Запустите файл start.exe из папки с uVS, выберите "Запустить под текущим пользователем", в главном меню программы - Скрипты -> выполнить скрипт из буфера обмена.
В папке с UVS будет лог выполнения скрипта, текстовый файл с именем из даты и времени выполнения, выложите его.
Выделите и скопируйте в буфер обмена следующий код:
Код:
Start::
CreateRestorePoint:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Tcpip\..\Interfaces\{1b133e45-dfe0-4172-9601-de5a66e31f4f}: [NameServer] 185.201.47.42,142.4.214.15
Tcpip\..\Interfaces\{25bc0379-05ed-11e8-ae20-806e6f6e6963}: [NameServer] 185.201.47.42,142.4.214.15
Tcpip\..\Interfaces\{4349759C-118F-46A1-8B84-6E68633EFFFF}: [NameServer] 185.201.47.42,142.4.214.15
Tcpip\..\Interfaces\{885efcab-d28c-42d5-8e86-c3dbc003dad0}: [NameServer] 185.201.47.42,142.4.214.15
Tcpip\..\Interfaces\{9efaf498-08b7-4dd8-9e02-b80555607ef3}: [NameServer] 185.201.47.42,142.4.214.15
Tcpip\..\Interfaces\{da2a8352-5884-4b67-8e03-4f75509a6018}: [NameServer] 185.201.47.42,142.4.214.15
Tcpip\..\Interfaces\{e7cc322d-2479-4f88-9e67-aa6eca93c887}: [NameServer] 185.201.47.42,142.4.214.15
CHR HKU\S-1-5-21-784732282-4158786857-316941376-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ibknafobnmndicojahlppolcaaibngjf]
Folder: C:\ProgramData\Flock2
Folder: C:\Program Files (x86)\UaoyJbnqSYajSbFVLFR
Folder: C:\Program Files (x86)\ytrCIEiBrvqMC
Folder: C:\Program Files (x86)\yhYuOvvYU
2021-02-14 14:58 - 2021-02-15 07:50 - 000000000 ____D C:\ProgramData\Flock2
2021-02-14 20:26 - 2018-02-10 00:20 - 000000000 ____D C:\AdwCleaner
2021-01-17 15:43 - 2021-01-12 13:17 - 000000000 ____D C:\Program Files (x86)\UaoyJbnqSYajSbFVLFR
2021-01-17 15:42 - 2021-01-12 13:17 - 000000000 ____D C:\Program Files (x86)\ytrCIEiBrvqMC
2021-01-17 15:42 - 2021-01-12 13:17 - 000000000 ____D C:\Program Files (x86)\yhYuOvvYU
AdShield 1.0.0.0 (HKLM-x32\...\{ee77461b-3422-4596-884f-8fbc7eea0304}) (Version: 1.0.0.0 - Limbo Solutions) Hidden
URLSearchHook: HKU\S-1-5-80-3880718306-3832830129-1677859214-2598158968-1052248003 - (No Name) - {C9423817-5DA7-494E-87E4-111F1B49A1FD} - No File
FirewallRules: [UDP Query User{FD2084A0-8F02-406F-AB60-7F66BBF73E1B}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45790.exe] => (Block) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45790.exe => No File
FirewallRules: [TCP Query User{AC357B3E-1EFC-4B22-8A47-C61C735284A6}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45790.exe] => (Block) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45790.exe => No File
FirewallRules: [{5587F825-7F07-4BB7-9FE0-694A76880920}] => (Allow) LPort=8501
FirewallRules: [{F45DC1BA-7C51-4815-B127-F5A33B9D5AE6}] => (Allow) LPort=8501
FirewallRules: [UDP Query User{159351EA-227C-4F74-93AF-E408B1889AA6}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45776.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45776.exe => No File
FirewallRules: [TCP Query User{23CF14B7-A0D4-412A-B963-CDF628F642FC}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45776.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45776.exe => No File
FirewallRules: [UDP Query User{9AD32543-FAD4-4A14-BAE7-31AB898E3471}F:\games\wolcen lords of mayhem\win_x64\wolcen.exe] => (Allow) F:\games\wolcen lords of mayhem\win_x64\wolcen.exe => No File
FirewallRules: [TCP Query User{D0746F82-2139-4455-88E4-658AB083D599}F:\games\wolcen lords of mayhem\win_x64\wolcen.exe] => (Allow) F:\games\wolcen lords of mayhem\win_x64\wolcen.exe => No File
FirewallRules: [UDP Query User{4795C4E2-6887-4BCB-9AA7-46A0B035BEC2}F:\games\no mans sky\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) F:\games\no mans sky\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [TCP Query User{AECFFFBD-C5E0-4210-B2C1-704D9153CA28}F:\games\no mans sky\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) F:\games\no mans sky\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [UDP Query User{779DD370-63D6-49A7-9F9E-427007CFA9E1}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45724.exe] => (Block) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45724.exe => No File
