marzena85
-
Postów
16 -
Dołączył
-
Ostatnia wizyta
Odpowiedzi opublikowane przez marzena85
-
-
Witam,
Mam problem, ostatnio zgrałam wszystkie moje dokumenty na dysk zewnętrzny. Niestety, gdy go chcę otworzyć wyskakuje okienko z informacją: "przed użyciem dysku sformatuj go". Czy da się jeszcze te dane odzyskać? Bardzo mi zależy, mam tam ważne dokumenty.
-
-
Picasso, bardzo Ci dziękuję - za pomoc, cierpliwość i poświęcony czas. Jesteś niesamowita.
-
-
Kliknięcie obojętnie jakiego odcinka wywołuje otwarcie się na nowej karcie jakiejś Gry lub konkursu:
hxxp://serialnet.pl/serial/2-5001054/czas-honoru
Jeden z przykładowych okienek
hxxp://pl.balagana.net/pages/pl_PL/slot/?AFID=210003&AFCID=13927849441368594329
Przez ostatnie 4 dni w ogóle "ruska" reklama się nie pojawiała. Jakby wiedziała, że na nią czekam.
Czy masz dostęp do konfiguracji routera?
Mam dostęp do konfiguracji rutera. -
-
Hej, zaczęły mi się pojawiać "ruskie reklamy" również w przeglądarce gogle chrome. Picasso, czy mam operę i gogle odinstalować i zainstalować Mozillę lub IE tak jak sugerowała malutka? Czy to coś pomoże?
-
Niestety wystąpił błąd:
There no disk in the drive. Please insert a disk into drive \Drive\Harddisk1\DR1
Spróbować jeszcze raz?
Mówiłaś, że tylko z Operze są problemy, a tu się okazuje, że w Google Chrome też.
Wcześniej okienka same się nie pojawiały
-
1. Wykonałam skrypt i zastosowałam się do twoich wskazówek. Nadal pojawiają się "ruskie reklamy" w Operze. W Gogle Chrome same otwierają się strony z różnymi grami( zmieniałam w gogle ustawienia - blokowałam okienka, ale to nic nie dało).
Załączam OTL:
========== FILES ==========
C:\Program Files\Opera\program\plugins folder moved successfully.
C:\Program Files\Opera\program folder moved successfully.
C:\Program Files\Opera folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\widgets folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps\0007 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps\0006 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps\0005 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps\0004 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps\0003 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps\0002 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps\0001 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps\0000 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\vps folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\thumbnails folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\migrate folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\GNU folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\fixes folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\doc\pdffiles folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\doc\htmlfiles\p7tm folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\doc\htmlfiles\includes folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\doc\htmlfiles\images folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\doc\htmlfiles folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\doc folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269\cleanup folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads\Dialogic_drivers_for_VoiceGuide_v7.3_win7_2k8_269 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\temporary_downloads folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\02\1B folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\02\0E folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\02\08 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\02\05 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\02 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\1F folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\1E folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\1D folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\1C folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\1B folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\1A folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\19 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\18 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\17 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\16 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\15 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\14 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\13 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\12 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\11 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\10 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\0F folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\0E folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\0D folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\0C folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\0B folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\0A folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\09 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\08 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\07 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\06 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\05 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\04 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\03 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\02 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00\00 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage\00 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\pstorage folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\sesn folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_006E folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_0063 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_004A folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_0033 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_002E folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_0028 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_0027 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_0024 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_0023 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache\g_0011 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\opcache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\mail\indexer folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\mail folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\logs folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\jumplist_icon_cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\icons\cache\sesn folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\icons\cache\g_0000 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\icons\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\icons folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\custom\defaults folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\custom folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\sesn folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\revocation\g_0000 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\revocation folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\g_0028 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\g_0027 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\g_0024 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\g_0023 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\g_0022 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\g_0021 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\g_0020 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\assoc002\g_0021 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache\assoc002 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\bt_metadata folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\application_cache\mcache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera\application_cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\Opera folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7cef69-d483-07bd-0842-63b6d44b7b4b\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7cef69-d483-07bd-0842-63b6d44b7b4b folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7cecd2-b42c-0a61-0511-204db4e42762\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7cecd2-b42c-0a61-0511-204db4e42762 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7cb05b-aae4-051e-0822-72e5aa2c180c\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7cb05b-aae4-051e-0822-72e5aa2c180c folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7c8d84-ba50-07c1-0b6c-2f7dba984add\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7c8d84-ba50-07c1-0b6c-2f7dba984add folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7c8aec-de04-0a65-067b-6c14decc7743\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7c8aec-de04-0a65-067b-6c14decc7743 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7c8855-f9a8-0d09-0699-28acf960203e\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7c8855-f9a8-0d09-0699-28acf960203e folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7c85be-8aaf-0fac-04ad-65438a6752ea\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets\wuid-4e7c85be-8aaf-0fac-04ad-65438a6752ea folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\widgets folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\vps\0000 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\vps folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\thumbnails folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\temporary_downloads folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\opcache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\mail\indexer folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\mail folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\icons\cache\g_0000 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\icons\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\icons folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\cache\sesn folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\cache\revocation\g_0000 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\cache\revocation folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\cache\g_0002 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\cache\g_0001 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\cache\g_0000 folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\application_cache\mcache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera\application_cache folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera\CProgram FilesOpera folder moved successfully.
