Не меняется поисковая система в гугл хром
Не меняется поисковая система Параметр заблокирован администратором
Код Code
begin ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp'); TerminateProcessByName('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe'); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp'); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe'); StopService('dijojyvi'); StopService('noviqifo'); StopService('zyvirigo'); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp', ''); QuarantineFile('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe', ''); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp', ''); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe', ''); QuarantineFile('C:\Users\vitya\AppData\Local\Temp\in71125248\6A81A1AD_stp\TaskScheduler.dll', ''); QuarantineFile('C:\Users\vitya\AppData\Local\Temp\{2B5CBA7E-0133-4CD6-B002-5F48C4F2E3E8}.dll', ''); QuarantineFile('C:\ProgramData\dUyfX\S5.bat', ''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk',''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk',''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk',''); QuarantineFile('C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Gооglе Сhrоmе.lnk',''); QuarantineFile('C:\Program Files (x86)\Google\chrome.bat','32'); DeleteFile('C:\Program Files (x86)\Google\chrome.bat','32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp', '32'); DeleteFile('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe', '32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp', '32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe', '32'); DeleteFile('C:\Users\vitya\AppData\Local\Temp\in71125248\6A81A1AD_stp\TaskScheduler.dll', '32'); DeleteFile('C:\Users\vitya\AppData\Local\Temp\{2B5CBA7E-0133-4CD6-B002-5F48C4F2E3E8}.dll', '32'); DeleteFile('C:\ProgramData\dUyfX\S5.bat', '32'); DeleteService('dijojyvi'); DeleteService('noviqifo'); DeleteService('zyvirigo'); ExecuteSysClean; ExecuteRepair(1); ExecuteRepair(4); ExecuteWizard('SCU', 2, 3, true); CreateQurantineArchive(GetAVZDirectory + 'quarantine.zip'); RebootWindows(true); end.Не могу поменять поисковую систему в Google Chrome
Code
begin ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true); TerminateProcessByName('c:\program files (x86)\manager\manager.exe'); TerminateProcessByName('c:\programdata\e25f457c-9287-4f2d-b5a8-8cd714c55009\maintainer.exe'); TerminateProcessByName('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\hnstcbc3.tmp'); TerminateProcessByName('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\jnsdac4f.tmp'); TerminateProcessByName('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\knspd4e7.tmp'); TerminateProcessByName('c:\users\fish666\appdata\local\87b2b260-1448220032-11d5-9f8b-002215d4578d\snsz39d1.tmp'); StopService('{c5db642e-a4dc-48dc-a9f5-088bcf85b719}Gw64'); StopService('MaintainerSvc4.00.5030318'); StopService('bebofixu'); StopService('qolisyce'); StopService('zybutiwy'); QuarantineFile('C:\Users\FISH666\AppData\Local\mdndbhepfbopchbgmdchaoflagepmehg\config.json',''); QuarantineFile('C:\Users\FISH666\AppData\Local\mdndbhepfbopchbgmdchaoflagepmehg\stub.exe',''); QuarantineFile('C:\ProgramData\TimeTasks\timetasks.exe',''); QuarantineFile('C:\Program Files (x86)\Zaxar\ZaxarLoader.exe',''); QuarantineFile('C:\Program Files (x86)\Zaxar\ZaxarGameBrowser.exe',''); QuarantineFile('C:\Windows\system32\drivers\{c5db642e-a4dc-48dc-a9f5-088bcf85b719}Gw64.sys',''); QuarantineFile('c:\program files (x86)\manager\manager.exe',''); QuarantineFile('c:\programdata\e25f457c-9287-4f2d-b5a8-8cd714c55009\maintainer.exe',''); QuarantineFile('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\hnstcbc3.tmp', ''); QuarantineFile('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\jnsdac4f.tmp', ''); QuarantineFile('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\knspd4e7.tmp', ''); QuarantineFile('c:\users\fish666\appdata\local\87b2b260-1448220032-11d5-9f8b-002215d4578d\snsz39d1.tmp', ''); QuarantineFile('C:\ProgramData\cVqwNESv\XPf0.bat', ''); QuarantineFile('C:\ProgramData\JxqPPgLewurD\LivRXWkqGqXpe5.bat', ''); QuarantineFile('C:\Users\FISH666\AppData\Local\aziAqOZEt\XflVHfryMqFpZ1.bat', ''); DeleteFile('c:\programdata\e25f457c-9287-4f2d-b5a8-8cd714c55009\maintainer.exe','32'); DeleteFile('c:\program files (x86)\manager\manager.exe','32'); DeleteFile('C:\Windows\system32\drivers\{c5db642e-a4dc-48dc-a9f5-088bcf85b719}Gw64.sys','32'); DeleteFile('C:\Program Files (x86)\Zaxar\ZaxarGameBrowser.exe','32'); DeleteFile('C:\Program Files (x86)\Zaxar\ZaxarLoader.exe','32'); DeleteFile('C:\ProgramData\TimeTasks\timetasks.exe','32'); DeleteFile('C:\Users\FISH666\AppData\Local\mdndbhepfbopchbgmdchaoflagepmehg\stub.exe','32'); DeleteFile('C:\Users\FISH666\AppData\Local\mdndbhepfbopchbgmdchaoflagepmehg\config.json','32'); DeleteFile('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\hnstcbc3.tmp', '32'); DeleteFile('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\jnsdac4f.tmp', '32'); DeleteFile('c:\program files (x86)\87b2b260-1448205579-11d5-9f8b-002215d4578d\knspd4e7.tmp', '32'); DeleteFile('c:\users\fish666\appdata\local\87b2b260-1448220032-11d5-9f8b-002215d4578d\snsz39d1.tmp', '32'); DeleteFile('C:\ProgramData\cVqwNESv\XPf0.bat', '32'); DeleteFile('C:\ProgramData\JxqPPgLewurD\LivRXWkqGqXpe5.bat', '32'); DeleteFile('C:\Users\FISH666\AppData\Local\aziAqOZEt\XflVHfryMqFpZ1.bat', '32'); DeleteService('{c5db642e-a4dc-48dc-a9f5-088bcf85b719}Gw64'); DeleteService('MaintainerSvc4.00.5030318'); DeleteService('bebofixu'); DeleteService('qolisyce'); DeleteService('zybutiwy'); RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','ZaxarGameBrowser'); RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','ZaxarLoader'); RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','Timestasks'); RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','mdndbhepfbopchbgmdchaoflagepmehg'); ExecuteSysClean; ExecuteWizard('SCU', 2, 3, true); CreateQurantineArchive(GetAVZDirectory + 'quarantine.zip'); RebootWindows(true); end.В Google Chrome не меняется поисковая система по умолчанию
