-
Junior Member
- Вес репутации
- 42
Зашифрованы фотографии
http://rusfolder.com/33880918
файлы носились на флешке , где заразились неизвестно.на домашнем компьютере остальные файлы незаражены. проверка флешки антивирусником касперского никаких зараженных файлов не нашла
-
Будь в курсе!
Будь в курсе!
Надоело быть жертвой? Стань профи по информационной безопасности, получай самую свежую информацию об угрозах и средствах защиты от ведущего российского аналитического центра Anti-Malware.ru:
-
Уважаемый(ая) nikto1971, спасибо за обращение на наш форум!
Помощь в лечении комьютера на VirusInfo.Info оказывается абсолютно бесплатно. Хелперы, в самое ближайшее время, ответят на Ваш запрос. Для оказания помощи необходимо предоставить логи сканирования утилитами АВЗ и HiJackThis, подробнее можно прочитать в правилах оформления запроса о помощи.
Если наш сайт окажется полезен Вам и у Вас будет такая возможность - пожалуйста поддержите проект.
-
-
Microsoft MVP 2012-2016 Consumer Security
Microsoft MVP 2016 Reconnect
-
-
Junior Member
- Вес репутации
- 42
Сообщение от
thyrex
данная программа не помогла и не выдала никаких сообщений
-
Junior Member
- Вес репутации
- 42
данная программа не помогла и не выдала никаких сообщений
-
На диске С найдите лог работы утилиты и прикрепите к сообщению
Microsoft MVP 2012-2016 Consumer Security
Microsoft MVP 2016 Reconnect
-
-
Junior Member
- Вес репутации
- 42
08:30:35.0296 2852 Trojan-Ransom.Win32.Rector decryptor tool 2.5.10.0 Nov 30 2012 11:34:35
08:30:35.0500 2852 ================================================== ==========
08:30:35.0500 2852 Current date / time: 2012/12/02 08:30:35.0500
08:30:35.0500 2852 SystemInfo:
08:30:35.0500 2852
08:30:35.0500 2852 OS Version: 5.1.2600 ServicePack: 3.0
08:30:35.0500 2852 Product type: Workstation
08:30:35.0500 2852 ComputerName: MEGA
08:30:35.0500 2852 UserName: ADMIN
08:30:35.0500 2852 Windows directory: C:\WINDOWS
08:30:35.0500 2852 System windows directory: C:\WINDOWS
08:30:35.0500 2852 Processor architecture: Intel x86
08:30:35.0500 2852 Number of processors: 1
08:30:35.0500 2852 Page size: 0x1000
08:30:35.0500 2852 Boot type: Normal boot
08:30:35.0500 2852 ================================================== ==========
08:30:35.0515 2852 Initialize success
08:30:58.0703 2952 Known suspicious file: G:\Свадьба\IMG_2354.JPG
08:30:58.0843 2952 Known suspicious file: G:\Свадьба\IMG_2355.JPG
08:30:58.0921 2952 Known suspicious file: G:\Свадьба\IMG_2356.JPG
08:30:59.0000 2952 Known suspicious file: G:\Свадьба\IMG_2357.JPG
08:30:59.0078 2952 Known suspicious file: G:\Свадьба\IMG_2358.JPG
08:30:59.0187 2952 Known suspicious file: G:\Свадьба\IMG_2359.JPG
08:30:59.0265 2952 Known suspicious file: G:\Свадьба\IMG_2360.JPG
08:30:59.0359 2952 Known suspicious file: G:\Свадьба\IMG_2361.JPG
08:30:59.0437 2952 Known suspicious file: G:\Свадьба\IMG_2362.JPG
08:30:59.0515 2952 Known suspicious file: G:\Свадьба\IMG_2363.JPG
08:30:59.0609 2952 Known suspicious file: G:\Свадьба\IMG_2364.JPG
08:30:59.0703 2952 Known suspicious file: G:\Свадьба\IMG_2365.JPG
08:30:59.0781 2952 Known suspicious file: G:\Свадьба\IMG_2366.JPG
08:30:59.0875 2952 Known suspicious file: G:\Свадьба\IMG_2367.JPG
08:30:59.0953 2952 Known suspicious file: G:\Свадьба\IMG_2368.JPG
08:31:00.0031 2952 Known suspicious file: G:\Свадьба\IMG_2369.JPG
