Skocz do zawartości


Zdjęcie

Wirus Brontok


  • Zaloguj się, aby dodać odpowiedź
1 odpowiedź w tym temacie

#1 Rafal96

Rafal96

    Nowy

  • 1 postów

Napisano 14 10 2015 - 17:44

Witam



Mam problem z komputerem obojetnie jaki dysk podlacze a mam w srodku 3 jeden xp drugi win 7 trzeci vista, to przy probie instalacji jakiegos programu komputer restartuje sie dodaje ze zawsze mam podlaczony tylko jeden dysk i czasami sobie zmieniam dyski bo tu trzymam troche plikow i tam troche. Probowalem ściągnać Malwarebytes ale nie moge restartuje sie w tryb awaryjny obojetnie jaki wejść nie moge laduje i włącza kompa od nowa. Udalo mi sie ściągnąc tylko OTL i widze ze jest tam Wirus prosze o pomoc

DODAJE Z OTL <POZYCJA 031 WIDAC WIRUSA>

OTL logfile created on: 2015-10-12 03:13:47 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\artur\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,50 Gb Total Physical Memory | 2,04 Gb Available Physical Memory | 81,42% Memory free
3,38 Gb Paging File | 3,04 Gb Available in Paging File | 89,94% Paging File free
Paging file location(s): C:\pagefile.sys 1056 2112 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 28,71 Gb Free Space | 38,53% Space Free | Partition Type: NTFS
Drive H: | 2,11 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: DOM-FC3FDD8996E | User Name: artur | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2015-10-12 03:00:12 | 000,663,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\artur\Pulpit\download.exe
PRC - [2015-10-08 09:59:44 | 000,442,504 | ---- | M] (DTools LIMITED) -- C:\Documents and Settings\All Users\Dane aplikacji\rWdsManPror\WdsManPro.exe
PRC - [2015-09-02 22:12:34 | 000,301,656 | ---- | M] (TermCoach) -- C:\Program Files\TermCoach_1.10.0.24\Service\tcsvc.exe
PRC - [2014-03-27 07:08:44 | 000,798,720 | ---- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\system32\sistray.exe
PRC - [2013-12-15 16:46:42 | 000,045,417 | ---- | M] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\winlogon.exe
PRC - [2013-12-15 16:46:42 | 000,045,417 | ---- | M] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\services.exe
PRC - [2013-12-15 16:46:42 | 000,045,417 | ---- | M] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\lsass.exe
PRC - [2013-11-09 02:08:08 | 000,544,312 | ---- | M] () -- C:\Program Files\mutualpublic\monitor.exe
PRC - [2013-02-06 17:09:47 | 001,010,528 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2012-06-26 14:10:30 | 001,639,512 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
PRC - [2012-06-11 12:33:26 | 000,724,376 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2012-06-11 12:33:14 | 000,174,488 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2012-06-11 12:33:06 | 000,126,872 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2011-01-24 18:26:10 | 000,114,688 | RHS- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\EXPLORER.EXE
PRC - [2009-09-17 13:55:06 | 000,724,992 | ---- | M] (Nokia) -- C:\Program Files\Nokia\PC Internet Access\NPCIA.exe
PRC - [2009-04-30 12:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2009-03-10 23:18:20 | 000,970,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe
PRC - [2008-04-14 18:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2001-11-15 13:08:40 | 001,277,952 | ---- | M] (C-Media Electronic Inc. (www.cmedia.com.tw)) -- C:\WINDOWS\mixer.exe


