nikita5533
Участник
- Сообщения
- 89
- Реакции
- 3
Смотрите видео ниже, чтобы узнать, как установить наш сайт в качестве веб-приложения на домашнем экране.
Примечание: Эта возможность может быть недоступна в некоторых браузерах.
begin
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
QuarantineFile('C:\Program Files (x86)\IPFPuXbQyciihMmAClR\gwMrhqG.dll', '');
QuarantineFile('C:\Program Files (x86)\mtKpcvEnbNTU2\dkERHVpENvPLX.dll', '');
QuarantineFile('C:\Program Files (x86)\WrmUlMxhbBGQC\ImGfVXu.dll', '');
QuarantineFile('C:\Program Files (x86)\ZDekBHwSU\kRVEvL.dll', '');
QuarantineFile('C:\ProgramData\CHaPUGRguSFbzDVB\Zpedfqu.wsf^', '');
QuarantineFile('C:\Windows\Temp\mWfXwgVEOptVAMXR\EicGuKRvdTOLZqm\dpAYUAz.exe', '');
DeleteFile('C:\Program Files (x86)\IPFPuXbQyciihMmAClR\gwMrhqG.dll', '64');
DeleteFile('C:\Program Files (x86)\mtKpcvEnbNTU2\dkERHVpENvPLX.dll', '64');
DeleteFile('C:\Program Files (x86)\WrmUlMxhbBGQC\ImGfVXu.dll', '64');
DeleteFile('C:\Program Files (x86)\ZDekBHwSU\kRVEvL.dll', '64');
DeleteFile('C:\ProgramData\CHaPUGRguSFbzDVB\Zpedfqu.wsf^', '64');
DeleteFile('C:\Windows\Temp\mWfXwgVEOptVAMXR\EicGuKRvdTOLZqm\dpAYUAz.exe', '32');
DeleteFile('C:\Windows\Temp\mWfXwgVEOptVAMXR\EicGuKRvdTOLZqm\dpAYUAz.exe', '64');
DeleteSchedulerTask('Asus');
DeleteSchedulerTask('FDteIXMRONNrqUIWl');
DeleteSchedulerTask('FDteIXMRONNrqUIWl.job');
DeleteSchedulerTask('HjZnsmAaHcnGlUQno2');
DeleteSchedulerTask('koqRBhCWozZdh2');
DeleteSchedulerTask('McqrsUBrtWzbozG2');
DeleteSchedulerTask('rIwkpTSzedKfIyPULbL2');
DeleteSchedulerTask('ZroFfJHUoIPRwO');
RegKeyParamDel('HKEY_CURRENT_USER', 'Software\Microsoft\Windows\CurrentVersion\Run', 'Asus', 'x32');
RegKeyParamDel('HKEY_CURRENT_USER', 'Software\Microsoft\Windows\CurrentVersion\Run', 'Asus', 'x64');
BC_ImportALL;
ExecuteSysClean;
ExecuteWizard('SCU', 2, 3, true);
BC_Activate;
RebootWindows(true);
end.
begin
DeleteFile(GetAVZDirectory+'quarantine.7z');
ExecuteFile(GetAVZDirectory+'7za.exe', 'a -mx9 -pmalware quarantine .\Quarantine\*', 1, 300000, false);
end.