FirewallRules: [TCP Query User{A712CB72-8B98-486A-B0D8-3B7C542B7BDB}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45724.exe] => (Block) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45724.exe => No File
FirewallRules: [UDP Query User{A889CA98-8946-4B4B-A41E-8BF4404F91BD}C:\games\warcraft iii\_retail_\x86_64\warcraft iii.exe] => (Allow) C:\games\warcraft iii\_retail_\x86_64\warcraft iii.exe => No File
FirewallRules: [TCP Query User{9F96841A-3876-4B4E-B34D-95984EF5F18B}C:\games\warcraft iii\_retail_\x86_64\warcraft iii.exe] => (Allow) C:\games\warcraft iii\_retail_\x86_64\warcraft iii.exe => No File
FirewallRules: [{9BFC6979-988E-477E-9AC5-F7738731FFE3}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\Temp\DriverPack-20200712153447\tools\aria2c.exe => No File
FirewallRules: [UDP Query User{A9596B12-3156-468F-8974-1EB4F347BE26}F:\games\minecraft dungeons\minecraft_server.exe] => (Allow) F:\games\minecraft dungeons\minecraft_server.exe => No File
FirewallRules: [TCP Query User{AC0339D7-E2C4-4BCE-BD7A-0A93C516E1A0}F:\games\minecraft dungeons\minecraft_server.exe] => (Allow) F:\games\minecraft dungeons\minecraft_server.exe => No File
FirewallRules: [UDP Query User{17B47986-4DC1-4A9E-8C41-4C515221096B}F:\games\age of empires definitive edition\battleserver.exe] => (Allow) F:\games\age of empires definitive edition\battleserver.exe => No File
FirewallRules: [TCP Query User{DA355956-5B9E-4406-99CF-4E9500C2523E}F:\games\age of empires definitive edition\battleserver.exe] => (Allow) F:\games\age of empires definitive edition\battleserver.exe => No File
FirewallRules: [UDP Query User{3E27917A-3C89-4070-A1FA-4BCAFC8C6BBD}F:\games\age of empires definitive edition\aoede_s.exe] => (Allow) F:\games\age of empires definitive edition\aoede_s.exe => No File
FirewallRules: [TCP Query User{27A2DD69-EA24-4C76-844D-52032DFEB2A9}F:\games\age of empires definitive edition\aoede_s.exe] => (Allow) F:\games\age of empires definitive edition\aoede_s.exe => No File
FirewallRules: [UDP Query User{A0E3501E-5B4A-4925-8D0E-BE6DA4AD6D81}F:\games\borderlands 3\oakgame\binaries\win64\borderlands3.exe] => (Allow) F:\games\borderlands 3\oakgame\binaries\win64\borderlands3.exe => No File
FirewallRules: [TCP Query User{10B3E5CE-581F-4010-B190-83B0BAFC5765}F:\games\borderlands 3\oakgame\binaries\win64\borderlands3.exe] => (Allow) F:\games\borderlands 3\oakgame\binaries\win64\borderlands3.exe => No File
FirewallRules: [{A760DD7B-AFBD-482E-86CB-4883CD59C317}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\Chedot\Application\chedot.exe => No File
FirewallRules: [{00DA89CF-1C2D-4A7F-998F-4318D091F022}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\Temp\ULauncher-c9r8YW\ULauncher-64.exe => No File
FirewallRules: [{78DC4B9D-3EAA-4A50-A6F6-0AF74B2B4D35}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\Temp\ULauncher-c9r8YW\ULauncher-64.exe => No File
FirewallRules: [{018A2655-5DFA-4889-A392-BB73DF284E33}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\uwow.biz\ULauncher\ULauncher.exe => No File
FirewallRules: [{812207F3-4A22-48A9-BEDE-B784B146D6F8}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\uwow.biz\ULauncher\ULauncher.exe => No File
FirewallRules: [UDP Query User{CF31EDC3-27E6-4D77-8BC1-349B60850A0E}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45704.exe] => (Block) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45704.exe => No File
FirewallRules: [TCP Query User{6246BE3A-BF8E-411A-AD91-D9AFCE37C73C}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45704.exe] => (Block) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45704.exe => No File
