Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
QuarantineFile('C:\Program Files\vk downloader\ieef\interfaces32.dll','');
QuarantineFile('C:\Program Files\globalupdate\update\1.3.25.0\psuser.dll','');
QuarantineFile('C:\Program Files\globalupdate\update\1.3.25.0\psmachine.dll','');
QuarantineFile('C:\Program Files\globalupdate\update\1.3.25.0\goopdateres_en.dll','');
QuarantineFile('C:\Program Files\globalupdate\update\1.3.25.0\goopdate.dll','');
QuarantineFile('C:\Program Files\globalupdate\update\1.3.25.0\globalupdateondemand.exe','');
QuarantineFile('C:\Program Files\globalupdate\update\1.3.25.0\globalupdatebroker.exe','');
QuarantineFile('C:\Users\Денисенко\appdata\local\microsoft\start menu\вoйти в интeрнeт.exe','');
QuarantineFile('C:\Program Files\Zaxar\ZaxarLoader.exe','');
QuarantineFile('C:\Users\Денисенко\AppData\Roaming\TextEditor\Daemon\TextEditor.exe','');
QuarantineFile('C:\Users\Денисенко\AppData\Local\Kometa\Application\kometa.exe','');
QuarantineFile('C:\Users\Денисенко\AppData\Local\Kometa\kometaup.exe','');
DeleteService('OSFMount');
DeleteService('QMUdisk');
DeleteService('softaal');
DeleteService('TSDEFENSEBT');
DeleteService('TSKSP');
DeleteService('TSSK');
DeleteService('TSSYSKIT');
DeleteService('sosiceqy');
DeleteService('roqenufe');
DeleteService('SSFK');
DeleteService('TDataSvr');
DeleteService('updaad');
DeleteService('VideoSaverSvc');
DeleteService('WdsManPro');
DeleteService('WindowsMangerProtect');
DeleteService('woforemu');
DeleteService('wucotusy');
DeleteService('zigipyro');
QuarantineFile('C:\Users\Денисенко\AppData\Local\00000000-1452630507-0000-0000-0021853AC668\qnsmFA86.tmp','');
QuarantineFile('C:\Program Files\00000000-1452435401-0000-0000-0021853AC668\hnsk2BB5.tmp','');
QuarantineFile('C:\Users\Денисенко\AppData\Local\00000000-1449687005-0000-0000-0021853AC668\snsd257F.tmp','');
QuarantineFile('C:\ProgramData\Tmp0x0x\ProtectWindowsManager.exe','');
QuarantineFile('C:\ProgramData\HWdsManProH\WdsManPro.exe','');
QuarantineFile('C:\Program Files\Video Saver 2\svc\Service.exe','');
QuarantineFile('C:\Users\Денисенко\AppData\Local\Villalab.exe','');
QuarantineFile('C:\Program Files\TDataDld\TData.exe','');
QuarantineFile('C:\Program Files\SFK\SSFK.exe','');
QuarantineFile('C:\Program Files\00000000-1444843562-0000-0000-0021853AC668\knso90C7.tmp','');
QuarantineFile('C:\Program Files\00000000-1449679647-0000-0000-0021853AC668\jnscFE5D.tmp','');
DeleteService('QQRepair239d');
DeleteService('QQRepair1f1c');
DeleteService('QQRepair1b26');
DeleteService('QQPCRTP');
DeleteService('hidekoqe');
DeleteService('hotnic32');
DeleteService('kutocize');
DeleteService('mymyqyfozbt');
DeleteService('nyneryxo');
QuarantineFile('C:\Program Files\00000000-1449679647-0000-0000-0021853AC668\hnsc192F.tmp','');
QuarantineFile('C:\Program Files\00000000-1452435401-0000-0000-0021853AC668\knsj69D5.tmp','');
QuarantineFile('C:\Program Files\00000000-1449679647-0000-0000-0021853AC668\knsuB68D.tmp','');
QuarantineFile('C:\Users\Денисенко\AppData\Local\00000000-1450208484-0000-0000-0021853AC668\qnshCE97.tmp','');
QuarantineFile('HHandler Service.sys','');
DeleteService('HHandler Service');
DeleteService('ginoquci');
DeleteService('globalUpdate');
DeleteService('globalUpdatem');
QuarantineFile('C:\Program Files\globalUpdate\Update\globalupdate.exe','');
QuarantineFile('C:\Users\CABF~1\AppData\Local\Temp\nsqD1ED.tmp','');
DeleteService('cuzodocy');
DeleteService('dijojyvi');
DeleteService('dipubibu');
DeleteService('FinwarmSvc');
QuarantineFile('C:\Users\CABF~1\AppData\Local\Temp\Jwy78x\runner.exe','');
QuarantineFile('C:\Users\Денисенко\AppData\Local\00000000-1444854435-0000-0000-0021853AC668\snsnB7CF.tmp','');
QuarantineFile('C:\Program Files\00000000-1444843562-0000-0000-0021853AC668\hnsxF5B9.tmp','');
QuarantineFile('C:\Program Files\00000000-1444843562-0000-0000-0021853AC668\jnsdDC3F.tmp','');
DeleteFile('C:\Program Files\00000000-1444843562-0000-0000-0021853AC668\jnsdDC3F.tmp','32');
DeleteFile('C:\Program Files\00000000-1444843562-0000-0000-0021853AC668\hnsxF5B9.tmp','32');
