Проблема с установкой - Форум технической поддержки ESET NOD32

Сообщений: 3

Баллов: 1

Регистрация: 17.11.2020

Размещено 17.11.2020 08:45:34

При установке продукта ESET на ваше устройство возникла проблема. Рекомендуем запустить средство устранения неполадок. оно решит проблему, если это возможно.
После запуска устранения неполадок и перезагрузки компьютера ошибка повторяется снова

Прикрепленные файлы

АНДРЕЙ-ПК_2020-11-17_08-35-37_v4.11.7z (531.11 КБ)

Сообщений: 3

Баллов: 1

Регистрация: 17.11.2020

Размещено 17.11.2020 09:19:42

Добавил логи

Прикрепленные файлы

AdwCleaner[C00].txt (3.42 КБ)
AdwCleaner[S00].txt (4.18 КБ)
Addition.txt (54.07 КБ)
FRST.txt (30.66 КБ)

Сообщений: 17977

Баллов: 28762

Регистрация: 16.03.2010

Размещено 17.11.2020 12:13:10

Цитата
Андрей Чернов написал: При установке продукта ESET на ваше устройство возникла проблема. Рекомендуем запустить средство устранения неполадок. оно решит проблему, если это возможно. После запуска устранения неполадок и перезагрузки компьютера ошибка повторяется снова

Цитата

Андрей Чернов написал:
При установке продукта ESET на ваше устройство возникла проблема. Рекомендуем запустить средство устранения неполадок. оно решит проблему, если это возможно.
После запуска устранения неполадок и перезагрузки компьютера ошибка повторяется снова

выполняем скрипт в uVS:
- скопировать содержимое кода в буфер обмена;
- стартуем uVS(start.exe), далее выбираем: текущий пользователь, меню - скрипты - выполнить скрипт из буфера обмена;
- закрываем все браузеры перед выполнением скрипта;
при деинсталляции программ - соглашаемся на деинсталляцию_удаление подтверждаем "да"

Код
;uVS v4.11.2 [http://dsrt.dyndns.org:8888] ;Target OS: NTv6.1 v400c OFFSGNSAVE regt 18 ;------------------------autoscript--------------------------- delall %SystemDrive%\PROGRAMDATA\REALTEKHD\TASKHOST.EXE delall %SystemDrive%\PROGRAMDATA\REALTEKHD\TASKHOSTW.EXE delall %SystemDrive%\PROGRAMDATA\WINDOWSTASK\WINLOGON.EXE delref %SystemDrive%\PROGRAM FILES\RDP WRAPPER\RDPWRAP.DLL delref %SystemDrive%\USERS\АНДРЕЙ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\V54TXSYJ.DEFAULT-1566917317778\EXTENSIONS\[email protected] delref HTTP://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DMJMPFDKMPOJOEEMJMFIDDLHKKNDCDPNO%26INSTALLSOURCE%3DONDEMAND%26UC apply deltmp delref %SystemDrive%\USERS\A4F7~1\APPDATA\LOCAL\TEMP\CHROME_BITS_3760_1492343833\AKNUYY3THNK6QSZRZTYPAR4 delref {23E5D772-327A-42F5-BDEE-C65C6796BB2A}\[CLSID] delref {177AFECE-9599-46CF-90D7-68EC9EEB27B4}\[CLSID] delref {CEF51277-5358-477B-858C-4E14F0C80BF7}\[CLSID] delref {59116E30-02BD-4B84-BA1E-5D77E809B1A2}\[CLSID] delref %SystemRoot%\SYSWOW64\PEERDISTSVC.DLL delref %SystemRoot%\SYSWOW64\DRIVERS\NDIS.SYS delref %SystemRoot%\SYSWOW64\UMPO.DLL delref %SystemRoot%\SYSWOW64\IPHLPSVC.DLL delref %SystemRoot%\SYSWOW64\CSCSVC.DLL