FirewallRules: [{6A164E29-FAA8-4A05-AB82-9708FCCCED32}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\uwow.biz\ULauncher\ULauncher-64.exe => No File
FirewallRules: [{4608D5CF-3940-4FF9-BFA8-8132D35E47D5}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\uwow.biz\ULauncher\ULauncher-64.exe => No File
FirewallRules: [{7C073FFB-BA23-4B7B-927A-D607B5D44FC6}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\uwow.biz\ULauncher\ULauncher-64.exe => No File
FirewallRules: [{25C924CD-BC01-48BC-A4C3-6E1E04F03B1B}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\uwow.biz\ULauncher\ULauncher-64.exe => No File
FirewallRules: [{68FB5691-0F57-4609-AF0A-1ADC079FF5D9}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\uwow.biz\ULauncher\ULauncher.exe => No File
FirewallRules: [{F6F08FE5-B7EA-411A-8FF6-A0660E9B45ED}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\uwow.biz\ULauncher\ULauncher.exe => No File
FirewallRules: [UDP Query User{B966BB8E-0D15-4277-BDDB-37B3AE25AC00}F:\games\max payne 3 - complete edition\max payne 3\maxpayne3.exe] => (Allow) F:\games\max payne 3 - complete edition\max payne 3\maxpayne3.exe => No File
FirewallRules: [TCP Query User{D737CD78-D357-42EF-BBF2-04EC97922848}F:\games\max payne 3 - complete edition\max payne 3\maxpayne3.exe] => (Allow) F:\games\max payne 3 - complete edition\max payne 3\maxpayne3.exe => No File
FirewallRules: [UDP Query User{DBB6D6C4-A6FA-4BC6-8D53-77013CB7DF82}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45672.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45672.exe => No File
FirewallRules: [TCP Query User{32FDC08B-7422-46FB-B223-021C208D58FC}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45672.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45672.exe => No File
FirewallRules: [UDP Query User{DDC061D1-73C5-4F87-B8F2-DED97B0831BE}F:\games\counter-strike 1.6 2020\hl.exe] => (Allow) F:\games\counter-strike 1.6 2020\hl.exe => No File
FirewallRules: [TCP Query User{F64F26E6-F58E-411F-AC79-CE3DD62AE962}F:\games\counter-strike 1.6 2020\hl.exe] => (Allow) F:\games\counter-strike 1.6 2020\hl.exe => No File
FirewallRules: [UDP Query User{ECEEB9E6-E359-4C59-96E2-73DCB1F17AD5}F:\games\counter-strike 1.6 2020\cs16_start.exe] => (Allow) F:\games\counter-strike 1.6 2020\cs16_start.exe => No File
FirewallRules: [TCP Query User{6EBABEA0-5CBE-4A21-A9F2-CF794DA3C64A}F:\games\counter-strike 1.6 2020\cs16_start.exe] => (Allow) F:\games\counter-strike 1.6 2020\cs16_start.exe => No File
FirewallRules: [UDP Query User{878319DF-EFB7-44A1-9427-DC4CDDE82BA2}F:\games\wheelsofaurelia\wheelsofaurelia.exe] => (Allow) F:\games\wheelsofaurelia\wheelsofaurelia.exe => No File
FirewallRules: [TCP Query User{A7EC252D-272A-4F86-836E-414D04C11025}F:\games\wheelsofaurelia\wheelsofaurelia.exe] => (Allow) F:\games\wheelsofaurelia\wheelsofaurelia.exe => No File
FirewallRules: [UDP Query User{35579D13-2A33-46FC-BAB3-EF6BF4A58F99}F:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) F:\games\the sims 4\game\bin\ts4_x64.exe => No File
FirewallRules: [TCP Query User{290705B1-815C-44E7-A23E-EBEA95EF617E}F:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) F:\games\the sims 4\game\bin\ts4_x64.exe => No File
FirewallRules: [UDP Query User{EFA9B209-D118-4390-8ADC-E4C22022280F}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45628.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45628.exe => No File
FirewallRules: [TCP Query User{E3B0A32D-BDD2-4099-B4CC-35854DE47C0B}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45628.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45628.exe => No File
