MyCity » Ambulanta -> Arhiva Ambulante » Rutinska provera

Rutinska provera

Napisano na dan: 16.9.2016

Rutinska provera
Sledeća strana Pagination

Idi na vrh

Poslao: 16 Sep 2016 14:57
Idi na vrh
offline
  • Pridružio: 18 Jul 2003
  • Poruke: 4204
  • Gde živiš: U zlatnom kavezu

Ovo su logovi kancelarije u kojoj od nedavno obitavam. Sumljam da je doticni komp zakacio nesto, budite ljubazni proverite.




Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2016
Ran by korisnik (administrator) on NSZZ (16-09-2016 14:20:18)
Running from C:\Users\korisnik\Desktop
Loaded Profiles: korisnik (Available Profiles: korisnik)
Platform: Windows 10 Pro Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Invincea, Inc.) C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Invincea, Inc.) C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Lexmark\ErrorApp\lmab1err.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.376\SSScheduler.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.23941.0_x64__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\McAfee\VUL\McVulCtr.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ActWiz\mcautoreg.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8538872 2016-01-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1415928 2016-01-13] (Realtek Semiconductor)
HKLM\...\Run: [InvProtect] => C:\Program Files (x86)\Invincea\Enterprise\x64\InvProtect64.exe [7193744 2016-02-23] (Invincea, Inc.)
HKU\S-1-5-21-2005878563-928677549-925114360-1001\...\Run: [LMab1err] => C:\Program Files (x86)\Lexmark\ErrorApp\LMab1err.exe [645736 2013-07-11] ()
HKU\S-1-5-21-2005878563-928677549-925114360-1001\...\RunOnce: [Uninstall C:\Users\korisnik\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\korisnik\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2005878563-928677549-925114360-1001\...\RunOnce: [Uninstall C:\Users\korisnik\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\korisnik\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-09-12]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.376\SSScheduler.exe (McAfee, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 89.216.1.40 89.216.1.50
Tcpip\..\Interfaces\{33612f4d-cc8e-420f-8816-d416de7ce11a}: [DhcpNameServer] 10.72.0.72 10.72.0.73
Tcpip\..\Interfaces\{b0e0761f-844e-4a9e-b521-f2922ad22dac}: [DhcpNameServer] 89.216.1.40 89.216.1.50

