Scan result of Farbar Recovery Scan Tool Version: 29-02-2012 01 Ran by SYSTEM at 03-03-2012 00:25:29 Running from I:\ Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US) The current controlset is ControlSet003 ========================== Registry (Whitelisted) ============= HKLM\...\Run: [Acronis Scheduler2 Service] "E:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" [x] HKLM\...\Run: [RtHDVCpl] E:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [12673128 2011-08-16] (Realtek Semiconductor) HKLM-x32\...\Run: [Lachesis] E:\Program Files (x86)\Razer\Lachesis\razerhid.exe [172032 2008-10-14] () HKLM-x32\...\Run: [Lycosa] "E:\Program Files (x86)\Razer\Lycosa\razerhid.exe" [147456 2008-10-16] (Razer USA Ltd.) HKLM-x32\...\Run: [CTxfiHlp] CTXFIHLP.EXE [x] HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "E:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [37296 2011-06-07] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe ARM] "E:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [843712 2012-01-02] (Adobe Systems Incorporated) HKU\Adam\...\Run: [Azureus Ultra Accelerator] "E:\Program Files (x86)\Azureus Ultra Accelerator\Azureus Ultra Accelerator.exe" -tray [920576 2011-06-13] (TrafficSpeeders LLC) HKU\Adam\...\Run: [DAEMON Tools Lite] "E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [4910912 2011-08-01] (DT Soft Ltd) HKU\Adam\...\Run: [Raptr] E:\Program Files (x86)\Raptr\raptrstub.exe --startup [53160 2012-02-07] (Raptr, Inc) HKU\UpdatusUser\...\Run: [Azureus Ultra Accelerator] "E:\Program Files (x86)\Azureus Ultra Accelerator\Azureus Ultra Accelerator.exe" -tray [920576 2011-06-13] (TrafficSpeeders LLC) HKU\UpdatusUser\...\Run: [DAEMON Tools Lite] "E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [4910912 2011-08-01] (DT Soft Ltd) HKU\UpdatusUser\...\Run: [Raptr] E:\Program Files (x86)\Raptr\raptrstub.exe --startup [53160 2012-02-07] (Raptr, Inc) Tcpip\Parameters: [DhcpNameServer] 62.179.1.63 62.179.1.62 ==================== Services (Whitelisted) ====== 4 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) 2 gupdate1c9bb50fb627f90; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [133104 2009-04-12] (Google Inc.) 2 OODefragAgent; "C:\Program Files\OO Software\Defrag\oodag.exe" [3060040 2010-08-30] (O&O Software GmbH) 3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP4\RpcAgentSrv.exe [93848 2009-07-13] (SiSoftware) 4 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) 2 WDDMService; "C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe" [317328 2011-08-01] (WDC) 2 WDFMEService; "C:\Program Files\Western Digital\WD SmartWare\WDFME.exe" [1978256 2011-08-01] (Western Digital ) 2 WDRulesService; "C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe" [1338256 2011-08-01] (Western Digital ) 2 AcrSch2Svc; "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe" [x] ========================== Drivers (Whitelisted) ============= 3 amdsata; C:\Windows\System32\DRIVERS\amdsata.sys [105040 2009-04-21] (AMD) 0 amdxata; C:\Windows\System32\DRIVERS\amdxata.sys [28752 2009-04-21] (AMD) 2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2009-03-25] () 3 CT20XUT.SYS; C:\Windows\System32\drivers\CT20XUT.SYS [230488 2010-07-07] (Creative Technology Ltd.) 3 ha20x22k; C:\Windows\System32\drivers\ha20x22k.sys [1612888 2010-07-07] (Creative Technology Ltd) 0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-07-13] (Paragon Software Group) 2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2009-03-25] () 3 Lycosa; C:\Windows\System32\drivers\Lycosa.sys [20608 2008-05-22] (Razer USA Ltd.) 3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [60416 2008-07-21] (Realtek Semiconductor Corporation ) 3 RTL8169; C:\Windows\System32\DRIVERS\Rtlh64.sys [108032 2007-06-24] (Realtek Corporation ) 0 speedfan; C:\Windows\SysWow64\speedfan.sys [29592 2011-03-18] (Almico Software) 0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2011-08-17] (Duplex Secure Ltd.) 0 timounter; C:\Windows\System32\DRIVERS\timntr.sys [970336 2011-08-17] (Acronis) 3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [30336 2007-08-16] (Razer (Asia-Pacific) Pte Ltd) 2 cpuz135; \??\E:\Windows\system32\drivers\cpuz135_x64.sys [x] 3 SANDRA; \??