Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
QuarantineFile('C:\Users\Таня\appdata\local\pay-by-ads\yahoo! search\1.3.15.4\dsrsetup.exe','');
QuarantineFile('C:\Users\Таня\appdata\local\pay-by-ads\yahoo! search\1.3.15.4\dsrlte.exe','');
QuarantineFile('C:\Users\Таня\appdata\local\pay-by-ads\yahoo! search\1.3.12.4\dsrsetup.exe','');
QuarantineFile('C:\Users\Таня\appdata\local\pay-by-ads\yahoo! search\1.3.12.4\dsrlte.exe','');
DelBHO('{bc8c4384-d19c-474b-a298-c90b7e5c5204}');
QuarantineFile('C:\Program Files (x86)\WiseEnhance\WiseEnhanceBHO.dll','');
QuarantineFile('C:\Users\Таня\AppData\Roaming\Gameo\gameo.dat','');
SetServiceStart('{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64', 4);
DeleteService('{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64');
SetServiceStart('{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}Gw64', 4);
DeleteService('{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}Gw64');
SetServiceStart('{1f504ccc-2549-476d-9244-b03a2f407980}w64', 4);
DeleteService('{1f504ccc-2549-476d-9244-b03a2f407980}w64');
SetServiceStart('{04149c3d-8572-400f-84ef-5aa7e85721a9}w64', 4);
DeleteService('{04149c3d-8572-400f-84ef-5aa7e85721a9}w64');
QuarantineFile('C:\Program Files (x86)\WiseEnhance\bin\utilWiseEnhance.exe','');
QuarantineFile('C:\Program Files (x86)\WiseEnhance\updateWiseEnhance.exe','');
SetServiceStart('Util WiseEnhance', 4);
DeleteService('Util WiseEnhance');
SetServiceStart('Update WiseEnhance', 4);
DeleteService('Update WiseEnhance');
SetServiceStart('MaintainerSvc5.00.026944', 4);
DeleteService('MaintainerSvc5.00.026944');
QuarantineFile('C:\Windows\system32\drivers\{79927c88-3ad2-4cc2-b84e-7c2db334abab}w64.sys','');
QuarantineFile('C:\Windows\system32\drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64.sys','');
QuarantineFile('C:\Windows\system32\drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}Gw64.sys','');
QuarantineFile('C:\Windows\system32\drivers\{1f504ccc-2549-476d-9244-b03a2f407980}w64.sys','');
QuarantineFile('C:\Windows\system32\drivers\{04149c3d-8572-400f-84ef-5aa7e85721a9}w64.sys','');
QuarantineFile('C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.expextdll.dll','');
QuarantineFile('C:\Program Files (x86)\WiseEnhance\bin\79927c883ad24cc2b84e7c2db334abab.dll','');
TerminateProcessByName('C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.PurBrowse64.exe');
QuarantineFile('C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.PurBrowse64.exe','');
TerminateProcessByName('c:\program files (x86)\wiseenhance\bin\wiseenhance.expext.exe');
QuarantineFile('c:\program files (x86)\wiseenhance\bin\wiseenhance.expext.exe','');
TerminateProcessByName('C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.BrowserAdapter64.exe');
QuarantineFile('C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.BrowserAdapter64.exe','');
TerminateProcessByName('c:\program files (x86)\wiseenhance\bin\wiseenhance.browseradapter.exe');
QuarantineFile('c:\program files (x86)\wiseenhance\bin\wiseenhance.browseradapter.exe','');
TerminateProcessByName('c:\program files (x86)\wiseenhance\bin\wiseenhance.boashelper.exe');
QuarantineFile('c:\program files (x86)\wiseenhance\bin\wiseenhance.boashelper.exe','');
TerminateProcessByName('c:\program files (x86)\wiseenhance\bin\utilwiseenhance.exe');
QuarantineFile('c:\program files (x86)\wiseenhance\bin\utilwiseenhance.exe','');
TerminateProcessByName('c:\program files (x86)\wiseenhance\updatewiseenhance.exe');
QuarantineFile('c:\program files (x86)\wiseenhance\updatewiseenhance.exe','');
TerminateProcessByName('c:\programdata\25e9dd31-9f4d-45f2-8dac-1413f8cec2c0\maintainer.exe');
QuarantineFile('c:\programdata\25e9dd31-9f4d-45f2-8dac-1413f8cec2c0\maintainer.exe','');
DeleteFile('c:\programdata\25e9dd31-9f4d-45f2-8dac-1413f8cec2c0\maintainer.exe','32');
DeleteFile('c:\program files (x86)\wiseenhance\updatewiseenhance.exe','32');
DeleteFile('c:\program files (x86)\wiseenhance\bin\utilwiseenhance.exe','32');
DeleteFile('c:\program files (x86)\wiseenhance\bin\wiseenhance.boashelper.exe','32');
DeleteFile('c:\program files (x86)\wiseenhance\bin\wiseenhance.browseradapter.exe','32');
DeleteFile('C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.BrowserAdapter64.exe','32');
DeleteFile('c:\program files (x86)\wiseenhance\bin\wiseenhance.expext.exe','32');
DeleteFile('C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.PurBrowse64.exe','32');
DeleteFile('C:\Program Files (x86)\WiseEnhance\bin\79927c883ad24cc2b84e7c2db334abab.dll','32');
DeleteFile('C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.expextdll.dll','32');
DeleteFile('C:\Windows\system32\drivers\{04149c3d-8572-400f-84ef-5aa7e85721a9}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{1f504ccc-2549-476d-9244-b03a2f407980}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}Gw64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64.sys','32');
DeleteFile('C:\Windows\system32\drivers\{79927c88-3ad2-4cc2-b84e-7c2db334abab}w64.sys','32');
DeleteFile('C:\Program Files (x86)\WiseEnhance\updateWiseEnhance.exe','32');
DeleteFile('C:\Program Files (x86)\WiseEnhance\bin\utilWiseEnhance.exe','32');
DeleteFile('C:\Program Files (x86)\Mobogenie\DaemonProcess.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mobilegeni daemon','command');
DeleteFile('C:\Users\Таня\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.18.6\dsrlte.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Yahoo! Search','command');
DeleteFile('C:\Users\Таня\AppData\Local\PriceFountain\pricefountainw.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\pricefountainw.exe','command');
DeleteFile('C:\Users\Таня\AppData\Roaming\Gameo\gameo.dat','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Gameo','command');
DeleteFile('C:\Program Files (x86)\WiseEnhance\WiseEnhanceBHO.dll','32');
DeleteFile('C:\Users\Таня\appdata\local\pay-by-ads\yahoo! search\1.3.12.4\dsrlte.exe','32');
DeleteFile('C:\Users\Таня\appdata\local\pay-by-ads\yahoo! search\1.3.12.4\dsrsetup.exe','32');
DeleteFile('C:\Users\Таня\appdata\local\pay-by-ads\yahoo! search\1.3.15.4\dsrlte.exe','32');
DeleteFile('C:\Users\Таня\appdata\local\pay-by-ads\yahoo! search\1.3.15.4\dsrsetup.exe','32');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.
Компьютер перезагрузится.