Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
TerminateProcessByName('c:\programdata\realtekhd\taskhostw.exe');
QuarantineFile('c:\programdata\realtekhd\taskhostw.exe', '');
QuarantineFile('C:\ProgramData\temp1.exe', '');
QuarantineFile('C:\Programdata\Windows\rutserv.exe', '');
QuarantineFile('C:\Users\Oleh\AppData\Local\Temp\nsaB80A.tmp\FindProcDLL.dll', '');
QuarantineFile('C:\Users\Oleh\AppData\Local\Temp\nsaB80A.tmp\System.dll', '');
QuarantineFileF('c:\programdata\realtekhd', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js*, *.tmp*', false, '', 0 , 0);
QuarantineFileF('C:\ProgramData\RunDLL', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js', true, '', 0, 0);
QuarantineFileF('C:\ProgramData\System32', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js', true, '', 0, 0);
QuarantineFileF('C:\ProgramData\Windows', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js', true, '', 0, 0);
QuarantineFileF('C:\ProgramData\WindowsTask', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js', true, '', 0, 0);
DeleteFile('c:\programdata\realtekhd\taskhostw.exe', '');
DeleteFile('C:\ProgramData\temp1.exe');
DeleteFile('C:\Programdata\Windows\rutserv.exe');
DeleteFile('C:\Users\Oleh\AppData\Local\Temp\nsaB80A.tmp\FindProcDLL.dll', '');
DeleteFile('C:\Users\Oleh\AppData\Local\Temp\nsaB80A.tmp\System.dll', '');
DeleteFileMask('c:\programdata\realtekhd', '*', true);
DeleteFileMask('C:\ProgramData\RunDLL', '*', true);
DeleteFileMask('C:\ProgramData\System32', '*', true);
DeleteFileMask('C:\ProgramData\Windows', '*', true);
DeleteFileMask('C:\ProgramData\WindowsTask', '*', true);
DeleteDirectory('c:\programdata\realtekhd');
DeleteDirectory('C:\ProgramData\RunDLL');
DeleteDirectory('C:\ProgramData\System32');
DeleteDirectory('C:\ProgramData\Windows');
DeleteDirectory('C:\ProgramData\WindowsTask');
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1001', 1);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1004', 3);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1201', 3);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '1804', 1);
RegKeyIntParamWrite('HKCU', 'Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\', '2201', 3);
BC_ImportALL;
ExecuteSysClean;
ExecuteRepair(13);
BC_Activate;
RebootWindows(true);
end.
Компьютер перезагрузится.