Internet Explorer:
==================
HKU\S-1-5-21-2005878563-928677549-925114360-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCTE
HKU\S-1-5-21-2005878563-928677549-925114360-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-2005878563-928677549-925114360-1001 -> DefaultScope {749AEDDF-B84C-435A-BAE0-A485F6FBF94B} URL =
SearchScopes: HKU\S-1-5-21-2005878563-928677549-925114360-1001 -> {749AEDDF-B84C-435A-BAE0-A485F6FBF94B} URL =
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-08-26] (Intel Security)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-08-26] (Intel Security)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-08-22] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-08-22] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-08-22] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-08-22] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2016-07-07] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2016-07-07] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\e94apnyh.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-09-16]
FF Extension: (Firefox Hotfix) - C:\Users\korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\e94apnyh.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-12]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2016-07-25] [not signed]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-07-14]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-07-14]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 0149361473921710mcinstcleanup; C:\WINDOWS\TEMP\014936~1.EXE [883024 2016-09-15] (McAfee, Inc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [153960 2016-04-29] (Dell)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-03-11] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-03-11] (Dell Inc.)
S2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-27] (Dell Inc.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [374360 2016-05-27] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3036312 2016-07-28] (Intel(R) Corporation)
R2 InvProtectSvc; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [3606160 2016-02-23] (Invincea, Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [163592 2016-08-22] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-07-07] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [352104 2015-09-29] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe [327944 2016-07-19] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.)
S2 McOobeSv2; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-06-23] (McAfee, Inc.)
R3 mfevtp; C:\WINDOWS\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-06-17] (McAfee, Inc.)
R3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.)
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [80208 2016-05-26] (Dell)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [316152 2016-01-13] (Realtek Semiconductor)
R2 SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [187536 2016-02-23] (Invincea, Inc.)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-04-22] (Dell Inc.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [922152 2016-08-25] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-08-25] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-08-25] (McAfee, Inc.)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [32464 2016-01-05] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2016-01-05] (Dell Computer Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.)
R3 IntcAzAudAddService; C:\Windows\system32\drivers\RTDVHD64.sys [2602744 2016-01-13] (Realtek Semiconductor Corp.)
R3 InvProtectDrv; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [74384 2016-02-23] (Invincea, Inc.)
R3 InvProtectDrvNet; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrvNet64.sys [33936 2016-02-23] (Invincea, Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-11-10] (Intel Corporation)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [419616 2016-04-27] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [83608 2016-04-27] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [519976 2016-04-27] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [100136 2016-04-27] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R3 rtwlane_13; C:\Windows\System32\drivers\rtwlane_13.sys [3749888 2015-10-30] (Realtek Semiconductor Corporation )
R3 SboxDrv; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [201360 2016-02-23] (Invincea, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-16 14:20 - 2016-09-16 14:20 - 00018186 _____ C:\Users\korisnik\Desktop\FRST.txt
2016-09-16 14:20 - 2016-09-16 14:20 - 00000000 ____D C:\FRST
2016-09-16 14:17 - 2016-09-16 14:20 - 02399232 _____ (Farbar) C:\Users\korisnik\Desktop\FRST64.exe
2016-09-16 12:50 - 2016-09-16 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2016-09-16 12:48 - 2016-09-16 14:17 - 00004020 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2016-09-14 15:00 - 2016-09-16 12:48 - 00004208 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2016-09-12 13:35 - 2016-09-12 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-09-12 13:35 - 2016-09-12 13:35 - 00000000 ____D C:\Program Files\McAfee Security Scan
2016-09-08 10:19 - 2016-09-08 10:19 - 00278553 _____ C:\Users\korisnik\Downloads\Zakon o srednjem obrazovanju i vaspitanju.pdf
2016-09-06 08:59 - 2016-09-06 09:01 - 00000000 ____D C:\Users\korisnik\AppData\Roaming\ImgBurn
2016-09-06 08:28 - 2016-09-06 08:29 - 00278553 _____ C:\Users\korisnik\Downloads\2228-13.pdf
2016-09-06 08:12 - 2016-09-15 10:10 - 00000000 ____D C:\Users\korisnik\Desktop\Наставни план
2016-09-06 08:10 - 2016-09-06 08:10 - 00001948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-09-06 08:10 - 2016-09-06 08:10 - 00001936 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2016-09-06 08:10 - 2016-09-06 08:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-09-06 08:10 - 2016-09-06 08:10 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2016-09-06 08:09 - 2016-09-06 08:10 - 03469871 _____ (LIGHTNING UK!) C:\Users\korisnik\Downloads\SetupImgBurn_2.5.8.0.exe
2016-09-06 08:08 - 2016-09-06 08:08 - 00000000 _____ C:\Users\korisnik\Downloads\nero_burning_rom.exe
2016-09-02 14:48 - 2016-09-02 14:48 - 00000000 ____D C:\Users\korisnik\AppData\Local\Macromedia
2016-09-02 11:03 - 2016-09-02 11:04 - 00000000 ____D C:\Users\korisnik\AppData\Local\tkdata
2016-09-02 11:03 - 2016-09-02 11:03 - 00000000 ____D C:\Users\korisnik\AppData\Local\CEF
2016-09-02 11:02 - 2016-09-12 13:35 - 00001241 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-09-02 11:02 - 2016-09-02 11:02 - 00001227 _____ C:\Users\Public\Desktop\True Key.lnk
2016-09-02 11:02 - 2016-09-02 11:02 - 00000000 ____D C:\ProgramData\TrueKey
2016-09-02 11:02 - 2016-09-02 11:02 - 00000000 ____D C:\Program Files\Intel Security
2016-09-02 11:02 - 2016-09-02 11:02 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-09-02 10:53 - 2016-09-02 10:53 - 01346798 _____ C:\Users\korisnik\Downloads\FIZICKO VASPITANJE SSS.pdf
2016-09-02 10:52 - 2016-09-02 10:52 - 00397731 _____ C:\Users\korisnik\Downloads\Odbojka%20-%20tehnika%20servisa.pdf
2016-09-02 10:51 - 2016-09-15 11:06 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-02 10:51 - 2016-09-13 15:33 - 00000000 ____D C:\Program Files\TrueKey
2016-09-02 10:51 - 2016-09-13 15:06 - 00003816 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-09-02 10:51 - 2016-09-12 13:35 - 00002011 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-09-02 10:51 - 2016-09-02 10:51 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2016-09-02 10:49 - 2016-09-02 10:49 - 02061029 _____ C:\Users\korisnik\Downloads\3 savremeni koncepti fizickog vaspitanja.pdf
2016-09-02 10:27 - 2016-09-02 10:27 - 00137926 _____ C:\Users\korisnik\Downloads\Profesionalni razvoj na nivou skole.pdf
2016-08-25 15:19 - 2016-09-13 15:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-23 13:28 - 2016-08-23 13:29 - 08227032 _____ (Piriform Ltd) C:\Users\korisnik\Downloads\ccsetup521.exe
2016-08-23 13:07 - 2016-08-23 13:21 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-08-23 12:50 - 2016-08-23 12:50 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-22 11:39 - 2016-08-22 11:39 - 00003332 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-08-22 11:38 - 2016-08-22 11:38 - 00000000 ____D C:\Users\korisnik\AppData\Roaming\Skype

