Код:
begin
ClearQuarantine;
SetAVZGuardStatus(True);
RegKeyIntParamWrite('HKLM','SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer','NoDriveTypeAutoRun', 221);
QuarantineFile('C:\Documents and Settings\Администратор\Local Settings\Temporary Internet Files\Content.IE5\5NRUHCSC\vs8[1].exe','');
QuarantineFile('C:\Documents and Settings\Администратор\Local Settings\Temp\734.exe','');
QuarantineFile('C:\Documents and Settings\Администратор\Local Settings\Temp\504.exe','');
QuarantineFile('C:\Documents and Settings\Администратор\Local Settings\Temp\490.exe','');
QuarantineFile('C:\Documents and Settings\Администратор\Local Settings\Temp\272.exe','');
QuarantineFile('C:\Documents and Settings\Администратор\Local Settings\Temp\103.exe','');
QuarantineFile('C:\WINDOWS\system32\wshost32.exe','');
QuarantineFile('C:\WINDOWS\system32\msvgr.exe.exe','');
QuarantineFile('C:\WINDOWS\cmon.exe','');
QuarantineFile('C:\RECYCLER\S-1-5-21-4224348172-3125463221-669423834-7292\csvcs.exe,explorer.exe,c:\recycler\s-1-5-21-4972589252-8817423393-453611420-9876\mwau.exe','');
QuarantineFile('C:\RECYCLER\S-1-5-21-4224348172-3125463221-669423834-7292\csvcs.exe','');
QuarantineFile('C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1859\ls888.exe','');
QuarantineFile('c:\windows\system32\umdmgr.exe','');
TerminateProcessByName('c:\windows\system32\umdmgr.exe');
QuarantineFile('c:\windows\ntdrive32.exe','');
TerminateProcessByName('c:\windows\ntdrive32.exe');
DeleteFile('c:\windows\ntdrive32.exe');
DeleteFile('c:\windows\system32\umdmgr.exe');
DeleteFile('C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1859\ls888.exe');
DeleteFile('C:\RECYCLER\S-1-5-21-4224348172-3125463221-669423834-7292\csvcs.exe');
DeleteFile('C:\RECYCLER\S-1-5-21-4224348172-3125463221-669423834-7292\csvcs.exe,explorer.exe,c:\recycler\s-1-5-21-4972589252-8817423393-453611420-9876\mwau.exe');
DeleteFile('C:\WINDOWS\cmon.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','cmon.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','Microsoft Driver Setup');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','Microsoft Driver Setup');
DeleteFile('C:\WINDOWS\system32\msvgr.exe.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','msvgr.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','800');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','796');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','235');
DeleteFile('C:\WINDOWS\system32\wshost32.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','wshost32');
DeleteFile('C:\Documents and Settings\Администратор\Local Settings\Temp\*.*');
DeleteFile('C:\Documents and Settings\Администратор\Local Settings\Temporary Internet Files\Content.IE5\5NRUHCSC\vs8[1].exe');
BC_ImportDeletedList;
ExecuteSysClean;
ExecuteWizard('TSW', 3, 3, true);
ExecuteWizard('SCU', 3, 3, true);
BC_Activate;
RebootWindows(true);
end.
После выполнения скрипта компьютер перезагрузится!