Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
TerminateProcessByName('c:\program files\askbardis\bar\bin\askupgrade.exe');
QuarantineFile('c:\program files\askbardis\bar\bin\askupgrade.exe','');
DelBHO('{C94E154B-1459-4A47-966B-4B843BEFC7DB}');
DelBHO('{201f27d4-3704-41d6-89c1-aa35e39143ed}');
DelBHO('{3041d03e-fd4b-44e0-b742-2d9b88305f98}');
QuarantineFile('C:\RECYCLER\S-1-5-21-9476658815-8696042551-997659222-5770\wnzip32.exe,explorer.exe,C:\RECYCLER\S-1-5-21-7616906604-0058631187-141036712-3663\wmfcgr.exe,Explorer.exe','');
QuarantineFile('C:\RECYCLER\S-1-5-21-7616906604-0058631187-141036712-3663\wmfcgr.exe','');
TerminateProcessByName('c:\windows\ccdrive32.exe');
QuarantineFile('c:\windows\ccdrive32.exe','');
QuarantineFile('c:\windows\temp\967.exe','');
TerminateProcessByName('c:\windows\temp\898.exe');
QuarantineFile('c:\windows\temp\898.exe','');
TerminateProcessByName('c:\windows\temp\868.exe');
QuarantineFile('c:\windows\temp\868.exe','');
TerminateProcessByName('c:\windows\temp\740.exe');
QuarantineFile('c:\windows\temp\740.exe','');
TerminateProcessByName('c:\windows\temp\681.exe');
QuarantineFile('c:\windows\temp\681.exe','');
TerminateProcessByName('c:\windows\temp\650.exe');
QuarantineFile('c:\windows\temp\650.exe','');
TerminateProcessByName('c:\windows\temp\574.exe');
QuarantineFile('c:\windows\temp\574.exe','');
TerminateProcessByName('c:\windows\temp\555.exe');
QuarantineFile('c:\windows\temp\555.exe','');
TerminateProcessByName('c:\windows\temp\549.exe');
QuarantineFile('c:\windows\temp\549.exe','');
TerminateProcessByName('c:\windows\temp\535.exe');
QuarantineFile('c:\windows\temp\535.exe','');
TerminateProcessByName('c:\windows\temp\530.exe');
QuarantineFile('c:\windows\temp\530.exe','');
TerminateProcessByName('c:\windows\temp\456.exe');
QuarantineFile('c:\windows\temp\456.exe','');
TerminateProcessByName('c:\windows\temp\397.exe');
QuarantineFile('c:\windows\temp\397.exe','');
TerminateProcessByName('c:\windows\temp\272.exe');
QuarantineFile('c:\windows\temp\272.exe','');
TerminateProcessByName('c:\windows\temp\249.exe');
QuarantineFile('c:\windows\temp\249.exe','');
TerminateProcessByName('c:\windows\temp\193.exe');
QuarantineFile('c:\windows\temp\193.exe','');
TerminateProcessByName('c:\windows\temp\126.exe');
QuarantineFile('c:\windows\temp\126.exe','');
TerminateProcessByName('c:\windows\temp\095.exe');
QuarantineFile('c:\windows\temp\095.exe','');
TerminateProcessByName('c:\windows\temp\092.exe');
TerminateProcessByName('c:\windows\temp\026.exe');
QuarantineFile('c:\windows\temp\092.exe','');
QuarantineFile('c:\windows\temp\026.exe','');
DeleteFile('c:\windows\temp\026.exe');
DeleteFile('c:\windows\temp\092.exe');
DeleteFile('c:\windows\temp\095.exe');
DeleteFile('c:\windows\temp\126.exe');
DeleteFile('c:\windows\temp\193.exe');
DeleteFile('c:\windows\temp\249.exe');
DeleteFile('c:\windows\temp\272.exe');
DeleteFile('c:\windows\temp\397.exe');
DeleteFile('c:\windows\temp\456.exe');
DeleteFile('c:\windows\temp\530.exe');
DeleteFile('c:\windows\temp\535.exe');
DeleteFile('c:\windows\temp\549.exe');
DeleteFile('c:\windows\temp\555.exe');
DeleteFile('c:\windows\temp\574.exe');
DeleteFile('c:\windows\temp\650.exe');
DeleteFile('c:\windows\temp\681.exe');
DeleteFile('c:\windows\temp\740.exe');
DeleteFile('c:\windows\temp\868.exe');
DeleteFile('c:\windows\temp\898.exe');
DeleteFile('c:\windows\temp\967.exe');
DeleteFile('c:\windows\ccdrive32.exe');
DeleteFile('C:\RECYCLER\S-1-5-21-7616906604-0058631187-141036712-3663\wmfcgr.exe');
DeleteFile('C:\RECYCLER\S-1-5-21-9476658815-8696042551-997659222-5770\wnzip32.exe,explorer.exe,C:\RECYCLER\S-1-5-21-7616906604-0058631187-141036712-3663\wmfcgr.exe,Explorer.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','Microsoft Driver Setup');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','Microsoft Driver Setup');
DeleteFile('C:\Program Files\AskBarDis\bar\bin\askBar.dll');
DeleteFile('C:\Program Files\AskSearch\bin\DefaultSearch.dll');
DeleteFile('c:\program files\askbardis\bar\bin\askupgrade.exe');
QuarantineFile('C:\WINDOWS\system32\zviwpk.dll','');
DeleteFile('C:\WINDOWS\system32\zviwpk.dll');
QuarantineFile('C:\WINDOWS\Temp\533.exe','');
DeleteFile('C:\WINDOWS\Temp\533.exe');
QuarantineFile('C:\WINDOWS\Temp\967.exe','');
DeleteFile('C:\WINDOWS\Temp\967.exe');
DeleteFileMask('C:\Program Files\AskSearch', '*.*', true);
DeleteDirectory('C:\Program Files\AskSearch');
DeleteFileMask('c:\program files\askbardis', '*.*', true);
DeleteDirectory('c:\program files\askbardis');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows NT\CurrentVersion\Winlogon','Taskman');
DeleteFileMask('%Tmp%', '*.*', true);
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
Компьютер перезагрузится.