Veľká prosba o kontrolu logu

reddevil1 · Příspěvekod **reddevil1** » 25 bře 2012 20:45

Dobrý deň, resp. už aj večer páni experti :)

Mám na Vás jednu veľkú prosbu ...
Neviem, či práve toto je tá správna sekcia pre môj problém, ale asi bude dobré začať tu, pretože ja si už fakt neviem rady.

Popis problému:
Tento problém pretrváva už asi mesiac a ani neviem presne, kedy a čím to začalo.
Laicky napísané - ide o to, že sa mi v prehliadači Google Chrome 1-2x za minútu zasekáva načítavanie stránok na dobu presne 10 sek.
Je to neznesiteľné a skutočne som už vyskúšal všetko čo som vedel ( napíšem nižšie ).
Príznaky sú také, že počas bežného prezerania stránok mi ich na 10 sec zasekne a tvári sa to, akože načítava. Ak sa to stane počas videa na YT
tak zvuk ide ďalej, ale obraz a čas zamrzne.
Pokiaľ sa to stane presne počas načítavania inej stránky, tak Chrome vypíše hlášku: "Čakanie na vyrovnávaciu pamäť".

Parametre môjho notebooku:
Asus K73S
4 GB RAM
Intel Core i7
Používam Win7 Ultimate SP1

Čo všetko som už skúšal (okrem preinštalovania Windowsu) sa zmienim konkrétnej osobe, ktorá bude tak dobrá a vezme si môj problém na starosť.
Som ochotný pokiaľ to nebude vadiť to urýchliť aj komunikáciou cez skype, alebo icq.

Log z HijackThis:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:44:21, on 25. 3. 2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Users\Reddevil\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Reddevil\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Reddevil\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Reddevil\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Reddevil\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ICQ7.7\ICQ.exe
C:\Windows\system32\igfxsrvc.exe
C:\Users\Reddevil\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 81.89.63.129:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ACPW05EN] "C:\Program Files\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe" /pid ACPW05EN
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /SF3
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-21-1571910175-1323870229-707124800-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1571910175-1323870229-707124800-1002\..\Run: [Google Update] "C:\Users\Reddevil\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1571910175-1323870229-707124800-1002\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1571910175-1323870229-707124800-1002\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1571910175-1323870229-707124800-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\Reddevil\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\System32\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\system32\IntelCpHeciSvc.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\Windows\SYSTEM32\crypserv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

--
End of file - 8195 bytes

Pokiaľ som niečo zabudol tak sa vopred ospravedlňujem a už teraz si cením váš čas a ochotu mi pomôcť...

Reklama

Příspěvekod **Žbeky** » 25 bře 2012 21:38

Proxy
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 81.89.63.129:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421
znáš?

Fixni:

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-21-1571910175-1323870229-707124800-1002\..\Run: [Google Update] "C:\Users\Reddevil\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1571910175-1323870229-707124800-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

reddevil1 · Příspěvekod **reddevil1** » 25 bře 2012 22:03

Druhú proxynu poznám, ale tá prvá mi nič nevraví ...

Fixnuté a systém prečistený ATF-kom.

Pridávam aj požadovaný log...

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.60.1.1000
http://www.malwarebytes.org

Verze databáze: v2012.03.25.03

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Reddevil :: REDDEVIL1 [administrátor]

Ochrana: Zakázána

25. 3. 2012 21:55:12
mbam-log-2012-03-25 (21-55-12).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 195394
Uplynulý čas: 5 minut, 13 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Příspěvekod **Žbeky** » 25 bře 2012 22:35

Tak ještě fixni R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 81.89.63.129:8080
Pak napiš jak to vypadá, podle toho budeme pokračovat

reddevil1 · Příspěvekod **reddevil1** » 25 bře 2012 22:57

Takže.. zatiaľ to vyzerá nádejne ... za 10 minút sa to neseklo.
Pokiaľ to robila tá proxy adresa tak si génius :)
Zatiaľ ti veľmi pekne ďakujem za ochotu a tvoj čas ... nechám si čas do zajtra na otestovanie a dám vedieť výsledok.

PS: Ľudia robíte tu skvelú prácu. Dávam pred Vami klobúk dolu. Držím palčeky nech máte vždy menej a menej žiadostí o pomoc, aby ste si mohli aj oddýchnuť. Ešte raz veľká vďaka.

Zajtra sa ozvem Žbeky...

reddevil1 · Příspěvekod **reddevil1** » 25 bře 2012 23:01

Tak som to nestihol ani dopísať a robí to opäť :)

Ale dobrá správa je, že už len asi 3s a nie 10 ako predtým :)
Tak čo ďalej šéfe?

Příspěvekod **Žbeky** » 25 bře 2012 23:03

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

reddevil1 · Příspěvekod **reddevil1** » 25 bře 2012 23:19

HOTOVO!