delref %SystemRoot%\SYSWOW64\DRIVERS\RDVGKMD.SYS delref %SystemRoot%\SYSWOW64\PNRPSVC.DLL delref %SystemRoot%\SYSWOW64\DRIVERS\PACER.SYS delref %SystemRoot%\SYSWOW64\LSM.EXE delref {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}\[CLSID] delref {166B1BCA-3F9C-11CF-8075-444553540000}\[CLSID] delref {233C1507-6A77-46A4-9443-F871F945D258}\[CLSID] delref {4063BE15-3B08-470D-A0D5-B37161CFFD69}\[CLSID] delref {88D969C0-F192-11D4-A65F-0040963251E5}\[CLSID] delref {88D969C1-F192-11D4-A65F-0040963251E5}\[CLSID] delref {88D969C2-F192-11D4-A65F-0040963251E5}\[CLSID] delref {88D969C3-F192-11D4-A65F-0040963251E5}\[CLSID] delref {88D969C4-F192-11D4-A65F-0040963251E5}\[CLSID] delref {88D969C5-F192-11D4-A65F-0040963251E5}\[CLSID] delref {CA8A9780-280D-11CF-A24D-444553540000}\[CLSID] delref {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA}\[CLSID] delref {D27CDB6E-AE6D-11CF-96B8-444553540000}\[CLSID] delref %SystemRoot%\SYSWOW64\WIN32K.SYS delref %SystemRoot%\SYSWOW64\BLANK.HTM delref {E6FB5E20-DE35-11CF-9C87-00AA005127ED}\[CLSID] delref %Sys32%\DRIVERS\RDVGKMD.SYS delref %Sys32%\MSSPELLCHECKINGFACILITY.DLL delref %Sys32%\BLANK.HTM delref {472083B0-C522-11CF-8763-00608CC02F24}\[CLSID] delref HELPSVC\[SERVICE] delref SACSVR\[SERVICE] delref SWPRV\[SERVICE] delref TBS\[SERVICE] delref VMMS\[SERVICE] delref MESSENGER\[SERVICE] delref RDSESSMGR\[SERVICE] delref %Sys32%\DRIVERS\TBPANEL.SYS delref %SystemRoot%\XHUNTER1.SYS delref %Sys32%\PSXSS.EXE delref %SystemDrive%\PROGRAM FILES\MOZILLA FIREFOX\BROWSER\FEATURES\[email protected] delref %SystemDrive%\PROGRAM FILES\BLUESTACKS\BSTKC.DLL delref %SystemDrive%\PROGRAM FILES\BLUESTACKS\BSTKSVC.EXE delref %SystemDrive%\PROGRAM FILES\MCAFEE SECURITY SCAN\3.11.1512\MCCOREPS.DLL delref %SystemDrive%\PROGRAM FILES\BLUESTACKS\BSTKPROXYSTUB.DLL delref %Sys32%\SHAREMEDIACPL.CPL delref %Sys32%\NVCPL.DLL delref %SystemDrive%\PROGRAM FILES (X86)\JAVA\JRE1.8.0_211\BIN\WSDETECT.DLL delref H:\HISUITEDOWNLOADER.EXE delref F:\SETUP.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CHEAT ENGINE.EXE delref %SystemDrive%\USERS\АНДРЕЙ\DOWNLOADS\CRUTCHES.EXE delref %SystemDrive%\USERS\АНДРЕЙ\APPDATA\ROAMING\UTORRENT\UTORRENT.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CHEATENGINE-I386.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CHEATENGINE-X86_64-SSE4-AVX2.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CHEATENGINE-X86_64.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\TUTORIAL-X86_64.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\TUTORIAL-I386.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CEREGRESET.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\UNINS000.EXE delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\KERNELMODULEUNLOADER.EXE ;------------------------------------------------------------- restart

