Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('C:\WINDOWS\sysdriver32_.exe','');
QuarantineFile('C:\WINDOWS\TEMP\9778437.exe','');
QuarantineFile('C:\WINDOWS\TEMP\9090927.exe','');
QuarantineFile('C:\WINDOWS\TEMP\8700545.exe','');
QuarantineFile('C:\WINDOWS\TEMP\8143947.exe','');
QuarantineFile('C:\WINDOWS\TEMP\5227383.exe','');
QuarantineFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\9310925.exe','');
QuarantineFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\8373791.exe','');
SetServiceStart('wxpdrivers', 4);
DeleteService('wxpdrivers');
SetServiceStart('srviecheck', 4);
DeleteService('srviecheck');
TerminateProcessByName('c:\windows\systemup.exe');
QuarantineFile('c:\windows\systemup.exe','');
TerminateProcessByName('c:\windows\sysdriver32.exe');
QuarantineFile('c:\windows\sysdriver32.exe','');
TerminateProcessByName('c:\windows\update.1\svchost.exe');
QuarantineFile('c:\windows\update.1\svchost.exe','');
TerminateProcessByName('c:\windows\update.2\svchost.exe');
QuarantineFile('c:\windows\update.2\svchost.exe','');
TerminateProcessByName('c:\windows\services32.exe');
QuarantineFile('c:\windows\services32.exe','');
TerminateProcessByName('c:\windows\l1rezerv.exe');
QuarantineFile('c:\windows\l1rezerv.exe','');
DeleteFile('c:\windows\l1rezerv.exe');
DeleteFile('c:\windows\services32.exe');
DeleteFile('c:\windows\update.2\svchost.exe');
DeleteFile('c:\windows\update.1\svchost.exe');
DeleteFile('c:\windows\sysdriver32.exe');
DeleteFile('c:\windows\systemup.exe');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\8373791.exe');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\9310925.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','9310925.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','8373791.exe');
DeleteFile('C:\WINDOWS\TEMP\5227383.exe');
DeleteFile('C:\WINDOWS\TEMP\8143947.exe');
DeleteFile('C:\WINDOWS\TEMP\8700545.exe');
DeleteFile('C:\WINDOWS\TEMP\9090927.exe');
DeleteFile('C:\WINDOWS\TEMP\9778437.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','5227383.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','8143947.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','8700545.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','9090927.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','9778437.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','l1rezerv.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','wxpdrv');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','sysdriver32.exe');
DeleteFile('C:\WINDOWS\sysdriver32_.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','sysdriver32_.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','systemup');
DeleteFile('services32.exe');
DeleteFile('C:\Program Files\mediabar toolbar\rubarbroker.exe');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
ExecuteRepair(13);
RebootWindows(true);
end.
Компьютер перезагрузится.