Технический форум - Прошу помощи в борьбе с вирусами

Скопируйте код ниже в буфер обмена

Код:

;uVS v3.87.3 [http://dsrt.dyndns.org]

;Target OS: NTv10.0

OFFSGNSAVE

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\LMJEGMLICAMNIMMFHCMPKCLMIGMMCBEH\3.2_0\APPLICATION LAUNCHER FOR DRIVE (BY GOOGLE)

delref HTTP://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DGDLJKKMGHDKCKHAOGAEMGBGDFOPHKFCO%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTP://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DHPCGHCDJNEHPKDECAFLPEDHKLIMNEJIA%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTP://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DLGDNILODCPLJOMELBBNPGDOGDBMCLBNI%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTP://GO.MAIL.RU/DISTIB/EP/?PRODUCT_ID=%7B9890A669-79E4-44D2-9C7B-C66ED836AE75%7D&GP=820483

delref HTTP://HI.RU/SEARCH/?Q={SEARCHTERMS}

delref HTTP://MAIL.RU/CNT/10445?GP=820473

delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DAHKMPJNMNHJKPKACDHKLIIPNNCOBGKHK%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DAONEDLCHKBICMHEPIMIAHFALHEEDJGBH%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DBGCIFLJFAPBHGIEHKJLCKFJMGEOJIJCB%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DBHBLDCGBJBLIPEGBECLMCNNDDNOPNHJM%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DLBJJFIIHGFEGNIOLCKPHPNFAOKDKBMDM%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DLMJEGMLICAMNIMMFHCMPKCLMIGMMCBEH%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DOELPKEPJLGMEHAJEHFEICFBJDIOBDKFJ%26INSTALLSOURCE%3DONDEMAND%26UC

delref HTTPS://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DPHOKCAMELCBNJIKJGOMJJADEIHHBBIDH%26INSTALLSOURCE%3DONDEMAND%26UC

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\NGGJCPIPKEFKGLDICOFGMEALJNDJNHBA\1.0_0\LAST TAB

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\BLPCFGOKAKMGNKCOJHHKBFBLDKACNBEO\4.2.8_0\YOUTUBE

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\OELPKEPJLGMEHAJEHFEICFBJDIOBDKFJ\7.0.3_0\ВИЗУАЛЬНЫЕ ЗАКЛАДКИ MAIL.RU

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\PHOKCAMELCBNJIKJGOMJJADEIHHBBIDH\9.0.1_0\ДОМАШНЯЯ СТРАНИЦА MAIL.RU

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\LBJJFIIHGFEGNIOLCKPHPNFAOKDKBMDM\7.0.1_0\ДОМАШНЯЯ СТРАНИЦА MAIL.RU

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\BGCIFLJFAPBHGIEHKJLCKFJMGEOJIJCB\7.0.2_0\ПОИСК MAIL.RU

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\AHKMPJNMNHJKPKACDHKLIIPNNCOBGKHK\9.0.1_0\ПОИСК MAIL.RU

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\BHBLDCGBJBLIPEGBECLMCNNDDNOPNHJM\1.1.2_0\ПОМОЩНИК

delref %SystemDrive%\USERS\АЛЕКС\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\AONEDLCHKBICMHEPIMIAHFALHEEDJGBH\4.0.2_0\ПОМОЩНИК

deltmp

delnfr

restart

Закройте все браузеры. Запустите UVS под текущим пользователем. В меню: Скрипты---Выполнить из буфера обмена. После перезагрузки выполните чистку в AdwCleaner. После окончания сканирования снимите галочки с записей Yandex (если таковые будут) и нажмите Очистить.
После перезагрузки выложите логи Farbar Recovery Scan Tool