API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 2nd, 2014
199
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 30.52 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-02-2014 03
  2. Ran by Igor (administrator) on IGOR-F391C3BAAB on 02-02-2014 19:34:20
  3. Running from C:\Documents and Settings\Igor\Desktop
  4. Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
  5. Internet Explorer Version 6
  6. Boot Mode: Normal
  7.  
  8. The only official download link for FRST:
  9. Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
  10. Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
  11. Download link from any site other than Bleeping Computer is unpermitted or outdated.
  12. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  13.  
  14. ==================== Processes (Whitelisted) ===================
  15.  
  16. (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
  17. (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
  18. (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
  19. (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
  20. (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
  21. (C-Media Electronic Inc. (www.cmedia.com.tw)) C:\WINDOWS\mixer.exe
  22. (PixArt Imaging Incorporation) C:\WINDOWS\PixArt\Pac7302\Monitor.exe
  23. (ATI Technologies, Inc.) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
  24. (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
  25. (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
  26. (Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
  27. () D:\Program Files\Winamp\winampa.exe
  28. () C:\Documents and Settings\Igor\Application Data\DRPSu\DrvUpdater.exe
  29. (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
  30. (Dropbox, Inc.) C:\Documents and Settings\Igor\Application Data\Dropbox\bin\Dropbox.exe
  31. (Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe
  32. (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  33.  
  34.  
  35. ==================== Registry (Whitelisted) ==================
  36.  
  37. HKLM\...\Run: [C-Media Mixer] - Mixer.exe /startup
  38. HKLM\...\Run: [PAC7302_Monitor] - C:\WINDOWS\PixArt\PAC7302\Monitor.exe [323584 2007-12-10] (PixArt Imaging Incorporation)
  39. HKLM\...\Run: [SiSUSBRG] - C:\WINDOWS\SiSUSBrg.exe [106496 2002-07-12] (Silicon Integrated Systems Corp.)
  40. HKLM\...\Run: [ATIPTA] - C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [339968 2005-02-12] (ATI Technologies, Inc.)
  41. HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
  42. HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5110672 2013-09-12] (ESET)
  43. HKLM\...\Run: [PWRISOVM.EXE] - C:\Program Files\PowerISO\PWRISOVM.EXE [337432 2013-10-23] (Power Software Ltd)
  44. HKLM\...\Run: [WinampAgent] - D:\Program Files\Winamp\winampa.exe [35328 2006-06-07] ()
  45. Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
  46. HKU\S-1-5-21-1993962763-1035525444-1417001333-1003\...\Run: [DrvUpdater] - C:\Documents and Settings\Igor\Application Data\DRPSu\DrvUpdater.exe [195256 2012-12-23] ()
  47. HKU\S-1-5-21-1993962763-1035525444-1417001333-1003\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
  48. HKU\S-1-5-21-1993962763-1035525444-1417001333-1003\...\Run: [DAEMON Tools Ultra Agent] - C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [3192056 2013-11-14] (Disc Soft Ltd)
  49. HKU\S-1-5-21-1993962763-1035525444-1417001333-1003\...\MountPoints2: {3108610f-656e-11e3-8390-0013d4c62bc8} - I:\Setup.exe
  50. Startup: C:\Documents and Settings\Igor\Start Menu\Programs\Startup\Dropbox.lnk
  51. ShortcutTarget: Dropbox.lnk -> C:\Documents and Settings\Igor\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
  52.  
  53. ==================== Internet (Whitelisted) ====================
  54.  
  55. HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
  56. HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
  57. HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
  58. HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
  59. HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
  60. HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
  61. SearchScopes: HKLM - DefaultScope value is missing.
  62. SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN22207356627041866&UM=2
  63. SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN22207356627041866&UM=2
  64. BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
  65. BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
  66. BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  67. Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
  68. Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
  69. Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
  70. Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
  71. Tcpip\..\Interfaces\{A7C86420-0F3A-4FCE-BBF9-58E004211198}: [NameServer]192.168.1.1
  72.  