ComboFix 12-03-22.01 - Reddevil . 03. 2012 23:10:48.2.8 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1029.18.2730.1786 [GMT 2:00]
Running from: c:\users\Reddevil\Desktop\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-02-25 to 2012-03-25 )))))))))))))))))))))))))))))))
.
.
2012-03-25 21:17 . 2012-03-25 21:17 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-25 20:41 . 2012-03-25 20:41 -------- d-----w- c:\users\Reddevil\AppData\Local\ACD Systems
2012-03-25 19:54 . 2012-03-25 19:54 -------- d-----w- c:\users\Reddevil\AppData\Local\Apps
2012-03-25 19:54 . 2012-03-25 19:54 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-03-25 19:54 . 2011-12-10 13:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-25 16:43 . 2012-03-25 17:46 -------- d-----w- c:\program files\SpeedFan
2012-03-25 15:21 . 2012-03-25 15:21 -------- d-----w- c:\program files\CPUID
2012-03-25 15:07 . 2012-03-25 15:07 -------- d-----w- c:\users\Reddevil\AppData\Roaming\Malwarebytes
2012-03-25 15:07 . 2012-03-25 15:07 -------- d-----w- c:\programdata\Malwarebytes
2012-03-24 23:37 . 2012-02-22 01:22 86016 ----a-w- c:\windows\system32\IntelOpenCL32.dll
2012-03-23 21:25 . 2012-02-29 23:59 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-03-23 21:25 . 2012-02-22 01:22 17920 ----a-w- c:\windows\system32\OpenCL.dll
2012-03-23 21:25 . 2012-02-29 23:59 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-03-23 21:25 . 2012-02-29 23:59 301376 ----a-w- c:\windows\system32\nvdecodemft.dll
2012-03-23 21:25 . 2012-02-29 23:59 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-03-23 21:25 . 2012-02-29 23:59 24896 ----a-w- c:\windows\system32\drivers\nvpciflt.sys
2012-03-23 21:25 . 2012-02-29 23:59 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-03-23 21:25 . 2012-02-29 23:59 19444544 ----a-w- c:\windows\system32\nvoglv32.dll
2012-03-23 21:25 . 2012-02-29 23:59 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-03-23 21:25 . 2012-02-29 23:59 10819392 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-03-23 21:25 . 2012-02-29 23:59 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-03-23 06:05 . 2012-03-14 02:15 6582328 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B8148422-0A2D-4595-8225-44D0463B3750}\mpengine.dll
2012-03-19 18:28 . 2012-03-19 18:28 -------- d-----w- c:\programdata\ACD Systems
2012-03-19 18:28 . 2012-03-19 18:28 -------- d-----w- c:\program files\ACD Systems
2012-03-18 10:30 . 2012-03-18 10:30 -------- d-----w- c:\program files\Common Files\DVDVideoSoft
2012-03-18 10:30 . 2012-03-18 10:30 -------- d-----w- c:\program files\DVDVideoSoft
2012-03-17 21:58 . 2012-03-24 23:36 -------- d-----w- c:\windows\system32\catroot2
2012-03-17 16:21 . 2012-03-17 16:21 -------- d-----w- c:\users\Reddevil\AppData\Local\Xilisoft
2012-03-15 02:00 . 2011-11-19 14:50 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-03-15 02:00 . 2011-11-19 14:50 3913584 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-14 13:10 . 2012-02-03 03:54 2343424 ----a-w- c:\windows\system32\win32k.sys
2012-03-14 13:10 . 2012-02-10 05:38 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-03-14 13:07 . 2012-01-25 05:32 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-03-14 13:07 . 2012-01-25 05:32 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-03-14 13:07 . 2012-01-25 05:27 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-03-14 13:07 . 2012-02-17 05:34 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-03-14 13:07 . 2012-02-17 05:34 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-03-14 13:07 . 2012-02-17 04:14 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-03-14 13:07 . 2012-02-17 04:13 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-03-13 16:52 . 2012-03-13 16:52 -------- d-----w- c:\programdata\GARMIN
2012-03-13 16:37 . 2012-03-18 09:35 -------- d-----w- c:\users\Reddevil\AppData\Roaming\Pathcz
2012-03-13 15:47 . 2012-03-13 16:52 -------- d-----w- c:\users\Reddevil\AppData\Roaming\Garmin
2012-03-09 17:03 . 2012-03-09 17:03 -------- d-----w- c:\program files\Common Files\Java
2012-03-09 17:03 . 2012-03-09 17:03 -------- d-----w- c:\program files\Oracle
2012-03-08 16:23 . 2012-03-18 09:35 -------- d-----w- c:\users\Reddevil\AppData\Roaming\Settlement. Colossus
2012-03-08 16:22 . 2012-03-08 16:22 -------- d-----w- c:\programdata\AWEM
2012-03-08 16:22 . 2012-03-08 16:22 -------- d-----w- c:\programdata\AlawarWrapper
2012-03-08 16:21 . 2012-03-08 16:21 -------- d-----w- c:\program files\Alawarhry.cz
2012-03-07 14:42 . 2012-03-07 14:42 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-03-06 18:59 . 2012-03-06 18:59 -------- d-----w- c:\users\Reddevil\AppData\Roaming\TomTom
2012-03-06 18:59 . 2012-03-06 18:59 -------- d-----w- c:\users\Reddevil\AppData\Local\TomTom
2012-03-06 10:46 . 2012-03-06 10:46 276248 ----a-w- c:\windows\system32\IntelCpHeciSvc.exe
2012-03-06 10:46 . 2012-03-06 10:46 144664 ----a-w- c:\windows\system32\igfxtray.exe
2012-03-06 10:46 . 2012-03-06 10:46 269592 ----a-w- c:\windows\system32\igfxsrvc.exe
2012-03-06 10:46 . 2012-03-06 10:46 188184 ----a-w- c:\windows\system32\igfxpers.exe
2012-03-06 10:46 . 2012-03-06 10:46 195864 ----a-w- c:\windows\system32\igfxext.exe
2012-03-06 10:46 . 2012-03-06 10:46 180504 ----a-w- c:\windows\system32\hkcmd.exe
2012-03-06 10:45 . 2012-03-06 10:45 6212376 ----a-w- c:\windows\system32\GfxUI.exe
2012-03-04 11:34 . 2012-03-04 11:34 -------- d-----w- c:\users\Reddevil\AppData\Local\GHISLER
2012-03-04 11:33 . 2012-03-04 11:33 -------- d-----w- C:\totalcmd
2012-03-04 11:33 . 2012-03-04 11:33 -------- d-----w- c:\users\Reddevil\AppData\Roaming\GHISLER
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\UC.PIF
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\RAR.PIF
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\LHA.PIF
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\ARJ.PIF
2012-03-03 11:42 . 2012-03-03 11:42 -------- d-----w- C:\Games
2012-03-02 17:47 . 2012-03-02 17:47 91248 ----a-w- c:\windows\system32\drivers\L1C62x86.sys
2012-02-29 22:09 . 2012-02-29 22:12 -------- d-----w- c:\program files\Restaurant Empire 2
2012-02-27 23:59 . 2012-02-27 23:59 81920 ----a-w- c:\windows\system32\igfxCoIn_v2669.dll
2012-02-27 23:53 . 2012-02-27 23:53 13207552 ----a-w- c:\windows\system32\drivers\igdkmd32.sys
2012-02-27 23:52 . 2012-02-27 23:52 58880 ----a-w- c:\windows\system32\igdde32.dll
2012-02-27 23:14 . 2012-02-27 23:14 13212672 ----a-w- c:\windows\system32\ig4icd32.dll
2012-02-27 23:08 . 2012-02-27 23:08 130048 ----a-w- c:\windows\system32\igfxdo.dll
2012-02-27 23:08 . 2012-02-27 23:08 9216 ----a-w- c:\windows\system32\IGFXDEVLib.dll
2012-02-27 23:08 . 2012-02-27 23:08 321024 ----a-w- c:\windows\system32\igfxdev.dll
2012-02-27 23:08 . 2012-02-27 23:08 172544 ----a-w- c:\windows\system32\gfxSrvc.dll
2012-02-27 23:08 . 2012-02-27 23:08 284160 ----a-w- c:\windows\system32\igfxrenu.lrc
2012-02-27 08:01 . 2012-03-18 09:35 -------- d-----w- c:\windows\system32\Atheros_L1e
2012-02-25 18:14 . 2012-02-25 18:14 764416 ----a-w- c:\windows\GPInstall.exe
2012-02-25 15:36 . 2012-02-25 18:51 -------- d-----w- c:\program files\Paradox Interactive
2012-02-25 13:24 . 2012-02-25 13:24 -------- d-sh--w- c:\windows\ftpcache
2012-02-25 13:22 . 2012-02-25 13:22 -------- d-----w- c:\program files\LeeGTs Games
2012-02-25 11:49 . 2012-02-25 11:49 -------- d-----w- c:\program files\neoSoftware
2012-02-25 10:23 . 2012-03-23 21:27 -------- d-----w- c:\users\UpdatusUser
2012-02-25 09:47 . 2012-02-25 09:47 -------- d-----w- c:\program files\Ligos
2012-02-25 09:22 . 2011-09-27 03:57 1347344 ----a-w- c:\windows\system32\msvbvm50.dll
2012-02-25 09:17 . 2012-02-25 09:17 -------- d-----w- c:\program files\Triumph Studios
2012-02-25 09:16 . 1998-10-29 18:45 306688 ----a-w- c:\windows\IsUninst.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-29 23:59 . 2011-12-21 21:34 812352 ----a-w- c:\windows\system32\nvumdshim.dll
2012-02-29 23:59 . 2011-12-21 21:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-29 23:59 . 2011-12-21 21:34 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-29 23:59 . 2011-12-21 21:34 215360 ----a-w- c:\windows\system32\nvinit.dll
2012-02-29 23:59 . 2011-12-21 21:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-29 20:56 . 2011-12-21 21:35 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-29 20:55 . 2011-12-21 21:35 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-29 20:53 . 2011-12-21 21:35 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-29 20:53 . 2011-12-21 21:35 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-29 20:53 . 2011-12-21 21:35 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-29 20:53 . 2011-12-21 21:35 55104 ----a-w- c:\windows\system32\nv3dappshextr.dll
2012-02-29 20:53 . 2011-12-21 21:35 710976 ----a-w- c:\windows\system32\nv3dappshext.dll
2012-02-29 20:53 . 2011-12-21 21:35 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-29 19:43 . 2003-02-20 20:42 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-02-27 23:53 . 2011-10-21 08:25 6122496 ----a-w- c:\windows\system32\igdumd32.dll
2012-02-27 23:44 . 2011-10-21 08:13 7794688 ----a-w- c:\windows\system32\igd10umd32.dll
2012-02-27 23:09 . 2012-02-27 23:09 427008 ----a-w- c:\windows\system32\igfxrcht.lrc
2012-02-27 23:09 . 2012-02-27 23:09 426496 ----a-w- c:\windows\system32\igfxrchs.lrc
2012-02-27 23:09 . 2012-02-14 16:55 313344 ----a-w- c:\windows\system32\igfxpph.dll
2012-02-27 23:09 . 2011-10-21 07:52 59392 ----a-w- c:\windows\system32\igfxsrvc.dll
2012-02-27 23:08 . 2011-10-21 07:52 96256 ----a-w- c:\windows\system32\hccutils.dll
2012-02-27 23:08 . 2011-10-21 07:52 9023488 ----a-w- c:\windows\system32\igfxress.dll
2012-02-23 08:18 . 2011-12-21 21:20 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-14 17:52 . 2012-02-14 17:52 81920 ----a-w- c:\windows\system32\igfxCoIn_v2653.dll
2012-02-14 16:53 . 2012-02-14 16:53 519680 ----a-w- c:\windows\system32\iglhsip32.dll
2012-02-14 16:53 . 2012-02-14 16:53 237056 ----a-w- c:\windows\system32\igfxcmrt32.dll
2012-02-14 16:53 . 2012-02-14 16:53 2321408 ----a-w- c:\windows\system32\igfxcmjit32.dll
2012-02-14 16:53 . 2012-02-14 16:53 177152 ----a-w- c:\windows\system32\iglhcp32.dll
2012-01-16 10:06 . 2011-12-21 21:31 53248 ----a-w- c:\windows\system32\CSVer.dll
2012-01-10 13:44 . 2012-01-10 13:44 8198936 ----a-w- c:\windows\system32\TVWSetup.exe
2012-01-10 13:36 . 2012-01-10 13:36 81920 ----a-w- c:\windows\system32\igfxCoIn_v2622.dll
2012-01-10 13:12 . 2011-10-21 08:21 581120 ----a-w- c:\windows\system32\igdumdx32.dll
2012-01-10 12:57 . 2011-12-22 17:27 637848 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-01-10 12:57 . 2011-12-22 17:27 567696 ----a-w- c:\windows\system32\deployJava1.dll
2012-01-08 21:24 . 2012-01-08 21:25 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2012-01-08 21:24 . 2012-01-08 21:25 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2012-01-04 08:58 . 2012-02-16 20:16 442880 ----a-w- c:\windows\system32\ntshrui.dll
2011-12-30 05:27 . 2012-02-16 20:16 478720 ----a-w- c:\windows\system32\timedate.cpl
2006-05-03 11:06 163328 --sha-w- c:\windows\System32\flvDX.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2011-12-16 1508408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2011-04-13 1813800]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-10-17 284440]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"ETDCtrl"="c:\program files\Elantech\ETDCtrl.exe" [2011-04-13 1813800]
"ACPW05EN"="c:\program files\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe" [2011-09-19 822384]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-03-06 144664]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-03-06 180504]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-03-06 188184]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2012-02-21 10967656]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RtHDVBg.exe" [2012-02-08 879208]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SynchronousMachineGroupPolicy"= 1 (0x1)
"SynchronousUserGroupPolicy"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wisdom-soft AutoScreenRecorder 3.1 Pro]
0 [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
2010-03-13 13:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CNAP2 Launcher]
2007-09-05 22:48 406944 ----a-w- c:\windows\System32\spool\drivers\w32x86\3\CNAP2LAK.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2012-03-06 10:46 180504 ----a-w- c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2011-12-16 10:04 1508408 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2012-03-06 10:46 188184 ----a-w- c:\windows\System32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-10-24 13:28 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVBg]
2012-02-08 10:14 879208 ------w- c:\program files\Realtek\Audio\HDA\RtHDVBg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2012-02-21 21:46 10967656 ------w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" -autorun
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2012-01-31 158856]
R3 cphs;Intel(R) Content Protection HECI Service;c:\windows\system32\IntelCpHeciSvc.exe [2012-03-06 276248]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [x]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [x]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [2011-06-19 4122968]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-12-22 1343400]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 50624]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-02-29 24896]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-12-22 691696]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 33656]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-10-17 13592]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2011-12-08 423136]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 652360]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-29 2348352]
S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-11-15 263680]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2011-04-13 119592]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-12-09 47616]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 280576]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2012-03-02 91248]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam.sys [2011-09-29 21632]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-12-10 20464]
S3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [2011-11-09 46080]
S3 NETwNs32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 32 Bit;c:\windows\system32\DRIVERS\NETwNs32.sys [2011-12-02 10299904]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1571910175-1323870229-707124800-1000Core.job
- c:\users\Reddevil\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-21 21:39]
.
2012-03-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1571910175-1323870229-707124800-1000UA.job
- c:\users\Reddevil\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-21 21:39]
.
.
------- Supplementary Scan -------
.
uInternet Settings,ProxyOverride = 127.0.0.1:9421
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\users\Reddevil\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Od&oslať do programu OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 10.10.1.230 10.10.1.226
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.bmp"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.dib"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.emf"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.gif"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jfif"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpe"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpeg"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpg"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.png"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.rle"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.tif"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.tiff"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ttc"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ttf"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.wmf"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2515F8B2-17D6-E6C1-2427-2F64A3441EDF}*]
"jbomhhmnaclpkhfbnkknfhjbkfmlgkokoacfndpaabpdgmboeoin"=hex:68,61,67,6e,61,70,
6a,6e,70,69,65,66,6f,62,68,6c,00,00
"dbomhhmnaclpkhfbnkkndhmfnpgngppbhfplpogm"=hex:62,61,6a,6a,00,00
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-03-25 23:18:32
ComboFix-quarantined-files.txt 2012-03-25 21:18
.
Pre-Run: Volných bajtů: 183 014 223 872
Post-Run: Volných bajtů: 182 956 015 616
.
- - End Of File - - AA5DCC050393033FB694B6C311ED1043

