prosím o kontrolu

[Márty84]

Nalez smazte, MBAM odinstalujte.

Vsechno to vypada v poradku.

Co pc, nejaka zmena?

[casablancass]

Počítač běží po všech radách, a pročištěních tak dobře, jako už dlouhou dobu ne.

Jen Bitdefender mi dneska v 11 hodin přesunul do karantény položku.
C:\WINDOWS\AVJUMJ\aeq.exe Gen:Variant.Adware.Bloh.3 Already in Quarantine

[Márty84]

Jen Bitdefender mi dneska v 11 hodin přesunul do karantény položku.
C:\WINDOWS\AVJUMJ\aeq.exe

Uz zase?


Stahnete SystemLook http://jpshortstuff.247fixes.com/SystemLook.exe , ulozte ho na plochu a spustte.
Do okna zkopirujte tento skript

Kód: Vybrat vše

:filefind
*aeq*

:regfind
aeq

kliknete na Look a chvili pockejte
Mel by na vas vyskocit log s nazvem Systemlook
Ten mi sem zkopirujte

[casablancass]

Bohužel už zase. Byl bych rád, kdyby to byl jen falešný poplach. : )

SystemLook 30.07.11 by jpshortstuff
Log created at 19:03 on 31/10/2014 by zakaznik
Administrator - Elevation successful

========== filefind ==========

Searching for "*aeq*"
C:\WINDOWS\AVJUMJ\aeq.exe.2223.gzquar --a---- 1321984 bytes [10:00 31/10/2014] [10:00 31/10/2014] (Unable to calculate MD5)