08:31:00.0125 2952 Known suspicious file: G:\Свадьба\IMG_2370.JPG
08:31:00.0203 2952 Known suspicious file: G:\Свадьба\IMG_2371.JPG
08:31:00.0296 2952 Known suspicious file: G:\Свадьба\IMG_2372.JPG
08:31:00.0390 2952 Known suspicious file: G:\Свадьба\IMG_2373.JPG
08:31:00.0468 2952 Known suspicious file: G:\Свадьба\IMG_2374.JPG
08:31:00.0562 2952 Known suspicious file: G:\Свадьба\IMG_2375.JPG
08:31:00.0671 2952 Known suspicious file: G:\Свадьба\IMG_2376.JPG
08:31:00.0765 2952 Known suspicious file: G:\Свадьба\IMG_2377.JPG
08:31:00.0843 2952 Known suspicious file: G:\Свадьба\IMG_2378.JPG
08:31:00.0953 2952 Known suspicious file: G:\Свадьба\IMG_2379.JPG
08:31:01.0046 2952 Known suspicious file: G:\Свадьба\IMG_2380.JPG
08:31:01.0140 2952 Known suspicious file: G:\Свадьба\IMG_2381.JPG
08:31:01.0218 2952 Known suspicious file: G:\Свадьба\IMG_2382.JPG
08:31:01.0375 2952 Known suspicious file: G:\Свадьба\IMG_2383.JPG
08:31:01.0484 2952 Known suspicious file: G:\Свадьба\IMG_2384.JPG
08:31:01.0578 2952 Known suspicious file: G:\Свадьба\IMG_2385.JPG
08:31:01.0671 2952 Known suspicious file: G:\Свадьба\IMG_2386.JPG
08:31:01.0750 2952 Known suspicious file: G:\Свадьба\IMG_2387.JPG
08:31:01.0828 2952 Known suspicious file: G:\Свадьба\IMG_2388.JPG
08:31:01.0937 2952 Known suspicious file: G:\Свадьба\IMG_2389.JPG
08:31:02.0015 2952 Known suspicious file: G:\Свадьба\IMG_2390.JPG
08:31:02.0093 2952 Known suspicious file: G:\Свадьба\IMG_2391.JPG
08:31:02.0171 2952 Known suspicious file: G:\Свадьба\IMG_2392.JPG
08:31:02.0265 2952 Known suspicious file: G:\Свадьба\IMG_2393.JPG
08:31:02.0343 2952 Known suspicious file: G:\Свадьба\IMG_2394.JPG
08:31:02.0437 2952 Known suspicious file: G:\Свадьба\IMG_2395.JPG
08:31:02.0515 2952 Known suspicious file: G:\Свадьба\IMG_2396.JPG
08:31:02.0640 2952 Known suspicious file: G:\Свадьба\IMG_2397.JPG
08:31:02.0718 2952 Known suspicious file: G:\Свадьба\IMG_2398.JPG
08:31:02.0796 2952 Known suspicious file: G:\Свадьба\IMG_2399.JPG
08:31:02.0875 2952 Known suspicious file: G:\Свадьба\IMG_2400.JPG
08:31:02.0968 2952 Known suspicious file: G:\Свадьба\IMG_2401.JPG
08:31:03.0046 2952 Known suspicious file: G:\Свадьба\IMG_2402.JPG
08:31:03.0140 2952 Known suspicious file: G:\Свадьба\IMG_2403.JPG
08:31:03.0234 2952 Known suspicious file: G:\Свадьба\IMG_2404.JPG
08:31:03.0312 2952 Known suspicious file: G:\Свадьба\IMG_2405.JPG
08:31:03.0390 2952 Known suspicious file: G:\Свадьба\IMG_2406.JPG
08:31:03.0468 2952 Known suspicious file: G:\Свадьба\IMG_2407.JPG
08:31:03.0546 2952 Known suspicious file: G:\Свадьба\IMG_2408.JPG
08:31:03.0640 2952 Known suspicious file: G:\Свадьба\IMG_2409.JPG
08:31:03.0718 2952 Known suspicious file: G:\Свадьба\IMG_2410.JPG
08:31:03.0796 2952 Known suspicious file: G:\Свадьба\IMG_2411.JPG
08:31:03.0875 2952 Known suspicious file: G:\Свадьба\IMG_2412.JPG
08:31:03.0984 2952 Known suspicious file: G:\Свадьба\IMG_2413.JPG
08:31:04.0062 2952 Known suspicious file: G:\Свадьба\IMG_2414.JPG
08:31:04.0140 2952 Known suspicious file: G:\Свадьба\IMG_2415.JPG
08:31:04.0218 2952 Known suspicious file: G:\Свадьба\IMG_2416.JPG
08:31:04.0343 2952 Known suspicious file: G:\Свадьба\IMG_2417.JPG
08:31:04.0421 2952 Known suspicious file: G:\Свадьба\IMG_2418.JPG
08:31:04.0515 2952 Known suspicious file: G:\Свадьба\IMG_2419.JPG
08:31:04.0593 2952 Known suspicious file: G:\Свадьба\IMG_2420.JPG