  73. FireFox:
  74. ========
  75. FF ProfilePath: C:\Documents and Settings\Igor\Application Data\Mozilla\Firefox\Profiles\zap1z52u.default
  76. FF Homepage: google.com
  77. FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3282698&SearchSource=2&CUI=UN36264835151343887&UM=2&q=
  78. FF Plugin: @adobe.com/AuthorwarePlayer - C:\WINDOWS\system32\Macromed\AUTHORWA\np32asw.dll (Macromedia, Inc.)
  79. FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
  80. FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
  81. FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll No File
  82. FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
  83. FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  84. FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
  85. FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
  86. FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
  87. FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-12-13]
  88.  
  89. Chrome:
  90. =======
  91. CHR HomePage: hxxp://search.conduit.com/?ctid=CT3282698&SearchSource=48&CUI=UN18661388182019622&UM=2&sspv=TB_C24
  92. CHR Extension: (Google Docs) - C:\Documents and Settings\Igor\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-30]
  93. CHR Extension: (Google Drive) - C:\Documents and Settings\Igor\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-30]
  94. CHR Extension: (YouTube) - C:\Documents and Settings\Igor\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-30]
  95. CHR Extension: (Google Search) - C:\Documents and Settings\Igor\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-30]
  96. CHR Extension: (Google Wallet) - C:\Documents and Settings\Igor\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
  97. CHR Extension: (Gmail) - C:\Documents and Settings\Igor\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-30]
  98.  
  99. ========================== Services (Whitelisted) =================
  100.  
  101. S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [516096 2005-02-12] ()
  102. R3 Disc Soft Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [723192 2013-11-14] (Disc Soft Ltd)
  103. R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1337752 2013-09-12] (ESET)
  104.  
  105. ==================== Drivers (Whitelisted) ====================
  106.  
  107. S3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [4122368 2008-09-24] (Realtek Semiconductor Corp.)
  108. S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
  109. R3 cmpci; C:\WINDOWS\System32\drivers\cmaudio.sys [377358 2002-11-18] (C-Media Inc)
  110. R3 dtscsibus; C:\WINDOWS\System32\DRIVERS\dtscsibus.sys [24704 2013-12-15] (Disc Soft Ltd)
  111. R1 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [184664 2013-09-17] (ESET)
  112. R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [134248 2013-09-17] (ESET)
  113. R1 epfwtdir; C:\WINDOWS\System32\DRIVERS\epfwtdir.sys [118768 2013-09-17] (ESET)
  114. R0 ftsata2; C:\WINDOWS\system32\Drivers\ftsata2.sys [173568 2011-07-18] (Promise Technology, Inc.)
  115. R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
  116. S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
  117. R3 PAC7302; C:\WINDOWS\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (PixArt Imaging Inc.)
  118. R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [114376 2013-10-23] (Power Software Ltd)
  119. S3 senfilt; C:\WINDOWS\System32\drivers\senfilt.sys [392704 2005-03-01] (Sensaura)
  120. R0 SiSide; C:\WINDOWS\System32\DRIVERS\siside.sys [4096 2003-03-25] (Silicon Integrated Systems Corp.)
  121. R0 sisidex; C:\WINDOWS\System32\drivers\sisidex.sys [32640 2003-08-08] (Windows (R) 2000 DDK provider)
  122. S3 SISNIC; C:\WINDOWS\System32\DRIVERS\sisnic.sys [32768 2008-04-13] (SiS Corporation)
  123. R3 SISNICXP; C:\WINDOWS\System32\DRIVERS\sisnicxp.sys [32768 2006-02-14] (SiS Corporation)
  124. R0 SiSRaid; C:\WINDOWS\System32\DRIVERS\SiSRaid.sys [45568 2003-12-09] (Silicon Integrated Systems)
  125. S3 VIAudio; C:\WINDOWS\System32\drivers\vinyl97.sys [207488 2007-06-27] (VIA Technologies, Inc.)
  126. S3 GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS [x]
  127. S4 IntelIde; No ImagePath
  128. U1 WS2IFSL;
  129.  