========== regfind ==========

Searching for "aeq"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\12.0\Registration\{90120000-0030-0000-0000-0000000FF1CE}]
"Current"="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
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002109030000000000000000F01FEC\Features]
"GrooveFiles"="lqZ]((8i79O8J.B()XVcocJ4y=qSc92if?_@M%Rv}'AH@~XKK91!EgVcdh'.%}sZ@}}Z.=TXh4CBDs37VcPCuPWdQA&mc^)sGI4Q(U~*bl3yX?3`~nnAmrM@7Fb6&M,S_=w&)89(k}8PluJ2p@zPq9foB*]7~L-,n0~fSBe4`AflthK_KOx4YL)mMF9l.?d4qcQ+y[yT6*zu3oc83?,u}r,7{f*ekW.B`7P^,=1.ozy2PK'GXpfJ.F_AJ9cMABZo4h6soiw-*P3Ua9*=i}H{CyWw8GN`$TM09A4)N!K`Dp*%jBJ-.GKPN=3!ezy3?bBT[GdmM.4T99x^G@Pp=c2e?.Dm+BWJ4?Sx9Y4GTg9l45X5E%vNi=,fZh*w&qv@-hmy1Jy&e@MruI*Ih10]j}G$7X(Yr@gRQvpwR3`C8VM6Mn!D}=(%Ea$X(U.`iezSWXM-O=(*zlU$,qI4j4LdsUfi7?-)DVg6'W]a^Q7tu(B9E=Qp0)Sa&5LLbBU[l*+{y97%zZ+0N`S['R[g)nB-7=kWK%X*(4ybWnL,UM^^m?W=y&eiqrk5htL,)O]_R9,2$I7f.3[F7(1G&I.0u@!3pV3TdJ`f5(V.8N~Fo@`+N-pAV4)KIKx_UVAhVAk6EEs!4Vz`eozs-h(}d?!v&-KZ^@~Ziy'}0YYpm@`R_etEpIL.dtO='G[7c=(-!7du`e_t_M*By8.?[?i)jXGn7O3hkZQl'5P(eAfS.J0n{hK2l?caC]63z?VIIj-d0Jw[!{ui0qSp49a`9W*H0M~Z_Hk[[~GNN?WE'[.lEt['_EP{lDyEA9@pw3.5Tz-YybiPHLT1.=i]y.p@pKsoRJ@yoIx)z8?8jUPojalCbs*cCC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\195DD4F700419040000017707DF0D34B\Features]
"CORE"="B+^-x5D,U=[L%4CUHS.(.2@[ErP[!=ku-*Y-nN1{~=s+vnKd)?qxOkqUdZ2v&jYorT(?k@{t{hN.sC7XDPYR,aw43@1VjCAv{`th^RVG1Qeo*9h@KT_g@q5xtuwF,vf2}99U5Iaju]Q%cK1?Q`5M+?M!~_vR[V}nIhOu-L.D+ALm&-GouT{[}DxTN6yGA?Zu48Z3abUukFt{4^%p]9gJJ$EL2]YoFc?XTTgr5?,f1pst^-pAMSa.Lj}Qv8u_JKY`_O(Pb0xMrPuAT?Mb{MWiLZlRK}eyfl1]NAg2~sB&A)*rUGWYiq)9h@)Z9*01).Uq0o^THrzWUAIzzdo~012sSuyT]1(Uc?4fxFonw7tQ!m,g)XE{7@-w{Y9_fE!PpeF(ItX4P9y02HR*-ue4Xz^=a~G+p8qd(fxsWugNIan%&z{fG=jZZsMb`us11W5dgG1_.=,%!]v'h8kz3P5l(jsfT9&AL=%5G=ZdQksxt8}a&9IeL3HVQ3]EG&iw=CiU5@4?9BkEw*L80wr%C&JqR=PmiQ7zTQkN1Bc1'b'Kd8V9U_-Xg{(gk_@A_d*-k9kpgD9eGB%MiR=F3w.ms=yMvuB-R1tuh2q!g~%w}@-WrjzlX?=Lqr~)%yyDF9{Hy7Sseo[0wcCDmfER[A`R8^oBCwhm,eE'%&(I*=K}KFI_W,,zoTZZYW%0b=ZkR8coyp^+f){0sW12n@&To_Yc5hyLTffVv45BO@J3xgB6{c?oid}^mwt%t9t5)u6Z_@BL!6zXc!ES6?%fCzI@d9Vcr?`itAtj0A&Hz6FV[Xj?R2mSBcs!B9i}8&RSHyVOf33(pqQG0=~tCJDu&Y8HFllS?~5)N?Dv=Prf3O@1Jgk5wm7aF9AzL
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\77D66FB14066f3f43BEA6D04FA5BA888\Features]
"SAMPLES"="zB&,FvJcc916v~5^'Fd^j,2L`O-Jf?}s?rcd7euN-qcz$`mGd=NCu1u$ciaQ8^VMh%Yg*@Ug*1%vp=cN5}CxtCb$]8Lez35nkKj6cT3Fg0g'N9Y+i`WnVc?39X=JY~J'I?f%,S`PvfIw{04s^,cpA@5wPsi*H$`s9HfuZvl&r?NjGLM_`U,h`38yt7r?!@Fery[0aC%Q$$O$XBQ*X?RHsE@9DG-f*4{@%NNC~=7ITH[0yt2BWJB%OM$ZI@}+r$QTVv@.7^{Ashc7z=)Cz9[G3=.k[9Z2=Bb+}@F.u5&K)J-k`]'KLXE,%=&^T6PmZl%F8V?U)G%nl?N`M7AZ-o?MM{=%njcEm?Ih4_]M5gVCk$c@GpLbL?rfmHDge[@vkaAF.kHyY?ld!!