Darkstriker
Участник
- Сообщения
- 53
- Реакции
- 0
;uVS v4.0.10 [http://dsrt.dyndns.org]
;Target OS: NTv6.3
v400c
OFFSGNSAVE
BREG
sreg
zoo %SystemDrive%\PROGRAM FILES (X86)\RYYCO.EXE
delall %SystemDrive%\PROGRAM FILES (X86)\RYYCO.EXE
delref HTTP://DREAMMY.INFO/QSAZHNKNLSGZ.ZYO
regt 18
czoo
deltmp
areg
Так и задумано, проверка при помощи uvs основывается так же и на результатах VT. После выполнения скрипта попробуйте запустить автологер.Сделал анализ, но лог не было создано, что дальше нужно делать?
Тогда соберите логи согласно правил, дочистим остатки.Автологер запустился
begin
RegKeyParamWrite('HKEY_LOCAL_MACHINE', 'SYSTEM\CurrentControlSet\Services\Eventlog\System\ip100Avista', 'EventMessageFile', 'REG_EXPAND_SZ', '%SystemRoot%\System32\netevent.dll');
RebootWindows(false);
end.
O22 - Task: \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task - {3519154C-227E-47F3-9CC9-12C3F05817F1} - (no file)
Start::
CreateRestorePoint:
HKLM\...\Policies\Explorer: [DisallowRun] 0
HKLM\...\Policies\Explorer: [RestrictRun] 0
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Policies\Explorer: [DisallowRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisallowRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-90886909-452889198-3688984548-1002\...\Policies\Explorer: [DisallowRun] 0
HKU\S-1-5-21-90886909-452889198-3688984548-1002\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisallowRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [RestrictRun] 0
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy\User: Restriction <==== ATTENTION
Task: {BD6B9532-A8F4-4A75-97BA-007B95C54EEA} - \{03B7CAB5-7E42-4E97-AEFA-7EF141668563} -> No File <==== ATTENTION
EmptyTemp:
Reboot:
End::
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?