Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 18-12-2013 01 Ran by Administrator (administrator) on KOMP-0019C1A62A on 18-12-2013 11:13:59 Running from E:\Documents and Settings\Administrator\Moje dokumenty\Pobieranie Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== () E:\Program Files\Mobogenie\DaemonProcess.exe (Intel Corporation) E:\WINDOWS\system32\hkcmd.exe (Microsoft Corporation) E:\Program Files\Messenger\msmsgs.exe (McAfee, Inc.) E:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe (Oracle Corporation) E:\Program Files\Java\jre7\bin\jqs.exe (Malwarebytes Corporation) E:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) E:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) E:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Mozilla Corporation) E:\Program Files\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [mobilegeni daemon] - E:\Program Files\Mobogenie\DaemonProcess.exe [761024 2013-12-11] () HKLM\...\Run: [HotKeysCmds] - E:\WINDOWS\system32\hkcmd.exe [ ] () HKLM\...\Run: [Adobe ARM] - E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: E:\Windows\system32\igfxsrvc.dll (Intel Corporation) HKCU\...\Run: [NextLive] - E:\WINDOWS\system32\rundll32.exe "E:\Documents and Settings\Administrator\Dane aplikacji\newnext.me\nengine.dll",EntryPoint -m l HKCU\...\Run: [MSMSGS] - E:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation) MountPoints2: C - E:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe MountPoints2: E - E:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\Recycled\ctfmon.exe MountPoints2: {3abf5168-716a-11e2-a1d7-000d56901466} - E:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe MountPoints2: {5f7fd28c-59d4-11e2-a1af-e450fc2fa921} - E:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe MountPoints2: {8e191568-b4b5-11e2-a270-000d56901466} - E:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe MountPoints2: {ddebb3eb-59be-11e2-bb5e-806d6172696f} - E:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe MountPoints2: {ddebb3ed-59be-11e2-bb5e-806d6172696f} - E:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\Recycled\ctfmon.exe Startup: E:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\runctf.lnk ShortcutTarget: runctf.lnk -> C:\DOCUME~1\ADMINI~1\wgsdgsdgdsgsd.exe (No File) Startup: E:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk ShortcutTarget: McAfee Security Scan Plus.lnk -> E:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe (McAfee, Inc.) ==================== Internet (Whitelisted) ==================== SearchScopes: HKCU - {3DBBA21D-36F2-40EE-B174-EC14C4DC9F27} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^PL&apn_uid=EF32945B-D726-43F5-B851-D3AF4F7878F4&apn_sauid=0A85D3B9-7336-4084-87F7-938D093DCF10 BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - E:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Tcpip\Parameters: [DhcpNameServer] 192.168.55.1 FireFox: ======== FF ProfilePath: E:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\udytt4wx.default-1387360656078 FF Homepage: wp.pl FF Plugin: @adobe.com/FlashPlayer - E:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF Plugin: @ganymede/MAHJONG,version=1.0 - E:\Program Files\Ganymede\Plugins\MAHJONG\NPMAHJONG.dll (Ganymede Technologies) FF Plugin: @java.com/DTPlugin,version=10.25.2 - E:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.25.2 - E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @mcafee.com/McAfeeMssPlugin - E:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.) FF Plugin: Adobe Reader - E:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) ========================== Services (Whitelisted) ================= R2 MBAMScheduler; E:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; E:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) S3 McComponentHostService; E:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.) R2 JavaQuickStarterService; "E:\Program Files\Java\jre7\bin\jqs.exe" -service -config "E:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf" ==================== Drivers (Whitelisted) ==================== R3 MBAMProtector; E:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation) R3 {6080A529-897E-4629-A488-ABA0C29B635E}; E:\Windows\System32\drivers\ialmsbw.sys [120830 2003-10-08] (Intel Corporation) R3 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91}; E:\Windows\System32\drivers\ialmkchw.sys [98842 2003-10-08] (Intel Corporation) U1 WS2IFSL; ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-12-18 11:10 - 2013-12-18 11:10 - 00000000 ____D E:\FRST 2013-12-18 10:57 - 2013-12-18 10:57 - 00000000 ____D E:\Documents and Settings\Administrator\Pulpit\Stare dane programu Firefox 2013-12-18 10:51 - 2013-12-18 10:51 - 00000161 _____ E:\WINDOWS\WindowsUpdate.log 2013-12-18 10:50 - 2013-12-18 10:50 - 00018120 _____ E:\Documents and Settings\Administrator\Moje dokumenty\cc_20131218_105033.reg 2013-12-18 10:48 - 2013-12-18 10:48 - 00000682 _____ E:\Documents and Settings\All Users\Pulpit\CCleaner.lnk 2013-12-18 10:48 - 2013-12-18 10:48 - 00000000 ____D E:\Program Files\CCleaner 2013-12-18 10:48 - 2013-12-18 10:48 - 00000000 ____D E:\Documents and Settings\All Users\Menu Start\Programy\CCleaner 2013-12-16 19:35 - 2013-12-16 19:35 - 00000784 _____ E:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk 2013-12-16 19:35 - 2013-12-16 19:35 - 00000000 ____D E:\Program Files\Malwarebytes' Anti-Malware 2013-12-16 19:35 - 2013-12-16 19:35 - 00000000 ____D E:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware 2013-12-16 19:35 - 2013-12-16 19:35 - 00000000 ____D E:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes 2013-12-16 19:35 - 2013-12-16 19:35 - 00000000 ____D E:\Documents and Settings\Administrator\Dane aplikacji\Malwarebytes 2013-12-16 19:35 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) E:\WINDOWS\system32\Drivers\mbam.sys 2013-12-16 19:22 - 2013-12-16 19:22 - 00000000 ____D E:\Documents and Settings\All Users\Menu Start\Programy\WinRAR 2013-12-16 19:22 - 2013-12-16 19:22 - 00000000 ____D E:\Documents and Settings\Administrator\Menu Start\Programy\WinRAR 2013-12-16 19:16 - 2013-12-18 10:34 - 00000000 ____D E:\WINDOWS\pss 2013-12-16 19:16 - 2013-12-16 19:32 - 00000000 __SHD E:\WINDOWS\CSC 2013-12-16 08:52 - 2013-12-16 08:52 - 00000000 ____D E:\Documents and Settings\Administrator\Moje dokumenty\Mobogenie 2013-12-15 19:56 - 2013-12-15 19:56 - 00012328 _____ E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT 2013-12-15 19:13 - 2013-12-16 13:23 - 00000664 _____ E:\WINDOWS\system32\d3d9caps.dat 2013-12-15 18:26 - 2013-12-15 18:26 - 00003025 _____ E:\Documents and Settings\All Users\Dane