FirewallRules: [UDP Query User{8AD00EDB-CF29-4354-A3AF-91FA4D5235B6}C:\games\warcraft iii\x86_64\warcraft iii.exe] => (Allow) C:\games\warcraft iii\x86_64\warcraft iii.exe => No File
FirewallRules: [TCP Query User{F45B4A37-9C92-41F6-8E2B-259938D54BB4}C:\games\warcraft iii\x86_64\warcraft iii.exe] => (Allow) C:\games\warcraft iii\x86_64\warcraft iii.exe => No File
FirewallRules: [UDP Query User{9D170C5B-307D-40EC-B8FE-72EEC350D5E9}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45608.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45608.exe => No File
FirewallRules: [TCP Query User{82EAE828-43AE-46F9-B624-CCE1A350394B}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45608.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45608.exe => No File
FirewallRules: [UDP Query User{DCDDBCC0-B67B-4B9A-8231-CC9A21742A82}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45574.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45574.exe => No File
FirewallRules: [TCP Query User{5F68A008-21AF-4A4B-954E-1D82669D405F}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45574.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45574.exe => No File
FirewallRules: [UDP Query User{0781729F-6E6E-4A36-94B0-24794212436C}C:\games\fallout 4\fallout4.exe] => (Allow) C:\games\fallout 4\fallout4.exe => No File
FirewallRules: [TCP Query User{F5578BEE-D7DB-444A-9409-47C6A04A71D9}C:\games\fallout 4\fallout4.exe] => (Allow) C:\games\fallout 4\fallout4.exe => No File
FirewallRules: [UDP Query User{86094DB8-7AA6-4CD6-AF87-6A2F52FCBE3D}F:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) F:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe => No File
FirewallRules: [TCP Query User{C78D9EAD-996E-4FA2-B7EA-FAB05EFD35F6}F:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) F:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe => No File
FirewallRules: [UDP Query User{DF99D380-E6DD-44E1-A354-FF976A6C3ACA}C:\users\Yasha Ponchik\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\Yasha Ponchik\appdata\local\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{908D6718-27B0-4CC0-9D98-6F1652FB8756}C:\users\Yasha Ponchik\desktop\teamviewer12_crk\teamviewer.exe] => (Allow) C:\users\Yasha Ponchik\desktop\teamviewer12_crk\teamviewer.exe => No File
FirewallRules: [UDP Query User{453AAA2C-CE58-4CD7-BAC1-C0909E449043}C:\users\Yasha Ponchik\appdata\local\microsip\microsip.exe] => (Allow) C:\users\Yasha Ponchik\appdata\local\microsip\microsip.exe => No File
FirewallRules: [TCP Query User{D40D6809-0808-4C65-B687-7EF89F5EEBB3}C:\users\Yasha Ponchik\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\Yasha Ponchik\appdata\local\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{9E33C7C8-EF8A-4FFE-88B6-2170F419DCAE}C:\users\Yasha Ponchik\appdata\local\microsip\microsip.exe] => (Allow) C:\users\Yasha Ponchik\appdata\local\microsip\microsip.exe => No File
FirewallRules: [TCP Query User{7E837292-2652-4CEB-B07E-E100F76917B4}C:\users\Yasha Ponchik\desktop\teamviewer12_crk\teamviewer.exe] => (Allow) C:\users\Yasha Ponchik\desktop\teamviewer12_crk\teamviewer.exe => No File
FirewallRules: [UDP Query User{890663D5-7664-4150-8264-70ED7FE00615}C:\games\batmanarkhamasylum\binaries\shippingpc-bmgame.exe] => (Block) C:\games\batmanarkhamasylum\binaries\shippingpc-bmgame.exe => No File
FirewallRules: [TCP Query User{7132457F-7F99-40AF-A1DC-B66DCEEFC266}C:\games\batmanarkhamasylum\binaries\shippingpc-bmgame.exe] => (Block) C:\games\batmanarkhamasylum\binaries\shippingpc-bmgame.exe => No File
FirewallRules: [UDP Query User{29B9DBA7-5940-4C40-9A96-3EFA871BB3A6}F:\games\rage 2\rage2.exe] => (Allow) F:\games\rage 2\rage2.exe => No File
FirewallRules: [TCP Query User{6E1A83FA-E253-4FAB-A8FF-3FE29456C0E3}F:\games\rage 2\rage2.exe] => (Allow) F:\games\rage 2\rage2.exe => No File
FirewallRules: [{DE1D92B5-E1BF-485C-9F79-83E6BC4FE8A7}] => (Allow) C:\Users\Yasha Ponchik\AppData\Local\Programs\Opera\65.0.3467.42\opera.exe => No File