  130. ========================== Drivers MD5 =======================
  131.  
  132. C:\WINDOWS\System32\DRIVERS\ACPI.sys 8FD99680A539792A30E97944FDAECF17
  133. C:\WINDOWS\system32\Drivers\ACPIEC.sys 9859C0F6936E723E4892D7141B1327D5
  134. C:\WINDOWS\System32\drivers\aeaudio.sys 9F59AE2DE835641FBB0C6AFD80D8FA9B
  135. C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
  136. C:\WINDOWS\System32\drivers\afd.sys 322D0E36693D6E24A2398BEE62A268CD
  137. C:\WINDOWS\System32\drivers\ALCXWDM.SYS DD8520280304B6145A6BE31008748C7C
  138. C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
  139. C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
  140. C:\WINDOWS\System32\DRIVERS\ati2mtag.sys 56A1EFFDE2B68B59E82905E083B9D77F
  141. C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
  142. C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
  143. C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
  144. C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
  145. C:\WINDOWS\System32\DRIVERS\CCDECODE.sys 0BE5AEF125BE881C4F854C554F2B025C
  146. C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
  147. C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
  148. C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
  149. C:\WINDOWS\System32\drivers\cmaudio.sys E5842CCF0953D3D46D5E26427B67E901
  150. C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
  151. C:\WINDOWS\System32\drivers\dmboot.sys D992FE1274BDE0F84AD826ACAE022A41
  152. C:\WINDOWS\System32\drivers\dmio.sys 7C824CF7BBDE77D95C08005717A95F6F
  153. C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
  154. C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
  155. C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
  156. C:\WINDOWS\System32\DRIVERS\dtscsibus.sys 50778FE9ED67AEB01EA99877B1B4A4DF
  157. C:\WINDOWS\System32\DRIVERS\eamon.sys 0C51F1D7A7501FC948D35AE0FDE764A5
  158. C:\WINDOWS\System32\DRIVERS\ehdrv.sys C79916F203E1A2CBBE99F22D6E5D21DA
  159. C:\WINDOWS\System32\DRIVERS\epfwtdir.sys 8727A2182BBCD588E255C60C1AA7B357
  160. C:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
  161. C:\WINDOWS\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
  162. C:\WINDOWS\system32\Drivers\Fips.sys D45926117EB9FA946A6AF572FBE1CAA3
  163. C:\WINDOWS\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
  164. C:\WINDOWS\System32\DRIVERS\fltMgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
  165. C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
  166. C:\WINDOWS\System32\DRIVERS\ftdisk.sys 6AC26732762483366C3969C9E4D2259D
  167. C:\WINDOWS\system32\Drivers\ftsata2.sys 65B50B303FF74A5517117BA3D25DBE7F
  168. C:\WINDOWS\System32\DRIVERS\gameenum.sys 065639773D8B03F33577F6CDAEA21063
  169. C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
  170. C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
  171. C:\WINDOWS\System32\Drivers\HTTP.sys F6AACF5BCE2893E0C1754AFEB672E5C9
  172. C:\WINDOWS\System32\DRIVERS\i8042prt.sys 4A0B06AA8943C1E332520F7440C0AA30
  173. C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
  174. C:\WINDOWS\System32\DRIVERS\intelppm.sys 8C953733D8F36EB2133F5BB58808B66B
  175. C:\WINDOWS\System32\DRIVERS\Ip6Fw.sys 3BB22519A194418D5FEC05D800A19AD0
  176. C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
  177. C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
  178. C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
  179. C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
