Prosim o pomoc

Zpráva

Dominik S · #31 Příspěvek od **Dominik S** » 19 lis 2015 21:15

Děkuji , vypadá to na jeden damage

Dominik S · #32 Příspěvek od **Dominik S** » 19 lis 2015 21:15

Děkuji , vypadá to na jeden damage

#33 Příspěvek od **altrok** » 19 lis 2015 21:41

100% zdravy disk vypada jinak, ale nemelo to byt nic vazneho.

Drzte se presne navodu! Win XP neni podporovan novou verzi 2.0

Stahnete a nainstalujte MBAM 1.75 http://www.bleepingcomputer.com/downloa ... i-malware/
na konci instalace zruste zatrzitko u polozky Povolit bezplatnou zkusebni verzi Malwarebytes Anti-Malware PRO
ted je dulezity krok - stahuje se aktualizace celeho programu a na konci vyskoci hlaska - zvolte Cancel, pripadne Storno
jako dalsi se sama stahla aktualizace virove databaze a dava Vam jedinou moznost -> OK
opet je Vam nabizena aktualizace celeho programu -> zvolte opet Cancel
v zalozce Kontrolor vyberte moznost Kompletni kontrola a kliknete na Prohledat
po dokonceni skenovani, ktere se muze protahnout az na nekolik hodin, na Vas vyskoci log, ktery mi zkopirujte do pristi odpovedi... pripadne jej najdete v karte Slozka protokolu

Dominik S · #34 Příspěvek od **Dominik S** » 20 lis 2015 07:33

Děkuji , Doufám že tenhle log je ten správný, protože žádný log se mi nezobrazil . až po tom co jsem klikl na " uložit protokol "

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2015.11.19.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Dodo :: GROUP-4B24797DB [administrátor]

19.11.2015 22:13:24
MBAM-log-2015-11-20 (07-39-45).txt

Typ: Kompletní kontrola (C:\|F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 520967
Uplynulý čas: 5 hodin, 11 minut, 7 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 4
C:\D přesunute\programy\GOMPLAYERENSETUP (1).EXE (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\pokus backup\Documents and Settings\All Users.WINDOWS\Data aplikací\Updater\updater.exe (PUP.Optional.Updater) -> Nebyla provedena žádná instrukce.
C:\pokus backup\Documents and Settings\All Users.WINDOWS\Data aplikací\Updater\_updater.exe (PUP.Optional.Updater) -> Nebyla provedena žádná instrukce.
C:\pokus backup\Documents and Settings\All Users.WINDOWS\Data aplikacĂ\Websteroids\app.dat (PUP.Optional.Blasteroids) -> Nebyla provedena žádná instrukce.

(konec)

#35 Příspěvek od **altrok** » 20 lis 2015 09:52

Ano, je to ono

Smazte slozky
C:\pokus backup\Documents and Settings\All Users.WINDOWS\Data aplikací\Updater
C:\pokus backup\Documents and Settings\All Users.WINDOWS\Data aplikacĂ\Websteroids

Start -> Vsechny programy -> Prislusenstvi -> pravej klik na Prikazovy radek a Spustit jako spravce

vepiste chkdsk /r
enter a restartujte PC
tato kontrola a opravovani probihaji pred nactenim OS a trvaji az nekolik hodin

Dominik S · #36 Příspěvek od **Dominik S** » 20 lis 2015 22:31

děkuji , hotovo

#37 Příspěvek od **altrok** » 20 lis 2015 22:57

Start -> vepiste cmd

na vysledek vyhledavani kliknete pravy a zvolte Spustit jako spravce
do spusteneho okna vepiste: sfc /scannow
a odentrujte
tento proces trva nekolik desitek minut
po jeho skonceni jeste do otevreneho prikazoveho radku vepiste (pripadne text zkopirujte do schranky pomoci Ctrl+C a vlozte pres pravy klik a vlozit)
findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
a odentrujte
obsah logu sfcdetails.txt umisteneho na plose zkopirujte do pristi odpovedi

Dominik S · #38 Příspěvek od **Dominik S** » 21 lis 2015 03:03

oops první krok šel a druhý ne. první krok jsem dělal pod osobním profilem protože cmd mi nejde spustit pod administratorem .

cmd mohu spustit jako administrator pouze v nouzovém režimu a ani tak to nefungovalo s druhým příkazem viz příloha .

#39 Příspěvek od **altrok** » 21 lis 2015 10:26

Log neni nutny, hlavne, ze sfc dobehl v poradku.

