Автозапуск браузера

[kulin]

Здравствуйте. Периодически запускается Google Chrome с сайтом. Сканировал несколькими утилитами ничего не помогло. Спасибо за помощь.

CollectionLog-2023.11.04-22.27.zip

[thyrex]

Выполните скрипт в AVZ из папки Autologger (запускать AVZ от имени Администратора по правой кнопке мыши)

begin
DeleteSchedulerTask('Yarik');
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','Yarik','x32');
 RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','Yarik','x64');
ExecuteSysClean;
RebootWindows(false);
end.

• Обратите внимание: будет выполнена перезагрузка компьютера.

 

Пожалуйста, ЕЩЕ РАЗ запустите Autologger; прикрепите к следующему сообщению НОВЫЕ логи.
 

[kulin]

Проблема решена. Спасибо. Лог прикрепил.

CollectionLog-2023.11.05-15.39.zip

[thyrex]

Скачайте Farbar Recovery Scan Tool (или с зеркала) и сохраните на Рабочем столе.

• Примечание: необходимо выбрать версию, совместимую с Вашей операционной системой. Если Вы не уверены, какая версия подойдет для Вашей системы, скачайте обе и попробуйте запустить. Только одна из них запустится на Вашей системе.

1. Запустите программу двойным щелчком. Когда программа запустится, нажмите Yes для соглашения с предупреждением.
2. Убедитесь, что в окне Optional Scan (Дополнительные опции) отмечены List BCD и 90 Days Files.
3. Нажмите кнопку Scan (Сканировать).
4. После окончания сканирования будет создан отчет (FRST.txt) в той же папке, откуда была запущена программа.
5. Если программа была запущена в первый раз, также будет создан отчет (Addition.txt).
6. Файлы FRST.txt и Addition.txt заархивируйте (в один общий архив) и прикрепите к сообщению.
 

[kulin]

Логи прикрепил.

Logs.rar

[thyrex]

1. Выделите следующий код и скопируйте в буфер обмена (правая кнопка мыши – Копировать)