O21 - HKLM\..\ShellIconOverlayIdentifiers\ YndCase0Sync: (no name) - {63D48440-63AB-44D0-B323-4731DFCDE9E9} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ YndCase1Modified: (no name) - {7E7DC279-E6BE-4D57-9DEC-14FA0339DBC0} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ YndCase2Error: (no name) - {FB2FE984-05F5-4512-9D9B-69D3DE61F6D9} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ YndCase3Shared: (no name) - {AF8D197E-7022-4c3d-BD88-68AD35C9C169} - (no file)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Games (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NCH Software (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System (empty)
***** [ Folders ] *****
PUP.Optional.Legacy C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet2
PUP.Optional.Legacy C:\Users\Asus\MediaGet2
PUP.Optional.MediaGet C:\Users\Asus\AppData\Local\Media Get LLC
***** [ Files ] *****
PUP.Optional.Legacy C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet.lnk
PUP.Optional.Legacy C:\Users\Asus\Desktop\MediaGet.lnk
***** [ Registry ] *****
PUP.Optional.Legacy HKCU\Software\DC3_FEXEC
PUP.Optional.Legacy HKCU\Software\MediaGet
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MediaGet
PUP.Optional.MediaGet HKCU\Software\Media Get LLC
***** [ Firefox (and derivatives) ] *****
PUP.Optional.Legacy Yandex.Market Adviser - sovetnik@metabar.ru
Start::
SystemRestore: On
CreateRestorePoint:
VirusTotal: C:\Program Files (x86)\PlutoentertainmentMyrahu\PlutoentertainmentMyrahu.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ограничение <==== ВНИМАНИЕ
GroupPolicy: Ограничение - Chrome <==== ВНИМАНИЕ
Policies: C:\ProgramData\NTUSER.pol: Ограничение <==== ВНИМАНИЕ
Policies: C:\Users\Asus\NTUSER.pol: Ограничение <==== ВНИМАНИЕ
HKLM\SOFTWARE\Policies\Google: Ограничение <==== ВНИМАНИЕ
CHR HKU\S-1-5-21-1164040657-628915492-640966225-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ibknafobnmndicojahlppolcaaibngjf]
2023-05-26 16:21 - 2023-05-26 16:45 - 000000000 ____D C:\Program Files (x86)\WrmUlMxhbBGQC
2023-05-26 16:21 - 2023-05-26 16:45 - 000000000 ____D C:\Program Files (x86)\mtKpcvEnbNTU2
2023-05-26 16:21 - 2023-05-26 16:45 - 000000000 ____D C:\Program Files (x86)\IPFPuXbQyciihMmAClR
2023-05-26 16:21 - 2023-05-26 16:23 - 000000000 ____D C:\ProgramData\CHaPUGRguSFbzDVB
2023-05-26 16:21 - 2023-05-26 16:21 - 000000000 ____D C:\Program Files (x86)\VFxXvNQHPlUn
2023-05-26 16:20 - 2023-05-26 16:45 - 000000000 ____D C:\Program Files (x86)\ZDekBHwSU
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [3506]
FirewallRules: [TCP Query User{18407728-DC4C-44CC-AA54-98E35B20788F}C:\users\asus\appdata\local\mediaget2\qtwebengineprocess.exe] => (Block) C:\users\asus\appdata\local\mediaget2\qtwebengineprocess.exe => Нет файла
FirewallRules: [UDP Query User{BF1BB741-D066-4602-8AC0-FE0DBEC7837B}C:\users\asus\appdata\local\mediaget2\qtwebengineprocess.exe] => (Block) C:\users\asus\appdata\local\mediaget2\qtwebengineprocess.exe => Нет файла
FirewallRules: [TCP Query User{723A392C-276A-4345-A889-1767833ED92A}D:\games\game\game.exe] => (Allow) D:\games\game\game.exe => Нет файла