C:\Users\Marzena\AppData\Local\Opera folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\webserver folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\toolbar folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\styles\user folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\styles folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\sessions folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\02\03 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\02\02 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\02\00 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\02 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\1E folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\1D folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\1C folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\1B folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\1A folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\19 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\18 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\16 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\15 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\12 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\11 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\0F folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\0E folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\0D folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\0B folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\09 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\07 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\06 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\05 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\04 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\02 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\01 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00\00 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage\00 folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\pstorage folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera\dictionaries folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\Opera folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\CProgram FilesOpera\webserver folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\CProgram FilesOpera\styles\user folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\CProgram FilesOpera\styles folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\CProgram FilesOpera\sessions folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera\CProgram FilesOpera folder moved successfully.
C:\Users\Marzena\AppData\Roaming\Opera folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\Software\Opera Software\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Opera Software\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
OTL by OldTimer - Version 3.2.69.0 log created on 05102013_174432
-
1. Przepraszam, pomyliłam. Poprawny plik w załączniku.
2. Wykonanie skryptu z OTL:
All processes killed
========== FILES ==========
J:\dhrhyje.bat moved successfully.
J:\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665 folder moved successfully.
J:\RECYCLER folder moved successfully.
========== OTL ==========
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C86EB8A9-CCC2-4B6C-B75D-73576ED591BF}\ not found.
Registry value HKEY_USERS\S-1-5-21-2874456408-1430136784-2133399366-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdFNyehJMxJUC deleted successfully.
Registry key HKEY_USERS\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-21-2874456408-1430136784-2133399366-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2874456408-1430136784-2133399366-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDrives deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Search the Web\ deleted successfully.
C:\Users\Marzena\AppData\Local\163d6437-46be-42fd-8a14-a461eb3bf84e moved successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\"Start Page"|"about:blank" /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\\"Start Page"|"about:blank" /E : value set successfully!
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"|"{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" /E : value set successfully!
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Registry key HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\ deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Marzena
->Temp folder emptied: 31011801 bytes
->Temporary Internet Files folder emptied: 20209389 bytes
->Java cache emptied: 9785960 bytes
->Google Chrome cache emptied: 161198080 bytes
->Opera cache emptied: 51281555 bytes
->Flash cache emptied: 182581 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 524288 bytes
RecycleBin emptied: 313769 bytes
Total Files Cleaned = 262,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 05032013_182434
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Tylko w Operze, w Google Chrome "ruskiej" nie widać?
Tak, tylko w Operze.