Код


;uVS v4.11.2 [http://dsrt.dyndns.org:8888]
;Target OS: NTv6.1
v400c
OFFSGNSAVE
regt 18
;------------------------autoscript---------------------------

delall %SystemDrive%\PROGRAMDATA\REALTEKHD\TASKHOST.EXE
delall %SystemDrive%\PROGRAMDATA\REALTEKHD\TASKHOSTW.EXE
delall %SystemDrive%\PROGRAMDATA\WINDOWSTASK\WINLOGON.EXE
delref %SystemDrive%\PROGRAM FILES\RDP WRAPPER\RDPWRAP.DLL
delref %SystemDrive%\USERS\АНДРЕЙ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\V54TXSYJ.DEFAULT-1566917317778\EXTENSIONS\[email protected]
delref HTTP://CLIENTS2.GOOGLE.COM/SERVICE/UPDATE2/CRX?RESPONSE=REDIRECT&PRODVERSION=38.0&X=ID%3DMJMPFDKMPOJOEEMJMFIDDLHKKNDCDPNO%26INSTALLSOURCE%3DONDEMAND%26UC
apply

deltmp
delref %SystemDrive%\USERS\A4F7~1\APPDATA\LOCAL\TEMP\CHROME_BITS_3760_1492343833\AKNUYY3THNK6QSZRZTYPAR4
delref {23E5D772-327A-42F5-BDEE-C65C6796BB2A}\[CLSID]
delref {177AFECE-9599-46CF-90D7-68EC9EEB27B4}\[CLSID]
delref {CEF51277-5358-477B-858C-4E14F0C80BF7}\[CLSID]
delref {59116E30-02BD-4B84-BA1E-5D77E809B1A2}\[CLSID]
delref %SystemRoot%\SYSWOW64\PEERDISTSVC.DLL
delref %SystemRoot%\SYSWOW64\DRIVERS\NDIS.SYS
delref %SystemRoot%\SYSWOW64\UMPO.DLL
delref %SystemRoot%\SYSWOW64\IPHLPSVC.DLL
delref %SystemRoot%\SYSWOW64\CSCSVC.DLL
delref %SystemRoot%\SYSWOW64\DRIVERS\RDVGKMD.SYS
delref %SystemRoot%\SYSWOW64\PNRPSVC.DLL
delref %SystemRoot%\SYSWOW64\DRIVERS\PACER.SYS
delref %SystemRoot%\SYSWOW64\LSM.EXE
delref {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}\[CLSID]
delref {166B1BCA-3F9C-11CF-8075-444553540000}\[CLSID]
delref {233C1507-6A77-46A4-9443-F871F945D258}\[CLSID]
delref {4063BE15-3B08-470D-A0D5-B37161CFFD69}\[CLSID]
delref {88D969C0-F192-11D4-A65F-0040963251E5}\[CLSID]
delref {88D969C1-F192-11D4-A65F-0040963251E5}\[CLSID]
delref {88D969C2-F192-11D4-A65F-0040963251E5}\[CLSID]
delref {88D969C3-F192-11D4-A65F-0040963251E5}\[CLSID]
delref {88D969C4-F192-11D4-A65F-0040963251E5}\[CLSID]
delref {88D969C5-F192-11D4-A65F-0040963251E5}\[CLSID]
delref {CA8A9780-280D-11CF-A24D-444553540000}\[CLSID]
delref {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA}\[CLSID]
delref {D27CDB6E-AE6D-11CF-96B8-444553540000}\[CLSID]
delref %SystemRoot%\SYSWOW64\WIN32K.SYS
delref %SystemRoot%\SYSWOW64\BLANK.HTM
delref {E6FB5E20-DE35-11CF-9C87-00AA005127ED}\[CLSID]
delref %Sys32%\DRIVERS\RDVGKMD.SYS
delref %Sys32%\MSSPELLCHECKINGFACILITY.DLL
delref %Sys32%\BLANK.HTM
delref {472083B0-C522-11CF-8763-00608CC02F24}\[CLSID]
delref HELPSVC\[SERVICE]
delref SACSVR\[SERVICE]
delref SWPRV\[SERVICE]
delref TBS\[SERVICE]
delref VMMS\[SERVICE]
delref MESSENGER\[SERVICE]
delref RDSESSMGR\[SERVICE]
delref %Sys32%\DRIVERS\TBPANEL.SYS
delref %SystemRoot%\XHUNTER1.SYS
delref %Sys32%\PSXSS.EXE
delref %SystemDrive%\PROGRAM FILES\MOZILLA FIREFOX\BROWSER\FEATURES\[email protected]
delref %SystemDrive%\PROGRAM FILES\BLUESTACKS\BSTKC.DLL
delref %SystemDrive%\PROGRAM FILES\BLUESTACKS\BSTKSVC.EXE
delref %SystemDrive%\PROGRAM FILES\MCAFEE SECURITY SCAN\3.11.1512\MCCOREPS.DLL
delref %SystemDrive%\PROGRAM FILES\BLUESTACKS\BSTKPROXYSTUB.DLL
delref %Sys32%\SHAREMEDIACPL.CPL
delref %Sys32%\NVCPL.DLL
delref %SystemDrive%\PROGRAM FILES (X86)\JAVA\JRE1.8.0_211\BIN\WSDETECT.DLL
delref H:\HISUITEDOWNLOADER.EXE
delref F:\SETUP.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CHEAT ENGINE.EXE
delref %SystemDrive%\USERS\АНДРЕЙ\DOWNLOADS\CRUTCHES.EXE
delref %SystemDrive%\USERS\АНДРЕЙ\APPDATA\ROAMING\UTORRENT\UTORRENT.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CHEATENGINE-I386.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CHEATENGINE-X86_64-SSE4-AVX2.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CHEATENGINE-X86_64.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\TUTORIAL-X86_64.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\TUTORIAL-I386.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\CEREGRESET.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\UNINS000.EXE
delref %SystemDrive%\PROGRAM FILES\CHEAT ENGINE 7.1\KERNELMODULEUNLOADER.EXE
;-------------------------------------------------------------

restart

перезагрузка, пишем о старых и новых проблемах.
------------
далее,

+
сделайте новые логи FRST после выполнения скрипта в uVS

[ Как создать образ автозапуска? ]

Сообщений: 3

Баллов: 1

Регистрация: 17.11.2020

Размещено 17.11.2020 16:00:09

Все так же идет откат установки и та же ошибка

Прикрепленные файлы

FRST.txt (35.35 КБ)
Addition.txt (55.84 КБ)

Сообщений: 6241

Баллов: 4992

Регистрация: 25.05.2010

Размещено 17.11.2020 16:50:06

Скопируйте приведенный ниже текст в Блокнот и сохраните файл как fixlist.txt в ту же папку откуда была запущена утилита Farbar Recovery Scan Tool:
...
Запустите FRST и нажмите один раз на кнопку Fix и подождите.

