Код:
BEGIN
ClearQuarantine;
SearchRootkit(true, true);
SetAVZGuardStatus(true);
QuarantineFile('C:\Users\1\appdata\local\temp\svchost.exe','');
QuarantineFile('C:\Users\1\appdata\roaming\closer.exe','');
QuarantineFile('C:\Users\1\AppData\Local\Temp\radA8726.tmp.exe','');
QuarantineFile('C:\Windows\system32\machineupper32.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\uTorrent\startUTorrent.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\uTorrent\MgruTorrent.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\Skype\mgrSkype.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\Mozilla\AgentMozilla.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\xa0vOAvtM1ZjNtKqFBoQKg.exe','');
QuarantineFile('C:\Users\1\AppData\Local\NVIDIA Corporation\Update\daemonupd.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\Identities\useIdentities.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\Avira\winAvira.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\Avira\StartAvira.exe','');
QuarantineFile('C:\Users\1\AppData\Roaming\Avira\Avirause.exe','');
QuarantineFile('C:\Program Files\Internet Explorer\iexplore.url','');
QuarantineFile('C:\Users\1\AppData\Local\Google\Update\gupdate.exe','');
QuarantineFile('C:\Users\1\AppData\Local\Microsoft\Windows\winupdate.exe','');
DeleteFile('C:\Users\1\AppData\Local\Microsoft\Windows\winupdate.exe','32');
DeleteFile('C:\Users\1\AppData\Local\Google\Update\gupdate.exe','32');
DeleteFile('C:\Program Files\Internet Explorer\iexplore.url','32');
DeleteFile('C:\Users\1\AppData\Roaming\Avira\Avirause.exe','32');
DeleteFile('C:\Users\1\AppData\Roaming\Avira\StartAvira.exe','32');
DeleteFile('C:\Users\1\AppData\Roaming\Avira\winAvira.exe','32');
DeleteFile('C:\Users\1\AppData\Roaming\Identities\useIdentities.exe','32');
DeleteFile('C:\Users\1\AppData\Local\NVIDIA Corporation\Update\daemonupd.exe','32');
DeleteFile('C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\xa0vOAvtM1ZjNtKqFBoQKg.exe','32');
DeleteFile('C:\Users\1\AppData\Roaming\Mozilla\AgentMozilla.exe','32');
DeleteFile('C:\Users\1\AppData\Roaming\Skype\mgrSkype.exe','32');
DeleteFile('C:\Users\1\AppData\Roaming\uTorrent\MgruTorrent.exe','32');
DeleteFile('C:\Users\1\AppData\Roaming\uTorrent\startUTorrent.exe','32');
DeleteFile('C:\Windows\system32\machineupper32.exe','32');
DeleteFile('C:\Users\1\AppData\Local\Temp\radA8726.tmp.exe','32');
DeleteFile('C:\Windows\system32\Tasks\sam6vno6.job','32');
DeleteFile('C:\Users\1\appdata\roaming\closer.exe','32');
DeleteFile('C:\Users\1\appdata\local\temp\svchost.exe','32');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','NvUpdService');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','Google Update');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','{ACF2B8C9-6837-A46B-FB12-49A28738033C}');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','{184B9583-708B-884B-D588-50636CA44F6F}');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','{64207280-8747-A1F1-0433-5CD2388C3AC7}');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','{AC542A78-25D7-A619-ED11-91860C55768B}');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','{8FFCCD54-433A-4C1B-E0B3-1843E00BEC7D}');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','{CF6BE587-059B-DBC3-41A7-CA120028CCB5}');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','{666EC0DA-3CF6-430E-8472-8B4EFDC4740B}');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','{69175E17-F47C-83CB-FFD6-DF836C02906D}');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','Windows Debugger 32');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','Windows Debugger 32');
BC_ImportDeletedList;
ExecuteSysClean;
ExecuteWizard('SCU',2,2,true);
BC_Activate;
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
RebootWindows(true);
END.
Компьютер будет перезагружен.