Příspěvekod **jaro3** » 26 bře 2012 09:10

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

File::
c:\windows\system32\GameMon.des

Driver::
npggsvc

Registry::
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]

RegNull::
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2515F8B2-17D6-E6C1-2427-2F64A3441EDF}*]
"jbomhhmnaclpkhfbnkknfhjbkfmlgkokoacfndpaabpdgmboeoin"=hex:68,61,67,6e,61,70,
 6a,6e,70,69,65,66,6f,62,68,6c,00,00
"dbomhhmnaclpkhfbnkkndhmfnpgngppbhfplpogm"=hex:62,61,6a,6a,00,00
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

RegLock::
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2515F8B2-17D6-E6C1-2427-2F64A3441EDF}*]
"jbomhhmnaclpkhfbnkknfhjbkfmlgkokoacfndpaabpdgmboeoin"=hex:68,61,67,6e,61,70,
 6a,6e,70,69,65,66,6f,62,68,6c,00,00
"dbomhhmnaclpkhfbnkkndhmfnpgngppbhfplpogm"=hex:62,61,6a,6a,00,00
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Vyčisti systém CCleanerem

reddevil1 · Příspěvekod **reddevil1** » 26 bře 2012 10:15

Pekný deň prajem Jaro3...
Takže všetky tvoje pokyny vykonané a prikladám logy...
Zasekávanie systému stále trvá...

COMBOFIX:

ComboFix 12-03-22.01 - Reddevil . 03. 2012 9:56.3.8 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1029.18.2730.1429 [GMT 2:00]
Running from: c:\users\Reddevil\Desktop\ComboFix.exe
Command switches used :: c:\users\Reddevil\Desktop\CFScript.txt
AV: ESET Smart Security 5.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Resident AV is active
.
.
FILE ::
"c:\windows\system32\GameMon.des"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\GameMon.des
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_npggsvc
.
.
((((((((((((((((((((((((( Files Created from 2012-02-26 to 2012-03-26 )))))))))))))))))))))))))))))))
.
.
2012-03-26 08:01 . 2012-03-26 08:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-25 21:42 . 2012-03-25 21:42 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B8148422-0A2D-4595-8225-44D0463B3750}\offreg.dll
2012-03-25 21:37 . 2012-03-25 21:37 -------- d-----w- c:\users\Reddevil\AppData\Roaming\vlc
2012-03-25 20:41 . 2012-03-25 20:41 -------- d-----w- c:\users\Reddevil\AppData\Local\ACD Systems
2012-03-25 19:54 . 2012-03-25 19:54 -------- d-----w- c:\users\Reddevil\AppData\Local\Apps
2012-03-25 19:54 . 2012-03-25 19:54 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-03-25 19:54 . 2011-12-10 13:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-25 16:43 . 2012-03-25 17:46 -------- d-----w- c:\program files\SpeedFan
2012-03-25 15:21 . 2012-03-25 15:21 -------- d-----w- c:\program files\CPUID
2012-03-25 15:07 . 2012-03-25 15:07 -------- d-----w- c:\users\Reddevil\AppData\Roaming\Malwarebytes
2012-03-25 15:07 . 2012-03-25 15:07 -------- d-----w- c:\programdata\Malwarebytes
2012-03-24 23:37 . 2012-02-22 01:22 86016 ----a-w- c:\windows\system32\IntelOpenCL32.dll
2012-03-23 21:25 . 2012-02-29 23:59 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-03-23 21:25 . 2012-02-22 01:22 17920 ----a-w- c:\windows\system32\OpenCL.dll
2012-03-23 21:25 . 2012-02-29 23:59 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-03-23 21:25 . 2012-02-29 23:59 301376 ----a-w- c:\windows\system32\nvdecodemft.dll
2012-03-23 21:25 . 2012-02-29 23:59 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-03-23 21:25 . 2012-02-29 23:59 24896 ----a-w- c:\windows\system32\drivers\nvpciflt.sys
2012-03-23 21:25 . 2012-02-29 23:59 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-03-23 21:25 . 2012-02-29 23:59 19444544 ----a-w- c:\windows\system32\nvoglv32.dll
2012-03-23 21:25 . 2012-02-29 23:59 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-03-23 21:25 . 2012-02-29 23:59 10819392 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-03-23 21:25 . 2012-02-29 23:59 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-03-23 06:05 . 2012-03-14 02:15 6582328 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B8148422-0A2D-4595-8225-44D0463B3750}\mpengine.dll
2012-03-19 18:28 . 2012-03-19 18:28 -------- d-----w- c:\programdata\ACD Systems
2012-03-19 18:28 . 2012-03-19 18:28 -------- d-----w- c:\program files\ACD Systems
2012-03-18 10:30 . 2012-03-18 10:30 -------- d-----w- c:\program files\Common Files\DVDVideoSoft
2012-03-18 10:30 . 2012-03-18 10:30 -------- d-----w- c:\program files\DVDVideoSoft
2012-03-17 21:58 . 2012-03-24 23:36 -------- d-----w- c:\windows\system32\catroot2
2012-03-17 16:21 . 2012-03-17 16:21 -------- d-----w- c:\users\Reddevil\AppData\Local\Xilisoft
2012-03-15 02:00 . 2011-11-19 14:50 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-03-15 02:00 . 2011-11-19 14:50 3913584 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-14 13:10 . 2012-02-03 03:54 2343424 ----a-w- c:\windows\system32\win32k.sys
2012-03-14 13:10 . 2012-02-10 05:38 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-03-14 13:07 . 2012-01-25 05:32 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-03-14 13:07 . 2012-01-25 05:32 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-03-14 13:07 . 2012-01-25 05:27 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-03-14 13:07 . 2012-02-17 05:34 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-03-14 13:07 . 2012-02-17 05:34 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-03-14 13:07 . 2012-02-17 04:14 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-03-14 13:07 . 2012-02-17 04:13 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-03-13 16:52 . 2012-03-13 16:52 -------- d-----w- c:\programdata\GARMIN
2012-03-13 16:37 . 2012-03-18 09:35 -------- d-----w- c:\users\Reddevil\AppData\Roaming\Pathcz
2012-03-13 15:47 . 2012-03-13 16:52 -------- d-----w- c:\users\Reddevil\AppData\Roaming\Garmin
2012-03-09 17:03 . 2012-03-09 17:03 -------- d-----w- c:\program files\Common Files\Java
2012-03-09 17:03 . 2012-03-09 17:03 -------- d-----w- c:\program files\Oracle
2012-03-08 16:23 . 2012-03-18 09:35 -------- d-----w- c:\users\Reddevil\AppData\Roaming\Settlement. Colossus
2012-03-08 16:22 . 2012-03-08 16:22 -------- d-----w- c:\programdata\AWEM
2012-03-08 16:22 . 2012-03-08 16:22 -------- d-----w- c:\programdata\AlawarWrapper
2012-03-08 16:21 . 2012-03-08 16:21 -------- d-----w- c:\program files\Alawarhry.cz
2012-03-07 14:42 . 2012-03-07 14:42 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-03-06 18:59 . 2012-03-06 18:59 -------- d-----w- c:\users\Reddevil\AppData\Roaming\TomTom
2012-03-06 18:59 . 2012-03-06 18:59 -------- d-----w- c:\users\Reddevil\AppData\Local\TomTom
2012-03-06 10:46 . 2012-03-06 10:46 276248 ----a-w- c:\windows\system32\IntelCpHeciSvc.exe
2012-03-06 10:46 . 2012-03-06 10:46 144664 ----a-w- c:\windows\system32\igfxtray.exe
2012-03-06 10:46 . 2012-03-06 10:46 269592 ----a-w- c:\windows\system32\igfxsrvc.exe
2012-03-06 10:46 . 2012-03-06 10:46 188184 ----a-w- c:\windows\system32\igfxpers.exe
2012-03-06 10:46 . 2012-03-06 10:46 195864 ----a-w- c:\windows\system32\igfxext.exe
2012-03-06 10:46 . 2012-03-06 10:46 180504 ----a-w- c:\windows\system32\hkcmd.exe
2012-03-06 10:45 . 2012-03-06 10:45 6212376 ----a-w- c:\windows\system32\GfxUI.exe
2012-03-04 11:34 . 2012-03-04 11:34 -------- d-----w- c:\users\Reddevil\AppData\Local\GHISLER
2012-03-04 11:33 . 2012-03-04 11:33 -------- d-----w- C:\totalcmd
2012-03-04 11:33 . 2012-03-04 11:33 -------- d-----w- c:\users\Reddevil\AppData\Roaming\GHISLER
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\UC.PIF
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\RAR.PIF
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\LHA.PIF
2012-03-04 11:33 . 2012-02-24 06:57 545 ----a-w- c:\windows\ARJ.PIF
2012-03-03 11:42 . 2012-03-03 11:42 -------- d-----w- C:\Games
2012-03-02 17:47 . 2012-03-02 17:47 91248 ----a-w- c:\windows\system32\drivers\L1C62x86.sys
2012-02-29 22:09 . 2012-02-29 22:12 -------- d-----w- c:\program files\Restaurant Empire 2
2012-02-27 23:59 . 2012-02-27 23:59 81920 ----a-w- c:\windows\system32\igfxCoIn_v2669.dll
2012-02-27 23:53 . 2012-02-27 23:53 13207552 ----a-w- c:\windows\system32\drivers\igdkmd32.sys
2012-02-27 23:52 . 2012-02-27 23:52 58880 ----a-w- c:\windows\system32\igdde32.dll
2012-02-27 23:14 . 2012-02-27 23:14 13212672 ----a-w- c:\windows\system32\ig4icd32.dll
2012-02-27 23:08 . 2012-02-27 23:08 130048 ----a-w- c:\windows\system32\igfxdo.dll
2012-02-27 23:08 . 2012-02-27 23:08 9216 ----a-w- c:\windows\system32\IGFXDEVLib.dll
2012-02-27 23:08 . 2012-02-27 23:08 321024 ----a-w- c:\windows\system32\igfxdev.dll
2012-02-27 23:08 . 2012-02-27 23:08 172544 ----a-w- c:\windows\system32\gfxSrvc.dll
2012-02-27 23:08 . 2012-02-27 23:08 284160 ----a-w- c:\windows\system32\igfxrenu.lrc
2012-02-27 08:01 . 2012-03-18 09:35 -------- d-----w- c:\windows\system32\Atheros_L1e
2012-02-25 18:14 . 2012-02-25 18:14 764416 ----a-w- c:\windows\GPInstall.exe
2012-02-25 15:36 . 2012-02-25 18:51 -------- d-----w- c:\program files\Paradox Interactive
2012-02-25 13:24 . 2012-02-25 13:24 -------- d-sh--w- c:\windows\ftpcache
2012-02-25 13:22 . 2012-02-25 13:22 -------- d-----w- c:\program files\LeeGTs Games
2012-02-25 11:49 . 2012-02-25 11:49 -------- d-----w- c:\program files\neoSoftware
2012-02-25 10:23 . 2012-03-23 21:27 -------- d-----w- c:\users\UpdatusUser
2012-02-25 09:47 . 2012-02-25 09:47 -------- d-----w- c:\program files\Ligos
2012-02-25 09:22 . 2011-09-27 03:57 1347344 ----a-w- c:\windows\system32\msvbvm50.dll
2012-02-25 09:17 . 2012-02-25 09:17 -------- d-----w- c:\program files\Triumph Studios
2012-02-25 09:16 . 1998-10-29 18:45 306688 ----a-w- c:\windows\IsUninst.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-29 23:59 . 2011-12-21 21:34 812352 ----a-w- c:\windows\system32\nvumdshim.dll
2012-02-29 23:59 . 2011-12-21 21:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-29 23:59 . 2011-12-21 21:34 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-29 23:59 . 2011-12-21 21:34 215360 ----a-w- c:\windows\system32\nvinit.dll
2012-02-29 23:59 . 2011-12-21 21:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-29 20:56 . 2011-12-21 21:35 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-29 20:55 . 2011-12-21 21:35 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-29 20:53 . 2011-12-21 21:35 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-29 20:53 . 2011-12-21 21:35 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-29 20:53 . 2011-12-21 21:35 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-29 20:53 . 2011-12-21 21:35 55104 ----a-w- c:\windows\system32\nv3dappshextr.dll
2012-02-29 20:53 . 2011-12-21 21:35 710976 ----a-w- c:\windows\system32\nv3dappshext.dll
2012-02-29 20:53 . 2011-12-21 21:35 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-29 19:43 . 2003-02-20 20:42 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-02-27 23:53 . 2011-10-21 08:25 6122496 ----a-w- c:\windows\system32\igdumd32.dll
2012-02-27 23:44 . 2011-10-21 08:13 7794688 ----a-w- c:\windows\system32\igd10umd32.dll
2012-02-27 23:09 . 2012-02-27 23:09 427008 ----a-w- c:\windows\system32\igfxrcht.lrc
2012-02-27 23:09 . 2012-02-27 23:09 426496 ----a-w- c:\windows\system32\igfxrchs.lrc
2012-02-27 23:09 . 2012-02-14 16:55 313344 ----a-w- c:\windows\system32\igfxpph.dll
2012-02-27 23:09 . 2011-10-21 07:52 59392 ----a-w- c:\windows\system32\igfxsrvc.dll
2012-02-27 23:08 . 2011-10-21 07:52 96256 ----a-w- c:\windows\system32\hccutils.dll
2012-02-27 23:08 . 2011-10-21 07:52 9023488 ----a-w- c:\windows\system32\igfxress.dll
2012-02-23 08:18 . 2011-12-21 21:20 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-14 17:52 . 2012-02-14 17:52 81920 ----a-w- c:\windows\system32\igfxCoIn_v2653.dll
2012-02-14 16:53 . 2012-02-14 16:53 519680 ----a-w- c:\windows\system32\iglhsip32.dll
2012-02-14 16:53 . 2012-02-14 16:53 237056 ----a-w- c:\windows\system32\igfxcmrt32.dll
2012-02-14 16:53 . 2012-02-14 16:53 2321408 ----a-w- c:\windows\system32\igfxcmjit32.dll
2012-02-14 16:53 . 2012-02-14 16:53 177152 ----a-w- c:\windows\system32\iglhcp32.dll
2012-01-16 10:06 . 2011-12-21 21:31 53248 ----a-w- c:\windows\system32\CSVer.dll
2012-01-10 13:44 . 2012-01-10 13:44 8198936 ----a-w- c:\windows\system32\TVWSetup.exe
2012-01-10 13:36 . 2012-01-10 13:36 81920 ----a-w- c:\windows\system32\igfxCoIn_v2622.dll
2012-01-10 13:12 . 2011-10-21 08:21 581120 ----a-w- c:\windows\system32\igdumdx32.dll
2012-01-10 12:57 . 2011-12-22 17:27 637848 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-01-10 12:57 . 2011-12-22 17:27 567696 ----a-w- c:\windows\system32\deployJava1.dll
2012-01-08 21:24 . 2012-01-08 21:25 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2012-01-08 21:24 . 2012-01-08 21:25 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2012-01-04 08:58 . 2012-02-16 20:16 442880 ----a-w- c:\windows\system32\ntshrui.dll
2011-12-30 05:27 . 2012-02-16 20:16 478720 ----a-w- c:\windows\system32\timedate.cpl
2006-05-03 11:06 163328 --sha-w- c:\windows\System32\flvDX.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2011-12-16 1508408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2011-04-13 1813800]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-10-17 284440]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"ETDCtrl"="c:\program files\Elantech\ETDCtrl.exe" [2011-04-13 1813800]
"ACPW05EN"="c:\program files\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe" [2011-09-19 822384]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-03-06 144664]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-03-06 180504]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-03-06 188184]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2012-02-21 10967656]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RtHDVBg.exe" [2012-02-08 879208]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SynchronousMachineGroupPolicy"= 1 (0x1)
"SynchronousUserGroupPolicy"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wisdom-soft AutoScreenRecorder 3.1 Pro]
0 [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
2010-03-13 13:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CNAP2 Launcher]
2007-09-05 22:48 406944 ----a-w- c:\windows\System32\spool\drivers\w32x86\3\CNAP2LAK.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2012-03-06 10:46 180504 ----a-w- c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2011-12-16 10:04 1508408 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2012-03-06 10:46 188184 ----a-w- c:\windows\System32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-10-24 13:28 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVBg]
2012-02-08 10:14 879208 ------w- c:\program files\Realtek\Audio\HDA\RtHDVBg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2012-02-21 21:46 10967656 ------w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" -autorun
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2012-01-31 158856]
R3 cphs;Intel(R) Content Protection HECI Service;c:\windows\system32\IntelCpHeciSvc.exe [2012-03-06 276248]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [x]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [x]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-12-22 1343400]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 50624]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-02-29 24896]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-12-22 691696]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 33656]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-10-17 13592]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2011-12-08 423136]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 652360]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-29 2348352]
S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-11-15 263680]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2011-04-13 119592]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-12-09 47616]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 280576]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2012-03-02 91248]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam.sys [2011-09-29 21632]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-12-10 20464]
S3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [2011-11-09 46080]
S3 NETwNs32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 32 Bit;c:\windows\system32\DRIVERS\NETwNs32.sys [2011-12-02 10299904]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1571910175-1323870229-707124800-1000Core.job
- c:\users\Reddevil\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-21 21:39]
.
2012-03-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1571910175-1323870229-707124800-1000UA.job
- c:\users\Reddevil\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-21 21:39]
.
.
------- Supplementary Scan -------
.
uInternet Settings,ProxyOverride = 127.0.0.1:9421
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\users\Reddevil\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Od&oslať do programu OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 10.10.1.230 10.10.1.226
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.bmp"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.dib"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.emf"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.gif"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jfif"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpe"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpeg"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpg"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.png"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.rle"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.tif"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.tiff"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ttc"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ttf"
.
[HKEY_USERS\S-1-5-21-1571910175-1323870229-707124800-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.wmf"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(4216)
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_slk.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\crypserv.exe
c:\windows\system32\taskhost.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\windows\system32\sppsvc.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Completion time: 2012-03-26 10:08:22 - machine was rebooted
ComboFix-quarantined-files.txt 2012-03-26 08:08
ComboFix2.txt 2012-03-25 21:18
.
Pre-Run: Volných bajtů: 182 643 257 344
Post-Run: Volných bajtů: 182 495 834 112
.
- - End Of File - - 2B0616B270198B4E4BDFAEF3580BABD6

AswMBR:

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-03-26 10:10:13
-----------------------------
10:10:13.671 OS Version: Windows 6.1.7601 Service Pack 1
10:10:13.671 Number of processors: 8 586 0x2A07
10:10:13.671 ComputerName: REDDEVIL1 UserName: Reddevil
10:10:16.245 Initialize success
10:10:21.598 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:10:21.598 Disk 0 Vendor: ST950032 0003 Size: 476940MB BusType: 3
10:10:21.598 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
10:10:21.598 Disk 1 Vendor: ST950032 0003 Size: 476940MB BusType: 3
10:10:21.629 Disk 0 MBR read successfully
10:10:21.629 Disk 0 MBR scan
10:10:21.629 Disk 0 Windows 7 default MBR code
10:10:21.645 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 25600 MB offset 2048
10:10:21.645 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 190776 MB offset 52430848
10:10:21.660 Disk 0 Partition - 00 0F Extended LBA 260562 MB offset 443140096
10:10:21.676 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 260561 MB offset 443142144
10:10:21.676 Disk 0 scanning sectors +976771072
10:10:21.754 Disk 0 scanning C:\Windows\system32\drivers
10:10:34.983 Service scanning
10:10:49.475 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
10:10:54.264 Modules scanning
10:11:23.608 Disk 0 trace - called modules:
10:11:23.639 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll iaStor.sys sprs.sys >>UNKNOWN [0x8590e938]<<
10:11:23.655 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x886a9030]
10:11:23.655 3 CLASSPNP.SYS[8ae0459e] -> nt!IofCallDriver -> [0x8673d8a0]
10:11:23.670 5 ACPI.sys[837b13d4] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x86703028]
10:11:23.686 Scan finished successfully
10:11:38.444 Disk 0 MBR has been saved successfully to "C:\Users\Reddevil\Desktop\MBR.dat"
10:11:38.444 The log file has been saved successfully to "C:\Users\Reddevil\Desktop\aswMBR.txt"

Příspěvekod **jaro3** » 26 bře 2012 10:53

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

Stáhni si Memtest:

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.

reddevil1 · Příspěvekod **reddevil1** » 26 bře 2012 12:03

----------------------------------------------------------------------------
CrystalDiskInfo 4.2.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition SP1 [6.1 Build 7601] (x86)
Date : 2012/03/26 11:25:11

-- Controller Map ----------------------------------------------------------
+ Intel(R) Mobile Express Chipset SATA AHCI Controller [ATA]
- ST9500325AS
- ST9500325AS
- Slimtype DVD A DS8A5SH
+ AA4CQ4IS IDE Controller [SCSI]
- NWVQD NC5QJWL23G SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) ST9500325AS : 500.1 GB [0-0-0, pd1]
(2) ST9500325AS : 500.1 GB [1-0-1, pd1]

----------------------------------------------------------------------------
(1) ST9500325AS
----------------------------------------------------------------------------
Model : ST9500325AS
Firmware : 0003SDM1
Serial Number : S2W1N8EL
Disk Size : 500.1 GB (8.4/137.4/500.1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300
Power On Hours : 1699 hod.
Power On Count : 378 krát
Temparature : 38 C (100 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 111 _99 __6 000001D97049 Počet chyb čtení
03 _99 _98 __0 000000000000 Čas na roztočení ploten
04 100 100 _20 00000000017A Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _75 _60 _30 000002572786 Počet chybných hledání
09 _99 _99 __0 0000000006A3 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 _20 00000000017A Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _97 __0 00000000000B Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _62 _50 _45 000026150026 Teplota toku vzduchu
BF 100 100 __0 000000000007 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000005 Počet vypnutí disku
C1 _90 _90 __0 00000000524A Počet cyklů načítání/vymazání
C2 _38 _50 __0 000C00000026 Teplota
C3 _54 _48 __0 000001D97049 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
FE 100 100 __0 000000000000 Ochrana proti pádu

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0C 5A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 20 20 20 20 20 20 20
020: 53 32 57 31 4E 38 45 4C 00 00 40 00 00 04 30 30
030: 30 33 53 44 4D 31 53 54 39 35 30 30 33 32 35 41
040: 53 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 05 06 00 00 00 48 00 48
0A0: 01 F0 00 29 34 6B 7D 09 61 23 34 69 BC 09 61 23
0B0: 40 7F 00 41 00 41 80 80 FF FE 00 00 FE 00 00 00
0C0: 00 00 00 00 00 00 00 00 60 30 3A 38 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 50 00 C5 00 3E 3B 06 19
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1E
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 60 30 3A 38 60 30 3A 38 20 20 00 02 01 40
110: 01 00 50 00 3C 06 3C 0A 00 00 00 3C 00 00 00 08
120: 00 00 00 00 00 1F 02 80 00 00 00 00 00 08 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 3C 00 80 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 10 3B 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 15 18 00 00 00 00 00 00 00 00 10 10 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 EF A5

----------------------------------------------------------------------------
(2) ST9500325AS
----------------------------------------------------------------------------
Model : ST9500325AS
Firmware : 0003SDM1
Serial Number : S2W1RN70
Disk Size : 500.1 GB (8.4/137.4/500.1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300
Power On Hours : 1616 hod.
Power On Count : 373 krát
Temparature : 33 C (91 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 120 _99 __6 00000E8CB193 Počet chyb čtení
03 _99 _99 __0 000000000000 Čas na roztočení ploten
04 100 100 _20 000000000345 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 100 253 _30 00000003C6FF Počet chybných hledání
09 _99 _99 __0 000000000650 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 _20 000000000175 Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _67 _54 _45 000021140021 Teplota toku vzduchu
BF 100 100 __0 000000000001 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000006 Počet vypnutí disku
C1 _97 _97 __0 000000001D0D Počet cyklů načítání/vymazání
C2 _33 _46 __0 000A00000021 Teplota
C3 _57 _54 __0 00000E8CB193 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
FE 100 100 __0 000000000000 Ochrana proti pádu

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0C 5A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 20 20 20 20 20 20 20
020: 53 32 57 31 52 4E 37 30 00 00 40 00 00 04 30 30
030: 30 33 53 44 4D 31 53 54 39 35 30 30 33 32 35 41
040: 53 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 05 06 00 00 00 48 00 48
0A0: 01 F0 00 29 34 6B 7D 09 61 23 34 69 BC 09 61 23
0B0: 40 7F 00 42 00 42 80 80 FF FE 00 00 FE 00 00 00
0C0: 00 00 00 00 00 00 00 00 60 30 3A 38 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 50 00 C5 00 3E 3C E0 9D
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1E
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 60 30 3A 38 60 30 3A 38 20 20 00 02 01 40
110: 01 00 50 00 3C 06 3C 0A 00 00 00 3C 00 00 00 08
120: 00 00 00 00 00 1F 02 80 00 00 00 00 00 08 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 3C 00 80 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 10 3B 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 15 18 00 00 00 00 00 00 00 00 10 10 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9E A5

MEMTEST:

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4576] Fri Dec 09 00:04:07 2011 >> Test started. Allocated 930 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[2624] Fri Dec 09 00:04:07 2011 >> Test started. Allocated 3522 MB of memory for testing.
[4576] Fri Dec 09 00:04:51 2011 >> Memory error found copying between 0xf0bd98bc, 0xd3a69334, difference =1000
[2624] Fri Dec 09 00:05:16 2011 >> Memory error found copying between 0xb8af71c8, 0x2a9b6334, difference =1000
[2624] Fri Dec 09 00:06:03 2011 >> Test finished. 1 errors found.

[4576] Fri Dec 09 00:06:04 2011 >> Test finished. 1 errors found.

[2624] Fri Dec 09 00:06:04 2011 >> Memory error found copying between 0xd844e334, 0x4a30e0f8, difference =1000

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4576] Fri Dec 09 00:09:48 2011 >> Test started. Allocated 3514 MB of memory for testing.
[4576] Fri Dec 09 00:13:19 2011 >> Memory error found copying between 0x9b4a256c, 0xd362334, difference =1000
[4576] Fri Dec 09 00:13:30 2011 >> Test finished. 1 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[3844] Fri Dec 09 00:17:21 2011 >> Test started. Allocated 1142 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[1348] Fri Dec 09 00:17:21 2011 >> Test started. Allocated 3278 MB of memory for testing.
[3844] Fri Dec 09 00:18:53 2011 >> Memory error found copying between 0xe9f0cd24, 0xc639c334, difference =1000
[3844] Fri Dec 09 00:18:57 2011 >> Memory error found copying between 0xe9f0cb3c, 0xc639c334, difference =1000
[1348] Fri Dec 09 00:19:26 2011 >> Memory error found copying between 0xaef07388, 0x19467334, difference =1000
[3844] Fri Dec 09 00:19:33 2011 >> Memory error found copying between 0xe9f0ca44, 0xc639c334, difference =1000
[3844] Fri Dec 09 00:19:37 2011 >> Memory error found copying between 0xe9f0cae0, 0xc639c334, difference =1000
[3844] Fri Dec 09 00:20:24 2011 >> Memory error found copying between 0xe9f0caac, 0xc639c334, difference =1000
[1348] Fri Dec 09 00:20:25 2011 >> Test finished. 1 errors found.

[3844] Fri Dec 09 00:20:26 2011 >> Test finished. 5 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[1172] Fri Dec 09 00:26:35 2011 >> Test started. Allocated 1138 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4876] Fri Dec 09 00:26:35 2011 >> Test started. Allocated 3268 MB of memory for testing.
[4876] Fri Dec 09 00:26:56 2011 >> Memory error found copying between 0xb3d7f398, 0x1df5f334, difference =1000
[1172] Fri Dec 09 00:27:21 2011 >> Test finished. 0 errors found.

[4876] Fri Dec 09 00:27:22 2011 >> Test finished. 1 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[3972] Fri Dec 09 00:29:56 2011 >> Test started. Allocated 1148 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4868] Fri Dec 09 00:29:56 2011 >> Test started. Allocated 3342 MB of memory for testing.
[3972] Fri Dec 09 00:33:31 2011 >> Test finished. 0 errors found.

[4868] Fri Dec 09 00:33:32 2011 >> Test finished. 0 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[720] Fri Dec 09 21:34:33 2011 >> Test started. Allocated 1065 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[3340] Fri Dec 09 21:34:33 2011 >> Test started. Allocated 3339 MB of memory for testing.
[720] Fri Dec 09 21:44:36 2011 >> Status Update: 76.3% Coverage, 0 Errors
[3340] Fri Dec 09 21:44:36 2011 >> Status Update: 7.9% Coverage, 0 Errors
[720] Fri Dec 09 21:54:21 2011 >> Test finished. 0 errors found.