Start::
CreateRestorePoint:
AlternateDataStreams: C:\Users\Yarik:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [432]
AlternateDataStreams: C:\ProgramData\TEMP:D8999815 [200]
AlternateDataStreams: C:\Users\Public\AppData:CSM [448]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470]
AlternateDataStreams: C:\Users\Yarik\AppData\Local\Temp:$DATA [16]
FirewallRules: [UDP Query User{97ECDC90-C908-4DAA-B19A-FFC8D988B1B3}D:\сs 16\counter-strike\hl.exe] => (Allow) D:\сs 16\counter-strike\hl.exe => Нет файла
FirewallRules: [TCP Query User{A52BA916-28D5-4328-83C1-EFBC9EB7E890}D:\сs 16\counter-strike\hl.exe] => (Allow) D:\сs 16\counter-strike\hl.exe => Нет файла
FirewallRules: [{7A150B75-3C4E-454F-BFE6-15B9315CFE5D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Нет файла
FirewallRules: [{DD363AB8-B51C-4258-8F5E-E7EC098FF775}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Нет файла
FirewallRules: [TCP Query User{9F6CE3BD-896F-42DF-A60A-6EBEA94AA043}D:\games\steamlibrary\steamapps\common\sos\sos\binaries\win64\sos-win64-shipping.exe] => (Allow) D:\games\steamlibrary\steamapps\common\sos\sos\binaries\win64\sos-win64-shipping.exe => Нет файла
FirewallRules: [UDP Query User{4131A3E9-A64C-4BC0-9994-0D7F003AC5F9}D:\games\steamlibrary\steamapps\common\sos\sos\binaries\win64\sos-win64-shipping.exe] => (Allow) D:\games\steamlibrary\steamapps\common\sos\sos\binaries\win64\sos-win64-shipping.exe => Нет файла
FirewallRules: [TCP Query User{529F177C-F162-4AA4-9AE1-81D5311F0AE5}D:\games\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Block) D:\games\steamlibrary\steamapps\common\h1z1\h1z1.exe => Нет файла
FirewallRules: [UDP Query User{07C27AF2-A4EC-47DE-B290-B2169C8AE83A}D:\games\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Block) D:\games\steamlibrary\steamapps\common\h1z1\h1z1.exe => Нет файла
FirewallRules: [{7CC20E78-69CA-4857-A59B-2D4B03DD98CE}] => (Allow) D:\Games\SteamLibrary\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe => Нет файла
FirewallRules: [{0BC43F93-6933-47A0-B131-89AB685B4887}] => (Allow) D:\Games\SteamLibrary\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe => Нет файла
FirewallRules: [{6F87EEDA-6D63-431C-A045-1E0EF997B3C9}] => (Allow) D:\Games\SteamLibrary\steamapps\common\BattleRush\Cv2_Base\Binaries\Win64\Cv2_BaseClient_Shipping.exe => Нет файла
FirewallRules: [{21C9021D-E75F-499C-869E-462C1FF408B5}] => (Allow) D:\Games\SteamLibrary\steamapps\common\BattleRush\Cv2_Base\Binaries\Win64\Cv2_BaseClient_Shipping.exe => Нет файла
FirewallRules: [{D1881225-DD7F-4CE9-A102-0D85BE7380B8}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Fog Of War - Free Edition\Battalion_Beta\Binaries\Win64\Battalion_BetaClient.exe => Нет файла
FirewallRules: [{A63D9B2C-DD38-4F20-8EF6-5408D1F06C47}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Fog Of War - Free Edition\Battalion_Beta\Binaries\Win64\Battalion_BetaClient.exe => Нет файла
FirewallRules: [TCP Query User{C71B43D9-A790-4B51-849E-84281C87A24C}D:\games\steamlibrary\steamapps\common\war thunder\win32\aces.exe] => (Allow) D:\games\steamlibrary\steamapps\common\war thunder\win32\aces.exe => Нет файла
FirewallRules: [UDP Query User{2148056B-7946-4864-A516-2B57699E4E99}D:\games\steamlibrary\steamapps\common\war thunder\win32\aces.exe] => (Allow) D:\games\steamlibrary\steamapps\common\war thunder\win32\aces.exe => Нет файла
FirewallRules: [TCP Query User{F2E9B741-0A6F-415D-A207-01BA8DD81F98}D:\games\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) D:\games\steamlibrary\steamapps\common\war thunder\win64\aces.exe => Нет файла
FirewallRules: [UDP Query User{A65904AF-078C-48A0-B5A0-0AD534531E1A}D:\games\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) D:\games\steamlibrary\steamapps\common\war thunder\win64\aces.exe => Нет файла
FirewallRules: [{6D35D71A-D7A5-43FD-B0B5-A903C9486495}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe => Нет файла