\E:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP4\WNt500x64\Sandra.sys [x] ========================== Drivers MD5 ======================= C:\Windows\System32\DRIVERS\1394ohci.sys F45A6A6BF6E28A6B2B25DABD6AB232C9 C:\Windows\System32\DRIVERS\ACPI.sys 1849DB6A62A9E5B793A58E929AAA6B61 C:\Windows\System32\DRIVERS\acpipmi.sys E620C4ADD4EA36B70E7648BBF67620E2 C:\Windows\System32\DRIVERS\adp94xx.sys 7B39B011B51ADDF954456CEC3F52B662 C:\Windows\System32\DRIVERS\adpahci.sys E39DD706FD7004C63A587A0D41FEDA47 C:\Windows\System32\DRIVERS\adpu320.sys A4BF261552838BFF8FAC8255CD462E77 C:\Windows\System32\drivers\afd.sys 7F9338BEC3AA0C5E9EDCE3514AB3B61C C:\Windows\System32\DRIVERS\agp440.sys 3D530DBF2154679DD0B0D47CA42CE90C C:\Windows\System32\DRIVERS\aliide.sys 7A7DEBC454FAABFD5C449390DCAAA017 C:\Windows\System32\DRIVERS\amdide.sys 5F026CFDF460D26666FE0129E6F5AA63 C:\Windows\System32\DRIVERS\amdk8.sys 859BA03D6FFA51AAC374E88548C92A5B C:\Windows\System32\DRIVERS\amdppm.sys 5A63FCEB7EAA95AE1058302EA6852395 C:\Windows\System32\DRIVERS\amdsata.sys 78C56D72BDB791DD664FF0B1E0706FFD C:\Windows\System32\DRIVERS\amdsbs.sys 2A72E444339A7536DEB341308D21EB57 C:\Windows\System32\DRIVERS\amdxata.sys 770CE580EAF97FCC552F1CF913ABEF21 C:\Windows\System32\drivers\appid.sys D37048F50C4FA898E77BB039C89BD5BB C:\Windows\System32\DRIVERS\arc.sys 10AC353204BF9A724AD7486A0E8A87B0 C:\Windows\System32\DRIVERS\arcsas.sys 0132CBC9CD78ED74F1901E4A49D2BFD2 C:\Windows\System32\DRIVERS\asyncmac.sys 328020759CD10361401F09B916D9FB7D C:\Windows\System32\DRIVERS\atapi.sys F57B8BB59FB27784B67D54D9161D3CD9 C:\Windows\System32\DRIVERS\atksgt.sys 9828FDB1636D2D2B798F4243F9B1465C C:\Windows\System32\DRIVERS\bxvbda.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\b57nd60a.sys 8D0E71D842F3E4C58FBFC8E1DFA4ACE1 C:\Windows\System32\Drivers\Beep.sys AF90AC4C7D0B6A6596E3C0AECF1221D0 C:\Windows\System32\DRIVERS\blbdrive.sys BE399AF30DFC2D3C616EE6F45CF53F8B C:\Windows\System32\DRIVERS\bowser.sys 0414D7EBCA700DD50BA4D5A588BCF7FF C:\Windows\System32\DRIVERS\BrFiltLo.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\BrFiltUp.sys ==> MD5 is legit C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bthmodem.sys AA493AA13E379FA18BC3A8CD4CEE079F C:\Windows\System32\DRIVERS\cdfs.sys 2CC7227D0FA1C7E7E26BC98E348357A6 C:\Windows\System32\DRIVERS\cdrom.sys 0BEEA5CC9AF653C991AA846D36D31F69 C:\Windows\System32\DRIVERS\circlass.sys DDF2B131CDFDDC6DF2E6745C1897C7F8 C:\Windows\System32\CLFS.sys 86411D3CF2A898A2F99930AABF9F2534 C:\Windows\System32\DRIVERS\CmBatt.sys F52ED617AB1E57195FEF3B33F88D165B C:\Windows\System32\DRIVERS\cmdide.sys 4BA96603A193A480436BFF32FA4B5699 C:\Windows\System32\Drivers\cng.sys 224EDF8ADFB8417ED5EA042F5684AB39 C:\Windows\System32\DRIVERS\compbatt.sys 72DAC0C48D48378117F40ABEDC30B53A C:\Windows\System32\DRIVERS\CompositeBus.sys A97052F2356757FC51ED96177AEBE5EB C:\Windows\System32\DRIVERS\crcdisk.sys 5B97729E8AAFEB48C85CAE6027982933 C:\Windows\System32\drivers\csc.sys 6C03E38FF6F237ADA96668B33995CF05 C:\Windows\System32\drivers\CT20XUT.SYS 148C9C111291C41D6B2ABFB6FBB43856 C:\Windows\System32\drivers\CT20XUT.SYS 148C9C111291C41D6B2ABFB6FBB43856 C:\Windows\System32\drivers\ctac32k.sys 397FBD4454E5B2FB77E55D1013DF548C C:\Windows\System32\drivers\ctaud2k.sys 50A8CD4DF066FE57D0C473A2645988CC C:\Windows\System32\drivers\CTEXFIFX.SYS 6F9C3C6C78F5296F4BC7102FB0F7CB65 C:\Windows\System32\drivers\CTEXFIFX.SYS 6F9C3C6C78F5296F4BC7102FB0F7CB65 C:\Windows\System32\drivers\CTHWIUT.SYS AE78CA7EE865A28AC841211DB655ACF3 C:\Windows\System32\drivers\CTHWIUT.SYS AE78CA7EE865A28AC841211DB655ACF3 C:\Windows\System32\drivers\ctprxy2k.sys 757776E207CA5E71E4A16BD1260AE1F2 C:\Windows\System32\drivers\ctsfm2k.sys 9B111EE2F488A8D9C21A13ED4C777795 C:\Windows\System32\Drivers\dfsc.sys 93D974256CF74A1853F5029BAE1ADD4B C:\Windows\System32\drivers\discache.sys B470EE2F4D74C362523B7681DBF799B0 C:\Windows\System32\DRIVERS\disk.sys 1AF74E5E78A983012C4274BCA34D835C C:\Windows\System32\drivers\drmkaud.sys 4ACA11439E52644EC105FD3AE8D82C95 C:\Windows\System32\drivers\dxgkrnl.sys D0D8016F1F8B664FD64CF699055621D5 C:\Windows\System32\DRIVERS\evbda.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\elxstor.sys F2E1F97B9BBEBDC4E168382D80163900 C:\Windows\System32\drivers\emupia2k.sys 683DCAF0D4EFC3F95A32E8924849202D C:\Windows\System32\DRIVERS\errdev.sys 8BBD6014262AFDEC855FEC2D51B46C64 C:\Windows\System32\Drivers\exfat.sys 183D15D5F212A4523B4B7C3A4C609FFE C:\Windows\System32\Drivers\fastfat.sys 6E0B7CB06AC2F2F6C297A8EE55CE2A0F C:\Windows\System32\DRIVERS\fdc.sys 8B195294C9A290F5C8DBD79E8D4D5FFD C:\Windows\System32\drivers\fileinfo.sys 41E430BDE07781A7225C661D2925EAAA C:\Windows\System32\drivers\filetrace.sys 776BE7AC727C3F05845EBA7F970D741E C:\Windows\System32\DRIVERS\flpydisk.sys 64614C484C226029BDB23D8233F0E4C4 C:\Windows\System32\drivers\fltmgr.sys FFE89972BC7D175E0B27D27980506DBC