[3340] Fri Dec 09 21:54:33 2011 >> Status Update: 16.0% Coverage, 0 Errors
[3340] Fri Dec 09 21:54:44 2011 >> Test finished. 0 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4700] Fri Dec 09 22:14:22 2011 >> Test started. Allocated 1132 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4984] Fri Dec 09 22:14:22 2011 >> Test started. Allocated 3532 MB of memory for testing.
[4700] Fri Dec 09 22:24:22 2011 >> Status Update: 69.9% Coverage, 0 Errors
[4984] Fri Dec 09 22:24:22 2011 >> Status Update: 7.3% Coverage, 0 Errors
[4700] Fri Dec 09 22:34:22 2011 >> Status Update: 141.0% Coverage, 0 Errors
[4984] Fri Dec 09 22:34:22 2011 >> Status Update: 15.0% Coverage, 0 Errors
[4700] Fri Dec 09 22:44:22 2011 >> Status Update: 209.7% Coverage, 0 Errors
[4984] Fri Dec 09 22:44:22 2011 >> Status Update: 22.4% Coverage, 0 Errors
[4700] Fri Dec 09 22:54:22 2011 >> Status Update: 282.4% Coverage, 0 Errors
[4984] Fri Dec 09 22:54:22 2011 >> Status Update: 30.4% Coverage, 0 Errors
[4700] Fri Dec 09 23:04:22 2011 >> Status Update: 359.0% Coverage, 0 Errors
[4984] Fri Dec 09 23:04:22 2011 >> Status Update: 36.5% Coverage, 0 Errors
[4700] Fri Dec 09 23:14:22 2011 >> Status Update: 419.6% Coverage, 0 Errors
[4984] Fri Dec 09 23:14:22 2011 >> Status Update: 45.2% Coverage, 0 Errors
[4700] Fri Dec 09 23:24:22 2011 >> Status Update: 501.7% Coverage, 0 Errors
[4984] Fri Dec 09 23:24:22 2011 >> Status Update: 51.3% Coverage, 0 Errors
[4700] Fri Dec 09 23:33:53 2011 >> Test finished. 0 errors found.

[4984] Fri Dec 09 23:33:54 2011 >> Test finished. 0 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[2160] Sat Dec 10 11:40:10 2011 >> Test started. Allocated 1585 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4324] Sat Dec 10 11:40:10 2011 >> Test started. Allocated 3283 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[1500] Sat Dec 10 11:40:10 2011 >> Test started. Allocated 3249 MB of memory for testing.
[1500] Sat Dec 10 11:40:53 2011 >> Memory error found copying between 0xd3ca6374, 0x3d1258fc, difference =1000
[1500] Sat Dec 10 11:40:55 2011 >> Memory error found copying between 0xcfcd45fc, 0x39154374, difference =1000
[1500] Sat Dec 10 11:41:12 2011 >> Memory error found copying between 0xd47a7374, 0x3dc271c4, difference =1000
[1500] Sat Dec 10 11:41:29 2011 >> Memory error found copying between 0xca85c480, 0x33cdc374, difference =1000
[1500] Sat Dec 10 11:41:32 2011 >> Memory error found copying between 0xd4806ca4, 0x3dc86374, difference =1000
[1500] Sat Dec 10 11:42:28 2011 >> Memory error found copying between 0xcb0905a4, 0x34510374, difference =1000
[1500] Sat Dec 10 11:42:40 2011 >> Memory error found copying between 0xd500e374, 0x3e48e098, difference =1000
[1500] Sat Dec 10 11:42:50 2011 >> Memory error found copying between 0xd3b29568, 0x3cfa9374, difference =1000

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4908] Sat Dec 10 11:54:14 2011 >> Test started. Allocated 1552 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4792] Sat Dec 10 11:54:14 2011 >> Test started. Allocated 3366 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[1048] Sat Dec 10 11:54:14 2011 >> Test started. Allocated 3329 MB of memory for testing.
[4908] Sat Dec 10 12:04:14 2011 >> Status Update: 33.3% Coverage, 0 Errors
[4792] Sat Dec 10 12:04:14 2011 >> Status Update: 7.3% Coverage, 0 Errors
[1048] Sat Dec 10 12:04:14 2011 >> Status Update: 7.5% Coverage, 0 Errors
[1048] Sat Dec 10 12:10:19 2011 >> Memory error found copying between 0xf8d36f98, 0x64b96374, difference =1000
[1048] Sat Dec 10 12:13:00 2011 >> Memory error found copying between 0xf9afc5b8, 0x6595c374, difference =1000
[4908] Sat Dec 10 12:14:14 2011 >> Status Update: 67.7% Coverage, 0 Errors
[4792] Sat Dec 10 12:14:14 2011 >> Status Update: 13.9% Coverage, 0 Errors
[1048] Sat Dec 10 12:14:14 2011 >> Status Update: 15.3% Coverage, 2 Errors
[1048] Sat Dec 10 12:16:15 2011 >> Memory error found copying between 0xf97ba374, 0x6561a238, difference =1000
[1048] Sat Dec 10 12:16:37 2011 >> Memory error found copying between 0xf984b374, 0x656aafc0, difference =1000
[1048] Sat Dec 10 12:23:05 2011 >> Test finished. 4 errors found.

[4908] Sat Dec 10 12:23:06 2011 >> Test finished. 0 errors found.

[4792] Sat Dec 10 12:23:07 2011 >> Test finished. 0 errors found.

[4256] Sat Dec 10 12:23:59 2011 >> Memory error detected between 0xab713374, 0x13d13374 difference = 1000

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[2812] Sat Dec 10 12:24:25 2011 >> Test started. Allocated 2080 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[3956] Sat Dec 10 12:24:25 2011 >> Test started. Allocated 3244 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4256] Sat Dec 10 12:24:25 2011 >> Test started. Allocated 3213 MB of memory for testing.
[4256] Sat Dec 10 12:24:25 2011 >> Test finished. 2 errors found.

[2812] Sat Dec 10 12:24:27 2011 >> Test finished. 0 errors found.