Код
MediaGet (HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\...\MediaGet) (Version: - MediaGet) Shortcut: C:\Users\Андрей\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet2\Удалить MediaGet.lnk -> C:\Users\Андрей\MediaGet2\mediaget-uninstaller.exe () <==== Cyrillic 2020-11-17 10:20 - 2020-11-17 10:20 - 009400320 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_core320.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 000186880 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_img_hash320.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 002482688 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_imgcodecs320.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 019027456 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_imgproc320.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 000252416 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_videoio320.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 029560320 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opengl32.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 000244224 _____ () [File not signed] C:\Users\Андрей\MediaGet2\sentry_crashpad.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 001184768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Андрей\MediaGet2\LIBEAY32.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 000273408 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Андрей\MediaGet2\SSLEAY32.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 002507264 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\Андрей\MediaGet2\libcrypto-1_1.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 000530432 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\Андрей\MediaGet2\libssl-1_1.dll 2020-11-17 10:20 - 2020-11-17 10:20 - 005139576 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Users\Андрей\MediaGet2\Qt5Core.dll MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup MSCONFIG\startupreg: Realtek HD Audio => C:\ProgramData\RealtekHD\taskhostw.exe FirewallRules: [{AD91B086-1D92-4700-94CE-1E02FECE50B9}] => (Allow) C:\Program Files (x86)\DriverPack Cloud\cloud.exe => No File FirewallRules: [TCP Query User{A43C1D46-3567-4E86-913E-5B9DEA892941}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File FirewallRules: [UDP Query User{6B4FCB31-0925-47BF-BA57-EE686174166B}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File FirewallRules: [{7072619A-54EA-41CA-85DB-45F6736A4792}] => (Allow) C:\Users\Андрей\AppData\Local\Temp\DriverPack-20190607221332\tools\aria2c.exe => No File FirewallRules: [{97832B50-D208-489C-810C-596092DD0F8E}] => (Allow) C:\Users\Андрей\AppData\Roaming\uTorrent\uTorrent.exe => No File FirewallRules: [{D55F1A1A-076D-4A5A-8770-8B074BE9DA24}] => (Allow) C:\Users\Андрей\AppData\Roaming\uTorrent\uTorrent.exe => No File FirewallRules: [{00B61250-1F75-4956-BFFB-A064EB039BB9}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File FirewallRules: [TCP Query User{3FCC79CB-B4A9-4C51-B305-8796B34A0137}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe => No File FirewallRules: [UDP Query User{83FC0BF4-6FAA-4263-AECE-6E3D341DBD81}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe => No File FirewallRules: [TCP Query User{EA3AA71E-75D5-4CB6-9BEC-27E38B3E272A}C:\program files (x86)\ufiler\ufiler.exe] => (Block) C:\program files (x86)\ufiler\ufiler.exe => No File FirewallRules: [UDP Query User{FC7C7420-82AA-4C26-A265-DDE9A956CEC5}C:\program files (x86)\ufiler\ufiler.exe] => (Block) C:\program files (x86)\ufiler\ufiler.exe => No File FirewallRules: [TCP Query User{DB334645-96F1-4E3A-8568-6679ADAB4E99}C:\program files (x86)\ufiler\ufiler.exe] => (Block) C:\program files (x86)\ufiler\ufiler.exe => No File FirewallRules: [UDP Query User{13CD7B14-15C5-4737-A568-B680ADD1340E}C:\program files (x86)\ufiler\ufiler.exe] => (Block) C:\program files (x86)\ufiler\ufiler.exe => No File FirewallRules: [{FEB84469-C209-4E91-AF85-710DD90FE5A0}] => (Allow) C:\Users\Андрей\AppData\Local\Programs\Opera\68.0.3618.165\opera.exe => No File FirewallRules: [{BD182744-B0A8-4C86-B012-269F65674038}] => (Allow) C:\Users\Андрей\AppData\Local\Programs\Opera\68.0.3618.173\opera.exe => No File FirewallRules: [{E0ADA174-6B68-49C1-BAE6-5647180BC46B}] => (Allow) C:\ProgramData\Windows\rutserv.exe => No File FirewallRules: [{81BEA15C-BA08-4B80-A356-BCF8287E2248}] => (Block) LPort=139 FirewallRules: [{E36A30B6-ED0B-43CE-AC8B-D17A5807A71A}] => (Block) LPort=445 FirewallRules: [{5734A3A9-BA66-4A26-A563-D9444BC5CCD6}] => (Block) LPort=139 FirewallRules: [{CF27A452-2C54-4DCC-A6E0-257DB7E65B2F}] => (Block) LPort=445 FirewallRules: [{32A6B77C-0470-4C13-9CE7-D65A9A045195}] => (Allow) LPort=3389 FirewallRules: [{CE1F52EE-7A9F-4FCB-8E63-0E0BEBC663F7}] => (Allow) LPort=3389 FirewallRules: [{C9D974C7-21A6-4D5F-8F63-CB3A39479BFB}] => (Allow) C:\Users\Андрей\MediaGet2\mediaget.exe (Global Microtrading PTE. LTD -> MediaGet) FirewallRules: [{D8011CBA-A110-4BD6-BAC8-006E694FAB94}] => (Allow) C:\Users\Андрей\MediaGet2\mediaget.exe (Global Microtrading PTE. LTD -> MediaGet) (Global Microtrading PTE. LTD -> MediaGet) C:\Users\Андрей\MediaGet2\mediaget.exe (GLOBAL MICROTRADING PTE. LTD. -> ) C:\Users\Андрей\MediaGet2\mediaget_crashpad_handler.exe HKLM\...\Policies\Explorer: [DisallowRun] 0 HKLM\...\Policies\Explorer: [RestrictRun] 0 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-19\...