REKLAMA

FRST.txt

Jakie programy do skanowania wirusów polecacie przy spadku prędkości internetu?

Już samo usunięcie pandy spowodowało szybsze wczytywanie stron. Daje logi


Pobierz plik - link do postu

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:10-07-2014
Ran by Kasia (administrator) on SW on 10-07-2014 22:47:09
Running from F:\Pobrania fox
Platform: Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polski
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Creative Technology Ltd.) C:\WINDOWS\V0420Mon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\NetMeter\NetMeter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\pcCMService.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SkyTel] = & gt; C:\WINDOWS\SkyTel.EXE [2879488 2006-05-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RTHDCPL] = & gt; C:\WINDOWS\RTHDCPL.EXE [16116224 2007-01-30] (Realtek Semiconductor Corp.)
HKLM\...\Run: [BluetoothAuthenticationAgent] = & gt; rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [V0420Mon.exe] = & gt; C:\WINDOWS\V0420Mon.exe [32768 2007-04-30] (Creative Technology Ltd.)
HKLM\...\Run: [APSDaemon] = & gt; C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [NvBackend] = & gt; C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [NvCplDaemon] = & gt; C:\WINDOWS\system32\NvCpl.dll [15717664 2014-05-20] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] = & gt; C:\WINDOWS\system32\NvMcTray.dll [377288 2014-05-20] (NVIDIA Corporation)
HKU\.DEFAULT\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-220523388-2147186123-1801674531-1004\...\Run: [C:\Program Files\NetMeter\NetMeter.exe] = & gt; C:\Program Files\NetMeter\NetMeter.exe [331264 2007-08-11] ()
HKU\S-1-5-21-220523388-2147186123-1801674531-1004\...\Run: [] = & gt; [X]
HKU\S-1-5-21-220523388-2147186123-1801674531-1004\...\Policies\Explorer: [EditLevel] 0
HKU\S-1-5-21-220523388-2147186123-1801674531-1004\...\Policies\Explorer: [NoFileMenu] 0
HKU\S-1-5-21-220523388-2147186123-1801674531-1004\...\Policies\Explorer: [NoCommonGroups] 0
HKU\S-1-5-21-220523388-2147186123-1801674531-1004\...\Policies\Explorer: [NoRecentDocsNetHood] 1
HKU\S-1-5-21-220523388-2147186123-1801674531-1004\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-220523388-2147186123-1801674531-1004\...\Policies\Explorer: [NoRecentDocsMenu] 0
ShellIconOverlayIdentifiers: 00avast - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; No File

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://pl.msn.com/?pc=UP97 & ocid=UP97DHP
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie & ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - & Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - & Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Kasia\Dane aplikacji\Mozilla\Firefox\Profiles\rn26ciwg.default
FF DefaultSearchEngine: Wikipedia (pl)
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Wikipedia (pl)
FF Homepage: google.pl
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF & PC=UP97 & q=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin - C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\Kasia\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Extension: Element Hiding Helper for Adblock Plus - C:\Documents and Settings\Kasia\Dane aplikacji\Mozilla\Firefox\Profiles\rn26ciwg.default\Extensions\elemhidehelper@adblockplus.org.xpi [2013-11-10]
FF Extension: NoScript - C:\Documents and Settings\Kasia\Dane aplikacji\Mozilla\Firefox\Profiles\rn26ciwg.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-11-24]
FF Extension: Adblock Plus - C:\Documents and Settings\Kasia\Dane aplikacji\Mozilla\Firefox\Profiles\rn26ciwg.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-11-24]
FF Extension: Motive Extension - C:\Program Files\Mozilla Firefox\extensions\mcciwbch@motive.com.xpi [2014-06-11]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-12-20]

========================== Services (Whitelisted) =================

S2 6to4; C:\WINDOWS\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 pcCMService; C:\Program Files\Common Files\Motive\pcCMService.exe [368640 2012-09-27] (Alcatel-Lucent) [File not signed]