FirewallRules: [UDP Query User{4F04B9A5-2914-4851-AC3F-2FF74F548148}D:\games\game\game.exe] => (Allow) D:\games\game\game.exe => Нет файла
FirewallRules: [{D09396BC-958B-42AD-8067-A3E9B7839044}] => (Allow) C:\Users\Asus\AppData\Roaming\Zoom\bin\Zoom.exe => Нет файла
FirewallRules: [TCP Query User{9A399E99-AE02-4A4A-AE6E-CAB978768041}D:\games\just shapes beats v1.6.28\jsb.exe] => (Allow) D:\games\just shapes beats v1.6.28\jsb.exe => Нет файла
FirewallRules: [UDP Query User{14BD7C1C-4C0E-4212-AB22-2A97D598C7BD}D:\games\just shapes beats v1.6.28\jsb.exe] => (Allow) D:\games\just shapes beats v1.6.28\jsb.exe => Нет файла
FirewallRules: [TCP Query User{D6C0D67C-9918-4774-AE95-53FF48130320}D:\games\rust\skinclient.exe] => (Allow) D:\games\rust\skinclient.exe => Нет файла
FirewallRules: [UDP Query User{56D3E2D5-1969-4F2E-8558-FDF0BA6D802C}D:\games\rust\skinclient.exe] => (Allow) D:\games\rust\skinclient.exe => Нет файла
FirewallRules: [TCP Query User{2B880DA5-ABD9-40F7-AB3B-4C9B9CB19805}D:\games\ben and ed\benanded\binaries\win32\benanded.exe] => (Allow) D:\games\ben and ed\benanded\binaries\win32\benanded.exe => Нет файла
FirewallRules: [UDP Query User{BBAFA750-D80E-4602-AC3D-31DF02E03332}D:\games\ben and ed\benanded\binaries\win32\benanded.exe] => (Allow) D:\games\ben and ed\benanded\binaries\win32\benanded.exe => Нет файла
FirewallRules: [TCP Query User{228367F5-237C-4E90-9B2F-D675150D39B3}D:\games\people playground v1.23.10\people playground.exe] => (Allow) D:\games\people playground v1.23.10\people playground.exe => Нет файла
FirewallRules: [UDP Query User{4B6A3498-3684-4006-AF1A-9F9BE6420B1E}D:\games\people playground v1.23.10\people playground.exe] => (Allow) D:\games\people playground v1.23.10\people playground.exe => Нет файла
FirewallRules: [TCP Query User{860E01BA-463D-481A-9F96-E97518C23DE8}D:\games\super bunny man v0.9.0.5\super bunny man.exe] => (Allow) D:\games\super bunny man v0.9.0.5\super bunny man.exe => Нет файла
FirewallRules: [UDP Query User{3E582485-7B2C-410F-B719-DE6166CB66C8}D:\games\super bunny man v0.9.0.5\super bunny man.exe] => (Allow) D:\games\super bunny man v0.9.0.5\super bunny man.exe => Нет файла
FirewallRules: [TCP Query User{A3FB4F7A-BC27-43EB-B529-52DFA58720E7}D:\games\gta v\gta5.exe] => (Allow) D:\games\gta v\gta5.exe => Нет файла
FirewallRules: [UDP Query User{D9730351-264A-4AD7-B3A3-1D6C8E12F3D9}D:\games\gta v\gta5.exe] => (Allow) D:\games\gta v\gta5.exe => Нет файла
FirewallRules: [TCP Query User{0ADDBC27-1B20-423B-BB20-4E96F5EC39C0}C:\users\asus\appdata\local\discord\app-1.0.9005\discord.exe] => (Block) C:\users\asus\appdata\local\discord\app-1.0.9005\discord.exe => Нет файла
FirewallRules: [UDP Query User{8F6BC96C-41B4-46A3-BFCD-718A8D547593}C:\users\asus\appdata\local\discord\app-1.0.9005\discord.exe] => (Block) C:\users\asus\appdata\local\discord\app-1.0.9005\discord.exe => Нет файла
FirewallRules: [TCP Query User{E0CDC3A6-2CCE-4F61-AE65-8C72A13856EC}D:\totally accurate battle simulator\totallyaccuratebattlesimulator.exe] => (Allow) D:\totally accurate battle simulator\totallyaccuratebattlesimulator.exe => Нет файла
FirewallRules: [UDP Query User{17F5CAE3-43D5-4127-B7EA-63053613900D}D:\totally accurate battle simulator\totallyaccuratebattlesimulator.exe] => (Allow) D:\totally accurate battle simulator\totallyaccuratebattlesimulator.exe => Нет файла
