start
CreateRestorePoint:
Task: {067A148D-36DC-41FE-9C90-B02DF4BBB3C1} - System32\Tasks\RunAtStartup => C:\Program Files (x86)\Advanced Driver Updater\adu.exe
Task: {2D3F879A-CA65-43F2-B956-5B41690C8053} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {71EBEDF2-9B10-456C-814F-53754F92D956} - System32\Tasks\CarambisDriverUpdaterUACDisablingTask => C:\Program Files (x86)\Carambis\Driver Updater\dupdater.exe [2016-06-28] (ROSTPAY LTD)
Task: {D71E4F95-056F-499B-9B72-F54C4D3E2087} - System32\Tasks\AdvancedDriverUpdaterRunAtStartup => C:\Program Files (x86)\Advanced Driver Updater\adu.exe
FirewallRules: [{CDF3F106-2F2E-4A50-B846-620C4E706D8F}] => (Allow) C:\Users\Викуська\AppData\Local\MediaGet2\mediaget.exe
FirewallRules: [{A7F1C119-054C-41E7-B271-7C965A017E66}] => (Allow) C:\Users\Викуська\AppData\Local\MediaGet2\mediaget.exe
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => -> No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO-x32: Research Bar -> {AEF595EA-2BEF-4F13-9D57-031060958C69} -> C:\Program Files\MTI\ResearchBarIE\TNSbar.dll [2015-09-15] ((с) 2010-2015 TNS Маркетинговый Информационный Центр)
Toolbar: HKU\S-1-5-21-2000778242-2016898451-2292415254-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
FF Extension: (TNS Research Bar+) - C:\Users\Викуська\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\tnsbarplus@tns-global.ru [2016-07-22]
CHR Profile: C:\Users\Викуська\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-02-27] <==== ATTENTION
CHR Extension: (ResearchBar +) - C:\Users\Викуська\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pbnhjaeolclgbofikfkagcgocgkbmkkh [2016-12-20]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKU\S-1-5-21-2000778242-2016898451-2292415254-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2000778242-2016898451-2292415254-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bhjcgomkanpkpblokebecknhahgkcmoo] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fdjdjkkjoiomafnihnobkinnfjnnlhdg] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [gbjeiekahklbgbfccohipinhgaadijad] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hdpgllbnilfcbckbdchjcfgopijgllcm] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jdfonankhfnhihdcpaagpabbaoclnjfp] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pbnhjaeolclgbofikfkagcgocgkbmkkh] - hxxps://clients2.google.com/service/update2/crx
OPR Extension: (The Safe Surfing) - C:\Users\Викуська\AppData\Roaming\Opera Software\Opera Stable\Extensions\kcknbenjnkkjknphmnidanjifbgphjke [2016-11-01]
OPR Extension: (Teddy Protection) - C:\Users\Викуська\AppData\Roaming\Opera Software\Opera Stable\Extensions\mofelbkemhligelpmjmohgphhmogbkni [2016-12-09]
OPR Extension: (Fast search) - C:\Users\Викуська\AppData\Roaming\Opera Software\Opera Stable\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-11-13]
2016-12-08 23:38 - 2016-12-08 23:38 - 0005051 _____ () C:\ProgramData\czchsjpj.srw
2016-07-27 12:22 - 2016-07-27 12:22 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-08 23:38 - 2016-12-08 23:38 - 0000016 _____ () C:\ProgramData\mntemp
2017-02-22 20:34 - 2017-02-22 20:34 - 0182568 _____ () C:\Users\Викуська\AppData\Local\Temp\mediaget-uninstaller.exe
EmptyTemp:
Reboot:
end
Это не обязательно,снова запустите adw и на этот раз удалите только строкуМожет мейл ру тоже удалить? Потом установить
Найдена настройка Chromium: [C:\Users\Викуська\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Secure Preferences ] - pelmeidfhdlhlbjimpabfcbnnojbboma
Делайте эти логи.еще раз,пожалуйста,сделайте FRST.txt, Addition.txt
start
CreateRestorePoint:
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.google.com/","chrome://newtab/","hxxp://mail.ru/cnt/10445?gp=820326"
CHR Profile: C:\Users\Викуська\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-03-01] <==== ATTENTION
Task: {B12DA6EB-5286-4068-BD9C-8CBCEB2B44E8} - \Fakthertuverge Controls -> No File <==== ATTENTION
Task: {EB9675F7-0052-4653-8198-4050F55555EB} - System32\Tasks\adu => C:\Program Files (x86)\Advanced Driver Updater\SystweakASP.exe
Reboot:
end
Можно.Можно я в AdwCleaner все грозы удалю и от mail.ru тоже?
Проверьте в разных браузерах, включая IE и сообщите результат.не открыть личный кабинет в банке
Служба автоматического обновления программ
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?