==================== Drivers (Whitelisted) ====================

R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43520 2006-06-18] (Advanced Micro Devices)
S1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R0 atapiz; C:\WINDOWS\System32\DRIVERS\T9.SYS [96512 2014-07-07] (Microsoft Corporation)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2010-06-14] () [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [14656 2011-10-05] (Windows (R) Codename Longhorn DDK provider)
R3 KMWDFILTER; C:\WINDOWS\System32\DRIVERS\KMWDFILTER.sys [17408 2008-10-09] (Windows (R) Codename Longhorn DDK provider)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2012-09-27] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2012-09-27] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [129312 2014-05-20] (NVIDIA Corporation)
R3 R5BaseSmc; C:\WINDOWS\System32\DRIVERS\smccard.sys [12800 2011-10-05] (OEM)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-03-18] (Duplex Secure Ltd.)
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2013-08-25] ()
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
S3 usb_rndis; C:\WINDOWS\System32\DRIVERS\usb8023.sys [12928 2013-02-12] (Microsoft Corporation)
S3 V0420VID; C:\WINDOWS\System32\DRIVERS\V0420Vid.sys [99648 2007-05-31] (Creative Technology Ltd.)
S1 anlsrqzd; \??\C:\WINDOWS\system32\drivers\anlsrqzd.sys [X]
S4 IntelIde; No ImagePath
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-10 22:47 - 2014-07-10 22:47 - 00000000 ____D () C:\FRST
2014-07-10 22:33 - 2014-07-10 22:41 - 00000000 ____D () C:\AdwCleaner
2014-07-07 11:17 - 2008-04-13 20:40 - 00096512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ATAPI.SYS.bck
2014-07-07 11:16 - 2014-07-07 11:16 - 00000000 _____ () C:\WINDOWS\system32\Drivers\TB.tmp
2014-07-07 11:04 - 2014-07-07 11:04 - 00000000 _____ () C:\WINDOWS\system32\Drivers\T9.tmp
2014-07-07 11:04 - 2014-07-07 10:59 - 00096512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\T9.sys
2014-06-24 12:25 - 2014-06-24 12:25 - 00000000 ____D () C:\Program Files\MozBackup
2014-06-24 12:25 - 2014-06-24 12:25 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\MozBackup
2014-06-20 15:19 - 2014-06-20 15:19 - 00000000 ____D () C:\Documents and Settings\Kasia\Ustawienia lokalne\Dane aplikacji\Adobe
2014-06-11 22:32 - 2014-06-11 22:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-07-10 22:47 - 2014-07-10 22:47 - 00000000 ____D () C:\FRST
2014-07-10 22:47 - 2011-07-12 00:15 - 00000000 ____D () C:\Documents and Settings\Kasia\Ustawienia lokalne\Temp
2014-07-10 22:45 - 2014-05-30 17:35 - 00002900 _____ () C:\WINDOWS\system32\nvAppTimestamps
2014-07-10 22:45 - 2011-07-12 00:15 - 00000000 ____D () C:\Documents and Settings\Kasia\Pulpit
2014-07-10 22:44 - 2011-07-12 00:10 - 01147061 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-10 22:43 - 2011-07-22 14:25 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-07-10 22:43 - 2011-07-22 14:25 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-07-10 22:42 - 2011-07-12 00:15 - 00000188 ___SH () C:\Documents and Settings\Kasia\ntuser.ini
2014-07-10 22:42 - 2011-07-12 00:15 - 00000000 ____D () C:\Documents and Settings\Kasia
2014-07-10 22:41 - 2014-07-10 22:33 - 00000000 ____D () C:\AdwCleaner
2014-07-10 22:34 - 2011-07-12 00:15 - 00000000 ___RD () C:\Documents and Settings\Kasia\Menu Start
2014-07-10 22:27 - 2014-04-26 04:51 - 00000000 ____D () C:\Program Files\Panda Security
2014-07-10 22:27 - 2011-07-12 00:15 - 00000000 ___HD () C:\Documents and Settings\Kasia\Ustawienia lokalne\Dane aplikacji