{lJ1waBqv[JB44k9gh*t@)'3R(3`5)+rI+!?,eRCTM4`s'n~gNIxO(0A(m[L%lRu@V'U_[tOUpb?O,,`xFw0s`?NqeEX0bl8yeEX+3kDlPks]&_3Z-'=RSl}G}f^gF^}%LsfUM8AdmEa.!4rdqmu2ei75T9?-3~!O$h5Lavag?kh]n}@6pX@Rac,=Ate]$.MX!f@Z1,A-R!w&9OthxOnVlh9s(aaA~KTZ6tETB_&'}L9,-bP9V{6zJOy%uH$@O=@N}Xxce3SrWVqGx6%aa{9XI)sneXEJ+TEk.Usfi(=M2u1O19%Kvd`W10lyaA?OI5CSzJPxH^^sAtXTCn=8yf1l(p)6,IOQ^RKk8P=+P0}tK.WNoiNG~tjqV7=`xsk2M=dO!{t{ffyc~%=DdObrGtB2m^EC4,17bk9_Z]~(~8hTJ+pLJTrUKm9gE0-'bV''rltaFx.VP=9.^bUFxhuNDPK(+!dK`W9
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7D2F387550085040002000060BECB6AB\Features]
"TemplateFiles"="dmyjW&~&)?o+1l5O$sF@~COG_vv%%?u-KGZKh-=kJ(@7cB7ft8+^io1Dvf!1.LA95Sw*5AAEVH4Dq09u-NFGX@{]5?orNBJNwpoWfOHXD[(s_@o0J{Ybc3pGyb6AoQ%sN?,wCDFhG={J*&),`gRc1?x3UYm.X5LZE*HYwJ^ie8,-'4JfWRwVyBf+&jSpp@Ut4_BZ_aoPbNq%2zv0^=$6Bka8%]*5R?A]Z='WZ?+{(h!^m]4`DSM]Z+(=x9g^jMsHgQf=.F~p$N,nc?(-v!=Z~(i)BW&N7JgiOAl]mYx=BfuGVM6.sMq][9a`Mp&(qOMz'$z`A4J@g(%R4Xa2l'!x)$z`A4J@g(%R4Xa2l'!x+$z`A4J@g(%R4Xa2l'!x-$z`A4J@g(%R4Xa2l'!x0$z`A4J@g(%R4Xa2l'!x2$z`A4J@g(%R4Xa2l'!x4$z`A4J@g(%R4Xa2l'!xL$z`A4J@g(%R4Xa2l'!xWeXDqp1Rw@gj@=`qP35AFo%(b^j='=D.iOTI}PNkfab~gI?I=@7^Y,SFGDq4R,p%*9o}z=ReslcU@V?loSbSe!hlm@6%'Xh'*Y4c!L-2ev2k9=kB(Gw6I6%OT{`S_)}aM@qvp7b$UUwFB@n!2{$zk?v27lruRC!13zV'K4,T{@w,?j)Z8]bMwa]UtKwHG?q1od*'BO8jaJ}YO2fLSA9n_`.LSs8)j-ww$M=?[@PftbaBJB^.S&T&OT[f]?xxlkBU5vna-i^4o)R~b@0TtpeB.-gyw!$_kynBo82jkQy[UN(x0d6bNlteaAA1~3C?wGFmI.}%saEq_AMT'[S)FFglCF[d!s@]-=W$R7=yQpZW_t9X8MZN`?0p98Y{R}V4)tN=
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7D2F387550085040002000060BECB6AB\Features]
"P"="fT,91v3aX?Q,chDtxxOQ$NY%*?t1i8lG5HP'X5+BCDGYQslPz=+'+(jkiz0OY{tx4l8]}?fS`~Hz80fn*Umc*)?9Pyg!1Q4i!@IVFy!yO73C==CSk-%'Rb`!^b,pYgLjb@DWbbDF6&dEEhZ^6VBMw@z^$NQa?P~OUjs,1CFC}8hAY$fgY$]sdp5sMbsN2?^j@8-=bSvITb.*5zN,p?au-Zk2)5cNC2$x.L@r{=YnDVFlIGu15V(S$,y9[AddSliBn_tl~Y?0%Wk]X?mAG[Lx4]R]6Z_kE1m[z@rW0]LdMF]VG}{IggQgz85A3.VDVZZ$o)&dILiX*=`tjo[R.IiPQP7jJ%nQ{?+GNpcHL__=aqF&]2=-L=`&.3!.^Xc^kYlwa~uc,@v5=^xOy_qO*ITb&w&TIAU)x-ue3Mzp?_6@Mc14&=@36JExpR$7mwe[JC{aD9m0[.V]1lk0ovuY']Tze?W~O0^p3{nDgknqK]z22A]O!9!=J,1f9rO@F=DqD@jDZnB-(7V=]M90QT8+t?G0CBeZLSGaf!Rr.*v@!AWHjb9[M1EVB~4Pb6^93@^F+!qmGF@P`u2yaFnO9@a(6{YUMblXNO}6S(=`+@FB}Zf-1EM+vJcpO{iA}=Z[%8rL)Xi&Y~b`@iXO{@QMCpyhz9)71[PX74gJt90Qhi^EOT!3nISR=((6?f*5~KUS7h}R!=pyH,y}fE4Rdw3ej-_BI9OU{3_&^Ut-o5F7_Op9Q@4*u0A!zaax$ypoa8dXX='b53zFQCu)=0~)`T^$v@%~4n3rI&j?7$&xrAlZi9!D%Xh)mI8V9Xd')M^?E?q}N{JI1j=Pt3CE+~Zd.9b7D}`(a4Sd2$Zg$MZ--?zNxGDJ
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7D2F387550085040002000060BECB6AB\Features]
