Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1804', 1);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '2201', 3);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1004', 3);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1001', 1);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1201', 3);
QuarantineFile('C:\Users\836D~1\AppData\Local\Temp\R.vbs','');
QuarantineFile('C:\Users\Администратор\AppData\Local\SystemDir\nethost.exe','');
QuarantineFile('C:\Users\Администратор\AppData\Roaming\newSI_1019\s_inst.exe','');
QuarantineFile('C:\Users\Администратор\AppData\Roaming\newSI_1008\s_inst.exe','');
QuarantineFile('C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe','');
QuarantineFile('C:\Program Files (x86)\CinemaPlus12bV14.02\ec85292a-2600-4bef-a6ce-5bd297ff2cb8-5.exe','');
QuarantineFile('C:\Program Files (x86)\CinemaPlus12bV14.02\ec85292a-2600-4bef-a6ce-5bd297ff2cb8-10.exe','');
QuarantineFile('C:\Program Files (x86)\CinemaPlus12bV14.02\71b70bd4-8300-45e8-b77d-d628be2deea9.exe','');
DeleteService('TS888x64');
DeleteService('TSCPM');
DeleteService('TSDefenseBt');
DeleteService('TSSKX64');
DeleteService('TSSysKit');
DeleteService('QMUdisk');
DeleteService('QQSysMonX64');
DeleteService('ccnfd_1_10_0_2');
DeleteService('bd0002');
QuarantineFile('C:\Windows\system32\drivers\ccnfd_1_10_0_2.sys','');
SetServiceStart('TFsFlt', 4);
DeleteService('TFsFlt');
SetServiceStart('TAOKernelDriver', 4);
DeleteService('TAOKernelDriver');
SetServiceStart('TAOAccelerator', 4);
DeleteService('TAOAccelerator');
SetServiceStart('itdrvr_vt_1_10_0_25', 4);
DeleteService('itdrvr_vt_1_10_0_25');
SetServiceStart('BDMWrench_x64', 4);
DeleteService('BDMWrench_x64');
SetServiceStart('BDMNetMon', 4);
DeleteService('BDMNetMon');
SetServiceStart('BDFileDefend', 4);
DeleteService('BDFileDefend');
SetServiceStart('BDArKit', 4);
DeleteService('BDArKit');
SetServiceStart('bd0005', 4);
DeleteService('bd0005');
SetServiceStart('bd0003', 4);
DeleteService('bd0003');
SetServiceStart('bd0001', 4);
DeleteService('bd0001');
DeleteService('QQRepair3fd');
DeleteService('QQRepair12e3');
DeleteService('QQPCRTP');
DeleteService('BDKVRTP');
DeleteService('BDMRTP');
DeleteService('27795');
QuarantineFile('C:\Windows\system32\drivers\itdrvr_vt_1_10_0_25.sys','');
DeleteFile('C:\Windows\system32\DRIVERS\bd0001.sys','32');
DeleteFile('C:\Windows\system32\DRIVERS\bd0003.sys','32');
DeleteFile('C:\Windows\system32\DRIVERS\bd0005.sys','32');
DeleteFile('C:\Windows\system32\DRIVERS\BDArKit.sys','32');
DeleteFile('C:\Windows\system32\DRIVERS\BDFileDefend.sys','32');
DeleteFile('C:\Windows\system32\DRIVERS\BDMNetMon.sys','32');
DeleteFile('C:\Windows\system32\DRIVERS\BDMWrench_x64.sys','32');
DeleteFile('C:\Windows\system32\drivers\itdrvr_vt_1_10_0_25.sys','32');
DeleteFile('C:\Windows\system32\Drivers\TAOAccelerator64.sys','32');
DeleteFile('C:\Windows\System32\Drivers\TAOKernel64.sys','32');
DeleteFile('C:\Windows\system32\Drivers\TFsFltX64.sys','32');
DeleteFile('C:\Program Files (x86)\Baidu\BaiduSd\4.1.0.7423\BaiduSdSvc.exe','32');
DeleteFile('C:\Program Files (x86)\Baidu\BaiduSd\BaiduAn\4.0.0.5166\BaiduAnSvc.exe','32');
DeleteFile('C:\Windows\TXPCGJ\Fix\QQRepair3fd','32');
DeleteFile('C:\Windows\TXPCGJ\Fix\QQRepair12e3','32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCRtp.exe','32');
DeleteFile('C:\Windows\system32\drivers\ccnfd_1_10_0_2.sys','32');
DeleteFile('C:\Windows\system32\DRIVERS\bd0002.sys','32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QMUdisk64.sys','32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQSysMonX64.sys','32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\TS888x64.sys','32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\tscpm64.sys','32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\TsDefenseBT64.sys','32');
DeleteFile('C:\Windows\system32\drivers\tsskx64.sys','32');
DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\TSSysKit64.sys','32');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','twpctawqum');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','C');
DeleteFile('C:\Program Files (x86)\CinemaPlus12bV14.02\71b70bd4-8300-45e8-b77d-d628be2deea9.exe','32');
DeleteFile('C:\Program Files (x86)\CinemaPlus12bV14.02\ec85292a-2600-4bef-a6ce-5bd297ff2cb8-10.exe','32');
DeleteFile('C:\Program Files (x86)\CinemaPlus12bV14.02\ec85292a-2600-4bef-a6ce-5bd297ff2cb8-5.exe','32');
DeleteFile('C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe','32');
DeleteFile('C:\Windows\Tasks\ec85292a-2600-4bef-a6ce-5bd297ff2cb8-5_user.job','32');
DeleteFile('C:\Windows\Tasks\ec85292a-2600-4bef-a6ce-5bd297ff2cb8-10_user.job','32');
DeleteFile('C:\Windows\Tasks\71b70bd4-8300-45e8-b77d-d628be2deea9.job','32');
DeleteFile('C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job','32');
DeleteFile('C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job','32');
DeleteFile('C:\Windows\Tasks\MXFMWSKL.job','32');
DeleteFile('C:\Windows\Tasks\newSI_1008.job','32');
DeleteFile('C:\Windows\Tasks\newSI_1019.job','32');
DeleteFile('C:\Windows\Tasks\Update Service for Torrent Search.job','32');
DeleteFile('C:\Windows\Tasks\Update Service for Torrent Search2.job','32');
DeleteFile('C:\Users\Администратор\AppData\Roaming\newSI_1008\s_inst.exe','32');
DeleteFile('C:\Users\Администратор\AppData\Roaming\newSI_1019\s_inst.exe','32');
DeleteFile('C:\Windows\system32\Tasks\globalUpdateUpdateTaskMachineCore','64');
DeleteFile('C:\Windows\system32\Tasks\globalUpdateUpdateTaskMachineUA','64');
DeleteFile('C:\Users\Администратор\AppData\Local\SystemDir\nethost.exe','32');
DeleteFile('C:\Users\836D~1\AppData\Local\Temp\R.vbs','32');
DeleteFile('C:\Windows\system32\Tasks\nethost task','64');
DeleteFile('C:\Windows\system32\Tasks\newSI_1008','64');
DeleteFile('C:\Windows\system32\Tasks\newSI_1019','64');
DeleteFile('C:\Windows\system32\Tasks\Reimage Reminder','64');
DeleteFile('C:\Windows\system32\Tasks\RestoreSearch','64');
DeleteFile('C:\Windows\system32\Tasks\Super Optimizer Schedule','64');
DeleteFile('C:\Windows\system32\Tasks\Update Service for Torrent Search','64');
DeleteFile('C:\Windows\system32\Tasks\Update Service for Torrent Search2','64');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.
Будет выполнена перезагрузка компьютера.