========== Modules (No Company Name) ==========

MOD - [2013-12-15 16:46:42 | 000,045,417 | ---- | M] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\winlogon.exe
MOD - [2013-12-15 16:46:42 | 000,045,417 | ---- | M] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\services.exe
MOD - [2013-12-15 16:46:42 | 000,045,417 | ---- | M] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\lsass.exe
MOD - [2013-11-09 02:08:08 | 000,544,312 | ---- | M] () -- C:\Program Files\mutualpublic\monitor.exe
MOD - [2013-11-05 23:57:21 | 016,233,864 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll
MOD - [2012-06-26 14:11:10 | 000,345,688 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtXml4.dll
MOD - [2012-06-26 14:11:08 | 000,282,200 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtSvg4.dll
MOD - [2012-06-26 14:11:02 | 008,197,208 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtGUI4.dll
MOD - [2012-06-26 14:11:00 | 002,302,040 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtCore4.dll
MOD - [2012-06-26 14:10:58 | 000,202,328 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qjpeg4.dll
MOD - [2012-06-26 14:10:58 | 000,027,736 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qsvg4.dll
MOD - [2009-04-30 12:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
MOD - [2009-04-16 17:31:14 | 004,210,688 | ---- | M] () -- C:\Program Files\Nokia\PC Internet Access\GraphicsResources.ngr
MOD - [2008-11-12 11:17:40 | 000,012,288 | ---- | M] () -- C:\Program Files\Nokia\PC Internet Access\TextResources_pol.nlr
MOD - [2008-04-14 18:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Przyspiesz Komputer\PCSUService.exe -- (PCSUService)
SRV - [2015-10-08 09:59:44 | 000,442,504 | ---- | M] (DTools LIMITED) [Auto | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\rWdsManPror\WdsManPro.exe -- (WdsManPro)
SRV - [2015-09-02 22:12:34 | 000,301,656 | ---- | M] (TermCoach) [Auto | Running] -- C:\Program Files\TermCoach_1.10.0.24\Service\tcsvc.exe -- (tcsvc_1.10.0.24)
SRV - [2014-02-22 22:57:49 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-11-09 02:08:08 | 000,544,312 | ---- | M] () [Auto | Running] -- C:\Program Files\mutualpublic\Monitor.exe -- (Mutual Monitor)
SRV - [2012-06-11 12:33:26 | 000,724,376 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009-04-30 12:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\cmudax3.sys -- (cmuda3)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\eppjfn.sys -- (aic32p)
DRV - [2015-09-02 22:12:32 | 000,056,448 | ---- | M] (TermCoach) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcfd_vt_1_10_0_24.sys -- (tcfd_vt_1_10_0_24)
DRV - [2014-02-03 20:22:10 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012-12-29 22:59:38 | 000,024,184 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2012-06-11 12:33:46 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012-03-02 17:03:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2012-01-09 18:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012-01-09 18:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012-01-09 18:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012-01-09 18:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009-07-13 17:51:12 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2008-05-16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic)
DRV - [2008-05-16 12:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016nd5.sys -- (s0016nd5)
DRV - [2008-05-16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008-05-16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008-05-16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt)
DRV - [2008-05-16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008-05-16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus)
DRV - [2008-04-14 01:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008-04-13 23:05:40 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)
DRV - [2003-08-22 19:14:04 | 000,422,784 | R--- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2003-08-18 16:12:04 | 000,011,264 | R--- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp)
DRV - [2003-08-18 10:51:10 | 000,028,416 | ---- | M] () [Kernel | System | Stopped] -- C:\WINDOWS\system32\sisesc.sys -- (SiSEsc)
DRV - [2001-12-10 18:25:22 | 000,357,070 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci)
DRV - [2001-08-17 20:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://start.qone8.c...q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.interia.p...taller_instalki
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...Box&Form=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://mixidj.claro-...000000b689628b0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)


[2004-11-08 01:05:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\artur\Dane aplikacji\Mozilla\Extensions
[2004-11-08 01:16:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