Код Code
begin ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp'); TerminateProcessByName('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe'); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp'); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe'); StopService('dijojyvi'); StopService('noviqifo'); StopService('zyvirigo'); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp', ''); QuarantineFile('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe', ''); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp', ''); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe', ''); QuarantineFile('C:\Users\vitya\AppData\Local\Temp\in71125248\6A81A1AD_stp\TaskScheduler.dll', ''); QuarantineFile('C:\Users\vitya\AppData\Local\Temp\{2B5CBA7E-0133-4CD6-B002-5F48C4F2E3E8}.dll', ''); QuarantineFile('C:\ProgramData\dUyfX\S5.bat', ''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk',''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk',''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk',''); QuarantineFile('C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Gооglе Сhrоmе.lnk',''); QuarantineFile('C:\Program Files (x86)\Google\chrome.bat','32'); DeleteFile('C:\Program Files (x86)\Google\chrome.bat','32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp', '32'); DeleteFile('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe', '32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp', '32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe', '32'); DeleteFile('C:\Users\vitya\AppData\Local\Temp\in71125248\6A81A1AD_stp\TaskScheduler.dll', '32'); DeleteFile('C:\Users\vitya\AppData\Local\Temp\{2B5CBA7E-0133-4CD6-B002-5F48C4F2E3E8}.dll', '32'); DeleteFile('C:\ProgramData\dUyfX\S5.bat', '32'); DeleteService('dijojyvi'); DeleteService('noviqifo'); DeleteService('zyvirigo'); ExecuteSysClean; ExecuteRepair(1); ExecuteRepair(4); ExecuteWizard('SCU', 2, 3, true); CreateQurantineArchive(GetAVZDirectory + 'quarantine.zip'); RebootWindows(true); end.Не представляется возможным поменять поисковую систему в Google Chrome
Код Code
begin ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp'); TerminateProcessByName('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe'); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp'); TerminateProcessByName('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe'); TerminateProcessByName('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe'); StopService('dijojyvi'); StopService('noviqifo'); StopService('zyvirigo'); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp', ''); QuarantineFile('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe', ''); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp', ''); QuarantineFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe', ''); QuarantineFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe', ''); QuarantineFile('C:\Users\vitya\AppData\Local\Temp\in71125248\6A81A1AD_stp\TaskScheduler.dll', ''); QuarantineFile('C:\Users\vitya\AppData\Local\Temp\{2B5CBA7E-0133-4CD6-B002-5F48C4F2E3E8}.dll', ''); QuarantineFile('C:\ProgramData\dUyfX\S5.bat', ''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk',''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk',''); QuarantineFile('C:\Users\vitya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk',''); QuarantineFile('C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Gооglе Сhrоmе.lnk',''); QuarantineFile('C:\Program Files (x86)\Google\chrome.bat','32'); DeleteFile('C:\Program Files (x86)\Google\chrome.bat','32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\hnsja16a.tmp', '32'); DeleteFile('c:\users\vitya\appdata\local\temp\icsw1.14_0i1g1b2z1t1i1i0m1f1g1b2z1p1c1.14.exe', '32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\jnsq8a47.tmp', '32'); DeleteFile('c:\program files (x86)\00000000-1445524267-0000-0000-8c89a50dd37e\knsa707f.tmpfs', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\2\plugin.exe', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\12\plugin.exe', '32'); DeleteFile('c:\programdata\31f7a620-acbd-4f84-82db-5e231b8ad5de\plugins\8\plugin.exe', '32'); DeleteFile('C:\Users\vitya\AppData\Local\Temp\in71125248\6A81A1AD_stp\TaskScheduler.dll', '32'); DeleteFile('C:\Users\vitya\AppData\Local\Temp\{2B5CBA7E-0133-4CD6-B002-5F48C4F2E3E8}.dll', '32'); DeleteFile('C:\ProgramData\dUyfX\S5.bat', '32'); DeleteService('dijojyvi'); DeleteService('noviqifo'); DeleteService('zyvirigo'); ExecuteSysClean; ExecuteRepair(1); ExecuteRepair(4); ExecuteWizard('SCU', 2, 3, true); CreateQurantineArchive(GetAVZDirectory + 'quarantine.zip'); RebootWindows(true); end.