FirewallRules: [TCP Query User{FE0411A8-0187-4FD7-9C36-C477AF1EDF23}D:\games\peglin v0.7.36\peglin.exe] => (Allow) D:\games\peglin v0.7.36\peglin.exe => Нет файла
FirewallRules: [UDP Query User{9E1EB7B3-59A1-4AFC-8ABE-35520C762106}D:\games\peglin v0.7.36\peglin.exe] => (Allow) D:\games\peglin v0.7.36\peglin.exe => Нет файла
FirewallRules: [TCP Query User{30F176FA-9CBD-454E-868C-9F358FE07DF3}D:\games\slime rancher 2 v0.1.1\slimerancher2.exe] => (Allow) D:\games\slime rancher 2 v0.1.1\slimerancher2.exe => Нет файла
FirewallRules: [UDP Query User{200DD49B-1ED4-4B8D-AB1F-B520820A8816}D:\games\slime rancher 2 v0.1.1\slimerancher2.exe] => (Allow) D:\games\slime rancher 2 v0.1.1\slimerancher2.exe => Нет файла
FirewallRules: [TCP Query User{8C528380-6D42-458D-B822-CE0F5B663AF5}C:\users\asus\desktop\мод на терку\tmodloader3\dotnet\6.0.0\dotnet.exe] => (Allow) C:\users\asus\desktop\мод на терку\tmodloader3\dotnet\6.0.0\dotnet.exe => Нет файла
FirewallRules: [UDP Query User{0E08CCD4-172F-4789-966E-9C846A917F88}C:\users\asus\desktop\мод на терку\tmodloader3\dotnet\6.0.0\dotnet.exe] => (Allow) C:\users\asus\desktop\мод на терку\tmodloader3\dotnet\6.0.0\dotnet.exe => Нет файла
FirewallRules: [TCP Query User{31AB07DD-CB69-47E0-899B-8EE435E58546}D:\games\warcraft iii reforged\_retail_\x86_64\warcraft iii.exe] => (Allow) D:\games\warcraft iii reforged\_retail_\x86_64\warcraft iii.exe => Нет файла
FirewallRules: [UDP Query User{0E082B91-96B6-4C9F-9C86-6A365AFBF7D1}D:\games\warcraft iii reforged\_retail_\x86_64\warcraft iii.exe] => (Allow) D:\games\warcraft iii reforged\_retail_\x86_64\warcraft iii.exe => Нет файла
FirewallRules: [TCP Query User{A318D780-2B56-4105-AC67-89606FF91D2C}D:\games\terraria v1.4.4\terraria.exe] => (Allow) D:\games\terraria v1.4.4\terraria.exe => Нет файла
FirewallRules: [UDP Query User{1B1CCD91-57C1-4FD2-B769-EBD78AC7A59C}D:\games\terraria v1.4.4\terraria.exe] => (Allow) D:\games\terraria v1.4.4\terraria.exe => Нет файла
FirewallRules: [TCP Query User{654CF458-D813-4C6C-A897-9FC393B9F560}D:\games\terraria v1.4.4.1 hotfix\terraria.exe] => (Allow) D:\games\terraria v1.4.4.1 hotfix\terraria.exe => Нет файла
FirewallRules: [UDP Query User{BAE1C781-6279-4E58-9C05-4BD4B5A11287}D:\games\terraria v1.4.4.1 hotfix\terraria.exe] => (Allow) D:\games\terraria v1.4.4.1 hotfix\terraria.exe => Нет файла
FirewallRules: [TCP Query User{7DB6BE16-ADA6-4969-8740-7A4B500D2EAE}D:\games\terraria v1.4.4.2\terraria.exe] => (Allow) D:\games\terraria v1.4.4.2\terraria.exe => Нет файла
FirewallRules: [UDP Query User{65727A4E-FC2A-4815-B1CF-EDFFDC16CFE4}D:\games\terraria v1.4.4.2\terraria.exe] => (Allow) D:\games\terraria v1.4.4.2\terraria.exe => Нет файла
FirewallRules: [TCP Query User{BF76B24E-AC10-4D12-A9B4-2E48A781B283}D:\games\mashinky v0.60.181\mashinky.exe] => (Allow) D:\games\mashinky v0.60.181\mashinky.exe => Нет файла
FirewallRules: [UDP Query User{CFF8F962-DF32-4003-A9F8-7F1FC56105B0}D:\games\mashinky v0.60.181\mashinky.exe] => (Allow) D:\games\mashinky v0.60.181\mashinky.exe => Нет файла