O1 HOSTS File: ([2001-10-26 13:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Loader Class) - {F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD} - C:\WINDOWS\BricoPacks\LeopardXP\FindeXer.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [Bron-Spizaetus] C:\WINDOWS\ShellNew\RakyatKelaparan.exe ()
O4 - HKLM..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [C-Media Mixer] C:\WINDOWS\mixer.exe (C-Media Electronic Inc. (www.cmedia.com.tw))
O4 - HKLM..\Run: [Denzi] C:\Program Files\Denzi\Denzi.exe File not found
O4 - HKLM..\Run: [SiS Tray] C:\WINDOWS\system32\sistray.exe (Silicon Integrated Systems Corporation)
O4 - HKLM..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\Keyhook.exe (Silicon Integrated Systems Corporation)
O4 - HKLM..\Run: [tuto4pc_pl_8] File not found
O4 - HKCU..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [EXPLORER.EXE] C:\WINDOWS\System32\EXPLORER.EXE (Microsoft Corporation)
O4 - HKCU..\Run: [NokiaPCInternetAccess] C:\Program Files\Nokia\PC Internet Access\NPCIA.exe (Nokia)
O4 - HKCU..\Run: [Odkurzacz-SCD] C:\Program Files\Odkurzacz\odk_scd.exe File not found
O4 - HKCU..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKCU..\Run: [Tok-Cirrhatus] File not found
O4 - HKCU..\Run: [Tok-Cirrhatus-1959] C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\br4941on.exe ()
O4 - HKCU..\Run: [wsctf.exe] wsctf.exe File not found
O4 - Startup: C:\Documents and Settings\artur\Menu Start\Programy\Autostart\Empty.pif ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html File not found
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab(WindowsGenuine Advantage Validation Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C1C2FC74-8C8E-4628-A668-9E4019A5D10D}: DhcpNameServer = 62.179.1.63 62.179.1.62
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\System32\EXPLORER.EXE (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - ("C:\WINDOWS\KesenjanganSosial.exe") - C:\WINDOWS\KesenjanganSosial.exe ()
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (EXPLORER.EXE) - C:\WINDOWS\System32\EXPLORER.EXE (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O31 - SafeBoot: AlternateShell - cmd-Brontok.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015-10-12 03:11:41 | 000,000,007 | -HS- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007-11-22 00:18:17 | 000,000,000 | R--D | M] - H:\AutoRun -- [ CDFS ]
O32 - AutoRun File - [2006-05-14 20:20:12 | 000,729,088 | R--- | M] (Electronic Arts Inc.) - H:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2006-05-14 20:20:13 | 000,000,160 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2006-05-14 20:20:12 | 000,765,952 | R--- | M] (Electronic Arts Inc.) - H:\AutoRunGUI.dll -- [ CDFS ]
O33 - MountPoints2\{13001784-3122-11d9-8fcd-000b689628b0}\Shell\AutoRun\command - "" = E:\w9.exe
O33 - MountPoints2\{13001784-3122-11d9-8fcd-000b689628b0}\Shell\open\Command - "" = E:\w9.exe
O33 - MountPoints2\{1cf7179e-8d00-11e3-bbe3-001b10002aec}\Shell - "" = AutoRun
O33 - MountPoints2\{1cf7179e-8d00-11e3-bbe3-001b10002aec}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2006-05-14 20:20:12 | 000,729,088 | R--- | M] (Electronic Arts Inc.)
O33 - MountPoints2\{2c829aa9-b708-11e3-bc1d-000b6a8a0087}\Shell - "" = AutoRun
O33 - MountPoints2\{2c829aa9-b708-11e3-bc1d-000b6a8a0087}\Shell\AutoRun\command - "" = D:\NokiaPCIA_Autorun.exe
O33 - MountPoints2\{a7d5dc00-0d22-11d9-bbdd-000b6a8a0087}\Shell\AutoRun\command - "" = F:\w9.exe
O33 - MountPoints2\{a7d5dc00-0d22-11d9-bbdd-000b6a8a0087}\Shell\open\Command - "" = F:\w9.exe
O33 - MountPoints2\{a7d5dc01-0d22-11d9-bbdd-000b6a8a0087}\Shell\AutoRun\command - "" = G:\w9.exe
O33 - MountPoints2\{a7d5dc01-0d22-11d9-bbdd-000b6a8a0087}\Shell\open\Command - "" = G:\w9.exe
O33 - MountPoints2\{ab198740-8fe5-11d9-90a2-000b689628b0}\Shell - "" = AutoRun
O33 - MountPoints2\{ab198740-8fe5-11d9-90a2-000b689628b0}\Shell\AutoRun\command - "" = E:\KODAK_Camera_Setup_App.exe
O33 - MountPoints2\{bb5168a6-5847-11e3-90e4-000b689628b0}\Shell\AutoRun\command - "" = F:\EXPLORER.EXE
O33 - MountPoints2\{bb5168a6-5847-11e3-90e4-000b689628b0}\Shell\explore\Command - "" = F:\EXPLORER.EXE
O33 - MountPoints2\{bb5168a6-5847-11e3-90e4-000b689628b0}\Shell\open\Command - "" = F:\EXPLORER.EXE
O33 - MountPoints2\{e8789199-3110-11d9-8ff2-000b689628b0}\Shell\AutoRun\command - "" = E:\w9.exe
O33 - MountPoints2\{e8789199-3110-11d9-8ff2-000b689628b0}\Shell\open\Command - "" = E:\w9.exe
O33 - MountPoints2\{ea464f06-0d69-11d9-bbd3-000b6a8a0087}\Shell\AutoRun\command - "" = F:\w9.exe