aplikacji\dsgsdgdsgdsgw.js 2013-12-15 17:22 - 2013-12-15 17:22 - 00000000 ____D E:\Documents and Settings\Administrator\Dane aplikacji\uTorrent 2013-12-15 17:21 - 2013-12-15 17:21 - 00000000 ___RD E:\Documents and Settings\Administrator\Moje dokumenty\Moje wideo 2013-12-15 17:21 - 2013-12-15 17:21 - 00000000 ____D E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files 2013-12-15 17:19 - 2013-12-15 17:19 - 00000000 ____D E:\Documents and Settings\Administrator\Dane aplikacji\GRETECH 2013-12-15 16:35 - 2013-12-15 16:35 - 00000000 ___RD E:\Documents and Settings\Administrator\Menu Start\Programy\Narzędzia administracyjne 2013-12-15 16:35 - 2013-12-15 16:35 - 00000000 ___HD E:\WINDOWS\system32\GroupPolicy 2013-12-15 16:30 - 2013-12-15 16:30 - 00000000 ____D E:\WINDOWS\system32\NtmsData 2013-12-15 16:23 - 2013-12-15 16:23 - 00000000 __SHD E:\Documents and Settings\NetworkService\IETldCache 2013-12-15 16:22 - 2013-12-18 10:42 - 00000000 ____D E:\WINDOWS\system32\appmgmt 2013-12-11 17:27 - 2013-12-11 17:27 - 09293192 _____ (Adobe Systems Incorporated) E:\WINDOWS\system32\FlashPlayerInstaller.exe 2013-12-10 12:12 - 2013-12-16 13:24 - 00000000 ____D E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\genienext 2013-12-03 15:10 - 2013-12-03 15:10 - 00000000 ____D E:\Documents and Settings\Administrator\.android 2013-11-30 15:20 - 2013-12-12 12:43 - 00000000 ____D E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\cache 2013-11-30 15:19 - 2013-12-16 19:31 - 00003034 _____ E:\Documents and Settings\Administrator\daemonprocess.txt 2013-11-30 15:19 - 2013-12-16 19:12 - 00000000 ____D E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Mobogenie 2013-11-30 15:18 - 2013-12-16 19:22 - 00000000 ____D E:\Documents and Settings\Administrator\Dane aplikacji\WinRAR 2013-11-30 15:18 - 2013-12-15 17:30 - 00000000 ____D E:\Program Files\Mobogenie 2013-11-24 16:20 - 2013-11-24 16:20 - 00000000 ____D E:\Documents and Settings\All Users\Menu Start\Programy\McAfee Security Scan Plus ==================== One Month Modified Files and Folders ======= 2013-12-18 11:13 - 2013-01-09 15:53 - 00000000 ____D E:\Documents and Settings\Administrator\Moje dokumenty\Pobieranie 2013-12-18 11:10 - 2013-12-18 11:10 - 00000000 ____D E:\FRST 2013-12-18 10:57 - 2013-12-18 10:57 - 00000000 ____D E:\Documents and Settings\Administrator\Pulpit\Stare dane programu Firefox 2013-12-18 10:57 - 2013-01-08 18:52 - 00000000 ____D E:\Documents and Settings\Administrator\Pulpit 2013-12-18 10:52 - 2013-01-08 18:52 - 00000006 ____H E:\WINDOWS\Tasks\SA.DAT 2013-12-18 10:51 - 2013-12-18 10:51 - 00000161 _____ E:\WINDOWS\WindowsUpdate.log 2013-12-18 10:51 - 2013-01-08 18:52 - 00032518 _____ E:\WINDOWS\SchedLgU.Txt 2013-12-18 10:51 - 2013-01-08 18:52 - 00000188 ___SH E:\Documents and Settings\Administrator\ntuser.ini 2013-12-18 10:50 - 2013-12-18 10:50 - 00018120 _____ E:\Documents and Settings\Administrator\Moje dokumenty\cc_20131218_105033.reg 2013-12-18 10:50 - 2013-01-08 18:52 - 00000000 ___RD E:\Documents and Settings\Administrator\Moje dokumenty 2013-12-18 10:49 - 2013-01-08 18:52 - 00000000 ____D E:\Documents and Settings\Administrator 2013-12-18 10:48 - 2013-12-18 10:48 - 00000682 _____ E:\Documents and Settings\All Users\Pulpit\CCleaner.lnk 2013-12-18 10:48 - 2013-12-18 10:48 - 00000000 ____D E:\Program Files\CCleaner 