C:\Windows\System32\drivers\FsDepends.sys 3D901E35F7F326115A0DC03B5A52FC3C C:\Windows\System32\Drivers\Fs_Rec.sys 417C67960DF65183D26CC5860A2188F2 C:\Windows\System32\DRIVERS\fvevol.sys 7587A461F9E67001138EE5EF034D1AA1 C:\Windows\System32\DRIVERS\gagp30kx.sys F48BD191FC379911CFC2611CD6C94FAF C:\Windows\System32\drivers\ha20x22k.sys 076F366B87575ADC7D152C7A34ACB3DC C:\Windows\System32\drivers\ha20x2k.sys 4A7533EB52DC9D1847E7F78DEE1CE322 C:\Windows\System32\drivers\hcw85cir.sys 4B6A2F7FE8658DAC7FF011C298B2D6AA C:\Windows\System32\drivers\HdAudio.sys 1E538183E22A38F6EAD8EC6CD451326E C:\Windows\System32\DRIVERS\HDAudBus.sys DA9BE8B1CE852F5BE61AA460D965A4AF C:\Windows\System32\DRIVERS\HidBatt.sys 29266FD61B7108F1FEAB0156B4622AA9 C:\Windows\System32\DRIVERS\hidbth.sys 61D395A79D1873D203FBC1B7605D06CD C:\Windows\System32\DRIVERS\hidir.sys 91192D6FA2ADC9A0D5CB2C41A4932760 C:\Windows\System32\drivers\hidusb.sys A7D6A7E7D9B56819635CB326EC78A041 C:\Windows\System32\DRIVERS\hotcore3.sys C227DFCF703D02EAD4D7E44B0BA7C181 C:\Windows\System32\DRIVERS\HpSAMD.sys 1B26B8E666C825F86805430C10C7EF3C C:\Windows\System32\drivers\HTTP.sys EE5F4283C8272BC26963450E190C7CDE C:\Windows\System32\drivers\hwpolicy.sys 0EB813C14B94032D54830B2A94965124 C:\Windows\System32\DRIVERS\i8042prt.sys 1CA9B53C241408AFE4569D1F85BBF84C C:\Windows\System32\DRIVERS\iaStorV.sys 100D70F4650864A12E6D34B5FAA15068 C:\Windows\System32\DRIVERS\iirsp.sys 47163C6E22852190D8DF766D704DCFCD C:\Windows\System32\drivers\RTKVHD64.sys CB7DADEF3D83FE2C12655A0BDCBA99F2 C:\Windows\System32\DRIVERS\intelide.sys F4853F0BEB6BD6AE6CA5A33927A3874A C:\Windows\System32\DRIVERS\intelppm.sys A56EC3A109A2C50117B90B972554AAD7 C:\Windows\System32\DRIVERS\ipfltdrv.sys B8B75D1B705368A1A882E9BF803CFAD0 C:\Windows\System32\DRIVERS\IPMIDrv.sys 4FFB05073B9B89529275F36929E35E82 C:\Windows\System32\drivers\ipnat.sys 7FA4D80E53D1E52FEC2AB7EAEEB39522 C:\Windows\System32\drivers\irenum.sys D91C40B1783A9A71D9618C2DC61AF5E5 C:\Windows\System32\DRIVERS\isapnp.sys 15138F7A3B1F8D4EAD6F04FA71884B0E C:\Windows\System32\DRIVERS\msiscsi.sys 28A166247DB4DDECD0FA26E96CE5532A C:\Windows\System32\DRIVERS\kbdclass.sys EDE12DB30B451D2D8310CE889F1E2028 C:\Windows\System32\DRIVERS\kbdhid.sys 1C42B83AF08C253E05AE6B50F9FE0E0E C:\Windows\System32\Drivers\ksecdd.sys B625AD5F55692A25479B46A0BD1E7478 C:\Windows\System32\Drivers\ksecpkg.sys A0A15FD73D17CCCAD4477406A243975D C:\Windows\System32\drivers\ksthunk.sys 748D3509DED29A9F75B441A39B3A7AE6 C:\Windows\System32\DRIVERS\lirsgt.sys B658B7076B1ACAA5876524595630F183 C:\Windows\System32\DRIVERS\lltdio.sys 31CBB03935504C22AD4922BA20F22386 C:\Windows\System32\DRIVERS\lsi_fc.sys 371BCA972171621EC8411DEC2EEC4838 C:\Windows\System32\DRIVERS\lsi_sas.sys 7547784B47EFDD25B5EAEF680625852F C:\Windows\System32\DRIVERS\lsi_sas2.sys EE4FA1E60538A304EBC4B25A551A7EF4 C:\Windows\System32\DRIVERS\lsi_scsi.sys 58AF0B527700771F95AB7C95E2A47D31 C:\Windows\System32\drivers\luafv.sys EC138028ACA737DB7249214DC86685E5 C:\Windows\System32\drivers\Lycosa.sys 6E3210D1E24F39F9782D9C7E04EC97BC C:\Windows\System32\DRIVERS\megasas.sys 982BACA41AE1D487498FDD8A93204D2B C:\Windows\System32\DRIVERS\MegaSR.sys 20902C2BBFA2F637C50A95E24F8F5E83 C:\Windows\System32\drivers\modem.sys AC71E01868E53AA0943D2F741E24C980 C:\Windows\System32\DRIVERS\monitor.sys 822AF935C4B34E49D142A0A3AB2A6A02 C:\Windows\System32\DRIVERS\mouclass.sys BF1461716EE178D3C52BBDE8EB9DA19E C:\Windows\System32\DRIVERS\mouhid.sys C93DC9675450A21F3FFD35F1C84E5F08 C:\Windows\System32\drivers\mountmgr.sys 44BB2841E7FCABDC183DF7D793D8759B C:\Windows\System32\DRIVERS\mpio.sys 103958F42DEE5B329CB8821B26F11483 C:\Windows\System32\drivers\mpsdrv.sys 46E9D3AFDD0C2F2C07968F47B069D640 C:\Windows\System32\drivers\mrxdav.sys 83903D4022C88D4E755238AB6804EF5F C:\Windows\System32\DRIVERS\mrxsmb.sys 21C2535F962DEFCE73E20F63E46096D7 C:\Windows\System32\DRIVERS\mrxsmb10.sys 7709A36226E5E0B350CADA21D22AA266 C:\Windows\System32\DRIVERS\mrxsmb20.sys 39FFFFDCAE7EF434E787A0DE84BFA4D5 C:\Windows\System32\DRIVERS\msahci.sys 90044D7D795794C943C6B576590CF0C2 C:\Windows\System32\DRIVERS\msdsm.sys 811DB7F92F9048A95DB7D288FCB0EBFA C:\Windows\System32\Drivers\Msfs.sys 578749A6137311D9E1785C28C5C3DCD5 C:\Windows\System32\drivers\mshidkmdf.sys 2F24BDE9202BB71EC05D26EFE10A5F1E C:\Windows\System32\DRIVERS\msisadrv.sys 7AE3FC7484D2F23A012C6E57C7792BEB C:\Windows\System32\drivers\MSKSSRV.sys BB65387E1D2606064045AB6F442B8F1C C:\Windows\System32\drivers\MSPCLOCK.sys BB70AAABA5E932C0CE07DD1B8B335860 C:\Windows\System32\drivers\MSPQM.sys 14808D53BEA1FF28FF836F78AAAADDCF