FirewallRules: [{641F29D9-235C-4E7F-80F6-F23CFB7DE96E}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe => Нет файла
FirewallRules: [TCP Query User{23F4C1BC-73BE-42E5-99DF-368AE696E3A4}D:\games\steamlibrary\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe] => (Allow) D:\games\steamlibrary\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe => Нет файла
FirewallRules: [UDP Query User{0979B43D-5989-4ABA-A811-372F74D92367}D:\games\steamlibrary\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe] => (Allow) D:\games\steamlibrary\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe => Нет файла
FirewallRules: [TCP Query User{DFBA8B24-96B7-41A8-8AD8-5182100F428F}D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe] => (Allow) D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe => Нет файла
FirewallRules: [UDP Query User{33B6E118-7F67-459B-9A2D-0602C73B52D7}D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe] => (Allow) D:\games\steamlibrary\steamapps\common\for honor\forhonor.exe => Нет файла
FirewallRules: [TCP Query User{A02A4000-C29A-451D-9557-7A5B9B0709B7}D:\games\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\games\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe => Нет файла
FirewallRules: [UDP Query User{6F04BCC6-9BE8-47DE-A881-95BF98B6BC7D}D:\games\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\games\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe => Нет файла
FirewallRules: [{1DB7321E-9A06-4C6C-896E-A42DACE24A26}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Gotham City Impostors F2P\Engine.exe => Нет файла
FirewallRules: [{A8BE10CF-6E40-4ECA-B4A9-4D9BA7539AC3}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Gotham City Impostors F2P\Engine.exe => Нет файла
FirewallRules: [TCP Query User{A9CE2F1F-709D-4741-8CF5-033B6C081C92}D:\games\scum\scum\binaries\win64\scum.exe] => (Allow) D:\games\scum\scum\binaries\win64\scum.exe => Нет файла
FirewallRules: [UDP Query User{FF42513E-04B7-4B4C-A724-E46121FE44A8}D:\games\scum\scum\binaries\win64\scum.exe] => (Allow) D:\games\scum\scum\binaries\win64\scum.exe => Нет файла
FirewallRules: [TCP Query User{3B221843-D2A5-4A88-9E71-E75B12E58A00}D:\games\dead island - definitive edition\deadislandgame.exe] => (Block) D:\games\dead island - definitive edition\deadislandgame.exe => Нет файла
FirewallRules: [UDP Query User{31E61793-61DE-4589-B8AB-3EDD88065A6D}D:\games\dead island - definitive edition\deadislandgame.exe] => (Block) D:\games\dead island - definitive edition\deadislandgame.exe => Нет файла
FirewallRules: [TCP Query User{8A418661-6554-4A8A-A0DD-1E5ACF53AECE}D:\games\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe] => (Block) D:\games\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe => Нет файла
FirewallRules: [UDP Query User{DD4D9267-3A73-4A91-9510-DB0548B5ECA4}D:\games\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe] => (Block) D:\games\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe => Нет файла
FirewallRules: [TCP Query User{8670B1A3-72A5-4E34-9F40-1E4ACC0DF7BE}D:\games\steamlibrary\steamapps\common\citybattle  virtual earth\warguardgame\binaries\win64\warguardgameclient-win64-shipping.exe] => (Block) D:\games\steamlibrary\steamapps\common\citybattle  virtual earth\warguardgame\binaries\win64\warguardgameclient-win64-shipping.exe => Нет файла
FirewallRules: [UDP Query User{4B22DCE2-1015-42C5-99C9-C35120EA05FA}D:\games\steamlibrary\steamapps\common\citybattle  virtual earth\warguardgame\binaries\win64\warguardgameclient-win64-shipping.exe] => (Block) D:\games\steamlibrary\steamapps\common\citybattle  virtual earth\warguardgame\binaries\win64\warguardgameclient-win64-shipping.exe => Нет файла
FirewallRules: [{5A513019-C75C-4096-B108-A2EED3AF86AB}] => (Allow) D:\Games\SteamLibrary\steamapps\common\TinkrGarage\TinkrGarage\TinkrGarage.exe => Нет файла