-Rozszerzenia: "Brak zainstalowanych rozszerzeń"
-Wtyczki:
Adobe Acrobat - 9.5.4.268
Opis: Adobe PDF Plug-In For Firefox and Netscape "9.5.4"
C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dllapplication/pdf Acrobat Portable Document Format pdf
application/vnd.adobe.xdp+xml Acrobat XML Data Package xdp
application/vnd.adobe.xfd+xml Adobe FormFlow99 Data File xfd
application/vnd.adobe.pdfxml Adobe PDF in XML Format pdfxml
application/vnd.adobe.x-mars Adobe PDF in XML Format mars
application/vnd.fdf Acrobat Forms Data Format fdf
application/vnd.adobe.xfdf XML Version of Acrobat Forms Data Format xfdf
Wyłącz QuickTime Plug-in 7.7.3 - 7.7.3 (1680.64)
Opis: The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
C:\Program Files\QuickTime\Plugins\npqtplugin.dllaudio/wav audio WAVE wav,bwf
audio/x-wav audio WAVE wav,bwf
video/quicktime QuickTime Movie qt,mov,mqv
application/sdp deskryptor strumienia SDP sdp
application/x-sdp deskryptor strumienia SDP sdp
application/x-rtsp deskryptor strumienia RTSP rtsp,rts
video/flc AutoDesk Animator (FLC) flc,fli,cel
Wyłącz QuickTime Plug-in 7.7.3 - 7.7.3 (1680.64)
Opis: The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
C:\Program Files\QuickTime\Plugins\npqtplugin2.dllaudio/midi MIDI midi,mid,smf,kar
audio/mid MIDI mid,midi,smf,kar
audio/x-midi MIDI mid,midi,smf,kar
audio/basic audio uLaw/AU au,snd,ulw
audio/x-aiff audio AIFF aiff,aif,aifc,cdda
audio/aiff audio AIFF aiff,aif,aifc,cdda
audio/vnd.qcelp QUALCOMM PureVoice audio qcp
Wyłącz QuickTime Plug-in 7.7.3 - 7.7.3 (1680.64)
Opis: The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
C:\Program Files\QuickTime\Plugins\npqtplugin3.dllvideo/mpeg mpeg,mpg,mpe,m2v,m1v,mpa,m1s,m1a,m75,m15,mp2,mpm,mpv
audio/mpeg mp3,mp2,mpga,mpeg,mpg,m1s,m1a,mpm,mpa,m2a
audio/x-gsm audio GSM gsm
audio/AMR audio AMR AMR
audio/aac audio AAC aac,adts
audio/x-aac audio AAC aac,adts
audio/x-caf audio CAF caf
audio/ac3 audio AC3 ac3
audio/x-ac3 audio AC3 ac3
video/x-mpeg noŠnik MPEG mpeg,mpg,m1s,m1v,m1a,m75,m15,mp2,mpm,mpv,mpa
Wyłącz QuickTime Plug-in 7.7.3 - 7.7.3 (1680.64)
Opis: The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
C:\Program Files\QuickTime\Plugins\npqtplugin4.dllvideo/mpeg noŠnik MPEG mpeg,mpg,mpe,m2v,m1v,mpa,m1s,m1a,m75,m15,mp2,mpm,mpv
audio/mpeg audio MPEG mp3,mp2,mpga,mpeg,mpg,m1s,m1a,mpm,mpa,m2a
video/3gpp media 3GPP 3gp,3gpp
video/x-mpeg mpeg,mpg,m1s,m1v,m1a,m75,m15,mp2,mpm,mpv,mpa
audio/x-mpeg audio MPEG mpeg,mpg,m1s,m1a,mp2,mpm,mpa,m2a
Wyłącz QuickTime Plug-in 7.7.3 - 7.7.3 (1680.64)
Opis: The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
C:\Program Files\QuickTime\Plugins\npqtplugin5.dllvideo/mp4 noŠnik MPEG-4 mp4,mpg4
video/3gpp 3gp,3gpp
audio/3gpp media 3GPP 3gp,3gpp
video/3gpp2 media 3GPP2 3g2,3gp2
audio/3gpp2 media 3GPP2 3g2,3gp2
video/sd-video wideo SD sdv
application/x-mpeg noŠnik AMC amc
audio/mp4 noŠnik MPEG-4 mp4
audio/x-m4a audio AAC m4a
audio/x-m4p audio AAC (zabezpieczony) m4p
audio/x-m4b ksiłřka audio AAC m4b
Wyłącz QuickTime Plug-in 7.7.3 - 7.7.3 (1680.64)
Opis: The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
C:\Program Files\QuickTime\Plugins\npqtplugin6.dllimage/x-pict obrazek PICT pict,pic,pct
video/x-m4v Wideo (zabezpieczone) m4v
image/x-macpaint obrazek MacPaint pntg,pnt,mac
image/pict obrazek PICT pict,pic,pct
image/x-quicktime obrazek QuickTime qtif,qti
image/x-sgi obrazek SGI sgi,rgb
image/x-targa obrazek TGA targa,tga
image/jp2 obrazek JPEG2000 jp2
Wyłącz QuickTime Plug-in 7.7.3 - 7.7.3 (1680.64)
Opis: The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
C:\Program Files\QuickTime\Plugins\npqtplugin7.dllimage/jp2 jp2
image/jpeg2000 obrazek JPEG2000 jp2
image/jpeg2000-image obrazek JPEG2000 jp2
image/x-jpeg2000-image obrazek JPEG2000 jp2
Wyłącz Shockwave Flash - 11,7,700,169
Opis: Shockwave Flash 11.7 r700
C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_169.dllapplication/futuresplash FutureSplash movie spl