[3956] Sat Dec 10 12:24:32 2011 >> Test finished. 0 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4552] Sat Dec 10 12:25:31 2011 >> Test started. Allocated 1966 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4020] Sat Dec 10 12:25:31 2011 >> Test started. Allocated 3364 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4964] Sat Dec 10 12:25:31 2011 >> Test started. Allocated 3326 MB of memory for testing.
[4964] Sat Dec 10 12:28:14 2011 >> Memory error found copying between 0x9c3be374, 0x821e27c, difference =1000
[4964] Sat Dec 10 12:31:37 2011 >> Memory error found copying between 0x9ca1d698, 0x887d374, difference =1000
[4964] Sat Dec 10 12:32:53 2011 >> Memory error found copying between 0x9cc1b988, 0x8a7b374, difference =1000
[4964] Sat Dec 10 12:35:29 2011 >> Memory error found copying between 0xcf29f3e0, 0x3b0ff374, difference =1000
[4552] Sat Dec 10 12:35:31 2011 >> Status Update: 20.1% Coverage, 0 Errors
[4020] Sat Dec 10 12:35:31 2011 >> Status Update: 7.1% Coverage, 0 Errors
[4964] Sat Dec 10 12:35:31 2011 >> Status Update: 7.2% Coverage, 4 Errors
[4552] Sat Dec 10 12:43:09 2011 >> Memory error found copying between 0xfa860374, 0xbd130190, difference =1000
[4552] Sat Dec 10 12:43:47 2011 >> Memory error found copying between 0xfa95e374, 0xbd22d72c, difference =1000
[4552] Sat Dec 10 12:45:31 2011 >> Status Update: 41.0% Coverage, 2 Errors
[4020] Sat Dec 10 12:45:31 2011 >> Status Update: 13.6% Coverage, 0 Errors
[4964] Sat Dec 10 12:45:31 2011 >> Status Update: 13.9% Coverage, 4 Errors
[4552] Sat Dec 10 12:55:31 2011 >> Status Update: 61.3% Coverage, 2 Errors
[4020] Sat Dec 10 12:55:31 2011 >> Status Update: 21.8% Coverage, 0 Errors
[4964] Sat Dec 10 12:55:31 2011 >> Status Update: 22.3% Coverage, 4 Errors
[4552] Sat Dec 10 13:02:13 2011 >> Memory error found copying between 0xf9cd2374, 0xbc5a1d78, difference =1000
[4552] Sat Dec 10 13:05:31 2011 >> Status Update: 82.7% Coverage, 3 Errors
[4020] Sat Dec 10 13:05:31 2011 >> Status Update: 27.6% Coverage, 0 Errors
[4964] Sat Dec 10 13:05:31 2011 >> Status Update: 28.2% Coverage, 4 Errors
[4552] Sat Dec 10 13:05:38 2011 >> Memory error found copying between 0xfa95e374, 0xbd22d918, difference =1000
[4964] Sat Dec 10 13:07:14 2011 >> Memory error found copying between 0x9ca1d410, 0x887d374, difference =1000
[4552] Sat Dec 10 13:14:04 2011 >> Memory error found copying between 0xfa95e374, 0xbd22e1f8, difference =1000
[4964] Sat Dec 10 13:14:46 2011 >> Memory error found copying between 0xb1d28374, 0x1db882a8, difference =1000
[4552] Sat Dec 10 13:15:31 2011 >> Status Update: 106.2% Coverage, 5 Errors
[4020] Sat Dec 10 13:15:31 2011 >> Status Update: 35.5% Coverage, 0 Errors
[4964] Sat Dec 10 13:15:31 2011 >> Status Update: 36.3% Coverage, 6 Errors
[4964] Sat Dec 10 13:15:44 2011 >> Memory error found copying between 0x9c91f374, 0x877f2e4, difference =1000
[4964] Sat Dec 10 13:17:42 2011 >> Memory error found copying between 0x9cc25374, 0x8a8533c, difference =1000
[4964] Sat Dec 10 13:18:03 2011 >> Memory error found copying between 0x9bce7374, 0x7b472dc, difference =1000
[4552] Sat Dec 10 13:25:31 2011 >> Status Update: 123.7% Coverage, 5 Errors
[4020] Sat Dec 10 13:25:31 2011 >> Status Update: 44.2% Coverage, 0 Errors
[4964] Sat Dec 10 13:25:31 2011 >> Status Update: 45.1% Coverage, 9 Errors
[4964] Sat Dec 10 13:29:20 2011 >> Memory error found copying between 0x9cc1b938, 0x8a7b374, difference =1000
[4964] Sat Dec 10 13:34:24 2011 >> Memory error found copying between 0xce440374, 0x3a2a02e0, difference =1000
[4552] Sat Dec 10 13:35:31 2011 >> Status Update: 149.3% Coverage, 5 Errors
[4020] Sat Dec 10 13:35:31 2011 >> Status Update: 50.1% Coverage, 0 Errors
[4964] Sat Dec 10 13:35:31 2011 >> Status Update: 51.1% Coverage, 11 Errors
[4552] Sat Dec 10 13:45:31 2011 >> Status Update: 166.5% Coverage, 5 Errors
[4020] Sat Dec 10 13:45:31 2011 >> Status Update: 56.0% Coverage, 0 Errors
[4964] Sat Dec 10 13:45:31 2011 >> Status Update: 57.1% Coverage, 11 Errors
[4964] Sat Dec 10 13:48:52 2011 >> Memory error found copying between 0x9bd6af5c, 0x7bca374, difference =1000
[4552] Sat Dec 10 13:52:39 2011 >> Memory error found copying between 0xfa95e374, 0xbd22d9b0, difference =1000
[4552] Sat Dec 10 13:55:31 2011 >> Status Update: 184.1% Coverage, 6 Errors
[4020] Sat Dec 10 13:55:31 2011 >> Status Update: 65.9% Coverage, 0 Errors
[4964] Sat Dec 10 13:55:31 2011 >> Status Update: 67.2% Coverage, 12 Errors
[4552] Sat Dec 10 14:05:31 2011 >> Status Update: 213.3% Coverage, 6 Errors
[4020] Sat Dec 10 14:05:31 2011 >> Status Update: 71.8% Coverage, 0 Errors
[4964] Sat Dec 10 14:05:31 2011 >> Status Update: 73.2% Coverage, 12 Errors
[4964] Sat Dec 10 14:15:19 2011 >> Memory error found copying between 0xb2094374, 0x1def435c, difference =1000
[4552] Sat Dec 10 14:15:31 2011 >> Status Update: 230.4% Coverage, 6 Errors
[4020] Sat Dec 10 14:15:31 2011 >> Status Update: 77.6% Coverage, 0 Errors
[4964] Sat Dec 10 14:15:31 2011 >> Status Update: 79.2% Coverage, 13 Errors
[4964] Sat Dec 10 14:16:17 2011 >> Memory error found copying between 0xb1d28374, 0x1db87738, difference =1000
[4964] Sat Dec 10 14:22:21 2011 >> Memory error found copying between 0xce7ae6cc, 0x3a60e374, difference =1000
[4552] Sat Dec 10 14:25:31 2011 >> Status Update: 248.1% Coverage, 6 Errors
[4020] Sat Dec 10 14:25:31 2011 >> Status Update: 89.1% Coverage, 0 Errors
[4964] Sat Dec 10 14:25:31 2011 >> Status Update: 90.8% Coverage, 15 Errors
[4964] Sat Dec 10 14:29:12 2011 >> Memory error found copying between 0xcef55428, 0x3adb5374, difference =1000
[4964] Sat Dec 10 14:32:31 2011 >> Memory error found copying between 0x9cc1b404, 0x8a7b374, difference =1000
[4552] Sat Dec 10 14:35:31 2011 >> Status Update: 265.4% Coverage, 6 Errors
[4020] Sat Dec 10 14:35:31 2011 >> Status Update: 95.0% Coverage, 0 Errors
[4964] Sat Dec 10 14:35:31 2011 >> Status Update: 96.8% Coverage, 17 Errors
[4964] Sat Dec 10 14:38:58 2011 >> Memory error found copying between 0x9cb1d374, 0x897c784, difference =1000
[4964] Sat Dec 10 14:43:42 2011 >> Memory error found copying between 0xb1d28374, 0x1db87df8, difference =1000
[4552] Sat Dec 10 14:45:31 2011 >> Status Update: 299.6% Coverage, 6 Errors
[4020] Sat Dec 10 14:45:31 2011 >> Status Update: 100.9% Coverage, 0 Errors
[4964] Sat Dec 10 14:45:31 2011 >> Status Update: 102.9% Coverage, 19 Errors
[4552] Sat Dec 10 14:54:04 2011 >> Memory error found copying between 0xfa860374, 0xbd12fc44, difference =1000
[4552] Sat Dec 10 14:55:31 2011 >> Status Update: 316.8% Coverage, 7 Errors
[4020] Sat Dec 10 14:55:31 2011 >> Status Update: 106.8% Coverage, 0 Errors
[4964] Sat Dec 10 14:55:31 2011 >> Status Update: 108.9% Coverage, 19 Errors
[4964] Sat Dec 10 14:59:10 2011 >> Memory error found copying between 0x9cb1d374, 0x897cc6c, difference =1000
[4552] Sat Dec 10 15:05:31 2011 >> Status Update: 334.2% Coverage, 7 Errors
[4020] Sat Dec 10 15:05:31 2011 >> Status Update: 112.8% Coverage, 0 Errors
[4964] Sat Dec 10 15:05:32 2011 >> Status Update: 120.5% Coverage, 20 Errors
[4964] Sat Dec 10 15:07:23 2011 >> Memory error found copying between 0xb1d28374, 0x1db878b4, difference =1000
[4552] Sat Dec 10 15:15:31 2011 >> Status Update: 351.8% Coverage, 7 Errors
[4020] Sat Dec 10 15:15:31 2011 >> Status Update: 126.3% Coverage, 0 Errors
[4964] Sat Dec 10 15:15:32 2011 >> Status Update: 128.8% Coverage, 21 Errors
[4964] Sat Dec 10 15:16:13 2011 >> Memory error found copying between 0x9cb1d374, 0x897d36c, difference =1000
[4552] Sat Dec 10 15:25:31 2011 >> Status Update: 368.7% Coverage, 7 Errors
[4020] Sat Dec 10 15:25:31 2011 >> Status Update: 132.1% Coverage, 0 Errors
[4964] Sat Dec 10 15:25:32 2011 >> Status Update: 134.7% Coverage, 22 Errors
[4964] Sat Dec 10 15:25:46 2011 >> Memory error found copying between 0x9c305374, 0x8165294, difference =1000
[4964] Sat Dec 10 15:26:02 2011 >> Memory error found copying between 0x9cea3374, 0x8d02fa8, difference =1000
[4552] Sat Dec 10 15:34:04 2011 >> Memory error detected between 0xfa95e374, 0xbd22e374 difference = 1000
[4964] Sat Dec 10 15:35:03 2011 >> Memory error found copying between 0xce3a2684, 0x3a202374, difference =1000
[4964] Sat Dec 10 15:35:14 2011 >> Memory error found copying between 0x9c16265c, 0x7fc2374, difference =1000
[4552] Sat Dec 10 15:35:31 2011 >> Status Update: 409.7% Coverage, 8 Errors
[4020] Sat Dec 10 15:35:31 2011 >> Status Update: 138.2% Coverage, 0 Errors
[4964] Sat Dec 10 15:35:32 2011 >> Status Update: 140.8% Coverage, 26 Errors
[4552] Sat Dec 10 15:45:31 2011 >> Status Update: 427.0% Coverage, 8 Errors
[4020] Sat Dec 10 15:45:31 2011 >> Status Update: 144.1% Coverage, 0 Errors
[4964] Sat Dec 10 15:45:32 2011 >> Status Update: 146.9% Coverage, 26 Errors
[4964] Sat Dec 10 15:52:06 2011 >> Memory error found copying between 0xce69f508, 0x3a4ff374, difference =1000
[4552] Sat Dec 10 15:55:31 2011 >> Status Update: 444.5% Coverage, 8 Errors
[4020] Sat Dec 10 15:55:31 2011 >> Status Update: 150.1% Coverage, 0 Errors
[4964] Sat Dec 10 15:55:32 2011 >> Status Update: 152.9% Coverage, 27 Errors
[4552] Sat Dec 10 15:58:16 2011 >> Memory error found copying between 0xfa7c2374, 0xbd0922ec, difference =1000
[4964] Sat Dec 10 16:02:01 2011 >> Memory error found copying between 0x9d3b4374, 0x921433c, difference =1000
[4552] Sat Dec 10 16:05:31 2011 >> Status Update: 461.5% Coverage, 9 Errors
[4020] Sat Dec 10 16:05:31 2011 >> Status Update: 155.8% Coverage, 0 Errors
[4964] Sat Dec 10 16:05:32 2011 >> Status Update: 158.9% Coverage, 28 Errors
[4552] Sat Dec 10 16:15:31 2011 >> Status Update: 479.5% Coverage, 9 Errors
[4020] Sat Dec 10 16:15:31 2011 >> Status Update: 172.6% Coverage, 0 Errors
[4964] Sat Dec 10 16:15:32 2011 >> Status Update: 175.9% Coverage, 28 Errors
[4964] Sat Dec 10 16:19:51 2011 >> Memory error found copying between 0xcee12374, 0x3ac72340, difference =1000
[4552] Sat Dec 10 16:25:31 2011 >> Status Update: 496.8% Coverage, 9 Errors
[4020] Sat Dec 10 16:25:32 2011 >> Status Update: 178.6% Coverage, 0 Errors
[4964] Sat Dec 10 16:25:32 2011 >> Status Update: 181.9% Coverage, 29 Errors
[4552] Sat Dec 10 16:28:49 2011 >> Memory error found copying between 0xf9cf0374, 0xbc5c0094, difference =1000
[4964] Sat Dec 10 16:29:03 2011 >> Memory error found copying between 0xb1d28374, 0x1db88048, difference =1000
[4964] Sat Dec 10 16:33:30 2011 >> Memory error found copying between 0x9cb1d374, 0x897d114, difference =1000
[4552] Sat Dec 10 16:35:31 2011 >> Status Update: 514.1% Coverage, 10 Errors
[4020] Sat Dec 10 16:35:32 2011 >> Status Update: 184.5% Coverage, 0 Errors
[4964] Sat Dec 10 16:35:32 2011 >> Status Update: 188.0% Coverage, 31 Errors
[4552] Sat Dec 10 16:37:01 2011 >> Memory error found copying between 0xf9cf0374, 0xbc5c02d8, difference =1000
[4552] Sat Dec 10 16:45:31 2011 >> Status Update: 531.1% Coverage, 11 Errors
[4020] Sat Dec 10 16:45:32 2011 >> Status Update: 190.3% Coverage, 0 Errors
[4964] Sat Dec 10 16:45:32 2011 >> Status Update: 193.9% Coverage, 31 Errors
[4964] Sat Dec 10 16:50:16 2011 >> Memory error found copying between 0x9cc1b490, 0x8a7b374, difference =1000
[4964] Sat Dec 10 16:50:44 2011 >> Memory error found copying between 0xb1d28374, 0x1db87c30, difference =1000
[4552] Sat Dec 10 16:55:32 2011 >> Status Update: 581.6% Coverage, 11 Errors
[4020] Sat Dec 10 16:55:32 2011 >> Status Update: 196.5% Coverage, 0 Errors
[4964] Sat Dec 10 16:55:32 2011 >> Status Update: 200.2% Coverage, 33 Errors
[4964] Sat Dec 10 16:55:33 2011 >> Memory error found copying between 0xb1d28374, 0x1db8779c, difference =1000
[4964] Sat Dec 10 16:55:55 2011 >> Memory error found copying between 0x9bc67374, 0x7ac7170, difference =1000
[4964] Sat Dec 10 16:59:21 2011 >> Memory error found copying between 0x9cc1bf6c, 0x8a7b374, difference =1000
[4964] Sat Dec 10 16:59:55 2011 >> Memory error found copying between 0xb1d28374, 0x1db882b4, difference =1000
[4964] Sat Dec 10 17:03:59 2011 >> Memory error found copying between 0x9cc1b398, 0x8a7b374, difference =1000
[4552] Sat Dec 10 17:05:32 2011 >> Status Update: 599.1% Coverage, 11 Errors
[4020] Sat Dec 10 17:05:32 2011 >> Status Update: 202.5% Coverage, 0 Errors
[4964] Sat Dec 10 17:05:32 2011 >> Status Update: 206.3% Coverage, 38 Errors
[4964] Sat Dec 10 17:10:46 2011 >> Memory error found copying between 0x9cc1b3bc, 0x8a7b374, difference =1000
[4552] Sat Dec 10 17:15:32 2011 >> Status Update: 616.4% Coverage, 11 Errors
[4020] Sat Dec 10 17:15:32 2011 >> Status Update: 208.4% Coverage, 0 Errors
[4964] Sat Dec 10 17:15:32 2011 >> Status Update: 212.4% Coverage, 39 Errors
[4552] Sat Dec 10 17:18:34 2011 >> Memory error detected between 0xfa860374, 0xbd130374 difference = 1000
[4552] Sat Dec 10 17:25:32 2011 >>
[4020] Sat Dec 10 17:25:32 2011 >> Status Update: 214.1% Coverage, 0 Errorss
[4964] Sat Dec 10 17:25:32 2011 >> Status Update: 218.1% Coverage, 39 Errors
[4964] Sat Dec 10 17:30:31 2011 >> Memory error found copying between 0x9cb1d374, 0x897d0f8, difference =1000
[4552] Sat Dec 10 17:34:52 2011 >> Memory error found copying between 0xfaa5a3d8, 0xbd32a374, difference =1000
[4552] Sat Dec 10 17:35:32 2011 >> Status Update: 650.2% Coverage, 14 Errors
[4020] Sat Dec 10 17:35:32 2011 >> Status Update: 219.9% Coverage, 0 Errors
[4964] Sat Dec 10 17:35:32 2011 >> Status Update: 224.1% Coverage, 40 Errors
[4964] Sat Dec 10 17:44:01 2011 >> Memory error found copying between 0x9ce073b4, 0x8c67374, difference =1000
[4964] Sat Dec 10 17:44:46 2011 >> Memory error found copying between 0x9c91f374, 0x877e72c, difference =1000
[4964] Sat Dec 10 17:45:04 2011 >> Memory error found copying between 0x9cb1d374, 0x897d2e4, difference =1000
[4552] Sat Dec 10 17:45:32 2011 >> Status Update: 668.3% Coverage, 14 Errors
[4020] Sat Dec 10 17:45:32 2011 >> Status Update: 241.0% Coverage, 0 Errors
[4964] Sat Dec 10 17:45:32 2011 >> Status Update: 245.5% Coverage, 43 Errors
[4964] Sat Dec 10 17:49:50 2011 >> Memory error found copying between 0x9cc1b970, 0x8a7b374, difference =1000
[4964] Sat Dec 10 17:50:14 2011 >> Memory error found copying between 0x9ce1950c, 0x8c79374, difference =1000
[4552] Sat Dec 10 17:51:18 2011 >> Memory error found copying between 0xfa95e374, 0xbd22db30, difference =1000
[4552] Sat Dec 10 17:55:32 2011 >> Status Update: 685.5% Coverage, 15 Errors
[4020] Sat Dec 10 17:55:32 2011 >> Status Update: 246.8% Coverage, 0 Errors
[4964] Sat Dec 10 17:55:32 2011 >> Status Update: 251.5% Coverage, 45 Errors
[4552] Sat Dec 10 18:00:22 2011 >> Memory error found copying between 0xfa95e374, 0xbd22e1f0, difference =1000
[4964] Sat Dec 10 18:03:14 2011 >> Memory error found copying between 0xce69f9c8, 0x3a4ff374, difference =1000
[4552] Sat Dec 10 18:04:45 2011 >> Memory error found copying between 0xf9cd2374, 0xbc5a2354, difference =1000
[4552] Sat Dec 10 18:05:32 2011 >> Status Update: 702.8% Coverage, 17 Errors
[4020] Sat Dec 10 18:05:32 2011 >> Status Update: 252.7% Coverage, 0 Errors
[4964] Sat Dec 10 18:05:32 2011 >> Status Update: 257.6% Coverage, 46 Errors
[4964] Sat Dec 10 18:14:23 2011 >> Test finished. 46 errors found.