FirewallRules: [UDP Query User{C7E4BC69-E77F-45B7-835F-BC89EB484D5A}F:\games\generation zero\generationzero_f.exe] => (Allow) F:\games\generation zero\generationzero_f.exe => No File
FirewallRules: [TCP Query User{3E043BE9-0A16-43FB-BDC2-D9BED5EB101C}F:\games\generation zero\generationzero_f.exe] => (Allow) F:\games\generation zero\generationzero_f.exe => No File
FirewallRules: [UDP Query User{B9C133DE-E29C-44B0-AA57-3BE39F1A7085}F:\games\sunset overdrive\sunset.exe] => (Allow) F:\games\sunset overdrive\sunset.exe => No File
FirewallRules: [TCP Query User{7D8DB8D5-631B-4249-9F77-E49AD1D0F2ED}F:\games\sunset overdrive\sunset.exe] => (Allow) F:\games\sunset overdrive\sunset.exe => No File
FirewallRules: [UDP Query User{B258C3D8-45C2-4E5E-B657-BAB76B62E3BE}F:\games\fade to silence\fadetosilence\binaries\win64\fadetosilence-win64-shipping.exe] => (Allow) F:\games\fade to silence\fadetosilence\binaries\win64\fadetosilence-win64-shipping.exe => No File
FirewallRules: [TCP Query User{EDD3F699-C6BF-42B0-8D78-A10D1AE12AE8}F:\games\fade to silence\fadetosilence\binaries\win64\fadetosilence-win64-shipping.exe] => (Allow) F:\games\fade to silence\fadetosilence\binaries\win64\fadetosilence-win64-shipping.exe => No File
FirewallRules: [UDP Query User{63119037-C80D-478A-92E4-269736C2B43F}F:\games\minecraft 1.12\runtime\x64\bin\javaw.exe] => (Allow) F:\games\minecraft 1.12\runtime\x64\bin\javaw.exe => No File
FirewallRules: [TCP Query User{451D419B-36BE-4D17-9185-F5DAB5724DD4}F:\games\minecraft 1.12\runtime\x64\bin\javaw.exe] => (Allow) F:\games\minecraft 1.12\runtime\x64\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0B670A20-38CA-4025-95E7-002D2EA22C75}F:\games\divinity - original sin 2\bin\eocapp.exe] => (Allow) F:\games\divinity - original sin 2\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{22CAD98F-05E1-4C74-9492-8EC2ADB7163F}F:\games\divinity - original sin 2\bin\eocapp.exe] => (Allow) F:\games\divinity - original sin 2\bin\eocapp.exe => No File
FirewallRules: [UDP Query User{B8E1FCC7-4E43-41A5-A061-3EDE8BC78078}F:\games\gta\gta5.exe] => (Allow) F:\games\gta\gta5.exe => No File
FirewallRules: [TCP Query User{63CD326A-0440-436D-833C-546969A1BBE2}F:\games\gta\gta5.exe] => (Allow) F:\games\gta\gta5.exe => No File
FirewallRules: [UDP Query User{471071EE-F5EF-4F25-BA46-B5ABD0B5CE52}C:\program files (x86)\zona\zona.exe] => (Allow) C:\program files (x86)\zona\zona.exe => No File
FirewallRules: [TCP Query User{55DA7CF8-BED0-410E-A72A-A25FED50BFED}C:\program files (x86)\zona\zona.exe] => (Allow) C:\program files (x86)\zona\zona.exe => No File
FirewallRules: [TCP Query User{B6676330-8A33-496E-9086-C36C1A4AF20A}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{03E1455E-C988-4CCA-A897-76D8D66097B4}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [{8CFA8677-686A-4CE3-820B-97E5D9BDC399}] => (Allow) F:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{AAA604B8-80A5-4A05-82C1-AEB733B79948}] => (Allow) F:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{B3A6A10D-E20E-4C41-8DAC-1F674D2F6C00}F:\games\dead or alive 5\game\game.exe] => (Allow) F:\games\dead or alive 5\game\game.exe => No File
FirewallRules: [UDP Query User{38B2BBAC-81C2-4F71-97BD-2026E318955F}F:\games\dead or alive 5\game\game.exe] => (Allow) F:\games\dead or alive 5\game\game.exe => No File
FirewallRules: [TCP Query User{ECA4216C-5637-4629-8145-103E7CC557BB}F:\downloads\destiny\launcher\launcher.exe] => (Allow) F:\downloads\destiny\launcher\launcher.exe => No File
FirewallRules: [UDP Query User{FAC15772-B514-4956-992A-F013911C3BCC}F:\downloads\destiny\launcher\launcher.exe] => (Allow) F:\downloads\destiny\launcher\launcher.exe => No File