C:\Windows\System32\Drivers\MsRPC.sys DB9ABFEAB3F884BF3BEA648D399EB61D C:\Windows\System32\DRIVERS\mssmbios.sys 169B00C1940390AA638A779BEBA40457 C:\Windows\System32\drivers\MSTEE.sys 9EEB57044B209888FD8E6CE182498C45 C:\Windows\System32\DRIVERS\MTConfig.sys F9672CCE2BB91314A9E77DC3D0FD5938 C:\Windows\System32\Drivers\mup.sys 54DAC426F956904A0B4DD6BE8AED9466 C:\Windows\System32\DRIVERS\nwifi.sys 88CA8561D1717823A40362EA47615F28 C:\Windows\System32\drivers\ndis.sys E9BE082FEF48B80E99FFC15C8BD54FAE C:\Windows\System32\DRIVERS\ndiscap.sys A1EBDC39155FD9E908F9B327068B72F6 C:\Windows\System32\DRIVERS\ndistapi.sys E7EDFF320611E161C65DB97F25AFE851 C:\Windows\System32\DRIVERS\ndisuio.sys 755CD1D73146B77A43E2A00392F6CA14 C:\Windows\System32\DRIVERS\ndiswan.sys 0DE57446F5685D6E197533835783EDFE C:\Windows\System32\Drivers\NDProxy.sys 70AF596B2D49D70876112E3CCA589BBF C:\Windows\System32\DRIVERS\netbios.sys B57324844AB3F6C70E5DE22FBC85D460 C:\Windows\System32\DRIVERS\netbt.sys 1DB4CEB3B95A74F0081EDCB40E39710A C:\Windows\System32\DRIVERS\nfrd960.sys A3362F1F729A4AF4DE251B3A8E2D75C1 C:\Windows\System32\Drivers\Npfs.sys F3336A38BDB8D2392F2CCE896A8B16F7 C:\Windows\System32\drivers\nsiproxy.sys F788CD631C1F226D44A656EE6547E95C C:\Windows\System32\Drivers\Ntfs.sys 5C0FC0341D15E1D4EDF3E5DE26C9F872 C:\Windows\System32\Drivers\Null.sys 257B9BCDB5E4E1CE9021E9DDA4763B63 C:\Windows\System32\drivers\nvhda64v.sys 960E39A54E525DF58CB29193147DFFA1 C:\Windows\System32\DRIVERS\nvlddmkm.sys DE8488ED51C212FAE36B2A83214721D6 C:\Windows\System32\DRIVERS\nvraid.sys ED6207D8211C6DF4166D03F912B06EB8 C:\Windows\System32\DRIVERS\nvstor.sys 1C09D38432424726932E5B1D62FA561B C:\Windows\System32\DRIVERS\nv_agp.sys 91BDAAE2DA668E450AB7828AB5B6DF06 C:\Windows\System32\DRIVERS\ohci1394.sys 06D55FBF62DF7D8B34C5707AC6F239F3 C:\Windows\System32\drivers\ctoss2k.sys A29A80A1CF63D0DC27EEFCAF27D34664 C:\Windows\System32\DRIVERS\parport.sys FE4D9A2F91D43ADD1C14395A68B3C0C7 C:\Windows\System32\drivers\partmgr.sys 48631468B09EB46C27ED54B6DC3D9856 C:\Windows\System32\DRIVERS\pci.sys FF6E6785E83B7C27EDC19B223CD1A59A C:\Windows\System32\DRIVERS\pciide.sys 8F39CDC242D34767F564C05F6468C9DF C:\Windows\System32\DRIVERS\pcmcia.sys BB94522CF2A7C63DCA2834A57AF92CA2 C:\Windows\System32\drivers\pcw.sys 1A7E886CC616C7AE0B23CDA3F970D099 C:\Windows\System32\drivers\peauth.sys 222BF78702B934DE7BD59E335EF29001 C:\Windows\System32\DRIVERS\raspptp.sys 42B348ED54CEE25382749E8A29E71E69 C:\Windows\System32\DRIVERS\processr.sys 34A57516D7D1A8D8776DB839792A4147 C:\Windows\System32\DRIVERS\pacer.sys D58FDB193CBD045E759D6AB7A0370D86 C:\Windows\System32\DRIVERS\ql2300.sys 35D2D9B8DD7202731868D6A7FC929239 C:\Windows\System32\DRIVERS\ql40xx.sys 19D0E8B0D98C9830BF29EF4305D04B36 C:\Windows\System32\drivers\qwavedrv.sys 5EC15789E195272CD319F1C53EB2E428 C:\Windows\System32\DRIVERS\rasacd.sys E5A51E6D494633549B191771BA65E013 C:\Windows\System32\DRIVERS\AgileVpn.sys E4D403340809676C4AC12A23C5600B82 C:\Windows\System32\DRIVERS\rasl2tp.sys 46E17184327E475CAE5D7AA2C8C178FD C:\Windows\System32\DRIVERS\raspppoe.sys 84F60B4D392DF9E2D4EC7BE5CEC48AAF C:\Windows\System32\DRIVERS\rassstp.sys 5595354F1261D97E8971C88F96DDCFA5 C:\Windows\System32\DRIVERS\rdbss.sys C17D17785D6DDFA329841317B61250A9 C:\Windows\System32\DRIVERS\rdpbus.sys C17801899070882E1E426A4C4E4FB296 C:\Windows\System32\DRIVERS\RDPCDD.sys 1B2A26383FF22F3D89A612527DCA9EC4 C:\Windows\System32\drivers\rdpdr.sys F67E0AEB96551268F6B62AEC220CFCFB C:\Windows\System32\drivers\rdpencdd.sys 218B9CF30F3158D78B7759BF3C4B58C8 C:\Windows\System32\drivers\rdprefmp.sys E5839F431B38951286DBE33EEA1BDD09 C:\Windows\System32\Drivers\RDPWD.sys 7F6B843BEBBC2ED9C05CAB95AE22A123 C:\Windows\System32\drivers\rdyboost.sys E2D60E30C7559B697164E9C590669895 C:\Windows\System32\DRIVERS\rspndr.sys 8D25DBD76A4E0469069D42563356DCC0 C:\Windows\System32\DRIVERS\Rtnic64.sys 97B6D72C82B2632B3D1AD60DDAC38D46 C:\Windows\System32\DRIVERS\Rt64win7.sys BAEFEE35D27A5440D35092CE10267BEC C:\Windows\System32\DRIVERS\Rtlh64.sys FAEEED5A8949E6BA611A7B738AD28CEE C:\Windows\System32\DRIVERS\vms3cap.sys 199BFE2D528DE9462DE574442F93F6F4 C:\Windows\System32\DRIVERS\sbp2port.sys 4EE9F60B02C8576C11D36482DF5498FE C:\Windows\System32\DRIVERS\scfilter.sys 9BF95021F45251D2BAE857FE7686F526 C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\serenum.sys 28F2E325B938DD88F7B01291E2DE3222 C:\Windows\System32\DRIVERS\serial.sys 6D84B2A9A7ED79CCF9013BB02724F127 C:\Windows\System32\DRIVERS\sermouse.sys 209291F6E3020838F62398F830ED4727 C:\Windows\System32\DRIVERS\sffdisk.sys 79AECB14F914ADFE27AA7F121CCD0353 