Созданные ответы форума
-
Сообщения
-
Fix result of Farbar Recovery Scan Tool (x86) Version: 24-09-2016 02
Ran by Evg (25-09-2016 12:08:46) Run:1
Running from C:\Documents and Settings\Evg\Мои документы\Загрузки
Loaded Profiles: Evg & UpdatusUser (Available Profiles: Evg & UpdatusUser & Администратор)
Boot Mode: Normal==============================================
fixlist content:
*****************
CreateRestorePoint:
HKU\S-1-5-21-1614895754-413027322-1801674531-1003\…\Run: [ggugxprcpl] => «hxxp://rigneda.ru/?utm_source=uoua03&utm_content=3f5ac389090854fdc20d4928cb8b84b3&utm_term=915DBC963E53E808F2023B43E8789609&utm_d=20160918»
GroupPolicyScripts: Restriction < ======= ATTENTION
GroupPolicyScripts\User: Restriction <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HKLM\…\Chrome\Extension: [aminlpmkfcdibgpgfajlgnamicjckkjf] — hxxp://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [ccfifbojenkenpkmnbnndeadpfdiffof] — hxxps://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [gdknicmnhbaajdglbinpahhapghpakch] — hxxps://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [jdkihdhlegcdggknokfekoemkjjnjhgi] — hxxp://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [jedelkhanefmcnpappfhachbpnlhomai] — hxxps://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [jggbjbmnfmipgcanidamjfpechdeekoi] — hxxps://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [oelpkepjlgmehajehfeicfbjdiobdkfj] — hxxps://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [pchfckkccldkbclgdepkaonamkignanh] — hxxp://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [pganlglbhgfjfgopijbhemcpbehjnpia] — hxxps://clients2.google.com/service/update2/crx
CHR HKLM\…\Chrome\Extension: [pldbienodkpgkccocelidinmciedjdok] — hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Google\Chrome\Extensions\…\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] — hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Google\Chrome\Extensions\…\Chrome\Extension: [kneggodalbcmgdkkfhbhbicbbahnacjb] — hxxp://vkplayerpro.ru/index.xml
CHR HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Google\Chrome\Extensions\…\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] —
S3 19FFC4915C; no ImagePath
S1 BDEnhanceBoost; system32\DRIVERS\BDEnhanceBoost.sys [X]
S3 ggflt; system32\DRIVERS\ggflt.sys [X]
S3 ggsemc; system32\DRIVERS\ggsemc.sys [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:054203E4 [278]
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:28AE6654 [169]
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:AE7261F6 [306]
DomainProfile\AuthorizedApplications: [C:\Program Files\Common Files\Tencent\QQDownload\123\Tencentdl.exe] => Enabled:腾讯产品下载组件
DomainProfile\AuthorizedApplications: [C:\Program Files\Common Files\Baidu\BDDownload\108\bddownloader.exe] => Enabled:百度高速下载器
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Tencent\QQDownload\123\Tencentdl.exe] => Enabled:腾讯产品下载组件
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Baidu\BDDownload\108\bddownloader.exe] => Enabled:百度高速下载器
EmptyTemp:
Reboot:
*****************Restore point was successfully created.
HKU\S-1-5-21-1614895754-413027322-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run\\ggugxprcpl => value removed successfully.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\system32\GroupPolicy\User => moved successfully
«HKLM\SOFTWARE\Policies\Google» => key removed successfully.
«HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Policies\Google» => key removed successfully.
«HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer» => key removed successfully.
CHR dev: Chrome dev build detected! <======= ATTENTION => Error: No automatic fix found for this entry.
«HKLM\SOFTWARE\Google\Chrome\Extensions\aminlpmkfcdibgpgfajlgnamicjckkjf» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\ccfifbojenkenpkmnbnndeadpfdiffof» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\gdknicmnhbaajdglbinpahhapghpakch» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\jdkihdhlegcdggknokfekoemkjjnjhgi» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\jedelkhanefmcnpappfhachbpnlhomai» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\jggbjbmnfmipgcanidamjfpechdeekoi» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\oelpkepjlgmehajehfeicfbjdiobdkfj» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\pchfckkccldkbclgdepkaonamkignanh» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\pganlglbhgfjfgopijbhemcpbehjnpia» => key removed successfully.
«HKLM\SOFTWARE\Google\Chrome\Extensions\pldbienodkpgkccocelidinmciedjdok» => key removed successfully.
«HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd» => key removed successfully.
«HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Google\Chrome\Extensions\kneggodalbcmgdkkfhbhbicbbahnacjb» => key removed successfully.
HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Google\Chrome\Extensions\CHR HKU\S-1-5-21-1614895754-413027322-1801674531-1003\SOFTWARE\Google\Chrome\Extensions\…\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] — => key not found.
19FFC4915C => service removed successfully.
BDEnhanceBoost => service removed successfully.
ggflt => service removed successfully.
ggsemc => service removed successfully.
IntelIde => service removed successfully.
WS2IFSL => service removed successfully.
C:\Documents and Settings\All Users\Application Data\TEMP => «:054203E4» ADS removed successfully..
C:\Documents and Settings\All Users\Application Data\TEMP => «:28AE6654» ADS removed successfully..
C:\Documents and Settings\All Users\Application Data\TEMP => «:AE7261F6» ADS removed successfully..
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\Common Files\Tencent\QQDownload\123\Tencentdl.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\Common Files\Baidu\BDDownload\108\bddownloader.exe => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Common Files\Tencent\QQDownload\123\Tencentdl.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Common Files\Baidu\BDDownload\108\bddownloader.exe => value removed successfully.=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache => 94230 B
Java, Flash, Steam htmlcache => 206430 B
Windows/system/dllcache/drivers => 16454 B
Edge => 0 B
Chrome => 18639058 B
Firefox => 12132031 B
Opera => 0 BTemp, IE cache, history, cookies, recent:
Default User => 66228 B
All Users => 0 B
systemprofile => 115380 B
LocalService => 338612 B
NetworkService => 692 B
Evg => 7120353 B
UpdatusUser => 66228 B
Администратор.EVG-2BEBFA60505 => 0 BRecycleBin => 0 B
EmptyTemp: => 37 MB temporary data Removed.================================
The system needed a reboot.
==== End of Fixlog 12:08:59 ====