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-16 14:14 - 2016-04-01 12:11 - 00000000 ____D C:\ProgramData\SoftMaker
2016-09-16 12:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-09-16 12:38 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-16 12:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-16 12:35 - 2016-05-05 12:21 - 00004148 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{91BD7BF3-1EBF-4879-A401-B0514270E237}
2016-09-16 12:31 - 2016-06-03 09:38 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-09-16 12:31 - 2016-04-01 13:02 - 00000000 __SHD C:\Users\korisnik\IntelGraphicsProfiles
2016-09-15 08:41 - 2016-07-14 08:52 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-09-14 18:31 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-14 18:22 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-14 18:16 - 2016-05-11 18:25 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-14 18:16 - 2016-05-11 18:25 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-13 15:34 - 2016-06-03 09:40 - 00000000 ____D C:\Users\korisnik
2016-09-13 15:33 - 2016-04-01 12:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-13 15:33 - 2016-02-13 15:16 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-13 15:06 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-09-13 15:06 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-09-13 14:01 - 2016-04-01 13:02 - 00000000 ____D C:\Users\korisnik\AppData\Local\Packages
2016-09-09 14:09 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-09-08 09:30 - 2016-04-01 12:09 - 00000000 ____D C:\Users\korisnik\Documents\SoftMaker
2016-09-07 03:00 - 2015-10-30 09:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-09-07 03:00 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-02 11:03 - 2016-06-27 19:36 - 00000000 ____D C:\Users\korisnik\AppData\Local\Adobe
2016-09-02 11:02 - 2016-06-03 09:37 - 00000000 ____D C:\Program Files\Intel
2016-09-02 11:02 - 2016-02-27 15:46 - 00000000 ____D C:\ProgramData\Intel
2016-09-02 11:01 - 2016-02-27 15:41 - 00000000 ____D C:\ProgramData\Package Cache
2016-09-02 10:26 - 2016-04-01 12:09 - 00000000 ____D C:\Users\korisnik\AppData\Roaming\SoftMaker
2016-08-24 16:05 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-23 13:32 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-23 13:30 - 2016-06-03 19:35 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-23 13:30 - 2016-04-01 12:04 - 00000000 ____D C:\Users\korisnik\AppData\Local\CrashDumps
2016-08-22 11:39 - 2016-06-03 09:58 - 00002410 _____ C:\Users\korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-22 11:39 - 2016-06-03 09:58 - 00000000 ___RD C:\Users\korisnik\OneDrive
2016-08-17 12:03 - 2016-06-03 09:51 - 00879220 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-17 12:00 - 2016-02-13 15:22 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-17 11:56 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

==================== Files in the root of some directories =======

2016-02-27 15:45 - 2016-02-27 15:45 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2016-02-27 15:34 - 2016-02-27 15:35 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2016-02-27 15:41 - 2016-02-27 15:45 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2016-02-27 15:36 - 2016-02-27 15:40 - 0000113 _____ () C:\ProgramData\{E1646825-D391-42A0-93AA-27FA810DA093}.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-09-16 12:46

==================== End of FRST.txt ============================





https://www.mycity.rs/must-login.png

Poslao: 18 Sep 2016 11:51
Idi na vrh
offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6103

Pozdrav Brksi.

Sistem je cist, nema tragova aktivne infekcije. Ubuduce, ukoliko zelis samo proveru sistema, instaliraj neki AntiMalware program, za to sluze.

Po pravilima Ambulante, ne pruzamo pomoc oko tudjih racunara ili racunara koji su u firmama. Pa da imas na umu za sledeci put.
Citat:9. nemojte se obraćati za pomoć oko čišćenja računara na poslu. Firma zarađuje zahvaljujući tim računarima, pa je red i da plati nekome da im te računare očisti;

10. nemojte se obraćati za pomoć oko tuđih računara. U većini slučajeva ljudi naplaćuju čišćenje tuđih računara, a mi nismo tu da bi smo nekome zaradili novac.

MyCity » Ambulanta -> Arhiva Ambulante » Rutinska provera

Ko je trenutno na forumu
 

Ukupno su 856 korisnika na forumu :: 31 registrovanih, 5 sakrivenih i 820 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: aleksmajstor, bestguarder, BORUTUS, cenejac111, darkojbn, djboj, FileFinder, Georgius, janbo, Koca Popovic, krkalon, Kubovac, laki_bb, Lazarus, MB120mm, milutin134, Miškić, MrNo, oldtimer, operniki, pavlo, raptorsi, S2M, Simon simonović, Singidunumac, Srle993, vathra, Vlad000, voja64, x9, zeo