdateProc\bkup.dat','32');
DeleteFile('C:\DOCUME~1\Home\APPLIC~1\PriceFountain\UpdateProc\bkup.dat','32');
DeleteFile('C:\Documents and Settings\Home\Application Data\Xstwtt.exe','32');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','Xstwtt');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\RunOnce','PriceFountain');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\RunOnce','DigitalSites');
DeleteFile('C:\Program Files\Solution Real\SolutionRealBHO.dll','32');
DeleteFile('C:\WINDOWS\Tasks\At2.job','32');
DeleteFile('C:\Documents and Settings\Home\applic~1\pricef~1\update~1\update~1.exe','32');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.
Компьютер перезагрузится.