Dejte prosim aktualni logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Dominik S · #40 Příspěvek od **Dominik S** » 21 lis 2015 19:02

děkuji ,

Additional scan result of Farbar Recovery Scan Tool (x86) Version:20-11-2015
Ran by Dodo (2015-11-21 19:10:28)
Running from C:\Documents and Settings\Dodo\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) (2015-06-01 19:38:59)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-854245398-1677128483-842925246-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-854245398-1677128483-842925246-1003 - Limited - Enabled)
Dodo (S-1-5-21-854245398-1677128483-842925246-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Dodo
Guest (S-1-5-21-854245398-1677128483-842925246-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-854245398-1677128483-842925246-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-854245398-1677128483-842925246-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}
AV: avast! Antivirus (Enabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Free Firewall Firewall (Disabled) {829BDA32-94B3-44F4-8446-F8FCFF809F8B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Acer Crystal Eye Webcam 2.0.7 (HKLM\...\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}) (Version: 2.0.7 - SuYin)
Acer Crystal Eye Webcam 2.0.7 (Version: 2.0.7 - SuYin) Hidden
Acer Crystal Eye webcam Ver:1.1.81.402 (HKLM\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.81.402 - Chicony Electronics Co.,Ltd.)
AdAwareUpdater (Version: 11.8.586.8535 - Lavasoft) Hidden
Adobe Acrobat Reader 3.01 (HKLM\...\Adobe Acrobat Reader 3.01) (Version: - )
Adobe After Effects CS4 (HKLM\...\Adobe_3dcb365ab9e01871fb8c6f27b0ea079) (Version: 9 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 17.0.0.144 - Adobe Systems Incorporated)
Adobe Bridge 1.0 (HKLM\...\{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}) (Version: 1.0.1.1 - Adobe Systems)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin G13 (HKLM\...\{B2073246-67E3-40CD-A7EF-8882D37119BC}) (Version: 3.00.G13 - Black List Software)
Atheros WLAN Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
Avidemux 2.6 - 64bits (HKLM\...\Avidemux 2.6 - 64bits (64-bit)) (Version: 2.6.9.00 - )
Avidemux 2.6 (32-bit) (HKLM\...\Avidemux 2.6) (Version: 2.6.6.8941 - )
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.13.210 - Avira Operations GmbH & Co. KG)
Broadcom Driver Installation Program (HKLM\...\{153F839F-0A63-41D8-890F-7324C0E13743}) (Version: 5.60.18.9 - Broadcom)
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Citrix Online Launcher (HKLM\...\{DB014C85-A264-4BCA-A66F-6DD1FCF8EC36}) (Version: 1.0.335 - Citrix)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 3.66.10.0 - Conexant)
CorelDRAW Graphics Suite 12 (HKLM\...\{505AFDC0-5E72-4928-8368-5DEA385E3647}) (Version: 12.0.0.536 - Corel Corporation)
EMCO Remote Connection Analyzer (HKLM\...\EMCO Remote Connection Analyzer_is1) (Version: - Emco Software Ltd.)
f.lux (HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\Flux) (Version: - )
FileZilla Client 3.5.1 (HKLM\...\FileZilla Client) (Version: 3.5.1 - FileZilla Project)
GOM Audio (HKLM\...\GomAudio) (Version: 2.0.7.0873 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 44.0.2403.125 - Google Inc.)
Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden
GoToMeeting 7.2.0.2759 (HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\GoToMeeting) (Version: 7.2.0.2759 - CitrixOnline)
HD Tune 2.55 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
Heroku Toolbelt 3.39.5 (HKLM\...\Heroku Toolbelt_is1) (Version: 3.39.5 - Heroku, Inc.)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.10.5420 - Intel Corporation)
IPVanish (HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\80030f8e66f1b450) (Version: 1.3.1.31 - IPVanish.com)
Klient pro správu práv Microsoft Windows Rights Management Services s aktualizací Service Pack 2 (Version: 5.2.70 - Microsoft) Hidden
Klient Správy přístupových práv v systému Windows SP2, zpětná kompatibilita (Version: 5.2.70 - Microsoft) Hidden
Loaris Trojan Remover 1.3.7.5 (HKLM\...\{29988DC6-9C4A-49B2-AC86-5C380B29ADB9}_is1) (Version: - Loaris, Inc.)
Malwarebytes Anti-Malware verze 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 Czech Language Pack (HKLM\...\{5E65E94D-69F2-4850-9E93-6459C53A0F50}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY (HKLM\...\{A2C9CD1B-2551-3AED-B244-6698FB929FA6}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY (HKLM\...\{546C143E-68DC-314D-97BC-1E454E3BA429}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - csy (HKLM\...\{DD73CA82-EA82-38AA-863D-9A24A018DC96}) (Version: 3.5.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}) (Version: 3.5.30729 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0 - Microsoft Corporation) Hidden
Opera Stable 25.0.1614.50 (HKLM\...\Opera 25.0.1614.50) (Version: 25.0.1614.50 - Opera Software ASA)
PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw (Version: 5.0 - Adobe Systems Incorporated) Hidden
Pixel Bender Toolkit (Version: 1.0 - Adobe Systems Incorporated) Hidden
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.13.18 - Qualcomm Atheros Communications Inc.)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Ralink RT2860 Wireless LAN Card (HKLM\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.0.7.0 - Ralink)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30102 - Realtek Semiconductor Corp.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.14.0 - SAMSUNG Electronics Co., Ltd.)
Skype™ 7.4 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SlimDrivers (HKLM\...\{5AD12E7A-D739-4451-9BD1-3610EC56D8F5}) (Version: 2.2.45206 - SlimWare Utilities, Inc.)
Suite Shared Configuration CS4 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 12.2.4.1 - Synaptics Incorporated)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.51a - Ghisler Software GmbH)
UmmyVideoDownloader (HKLM\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: 1.5.0.0 - )
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebCam (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.54.010 - Sonix)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Winamp (HKLM\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
XMind 6 (v3.5.1) (HKLM\...\XMind_is1) (Version: 3.5.1.201411201906 - XMind Ltd.)
XML Paper Specification Shared Components Language Pack 1.0 (Version: - Microsoft Corporation) Hidden
XoftSpySE (HKLM\...\XoftSpySE) (Version: - )
ZoneAlarm Firewall (Version: 12.0.118.000 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Firewall (HKLM\...\ZoneAlarm Free Firewall) (Version: 12.0.118.000 - Check Point)
ZoneAlarm Security (Version: 12.0.118.000 - Check Point Software Technologies Ltd.) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-854245398-1677128483-842925246-1004_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Program Files\Citrix\GoToMeeting\2759\G2MOutlookAddin.dll (Citrix Online, a division of Citrix Systems, Inc.)

