Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
QuarantineFile('C:\Users\наташа\appdata\locallow\searchgo\searchgo.dll','');
QuarantineFile('C:\Program Files\Sound+\Sound+.exe','');
QuarantineFile('C:\Program Files\Kinoroom Browser\krbrowser.exe','');
QuarantineFile('C:\PROGRA~2\SysWOW64\NNTxp.cmd','');
QuarantineFile('C:\ProgramData\Windows\csrss.exe','');
QuarantineFile('C:\Users\наташа\AppData\Local\Microsoft\F7AB81EAF06AB82F3B0B6AB10ECC155B\087E2B34F299A02F3CF51E878CBB7C50.exe','');
QuarantineFile('C:\Program Files\Common Files\3DFA7AA8-ADB8-4553-B345-922B6BD62AB4\85A80100-1669-4368-9706-271A5A3FCC65.exe','');
QuarantineFile('C:\ProgramData\KRB Updater Utility\krbupdater.exe','');
QuarantineFile('C:\Program Files\Common Files\Adobe\OOBA\PDApp\PPAPI\F5FC1230-CBDF-43A4-93D1-FE6F04D23962.exe','');
DeleteFile('C:\Program Files\Common Files\Adobe\OOBA\PDApp\PPAPI\F5FC1230-CBDF-43A4-93D1-FE6F04D23962.exe','32');
DeleteFile('C:\ProgramData\KRB Updater Utility\krbupdater.exe','32');
DeleteFile('C:\Program Files\Common Files\3DFA7AA8-ADB8-4553-B345-922B6BD62AB4\85A80100-1669-4368-9706-271A5A3FCC65.exe','32');
DeleteFile('C:\Users\наташа\AppData\Local\Microsoft\F7AB81EAF06AB82F3B0B6AB10ECC155B\087E2B34F299A02F3CF51E878CBB7C50.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','BB7C50C878E15FC3F20A992F43087E2BSB');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','AppDownloads');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','KRB Updater Utility');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','E6AC7441-7FDE-4DAC-9776-9664CBB3834A');
DeleteFile('C:\ProgramData\Windows\csrss.exe','32');
DeleteFile('C:\PROGRA~2\SysWOW64\NNTxp.cmd','32');
DeleteFile('C:\Program Files\Kinoroom Browser\krbrowser.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Kinoroom Browser','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Command Line Support','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Client Server Runtime Subsystem','command');
DeleteFile('C:\Program Files\Sound+\Sound+.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sound+','command');
DeleteFile('C:\Windows\system32\Tasks\Microsoft\BB7C50C878E15FC3F20A992F43087E2B','32');
DeleteFile('C:\Windows\system32\Tasks\Microsoft\BB7C50C878E15FC3F20A992F43087E2BSB','32');
DeleteFile('C:\Windows\system32\Tasks\Microsoft\KRBUUS\KRB Updater Utility Service','32');
DeleteFile('C:\Windows\system32\Tasks\Microsoft\KRBUUS\KRBLNKRUN','32');
DeleteFile('C:\Windows\system32\Tasks\Microsoft\Windows\AE6AC7441-7FDE-4DAC-9776-9664CBB3834A','32');
DeleteFile('C:\Windows\system32\Tasks\Microsoft\Windows\BB7C50C878E15FC3F20A992F43087E2B','32');
DeleteFile('C:\Windows\system32\Tasks\Microsoft\Windows\BB7C50C878E15FC3F20A992F43087E2BSB','32');
DeleteFile('C:\Windows\system32\Tasks\{17AAC33D-0E8B-444A-B3BE-0F5EE1EE39CC}','32');
DeleteFile('C:\Windows\system32\Tasks\{34A637D8-4427-437C-854C-BCE4734CB9A4}','32');
DeleteFile('C:\Windows\system32\Tasks\{401D419B-7CCE-4804-B91B-B92651EA876E}','32');
DeleteFile('C:\Windows\system32\Tasks\{7B35A1E3-B94F-4AD2-ABD3-43E5F695A0A5}','32');
DeleteFile('C:\Windows\system32\Tasks\{9DF811B0-8F31-4C41-B35F-B556FCB2E9FE}','32');
DeleteFile('C:\Windows\system32\Tasks\{E60569D1-8764-4EC0-8735-AEC55D3A5C67}','32');
DeleteFile('C:\Users\наташа\appdata\locallow\searchgo\searchgo.dll','32');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.
Будет выполнена перезагрузка компьютера.