DeleteFile('C:\Users\Денисенко\AppData\Local\00000000-1444854435-0000-0000-0021853AC668\snsnB7CF.tmp','32');
DeleteFile('C:\Users\CABF~1\AppData\Local\Temp\Jwy78x\runner.exe','32');
DeleteFile('C:\Users\CABF~1\AppData\Local\Temp\nsqD1ED.tmp','32');
DeleteFile('C:\Program Files\globalUpdate\Update\globalupdate.exe','32');
DeleteFile('HHandler Service.sys','32');
DeleteFile('C:\Users\Денисенко\AppData\Local\00000000-1450208484-0000-0000-0021853AC668\qnshCE97.tmp','32');
DeleteFile('C:\Program Files\00000000-1449679647-0000-0000-0021853AC668\knsuB68D.tmp','32');
DeleteFile('C:\Program Files\00000000-1452435401-0000-0000-0021853AC668\knsj69D5.tmp','32');
DeleteFile('C:\Program Files\00000000-1449679647-0000-0000-0021853AC668\hnsc192F.tmp','32');
DeleteFile('hotnic32.sys','32');
DeleteFile('C:\Windows\GJFix\QQRepair239d','32');
DeleteFile('C:\Windows\GJFix\QQRepair1f1c','32');
DeleteFile('C:\Windows\GJFix\QQRepair1b26','32');
DeleteFile('C:\Program Files\Tencent\QQPCMgr\11.2.17063.223\QQPCRtp.exe','32');
DeleteFile('C:\Program Files\00000000-1449679647-0000-0000-0021853AC668\jnscFE5D.tmp','32');
DeleteFile('C:\Program Files\00000000-1444843562-0000-0000-0021853AC668\knso90C7.tmp','32');
DeleteFile('C:\Program Files\SFK\SSFK.exe','32');
DeleteFile('C:\Program Files\TDataDld\TData.exe','32');
DeleteFile('C:\Users\Денисенко\AppData\Local\Villalab.exe','32');
DeleteFile('C:\Program Files\Video Saver 2\svc\Service.exe','32');
DeleteFile('C:\ProgramData\HWdsManProH\WdsManPro.exe','32');
DeleteFile('C:\ProgramData\Tmp0x0x\ProtectWindowsManager.exe','32');
DeleteFile('C:\Users\Денисенко\AppData\Local\00000000-1449687005-0000-0000-0021853AC668\snsd257F.tmp','32');
DeleteFile('C:\Program Files\00000000-1452435401-0000-0000-0021853AC668\hnsk2BB5.tmp','32');
DeleteFile('C:\Users\Денисенко\AppData\Local\00000000-1452630507-0000-0000-0021853AC668\qnsmFA86.tmp','32');
DeleteFile('C:\Program Files\Tencent\QQPCMgr\11.2.17063.223\QMUdisk.sys','32');
DeleteFile('C:\Program Files\Tencent\QQPCMgr\11.2.17063.223\softaal.sys','32');
DeleteFile('C:\Windows\system32\DRIVERS\TSDefenseBt.sys','32');
DeleteFile('C:\Program Files\Tencent\QQPCMgr\11.2.17063.223\TSKsp.sys','32');
DeleteFile('C:\Windows\system32\tssk.sys','32');
DeleteFile('C:\Program Files\Tencent\QQPCMgr\11.2.17063.223\TSSysKit.sys','32');
DeleteFile('C:\Users\Денисенко\AppData\Local\Kometa\kometaup.exe','32');
DeleteFile('C:\Users\Денисенко\AppData\Local\Kometa\Application\kometa.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KometaAutoLaunch_652A0C0F5D862185262A8D62FF6067A3','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\kometaup','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\rifrdairfn','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TextEditor','command');
DeleteFile('C:\Users\Денисенко\AppData\Roaming\TextEditor\Daemon\TextEditor.exe','32');
DeleteFile('C:\Program Files\Zaxar\ZaxarLoader.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ZaxarLoader','command');
DeleteFile('C:\Program Files\RCP\RegCleanPro.exe','32');
DeleteFile('C:\Windows\system32\Tasks\regclean pro_updates','32');
DeleteFile('C:\Windows\system32\Tasks\regclean pro_default','32');
DeleteFile('C:\Windows\system32\Tasks\RegClean Pro','32');
DeleteFile('C:\Users\Денисенко\appdata\local\microsoft\start menu\вoйти в интeрнeт.exe','32');
DeleteFile('C:\Program Files\globalupdate\update\1.3.25.0\globalupdatebroker.exe','32');
DeleteFile('C:\Program Files\globalupdate\update\1.3.25.0\globalupdateondemand.exe','32');
DeleteFile('C:\Program Files\globalupdate\update\1.3.25.0\goopdate.dll','32');
DeleteFile('C:\Program Files\globalupdate\update\1.3.25.0\goopdateres_en.dll','32');
DeleteFile('C:\Program Files\globalupdate\update\1.3.25.0\psmachine.dll','32');
DeleteFile('C:\Program Files\globalupdate\update\1.3.25.0\psuser.dll','32');
DeleteFile('C:\Program Files\vk downloader\ieef\interfaces32.dll','32');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.
Будет выполнена перезагрузка компьютера.