Ne mogu da obrišem folder

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Otvaram temu u ambulanti radi provere računara, predlog za otvaraje dobio sam u prethodnoj temi. Imao sam folder na d disku koji sam obrisao unlockerom, nakon toga se taj folder premestio u korpu. Nisam mogao da ga ručno izbrišem iz korpe pa sam to uradio sa unlockerom. On ga je obrisao ali sada se pojavio u korpi novi folder pod nazivom dd45, ni njega ne mogu ručno da obrišem pa sam opet probao sa unlockerom. On obriše taj folder ali se pojavi novi dd46, opet brišem i opet se novi pojavi dd47 i sve tako redom se ponavlja (dd48, dd49, dd50) ...

Skenirao sam sa Malwarebytestom i Avast 8 free i ništa ni su našli. Windows je Windows XP SP3 sa svim instaliram apdejtima.

--------------------------------------------------------------------------------------------------------------------

Evo izveštaja za svaki slučaj da proverimo da nije neki infekcija, malware ili slično.

DDS

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by Windows XP at 14:51:03 on 2013-03-28
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.895.380 [GMT -7:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
.
============== Pseudo HJT Report ===============
.
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
dRunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
TCP: NameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{F89DBECA-83CA-438C-A23D-D86B7F236249} : DHCPNameServer = 192.168.1.1 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\25.0.1364.172\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\windows xp\application data\mozilla\firefox\profiles\ujt3m05v.default\
FF - prefs.js: browser.startup.homepage - [Link mogu videti samo ulogovani korisnici]
FF - plugin: c:\progra~1\micros~2\office14\NPAUTHZ.DLL
FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_180.dll
FF - ExtSQL: 2013-02-28 19:28; [Link mogu videti samo ulogovani korisnici]; c:\program files\avast software\avast\webrep\FF
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-2-28 49248]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-2-28 765736]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013-2-28 368176]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2013-3-17 242240]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013-2-28 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-2-28 66336]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2013-2-28 45248]
R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [2006-3-22 826752]
R3 ip100xp;TP-LINK 10/100Mbps PCI Network Adapter NT Driver;c:\windows\system32\drivers\ipfnd51.sys [2013-2-28 26752]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2013-2-28 1684736]
S3 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-2-28 164736]
.
=============== Created Last 30 ================
.
2013-03-28 04:39:52 -------- d-----w- c:\program files\Unlocker
2013-03-27 04:00:26 -------- d-----w- c:\documents and settings\windows xp\application data\CodeBlocks
2013-03-22 05:21:31 -------- d-----w- c:\documents and settings\windows xp\local settings\application data\NFS Underground 2
2013-03-22 05:21:28 -------- d-----w- c:\program files\common files\DirectX
2013-03-21 05:08:17 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2013-03-17 18:04:25 -------- d-----w- c:\program files\Maxis
2013-03-17 18:01:14 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-03-17 18:01:02 -------- d-----w- c:\program files\DAEMON Tools Lite
2013-03-16 01:39:51 -------- d-----w- c:\documents and settings\windows xp\local settings\application data\Identities
2013-03-13 01:43:17 -------- d-----w- c:\documents and settings\all users\application data\PopCap Games
2013-03-10 20:07:59 -------- d-----w- C:\wamp
2013-03-08 05:11:48 -------- d-----w- c:\documents and settings\all users\Microsoft
2013-03-08 05:10:04 -------- d-----w- c:\program files\Microsoft Analysis Services
2013-03-08 05:09:57 -------- d-----w- c:\windows\SHELLNEW
2013-03-08 05:08:29 -------- d-----w- c:\documents and settings\windows xp\local settings\application data\Microsoft Help
2013-03-08 05:04:47 -------- d-----w- c:\documents and settings\windows xp\application data\DAEMON Tools Lite
2013-03-08 05:03:17 -------- d-----w- c:\documents and settings\all users\application data\DAEMON Tools Lite
2013-03-04 05:21:29 -------- d-----w- c:\documents and settings\windows xp\application data\uTorrent
2013-03-02 19:15:20 -------- d-----w- c:\program files\MSXML 4.0
2013-03-02 04:24:34 -------- d-----w- c:\documents and settings\windows xp\application data\TeamViewer
2013-03-02 03:52:13 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2013-03-01 22:32:18 -------- d-----w- c:\documents and settings\windows xp\application data\Ashampoo
2013-03-01 22:31:36 -------- d-----w- c:\documents and settings\windows xp\local settings\application data\ashampoo
2013-03-01 22:31:34 -------- d-----w- c:\documents and settings\all users\application data\Ashampoo
2013-03-01 22:31:29 -------- d-----w- c:\program files\Ashampoo
2013-03-01 22:26:54 -------- d-----w- c:\documents and settings\windows xp\local settings\application data\PowerCinema
