Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
QuarantineFile('C:\Users\Podyom-1\appdata\local\smartweb\swhk.dll','');
QuarantineFile('C:\Users\Podyom-1\AppData\Roaming\mystartsearch\UninstallManager.exe','');
QuarantineFile('C:\Users\Podyom-1\AppData\Roaming\oursurfing\UninstallManager.exe','');
QuarantineFile('C:\iexplore.bat','');
QuarantineFile('C:\Users\Podyom-1\AppData\Roaming\BrowserExtensions\BEHelper.exe','');
QuarantineFile('C:\windows\system32\drivers\innfd_1_10_0_14.sys','');
DeleteService('innfd_1_10_0_14');
SetServiceStart('legesuhe', 4);
DeleteService('legesuhe');
TerminateProcessByName('c:\users\podyom-1\appdata\local\gmsd_ru_250\upgmsd_ru_250.exe');
QuarantineFile('c:\users\podyom-1\appdata\local\gmsd_ru_250\upgmsd_ru_250.exe','');
TerminateProcessByName('c:\users\podyom-1\appdata\local\smartweb\smartwebhelper.exe');
QuarantineFile('c:\users\podyom-1\appdata\local\smartweb\smartwebhelper.exe','');
TerminateProcessByName('c:\users\podyom-1\appdata\local\smartweb\smartwebapp.exe');
QuarantineFile('c:\users\podyom-1\appdata\local\smartweb\smartwebapp.exe','');
TerminateProcessByName('c:\users\podyom-1\appdata\local\temp\nssa236.tmp');
QuarantineFile('c:\users\podyom-1\appdata\local\temp\nssa236.tmp','');
TerminateProcessByName('c:\users\podyom-1\appdata\roaming\10c0eed0-1430999848-e311-b737-201a06f84bb5\nso99.tmp');
QuarantineFile('c:\users\podyom-1\appdata\roaming\10c0eed0-1430999848-e311-b737-201a06f84bb5\nso99.tmp','');
TerminateProcessByName('c:\users\podyom-1\appdata\local\temp\nsbf52a.tmp');
TerminateProcessByName('c:\program files\gmsd_ru_250\gmsd_ru_250.exe');
QuarantineFile('c:\program files\gmsd_ru_250\gmsd_ru_250.exe','');
DeleteFile('c:\program files\gmsd_ru_250\gmsd_ru_250.exe','32');
DeleteFile('c:\users\podyom-1\appdata\local\temp\nsbf52a.tmp','32');
DeleteFile('c:\users\podyom-1\appdata\roaming\10c0eed0-1430999848-e311-b737-201a06f84bb5\nso99.tmp','32');
DeleteFile('c:\users\podyom-1\appdata\local\temp\nssa236.tmp','32');
DeleteFile('c:\users\podyom-1\appdata\local\smartweb\smartwebapp.exe','32');
DeleteFile('c:\users\podyom-1\appdata\local\smartweb\smartwebhelper.exe','32');
DeleteFile('c:\users\podyom-1\appdata\local\gmsd_ru_250\upgmsd_ru_250.exe','32');
DeleteFile('C:\windows\system32\drivers\innfd_1_10_0_14.sys','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\RunOnce','upgmsd_ru_250.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SmartWeb','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','SmartWeb');
DeleteFile('C:\Users\Podyom-1\AppData\Local\Mail.ru\Sputnik\ptls\mailruhomesearchvbm.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mailruhomesearchvbm','command');
DeleteFile('C:\iexplore.bat','32');
DeleteFile('C:\windows\system32\Tasks\SmartWeb Upgrade Trigger Task','32');
DeleteFile('C:\windows\system32\Tasks\Soft installer','32');
DeleteFile('C:\Users\Podyom-1\AppData\Local\Host installer\1123159398_monster.exe','32');
DeleteFile('C:\Users\Podyom-1\AppData\Roaming\oursurfing\UninstallManager.exe','32');
DeleteFile('C:\Users\Podyom-1\AppData\Roaming\mystartsearch\UninstallManager.exe','32');
DeleteFile('C:\windows\system32\Tasks\{86559081-0C24-484B-A60A-57F5A8CC9E88}','32');
DeleteFile('C:\windows\system32\Tasks\{56271AF0-BF2B-461B-A865-E43888A54643}','32');
DeleteFile('C:\Users\Podyom-1\AppData\Local\Temp\nsi840F.tmp\blowfish.dll','32');
DeleteFile('C:\Users\Podyom-1\AppData\Local\Temp\nsmD115.tmp\blowfish.dll','32');
DeleteFile('C:\Users\Podyom-1\AppData\Local\Temp\nssAC9D.tmp\blowfish.dll','32');
DeleteFile('C:\Users\Podyom-1\appdata\local\smartweb\swhk.dll','32');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.
Компьютер перезагрузится.