FirewallRules: [TCP Query User{52794103-0D4F-4DBE-8474-3A54E202A5C1}F:\games\pathfinder kingmaker\kingmaker.exe] => (Allow) F:\games\pathfinder kingmaker\kingmaker.exe => No File
FirewallRules: [UDP Query User{8ED4A0D9-80E1-4392-9FC4-BB089B5D38E5}F:\games\pathfinder kingmaker\kingmaker.exe] => (Allow) F:\games\pathfinder kingmaker\kingmaker.exe => No File
FirewallRules: [TCP Query User{0D5F0E5A-F0DB-4EC9-BFDA-F682FED8BE6A}C:\program files (x86)\zona\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\zona\jre\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D4918C82-8B9D-4B8C-BB80-0122FFFAAA5A}C:\program files (x86)\zona\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\zona\jre\bin\javaw.exe => No File
FirewallRules: [{F5E8B38A-191F-40F7-8AB0-98854F2B1429}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe => No File
FirewallRules: [{6ADA0AC7-A732-4212-AD89-A58BA5415A2F}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe => No File
FirewallRules: [TCP Query User{0D1C3926-0A6B-417C-947B-EFF7BEC7C15E}F:\game\tes v tamriel online\tamrielonline_live_server.exe] => (Allow) F:\game\tes v tamriel online\tamrielonline_live_server.exe => No File
FirewallRules: [UDP Query User{76905E4B-8ACC-4DFB-86F9-F7B456770BCE}F:\game\tes v tamriel online\tamrielonline_live_server.exe] => (Allow) F:\game\tes v tamriel online\tamrielonline_live_server.exe => No File
FirewallRules: [TCP Query User{0426F2DD-E4E4-4504-974C-1A96782083F1}F:\guardiansofember\client_x86.exe] => (Allow) F:\guardiansofember\client_x86.exe => No File
FirewallRules: [UDP Query User{51BDFA8B-7559-4ABA-8640-93AE9D3F6589}F:\guardiansofember\client_x86.exe] => (Allow) F:\guardiansofember\client_x86.exe => No File
FirewallRules: [TCP Query User{240E0E1F-F94D-4555-B705-D33D098BE883}F:\games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe] => (Allow) F:\games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe => No File
FirewallRules: [UDP Query User{B1169537-61CD-44F8-8662-4731E9D3F59B}F:\games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe] => (Allow) F:\games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe => No File
FirewallRules: [TCP Query User{6C1BB9ED-91C7-4426-861B-FFDD56446824}C:\program files\dbeaver\dbeaver.exe] => (Allow) C:\program files\dbeaver\dbeaver.exe => No File
FirewallRules: [UDP Query User{9B27EC6C-5D8B-44AB-A0F5-D0E94A7934B9}C:\program files\dbeaver\dbeaver.exe] => (Allow) C:\program files\dbeaver\dbeaver.exe => No File
FirewallRules: [TCP Query User{EBC2A1F1-7D01-401E-B0CD-3591C54E5E4B}F:\downloads\battlefield hardline - ultimate edition (2015) repack by canek77\f.a.q\offline bf hardline rus patch\bfh.exe] => (Allow) F:\downloads\battlefield hardline - ultimate edition (2015) repack by canek77\f.a.q\offline bf hardline rus patch\bfh.exe => No File
FirewallRules: [UDP Query User{1F54E2D8-2504-426F-BB7A-99EE539C3C58}F:\downloads\battlefield hardline - ultimate edition (2015) repack by canek77\f.a.q\offline bf hardline rus patch\bfh.exe] => (Allow) F:\downloads\battlefield hardline - ultimate edition (2015) repack by canek77\f.a.q\offline bf hardline rus patch\bfh.exe => No File
FirewallRules: [TCP Query User{58B75337-1963-40B5-948F-AEF199E60D61}F:\games\battlefield hardline\bfh.exe] => (Allow) F:\games\battlefield hardline\bfh.exe => No File
FirewallRules: [UDP Query User{0CE1C151-EBEC-4FFE-BFCE-11D077C571CF}F:\games\battlefield hardline\bfh.exe] => (Allow) F:\games\battlefield hardline\bfh.exe => No File
FirewallRules: [{3E9C8DB0-659E-4D48-A777-218707DFFD5F}] => (Allow) LPort=12292
FirewallRules: [TCP Query User{6459E3E2-2BDD-4C42-9992-743C490AAE96}F:\games\rs2v\binaries\win64\risingstorm2.exe] => (Allow) F:\games\rs2v\binaries\win64\risingstorm2.exe => No File
FirewallRules: [UDP Query User{DAF58D27-B7B0-4ABB-87A1-1018E052AE79}F:\games\rs2v\binaries\win64\risingstorm2.exe] => (Allow) F:\games\rs2v\binaries\win64\risingstorm2.exe => No File
