Код:
begin
TerminateProcessByName('C:\Users\Smurfiki\AppData\Roaming\cpuminer\cpm.exe');
TerminateProcessByName('c:\program files (x86)\27b7cd80-1457601741-11dd-8f8d-74d02b7f9d67\knsg57a0.tmpfs');
TerminateProcessByName('c:\programdata\msiql.exe');
TerminateProcessByName('c:\program files (x86)\badu\uc.exe');
StopService('dovirucozbt');
StopService('31D8EF3');
StopService('4F97E7B338E718F6');
QuarantineFileF('C:\Users\Smurfiki\AppData\Roaming\cpuminer', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', true, '', 0 , 0);
QuarantineFile('C:\Users\Smurfiki\AppData\Roaming\cpuminer\cpm.exe', '');
QuarantineFile('c:\program files (x86)\27b7cd80-1457601741-11dd-8f8d-74d02b7f9d67\knsg57a0.tmpfs', '');
QuarantineFile('c:\programdata\msiql.exe', '');
QuarantineFile('c:\program files (x86)\badu\uc.exe', '');
QuarantineFile('C:\ProgramData\Windows Update\svrupg.exe', '');
QuarantineFile('C:\Program Files (x86)\HpDef\GUjnY3.exe', '');
QuarantineFile('C:\Program Files (x86)\UCBrowser\Application\UCService.exe', '');
QuarantineFile('C:\Windows\TEMP\31D8EF3.sys', '');
QuarantineFile('C:\Windows\TEMP\543F7E6.sys', '');
QuarantineFile('C:\Program Files (x86)\badu\Uninst.exe', '');
QuarantineFile('D:\Documents\systemfile.exe', '');
QuarantineFile('C:\ProgramData\HomePage.exe', '');
QuarantineFile('C:\Program Files (x86)\UCBrowser\Application\UUC0789.exe', '');
QuarantineFile('C:\Program Files (x86)\Max Driver Updater\idscservice.exe', '');
QuarantineFile('C:\Program Files (x86)\ver1PassShow\y1PassShowr78.exe', '');
QuarantineFile('C:\Program Files (x86)\WinTaske\WinTaske\WinTaske.exe', '');
QuarantineFile('C:\Program Files\contentprotector\condefclean.exe', '');
QuarantineFile('C:\Program Files\contentprotector\condefupdateps.dll', '');
QuarantineFile('C:\Program Files\contentprotector\conprotsetup.exe', '');
QuarantineFile('C:\Program Files\contentprotector\contentprotectorconrol.exe', '');
QuarantineFile('C:\Program Files\contentprotector\contentprotector.exe', '');
QuarantineFile('C:\Program Files\contentprotector\contentprotectorupdate.exe', '');
QuarantineFile('C:\Program Files\contentprotector\import_root_cert.exe', '');
QuarantineFile('C:\Program Files\contentprotector\nfregdrv.exe', '');
QuarantineFile('C:\Program Files\contentprotector\nss\certutil.exe', '');
DeleteFile('C:\Windows\Tasks\PassShow Update.job', '64');
DeleteFile('C:\Users\Smurfiki\AppData\Roaming\cpuminer\cpm.exe', '32');
DeleteFile('c:\program files (x86)\27b7cd80-1457601741-11dd-8f8d-74d02b7f9d67\knsg57a0.tmpfs', '32');
DeleteFile('c:\programdata\msiql.exe', '32');
DeleteFile('c:\program files (x86)\badu\uc.exe', '32');
DeleteFile('C:\ProgramData\Windows Update\svrupg.exe', '32');
DeleteFile('C:\Program Files (x86)\HpDef\GUjnY3.exe', '32');
DeleteFile('C:\Program Files (x86)\UCBrowser\Application\UCService.exe', '32');
DeleteFile('C:\Windows\TEMP\31D8EF3.sys', '32');
DeleteFile('C:\Windows\TEMP\543F7E6.sys', '32');
DeleteFile('C:\Program Files (x86)\badu\Uninst.exe', '32');
DeleteFile('D:\Documents\systemfile.exe', '32');
DeleteFile('C:\ProgramData\HomePage.exe', '32');
DeleteFile('C:\Program Files (x86)\UCBrowser\Application\UUC0789.exe', '32');
DeleteFile('C:\Program Files (x86)\Max Driver Updater\idscservice.exe', '32');
