Код:
begin
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
ClearQuarantineEx(true);
TerminateProcessByName('c:\program files (x86)\1407eb2e-1441961175-df36-e7e3-6c626d424f41\knsra118.tmpfs');
TerminateProcessByName('c:\program files (x86)\1407eb2e-1441961175-df36-e7e3-6c626d424f41\jnswb865.tmp');
TerminateProcessByName('c:\program files (x86)\1407eb2e-1441961175-df36-e7e3-6c626d424f41\hnsmcd2f.tmp');
TerminateProcessByName('c:\users\thutmose\appdata\roaming\daemon.exe');
SetServiceStart('TSSKX64', 4);
SetServiceStart('TsDefenseBt', 4);
SetServiceStart('QMUdisk', 4);
SetServiceStart('QQPCRTP', 4);
SetServiceStart('dipubibu', 4);
SetServiceStart('vuzizepy', 4);
SetServiceStart('lehicewu', 4);
SetServiceStart('gyvixodu', 4);
StopService('TSSKX64');
StopService('TsDefenseBt');
StopService('QMUdisk');
StopService('QQPCRTP');
StopService('dipubibu');
StopService('vuzizepy');
StopService('lehicewu');
StopService('gyvixodu');
QuarantineFile('C:\ProgramData\Browsers\browser0.bat', '');
QuarantineFile('C:\ProgramData\Browsers\browser6.bat', '');
QuarantineFile('C:\Program Files (x86)\Torrent Search\zwW7llU.exe', '');
QuarantineFile('C:\Program Files (x86)\Torrent Search\IEEF\aOyTc6f2cW.dll', '');
QuarantineFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\TsDefenseBT64.sys', '');
QuarantineFile('C:\Windows\system32\drivers\tsskx64.sys', '');
QuarantineFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QMUdisk64.sys', '');
QuarantineFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCRtp.exe', '');
QuarantineFile('C:\Users\Thutmose\AppData\Local\1407EB2E-1441972013-DF36-E7E3-6C626D424F41\snsr2C9D.tmp', '');
QuarantineFile('c:\program files (x86)\1407eb2e-1441961175-df36-e7e3-6c626d424f41\knsra118.tmpfs', '');
QuarantineFile('c:\program files (x86)\1407eb2e-1441961175-df36-e7e3-6c626d424f41\jnswb865.tmp', '');
QuarantineFile('c:\program files (x86)\1407eb2e-1441961175-df36-e7e3-6c626d424f41\hnsmcd2f.tmp', '');
QuarantineFile('c:\users\thutmose\appdata\roaming\daemon.exe', '');
DeleteFile('C:\ProgramData\Browsers\browser0.bat', '32');
DeleteFile('C:\ProgramData\Browsers\browser6.bat', '32');
DeleteFile('C:\Program Files (x86)\1407EB2E-1441961175-DF36-E7E3-6C626D424F41\hnsmCD2F.tmp', '32');
DeleteFile('C:\Program Files (x86)\1407EB2E-1441961175-DF36-E7E3-6C626D424F41\jnswB865.tmp', '32');
DeleteFile('C:\Program Files (x86)\1407EB2E-1441961175-DF36-E7E3-6C626D424F41\knsrA118.tmpfs', '32');
DeleteFile('C:\Users\Thutmose\AppData\Local\1407EB2E-1441972013-DF36-E7E3-6C626D424F41\snsr2C9D.tmp', '32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCRtp.exe', '32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QMUdisk64.sys', '32');
DeleteFile('C:\Windows\system32\drivers\tsskx64.sys', '32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\TsDefenseBT64.sys', '32');
DeleteFile('C:\Users\Thutmose\AppData\Roaming\daemon.exe', '32');
DeleteFile('C:\Program Files (x86)\Torrent Search\IEEF\aOyTc6f2cW.dll', '32');
DeleteFile('C:\Program Files (x86)\Torrent Search\zwW7llU.exe', '32');
DeleteFile('C:\Windows\Tasks\Update Service for Torrent Search.job', '32');
DeleteFile('C:\Windows\Tasks\Update Service for Torrent Search2.job', '32');
DeleteFile('C:\Windows\system32\Tasks\ASC8_PerformanceMonitor', '64');
DeleteFile('C:\Windows\system32\Tasks\Driver Booster SkipUAC (Thutmose)', '64');
DeleteFile('C:\Windows\system32\Tasks\Uninstaller_SkipUac_Thutmose', '64');
DeleteFile('C:\Windows\system32\Tasks\Update Service for Torrent Search', '64');
DeleteFile('C:\Windows\system32\Tasks\Update Service for Torrent Search2', '64');
DeleteService('TSSKX64');
DeleteService('TsDefenseBt');
DeleteService('QMUdisk');
DeleteService('QQPCRTP');
DeleteService('dipubibu');
DeleteService('vuzizepy');
DeleteService('lehicewu');
DeleteService('gyvixodu');
DelBHO('{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}');
DelBHO('{6E727987-C8EA-44DA-8749-310C0FBE3C3E}');
RegKeyParamDel('HKEY_CURRENT_USER', 'Software\Microsoft\Windows\CurrentVersion\Run', 'Daemon');
CreateQurantineArchive(GetAVZDirectory + 'quarantine.zip');
ExecuteSysClean;
ExecuteWizard('SCU', 2, 3, true);
RebootWindows(true);
end.