==================== Restore Points =========================

05-10-2015 12:25:28 Kontrolní bod systému
06-10-2015 20:49:17 Kontrolní bod systému
07-10-2015 22:30:18 Kontrolní bod systému
08-10-2015 23:37:49 Kontrolní bod systému
10-10-2015 03:48:21 Kontrolní bod systému
11-10-2015 21:05:33 Kontrolní bod systému
12-10-2015 21:53:52 Kontrolní bod systému
13-10-2015 23:11:14 Kontrolní bod systému
15-10-2015 00:05:28 Kontrolní bod systému
16-10-2015 00:17:19 Kontrolní bod systému
17-10-2015 00:35:34 Kontrolní bod systému
18-10-2015 00:49:23 Kontrolní bod systému
19-10-2015 01:47:33 Kontrolní bod systému
20-10-2015 01:49:04 Kontrolní bod systému
21-10-2015 01:50:42 Kontrolní bod systému
22-10-2015 02:39:01 Kontrolní bod systému
23-10-2015 10:30:49 Kontrolní bod systému
24-10-2015 10:36:54 Kontrolní bod systému
25-10-2015 11:35:49 Kontrolní bod systému
26-10-2015 12:10:24 Kontrolní bod systému
27-10-2015 12:46:27 Kontrolní bod systému
28-10-2015 13:47:02 Kontrolní bod systému
29-10-2015 14:37:31 Kontrolní bod systému
30-10-2015 15:37:33 Kontrolní bod systému
31-10-2015 16:37:37 Kontrolní bod systému
01-11-2015 17:33:24 Kontrolní bod systému
02-11-2015 18:47:25 Kontrolní bod systému
03-11-2015 19:34:28 Kontrolní bod systému
04-11-2015 20:24:16 Kontrolní bod systému
06-11-2015 00:08:01 Kontrolní bod systému
07-11-2015 00:23:34 Kontrolní bod systému
08-11-2015 01:19:56 Kontrolní bod systému
09-11-2015 03:11:40 Kontrolní bod systému
10-11-2015 04:13:52 Kontrolní bod systému
10-11-2015 07:40:37 AA11
10-11-2015 23:46:20 Instalace avast! Free Antivirus
11-11-2015 02:58:20 Installed Windows XP Wdf01009.
12-11-2015 02:30:47 Instalace avast! Free Antivirus
12-11-2015 21:03:44 Installed Windows XP Wdf01009.
14-11-2015 04:03:49 Kontrolní bod systému
15-11-2015 04:48:31 Kontrolní bod systému
15-11-2015 19:55:39 Malwarebytes Anti-Rootkit Restore Point
16-11-2015 22:56:19 Kontrolní bod systému
17-11-2015 09:35:37 Restore Point Created by FRST
18-11-2015 13:26:01 Kontrolní bod systému
18-11-2015 21:28:16 Restore Point Created by FRST
20-11-2015 04:05:19 Kontrolní bod systému
21-11-2015 04:33:43 Kontrolní bod systému