C:\Windows\System32\DRIVERS\sffp_mmc.sys 76FE7A09DB19898DC1597315D39CFD5A C:\Windows\System32\DRIVERS\sffp_sd.sys 5AB9252C70CCDE0F710BA0B6982EE3C7 C:\Windows\System32\DRIVERS\sfloppy.sys 6A18CAC842DA111A869617E0AB906E94 C:\Windows\System32\DRIVERS\SiSRaid2.sys E80D55591CA8621420720B9221C62AB3 C:\Windows\System32\DRIVERS\sisraid4.sys 93E221B59B5DBBA4820C104721F0B757 C:\Windows\System32\DRIVERS\smb.sys 3F8440E7828CB121FC411F3E61C31F68 C:\Windows\SysWow64\speedfan.sys 12583AF6CBE0050651EAF2723B3AD7B3 C:\Windows\System32\Drivers\spldr.sys EFDF5099EDBA2919238998D1690AB1DB C:\Windows\System32\Drivers\sptd.sys A6CFF1AF7664627A296B6A0A96CF876E C:\Windows\System32\DRIVERS\srv.sys 931F4250D1DEA473405DDD8F35215844 C:\Windows\System32\DRIVERS\srv2.sys ED03F0ED99C7D9492F31FC5B7FC4DBF3 C:\Windows\System32\DRIVERS\srvnet.sys DF38059AC870D37DFA04C50FF469D84F C:\Windows\System32\DRIVERS\stexstor.sys 978D0DCC5DAFFF5908840EBF4CED3DD2 C:\Windows\System32\DRIVERS\vmstorfl.sys 76E7BDFF981DDA8BCBBE2CEFFBAC2C7F C:\Windows\System32\DRIVERS\storvsc.sys CDC07EDE549442C12736AAB0C9FE9E75 C:\Windows\System32\DRIVERS\swenum.sys 3B57B511CC60E9D16C6B16CD01A9A341 C:\Windows\System32\drivers\tcpip.sys 90CD8C6E164E63F8C4C92C38926FA799 C:\Windows\System32\DRIVERS\tcpip.sys 90CD8C6E164E63F8C4C92C38926FA799 C:\Windows\System32\drivers\tcpipreg.sys 4173235657241412755EF20150F06C39 C:\Windows\System32\drivers\tdpipe.sys F8CFF1249FB3DD64221DB57E4FE09AF4 C:\Windows\System32\drivers\tdtcp.sys 81A4C4F977A82D3D4F96C5B174209C14 C:\Windows\System32\DRIVERS\tdx.sys E2C41684B4D1C218581CE2AC1F41FE7F C:\Windows\System32\DRIVERS\termdd.sys ACEE52C8881F5752AB0DBB6E9D9F6DDF C:\Windows\System32\DRIVERS\timntr.sys EBBAEA02F0095A798000C7E06B16D41B C:\Windows\System32\DRIVERS\tssecsrv.sys B5737F0C5CF3330B32B162722B641239 C:\Windows\System32\DRIVERS\tunnel.sys F2F19C4EF2774117B0EB921FF395A5CF C:\Windows\System32\DRIVERS\uagp35.sys DDD6BFAD93424638224D3BCB38FD4BDB C:\Windows\System32\DRIVERS\udfs.sys 088748C4C666E4F1CD74A22CCBCDC7E4 C:\Windows\System32\DRIVERS\uliagpkx.sys 736DBB5698DDB95DE0FB7CF43DF2825E C:\Windows\System32\DRIVERS\umbus.sys 7B35AC9F341296EAB21A830632DC2A61 C:\Windows\System32\DRIVERS\umpass.sys 2D6362C12948B8C3CB924068FEF7E9D3 C:\Windows\System32\DRIVERS\usbccgp.sys A2EB39A4939DFE08162298EADF8F6F43 C:\Windows\System32\DRIVERS\usbcir.sys AD7CED1349F4A5A11DAD6DF29FCA9C9D C:\Windows\System32\DRIVERS\usbehci.sys 81E98C207E8D3732354D1050A386816C C:\Windows\System32\DRIVERS\usbhub.sys E007C90723E525D2F257640D14316644 C:\Windows\System32\DRIVERS\usbohci.sys F0B142ED021FC71286B1F255EFE47C4D C:\Windows\System32\DRIVERS\usbprint.sys 6968871F1017E173A33A3118C6BC9AEB C:\Windows\System32\DRIVERS\USBSTOR.SYS 73B89BA879CEA1013FA894274FA18D4E C:\Windows\System32\DRIVERS\usbuhci.sys CD024BB3F749C69C3BD965846975A612 C:\Windows\System32\drivers\Lachesis.sys 81A9F455BF2C9180348949F7C8D93E66 C:\Windows\System32\DRIVERS\VBoxDrv.sys E5AF6997B59429BC44DE616B5A963788 C:\Windows\System32\DRIVERS\VBoxNetAdp.sys B4FFC1739B9BD3B0177B16B46CAF8420 C:\Windows\System32\DRIVERS\VBoxNetFlt.sys 5EB23066803668B29D403BC76C63CC70 C:\Windows\System32\DRIVERS\VBoxUSBMon.sys E6A42E54D4F7D7756E988F9135796572 C:\Windows\System32\DRIVERS\vdrvroot.sys 7572FCB85B0FC09A5EFAD43E7B1F34F5 C:\Windows\System32\DRIVERS\vgapnp.sys D801B85041251FB893733A4270E6BB8C C:\Windows\System32\drivers\vga.sys 868C1CBE558AC849C537CF0846F12708 C:\Windows\System32\DRIVERS\vhdmp.sys 951012910748C5AD2FBF2DE2C473A86F C:\Windows\System32\DRIVERS\viaide.sys D651534A18D3723F965F589EC16F30EA C:\Windows\System32\DRIVERS\vmbus.sys 53C1D1486B049A6682048D629895F874 C:\Windows\System32\DRIVERS\VMBusHID.sys 228C633DEB9A333EFD18EE7C02044DC3 C:\Windows\System32\DRIVERS\volmgr.sys 70254EC3C334A5345EFBF98B4B1B7DF3 C:\Windows\System32\drivers\volmgrx.sys F24B971C2B0E9630AC9F506E17596E88 C:\Windows\System32\DRIVERS\volsnap.sys 93454FFE2DA928731D855072AFC02603 C:\Windows\System32\DRIVERS\vsmraid.sys F010F46F2C0165FA7F07FD1BBC371FEB C:\Windows\System32\drivers\vwifibus.sys 31019A5E35E108E2C4326799C1F487E0 C:\Windows\System32\DRIVERS\wacompen.sys BE1FC7D99698DA87D505504466C78109 C:\Windows\System32\DRIVERS\wanarp.sys 4099B3824DEA16A5ECA672A83B1753D7 C:\Windows\System32\DRIVERS\wanarp.sys 4099B3824DEA16A5ECA672A83B1753D7 C:\Windows\System32\DRIVERS\wd.sys 8AAD830D6FE8457169DCB7C7F68DFCDB C:\Windows\System32\DRIVERS\wdcsam64.sys ==> MD5 is legit C:\Windows\System32\drivers\Wdf01000.sys DBB4397D703A755FACB05486C449C507 C:\Windows\System32\DRIVERS\wfplwf.sys F40A16CA38431A4E521EE8EFB4183CD2 