O33 - MountPoints2\{ea464f06-0d69-11d9-bbd3-000b6a8a0087}\Shell\open\Command - "" = F:\w9.exe
O33 - MountPoints2\{f18c928d-8ced-11e3-bbe2-001b10002aec}\Shell\AutoRun\command - "" = F:\w9.exe
O33 - MountPoints2\{f18c928d-8ced-11e3-bbe2-001b10002aec}\Shell\open\Command - "" = F:\w9.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2015-10-12 03:04:07 | 005,099,358 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\artur\Pulpit\avg_free_stb_all_2015_ltst_639_6140.exe
[2015-10-12 03:00:12 | 000,663,552 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\artur\Pulpit\download.exe
[2015-10-12 01:37:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\Bron.tok-17-12
[2015-10-11 21:57:35 | 000,947,272 | ---- | C] (Web ) -- C:\Documents and Settings\artur\Pulpit\pobierz_Utorrent_32-64-bit_wersja_stabilna_V3.exe
[2015-10-11 20:19:21 | 000,929,240 | ---- | C] (Installer ) -- C:\Documents and Settings\artur\Pulpit\Eraser-12852-dp.exe
[2015-10-11 20:14:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\Bron.tok-17-11
[2015-10-08 10:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\artur\Menu Start\Programy\SpeedFan
[2015-10-08 10:01:40 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2015-10-08 09:59:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\rWdsManPror
[2015-10-08 09:59:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\artur\Dane aplikacji\istartsurf
[2015-10-08 09:59:27 | 000,000,000 | ---D | C] -- C:\Program Files\TermCoach_1.10.0.24
[2015-10-08 09:49:22 | 000,000,000 | ---D | C] -- C:\Program Files\Avanquest update
[2015-10-08 09:49:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Avanquest
[2015-10-08 09:48:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\Bron.tok-17-8
[2013-11-12 15:58:18 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\Documents and Settings\All Users\Dane aplikacji\hpe210.dll
[2013-11-05 17:43:43 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\Documents and Settings\All Users\Dane aplikacji\hpe1FD.dll
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2015-10-12 03:19:54 | 000,001,337 | ---- | M] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\JunkAtx.bin
[2015-10-12 03:19:37 | 000,030,925 | ---- | M] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\Bron.tok.A17.em.bin
[2015-10-12 03:11:41 | 000,000,007 | -HS- | M] () -- C:\AUTOEXEC.BAT
[2015-10-12 03:10:59 | 000,000,274 | ---- | M] () -- C:\WINDOWS\tasks\JetBoost_AutoUpdate.job
[2015-10-12 03:10:56 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2015-10-12 03:10:38 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2015-10-12 03:10:37 | 2683,883,520 | -HS- | M] () -- C:\hiberfil.sys
[2015-10-12 03:04:27 | 005,099,358 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\artur\Pulpit\avg_free_stb_all_2015_ltst_639_6140.exe
[2015-10-12 03:00:12 | 000,663,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\artur\Pulpit\download.exe
[2015-10-12 02:57:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2015-10-11 22:39:50 | 000,000,645 | ---- | M] () -- C:\Documents and Settings\artur\Pulpit\Kontynuuj instalację uTorrent 3264-bit wersja stabilna.lnk
[2015-10-11 21:57:35 | 000,947,272 | ---- | M] (Web ) -- C:\Documents and Settings\artur\Pulpit\pobierz_Utorrent_32-64-bit_wersja_stabilna_V3.exe
[2015-10-11 20:19:21 | 000,929,240 | ---- | M] (Installer ) -- C:\Documents and Settings\artur\Pulpit\Eraser-12852-dp.exe
[2015-10-08 20:12:33 | 000,019,982 | ---- | M] () -- C:\Documents and Settings\artur\Pulpit\[torrenty.pl] Ted 2 _2015_ [720p] [WEB-DL] [XviD] [AC3-B89] [Napisy PL] [AgusiQ].torrent
[2015-10-08 20:07:35 | 000,121,567 | ---- | M] () -- C:\Documents and Settings\artur\Pulpit\The Dark World _2013_ [CAM READNFO XviD v3-L25] [LEKTOR PL IVO].torrent
[2015-10-08 10:53:10 | 000,203,024 | ---- | M] () -- C:\Documents and Settings\artur\Pulpit\-85121103407-2159ee5166c74fb7a87c5dc91 eba9f423fefa85c1444218373.pdf
[2015-10-08 10:01:41 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\artur\Pulpit\SpeedFan.lnk
[2015-10-08 10:01:40 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo
[2015-10-08 09:59:44 | 000,000,174 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
[2015-10-08 09:59:32 | 000,001,776 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk
[2015-10-08 09:56:23 | 000,490,712 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2015-10-08 09:56:23 | 000,432,784 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2015-10-08 09:56:23 | 000,084,088 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2015-10-08 09:56:23 | 000,067,740 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

