Код:
begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.'+#13#10+'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(true);
end;
ClearQuarantine;
QuarantineFile('C:\Users\G11\AppData\Roaming\Steam\Reversed\steam.exe','');
QuarantineFile('C:\Users\G11\AppData\Local\SystemDir\nethost.exe','');
QuarantineFile('C:\Users\G11\Documents\MSDCSC\msdcsc.exe','');
QuarantineFile('C:\Users\G11\AppData\Roaming\Search Protection\SearchProtection.EXE','');
QuarantineFile('C:\Users\G11\AppData\Roaming\Intel\Services\msvs.exe','');
QuarantineFile('C:\Temp\NETDA1~2.EXE','');
QuarantineFile('C:\Temp\NETDA1~1.EXE','');
DeleteFile('C:\Temp\NETDA1~1.EXE','32');
DeleteFile('C:\Temp\NETDA1~2.EXE','32');
DeleteFile('C:\Users\G11\AppData\Roaming\Intel\Services\msvs.exe','32');
DeleteFile('C:\Users\G11\AppData\Roaming\Search Protection\SearchProtection.EXE','32');
DeleteFile('C:\Users\G11\Documents\MSDCSC\msdcsc.exe','32');
DeleteFile('C:\Users\G11\AppData\Local\SystemDir\nethost.exe','32');
DeleteFile('C:\Windows\system32\Tasks\nethost task','64');
DeleteFile('C:\Windows\system32\Tasks\Steam-S-1-8-22-9865GUI','64');
DeleteFile('C:\Users\G11\AppData\Roaming\Steam\Reversed\steam.exe','32');
RegKeyParamDel('HKEY_USERS','S-1-5-21-891950923-4108112909-2044605699-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\RunOnce','GoSearchRemoveAppiexplore');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\RunOnce','GoSearchRemoveAppiexplore');
RegKeyParamDel('HKEY_USERS','S-1-5-21-891950923-4108112909-2044605699-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\RunOnce','GoSearchRemoveAppchrome');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\RunOnce','GoSearchRemoveAppchrome');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Intel(R) Local Management Service','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchProtection','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WinUpdate','command');
RegKeyParamDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CMD','command');
DeleteFileMask('C:\Users\G11\AppData\Local\SystemDir', '*', true, ' ');
DeleteFileMask('C:\Users\G11\Documents\MSDCSC', '*', true, ' ');
DeleteFileMask('C:\Users\G11\AppData\Roaming\Intel\Services', '*', true, ' ');
DeleteFileMask('C:\Users\G11\AppData\Roaming\Search Protection', '*', true, ' ');
DeleteFileMask('C:\Users\G11\AppData\Roaming\Steam\Reversed', '*', true, ' ');
DeleteDirectory('C:\Users\G11\AppData\Roaming\Steam\Reversed');
DeleteDirectory('C:\Users\G11\AppData\Local\SystemDir');
DeleteDirectory('C:\Users\G11\Documents\MSDCSC');
DeleteDirectory('C:\Users\G11\AppData\Roaming\Intel\Services');
DeleteDirectory('C:\Users\G11\AppData\Roaming\Search Protection');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.