C:\Windows\System32\drivers\wimmount.sys B551F305FA31C5F7BE808A251E0F8C87 C:\Windows\System32\DRIVERS\wmiacpi.sys 53137CF16BE0DE633EE0838E2707B091 C:\Windows\System32\drivers\ws2ifsl.sys DD7803B0B23EAB319DC359F02DBFDC5D C:\Windows\System32\drivers\WudfPf.sys 20E43D878A422D807481F1F6AA1ACCF4 C:\Windows\System32\DRIVERS\WUDFRd.sys 3605DAC66EE8EB5598BA8AA08980167D ========================== NetSvcs (Whitelisted) =========== ============ One Month Created Files and Folders ============== 2012-03-02 14:09 - 2009-04-10 13:36 - 0333257 _RASH C:\bootmgr 2012-03-01 02:33 - 2012-03-01 02:33 - 0000000 ____D C:\Program Files (x86)\ESET 2012-02-08 17:14 - 2012-02-08 17:18 - 0000000 ____D C:\textures 2012-02-05 14:31 - 2012-02-05 14:31 - 0000000 ____D C:\Program Files (x86)\The Lost Watch II NV 3D Screensaver 2012-02-05 14:28 - 2012-02-05 14:28 - 0000000 ____D C:\Program Files (x86)\Sun Village NV 3D Screensaver ============ 3 Months Modified Files and Folders ============= 2012-03-03 00:10 - 2012-03-02 23:58 - 0000000 ____D C:\FRST 2012-03-01 17:53 - 2011-03-26 12:55 - 0000000 ____D C:\users\UpdatusUser 2012-03-01 17:53 - 2009-04-25 05:02 - 0000000 ____D C:\users\Adam 2012-03-01 04:32 - 2011-07-26 03:58 - 0061852 ____A C:\Windows\System32\BMXStateBkp-{00000009-00000000-00000000-00001102-0000000B-00411102}.rfx 2012-03-01 04:32 - 2011-07-26 03:58 - 0061852 ____A C:\Windows\System32\BMXState-{00000009-00000000-00000000-00001102-0000000B-00411102}.rfx 2012-03-01 04:32 - 2011-07-26 03:58 - 0000820 ____A C:\Windows\System32\DVCState-{00000009-00000000-00000000-00001102-0000000B-00411102}.rfx 2012-03-01 04:32 - 2009-04-25 05:11 - 1850818 ____A C:\Windows\WindowsUpdate.log 2012-03-01 04:32 - 2009-03-06 00:05 - 0036000 ____A C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2012-03-01 04:32 - 2009-03-06 00:05 - 0036000 ____A C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2012-03-01 03:39 - 2009-09-21 09:14 - 0001048 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2012-03-01 02:39 - 2009-09-21 09:14 - 0001044 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2012-03-01 02:35 - 2009-04-22 01:27 - 0787214 ____A C:\Windows\System32\PerfStringBackup.INI 2012-03-01 02:34 - 2009-04-10 14:53 - 0000000 ____D C:\Users\Adam\AppData\Roaming\Azureus 2012-03-01 02:33 - 2012-03-01 02:33 - 0000000 ____D C:\Program Files (x86)\ESET 2012-03-01 02:33 - 2011-10-02 08:40 - 0000000 ____D C:\Users\Adam\AppData\Roaming\Raptr 2012-03-01 02:33 - 2009-04-22 01:45 - 0000000 ____D C:\Windows\Downloaded Program Files 2012-03-01 02:32 - 2011-10-02 08:40 - 0000000 ____D C:\Program Files (x86)\Raptr 2012-03-01 02:30 - 2011-08-17 03:36 - 1071767552 __ASH C:\hiberfil.sys 2012-03-01 02:30 - 2011-03-20 12:27 - 0154696 ____A C:\Windows\System32\oodbs.lor 2012-03-01 02:30 - 2009-04-22 01:23 - 0000006 ___AH C:\Windows\Tasks\SA.DAT 2012-03-01 02:30 - 2009-04-22 01:05 - 0006308 ____A C:\Windows\setupact.log 2012-03-01 02:30 - 2009-03-25 06:08 - 0000000 ____D C:\ProgramData\NVIDIA 2012-02-08 17:18 - 2012-02-08 17:14 - 0000000 ____D C:\textures 2012-02-06 15:10 - 2009-04-12 01:28 - 0000000 ____D C:\Program Files (x86)\Google 2012-02-05 14:31 - 2012-02-05 14:31 - 0000000 ____D C:\Program Files (x86)\The Lost Watch II NV 3D Screensaver 2012-02-05 14:28 - 2012-02-05 14:28 - 0000000 ____D C:\Program Files (x86)\Sun Village NV 3D Screensaver 2012-02-01 08:50 - 2012-01-29 07:12 - 0000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2012-01-30 06:46 - 2012-01-30 07:48 - 1474560 ____A C:\dos cd driver.img 2012-01-30 06:46 - 2012-01-30 07:48 - 1474560 ____A C:\Disk 3.img 2012-01-30 06:46 - 2012-01-30 07:48 - 1474560 ____A C:\Disk 2.img 2012-01-30 06:46 - 2012-01-30 07:48 - 1474560 ____A C:\Disk 1.img 2012-01-29 14:06 - 2012-01-29 14:06 - 0000000 ____D C:\Program Files\AVAST Software 2012-01-27 05:18 - 2012-01-24 12:14 - 0000000 ____D C:\S.T.A.L.K.E.R.Clear.Sky-RELOADED 2012-01-25 08:59 - 2012-01-25 02:47 - 2504351744 ____A C:\flt-s3mp.iso 2012-01-24 10:09 - 2012-01-24 08:58 - 0000000 ____D C:\Program Files\GSC World Publishing 2012-01-15 04:56 - 2010-04-01 10:55 - 0000000 ____D C:\Encoded Files 2012-01-15 04:55 - 2011-07-09 08:50 - 0000029 ____A C:\j23.log 2012-01-15 04:55 - 2010-11-03 13:56 - 0000000 ____D C:\Media Cache Files 2012-01-15 04:55 - 2010-04-01 10:55 - 0000000 ____D C:\Adobe Premiere Elements Preview Files 2011-12-24 08:15 - 2011-12-24 08:15 - 12893211 ____A C:\Frank Sinatra - White Christmas.flac 2011-12-24 08:13 - 2011-12-24 08:13 - 242587616 ____A C:\Frank Sinatra - White Christmas.wav 2011-12-24 08:13 - 2011-12-24 08:13 - 2166488 ____A