begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.'+#13#10+'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
SetServiceStart('semav6msr64', 4);
StopService('semav6msr64');
SetServiceStart('contentdefenderdrv', 4);
StopService('contentdefenderdrv');
SetServiceStart('xorefyni', 4);
StopService('xorefyni');
SetServiceStart('hidekoqe', 4);
StopService('hidekoqe');
SetServiceStart('dijojyvi', 4);
StopService('dijojyvi');
SetServiceStart('WdsManPro', 4);
StopService('WdsManPro');
SetServiceStart('SSFK', 4);
StopService('SSFK');
SetServiceStart('ContentDefender', 4);
StopService('ContentDefender');
TerminateProcessByName('c:\programdata\owdsmanproo\wdsmanpro.exe');
TerminateProcessByName('c:\users\Лариса\appdata\local\gmsd_re_005010119\upgmsd_re_005010119.exe');
TerminateProcessByName('c:\program files (x86)\sfk\ssfk.exe');
TerminateProcessByName('c:\program files (x86)\hp defender\hhandler.exe');
TerminateProcessByName('C:\Program Files (x86)\gmsd_re_005010119\gmsd_re_005010119.exe');
TerminateProcessByName('c:\program files (x86)\gmsd_re_005010119\gmsd_re_005010119.exe');
TerminateProcessByName('C:\Program Files\Content Defender\ContentDefender.exe');
QuarantineFile('C:\Program Files (x86)\HP Defender\HHandler.exe','');
QuarantineFile('C:\Program Files (x86)\MyBrowser\MyBrowser\Application\utility.exe','');
QuarantineFile('C:\ProgramData\DvJrtuBFiTyk\dWSSyMoTkLmV0.bat','');
QuarantineFile('C:\ProgramData\kwanTPm\ElUoSYvedPf5.bat','');
QuarantineFile('C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe','');
QuarantineFile('C:\Users\Лариса\AppData\Local\gmsd_re_005010119\upgmsd_re_005010119.exe','');
QuarantineFile('C:\ProgramData\TimeTasks\timetasks.exe','');
QuarantineFile('C:\Program Files (x86)\Zaxar\ZaxarLoader.exe','');
QuarantineFile('C:\Program Files (x86)\Zaxar\ZaxarGameBrowser.exe','');
QuarantineFile('C:\Windows\system32\drivers\semav6msr64.sys','');
QuarantineFile('C:\ProgramData\OWdsManProO\WdsManPro.exe','');
QuarantineFile('C:\Program Files (x86)\E8C91D29-1444908514-FF44-803C-F282826C3761\knsfA426.tmp','');
QuarantineFile('C:\Users\Лариса\AppData\Local\E8C91D29-1445096300-FF44-803C-F282826C3761\qnsfC47D.tmp','');
QuarantineFile('C:\Program Files (x86)\E8C91D29-1444908514-FF44-803C-F282826C3761\hnsc315D.tmp','');
QuarantineFile('C:\Program Files (x86)\SFK\SSFK.exe','');
QuarantineFile('C:\Windows\system32\drivers\contentdefenderdrv.sys','');
QuarantineFile('c:\programdata\owdsmanproo\wdsmanpro.exe','');
QuarantineFile('c:\users\Лариса\appdata\local\gmsd_re_005010119\upgmsd_re_005010119.exe','');
QuarantineFile('c:\program files (x86)\sfk\ssfk.exe','');
QuarantineFile('C:\Program Files\Content Defender\ContentDefender.exe','');
QuarantineFile('c:\program files (x86)\hp defender\hhandler.exe','');
QuarantineFile('C:\Program Files (x86)\gmsd_re_005010119\gmsd_re_005010119.exe','');
QuarantineFile('c:\program files (x86)\gmsd_re_005010119\gmsd_re_005010119.exe','');
DeleteFile('C:\Program Files\Content Defender\ContentDefender.exe','32');
DeleteFile('c:\program files (x86)\gmsd_re_005010119\gmsd_re_005010119.exe','32');
DeleteFile('C:\Program Files (x86)\gmsd_re_005010119\gmsd_re_005010119.exe','32');
DeleteFile('c:\program files (x86)\hp defender\hhandler.exe','32');
DeleteFile('c:\program files (x86)\sfk\ssfk.exe','32');
DeleteFile('c:\users\Лариса\appdata\local\gmsd_re_005010119\upgmsd_re_005010119.exe','32');
DeleteFile('c:\programdata\owdsmanproo\wdsmanpro.exe','32');
DeleteFile('C:\Windows\system32\drivers\contentdefenderdrv.sys','32');
DeleteFile('C:\Program Files (x86)\SFK\SSFK.exe','32');
DeleteFile('C:\ProgramData\OWdsManProO\WdsManPro.exe','32');
DeleteFile('C:\Program Files (x86)\E8C91D29-1444908514-FF44-803C-F282826C3761\hnsc315D.tmp','32');
DeleteFile('C:\Users\Лариса\AppData\Local\E8C91D29-1445096300-FF44-803C-F282826C3761\qnsfC47D.tmp','32');
DeleteFile('C:\Program Files (x86)\E8C91D29-1444908514-FF44-803C-F282826C3761\knsfA426.tmp','32');
DeleteFile('C:\Windows\system32\drivers\semav6msr64.sys','32');
DeleteFile('C:\Program Files (x86)\Zaxar\ZaxarGameBrowser.exe','32');
DeleteFile('C:\Program Files (x86)\Zaxar\ZaxarLoader.exe','32');
DeleteFile('C:\ProgramData\TimeTasks\timetasks.exe','32');
DeleteFile('C:\Users\Лариса\AppData\Local\gmsd_re_005010119\upgmsd_re_005010119.exe','32');
DeleteFile('C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe','32');
DeleteFile('C:\ProgramData\kwanTPm\ElUoSYvedPf5.bat','32');
DeleteFile('C:\ProgramData\DvJrtuBFiTyk\dWSSyMoTkLmV0.bat','32');
DeleteFile('C:\Program Files (x86)\MyBrowser\MyBrowser\Application\utility.exe','32');
DeleteFile('C:\Windows\Tasks\toQgFkHazMQM978.job','32');
DeleteFile('C:\Windows\Tasks\MyBrowser.job','32');
DeleteFile('C:\Windows\system32\Tasks\MyBrowser','64');
DeleteFile('C:\Program Files (x86)\HP Defender\HHandler.exe','32');
DeleteService('contentdefenderdrv');
DeleteService('ContentDefender');
DeleteService('SSFK');
DeleteService('semav6msr64');
DeleteService('WdsManPro');
DeleteService('hidekoqe');
DeleteService('xorefyni');
DeleteService('dijojyvi');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','ZaxarGameBrowser');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','ZaxarLoader');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','Timestasks');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','gmsd_re_005010119');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\RunOnce','upgmsd_re_005010119.exe');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','GoogleChromeAutoLaunch_0CC83BF983BD666A52E2D24CFA7C46A1');
ExecuteSysClean;
BC_ImportAll;
BC_Activate;
RebootWindows(true);
end.