File not found -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\JunkAtx.bin
[2015-10-12 03:19:37 | 000,030,925 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\Bron.tok.A17.em.bin
[2015-10-12 03:12:10 | 000,030,925 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\Update.17.Bron.Tok.bin
[2015-10-11 21:57:48 | 000,000,645 | ---- | C] () -- C:\Documents and Settings\artur\Pulpit\Kontynuuj instalację uTorrent 3264-bit wersja stabilna.lnk
[2015-10-08 20:12:33 | 000,019,982 | ---- | C] () -- C:\Documents and Settings\artur\Pulpit\[torrenty.pl] Ted 2 _2015_ [720p] [WEB-DL] [XviD] [AC3-B89] [Napisy PL] [AgusiQ].torrent
[2015-10-08 20:07:35 | 000,121,567 | ---- | C] () -- C:\Documents and Settings\artur\Pulpit\The Dark World _2013_ [CAM READNFO XviD v3-L25] [LEKTOR PL IVO].torrent
[2015-10-08 10:53:10 | 000,203,024 | ---- | C] () -- C:\Documents and Settings\artur\Pulpit\-85121103407-2159ee5166c74fb7a87c5dc91 eba9f423fefa85c1444218373.pdf
[2015-10-08 10:01:41 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\artur\Pulpit\SpeedFan.lnk
[2015-10-08 09:59:44 | 000,000,174 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
[2014-02-23 13:34:03 | 000,000,031 | ---- | C] () -- C:\Documents and Settings\artur\Dane aplikacji\WB.CFG
[2014-02-23 13:23:03 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2014-02-03 17:22:51 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2013-11-19 20:07:21 | 000,053,152 | ---- | C] () -- C:\WINDOWS\System32\USBCoInstaller.dll
[2013-11-08 16:34:04 | 000,000,108 | ---- | C] () -- C:\Documents and Settings\NetworkService\Dane aplikacji\WB.CFG
[2013-11-08 16:34:04 | 000,000,006 | ---- | C] () -- C:\Documents and Settings\NetworkService\Dane aplikacji\WBPU-TTL.DAT
[2013-11-07 18:41:05 | 000,002,180 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2013-11-07 16:49:38 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\artur\TempWmicBatchFile.bat
[2012-01-18 14:56:51 | 000,045,417 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\winlogon.exe
[2012-01-18 14:56:51 | 000,045,417 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\svchost.exe
[2012-01-18 14:56:51 | 000,045,417 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\smss.exe
[2012-01-18 14:56:51 | 000,045,417 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\services.exe
[2012-01-18 14:56:51 | 000,045,417 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\lsass.exe
[2012-01-18 14:56:51 | 000,045,417 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\inetinfo.exe
[2012-01-18 14:56:51 | 000,045,417 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\csrss.exe
[2012-01-18 14:56:51 | 000,045,417 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\br4941on.exe
[2004-11-07 23:07:40 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\artur\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004-09-23 10:30:44 | 000,000,363 | ---- | C] () -- C:\Documents and Settings\artur\Dane aplikacji\burnaware.ini