DeleteFile('C:\Program Files (x86)\ver1PassShow\y1PassShowr78.exe', '32');
DeleteFile('C:\Program Files (x86)\WinTaske\WinTaske\WinTaske.exe', '32');
DeleteFile('C:\Program Files\contentprotector\condefclean.exe', '32');
DeleteFile('C:\Program Files\contentprotector\condefupdateps.dll', '32');
DeleteFile('C:\Program Files\contentprotector\conprotsetup.exe', '32');
DeleteFile('C:\Program Files\contentprotector\contentprotectorconrol.exe', '32');
DeleteFile('C:\Program Files\contentprotector\contentprotector.exe', '32');
DeleteFile('C:\Program Files\contentprotector\contentprotectorupdate.exe', '32');
DeleteFile('C:\Program Files\contentprotector\import_root_cert.exe', '32');
DeleteFile('C:\Program Files\contentprotector\nfregdrv.exe', '32');
DeleteFile('C:\Program Files\contentprotector\nss\certutil.exe', '32');
DeleteService('dovirucozbt');
DeleteService('GoogleChromeUpSvc');
DeleteService('HSystem');
DeleteService('UCBrowserSvc');
DeleteService('31D8EF3');
DeleteService('4F97E7B338E718F6');
DeleteFileMask('C:\Users\Smurfiki\AppData\Roaming\cpuminer', '*', true);
DeleteFileMask('c:\program files (x86)\badu', '*', true);
DeleteFileMask('C:\ProgramData\Windows Update', '*', true);
DeleteFileMask('C:\Program Files (x86)\HpDef', '*', true);
DeleteFileMask('C:\Program Files (x86)\UCBrowser', '*', true);
DeleteFileMask('C:\Program Files (x86)\Max Driver Updater', '*', true);
DeleteFileMask('C:\Program Files (x86)\ver1PassShow', '*', true);
DeleteFileMask('C:\Program Files (x86)\WinTaske', '*', true);
DeleteFileMask('C:\Program Files\contentprotector', '*', true);
DeleteDirectory('C:\Users\Smurfiki\AppData\Roaming\cpuminer');
DeleteDirectory('c:\program files (x86)\badu');
DeleteDirectory('C:\ProgramData\Windows Update');
DeleteDirectory('C:\Program Files (x86)\HpDef');
DeleteDirectory('C:\Program Files (x86)\UCBrowser');
DeleteDirectory('C:\Program Files (x86)\Max Driver Updater');
DeleteDirectory('C:\Program Files (x86)\ver1PassShow');
DeleteDirectory('C:\Program Files (x86)\WinTaske');
DeleteDirectory('C:\Program Files\contentprotector');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "PassShow Update" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "WinTaske" /F', 0, 15000, true);
RegKeyParamDel('HKEY_LOCAL_MACHINE', 'Software\Microsoft\Windows\CurrentVersion\Run', 'apphide');
RegKeyParamDel('HKEY_LOCAL_MACHINE', 'Software\Microsoft\Windows\CurrentVersion\Run', 'pcmgr');
RegKeyParamDel('HKEY_LOCAL_MACHINE', 'Software\Microsoft\Windows\CurrentVersion\Run', 'SystemClose');
RegKeyParamDel('HKEY_LOCAL_MACHINE', 'Software\Microsoft\Windows\CurrentVersion\Run', 'HomePageHelper');
RegKeyParamDel('HKEY_CURRENT_USER', 'Software\Microsoft\Windows\CurrentVersion\Run', 'svchost0');
RegKeyParamDel('HKEY_CURRENT_USER', 'Software\Microsoft\Windows\CurrentVersion\Run', 'apphide');
RegKeyParamDel('HKEY_CURRENT_USER', 'Software\Microsoft\Windows\CurrentVersion\Run', 'msiql');
RegKeyParamDel('HKEY_LOCAL_MACHINE', 'Software\Microsoft\Windows\CurrentVersion\Run', 'cpuminer');
RegKeyParamDel('HKEY_LOCAL_MACHINE', 'Software\Microsoft\Windows\CurrentVersion\Run', 'IDSCPRODUCT');
ExecuteSysClean;
ExecuteRepair(3);
ExecuteWizard('SCU', 2, 2, true);
RebootWindows(true);
end.
Компьютер перезагрузится.