\Policies\Explorer: [DisallowRun] 0 HKU\S-1-5-19\...\Policies\Explorer: [RestrictRun] 0 HKU\S-1-5-20\...\Policies\Explorer: [DisallowRun] 0 HKU\S-1-5-20\...\Policies\Explorer: [RestrictRun] 0 HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\...\Run: [MediaGet2] => C:\Users\Андрей\MediaGet2\mediaget.exe [12673416 2020-11-17] (Global Microtrading PTE. LTD -> MediaGet) HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\...\Policies\Explorer: [DisallowRun] 0 HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\...\Policies\Explorer: [RestrictRun] 0 HKU\S-1-5-18\...\Policies\Explorer: [DisallowRun] 0 HKU\S-1-5-18\...\Policies\Explorer: [RestrictRun] 0 HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION FF NewTab: Mozilla\Firefox\Profiles\v54txsyj.default-1566917317778 -> hxxps://securesearch.org/homepage?hp=2&pId=BT171002&iDate=2020-09-17 10:23:25&bName= FF Notifications: Mozilla\Firefox\Profiles\v54txsyj.default-1566917317778 -> hxxps://www.lenkino.net; hxxps://r.fapality.com FF Extension: (Avast Online Security) - C:\Users\Андрей\AppData\Roaming\Mozilla\Firefox\Profiles\v54txsyj.default-1566917317778\Extensions\[email protected] [2020-06-17] FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] CHR HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fhkbfkkohcdgpckffakhbllifkakihmh] OPR Notifications: hxxps:\/\/chapchap.su 2020-11-17 10:20 - 2020-11-17 10:20 - 000000889 _____ C:\Users\Андрей\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet.lnk 2020-11-17 10:20 - 2020-11-17 10:20 - 000000859 _____ C:\Users\Андрей\Desktop\MediaGet.lnk 2020-11-17 10:18 - 2020-11-17 10:24 - 000000000 ____D C:\Users\Андрей\MediaGet2 2020-11-17 10:18 - 2020-11-17 10:20 - 000000000 ____D C:\Users\Андрей\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet2 2020-11-17 10:14 - 2020-11-17 10:14 - 002705808 _____ () C:\Users\Андрей\Desktop\utorrent_id571645ids1s.exe 2020-11-17 09:00 - 2020-09-20 17:21 - 000000000 __SHD C:\AdwCleaner 2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\WindowsTask 2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\Windows 2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\rdp 2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\WindowsTask 2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\Windows 2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\Setup 2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\RunDLL 2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\RealtekHD 2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\Setup 2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\RunDLL 2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\RealtekHD 2020-11-16 20:12 - 2015-06-22 21:46 - 000000000 __SHD C:\DrWeb Quarantine 2020-11-16 20:11 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\install 2020-11-16 20:11 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\install 2020-11-16 20:01 - 2020-09-20 17:22 - 000000000 __SHD C:\Program Files\RDP Wrapper 2020-11-16 20:12 C:\DrWeb Quarantine 2020-09-20 17:21 C:\KVRT_Data 2020-09-20 17:21 C:\Program Files\AVAST Software 2020-09-20 17:21 C:\Program Files\AVG 2020-09-17 18:18 C:\Program Files\ByteFence 2020-09-20 17:21 C:\Program Files\Cezurity 2020-09-20 17:21 C:\Program Files\COMODO 2020-09-20 17:21 C:\Program Files\Enigma Software Group 2020-09-20 17:21 C:\Program Files\ESET 2020-09-20 17:21 C:\Program Files\Kaspersky Lab 2020-09-20 17:21 C:\Program Files\Malwarebytes 2020-09-20 17:21 C:\Program Files\SpyHunter 2020-09-05 18:55 C:\Program Files (x86)\360 2020-09-20 17:21 C:\Program Files (x86)\AVAST Software 2020-09-20 17:21 C:\Program Files (x86)\AVG 2020-09-20 17:21 C:\Program Files (x86)\Cezurity 2020-09-20 17:21 C:\Program Files (x86)\GRIZZLY Antivirus 2020-09-20 17:21 C:\Program Files (x86)\Kaspersky Lab 2020-09-20 17:21 C:\Program Files (x86)\Microsoft JDX 2020-09-20 17:21 C:\Program Files (x86)\Panda Security 2020-09-20 17:21 C:\Program Files (x86)\SpyHunter 2020-09-20 17:21 C:\Windows\speechstracing 2019-11-17 11:14 C:\Program Files\Common Files\McAfee 2020-09-20 17:21 C:\ProgramData\360safe 2020-09-05 18:54 C:\ProgramData\AVAST Software 2020-09-20 17:21 C:\ProgramData\Avira 2020-09-20 17:21 C:\ProgramData\Doctor Web 2020-09-20 17:21 C:\ProgramData\ESET 2020-09-20 17:21 C:\ProgramData\grizzly 2020-09-20 17:21 C:\ProgramData\Indus 2020-09-20 17:21 C:\ProgramData\Kaspersky Lab 2020-09-20 17:21 C:\ProgramData\Kaspersky Lab Setup Files 2020-09-20 17:21 C:\ProgramData\Malwarebytes 2020-09-20 17:21 C:\ProgramData\MB3Install 2020-08-20 13:27 C:\ProgramData\McAfee 2020-09-20 17:21 C:\ProgramData\Norton 2020-09-20 17:21 C:\Users\Все пользователи\360safe 2020-09-05 18:54 C:\Users\Все пользователи\AVAST Software 2020-09-20 17:21 C:\Users\Все пользователи\Avira 2020-09-20 17:21 C:\Users\Все пользователи\Doctor Web 2020-09-20 17:21 C:\Users\Все пользователи\ESET 2020-09-20 17:21 C:\Users\Все пользователи\grizzly 2020-09-20 17:21 C:\Users\Все пользователи\Indus 2020-09-20 17:21 C:\Users\Все пользователи\Kaspersky Lab 2020-09-20 17:21 C:\Users\Все пользователи\Kaspersky Lab Setup Files 2020-09-20 17:21 C:\Users\Все пользователи\Malwarebytes 2020-09-20 17:21 C:\Users\Все пользователи\MB3Install 2020-08-20 13:27 C:\Users\Все пользователи\McAfee 2020-09-20 17:21 C:\Users\Все пользователи\Norton EmptyTemp: Reboot:

Код

  
MediaGet (HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\...\MediaGet) (Version:  - MediaGet)
Shortcut: C:\Users\Андрей\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet2\Удалить MediaGet.lnk -> C:\Users\Андрей\MediaGet2\mediaget-uninstaller.exe () <==== Cyrillic
2020-11-17 10:20 - 2020-11-17 10:20 - 009400320 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_core320.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 000186880 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_img_hash320.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 002482688 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_imgcodecs320.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 019027456 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_imgproc320.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 000252416 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opencv_videoio320.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 029560320 _____ () [File not signed] C:\Users\Андрей\MediaGet2\opengl32.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 000244224 _____ () [File not signed] C:\Users\Андрей\MediaGet2\sentry_crashpad.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 001184768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Андрей\MediaGet2\LIBEAY32.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 000273408 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Андрей\MediaGet2\SSLEAY32.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 002507264 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\Андрей\MediaGet2\libcrypto-1_1.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 000530432 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\Андрей\MediaGet2\libssl-1_1.dll
2020-11-17 10:20 - 2020-11-17 10:20 - 005139576 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Users\Андрей\MediaGet2\Qt5Core.dll
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: Realtek HD Audio => C:\ProgramData\RealtekHD\taskhostw.exe
FirewallRules: [{AD91B086-1D92-4700-94CE-1E02FECE50B9}] => (Allow) C:\Program Files (x86)\DriverPack Cloud\cloud.exe => No File
FirewallRules: [TCP Query User{A43C1D46-3567-4E86-913E-5B9DEA892941}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [UDP Query User{6B4FCB31-0925-47BF-BA57-EE686174166B}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [{7072619A-54EA-41CA-85DB-45F6736A4792}] => (Allow) C:\Users\Андрей\AppData\Local\Temp\DriverPack-20190607221332\tools\aria2c.exe => No File
FirewallRules: [{97832B50-D208-489C-810C-596092DD0F8E}] => (Allow) C:\Users\Андрей\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{D55F1A1A-076D-4A5A-8770-8B074BE9DA24}] => (Allow) C:\Users\Андрей\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{00B61250-1F75-4956-BFFB-A064EB039BB9}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File
FirewallRules: [TCP Query User{3FCC79CB-B4A9-4C51-B305-8796B34A0137}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe => No File
FirewallRules: [UDP Query User{83FC0BF4-6FAA-4263-AECE-6E3D341DBD81}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe => No File
FirewallRules: [TCP Query User{EA3AA71E-75D5-4CB6-9BEC-27E38B3E272A}C:\program files (x86)\ufiler\ufiler.exe] => (Block) C:\program files (x86)\ufiler\ufiler.exe => No File
FirewallRules: [UDP Query User{FC7C7420-82AA-4C26-A265-DDE9A956CEC5}C:\program files (x86)\ufiler\ufiler.exe] => (Block) C:\program files (x86)\ufiler\ufiler.exe => No File
FirewallRules: [TCP Query User{DB334645-96F1-4E3A-8568-6679ADAB4E99}C:\program files (x86)\ufiler\ufiler.exe] => (Block) C:\program files (x86)\ufiler\ufiler.exe => No File
