Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
DeleteService('Winye72');
DeleteService('Winye50');
DeleteService('Winxd50');
DeleteService('Winxd37');
DeleteService('Winwc48');
DeleteService('Winwc37');
DeleteService('Winwc26');
DeleteService('Winwb61');
DeleteService('Winuy61');
DeleteService('Winuy51');
DeleteService('Winua50');
DeleteService('Winua26');
DeleteService('Winty37');
DeleteService('Winsx61');
DeleteService('Winsx48');
DeleteService('Winsx04');
DeleteService('Winrw83');
DeleteService('Winrw15');
DeleteService('Winqv83');
DeleteService('Winqv52');
DeleteService('Winqv50');
DeleteService('Winqv15');
DeleteService('Winot83');
DeleteService('Winot61');
DeleteService('Winos26');
DeleteService('Winns48');
DeleteService('Winns37');
DeleteService('Winmr37');
DeleteService('Winkq15');
DeleteService('Winkp61');
DeleteService('Winkp48');
DeleteService('Winkp37');
DeleteService('Winkp15');
DeleteService('Winkp04');
DeleteService('Winko72');
DeleteService('Winko48');
DeleteService('Winko04');
DeleteService('Winjo15');
DeleteService('Winjn15');
DeleteService('Winin83');
DeleteService('Winin50');
DeleteService('Winin37');
DeleteService('Winin26');
DeleteService('Winhm16');
DeleteService('Wingl26');
DeleteService('Winfk83');
DeleteService('Winfk61');
DeleteService('Winfj72');
DeleteService('Winfj48');
DeleteService('Winej04');
DeleteService('Windi26');
DeleteService('Windi15');
DeleteService('Winci04');
DeleteService('Winch83');
DeleteService('Winch37');
DeleteService('Winbf50');
QuarantineFile('WinCtrl32.dll','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winye72.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winye50.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winxd50.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winxd37.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winwc48.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winwc37.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winwc26.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winwb61.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winuy61.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winuy51.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winua50.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winua26.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winty37.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winsx61.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winsx48.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winsx04.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winrw83.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winrw15.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winqv83.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winqv52.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winqv50.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winqv15.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winot83.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winot61.sys','');
QuarantineFile('Winos26.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winns48.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winns37.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winmr37.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winkq15.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winkp61.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winkp48.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winkp37.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winkp15.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winkp04.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winko72.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winko48.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winko04.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winjo15.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winjn15.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winin83.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winin50.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winin37.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winin26.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winhm16.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winhl48.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Wingl26.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winfk83.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winfk61.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winfj72.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winfj48.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winej04.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Windi61.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Windi26.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Windi15.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winci04.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winch83.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winch37.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winbf50.sys','');
QuarantineFile('C:\WINDOWS\System32\Drivers\Winaf48.sys','');
QuarantineFile('C:\WINDOWS\system32\WinCtrl32.dll','');
DeleteFile('C:\WINDOWS\system32\WinCtrl32.dll');
DeleteFile('C:\WINDOWS\System32\Drivers\Winaf48.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winbf50.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winch37.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winch83.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winci04.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Windi15.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Windi26.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Windi61.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winej04.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winfj48.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winfj72.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winfk61.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winfk83.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Wingl26.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winhl48.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winhm16.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winin26.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winin37.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winin50.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winin83.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winjn15.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winjo15.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winko04.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winko48.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winko72.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winkp04.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winkp15.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winkp37.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winkp48.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winkp61.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winkq15.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winmr37.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winns37.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winns48.sys');
DeleteFile('Winos26.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winot61.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winot83.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winqv15.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winqv50.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winqv52.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winrw15.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winrw83.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winsx04.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winsx48.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winsx61.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winty37.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winua26.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winua50.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winuy51.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winuy61.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winwb61.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winwc26.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winwc37.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winwc48.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winxd37.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winxd50.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winye50.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winye72.sys');
DeleteFile('WinCtrl32.dll');
BC_ImportALL;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
Пришлите карантин по правилам и повторите логи...