"ACMGEFGDB"="rVIRS.QYh)E*bm_=?*mQ1-7(eN[li.eQ+wK_s3QjftRu)0FT@CYEIFQ-n-GwGf~RB+[_J$rbN[oF-~mx7lXCA*t@Vre3`Z-l-?7P3EJas_[qy=vo[U!mxzExe$RNpA1gC9]g6bfHhv+$)SE7BCFN,?-6Bcp~hPdY52DmWl{Gc@hLOAh%gK)a]kpzXvRM%=F?92KzWpKv[n5R?4nNRA8)t'ELZhQ%4Q72luk7-?2Cm@X]pX+-yLT.)OU,!As?$m+{7fitJD-9VSNIc9i'vT&ttJSGm+1K0m4+?@=PI~=K'pF1[7P$so9?MA4LGKobdT6mS$y49'a.'A[jbG_~HS=pFv}]sE{8x4F0xOf.mNBd(wG}(.TTAMo[AM7`&B@e_0wHe*3G^.}'(V4dql1?1a%BEx-XEMd-eACk@R.m*@@p43n}'CW@!gC~6EEvtlve?_Q&!hpj7z`JtRB[4IAD81{$Vw2&W]!Zeqb$0B'nXI6s+=8s+78,,H9Es6x1t&AyS)]lt0@!c)cCxlwF.9xvfRt(3RVJaVcv`U*PEWzQI$Mq}_lXdz+lUG8Be~SyNw,TDDg@T1N2B+5]?N8=DM1rWVmb{gRt,Pj*OCw,r9uMnYszSXOG0a-^5sE`&CXu33(8!F@CMP'mvlz5r?R{659W2Cf8K0^jLarFGAX~Lwvx6PGx)XuK$7[pf9~h3TNx?oZuxVk,S%a-B?p%yQd0'(~A]jOQUpne196*xP2@zn[-fw_,1v-[!@j769$'FRsg_j1-fz@Xu=,rl2b%Sd45MFIznFQ`u=G-~tEQLV%@=~?zJ{wQs4eiEIevC)R,gBSMHKi=.hq{X?eV=$!k+v1c&(zQz]FzY1'^8wGwuVzeQ]o!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7D2F387550085040002000060BECB6AB\Features]
"STD_KS"="mVp^K,=6r?7[%ZjA5_J6X!EFJ'_+e9D7c(xl{Zi.Y)Ajk]BX]Ag!(zsV(Aw!KU{?XOWh_=%06i(dpJdUoI)Uv'[bM=BVJxPp_TbVYKScwUzA&A[RnbAHX%ag++J?jmvS1@Lt48.d~DY!Tq$1ZBU=P=8~]Jh`F2VceFkM9C*S[?Z)=bS.,*ig*Bh(VZWU9AGS9&P2t%7Tg5FUR?s{R@!^c)@vrN~.*S9cWlohU?Z'znsEB[qu4-@zmHuWRAQ,NgZf2(.IhAZ&xLcSS9.vD9bh^+m?*7k~Jovvn9CV,F+P%09fIA@MVKqO5=&$sAa$WZA3L$R3TNtFg=!g3mIZ'P@d1LjT&s_Hi=}b@n[ulOzA_VeARr@IQA%{C3oqTs_AXd2V$(AC'9UZmK[yrWyA[r*XMi-&W?Bo]`2&22uY)9u&F=V{SAuHr]TFH`AX}PFIhIt,W=T'MaR1vc&UNy!ZIr2@ZAEFA6N*We{$*e!QMMM!TAT~EM'Tx`f9wvDk-QuG&A}+&1]SA-?+RTCl._a%eAEa]i=0Uyk[~,WD_aFF{?a=^p.fUqn+c!y*mb-=K91vHvZu0!`7}LbPdHiqI?F1Wi6y^X.p1J_ya,-qB9_W1yd-zg-ZJ%jLSTy)X9-'5'$(p^H1qrLFUr~6X?ib06p~nUxcT9Ew`kz[)=9F3%r28sn3oUryPFC?_AAk?Wz*-m1o^eAEfBFC!AKuN$gIuEcqhC$FgZOOXA_GPV.{Su3ND{Q.Z)l3d?Vm19(ZrfQ4.Q5P+}4SE@NEo-16[K`WetUj4D32=AtAa6tC,wXbX?^_V4e7'@.{J4p]!EK5G^=`OYn`f8SgXVC*YTmLmF$+D[7da8)vMb?boy@luV^O1`yD9A?
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EFB749F7FD2C97749990B5EE47B60D4C\Features]
"URTM_RED_CSY_X86_IXP"="5YS[ZeblX8E(%smU79.yJF(S3Oy0u9Z1.SBy9?I]axJF%M[9*@fiGM?_IC!I?qrCnsr,=9{XiBpCb45KgbJMB2Hta=xutz6i4EwFPY=dTyj&`8IaaC_iwgy8&B7n+%S.n?5zD9`VT7}8a%X-TJ9Io8$j!H+-dHzIG}n$Fpxp59K}OE%'T@mPPb^^T{eN2@NtW$iE@w5{gu(mI+yLQ@N84~ojpfj5,`e+Q{t{~?hda[=zsKhvzWJUh8'R3=iF!4Wj=+HJJ!la=uYfu8jYJ&n_K~-t!%,zlA-1SAcR4tbUr%7+WVQ3n}.bz@3LM)82&Z3S?vP@'rM~-@DX5iW${ESmbZq**c?r5=Rrk=48`}1pq!i1Ic@TMAmGQL$,k!$!v]fLP`(@k9xXOC$RFQVlHlLyV.FS)=eIQh]m``C*Vo7szWw$c9J_l+Dz8thsy(&Lj7X0x9~Qs~Q@s4Lx&+eUoDZmZ@Z9k),GOBfB]{5F2u}CK@]$wb1IA!,8LcS?{s~CA=?dA~$`oK$SIhEBoQxkdAAOiug3N{XdYb+XRhg7M@sRHI5E_WM'NYCB)avzy=yZuzI8pltpd^7NQxti=9Np$Oecc&uBdN.C,JD]~@U4'}y-dF3el12E[a*{4@m3OBn5,?P7J}P)cyC4EAy!!vcGZB25N']cww-C7?ckU.D.=2[pRtQSCvg=[@IQqMnjA6kTH$eDcky,E=7JXu)FVzl=qTlKw3T*b9p)+06NI0WRqmFo%FmaW@M&sbD`~S2ZXc%Yod@6-@2?&t*?n!Z(%CEN-YF`f?_hWgCzSM_@$aEQ3{Oh9Ati6$ff$xCq.LMm?_472@-F+5Xo^D0?*mM@@-Yf9?vC(`o3o