FirewallRules: [TCP Query User{358800BC-3634-4FF4-95D7-12B582AEA820}F:\games\dawn of war iii\relicdow3.exe] => (Allow) F:\games\dawn of war iii\relicdow3.exe => No File
FirewallRules: [UDP Query User{020F5523-1037-4323-A900-0D189DF8D38A}F:\games\dawn of war iii\relicdow3.exe] => (Allow) F:\games\dawn of war iii\relicdow3.exe => No File
FirewallRules: [TCP Query User{3921C019-5F28-4609-86F8-05C456254ABB}F:\games\warhammer 40,000 dawn of war iii\relicdow3.exe] => (Allow) F:\games\warhammer 40,000 dawn of war iii\relicdow3.exe => No File
FirewallRules: [UDP Query User{CC377D84-B0D7-45BB-8791-949671BD43EB}F:\games\warhammer 40,000 dawn of war iii\relicdow3.exe] => (Allow) F:\games\warhammer 40,000 dawn of war iii\relicdow3.exe => No File
FirewallRules: [TCP Query User{425AAA89-A3B9-49EF-836D-4AF458077F68}F:\games\baldurs gate 3\bin\bg3.exe] => (Allow) F:\games\baldurs gate 3\bin\bg3.exe => No File
FirewallRules: [UDP Query User{2C4960E1-CB0E-4BD8-9DC8-56E107FB8B22}F:\games\baldurs gate 3\bin\bg3.exe] => (Allow) F:\games\baldurs gate 3\bin\bg3.exe => No File
FirewallRules: [TCP Query User{67AE6F48-CDE1-45F9-9354-375935DB13DE}F:\games\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) F:\games\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [UDP Query User{1EFDE070-2842-4E0F-ACB5-936BACCB7E16}F:\games\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) F:\games\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [TCP Query User{8F25299E-6E9E-4FCE-96E4-C974112F81D5}F:\games\gamecenter\wgc.exe] => (Allow) F:\games\gamecenter\wgc.exe => No File
FirewallRules: [UDP Query User{6518A71A-9BFA-4BD8-BEDD-007DEAD932EB}F:\games\gamecenter\wgc.exe] => (Allow) F:\games\gamecenter\wgc.exe => No File
FirewallRules: [TCP Query User{87356D4C-8605-4E8A-B76D-CF32AB32B72B}F:\games\калибр\game.exe] => (Allow) F:\games\калибр\game.exe => No File
FirewallRules: [UDP Query User{E7A4F6F1-83D6-4B51-9EE4-E910C5D3EDF3}F:\games\калибр\game.exe] => (Allow) F:\games\калибр\game.exe => No File
FirewallRules: [TCP Query User{D595608B-6128-487A-A6C6-066B63CC09F4}F:\games\dawn of war ii - retribution\dow2.exe] => (Allow) F:\games\dawn of war ii - retribution\dow2.exe => No File
FirewallRules: [UDP Query User{219B74AF-4DCC-4F6C-9668-621B06157FE7}F:\games\dawn of war ii - retribution\dow2.exe] => (Allow) F:\games\dawn of war ii - retribution\dow2.exe => No File
FirewallRules: [TCP Query User{73CB3526-F88C-49C8-A582-ECC3F3D5AC36}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45828.exe] => (Block) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45828.exe => No File
FirewallRules: [UDP Query User{EC9C70A0-65C2-4716-AB4F-674EECA4E4D8}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45828.exe] => (Block) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45828.exe => No File
FirewallRules: [TCP Query User{91AF42A8-7160-49EA-9B9B-029527E10EA0}F:\games\red orchestra 2. heroes of stalingrad\binaries\win32\rogame.exe] => (Allow) F:\games\red orchestra 2. heroes of stalingrad\binaries\win32\rogame.exe => No File
FirewallRules: [UDP Query User{2D49FD39-8F4B-4157-913E-4405F8C9CE70}F:\games\red orchestra 2. heroes of stalingrad\binaries\win32\rogame.exe] => (Allow) F:\games\red orchestra 2. heroes of stalingrad\binaries\win32\rogame.exe => No File
FirewallRules: [TCP Query User{EA62ABEC-0D53-4783-A7D7-428C3F756998}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45838.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45838.exe => No File
FirewallRules: [UDP Query User{20B502A6-2308-42E2-846C-FEF83C847DAC}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45838.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45838.exe => No File