2013-12-18 10:48 - 2013-12-18 10:48 - 00000000 ____D E:\Documents and Settings\All Users\Menu Start\Programy\CCleaner 2013-12-18 10:48 - 2013-01-08 19:26 - 00000000 ___RD E:\Documents and Settings\All Users\Menu Start\Programy 2013-12-18 10:48 - 2013-01-08 19:26 - 00000000 ____D E:\Documents and Settings\All Users\Pulpit 2013-12-18 10:42 - 2013-12-15 16:22 - 00000000 ____D E:\WINDOWS\system32\appmgmt 2013-12-18 10:42 - 2013-01-08 18:52 - 00000000 ___HD E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji 2013-12-18 10:34 - 2013-12-16 19:16 - 00000000 ____D E:\WINDOWS\pss 2013-12-18 10:34 - 2013-01-08 19:26 - 00000000 ___RD E:\Documents and Settings\All Users\Menu Start\Programy\Autostart 2013-12-18 10:34 - 2013-01-08 18:52 - 00000000 ___RD E:\Documents and Settings\Administrator\Menu Start\Programy\Autostart 2013-12-18 10:34 - 2008-04-16 13:00 - 00000542 _____ E:\WINDOWS\win.ini 2013-12-18 10:34 - 2008-04-16 13:00 - 00000227 _____ E:\WINDOWS\system.ini 2013-12-18 10:30 - 2008-04-16 13:00 - 00002206 _____ E:\WINDOWS\system32\wpa.dbl 2013-12-16 20:52 - 2013-01-08 18:52 - 00000000 __RHD E:\Documents and Settings\Administrator\Dane aplikacji 2013-12-16 20:27 - 2013-01-09 16:19 - 00000930 _____ E:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2013-12-16 19:35 - 2013-12-16 19:35 - 00000784 _____ E:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk 2013-12-16 19:35 - 2013-12-16 19:35 - 00000000 ____D E:\Program Files\Malwarebytes' Anti-Malware 2013-12-16 19:35 - 2013-12-16 19:35 - 00000000 ____D E:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware 2013-12-16 19:35 - 2013-12-16 19:35 - 00000000 ____D E:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes 2013-12-16 19:35 - 2013-12-16 19:35 - 00000000 ____D E:\Documents and Settings\Administrator\Dane aplikacji\Malwarebytes 2013-12-16 19:35 - 2013-01-08 19:26 - 00000000 __RHD E:\Documents and Settings\All Users\Dane aplikacji 2013-12-16 19:32 - 2013-12-16 19:16 - 00000000 __SHD E:\WINDOWS\CSC 2013-12-16 19:31 - 2013-11-30 15:19 - 00003034 _____ E:\Documents and Settings\Administrator\daemonprocess.txt 2013-12-16 19:22 - 2013-12-16 19:22 - 00000000 ____D E:\Documents and Settings\All Users\Menu Start\Programy\WinRAR 2013-12-16 19:22 - 2013-12-16 19:22 - 00000000 ____D E:\Documents and Settings\Administrator\Menu Start\Programy\WinRAR 2013-12-16 19:22 - 2013-11-30 15:18 - 00000000 ____D E:\Documents and Settings\Administrator\Dane aplikacji\WinRAR 2013-12-16 19:22 - 2013-01-08 21:41 - 00000000 ____D E:\Program Files\WinRAR 2013-12-16 19:22 - 2013-01-08 18:52 - 00000000 ___RD E:\Documents and Settings\Administrator\Menu Start\Programy 2013-12-16 19:12 - 2013-11-30 15:19 - 00000000 ____D E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Mobogenie 2013-12-16 13:24 - 2013-12-10 12:12 - 00000000 ____D E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\genienext 2013-12-16 13:23 - 2013-12-15 19:13 - 00000664 _____ E:\WINDOWS\system32\d3d9caps.dat 2013-12-16 08:52 - 2013-12-16 08:52 - 00000000 ____D E:\Documents and Settings\Administrator\Moje dokumenty\Mobogenie 2013-12-15 19:56 - 2013-12-15 19:56 - 00012328 _____ E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT 2013-12-15 18:26 - 2013-12-15 18:26 - 00003025 _____ E:\Documents and Settings\All Users\Dane aplikacji\dsgsdgdsgdsgw.js 2013-12-15 17:30 - 