  180. C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
  181. C:\WINDOWS\System32\DRIVERS\isapnp.sys 05A299EC56E52649B1CF2FC52D20F2D7
  182. C:\WINDOWS\System32\DRIVERS\kbdclass.sys 463C1EC80CD17420A542B7F36A36F128
  183. C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
  184. C:\WINDOWS\system32\Drivers\KSecDD.sys 1705745D900DABF2D89F90EBADDC7517
  185. C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
  186. C:\WINDOWS\system32\Drivers\Modem.sys DFCBAD3CEC1C5F964962AE10E0BCC8E1
  187. C:\WINDOWS\System32\DRIVERS\mouclass.sys 35C9E97194C8CFB8430125F8DBC34D04
  188. C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
  189. C:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
  190. C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 68755F0FF16070178B54674FE5B847B0
  191. C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
  192. C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
  193. C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
  194. C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
  195. C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
  196. C:\WINDOWS\System32\drivers\MSTEE.sys E53736A9E30C45FA9E7B5EAC55056D1D
  197. C:\WINDOWS\system32\Drivers\Mup.sys 2F625D11385B1A94360BFC70AAEFDEE1
  198. C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys 5B50F1B2A2ED47D560577B221DA734DB
  199. C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
  200. C:\WINDOWS\System32\DRIVERS\NdisIP.sys 7FF1F1FD8609C149AA432F95A8163D97
  201. C:\WINDOWS\System32\DRIVERS\ndistapi.sys 1AB3D00C991AB086E69DB84B6C0ED78F
  202. C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
  203. C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
  204. C:\WINDOWS\system32\Drivers\NDProxy.sys 6215023940CFD3702B46ABC304E1D45A
  205. C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
  206. C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
  207. C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
  208. C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
  209. C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
  210. C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
  211. C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
  212. C:\WINDOWS\System32\DRIVERS\PAC7302.SYS AD66BC56DD6A030174C03395B3DC0720
  213. C:\WINDOWS\System32\DRIVERS\parport.sys 5575FAF8F97CE5E713D108C2A58D7C7C
  214. C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
  215. C:\WINDOWS\system32\Drivers\ParVdm.sys 70E98B3FD8E963A6A46A2E6247E0BEA1
  216. C:\WINDOWS\System32\DRIVERS\pci.sys A219903CCF74233761D92BEF471A07B1
  217. C:\WINDOWS\System32\DRIVERS\pciide.sys CCF5F451BB1A5A2A522A76E670000FF0
  218. C:\WINDOWS\system32\Drivers\Pcmcia.sys 9E89EF60E9EE05E3F2EEF2DA7397F1C1
  219. C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
  220. C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
  221. C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
  222. C:\WINDOWS\System32\Drivers\PxHelp20.sys 0C8DA0A8B0D227319C285E0EAE65DEFD
  223. C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
  224. C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
  225. C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
  226. C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
  227. C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
  228. C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
  229. C:\WINDOWS\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1
  230. C:\WINDOWS\system32\Drivers\RDPWD.sys 6728E45B66F93C08F11DE2E316FC70DD
