Код:
begin
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
ClearQuarantineEx(true);
QuarantineFileF('c:\program files (x86)\kinoroom browser', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', true, '', 0 , 0);
QuarantineFileF('c:\programdata\microsoft\macromed\flash player\c7acabcb-dee0-469d-9408-82b705f3ccd7', '*', true, '', 0 , 0);
QuarantineFileF('c:\programdata\krb updater utility', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', true, '', 0 , 0);
QuarantineFile('C:\Program Files (x86)\Kinoroom Browser\krbrowser.exe', '');
QuarantineFileF('C:\Users\Сергей\AppData\Local\FileSystemDriver\', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', true, '', 0, 0);
QuarantineFileF('C:\Users\Сергей\appdata\local\microsoft\redist\', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', true, '', 0, 0);
QuarantineFile('C:\Users\Сергей\appdata\local\microsoft\redist\vcredist.exe', '');
QuarantineFileF('C:\Users\Сергей\AppData\Local\fupdate', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', true, '', 0, 0);
QuarantineFileF('C:\Users\Сергей\appdata\local\searchgo\', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', true, '', 0, 0);
QuarantineFileF('C:\Program Files (x86)\Torrent Search', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', true, '', 0, 0);
QuarantineFile('C:\Users\Сергей\AppData\LocalLow\SearchGo\searchgo.dll', '');
QuarantineFile('C:\Program Files (x86)\Torrent Search\IEEF\oRfBqFdMWD84.dll', '');
QuarantineFile('C:\ProgramData\Microsoft\Macromed\Flash Player\C7ACABCB-DEE0-469D-9408-82B705F3CCD7\31DA4442-E3D3-4498-AE93-E27383259655.exe', '');
QuarantineFile('C:\ProgramData\KRB Updater Utility\krbupdater.exe', '');
QuarantineFile('C:\Users\Сергей\AppData\Local\fupdate\fupdate.exe', '');
DeleteFile('C:\Users\Сергей\appdata\local\microsoft\redist\vcredist.exe');
DeleteFile('C:\Program Files (x86)\Torrent Search\IEEF\oRfBqFdMWD84.dll', '32');
DeleteFile('C:\Users\Сергей\AppData\LocalLow\SearchGo\searchgo.dll', '32');
DeleteFile('C:\Users\Сергей\AppData\Local\fupdate\fupdate.exe');
DeleteFile('C:\Program Files (x86)\Kinoroom Browser\krbrowser.exe', '32');
DeleteFile('C:\ProgramData\Microsoft\Macromed\Flash Player\C7ACABCB-DEE0-469D-9408-82B705F3CCD7\31DA4442-E3D3-4498-AE93-E27383259655.exe', '32');
DeleteFile('C:\ProgramData\KRB Updater Utility\krbupdater.exe', '32');
ExecuteFile('schtasks.exe', '/delete /TN "FileSystemDriver" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "fupdate" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "PED_Torrent_Search" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "SearchGo Task" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "Update Service for Torrent Search" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "Update Service for Torrent Search2" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "KRB Updater Utility Service" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "KRBLNKRUN" /F', 0, 15000, true);
ExecuteFile('schtasks.exe', '/delete /TN "AC7ACABCB-DEE0-469D-9408-82B705F3CCD7" /F', 0, 15000, true);
DeleteFileMask('C:\Users\Сергей\AppData\Local\FileSystemDriver\', '*', true);
DeleteFileMask('C:\Users\Сергей\appdata\local\searchgo\', '*', true);
DeleteFileMask('C:\Program Files (x86)\Torrent Search', '*', true);
DeleteFileMask('c:\program files (x86)\kinoroom browser', '*', true);
DeleteFileMask('c:\programdata\krb updater utility', '*', true);
DeleteDirectory('C:\Users\Сергей\AppData\Local\FileSystemDriver\');
DeleteDirectory('C:\Users\Сергей\appdata\local\searchgo\');
DeleteDirectory('C:\Program Files (x86)\Torrent Search');
DeleteDirectory('c:\program files (x86)\kinoroom browser');
DeleteDirectory('c:\programdata\krb updater utility');
DelBHO('{2BC46CFA-4B00-4193-A7BD-6AD1D0BCB5BC}');
DelBHO('{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}');
DelBHO('{6E727987-C8EA-44DA-8749-310C0FBE3C3E}');
RegKeyParamDel('HKEY_LOCAL_MACHINE', 'Software\Microsoft\Windows\CurrentVersion\Run', 'Kinoroom Browser');
RegKeyParamDel('HKEY_CURRENT_USER', 'Software\Microsoft\Windows\CurrentVersion\Run', 'oafizzdfom');
RegKeyParamDel('HKEY_LOCAL_MACHINE', 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run', 'C7ACABCB-DEE0-469D-9408-82B705F3CCD7');
CreateQurantineArchive(GetAVZDirectory + 'quarantine.zip');
ExecuteSysClean;
ExecuteRepair(1);
ExecuteWizard('SCU', 2, 3, true);
RebootWindows(true);
end.