application/x-shockwave-flash Adobe Flash movie swf,swt
Wyłącz Google Update - 1.3.21.145
C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
-
1. Usunięte.
( Zastanawiam się czy Opera nie jest zainfekowana, bo prawie na każdej stronie wwww, którą przez nią otwieram, pojawia się "ruska reklama", którą chciałam (dwa dni temu zamknąć), a ściągnęłam na kompa wirusa).
2. Logi w załączniku.
3. Wczoraj wieczorem zgrałam sobie moje dokumenty na dysk zewnętrzny. Robiąc powyższe raporty był on podpięty do kompa.
-
1. log z usuwania:
All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AdFNyehJMxJUC deleted successfully.
C:\Users\Marzena\AppData\Local\build.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDrives deleted successfully.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\Windows\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\Users\Marzena\AppData\Local\Temp\catchme.sys not found.
========== FILES ==========
File\Folder C:\dhrhyje.bat not found.
C:\Windows\System32\searchplugins folder moved successfully.
C:\Windows\System32\Extensions folder moved successfully.
C:\ProgramData\Babylon folder moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
Folder move failed. C:\Program Files\Mozilla Firefox scheduled to be moved on reboot.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\mozilla.org\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\ deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Journal
-> No Temporary Internet Files cache folder defined!
User: RegBack
-> No Temporary Internet Files cache folder defined!
User: systemprofile
-> No Temporary Internet Files cache folder defined!
User: TxR
-> No Temporary Internet Files cache folder defined!
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 608 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 113876 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 726 bytes
RecycleBin emptied: 452036 bytes
Total Files Cleaned = 1,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 05022013_214853
Files\Folders moved on Reboot...
C:\Program Files\Mozilla Firefox folder moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
2. SystemLook wygenerował plik:
-
Witam,
niestety nie zdążyłam odinstalować wszystkich programów z pkt 1, gdyż odinstalowując któryś z programów: (Softonic-Polska Toolbar, SweetIM for Messenger 3.6, SweetIM Toolbar for Internet Explorer 4.2) włączył mi się ten sam wirus i znów zablokował mi komputer.
Po restarcie pojawiał się biały ekran więc właczyłam tryb awaryjny z wierszem poleceń.
Moje działania:
1. z innego komputera nagrałam program OTL.exe na pendrivie i z wiersza poleceń go uruchomiłam.
2. zrestartowałam komputer i nadal ten sam biały ekran.
-
Załączam wymagane raporty:
"Results of screen317's Security Check version 0.99.63
Windows 7 Service Pack 1 x86 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Java 7 Update 15
Java version out of Date!
Adobe Flash Player 11.6.602.180
Adobe Reader 9 Adobe Reader out of Date!
Google Chrome 26.0.1410.43
Google Chrome 26.0.1410.64
Google Chrome plugins...
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````"
-
Mój komputer zostal zaatakowany przez tzw. "Wirus Policja". Aby go usunąć skorzystałam z programu ComboFix. Wygląda na to, że wszystko skończyło sie pomyślnie. Na koniec pojawił się log wygenerowany przez ComboFix i zostałam "poproszona" o umieszczenie go na forum w celu analizy wyników skanowania i ewentualnych dalszych instrukcji. Wygenerowany log jest w załączniku. Bardzo proszę o pomoc.
Nie mogę otworzyć dysku zewnętrznego
w Software
Opublikowano
Dziękuję za pomoc, chyba nie potrzebnie narobiłam zamieszania. Wystarczyło dysk podpiąć do PC-ta. Proszę o zamknięcie tematu