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2008-04-14 12:00 - 2015-11-12 02:15 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2011-08-28 22:19 - 2011-08-28 22:19 - 00093696 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2014-03-26 21:45 - 2013-12-04 21:23 - 00348160 _____ () C:\Program Files\WinRAR\rarlng.dll
2015-04-30 09:13 - 2011-01-13 09:04 - 00030080 _____ () C:\WINDOWS\snuvcdsm.exe
2008-04-14 12:00 - 2008-04-14 12:00 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-04-11 01:20 - 2014-02-10 12:44 - 04592128 _____ () C:\Documents and Settings\Dodo\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-04-11 01:20 - 2014-02-10 12:44 - 00112128 _____ () C:\Documents and Settings\Dodo\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2013-07-10 18:07 - 2013-07-10 18:07 - 00756888 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
2015-04-13 14:57 - 2015-04-13 14:57 - 00143296 ____C () C:\Program Files\VideoLAN\VLC\libvlc.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 02631616 ____C () C:\Program Files\VideoLAN\VLC\libvlccore.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00554944 ____C () C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00041920 ____C () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00039872 ____C () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2015-04-13 14:58 - 2015-04-13 14:58 - 00086464 ____C () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll
2015-04-13 14:56 - 2015-04-13 14:56 - 00070675 ____C () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 02158528 ____C () C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00114112 ____C () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00245184 ____C () C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00089536 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libvdr_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00055744 ____C () C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00072128 ____C () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00593344 ____C () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00771520 ____C () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00131520 ____C () C:\Program Files\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00052672 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\librar_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00023488 ____C () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00145856 ____C () C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 01566656 ____C () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00332736 ____C () C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2015-04-13 14:58 - 2015-04-13 14:58 - 01264064 ____C () C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00069568 ____C () C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00048576 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 12001728 ____C () C:\Program Files\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00127936 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libhttp_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00046528 ____C () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
2015-04-13 14:57 - 2015-04-13 14:57 - 00242112 ____C () C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00261056 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00027072 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00304576 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 01291200 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00754624 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00344512 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00028608 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00036800 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00052160 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00456128 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00035776 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 00024512 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00157632 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2015-04-13 15:00 - 2015-04-13 15:00 - 01549248 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00356288 ____C () C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00022464 ____C () C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 00027072 ____C () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2015-04-13 14:59 - 2015-04-13 14:59 - 01504704 ____C () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-854245398-1677128483-842925246-1004\...\100sexlinks.com -> 100sexlinks.com

There are 4787 more sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-854245398-1677128483-842925246-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Dodo\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
DNS Servers: 68.105.28.11 - 68.105.29.11
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

DomainProfile\AuthorizedApplications: [C:\Program Files\Winamp\winamp.exe] => Enabled:Winamp
StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe] => Enabled:WebKit
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\Dodo\Data aplikací\uTorrent\uTorrent.exe] => Enabled:µTorrent
StandardProfile\AuthorizedApplications: [C:\Program Files\Skype\Phone\Skype.exe] => Enabled:Skype
StandardProfile\AuthorizedApplications: [C:\totalcmd\TOTALCMD.EXE] => Enabled:Total Commander 32 bit
StandardProfile\AuthorizedApplications: [C:\Program Files\Winamp\winamp.exe] => Enabled:Winamp

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/13/2015 08:12:25 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Takové síťové připojení neexistuje.

Error: (11/13/2015 08:12:25 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: The server name or address could not be resolved

System errors:
=============
Error: (11/21/2015 10:32:51 AM) (Source: Dhcp) (EventID: 1001) (User: )
Description: Počítači nebyla přiřazena síťová adresa (serverem
DHCP) pro síťovou kartu se síťovou adresou 00265E5B1EA6. Došlo k následující
chybě:
%%121.
Počítač se bude pokoušet získat síťovou adresu samostatně ze serveru
DHCP.

