begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
 DeleteFile('C:\Documents and Settings\FORMOZA ONLINE\ctfmon.exe');
BC_ImportAll;
ExecuteSysClean;
ExecuteWizard('TSW',2,3,true);
BC_Activate;
RebootWindows(true);
end.

Зараженные ключи в реестре:
HKEY_CLASSES_ROOT\CLSID\{6d125299-c2a9-4dbc-bec3-6f7124e39a41} (Adware.FieryAds) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6d125299-c2a9-4dbc-bec3-6f7124e39a41} (Adware.FieryAds) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6d125299-c2a9-4dbc-bec3-6f7124e39a41} (Adware.FieryAds) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\fieryads (Adware.FieryAds) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Vkontakte (Trojan.Fkantakte) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\XPROTECTOR (Backdoor.Trojan) -> Quarantined and deleted successfully.

Зараженные папки:
C:\Documents and Settings\FORMOZA ONLINE\Application Data\FieryAds (Adware.FieryAds) -> Quarantined and deleted successfully.
C:\Documents and Settings\FormozaOnline\Application Data\FieryAds (Adware.FieryAds) -> Quarantined and deleted successfully.

Зараженные файлы:
C:\Documents and Settings\FORMOZA ONLINE\Application Data\FieryAds\FieryAdsUninstall.exe (Adware.FieryAds) -> Quarantined and deleted successfully.
C:\Documents and Settings\FormozaOnline\Application Data\FieryAds\FieryAdsUninstall.exe (Adware.FieryAds) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-1292428093-1409082233-682003330-1004\Dc1\LineageII\system\Engine(1).dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-1292428093-1409082233-682003330-1004\Dc1\LineageII\system\Engine.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-1292428093-1409082233-682003330-1004\Dc1\LineageII\system\NWindow(1).dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\FE77E3\internet.fne (HackTool.Patcher) -> Quarantined and deleted successfully.
D:\System Volume Information\_restore{CA392C6A-CED9-495D-855D-9BDACD65FA00}\RP86\A0263753.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
D:\System Volume Information\_restore{CA392C6A-CED9-495D-855D-9BDACD65FA00}\RP86\A0263774.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
D:\System Volume Information\_restore{CA392C6A-CED9-495D-855D-9BDACD65FA00}\RP97\A0310739.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\Documents and Settings\FORMOZA ONLINE\Application Data\fieryads.dat (Adware.FieryAds) -> Quarantined and deleted successfully.
C:\Documents and Settings\FormozaOnline\Application Data\fieryads.dat (Adware.FieryAds) -> Quarantined and deleted successfully.