C:\Frank Sinatra - White Christmas.wav.gpk 2011-12-24 07:47 - 2011-12-24 07:47 - 0000000 ____D C:\Output 2011-12-24 07:46 - 2011-12-24 07:46 - 13900072 ____A C:\Bing Crosby, Frank Sinatra & Nat King Cole - Have A Holly Jolly Christmas2.flac 2011-12-24 07:44 - 2011-12-24 07:33 - 277448752 ____A C:\Bing Crosby, Frank Sinatra & Nat King Cole - Have A Holly Jolly Christmas2.wav 2011-12-24 07:44 - 2011-12-24 07:33 - 1239168 ____A C:\Bing Crosby, Frank Sinatra & Nat King Cole - Have A Holly Jolly Christmas2.wav.gpk 2011-12-24 07:38 - 2011-12-24 07:38 - 26010440 ____A C:\Bing Crosby, Frank Sinatra & Nat King Cole - Have A Holly Jolly Christmas2_NEW.wav 2011-12-24 07:33 - 2011-12-24 07:43 - 104045840 ____A C:\Bing Crosby, Frank Sinatra & Nat King Cole - Have A Holly Jolly Christmas2.~av 2011-12-24 07:33 - 2011-12-24 07:32 - 0213928 ____A C:\Bing Crosby, Frank Sinatra & Nat King Cole - Have A Holly Jolly Christmas.wav.gpk 2011-12-24 07:31 - 2011-12-24 07:31 - 23897132 ____A C:\Bing Crosby, Frank Sinatra & Nat King Cole - Have A Holly Jolly Christmas.wav 2011-12-24 04:54 - 2011-12-24 04:59 - 4051519 ____A C:\11-Eleni-Wsrod Nocnej Ciszy.mp3 2011-12-24 04:54 - 2011-12-24 04:59 - 3508224 ____A C:\03-Zbigniew Wodecki - Cicha Noc.mp3 2011-12-24 04:53 - 2011-12-24 04:59 - 4829184 ____A C:\46-Ryszard Rynkowski-Bardzo cicha noc.mp3 2011-12-24 04:42 - 2011-12-24 04:42 - 0179864 ____A C:\16_-_Winter_Wonderland.wav.gpk 2011-12-24 04:42 - 2011-12-24 04:41 - 0269432 ____A C:\13_-_Silent_Night.wav.gpk 2011-12-24 04:41 - 2011-12-24 04:41 - 30113324 ____A C:\13_-_Silent_Night.wav 2011-12-24 04:41 - 2011-12-24 04:41 - 20081708 ____A C:\16_-_Winter_Wonderland.wav 2011-12-24 04:40 - 2011-12-24 04:40 - 23998508 ____A C:\12_-_Rudolph_The_Red-Nose_Reindeer.wav 2011-12-24 04:40 - 2011-12-24 04:40 - 0214832 ____A C:\12_-_Rudolph_The_Red-Nose_Reindeer.wav.gpk 2011-12-24 04:40 - 2011-12-24 04:38 - 0224456 ____A C:\08_-_Jingle_Bells.wav.gpk 2011-12-24 04:39 - 2011-12-24 04:38 - 0265480 ____A C:\10_-_A_Marshmallow_World.wav.gpk 2011-12-24 04:38 - 2011-12-24 04:38 - 29670956 ____A C:\10_-_A_Marshmallow_World.wav 2011-12-24 04:38 - 2011-12-24 04:38 - 25076780 ____A C:\08_-_Jingle_Bells.wav 2011-12-24 04:36 - 2011-12-24 04:36 - 0226448 ____A C:\06_-_Baby_It_s_Cold_Outside.wav.gpk 2011-12-24 04:36 - 2011-12-24 04:35 - 25297964 ____A C:\06_-_Baby_It_s_Cold_Outside.wav 2011-12-24 04:32 - 2011-12-24 04:32 - 0237792 ____A C:\02_-_White_Christmas.wav.gpk 2011-12-24 04:30 - 2011-12-24 04:30 - 26569772 ____A C:\02_-_White_Christmas.wav 2011-12-24 04:30 - 2011-12-24 04:30 - 15280421 ____A C:\02_-_White_Christmas.flac 2011-12-24 04:27 - 2011-12-23 15:50 - 12672498 ____A C:\01_-_Let_It_Snow_Let_It_Snow_Let_It_Snow_.flac 2011-12-19 08:25 - 2011-12-19 07:33 - 0000317 ____A C:\Users\Adam\AppData\Roaming\burnaware.ini 2011-12-19 07:41 - 2011-12-19 07:41 - 0000000 ____D C:\Program Files\7-Zip 2011-12-19 07:28 - 2011-12-19 07:28 - 0001064 ____A C:\Users\Public\Desktop\BurnAware Free.lnk 2011-12-19 07:28 - 2011-12-19 07:28 - 0000000 ____D C:\Program Files (x86)\BurnAware Free 2011-12-19 07:05 - 2009-05-16 09:20 - 0000000 ____D C:\ProgramData\DAEMON Tools Lite 2011-12-19 03:20 - 2011-12-19 03:20 - 0002222 ____A C:\Users\Public\Desktop\Google Earth.lnk 2011-12-18 12:55 - 2011-12-18 12:55 - 0000000 ____D C:\Program Files (x86)\National Geographic ========================= Known DLLs (Whitelisted) ============ ========================= Bamital & volsnap Check ============ C:\Windows\System32\winlogon.exe [2009-04-21 20:00] - [2009-04-21 21:38] - 0389632 ____A (Microsoft Corporation) 007CFB4BF1BE9D43E605FB4CFDFE5D01 C:\Windows\System32\wininit.exe [2009-04-21 19:59] - [2009-04-21 21:38] - 0129024 ____A (Microsoft Corporation) 56F3B4CD28CDB1D79290870A084EF365 C:\Windows\SysWOW64\wininit.exe [2009-04-21 19:35] - [2009-04-21 21:19] - 0096256 ____A (Microsoft Corporation) 2E4264C95BAB587431C79C101899CCC8 C:\Windows\explorer.exe [2009-04-21 20:04] - [2009-04-21 21:38] - 2858496 ____A (Microsoft Corporation) 0C817F3E033335EDB2DD069EFA84045E C:\Windows\SysWOW64\explorer.exe [2009-04-21 19:40] - [2009-04-21 21:19] - 2607616 ____A (Microsoft Corporation) C133788B393EEC01439AD997D24E66ED C:\Windows\System32\svchost.exe [2009-04-21 19:35] - [2009-04-21 21:38] - 0027648 ____A (Microsoft Corporation) DAED0221F52D75056A8999C2BED00D4E C:\Windows\SysWOW64\svchost.exe [2009-04-21 19:16] - [2009-04-21 21:19] - 0020992 ____A (Microsoft Corporation) 5F1FE2F551E74B069C436152F06CCFDC C:\Windows\System32\User32.dll [2009-05-26 21:06] - [2009-05-12 22:39] - 1008128 ____A (Microsoft Corporation) 0F7B8291A7A558E3D9C6A32E25A45E70 C:\Windows\SysWOW64\User32.dll [2009-05-26 21:06] - [2009-05-12 22:23] - 0833024 ____A (Microsoft Corporation) 4F6713BACEF16A84D80110DE1CD46C81 C:\Windows\System32\Drivers\volsnap.sys [2009-04-21 19:23] - [2009-04-21 21:45] - 0293952 ____A (Microsoft Corporation) 93454FFE2DA928731D855072AFC02603 ========================= Memory info ====================== Percentage of memory in use: 7% Total physical RAM: 12284.58 MB Available physical RAM: 11326.49 MB Total Pagefile: 11764.25 MB Available Pagefile: 11298.51 MB Total Virtual: 8192 MB Available Virtual: 8191.91 MB ======================= Partitions ========================= 2 Drive c: () (Fixed) (Total:97.66 GB) (Free:12.63 GB) NTFS ==>[Drive with boot components (obtanied from BCD)] 3 Drive d: (Win7) (Fixed) (Total:931.51 GB) (Free:49.35 GB) NTFS ==>[System with boot components (obtained from reading drive)] 4 Drive e: (Nowy) (Fixed) (Total:931.28 GB) (Free:2.72 GB) NTFS ==>[System with boot components (obtained from reading drive)] 5 Drive f: () (Fixed) (Total:195.31 GB) (Free:5 GB) NTFS 6 Drive g: () (Fixed) (Total:638.54 GB) (Free:72.79 GB) NTFS 7 Drive h: (2008.03.29_2201) (CDROM) (Total:0.15 GB) (Free:0 GB) UDF 8 Drive i: () (Removable) (Total:14.92 GB) (Free:14.92 GB) FAT32 9 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS Disk ### Status Size Free Dyn Gpt -------- ---------- ------- ------- --- --- Disk 0 Online 932 GB 0 B Disk 1 Online 932 GB 0 B Disk 2 Online 932 GB 0 B Disk 3 Online 15 GB 0 B Partitions of Disk 0: =============== Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 932 GB 1024 KB ====================================================================================================== Disk: 0 Partition 1 Type : 07 Hidden: No Active: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 1 D Win7 NTFS Partition 932 GB Healthy ====================================================================================================== Partitions of Disk 1: =============== Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 931 GB 1024 KB Partition 2 Primary 148 MB 931 GB Partition 3 Primary 91 MB 931 GB ====================================================================================================== Disk: 1 Partition 1 Type : 07 Hidden: No Active: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 2 E Nowy NTFS Partition 931 GB Healthy ====================================================================================================== Disk: 1 Partition 2 Type : 17 (Suspicious Type) Hidden: Yes Active: No There is no volume associated with this partition. ====================================================================================================== Disk: 1 Partition 3 Type : 17 (Suspicious Type) Hidden: Yes Active: No There is no volume associated with this partition. ====================================================================================================== Partitions of Disk 2: =============== Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 195 GB 1024 KB Partition 2 Primary 639 GB 195 GB Partition 3 Primary 98 GB 834 GB ====================================================================================================== Disk: 2 Partition 1 Type : 07 Hidden: No Active: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 3 F NTFS Partition 195 GB Healthy ====================================================================================================== Disk: 2 Partition 2 Type : 07 Hidden: No Active: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 4 G NTFS Partition 639 GB Healthy ====================================================================================================== Disk: 2 Partition 3 Type : 07 Hidden: No Active: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 5 C NTFS Partition 98 GB Healthy ====================================================================================================== Partitions of Disk 3: =============== Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 15 GB 32 KB ====================================================================================================== Disk: 3 Partition 1 Type : 0C Hidden: No Active: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- -------- * Volume 6 I FAT32 Removable 15 GB Healthy ====================================================================================================== ========================================================== Last Boot: 2009-04-25 04:57 ======================= End Of Log ==========================