FirewallRules: [UDP Query User{13CD7B14-15C5-4737-A568-B680ADD1340E}C:\program files (x86)\ufiler\ufiler.exe] => (Block) C:\program files (x86)\ufiler\ufiler.exe => No File
FirewallRules: [{FEB84469-C209-4E91-AF85-710DD90FE5A0}] => (Allow) C:\Users\Андрей\AppData\Local\Programs\Opera\68.0.3618.165\opera.exe => No File
FirewallRules: [{BD182744-B0A8-4C86-B012-269F65674038}] => (Allow) C:\Users\Андрей\AppData\Local\Programs\Opera\68.0.3618.173\opera.exe => No File
FirewallRules: [{E0ADA174-6B68-49C1-BAE6-5647180BC46B}] => (Allow) C:\ProgramData\Windows\rutserv.exe => No File
FirewallRules: [{81BEA15C-BA08-4B80-A356-BCF8287E2248}] => (Block) LPort=139
FirewallRules: [{E36A30B6-ED0B-43CE-AC8B-D17A5807A71A}] => (Block) LPort=445
FirewallRules: [{5734A3A9-BA66-4A26-A563-D9444BC5CCD6}] => (Block) LPort=139
FirewallRules: [{CF27A452-2C54-4DCC-A6E0-257DB7E65B2F}] => (Block) LPort=445
FirewallRules: [{32A6B77C-0470-4C13-9CE7-D65A9A045195}] => (Allow) LPort=3389
FirewallRules: [{CE1F52EE-7A9F-4FCB-8E63-0E0BEBC663F7}] => (Allow) LPort=3389
FirewallRules: [{C9D974C7-21A6-4D5F-8F63-CB3A39479BFB}] => (Allow) C:\Users\Андрей\MediaGet2\mediaget.exe (Global Microtrading PTE. LTD -> MediaGet)
FirewallRules: [{D8011CBA-A110-4BD6-BAC8-006E694FAB94}] => (Allow) C:\Users\Андрей\MediaGet2\mediaget.exe (Global Microtrading PTE. LTD -> MediaGet)
(Global Microtrading PTE. LTD -> MediaGet) C:\Users\Андрей\MediaGet2\mediaget.exe
(GLOBAL MICROTRADING PTE. LTD. -> ) C:\Users\Андрей\MediaGet2\mediaget_crashpad_handler.exe
HKLM\...\Policies\Explorer: [DisallowRun] 0
HKLM\...\Policies\Explorer: [RestrictRun] 0
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Policies\Explorer: [DisallowRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisallowRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\...\Run: [MediaGet2] => C:\Users\Андрей\MediaGet2\mediaget.exe [12673416 2020-11-17] (Global Microtrading PTE. LTD -> MediaGet)
HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\...\Policies\Explorer: [DisallowRun] 0
HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisallowRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [RestrictRun] 0
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
FF NewTab: Mozilla\Firefox\Profiles\v54txsyj.default-1566917317778 -> hxxps://securesearch.org/homepage?hp=2&pId=BT171002&iDate=2020-09-17 10:23:25&bName=
FF Notifications: Mozilla\Firefox\Profiles\v54txsyj.default-1566917317778 -> hxxps://www.lenkino.net; hxxps://r.fapality.com
FF Extension: (Avast Online Security) - C:\Users\Андрей\AppData\Roaming\Mozilla\Firefox\Profiles\v54txsyj.default-1566917317778\Extensions\[email protected] [2020-06-17]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HKU\S-1-5-21-1616146017-2463400075-1735324224-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fhkbfkkohcdgpckffakhbllifkakihmh]
OPR Notifications: hxxps:\/\/chapchap.su
2020-11-17 10:20 - 2020-11-17 10:20 - 000000889 _____ C:\Users\Андрей\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet.lnk
2020-11-17 10:20 - 2020-11-17 10:20 - 000000859 _____ C:\Users\Андрей\Desktop\MediaGet.lnk
2020-11-17 10:18 - 2020-11-17 10:24 - 000000000 ____D C:\Users\Андрей\MediaGet2
2020-11-17 10:18 - 2020-11-17 10:20 - 000000000 ____D C:\Users\Андрей\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet2
2020-11-17 10:14 - 2020-11-17 10:14 - 002705808 _____ () C:\Users\Андрей\Desktop\utorrent_id571645ids1s.exe
2020-11-17 09:00 - 2020-09-20 17:21 - 000000000 __SHD C:\AdwCleaner
2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\WindowsTask
2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\Windows
2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\rdp
2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\WindowsTask
2020-11-16 20:13 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\Windows
