Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.'+#13#10+'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
StopService('CloudPrinter');
StopService('dowidoly');
StopService('fisusyscheduleCherbsy.exe');
StopService('Lamzap');
StopService('ProntSpooler');
StopService('rijufoze');
StopService('wijijofuzbt');
StopService('zigipyro');
DeleteService('CloudPrinter');
DeleteService('dowidoly');
DeleteService('fisusyscheduleCherbsy.exe');
DeleteService('Lamzap');
DeleteService('ProntSpooler');
DeleteService('rijufoze');
DeleteService('wijijofuzbt');
DeleteService('zigipyro');
QuarantineFile('C:\Program Files (x86)\1EECD580-1466845978-11B2-8000-B4F9E4CD971A\hnsyDE6C.tmp','');
QuarantineFile('C:\Program Files (x86)\1EECD580-1466845978-11B2-8000-B4F9E4CD971A\jnszC861.tmp','');
QuarantineFile('C:\Program Files (x86)\1EECD580-1466845978-11B2-8000-B4F9E4CD971A\knspAFA3.tmpfs','');
QuarantineFile('C:\Program Files (x86)\badu\uc.exe','');
QuarantineFile('C:\Program Files (x86)\mpck\wincom_TNS.exe','');
QuarantineFile('C:\Program Files (x86)\Shociph\fisusyscheduleCherbsy.exe','');
QuarantineFile('C:\Program Files (x86)\UCBrowser\Application\update_task.exe','');
QuarantineFile('C:\Program Files (x86)\UCBrowser\Application\UUC0789.exe','');
QuarantineFile('C:\Program Files (x86)\Wifisrv\160WifiNetPro64.sys','');
QuarantineFile('C:\Program Files (x86)\Wifisrv\WifiService.exe','');
QuarantineFile('C:\Program Files\їмС№\X86\kuaizipUpdateChecker.dll','');
QuarantineFile('C:\ProgramData\CloudPrinter\CloudPrinter.exe','');
QuarantineFile('C:\ProgramData\Lamzap\Dongplus.dll','');
QuarantineFile('C:\ProgramData\Lamzap\Lamzap.exe','');
QuarantineFile('C:\ProgramData\Lamzap\Zimhome.dll','');
QuarantineFile('C:\Users\Anonimous\AppData\Local\1EECD580-1466856973-11B2-8000-B4F9E4CD971A\qnsj73AD.tmp','');
QuarantineFile('C:\Users\Anonimous\AppData\Local\Apps\2.0\abril.exe','');
QuarantineFile('C:\Users\Anonimous\AppData\Local\Hostinstaller\4038897473_monster.exe','');
QuarantineFile('C:\Users\Anonimous\AppData\Local\MzIzNTM0Mzc=\s_inst.exe','');
QuarantineFile('C:\Users\Anonimous\AppData\Roaming\cpuminer\cpm.exe','');
QuarantineFile('C:\Users\Anonimous\AppData\Roaming\gplyra\gplyra.exe','');
QuarantineFile('C:\Users\Anonimous\AppData\Roaming\UPUpdata\msiql.exe','');
QuarantineFile('C:\Users\Anonimous\AppData\Roaming\UPUpdata\service72564.exe','');
QuarantineFile('C:\Users\Anonimous\AppData\Roaming\UPUpdata\service90132.exe','');
QuarantineFile('C:\Users\Anonimous\AppData\Roaming\UrlControl_\url_opener.exe','');
QuarantineFile('C:\Users\ANONIM~1\AppData\Local\Temp\VirusRemover.exe','');
QuarantineFile('C:\WINDOWS\system32\drivers\KuaiZipDrive.sys','');
QuarantineFile('systwin.exe','');
DeleteFile('C:\Program Files (x86)\1EECD580-1466845978-11B2-8000-B4F9E4CD971A\hnsyDE6C.tmp','32');
DeleteFile('C:\Program Files (x86)\1EECD580-1466845978-11B2-8000-B4F9E4CD971A\jnszC861.tmp','32');
DeleteFile('C:\Program Files (x86)\1EECD580-1466845978-11B2-8000-B4F9E4CD971A\knspAFA3.tmpfs','32');
DeleteFile('C:\Program Files (x86)\badu\uc.exe','32');
DeleteFile('C:\Program Files (x86)\Shociph\fisusyscheduleCherbsy.exe','32');
DeleteFile('C:\Program Files (x86)\UCBrowser\Application\update_task.exe','32');
DeleteFile('C:\Program Files (x86)\UCBrowser\Application\UUC0789.exe','32');
DeleteFile('C:\ProgramData\CloudPrinter\CloudPrinter.exe','32');
DeleteFile('C:\ProgramData\Lamzap\Dongplus.dll','32');
DeleteFile('C:\ProgramData\Lamzap\Lamzap.exe','32');
DeleteFile('C:\ProgramData\Lamzap\Zimhome.dll','32');
DeleteFile('C:\Users\Anonimous\AppData\Local\1EECD580-1466856973-11B2-8000-B4F9E4CD971A\qnsj73AD.tmp','32');
DeleteFile('C:\Users\Anonimous\AppData\Local\Apps\2.0\abril.exe','32');
DeleteFile('C:\Users\Anonimous\AppData\Local\Hostinstaller\4038897473_monster.exe','32');
DeleteFile('C:\Users\Anonimous\AppData\Local\MzIzNTM0Mzc=\s_inst.exe','32');
DeleteFile('C:\Users\Anonimous\AppData\Roaming\cpuminer\cpm.exe','32');
DeleteFile('C:\Users\Anonimous\AppData\Roaming\gplyra\gplyra.exe','32');
DeleteFile('C:\Users\Anonimous\AppData\Roaming\UPUpdata\msiql.exe','32');
DeleteFile('C:\Users\Anonimous\AppData\Roaming\UPUpdata\service72564.exe','32');
DeleteFile('C:\Users\Anonimous\AppData\Roaming\UPUpdata\service90132.exe','32');
DeleteFile('C:\Users\Anonimous\AppData\Roaming\UrlControl_\url_opener.exe','32');
DeleteFile('C:\Users\ANONIM~1\AppData\Local\Temp\VirusRemover.exe','32');
DeleteFile('C:\WINDOWS\system32\Tasks\Soft installer','64');
DeleteFile('C:\WINDOWS\system32\Tasks\tasklist','64');
DeleteFile('C:\WINDOWS\system32\Tasks\VirusRemover','64');
DeleteFile('C:\WINDOWS\Tasks\MzIzNTM0Mzc=.job','32');
DeleteFile('C:\WINDOWS\Tasks\UCBrowserUpdater.job','32');
DeleteFile('C:\WINDOWS\Tasks\UrlControl.job','32');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','apphide2');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','msiql');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','QGuan10in1');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','QGuan10in12');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','svchost0');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','apphide');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','cpuminer');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','gplyra');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\RunOnce','systwin');
BC_ImportALL;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
После выполнения скрипта компьютер перезагрузится.