перетащите на утилиту ClearLNK....\AutoLogger\CheckBrowserLnk
Free VPN version 3.2
Unity Web Player
start
CreateRestorePoint:
GroupPolicy: Restriction ? <======= ATTENTION
GroupPolicy\User: Restriction ? <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-839522115-1284227242-1801674531-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.mail.ru/?ieverfix=1&fr=ieverfix_sg
FF DefaultSearchEngine: C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\nahd6ha2.default -> Поиск@Mail.Ru
FF SelectedSearchEngine: C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\nahd6ha2.default -> Поиск@Mail.Ru
FF Homepage: C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxp://go.mail.ru/?ffverfix=1&fr=ffverfix_sg
FF Keyword.URL: C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxp://go.mail.ru/distib/ep/?product_id=%7B123AA0D3-B6C6-42CB-B228-AC668602B926%7D&gp=811022
FF Extension: (Домашняя страница Mail.Ru) - C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\homepage@mail.ru [2015-12-28]
FF Extension: (Поиск@Mail.Ru) - C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\search@mail.ru [2016-03-22]
OPR StartupUrls: "hxxp://mail.ru/cnt/10445"
OPR Extension: (Quick Searcher) - C:\Documents and Settings\Admin\Application Data\Opera Software\Opera Stable\Extensions\ojhmphdkpgbibohbnpbfiefkgieacjmh [2015-10-07]
2017-02-16 10:43 - 2016-04-01 11:48 - 00000000 ____D C:\Documents and Settings\Admin\Local Settings\Application Data\Amigo
AV: 新毒霸铠甲防御 (Disabled - Up to date) {B3DDB456-E18B-4D81-9EB0-E23ABB4D2B12}
AlternateDataStreams: C:\Documents and Settings\Admin\Local Settings\Application Data:wa [146]
MSCONFIG\startupfolder: C:^Documents and Settings^Admin^Главное меню^Программы^Автозагрузка^爱奇艺PPS影音.lnk => C:\WINDOWS\pss\爱奇艺PPS影音.lnkStartup
DomainProfile\AuthorizedApplications: [C:\Program Files\Common Files\Tencent\QQDownload\130\bugreport_xf.exe] => Enabled:腾讯产品下载组件Crash上报
DomainProfile\AuthorizedApplications: [C:\Program Files\Common Files\Tencent\QQDownload\130\Tencentdl.exe] => Enabled:腾讯产品下载组件
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\Admin\Application Data\IQIYI Video\LStyle\QyUpdate.exe] => Enabled:爱奇艺PPS升级模块
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Tencent\QQDownload\130\bugreport_xf.exe] => Enabled:腾讯产品下载组件Crash上报
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Tencent\QQDownload\130\Tencentdl.exe] => Enabled:腾讯产品下载组件
EmptyTemp:
Reboot:
end
C:\FRST\Quarantine
Java(TM) 6 Update 30 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216030FF}) (Version: 6.0.300 - Oracle)
ESET NOD32 Antivirus (HKLM\...\{7BA4460F-6E85-4EBC-88E4-B6242887A435}) (Version: 4.2.76.1 - ESET, spol. s r.o.)
Adobe Flash Player 23 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Flash Player 23 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
WinRAR 4.01 (32-разрядная) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
var
LogPath : string;
ScriptPath : string;
begin
LogPath := GetAVZDirectory + 'log\avz_log.txt';
if FileExists(LogPath) Then DeleteFile(LogPath);
ScriptPath := GetAVZDirectory +'ScanVuln.txt';
if DownloadFile('http://dataforce.ru/~kad/ScanVuln.txt', ScriptPath, 1) then ExecuteScript(ScriptPath) else begin
if DownloadFile('http://dataforce.ru/~kad/ScanVuln.txt', ScriptPath, 0) then ExecuteScript(ScriptPath) else begin
ShowMessage('Невозможно загрузить скрипт AVZ для обнаружения наиболее часто используемых уязвимостей!');
exit;
end;
end;
if FileExists(LogPath) Then ExecuteFile('notepad.exe', LogPath, 1, 0, false)
end.
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?