[4552] Sat Dec 10 18:14:24 2011 >> Test finished. 17 errors found.

[4020] Sat Dec 10 18:14:26 2011 >> Test finished. 0 errors found.

[4540] Sat Dec 10 18:30:36 2011 >> Memory error detected between 0xa53a8374, 0xeab8374 difference = 1000

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[1680] Sat Dec 10 18:30:43 2011 >> Test started. Allocated 2712 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4540] Sat Dec 10 18:30:43 2011 >> Test started. Allocated 3289 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4980] Sat Dec 10 18:30:43 2011 >> Test started. Allocated 3254 MB of memory for testing.
[4540] Sat Dec 10 18:30:49 2011 >> Test finished. 2 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4712] Sat Dec 10 18:31:09 2011 >> Test started. Allocated 244 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4540] Sat Dec 10 18:31:09 2011 >> Test started. Allocated 3290 MB of memory for testing.
[4540] Sat Dec 10 18:31:17 2011 >> Memory error found copying between 0xe13fc374, 0x4ab0c0a8, difference =1000
[4540] Sat Dec 10 18:31:20 2011 >> Memory error found copying between 0x9f738374, 0x8e48244, difference =1000
[4540] Sat Dec 10 18:31:28 2011 >> Test finished. 2 errors found.

[4712] Sat Dec 10 18:31:32 2011 >> Test finished. 0 errors found.

[1680] Sat Dec 10 18:31:35 2011 >> Test finished. 0 errors found.

[4980] Sat Dec 10 18:31:36 2011 >> Test finished. 0 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[2804] Sat Dec 10 19:09:17 2011 >> Test started. Allocated 2202 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[4256] Sat Dec 10 19:09:17 2011 >> Test started. Allocated 3518 MB of memory for testing.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[1284] Sat Dec 10 19:09:17 2011 >> Test started. Allocated 3486 MB of memory for testing.
[2804] Sat Dec 10 19:19:17 2011 >> Status Update: 16.7% Coverage, 0 Errors
[4256] Sat Dec 10 19:19:17 2011 >> Status Update: 6.7% Coverage, 0 Errors
[1284] Sat Dec 10 19:19:17 2011 >> Status Update: 6.8% Coverage, 0 Errors
[2804] Sat Dec 10 19:29:17 2011 >> Status Update: 34.0% Coverage, 0 Errors
[4256] Sat Dec 10 19:29:17 2011 >> Status Update: 12.8% Coverage, 0 Errors
[1284] Sat Dec 10 19:29:17 2011 >> Status Update: 13.1% Coverage, 0 Errors
[2804] Sat Dec 10 19:39:17 2011 >> Status Update: 50.7% Coverage, 0 Errors
[4256] Sat Dec 10 19:39:17 2011 >> Status Update: 19.8% Coverage, 0 Errors
[1284] Sat Dec 10 19:39:17 2011 >> Status Update: 20.9% Coverage, 0 Errors
[4256] Sat Dec 10 19:47:04 2011 >> Test finished. 0 errors found.

[1284] Sat Dec 10 19:47:54 2011 >> Test finished. 0 errors found.

[2804] Sat Dec 10 19:47:55 2011 >> Test finished. 0 errors found.

======== Starting new MemTest session ========
MemTest PRO 4.0 (c) 2009, HCI Design (http://hcidesign.com/memtest)
NOTE: greater than 100% coverage is possible. Each 100% indicates a thorough testing of all allocated RAM, however, intermittent errors may take multiple 100% cycles to be detected.

[1072] Mon Mar 26 11:45:20 2012 >> Test started. Allocated 1024 MB of memory for testing.
[1072] Mon Mar 26 11:55:20 2012 >> Status Update: 63.6% Coverage, 0 Errors

Veľká prosba o kontrolu logu Vyřešeno

Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Re: Veľká prosba o kontrolu logu

Kdo je online