Error: (11/21/2015 10:27:13 AM) (Source: Dhcp) (EventID: 1000) (User: )
Description: Zapůjčení adresy IP počítače 192.168.0.10 pro
síťovou kartu se síťovou adresou 00265E5B1EA6 byla ukončena.

Error: (11/21/2015 03:04:36 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba IPSEC Services byla ukončena s následující chybou:
%%1747

Error: (11/21/2015 03:02:52 AM) (Source: DCOM) (EventID: 10005) (User: GROUP-4B24797DB)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby StiSvc s argumenty
za účelem spuštění serveru:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (11/21/2015 03:02:41 AM) (Source: DCOM) (EventID: 10005) (User: GROUP-4B24797DB)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby StiSvc s argumenty
za účelem spuštění serveru:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (11/21/2015 03:01:32 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
avipbb
avkmgr
Fips
intelppm
ssmdrv

Error: (11/21/2015 03:01:08 AM) (Source: DCOM) (EventID: 10005) (User: GROUP-4B24797DB)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby StiSvc s argumenty
za účelem spuštění serveru:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (11/21/2015 02:27:01 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba IPSEC Services byla ukončena s následující chybou:
%%1747

Error: (11/21/2015 02:21:28 AM) (Source: DCOM) (EventID: 10005) (User: GROUP-4B24797DB)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby StiSvc s argumenty
za účelem spuštění serveru:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (11/21/2015 02:21:20 AM) (Source: DCOM) (EventID: 10005) (User: GROUP-4B24797DB)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby StiSvc s argumenty
za účelem spuštění serveru:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

==================== Memory info ===========================

Processor: Pentium(R) Dual-Core CPU T4200 @ 2.00GHz
Percentage of memory in use: 77%
Total physical RAM: 3000.85 MB
Available physical RAM: 688.26 MB
Total Virtual: 4887.23 MB
Available Virtual: 2334.68 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.65 GB) (Free:18.79 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive e: (WinXPProSP3CZ) (CDROM) (Total:0.68 GB) (Free:0 GB) CDFS
Drive f: (D) (Fixed) (Total:200.43 GB) (Free:9.2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 07960796)
Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200.4 GB) - (Type=OF Extended)

==================== End of Addition.txt ============================

Dominik S · #41 Příspěvek od **Dominik S** » 21 lis 2015 19:08

ups tady je zbytek

#42 Příspěvek od **altrok** » 21 lis 2015 20:26

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
ShellExecuteHooks:  - {AEB6717E-7E19-11d0-97EE-00C04FD91972} -  No File [ ]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-854245398-1677128483-842925246-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
CHR DefaultSearchKeyword: Default -> lp
C:\Documents and Settings\Dodo\Local Settings\temp
2015-11-11 10:00 - 2015-11-11 10:00 - 0015327 _____ () C:\Documents and Settings\Dodo\Local Settings\Data aplikací\LM.bat
End

Dominik S · #43 Příspěvek od **Dominik S** » 21 lis 2015 21:32

Děkuji hotovo

Fix result of Farbar Recovery Scan Tool (x86) Version:20-11-2015
Ran by Dodo (2015-11-21 21:38:09) Run:3
Running from C:\Documents and Settings\Dodo\Plocha
Loaded Profiles: Dodo (Available Profiles: Dodo & Administrator)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-854245398-1677128483-842925246-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
CHR DefaultSearchKeyword: Default -> lp
C:\Documents and Settings\Dodo\Local Settings\temp
2015-11-11 10:00 - 2015-11-11 10:00 - 0015327 _____ () C:\Documents and Settings\Dodo\Local Settings\Data aplikací\LM.bat
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} => value removed successfully.
HKCR\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972} => key not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKU\S-1-5-21-854245398-1677128483-842925246-1004\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
Chrome DefaultSearchKeyword => removed successfully.

"C:\Documents and Settings\Dodo\Local Settings\temp" folder move:

Could not move "C:\Documents and Settings\Dodo\Local Settings\temp" => Scheduled to move on reboot.

C:\Documents and Settings\Dodo\Local Settings\Data aplikací\LM.bat => moved successfully

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-11-21 21:39:42)

C:\Documents and Settings\Dodo\Local Settings\temp => moved successfully

==== End of Fixlog 21:40:34 ====

#44 Příspěvek od **altrok** » 21 lis 2015 22:15

Dalsi malware v logach nevidim, takze navrhuji uklid.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

Dominik S · #45 Příspěvek od **Dominik S** » 22 lis 2015 21:28

hotovo , Děkuji

Pc se jeví v pořádku

VIRY.CZ

Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc

Re: Prosim o pomoc