========== ZeroAccess Check ==========

[2014-02-23 16:32:49 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 18:50:48 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 18:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2015-10-08 09:49:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Avanquest
[2004-11-08 01:16:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2014-03-29 09:05:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BlueSprig
[2013-11-07 16:35:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BonanzaDealsLive
[2013-11-05 17:44:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BVRP Software
[2004-09-23 04:51:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2014-02-03 20:23:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2014-02-22 22:47:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\eSafe
[2004-11-08 01:24:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2004-11-08 01:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GG
[2004-11-08 01:24:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IBUpdaterService
[2014-03-29 08:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2004-09-23 05:10:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Logs
[2004-09-23 05:32:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NFS Underground Demo
[2004-11-08 01:25:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2014-03-28 01:21:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2015-10-08 10:00:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\rWdsManPror
[2004-11-08 01:23:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2013-11-07 16:36:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\0D0S1L2Z1P1B0T1P1B2Z
[2004-11-08 03:48:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\1H1E1R1Q1I
[2004-11-08 01:16:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\BabSolution
[2004-11-08 01:16:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\Babylon
[2014-02-03 20:23:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\DAEMON Tools Lite
[2004-11-08 01:16:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\DealPly
[2013-11-07 16:34:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\DigitalSite
[2004-11-08 01:24:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\File Scout
[2014-02-22 22:59:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\FindeXer
[2004-11-08 03:48:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\Funmoods
[2004-11-08 04:14:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\Gadu-Gadu 10
[2004-11-08 03:04:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\GG
[2004-11-08 03:08:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\HoolappForAndroid
[2004-09-23 08:20:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\iPlus
[2015-10-08 09:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\istartsurf
[2013-11-12 16:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\MyPhoneExplorer
[2014-03-28 01:13:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\Nokia
[2004-11-08 01:25:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\OpenFM
[2013-02-06 17:09:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\Opera
[2014-03-29 08:12:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\PC Suite
[2004-11-08 03:08:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\PerformerSoft
[2004-09-23 05:07:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\artur\Dane aplikacji\Systweak

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:AD022376

< End of report >



  • 0

#2 pawel315

pawel315

    Uzależniony od forum

  • 1 553 postów

Napisano 15 10 2015 - 09:38

Tak, brontok widoczny, a nie możesz zrobić loga z FRST ?



  • 0




Użytkownicy przeglądający ten temat: 0

0 użytkowników, 0 gości, 0 anonimowych