-= EOF =-

[Márty84]

Pouzijte znovu systemlook podle stejneho navodu, ale s timto skriptem

Kód: Vybrat vše

:dir
C:\WINDOWS\AVJUMJ /s

[casablancass]

SystemLook 30.07.11 by jpshortstuff
Log created at 19:27 on 31/10/2014 by zakaznik
Administrator - Elevation successful

========== dir ==========

C:\WINDOWS\AVJUMJ - Parameters: "/s"

---Files---
aeq.exe.2805.gzquar --a---- 1321984 bytes [18:11 31/10/2014] [18:11 31/10/2014]

No folders found.

-= EOF =-

[Márty84]

Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe , ulozte nejlepe na plochu a spustte.
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[ClearAllRestorePoints]

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\AVJUMJ

Kliknete na MoveIt a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)

[casablancass]

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 51373682 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: zakaznik
->Temp folder emptied: 2235243 bytes
->Temporary Internet Files folder emptied: 140969 bytes
->FireFox cache emptied: 387146245 bytes
->Opera cache emptied: 51746949 bytes
->Flash cache emptied: 2739 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6972 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 165888 bytes

Total Files Cleaned = 470,00 mb


Restore point Set: OTM Restore Point
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\AVJUMJ folder moved successfully.

OTM by OldTimer - Version 3.1.21.0 log created on 11012014_002924

Files moved on Reboot...
File move failed. C:\Documents and Settings\zakaznik\Local Settings\Temp\gziface1.log scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[Márty84]

Znovu spustte OTM a kliknete na CleanUp!

Podivejte se, jestli tam ta slozka C:\WINDOWS\AVJUMJ po restartu pc opet je.

[casablancass]

Není tam. : )

[Márty84]

Ten agent vam tam porad vyskakujte? Muze to byt i antivir, tezko rict, chtelo by to zjistit presny nazev procesu, jinak to asi neuhadnu.

[casablancass]

Zatím pořád. Zkusím vypnout antivir a firewall až budu vypínat pc. Jinak sám pořádně nevim, jak na název procesu přijít.

[Márty84]

I kdyz antivir vypnete, obvykle jeho procesy i tak bezi, neni to tak jednoduche ho vypnout uplne, jinak by to dokazala i kdejaka havet. Muzete tu hlasku o Agentovi vyfotit?

[casablancass]

Tak tady to je:

[JaRon]

zaskocim
tuto hlasku ma Bitdefender - ak to nie je casto, tak to ignoruj
ak je to casto - odinstaluj BD, vycsti registre CCleanerom a nainstaluj BD