Скопируйте код ниже в буфер обмена
Код:
;uVS v3.87.4 [http://dsrt.dyndns.org]
;Target OS: NTv6.3
OFFSGNSAVE
del %SystemDrive%\USERS\QWERTY59\APPDATA\LOCAL\YANDEX\BROWSER.BAT
delall %SystemDrive%\PROGRAMDATA\APPDATA\LOCAL\TEMP\RAR$EXA0.822\CRONOS.EXE
delref HTTP://SEARCH-DAS.RU
del %SystemDrive%\IEXPLORE.BAT
del %SystemDrive%\LAUNCHER.BAT
delref HTTP:\\SEARCH-DAS.RU
delall %SystemDrive%\PROGRAMDATA\APPDATA\LOCAL\TEMP\RAR$EXA0.822\SETUP.EXE
delref %SystemDrive%\USERS\QWERTY59\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 6\EXTENSIONS\LMJEGMLICAMNIMMFHCMPKCLMIGMMCBEH\3.2_0\APPLICATION LAUNCHER FOR DRIVE (BY GOOGLE)
delref %SystemDrive%\USERS\QWERTY59\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 5\EXTENSIONS\LMJEGMLICAMNIMMFHCMPKCLMIGMMCBEH\3.2_0\APPLICATION LAUNCHER FOR DRIVE (BY GOOGLE)
delref %SystemDrive%\USERS\QWERTY59\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\LMJEGMLICAMNIMMFHCMPKCLMIGMMCBEH\3.2_0\APPLICATION LAUNCHER FOR DRIVE (BY GOOGLE)
delref %SystemDrive%\USERS\QWERTY59\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\LMJEGMLICAMNIMMFHCMPKCLMIGMMCBEH\3.2_0\APPLICATION LAUNCHER FOR DRIVE (BY GOOGLE)
delref %SystemDrive%\USERS\QWERTY59\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 6\EXTENSIONS\PKEDCJKDEFGPDELPBCMBMEOMCJBEEMFM\5116.418.1.11_0\CHROME MEDIA ROUTER
delref %SystemDrive%\USERS\QWERTY59\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 5\EXTENSIONS\PKEDCJKDEFGPDELPBCMBMEOMCJBEEMFM\5116.418.1.11_0\CHROME MEDIA ROUTER
delref EXPLORER.EXE HTTP://KB-RIBAKI.ORG
delref HTTP://KB-RIBAKI.ORG
delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DLMJEGMLICAMNIMMFHCMPKCLMIGMMCBEH%26INSTALLSOURCE%3DONDEMAND%26UC
regt 28
regt 29
deltmp
delnfr
restart
Закройте все браузеры. Запустите UVS под текущим пользователем. В меню: Скрипты---Выполнить из буфера обмена. После перезагрузки выполните сканирование
Malwarebytes и выложите полученый лог