2013-03-01 22:26:17 82432 ----a-w- c:\windows\system32\msxml4r.dll
2013-03-01 22:26:17 44544 ----a-w- c:\windows\system32\msxml4a.dll
2013-03-01 22:24:37 225280 ----a-w- c:\program files\common files\installshield\iscript\iscript.dll
2013-03-01 22:24:36 77824 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\ctor.dll
2013-03-01 22:24:36 32768 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\objectps.dll
2013-03-01 22:24:36 176128 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\iuser.dll
2013-03-01 22:24:34 610436 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\IKernel.exe
2013-03-01 21:59:54 -------- d-----w- c:\documents and settings\windows xp\application data\Malwarebytes
2013-03-01 21:59:47 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2013-03-01 21:59:45 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-01 21:59:45 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-03-01 07:05:12 -------- d-----w- c:\windows\system32\appmgmt
2013-03-01 05:17:40 -------- d-----w- c:\program files\VideoLAN
2013-03-01 05:12:04 -------- d-----w- c:\program files\CCleaner
2013-03-01 05:11:40 -------- d-sh--w- c:\documents and settings\windows xp\IECompatCache
2013-03-01 05:10:56 -------- d-sh--w- c:\documents and settings\windows xp\PrivacIE
2013-03-01 05:10:39 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-01 05:10:39 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-01 04:23:00 -------- d-sh--w- c:\documents and settings\windows xp\IETldCache
2013-03-01 04:20:17 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2013-03-01 04:19:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2013-03-01 04:19:26 -------- d-----w- c:\windows\ie8updates
2013-03-01 04:19:16 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2013-03-01 04:19:14 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2013-03-01 04:19:14 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2013-03-01 04:18:38 -------- dc-h--w- c:\windows\ie8
2013-03-01 04:05:26 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2013-03-01 03:55:00 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2013-03-01 03:53:02 -------- d-----w- c:\documents and settings\windows xp\local settings\application data\Mozilla
2013-03-01 03:52:53 -------- d-----w- c:\program files\Mozilla Maintenance Service
2013-03-01 03:47:04 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2013-03-01 03:34:57 -------- d-----w- c:\documents and settings\windows xp\local settings\application data\Google
2013-03-01 03:34:38 -------- d-----w- c:\documents and settings\windows xp\local settings\application data\Deployment
2013-03-01 03:29:27 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-01 03:29:26 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-01 03:29:26 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-01 03:29:25 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-01 03:28:40 41664 ----a-w- c:\windows\avastSS.scr
2013-03-01 03:28:18 -------- d-----w- c:\program files\AVAST Software
2013-03-01 03:27:17 2193024 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2013-03-01 03:27:17 2148864 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2013-03-01 03:27:16 2069760 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2013-03-01 03:27:16 2027520 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2013-03-01 03:26:54 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2013-03-01 03:26:48 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2013-03-01 03:26:48 3072 ------w- c:\windows\system32\iacenc.dll
2013-03-01 03:26:22 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2013-03-01 03:15:05 -------- d-----w- c:\windows\system32\SoftwareDistribution
2013-03-01 03:12:08 26752 ----a-r- c:\windows\system32\drivers\ipfnd51.sys
2013-03-01 03:11:22 -------- d-----w- c:\windows\system32\Lang
2013-03-01 03:08:59 146048 -c--a-w- c:\windows\system32\dllcache\portcls.sys
2013-03-01 03:07:23 356352 ------w- c:\windows\system32\nvuide.exe
2013-03-01 03:07:23 -------- d-----w- c:\windows\system32\ReinstallBackups
2013-03-01 03:06:52 356352 ----a-w- c:\windows\system32\nvudisp.exe
2013-03-01 03:06:52 -------- d-----w- c:\windows\nview
2013-03-01 03:06:19 356352 ----a-w- c:\windows\system32\NVUNINST.EXE
.
==================== Find3M ====================
.
2013-02-12 00:32:23 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-05 20:05:47 916480 ----a-w- c:\windows\system32\wininet.dll
2013-02-05 20:05:46 43520 ------w- c:\windows\system32\licmgr10.dll
2013-02-05 20:05:46 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-02-05 05:53:57 385024 ------w- c:\windows\system32\html.iec
2013-01-26 03:55:44 552448 ----a-w- c:\windows\system32\oleaut32.dll
2013-01-07 01:16:02 2193024 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-07 00:36:58 2069760 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-01-04 01:20:00 1867264 ----a-w- c:\windows\system32\win32k.sys
2013-01-02 06:49:10 148992 ----a-w- c:\windows\system32\mpg2splt.ax
2013-01-02 06:49:10 1292288 ----a-w- c:\windows\system32\quartz.dll
.
============= FINISH: 14:51:45,78 ===============