FirewallRules: [{C5804656-3C08-4A0B-A2B0-AD4CC4D5B952}] => (Allow) D:\Games\SteamLibrary\steamapps\common\TinkrGarage\TinkrGarage\TinkrGarage.exe => Нет файла
FirewallRules: [TCP Query User{408A4DEA-94F6-49A1-AF82-0E7D983C611A}D:\games\steamlibrary\steamapps\common\tinkrgarage\tinkrgarage\tinkrgarage\binaries\win64\tinkrgarage-win64-shipping.exe] => (Allow) D:\games\steamlibrary\steamapps\common\tinkrgarage\tinkrgarage\tinkrgarage\binaries\win64\tinkrgarage-win64-shipping.exe => Нет файла
FirewallRules: [UDP Query User{03B403AF-E10C-4B3A-9053-AA3FA45818F8}D:\games\steamlibrary\steamapps\common\tinkrgarage\tinkrgarage\tinkrgarage\binaries\win64\tinkrgarage-win64-shipping.exe] => (Allow) D:\games\steamlibrary\steamapps\common\tinkrgarage\tinkrgarage\tinkrgarage\binaries\win64\tinkrgarage-win64-shipping.exe => Нет файла
FirewallRules: [TCP Query User{476E0961-8C75-460C-AEA3-26E732B53210}D:\games\killing floor 2\binaries\win64\kfgame.exe] => (Block) D:\games\killing floor 2\binaries\win64\kfgame.exe => Нет файла
FirewallRules: [UDP Query User{6DB4A2F4-96F0-4E63-B294-E43422B72AD8}D:\games\killing floor 2\binaries\win64\kfgame.exe] => (Block) D:\games\killing floor 2\binaries\win64\kfgame.exe => Нет файла
FirewallRules: [{3106F059-08F9-4D96-8C6A-0C69FCC14A38}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Combat Arms Reloaded\NMService.exe => Нет файла
FirewallRules: [{D19D7A8F-7672-4394-9D5B-6B93FFD8249B}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Combat Arms Reloaded\NMService.exe => Нет файла
FirewallRules: [TCP Query User{212DCC7E-88AE-43D4-97F7-D44CCB0FE23C}D:\games\destiny 2\destiny2.exe] => (Allow) D:\games\destiny 2\destiny2.exe => Нет файла
FirewallRules: [UDP Query User{C5A28A43-0CE7-4AD7-ABFD-D63200739C1B}D:\games\destiny 2\destiny2.exe] => (Allow) D:\games\destiny 2\destiny2.exe => Нет файла
FirewallRules: [TCP Query User{A95CCF9F-D11A-4676-AA5D-A87F9208DF36}D:\games\pixark_modkit\engine\binaries\win64\ue4editor.exe] => (Allow) D:\games\pixark_modkit\engine\binaries\win64\ue4editor.exe => Нет файла
FirewallRules: [UDP Query User{EFC38B68-8D96-4B1C-B5AF-9DD6E2D1559B}D:\games\pixark_modkit\engine\binaries\win64\ue4editor.exe] => (Allow) D:\games\pixark_modkit\engine\binaries\win64\ue4editor.exe => Нет файла
FirewallRules: [TCP Query User{2D778E99-765E-4AC8-BF59-C1624E2DA31B}D:\games\steamlibrary\steamapps\common\creativedestruction\ccmini\ccmini.exe] => (Block) D:\games\steamlibrary\steamapps\common\creativedestruction\ccmini\ccmini.exe => Нет файла
FirewallRules: [UDP Query User{EB458686-1152-4813-B238-C562DA942621}D:\games\steamlibrary\steamapps\common\creativedestruction\ccmini\ccmini.exe] => (Block) D:\games\steamlibrary\steamapps\common\creativedestruction\ccmini\ccmini.exe => Нет файла
FirewallRules: [{C454D824-E706-42E4-8D11-BED3600F1627}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Cry of War\dlc\PanzerWar\Windows\PanzerWar.exe => Нет файла
FirewallRules: [{DF702068-5058-46CF-A058-11FBCA9CAD49}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Cry of War\dlc\PanzerWar\Windows\PanzerWar.exe => Нет файла
GroupPolicy: Ограничение ? <==== ВНИМАНИЕ
GroupPolicy\User: Ограничение ? <==== ВНИМАНИЕ
Policies: C:\ProgramData\NTUSER.pol: Ограничение <==== ВНИМАНИЕ
Policies: C:\Users\Yarik\NTUSER.pol: Ограничение <==== ВНИМАНИЕ
Task: {3307C6A5-3CD6-4B0C-88EF-EA22C087B485} - System32\Tasks\Pbrowserupd => %LOCALAPPDATA%\Pbrowserupd\Pbrowserupd.exe  --s=C3D5B395FA0F85439F5FC3BC18EDC85D38A0048A50252A38DAB9567888B77BA79FFF3CE194DE39FDD2C2FFCF8C --id=1 --sub-id=549 (Нет файла) <==== ВНИМАНИЕ
Reboot:
End::

2. Запустите Farbar Recovery Scan Tool от имени Администратора по правой кнопке мыши.
3. Нажмите один раз на кнопку Fix (Исправить) и подождите. Программа создаст лог-файл (Fixlog.txt). Пожалуйста, прикрепите его в следующем сообщении.

• Обратите внимание: будет выполнена перезагрузка компьютера.