2013-11-30 15:18 - 00000000 ____D E:\Program Files\Mobogenie 2013-12-15 17:22 - 2013-12-15 17:22 - 00000000 ____D E:\Documents and Settings\Administrator\Dane aplikacji\uTorrent 2013-12-15 17:21 - 2013-12-15 17:21 - 00000000 ___RD E:\Documents and Settings\Administrator\Moje dokumenty\Moje wideo 2013-12-15 17:21 - 2013-12-15 17:21 - 00000000 ____D E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files 2013-12-15 17:19 - 2013-12-15 17:19 - 00000000 ____D E:\Documents and Settings\Administrator\Dane aplikacji\GRETECH 2013-12-15 16:35 - 2013-12-15 16:35 - 00000000 ___RD E:\Documents and Settings\Administrator\Menu Start\Programy\Narzędzia administracyjne 2013-12-15 16:35 - 2013-12-15 16:35 - 00000000 ___HD E:\WINDOWS\system32\GroupPolicy 2013-12-15 16:30 - 2013-12-15 16:30 - 00000000 ____D E:\WINDOWS\system32\NtmsData 2013-12-15 16:26 - 2013-01-08 18:33 - 00000000 ____D E:\WINDOWS\Registration 2013-12-15 16:23 - 2013-12-15 16:23 - 00000000 __SHD E:\Documents and Settings\NetworkService\IETldCache 2013-12-15 16:23 - 2013-01-08 18:46 - 00000000 __SHD E:\Documents and Settings\NetworkService 2013-12-15 16:16 - 2013-01-08 18:37 - 00001607 _____ E:\Documents and Settings\All Users\Menu Start\Określ dostęp do programów i ich ustawienia domyślne.lnk 2013-12-12 12:43 - 2013-11-30 15:20 - 00000000 ____D E:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\cache 2013-12-11 17:27 - 2013-12-11 17:27 - 09293192 _____ (Adobe Systems Incorporated) E:\WINDOWS\system32\FlashPlayerInstaller.exe 2013-12-11 17:27 - 2013-01-09 16:19 - 00692616 _____ (Adobe Systems Incorporated) E:\WINDOWS\system32\FlashPlayerApp.exe 2013-12-11 17:27 - 2013-01-09 16:19 - 00071048 _____ (Adobe Systems Incorporated) E:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2013-12-03 15:10 - 2013-12-03 15:10 - 00000000 ____D E:\Documents and Settings\Administrator\.android 2013-11-24 16:20 - 2013-11-24 16:20 - 00000000 ____D E:\Documents and Settings\All Users\Menu Start\Programy\McAfee Security Scan Plus 2013-11-24 16:20 - 2013-01-09 16:19 - 00001775 _____ E:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk 2013-11-24 16:20 - 2013-01-09 16:19 - 00000000 ____D E:\Program Files\McAfee Security Scan 2013-11-21 21:39 - 2013-01-08 21:52 - 00000000 ___RD E:\Documents and Settings\Administrator\Pulpit\Gry ==================== Bamital & volsnap Check ================= E:\Windows\explorer.exe [2008-04-16 13:00] - [2008-04-16 13:00] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a E:\Windows\System32\winlogon.exe [2008-04-16 13:00] - [2008-04-16 13:00] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 E:\Windows\System32\svchost.exe [2008-04-16 13:00] - [2008-04-16 13:00] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce E:\Windows\System32\services.exe [2008-04-16 13:00] - [2008-04-16 13:00] - 0109056 ____A (Microsoft Corporation) 3e3ae424e27c4cefe4cab368c7b570ea E:\Windows\System32\User32.dll [2008-04-16 13:00] - [2008-04-16 13:00] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 E:\Windows\System32\userinit.exe [2008-04-16 13:00] - [2008-04-16 13:00] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 E:\Windows\System32\Drivers\volsnap.sys [2008-04-16 13:00] - [2008-04-16 13:00] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 ==================== End Of Log ============================