2014-07-10 22:25 - 2011-07-12 02:03 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy
2014-07-10 22:24 - 2013-05-15 09:46 - 01066261 _____ () C:\WINDOWS\setupapi.log
2014-07-10 21:33 - 2011-08-26 10:17 - 00163840 _____ () C:\Documents and Settings\Kasia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-10 21:19 - 2013-11-07 09:09 - 00000000 ____D () C:\Documents and Settings\Kasia\Dane aplikacji\vlc
2014-07-10 12:21 - 2014-04-26 04:55 - 00008627 _____ () C:\WINDOWS\system32\PAV_FOG.OPC
2014-07-09 11:41 - 2013-07-10 23:46 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-09 11:32 - 2011-07-12 01:10 - 93585272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-09 11:31 - 2006-03-02 14:00 - 00012598 _____ () C:\WINDOWS\system32\wpa.dbl
2014-07-07 11:16 - 2014-07-07 11:16 - 00000000 _____ () C:\WINDOWS\system32\Drivers\TB.tmp
2014-07-07 11:04 - 2014-07-07 11:04 - 00000000 _____ () C:\WINDOWS\system32\Drivers\T9.tmp
2014-07-07 10:59 - 2014-07-07 11:04 - 00096512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\T9.sys
2014-07-07 10:59 - 2006-03-02 14:00 - 00096512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atapi.sys
2014-07-07 10:59 - 2006-03-02 14:00 - 00096512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ATAPI.SYS
2014-07-07 10:22 - 2013-05-15 09:46 - 00008932 _____ () C:\WINDOWS\setupact.log
2014-07-06 21:26 - 2011-07-12 00:51 - 00000000 ____D () C:\Documents and Settings\Kasia\Pulpit\Nieużywane skróty pulpitu
2014-07-06 16:18 - 2011-07-27 02:38 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-06 16:17 - 2014-01-25 17:07 - 00000000 ____D () C:\Program Files\Odkurzacz
2014-06-24 15:57 - 2011-07-12 02:03 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2014-06-24 15:56 - 2011-07-12 00:15 - 00000000 ___RD () C:\Documents and Settings\Kasia\Moje dokumenty
2014-06-24 12:25 - 2014-06-24 12:25 - 00000000 ____D () C:\Program Files\MozBackup
2014-06-24 12:25 - 2014-06-24 12:25 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\MozBackup
2014-06-23 20:42 - 2011-07-12 00:09 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-06-20 15:19 - 2014-06-20 15:19 - 00000000 ____D () C:\Documents and Settings\Kasia\Ustawienia lokalne\Dane aplikacji\Adobe
2014-06-19 02:49 - 2012-04-06 14:24 - 00699056 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-06-19 02:49 - 2011-07-12 01:13 - 00071344 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-06-17 04:07 - 2013-10-22 19:24 - 00027264 ____C () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2014-06-17 04:03 - 2011-07-12 00:15 - 00000000 __RHD () C:\Documents and Settings\Kasia\Dane aplikacji
2014-06-11 22:33 - 2014-06-11 22:32 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-11 22:19 - 2011-07-12 02:03 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start
2014-06-11 22:19 - 2011-07-12 00:15 - 00000000 ___RD () C:\Documents and Settings\Kasia\Menu Start\Programy

Some content of TEMP:
====================
C:\Documents and Settings\Kasia\Ustawienia lokalne\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe = & gt; File is digitally signed
C:\WINDOWS\system32\winlogon.exe = & gt; File is digitally signed
C:\WINDOWS\system32\svchost.exe = & gt; File is digitally signed
C:\WINDOWS\system32\services.exe = & gt; File is digitally signed
C:\WINDOWS\system32\User32.dll = & gt; File is digitally signed
C:\WINDOWS\system32\userinit.exe = & gt; File is digitally signed
C:\WINDOWS\system32\rpcss.dll = & gt; File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; File is digitally signed

==================== End Of Log ============================