Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1804', 1);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '2201', 3);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1004', 3);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1001', 1);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1201', 3);
QuarantineFile('C:\PROGRA~2\Flwsrf\upfs7235.exe','');
QuarantineFile('C:\ProgramData\ShopperPro\spbihe.js','');
DelBHO('{05EB6920-D8AD-4350-BEF1-4F7107F70431}');
DelBHO('{1D355335-BE86-4418-AC98-2436CC3D6D74}');
DelBHO('{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}');
DelBHO('{F6C07882-D703-4DD5-905A-2C4E815A5066}');
DelBHO('{44627DAE-18B6-4ABC-8B22-13979EDFC56D}');
QuarantineFile('C:\Users\serg\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4\Shopping Suggestion.dll','');
QuarantineFile('C:\ProgramData\ShopperPro\ShopperPro.dll','');
QuarantineFile('C:\Program Files (x86)\Media Saver\Toolbar32.dll','');
QuarantineFile('C:\Program Files (x86)\Torrent Search\Toolbar32.dll','');
QuarantineFile('C:\Program Files (x86)\mbot_es_245\mbot_es_245.exe','');
QuarantineFile('C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1438\jsdrv.exe','');
QuarantineFile('C:\PROGRA~2\SupTab\SEARCH~2.DLL','');
QuarantineFile('C:\PROGRA~2\SupTab\SEARCH~1.DLL','');
SetServiceStart('SPDRIVER_1.38.0.1438', 4);
DeleteService('SPDRIVER_1.38.0.1438');
SetServiceStart('SPBIUpdd', 4);
DeleteService('SPBIUpdd');
QuarantineFile('C:\Program Files (x86)\Flwsrf\ijs.exe','');
QuarantineFile('C:\ProgramData\IePluginService\PluginService.exe','');
DeleteService('IePluginService');
QuarantineFile('C:\Program Files (x86)\BaiduAn3.0\BaiduAn\3.0.0.3971\BaiduAnSvc.exe','');
DeleteService('BDMRTP');
SetServiceStart('Supdater', 4);
DeleteService('Supdater');
SetServiceStart('SPBIUpd', 4);
DeleteService('SPBIUpd');
QuarantineFile('C:\Windows\TEMP\TorrentSearch_restartonfail\InstallAfterRebootService0.exe','');
DeleteService('Rerun service for Torrent Search');
QuarantineFile('C:\Program Files\Common Files\ShopperPro\spbiw.sys','');
QuarantineFile('C:\Windows\system32\drivers\netfilter64.sys','');
QuarantineFile('C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1438\jsdrv.sys','');
QuarantineFile('C:\Windows\system32\abengine.dll','');
TerminateProcessByName('C:\Program Files\Supdater\Supdater.exe');
QuarantineFile('C:\Program Files\Supdater\Supdater.exe','');
TerminateProcessByName('C:\Program Files\Common Files\ShopperPro\spbiu.exe');
QuarantineFile('C:\Program Files\Common Files\ShopperPro\spbiu.exe','');
TerminateProcessByName('c:\program files (x86)\shopperpro\shopperpro.exe');
QuarantineFile('c:\program files (x86)\shopperpro\shopperpro.exe','');
QuarantineFile('c:\program files\010\batexxadvl32.exe','');
QuarantineFile('c:\program files (x86)\flwsrf\abengine.exe','');
DeleteFile('c:\program files (x86)\shopperpro\shopperpro.exe','32');
DeleteFile('C:\Program Files\Common Files\ShopperPro\spbiu.exe','32');
DeleteFile('C:\Program Files\Supdater\Supdater.exe','32');
DeleteFile('C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1438\jsdrv.sys','32');
DeleteFile('C:\Program Files\Common Files\ShopperPro\spbiw.sys','32');
DeleteFile('C:\Windows\TEMP\TorrentSearch_restartonfail\InstallAfterRebootService0.exe','32');
DeleteFile('C:\Program Files (x86)\BaiduAn3.0\BaiduAn\3.0.0.3971\BaiduAnSvc.exe','32');
DeleteFile('C:\ProgramData\IePluginService\PluginService.exe','32');
DeleteFile('C:\PROGRA~2\SupTab\SEARCH~1.DLL','32');
DeleteFile('C:\PROGRA~2\SupTab\SEARCH~2.DLL','32');
DeleteFile('C:\Program Files (x86)\Mobogenie\DaemonProcess.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mobilegeni daemon','command');
DeleteFile('C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1438\jsdrv.exe','32');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','SPDriver');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','SPDriver');
DeleteFile('C:\Program Files (x86)\baidu\baiduaq.exe','32');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','baidu');
DeleteFile('C:\Program Files (x86)\Torrent Search\Toolbar32.dll','32');
DeleteFile('C:\Program Files (x86)\Media Saver\Toolbar32.dll','32');
DeleteFile('C:\ProgramData\ShopperPro\ShopperPro.dll','32');
DeleteFile('C:\Users\serg\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4\Shopping Suggestion.dll','32');
DeleteFile('C:\Windows\Tasks\PC SpeedUp Service Deactivator.job','64');
DeleteFile('C:\Program Files (x86)\PC Speed Up\PCSUSD.exe','32');
DeleteFile('C:\Windows\system32\Tasks\PC SpeedUp Service Deactivator','64');
DeleteFile('C:\Windows\system32\Tasks\ShopperPro','64');
DeleteFile('C:\Windows\system32\Tasks\ShopperProJSUpd','64');
DeleteFile('C:\Windows\system32\Tasks\SPBIW_UpdateTask_Time_3934303532333835372d5750325778325a6c372a4545','64');
DeleteFile('C:\ProgramData\ShopperPro\spbihe.js','32');
DeleteFile('C:\Windows\system32\Tasks\SPDriver','64');
DeleteFile('C:\Program Files (x86)\YTDownloader\YTDownloader.exe','32');
DeleteFile('C:\Windows\system32\Tasks\YTDownloader','64');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.
Компьютер перезагрузится.