FirewallRules: [TCP Query User{5584FB4C-56FE-4A95-986A-C3B59AF83D3B}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45852.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45852.exe => No File
FirewallRules: [UDP Query User{FC2EF827-E727-4E0F-AA0D-0222CA636C65}C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45852.exe] => (Allow) C:\users\yasha ponchik\appdata\roaming\utorrent\updates\3.5.5_45852.exe => No File
FirewallRules: [{D3276B8C-D9E9-4662-9DDC-2D8C0AEED37A}] => (Allow) C:\Program Files (x86)\AdShield\updater.exe => No File
FirewallRules: [{94FECCB5-C727-49BB-9196-CE6E4BD4523E}] => (Allow) C:\Program Files (x86)\AdShield\updater.exe => No File
FirewallRules: [TCP Query User{5B122A27-A999-48E1-AD8B-E0A0C3FF5375}F:\downloads\red.dead.redemption.2.ultimate.edition.rgl.rip-insaneramzes\red dead redemption 2\rdr2.exe] => (Allow) F:\downloads\red.dead.redemption.2.ultimate.edition.rgl.rip-insaneramzes\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{CE094FEE-F49C-4FB0-8A01-0DC86718E509}F:\downloads\red.dead.redemption.2.ultimate.edition.rgl.rip-insaneramzes\red dead redemption 2\rdr2.exe] => (Allow) F:\downloads\red.dead.redemption.2.ultimate.edition.rgl.rip-insaneramzes\red dead redemption 2\rdr2.exe => No File
FirewallRules: [TCP Query User{736CF524-8446-42C2-97EF-76A501700EE5}C:\users\yasha ponchik\appdata\local\temp\rar$exa0.840\chebrowser-win-x64\chebrowser.exe] => (Allow) C:\users\yasha ponchik\appdata\local\temp\rar$exa0.840\chebrowser-win-x64\chebrowser.exe => No File
FirewallRules: [UDP Query User{D791C8E5-8802-45AD-81AC-D058EDF68163}C:\users\yasha ponchik\appdata\local\temp\rar$exa0.840\chebrowser-win-x64\chebrowser.exe] => (Allow) C:\users\yasha ponchik\appdata\local\temp\rar$exa0.840\chebrowser-win-x64\chebrowser.exe => No File
FirewallRules: [{D3C83781-D931-418C-A2BE-120FE61318AA}] => (Allow) C:\Program Files (x86)\Zona\Zona.exe => No File
FirewallRules: [{91B68FAC-4F6B-403C-8415-CF7E480385A4}] => (Allow) C:\Program Files (x86)\Zona\Zona.exe => No File
Reboot:
End::
Запустите FRST.EXE/FRST64.EXE, нажмите один раз Fix и подождите. Программа создаст лог-файл (Fixlog.txt). Выложите его.
Компьютер будет перезагружен автоматически.
Надоело быть жертвой? Стань профи по информационной безопасности, получай самую свежую информацию об угрозах и средствах защиты от ведущего российского аналитического центра Anti-Malware.ru:
Так же во вложении файл с работой каспера по защите из сети.
Вчера после чистки ещё раз сбросил кэш и т.д. у Хрома.
А сегодня утром при запуске он мне насыпал вот таких строк.
Вкладку с ru.terraria.fandom.com я закрыл. Но вкладки с https://geegedolum.com у меня не было открыто, вот что странно и думаю отсюда и лезет майнер.
Запустите FRST.EXE/FRST64.EXE, нажмите один раз Fix и подождите. Программа создаст лог-файл (Fixlog.txt). Прикрепите его к своему следующему сообщению.
Компьютер будет перезагружен автоматически.
По этому скачал с вроде как "офф сайта" производителя.
На всякий случай поясню. В ресурсах там устаревшая версия ибо актуальная считается тестовой так как собрана на базе тестового AVZ. По факту же тестовая она уже пару лет и намного лучше работает, чем релизная.
Но то что в ней нет автоматического обновления баз AVZ мешает перевести её в статус релизной .
Набор установленных у меня расширений https://disk.yandex.ru/i/Qogfd3XMsPpiKg. Этого YoutubeDownloader тут и не было вроде как, если только нельзя как-то увидеть скрытые.
Так же во вложении лог после фикса.
- - - - -Добавлено - - - - -
Сообщение от regist
По факту же тестовая она уже пару лет и намного лучше работает, чем релизная.
Такая же история с xStarter - бесплатная альтернатива для AutoMate.
Чтобы всегда быть в курсе актуальных угроз в области информационной безопасности и сохранять свой компьютер защищенным, рекомендуем следить за последними новостями ИТ-сферы портала Anti-Malware.ru: