Pipito_Gonsalez
Новый пользователь
- Сообщения
- 20
- Реакции
- 1
и его дополнительные программыAvira Antivirus
Перезагрузите компьютер и деинсталлируйтеAvira Phantom VPN
Avira Software Updater
Avira System Speedup
Затем тоже на удалениеGridinSoft Anti-Malware
Ace Stream Media 3.1.20.4
Avast Driver Updater
Java(TM) 6 Update 45 (64-bit)
Java(TM) 6 Update 45
TuneUp Utilities 2014
Кнопка "Яндекс" на панели задач
Start::
CloseProcesses:
SystemRestore: On
CreateRestorePoint:
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4560720 2022-06-01] (Доступ не разрешён) [Файл не подписан] (Доступ не разрешён) <==== ВНИМАНИЕ
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [705824 2022-02-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [334976 2022-02-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ограничение <==== ВНИМАНИЕ
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ограничение <==== ВНИМАНИЕ
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ограничение <==== ВНИМАНИЕ
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ограничение <==== ВНИМАНИЕ
HKU\S-1-5-21-1716063134-3212033839-3993041013-1001\...\Policies\Explorer: [DisallowCpl] 1
HKU\S-1-5-21-1716063134-3212033839-3993041013-1001\...\MountPoints2: {b90c9873-329a-11e7-99e4-20cf306f6a06} - "F:\setup.exe"
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
GroupPolicy: Ограничение - Windows Defender <==== ВНИМАНИЕ
Policies: C:\ProgramData\NTUSER.pol: Ограничение <==== ВНИМАНИЕ
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ограничение <==== ВНИМАНИЕ
Task: {05E0D2D9-ECDC-4174-B30C-58278FBFAC4E} - System32\Tasks\ASUS\TurboVHelp => C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe (Нет файла)
Task: {08FF53A1-B22B-4C9F-A40C-63736D228C3A} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-18] (Adobe Inc. -> Adobe)
Task: {212700CB-1A09-4EFF-BF2A-AABFD9F93141} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\1 => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4560720 2022-06-01] (Доступ не разрешён) [Файл не подписан] /nogui (Доступ не разрешён) <==== ВНИМАНИЕ
Task: {2A24CA13-3FF6-47B8-BE0C-AEBFF1581C10} - \Realtek HD Audio -> Нет файла <==== ВНИМАНИЕ
Task: {57B44766-84BD-42CF-818F-302CEDD2F707} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [334976 2022-02-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {6038AE2E-7C5D-499C-9E81-930FF14E222B} - System32\Tasks\Avira\System Speedup\Delayed Startup\qwerty\3 => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (Нет файла)
Task: {79CB18BC-28E2-44FD-9571-D396610F21D3} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\2 => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [334976 2022-02-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) -> -launch "C:\ProgramData\Avira\SystemSpeedup\Delay Load for ALL\AnyDesk.lnk" --control
Task: {91B8B916-F4F8-48AB-BF9F-B7512145EAA7} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Нет файла <==== ВНИМАНИЕ
Task: {92FAF0E6-761A-4C29-A831-CFBFC12E490D} - System32\Tasks\Microsoft\Windows\WindowsBackup\OnlogonCheck => C:\Programdata\RealtekHD\taskhostw.exe (Нет файла) <==== ВНИМАНИЕ
Task: {95BFB3D4-279D-442A-A4A5-8FFB42D5A289} - \Opera scheduled assistant Autoupdate 1618139163 -> Нет файла <==== ВНИМАНИЕ
Task: {A268D973-DC0B-4765-8284-8B48E8D45F67} - \Microsoft\Windows\Setup\gwx\rundetector -> Нет файла <==== ВНИМАНИЕ
Task: {A3DFC083-997C-41F2-BBBE-93A15BDE7C42} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [341 2022-06-04] (Доступ не разрешён) [Файл не подписан] /VERIFY /VERYSILENT /NOSTART /NODOTNET /NORESTART (Доступ не разрешён) <==== ВНИМАНИЕ
Task: {A984FB76-9CC8-41A9-BB18-7A85FA459261} - System32\Tasks\{DB52540D-DCB1-4E06-A0D0-BF5EE50C059A} => C:\Program Files (x86)\Opera\launcher.exe (Нет файла)
Task: {ADD7C410-4E87-4F16-8B96-7B0E8D9C8840} - System32\Tasks\Microsoft\Windows\WindowsBackup\RealtekCheck => C:\Programdata\RealtekHD\taskhost.exe (Нет файла) <==== ВНИМАНИЕ
Task: {AE3ED26A-8212-4360-B0F6-AAE984A538AA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Нет файла <==== ВНИМАНИЕ
Task: {BA75E27A-B9BD-4801-9A52-743E58F8EA31} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4613456 2022-06-01] (Доступ не разрешён) [Файл не подписан] -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid 2d30c172-cbeb-4059-9ae4-d358c5b49176 --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid 2d30c172-cbeb-4059-9ae4-d358c5b49176 (Доступ не разрешён) <==== ВНИМАНИЕ
Task: {BA995F9D-78DA-4F4A-8D52-B04C54292037} - System32\Tasks\Microsoft\Windows\WindowsBackup\WinlogonCheck => C:\Programdata\RealtekHD\taskhost.exe (Нет файла) <==== ВНИМАНИЕ
Task: {D60F77FA-2B56-4304-947C-E9431889A4DB} - \qwerty -> Нет файла <==== ВНИМАНИЕ
Task: {EC68D4E9-7AB5-4641-B22C-04FEC82EA86C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-18] (Adobe Inc. -> Adobe)
Task: {F11DCB8A-85E9-4D74-B70E-99F85C367BBE} - System32\Tasks\Microsoft\Windows\WindowsBackup\TaskCheck => C:\Programdata\RealtekHD\taskhostw.exe (Нет файла) <==== ВНИМАНИЕ
Task: {FCA2FBBB-4DB2-44C8-8354-A605B4E2A64F} - System32\Tasks\GridinSoft Anti-Malware => C:\Program Files\GridinSoft Anti-Malware\gsam.exe [26573800 2022-07-29] (GridinSoft, LLC -> Gridinsoft LLC)
C:\Users\qwerty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb
C:\Users\qwerty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cncgohepihcekklokhbhiblhfcmipbdh
C:\Users\qwerty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gehngeifmelphpllncobkmimphfkckne
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [cncgohepihcekklokhbhiblhfcmipbdh]
CHR HKLM-x32\...\Chrome\Extension: [gehngeifmelphpllncobkmimphfkckne]
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Нет файла
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
AlternateDataStreams: C:\ProgramData\TEMP:55B41E6A [140]
AlternateDataStreams: C:\ProgramData\TEMP:D8999815 [200]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [446]
Toolbar: HKLM - DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - Нет файла
Toolbar: HKU\S-1-5-21-1716063134-3212033839-3993041013-1001 -> Нет имени - {91397D20-1446-11D4-8AF4-0040CA1127B6} - Нет файла
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-1716063134-3212033839-3993041013-1001\...\webcompanion.com -> hxxp://webcompanion.com
FirewallRules: [{5A5F14AE-D0D1-4DFF-BDD8-C6E68F5209DE}] => (Allow) LPort=3659
FirewallRules: [{3E566729-C05D-4729-9E6B-F4EA4C1CD540}] => (Allow) LPort=1900
FirewallRules: [{A05EC9DB-000E-4844-A55B-6AA93D7DCFB5}] => (Allow) LPort=7900
FirewallRules: [{9DFE45FF-510B-4FEC-AF9D-5D282332E192}] => (Allow) LPort=24234
FirewallRules: [{133F0E40-F49F-48A3-9AC2-0AF4913F72CE}] => (Allow) LPort=7679
FirewallRules: [{83C6E59F-B047-46BB-83E2-EBC9165BFC3E}] => (Allow) LPort=7676
FirewallRules: [{0955A3DE-0F13-4A9A-918F-198F58E4A554}] => (Allow) LPort=8643
FirewallRules: [{18E2C058-AAC7-487F-801A-14C685B14E37}] => (Allow) LPort=8743
FirewallRules: [{1F067757-319A-4A56-985A-6657D76B06E7}] => (Allow) LPort=26789
FirewallRules: [{7A3E41E5-CC07-40B9-B7BC-672F925AD109}] => (Block) C:\program files\avast software\avast\avastui.exe => Нет файла
FirewallRules: [{485A90D7-30BF-4602-A808-004D5E3291CA}] => (Block) C:\program files\avast software\avast\avastui.exe => Нет файла
FirewallRules: [{78AE4A15-28DC-4A74-BCC0-F4E1DB64E3C6}] => (Allow) LPort=32682
ExportKey: HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions
EmptyTemp:
Reboot:
End::
Такой файл создаётся после очистки. После сканирования к имени файла добавляется [Sxx].файл C не создаёт
Start::
CloseProcesses:
SystemRestore: On
CreateRestorePoint:
S2 Transmission; C:\Program Files (x86)\Transmission\transmission-qt.exe [1558232 2021-09-19] (Доступ не разрешён) [Файл не подписан] <==== ВНИМАНИЕ
S4 TuneUp.Defrag; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe [607040 2015-01-06] (TuneUp Software -> TuneUp Software)
C:\Program Files (x86)\Transmission\
2022-08-05 10:42 - 2020-10-01 00:23 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2022-08-05 10:32 - 2018-09-09 13:29 - 000000000 ____D C:\Users\qwerty\AppData\Roaming\AVAST Software
2022-08-05 10:04 - 2015-01-06 09:30 - 000000000 ____D C:\ProgramData\TuneUp Software
2022-08-04 22:18 - 2018-09-09 13:25 - 000000000 ____D C:\ProgramData\AVAST Software
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
BHO: Нет имени -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Нет файла
FirewallRules: [{E6029BCC-CE2D-432D-893F-B98F673FDE50}] => (Allow) LPort=32682
Reboot:
End::
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?