  231. C:\WINDOWS\System32\DRIVERS\redbook.sys F828DD7E1419B6653894A8F97A0094C5
  232. C:\WINDOWS\system32\Drivers\SCDEmu.sys 11E42EAD3F4670CB2A5B094649FE8F3A
  233. C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit
  234. C:\WINDOWS\System32\drivers\senfilt.sys BB596A578330AD794C6769B588AF6BB4
  235. C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
  236. C:\WINDOWS\System32\DRIVERS\serial.sys CCA207A8896D4C6A0C9CE29A4AE411A7
  237. C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
  238. C:\WINDOWS\System32\DRIVERS\SISAGPX.sys 61CA562DEF09A782D26B3E7EDEC5369A
  239. C:\WINDOWS\System32\DRIVERS\siside.sys B4485881BD8AED9B157A2E6CF43C2D51
  240. C:\WINDOWS\System32\drivers\sisidex.sys EBE8E50647D0EFEF0ABC8C2F717405D9
  241. C:\WINDOWS\System32\DRIVERS\sisnic.sys 3FBB6EF8B5A71A2FA11F5F461BB73219
  242. C:\WINDOWS\System32\DRIVERS\sisnicxp.sys A1348A901A44760CCD76043525E851D0
  243. C:\WINDOWS\System32\DRIVERS\SiSRaid.sys 4C597E4DE6EDF6453990059BA0EAC7D0
  244. C:\WINDOWS\System32\DRIVERS\SLIP.sys 866D538EBE33709A5C9F5C62B73B7D14
  245. C:\WINDOWS\System32\drivers\smwdm.sys 0D7EFA9D5BAC36EA49940A8EAD9990B5
  246. C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
  247. C:\WINDOWS\System32\DRIVERS\sr.sys 76BB022C2FB6902FD5BDD4F78FC13A5D
  248. C:\WINDOWS\System32\DRIVERS\srv.sys 5252605079810904E31C332E241CD59B
  249. C:\WINDOWS\System32\DRIVERS\StreamIP.sys 77813007BA6265C4B6098187E6ED79D2
  250. C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
  251. C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
  252. C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
  253. C:\WINDOWS\System32\DRIVERS\tcpip.sys 93EA8D04EC73A85DB02EB8805988F733
  254. C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
  255. C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
  256. C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
  257. C:\WINDOWS\System32\DRIVERS\uagp35.sys D85938F272D1BCF3DB3A31FC0A048928
  258. C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
  259. C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
  260. C:\WINDOWS\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7
  261. C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
  262. C:\WINDOWS\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B
  263. C:\WINDOWS\System32\DRIVERS\usbscan.sys A0B8CF9DEB1184FBDD20784A58FA75D4
  264. C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
  265. C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
  266. C:\WINDOWS\System32\drivers\vinyl97.sys FECE79A9AEF62AD5F11A3F4A14F1DEAD
  267. C:\WINDOWS\system32\Drivers\VolSnap.sys 4C8FCB5CC53AAB716D810740FE59D025
  268. C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
  269. C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
  270. C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS C98B39829C2BBD34E454150633C62C78
  271.  
  272. ==================== NetSvcs (Whitelisted) ===================
  273.  
  274.  
  275. ==================== One Month Created Files and Folders ========
  276.  
  277. 2014-02-02 19:34 - 2014-02-02 19:34 - 00021483 _____ () C:\Documents and Settings\Igor\Desktop\FRST.txt
  278. 2014-02-02 15:35 - 2014-02-02 19:19 - 00004831 _____ () C:\Documents and Settings\Igor\Desktop\spregovi.aln
  279. 2014-02-02 14:37 - 2014-02-02 14:37 - 00000000 ____D () C:\Documents and Settings\Igor\Desktop\New Folder
  280. 2014-02-02 14:33 - 2014-02-02 19:19 - 00615350 _____ () C:\Documents and Settings\Igor\Desktop\untitled111112321.bmp
  281. 2014-02-02 12:17 - 2014-02-02 19:34 - 00000000 ____D () C:\FRST
  282. 2014-02-02 12:15 - 2014-02-02 12:15 - 01137152 _____ (Farbar) C:\Documents and Settings\Igor\Desktop\FRST.exe
  283. 2014-01-31 22:04 - 2014-02-02 19:19 - 00027648 ___SH () C:\Documents and Settings\Igor\Desktop\Thumbs.db
  284. 2014-01-31 02:17 - 2014-01-31 02:17 - 06427136 _____ () C:\Documents and Settings\Igor\My Documents\Rescue.asd
  285. 2014-01-30 20:57 - 2014-01-30 20:57 - 00001628 _____ () C:\Documents and Settings\Igor\Desktop\LinPro27.lnk
  286. 2014-01-30 20:57 - 2014-01-30 20:57 - 00000000 ____D () C:\Program Files\LinPro27
  287. 2014-01-30 20:57 - 2014-01-30 20:57 - 00000000 ____D () C:\Documents and Settings\Igor\Start Menu\Programs\LinPro27
  288. 2014-01-16 14:47 - 2014-02-02 19:31 - 00000000 ___RD () C:\Documents and Settings\Igor\My Documents\Dropbox
  289. 2014-01-16 14:47 - 2014-01-16 14:47 - 00000991 _____ () C:\Documents and Settings\Igor\Desktop\Dropbox.lnk
  290. 2014-01-16 14:41 - 2014-01-16 14:41 - 00000000 ____D () C:\Documents and Settings\Igor\Application Data\DropboxMaster
  291. 2014-01-16 14:40 - 2014-01-16 14:40 - 00000000 ____D () C:\Program Files\Dropbox
  292. 2014-01-16 14:37 - 2014-01-16 14:37 - 00000000 ____D () C:\Documents and Settings\Igor\Start Menu\Programs\Dropbox
  293. 2014-01-16 14:35 - 2014-02-02 19:31 - 00000000 ____D () C:\Documents and Settings\Igor\Application Data\Dropbox
  294. 2014-01-15 21:02 - 2014-01-15 21:02 - 00000556 _____ () C:\Documents and Settings\Igor\Desktop\Winamp.lnk
  295. 2014-01-15 21:02 - 2014-01-15 21:02 - 00000000 ____D () C:\Documents and Settings\Igor\Start Menu\Programs\Winamp
  296. 2014-01-15 21:02 - 2006-05-19 22:16 - 00002560 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\cdralw2k.sys
  297. 2014-01-15 21:02 - 2006-05-19 22:16 - 00002432 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\cdr4_xp.sys
  298. 2014-01-15 21:02 - 2006-05-16 21:23 - 01257472 ____N (Sonic Solutions) C:\WINDOWS\system32\pxsfs.dll
  299. 2014-01-15 21:02 - 2006-05-16 21:23 - 00450560 ____N (Sonic Solutions) C:\WINDOWS\system32\pxdrv.dll
  300. 2014-01-15 21:02 - 2006-05-16 21:23 - 00430080 ____N (Sonic Solutions) C:\WINDOWS\system32\px.dll
  301. 2014-01-15 21:02 - 2006-05-16 21:23 - 00339968 ____N (Sonic Solutions) C:\WINDOWS\system32\pxwave.dll
  302. 2014-01-15 21:02 - 2006-05-16 21:23 - 00176128 ____N (Sonic Solutions) C:\WINDOWS\system32\pxmas.dll
  303. 2014-01-15 21:02 - 2006-05-16 21:23 - 00061440 ____N (Sonic Solutions) C:\WINDOWS\system32\pxhpinst.exe
  304. 2014-01-15 21:02 - 2006-05-16 21:23 - 00057344 ____N (Sonic Solutions) C:\WINDOWS\system32\pxcpya64.exe
  305. 2014-01-15 21:02 - 2006-05-16 21:23 - 00056832 ____N (Sonic Solutions) C:\WINDOWS\system32\pxinsa64.exe
  306. 2014-01-15 21:02 - 2006-05-16 21:23 - 00046080 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\PxHelp20.sys
  307. 2014-01-15 21:02 - 2006-05-16 21:23 - 00028672 ____N (Sonic Solutions) C:\WINDOWS\system32\vxblock.dll
  308. 2014-01-15 21:01 - 2014-01-15 21:02 - 00000000 ____D () C:\Program Files\Winamp
  309. 2014-01-08 10:17 - 2014-01-09 11:54 - 47641637 _____ () C:\Documents and Settings\Igor\Desktop\BHD.dem
  310. 2014-01-08 10:07 - 2014-01-08 10:07 - 00000000 ____D () C:\Documents and Settings\Igor\Start Menu\Programs\WinRAR
  311. 2014-01-08 10:07 - 2014-01-08 10:07 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
  312.  
  313. ==================== One Month Modified Files and Folders =======
  314.  
  315. 2014-02-02 19:34 - 2014-02-02 19:34 - 00021483 _____ () C:\Documents and Settings\Igor\Desktop\FRST.txt
  316. 2014-02-02 19:34 - 2014-02-02 12:17 - 00000000 ____D () C:\FRST
  317. 2014-02-02 19:31 - 2014-01-16 14:47 - 00000000 ___RD () C:\Documents and Settings\Igor\My Documents\Dropbox
  318. 2014-02-02 19:31 - 2014-01-16 14:35 - 00000000 ____D () C:\Documents and Settings\Igor\Application Data\Dropbox
  319. 2014-02-02 19:30 - 2013-11-29 10:37 - 00000000 ____D () C:\Documents and Settings\Igor\Application Data\Skype
  320. 2014-02-02 19:29 - 2013-11-29 09:12 - 00372389 _____ () C:\WINDOWS\WindowsUpdate.log
  321. 2014-02-02 19:29 - 2013-11-28 18:30 - 00000159 _____ () C:\WINDOWS\wiadebug.log
  322. 2014-02-02 19:29 - 2013-11-28 18:30 - 00000048 _____ () C:\WINDOWS\wiaservc.log
  323. 2014-02-02 19:28 - 2013-11-29 10:21 - 00000878 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
  324. 2014-02-02 19:28 - 2013-11-29 09:20 - 00000178 ___SH () C:\Documents and Settings\Igor\ntuser.ini
  325. 2014-02-02 19:28 - 2013-11-29 09:18 - 00032512 _____ () C:\WINDOWS\SchedLgU.Txt
  326. 2014-02-02 19:28 - 2013-11-29 09:18 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
  327. 2014-02-02 19:19 - 2014-02-02 15:35 - 00004831 _____ () C:\Documents and Settings\Igor\Desktop\spregovi.aln
  328. 2014-02-02 19:19 - 2014-02-02 14:33 - 00615350 _____ () C:\Documents and Settings\Igor\Desktop\untitled111112321.bmp
  329. 2014-02-02 19:19 - 2014-01-31 22:04 - 00027648 ___SH () C:\Documents and Settings\Igor\Desktop\Thumbs.db
  330. 2014-02-02 18:37 - 2013-11-29 10:21 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
  331. 2014-02-02 14:41 - 2013-12-15 10:53 - 00000000 ____D () C:\Documents and Settings\Igor\Local Settings\Application Data\CRE
  332. 2014-02-02 14:37 - 2014-02-02 14:37 - 00000000 ____D () C:\Documents and Settings\Igor\Desktop\New Folder
  333. 2014-02-02 14:35 - 2013-12-15 10:53 - 00000000 ____D () C:\Documents and Settings\Igor\Local Settings\Application Data\Conduit
  334. 2014-02-02 12:15 - 2014-02-02 12:15 - 01137152 _____ (Farbar) C:\Documents and Settings\Igor\Desktop\FRST.exe
  335. 2014-01-31 02:17 - 2014-01-31 02:17 - 06427136 _____ () C:\Documents and Settings\Igor\My Documents\Rescue.asd
  336. 2014-01-30 20:57 - 2014-01-30 20:57 - 00001628 _____ () C:\Documents and Settings\Igor\Desktop\LinPro27.lnk
  337. 2014-01-30 20:57 - 2014-01-30 20:57 - 00000000 ____D () C:\Program Files\LinPro27
  338. 2014-01-30 20:57 - 2014-01-30 20:57 - 00000000 ____D () C:\Documents and Settings\Igor\Start Menu\Programs\LinPro27
  339. 2014-01-29 12:47 - 2013-11-29 10:22 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
  340. 2014-01-26 20:01 - 2013-11-29 10:25 - 00002265 _____ () C:\Documents and Settings\All Users\Desktop\Skype.lnk
  341. 2014-01-24 21:56 - 2013-11-28 18:27 - 00486459 _____ () C:\WINDOWS\setupapi.log
  342. 2014-01-22 11:45 - 2013-12-02 15:18 - 00004608 _____ () C:\Documents and Settings\Igor\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  343. 2014-01-20 19:08 - 2014-01-02 00:30 - 00000000 ____D () C:\Program Files\Mozilla Firefox
  344. 2014-01-20 19:08 - 2013-12-18 17:57 - 00000000 ____D () C:\Documents and Settings\Igor\Application Data\uTorrent
  345. 2014-01-20 19:08 - 2013-11-29 10:24 - 00000000 ____D () C:\Program Files\uTorrent
  346. 2014-01-20 19:08 - 2013-11-29 10:09 - 00000000 ____D () C:\WINDOWS\Minidump
  347. 2014-01-16 14:47 - 2014-01-16 14:47 - 00000991 _____ () C:\Documents and Settings\Igor\Desktop\Dropbox.lnk
  348. 2014-01-16 14:41 - 2014-01-16 14:41 - 00000000 ____D () C:\Documents and Settings\Igor\Application Data\DropboxMaster
  349. 2014-01-16 14:40 - 2014-01-16 14:40 - 00000000 ____D () C:\Program Files\Dropbox
  350. 2014-01-16 14:37 - 2014-01-16 14:37 - 00000000 ____D () C:\Documents and Settings\Igor\Start Menu\Programs\Dropbox
  351. 2014-01-15 23:11 - 2013-11-28 18:20 - 00000000 ____D () C:\WINDOWS\security
  352. 2014-01-15 21:02 - 2014-01-15 21:02 - 00000556 _____ () C:\Documents and Settings\Igor\Desktop\Winamp.lnk
  353. 2014-01-15 21:02 - 2014-01-15 21:02 - 00000000 ____D () C:\Documents and Settings\Igor\Start Menu\Programs\Winamp
  354. 2014-01-15 21:02 - 2014-01-15 21:01 - 00000000 ____D () C:\Program Files\Winamp
  355. 2014-01-15 21:02 - 2013-12-15 11:31 - 00000000 ____D () C:\WINDOWS\RegisteredPackages
  356. 2014-01-15 21:02 - 2013-11-29 09:14 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
  357. 2014-01-15 21:02 - 2013-11-29 09:13 - 00000000 __SHD () C:\Documents and Settings\All Users\DRM
  358. 2014-01-15 21:02 - 2013-11-29 09:10 - 00015769 _____ () C:\WINDOWS\wmsetup.log
  359. 2014-01-13 09:53 - 2004-08-04 20:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
  360. 2014-01-09 11:54 - 2014-01-08 10:17 - 47641637 _____ () C:\Documents and Settings\Igor\Desktop\BHD.dem
  361. 2014-01-09 00:42 - 2013-11-29 10:23 - 00000000 ____D () C:\Program Files\WinRAR
  362. 2014-01-08 10:07 - 2014-01-08 10:07 - 00000000 ____D () C:\Documents and Settings\Igor\Start Menu\Programs\WinRAR
  363. 2014-01-08 10:07 - 2014-01-08 10:07 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
  364.  
  365. Some content of TEMP:
  366. ====================
  367. C:\Documents and Settings\Igor\Local Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdbnjws.dll
  368. C:\Documents and Settings\Igor\Local Settings\Temp\tbSwee.dll
  369.  
  370.  
  371. ==================== Bamital & volsnap Check =================
  372.  
  373. C:\WINDOWS\explorer.exe => MD5 is legit
  374. C:\WINDOWS\system32\winlogon.exe => MD5 is legit
  375. C:\WINDOWS\system32\svchost.exe => MD5 is legit
  376. C:\WINDOWS\system32\services.exe => MD5 is legit
  377. C:\WINDOWS\system32\User32.dll => MD5 is legit
  378. C:\WINDOWS\system32\userinit.exe => MD5 is legit
  379. C:\WINDOWS\system32\rpcss.dll
  380. [2008-04-14 20:42] - [2008-04-14 20:42] - 0399360 ____A (Microsoft Corporation) 2589fe6015a316c0f5d5112b4da7b509
  381.  
  382. ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
  383. C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit
  384.  
  385. ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!