FirewallRules: [TCP Query User{B9E325F8-9786-4A74-B488-62487F090683}D:\games\slime rancher 2 v0.1.2\slimerancher2.exe] => (Allow) D:\games\slime rancher 2 v0.1.2\slimerancher2.exe => Нет файла
FirewallRules: [UDP Query User{8A952D83-5398-444E-ABD3-3BAD8BE2CEE3}D:\games\slime rancher 2 v0.1.2\slimerancher2.exe] => (Allow) D:\games\slime rancher 2 v0.1.2\slimerancher2.exe => Нет файла
FirewallRules: [{FBDF8FA5-8F35-4186-8533-77F23F5C2F92}] => (Allow) C:\Users\Asus\AppData\Local\Programs\Opera\95.0.4635.37\opera.exe => Нет файла
FirewallRules: [{7B4D4441-C6E2-4CEC-AED0-E8A171671D01}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe => Нет файла
FirewallRules: [{897E4025-03F6-4553-AA8F-3C51152B7DB4}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe => Нет файла
FirewallRules: [TCP Query User{06FCD40A-CD0A-4639-B6C0-8E9D2E725F56}D:\games\terraria v1.4.4.9 v4\terraria.exe] => (Allow) D:\games\terraria v1.4.4.9 v4\terraria.exe => Нет файла
FirewallRules: [UDP Query User{C4D56020-BB96-4779-B7F6-7A2F0279F3CF}D:\games\terraria v1.4.4.9 v4\terraria.exe] => (Allow) D:\games\terraria v1.4.4.9 v4\terraria.exe => Нет файла
FirewallRules: [TCP Query User{3D4137C2-4CB1-476F-8F6D-50A6711E01AA}D:\games\worldbox v0.21.1-528\worldbox.exe] => (Allow) D:\games\worldbox v0.21.1-528\worldbox.exe => Нет файла
FirewallRules: [UDP Query User{99807C9E-AB39-4191-B087-C25A630ADCF6}D:\games\worldbox v0.21.1-528\worldbox.exe] => (Allow) D:\games\worldbox v0.21.1-528\worldbox.exe => Нет файла
FirewallRules: [TCP Query User{BA55CB3B-1D21-492B-9FE3-BD82CB982FE6}C:\users\asus\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\asus\appdata\local\discord\app-1.0.9012\discord.exe => Нет файла
FirewallRules: [UDP Query User{1304B6DD-ED15-4591-83DD-4B01DB74329C}C:\users\asus\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\asus\appdata\local\discord\app-1.0.9012\discord.exe => Нет файла
FirewallRules: [TCP Query User{F5FCE51A-D7F2-4A58-9F5A-C48F476F16D3}D:\games\bigfoot\bigfoot\binaries\win64\bigfoot-win64-shipping.exe] => (Allow) D:\games\bigfoot\bigfoot\binaries\win64\bigfoot-win64-shipping.exe => Нет файла
FirewallRules: [UDP Query User{C2392C4F-54BB-465D-9F67-A52F0BD90D04}D:\games\bigfoot\bigfoot\binaries\win64\bigfoot-win64-shipping.exe] => (Allow) D:\games\bigfoot\bigfoot\binaries\win64\bigfoot-win64-shipping.exe => Нет файла
FirewallRules: [TCP Query User{A921FAE5-CC02-454B-85A8-B35D3BA0683E}C:\users\asus\desktop\tmodloader\zapusk\dotnet\6.0.0\dotnet.exe] => (Allow) C:\users\asus\desktop\tmodloader\zapusk\dotnet\6.0.0\dotnet.exe => Нет файла
FirewallRules: [UDP Query User{A9155392-3282-40AC-901F-E7504BEF8AAB}C:\users\asus\desktop\tmodloader\zapusk\dotnet\6.0.0\dotnet.exe] => (Allow) C:\users\asus\desktop\tmodloader\zapusk\dotnet\6.0.0\dotnet.exe => Нет файла
EmptyTemp:
Reboot:
End::
Start::
SystemRestore: On
CreateRestorePoint:
R2 PlutoentertainmentMyrahu; C:\Program Files (x86)\PlutoentertainmentMyrahu\PlutoentertainmentMyrahu.exe [26406960 2023-02-06] (EmeraldMonarctronicsBase -> Terrible Vyrado) [Файл не подписан] [Файл уже используется]
C:\Program Files (x86)\PlutoentertainmentMyrahu\PlutoentertainmentMyrahu.exe
C:\Program Files (x86)\PlutoentertainmentMyrahu
EmptyTemp:
Reboot:
End::