2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\Setup
2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\RunDLL
2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\RealtekHD
2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\Setup
2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\RunDLL
2020-11-16 20:12 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\RealtekHD
2020-11-16 20:12 - 2015-06-22 21:46 - 000000000 __SHD C:\DrWeb Quarantine
2020-11-16 20:11 - 2020-09-20 17:21 - 000000000 __SHD C:\Users\Все пользователи\install
2020-11-16 20:11 - 2020-09-20 17:21 - 000000000 __SHD C:\ProgramData\install
2020-11-16 20:01 - 2020-09-20 17:22 - 000000000 __SHD C:\Program Files\RDP Wrapper
2020-11-16 20:12 C:\DrWeb Quarantine
2020-09-20 17:21 C:\KVRT_Data
2020-09-20 17:21 C:\Program Files\AVAST Software
2020-09-20 17:21 C:\Program Files\AVG
2020-09-17 18:18 C:\Program Files\ByteFence
2020-09-20 17:21 C:\Program Files\Cezurity
2020-09-20 17:21 C:\Program Files\COMODO
2020-09-20 17:21 C:\Program Files\Enigma Software Group
2020-09-20 17:21 C:\Program Files\ESET
2020-09-20 17:21 C:\Program Files\Kaspersky Lab
2020-09-20 17:21 C:\Program Files\Malwarebytes
2020-09-20 17:21 C:\Program Files\SpyHunter
2020-09-05 18:55 C:\Program Files (x86)\360
2020-09-20 17:21 C:\Program Files (x86)\AVAST Software
2020-09-20 17:21 C:\Program Files (x86)\AVG
2020-09-20 17:21 C:\Program Files (x86)\Cezurity
2020-09-20 17:21 C:\Program Files (x86)\GRIZZLY Antivirus
2020-09-20 17:21 C:\Program Files (x86)\Kaspersky Lab
2020-09-20 17:21 C:\Program Files (x86)\Microsoft JDX
2020-09-20 17:21 C:\Program Files (x86)\Panda Security
2020-09-20 17:21 C:\Program Files (x86)\SpyHunter
2020-09-20 17:21 C:\Windows\speechstracing
2019-11-17 11:14 C:\Program Files\Common Files\McAfee
2020-09-20 17:21 C:\ProgramData\360safe
2020-09-05 18:54 C:\ProgramData\AVAST Software
2020-09-20 17:21 C:\ProgramData\Avira
2020-09-20 17:21 C:\ProgramData\Doctor Web
2020-09-20 17:21 C:\ProgramData\ESET
2020-09-20 17:21 C:\ProgramData\grizzly
2020-09-20 17:21 C:\ProgramData\Indus
2020-09-20 17:21 C:\ProgramData\Kaspersky Lab
2020-09-20 17:21 C:\ProgramData\Kaspersky Lab Setup Files
2020-09-20 17:21 C:\ProgramData\Malwarebytes
2020-09-20 17:21 C:\ProgramData\MB3Install
2020-08-20 13:27 C:\ProgramData\McAfee
2020-09-20 17:21 C:\ProgramData\Norton
2020-09-20 17:21 C:\Users\Все пользователи\360safe
2020-09-05 18:54 C:\Users\Все пользователи\AVAST Software
2020-09-20 17:21 C:\Users\Все пользователи\Avira
2020-09-20 17:21 C:\Users\Все пользователи\Doctor Web
2020-09-20 17:21 C:\Users\Все пользователи\ESET
2020-09-20 17:21 C:\Users\Все пользователи\grizzly
2020-09-20 17:21 C:\Users\Все пользователи\Indus
2020-09-20 17:21 C:\Users\Все пользователи\Kaspersky Lab
2020-09-20 17:21 C:\Users\Все пользователи\Kaspersky Lab Setup Files
2020-09-20 17:21 C:\Users\Все пользователи\Malwarebytes
2020-09-20 17:21 C:\Users\Все пользователи\MB3Install
2020-08-20 13:27 C:\Users\Все пользователи\McAfee
2020-09-20 17:21 C:\Users\Все пользователи\Norton


EmptyTemp:
Reboot:

Программа FRST создаст лог-файл (Fixlog.txt). Пожалуйста, прикрепите его в следующем сообщении!

+
Выполните лог в AdwCleaner
http://forum.esetnod32.ru/forum9/topic7084/

после завершения сканирования:
Записи относящиеся к Mail.Ru и Yandex можете не удалять ( если пользуетесь программой )
На вкладке:
Папки (Folders) для Mail.Ru и Yandex снимите [V]

Удалите найденное в AdwCleaner по кнопке Очистить (Clean), подтвердите действие
с автоперезагрузкой

Проверяем, как работает система...
и
Пишем по _общему результату лечения.

Изменено: RP55 RP55 - 17.11.2020 16:51:15

Проблема с установкой , При установке продукта ESET на ваше устройство возникла проблема.