[Link mogu videti samo ulogovani korisnici]

• 1Ovo se svidja korisniku: ilovephp
  
  Registruj se da bi pohvalio/la poruku!

Preuzmite program GMER sa donjeg linka na Desktop:


GMER download
Kliknite dati link;
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save.


Dvoklikom pokrenite GMER.
Sačekajte da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, kliknite No;

kliknite Scan i sačekajte da skeniranje bude završeno;

kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer1);

kliknite desnim tasterom u prozor programa Gmer i odaberite Options > 3rd party - kliknite Scan;

po završetku skeniranja kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer2);

kliknite taster >>> i odaberite Autostart karticu;

po završetku kratkotrajnog skeniranja, kliknite Copy;

otvorite Notepad i u njega postavite kopirani tekst - izveštaj sačuvajte na Desktop (pod nazivom Gmer3);

Slikoviti prikaz postupka

Priložite sva tri izveštaja uz poruku korišćenjem opcije Prikači fajl.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 28 Mar 2013 19:27

U toku skeniranja za gmer2, dogodio se BSOD, probaću ponovo....

Dopuna: 28 Mar 2013 20:00

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

• 1Ovo se svidja korisniku: ilovephp
  
  Registruj se da bi pohvalio/la poruku!

Nisi dobro ispratio uputstvo. Pažljivo pročitaj šta piše i postavi GMER2 izvještaj.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

• 1Ovo se svidja korisniku: ilovephp
  
  Registruj se da bi pohvalio/la poruku!

U postavljenim izvještajima nisam naišao na tragove aktivne infekcije i problem koji si imao nije bio uzrokovan istom.




Posjeti temu Testirajte da li vam je pretraživač ranjiv, pročitaj i isprati link koji stoji u njoj.





Preporučujem da za zaštitu USB memorijskih uređaja koristiš MCShield.
Nema nikakve veze sa antivirus-om tj. neće ometati njegov rad, a pokazao se kao jedan od najboljih vida zaštite od malware-a koji se prenosi putem USB mem. uređaja.


Home Page MCShield-a: [Link mogu videti samo ulogovani korisnici]

Više o MCShield-u možeš saznati u ovoj temi: [Link mogu videti samo ulogovani korisnici]

Facebook stranica MCShield-a: [Link mogu videti samo ulogovani korisnici]


Pozdrav.