Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('c:\Temp\930.exe','');
QuarantineFile('C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe','');
QuarantineFile('c:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\isee.exe','');
QuarantineFile('c:\Temp\416.exe,c:\Temp\365.exe,c:\Temp\930.exe,c:\Temp\271.exe,c:\Temp\180.exe,C:\Documents and Settings\User\Application Data\cift.exe,C:\Documents and Settings\User\csrss.exe,c:\Temp\3856980.exe,explorer.exe,c:\Temp\545.exe','');
QuarantineFile('c:\Temp\416.exe','');
QuarantineFile('c:\Temp\365.exe','');
QuarantineFile('c:\Temp\930.exe','');
QuarantineFile('c:\Temp\271.exe,','');
QuarantineFile('c:\Temp\180.exe','');
QuarantineFile('C:\Documents and Settings\User\Application Data\cift.exe','');
QuarantineFile('C:\Documents and Settings\User\csrss.exe','');
QuarantineFile('c:\Temp\3856980.exe','');
QuarantineFile('c:\Temp\545.exe','');
QuarantineFile('c:\windows\system32\wuaucldt.exe','');
QuarantineFile('c:\Temp\930.exe','');
QuarantineFile('c:\Temp\feikd.sys','');
QuarantineFile('c:\Temp\mfmejcwg.sys','');
QuarantineFile('xjwdetvksv.sys','');
QuarantineFile('C:\WINDOWS\system32\02.tmp','');
QuarantineFile('c:\Temp\swscebpwqtmjbed.sys','');
QuarantineFile('c:\Temp\hxjfhh.sys','');
QuarantineFile('c:\Temp\djqmnnhlhkhvk.sys','');
QuarantineFile('C:\WINDOWS\system32\drivers\protect.sys','');
QuarantineFile('C:\WINDOWS\system32\01.tmp','');
QuarantineFile('c:\Temp\teccwdt.sys','');
QuarantineFile('c:\Temp\lgxxhuuct.sys','');
QuarantineFile('c:\Temp\qeoolabxvncsh.sys','');
QuarantineFile('c:\Temp\gdhdrfewsp.sys','');
QuarantineFile('c:\Temp\prhumqyyzh.sys','');
QuarantineFile('c:\Temp\nvmghkffjatbye.sys','');
QuarantineFile('c:\Temp\vauobrexraegh.sys','');
QuarantineFile('c:\Temp\paqyyokdqtgc.sys','');
QuarantineFile('c:\Temp\jvtxps.sys','');
QuarantineFile('c:\Temp\seiqjsrzrituqrp.sys','');
QuarantineFile('c:\Temp\ldofupl.sys','');
DeleteFile('c:\Temp\ldofupl.sys');
DeleteFile('c:\Temp\seiqjsrzrituqrp.sys');
DeleteFile('c:\Temp\jvtxps.sys');
DeleteFile('c:\Temp\paqyyokdqtgc.sys');
DeleteFile('c:\Temp\nvmghkffjatbye.sys');
DeleteFile('c:\Temp\prhumqyyzh.sys');
DeleteFile('c:\Temp\gdhdrfewsp.sys');
DeleteFile('c:\Temp\qeoolabxvncsh.sys');
DeleteFile('c:\Temp\lgxxhuuct.sys');
DeleteFile('c:\Temp\teccwdt.sys');
DeleteFile('C:\WINDOWS\system32\01.tmp');
DeleteFile('C:\WINDOWS\system32\drivers\protect.sys');
DeleteFile('c:\Temp\djqmnnhlhkhvk.sys');
DeleteFile('c:\Temp\hxjfhh.sys');
DeleteFile('c:\Temp\swscebpwqtmjbed.sys');
DeleteFile('C:\WINDOWS\system32\02.tmp');
DeleteFile('xjwdetvksv.sys');
DeleteFile('c:\Temp\mfmejcwg.sys');
DeleteFile('c:\Temp\feikd.sys');
DeleteFile('c:\Temp\930.exe');
DeleteFile('c:\windows\system32\wuaucldt.exe');
DeleteFile('c:\Temp\416.exe,c:\Temp\365.exe,c:\Temp\930.exe,c:\Temp\271.exe,c:\Temp\180.exe,C:\Documents and Settings\User\Application Data\cift.exe,C:\Documents and Settings\User\csrss.exe,c:\Temp\3856980.exe,explorer.exe,c:\Temp\545.exe');
DeleteFile('c:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\isee.exe');
DeleteFile('C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe');
DeleteFile('c:\Temp\930.exe');
DeleteFile('c:\Temp\416.exe');
DeleteFile('c:\Temp\365.exe');
DeleteFile('c:\Temp\930.exe');
DeleteFile('c:\Temp\271.exe,');
DeleteFile('c:\Temp\180.exe');
DeleteFile('C:\Documents and Settings\User\Application Data\cift.exe');
DeleteFile('C:\Documents and Settings\User\csrss.exe');
DeleteFile('c:\Temp\3856980.exe');
DeleteFile('c:\Temp\545.exe');
DelCLSID('{28ABC5C0-4FCB-11CF-AAX5-81CX1C635612}');
DelCLSID('{08B0E5C0-4FCB-11CF-AAX5-81C01C608512}');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','syncman');
DeleteService('ynyerpadrh');
DeleteService('yldkocnvngczh');
DeleteService('xjwdetvksv');
DeleteService('wsbfaj');
DeleteService('wbynkhylua');
DeleteService('vvtwkazsgbzt');
DeleteService('rynhuqaimtooyhn');
DeleteService('protect');
DeleteService('ocdpgyuoq');
DeleteService('jisehgfcletupls');
DeleteService('hdlymwf');
DeleteService('gwwgnkmuuwy');
DeleteService('gdkindn');
DeleteService('fcqeprnjsvt');
DeleteService('fajdchuc');
DeleteService('eycbzhyqjrp');
DeleteService('ddjurtna');
DeleteService('czbdnnaxxqo');
DeleteService('ctbvyrhjxdarsbm');
DeleteService('aqxjt');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
Компьютер перезагрузится.