08:31:04.0687 2952 Known suspicious file: G:\Свадьба\IMG_2421.JPG
08:31:04.0765 2952 Known suspicious file: G:\Свадьба\IMG_2422.JPG
08:31:04.0859 2952 Known suspicious file: G:\Свадьба\IMG_2423.JPG
08:31:04.0937 2952 Known suspicious file: G:\Свадьба\IMG_2424.JPG
08:31:05.0031 2952 Known suspicious file: G:\Свадьба\IMG_2425.JPG
08:31:05.0109 2952 Known suspicious file: G:\Свадьба\IMG_2426.JPG
08:31:05.0187 2952 Known suspicious file: G:\Свадьба\IMG_2427.JPG
08:31:05.0281 2952 Known suspicious file: G:\Свадьба\IMG_2428.JPG
08:31:05.0375 2952 Known suspicious file: G:\Свадьба\IMG_2429.JPG
08:31:05.0453 2952 Known suspicious file: G:\Свадьба\IMG_2430.JPG
08:31:05.0531 2952 Known suspicious file: G:\Свадьба\IMG_2431.JPG
08:31:05.0625 2952 Known suspicious file: G:\Свадьба\IMG_2432.JPG
08:31:05.0703 2952 Known suspicious file: G:\Свадьба\IMG_2433.JPG
08:31:05.0781 2952 Known suspicious file: G:\Свадьба\Свадьба.rar
08:31:05.0890 2952 Not crypted
08:31:23.0156 2952 Unknown Trojan-Ransom.Win32.Rector modification
08:31:23.0156 2952
08:31:23.0156 2952 Statistic:
08:31:23.0156 2952 Processed: 81
08:31:23.0156 2952 Found: 0
08:31:23.0156 2952 Decrypted: 0
08:31:23.0156 2952 ================================================== ==============================
08:31:23.0156 2952 Scan finished
08:31:23.0156 2952 ================================================== ==============================
08:31:37.0125 2848 Deinitialize success
-
Запустите RectorDecryptor из командной строки так
Код:
RectorDecryptor.exe -hanarp "-735541163"
Microsoft MVP 2012-2016 Consumer Security
Microsoft MVP 2016 Reconnect
-
-
Junior Member
- Вес репутации
- 42
аналогичный результат
21:04:16.0812 0468 Trojan-Ransom.Win32.Rector decryptor tool 2.5.10.0 Nov 30 2012 11:34:35
21:04:17.0390 0468 ================================================== ==========
21:04:17.0390 0468 Current date / time: 2012/12/02 21:04:17.0390
21:04:17.0390 0468 SystemInfo:
21:04:17.0390 0468
21:04:17.0390 0468 OS Version: 5.1.2600 ServicePack: 3.0
21:04:17.0390 0468 Product type: Workstation
21:04:17.0390 0468 ComputerName: MEGA
21:04:17.0390 0468 UserName: ADMIN
21:04:17.0390 0468 Windows directory: C:\WINDOWS
21:04:17.0390 0468 System windows directory: C:\WINDOWS
21:04:17.0390 0468 Processor architecture: Intel x86
21:04:17.0390 0468 Number of processors: 1
21:04:17.0390 0468 Page size: 0x1000
21:04:17.0390 0468 Boot type: Normal boot
21:04:17.0390 0468 ================================================== ==========
21:04:17.0406 0468 Initialize success
21:08:19.0546 0452 Known suspicious file: G:\Свадьба\IMG_2354.JPG
21:08:19.0609 0452 Known suspicious file: G:\Свадьба\IMG_2355.JPG
21:08:19.0625 0452 Known suspicious file: G:\Свадьба\IMG_2356.JPG
21:08:19.0656 0452 Known suspicious file: G:\Свадьба\IMG_2357.JPG
21:08:19.0671 0452 Known suspicious file: G:\Свадьба\IMG_2358.JPG
21:08:19.0703 0452 Known suspicious file: G:\Свадьба\IMG_2359.JPG
21:08:19.0718 0452 Known suspicious file: G:\Свадьба\IMG_2360.JPG
21:08:19.0750 0452 Known suspicious file: G:\Свадьба\IMG_2361.JPG
21:08:19.0765 0452 Known suspicious file: G:\Свадьба\IMG_2362.JPG
21:08:19.0781 0452 Known suspicious file: G:\Свадьба\IMG_2363.JPG
21:08:19.0812 0452 Known suspicious file: G:\Свадьба\IMG_2364.JPG
21:08:19.0828 0452 Known suspicious file: G:\Свадьба\IMG_2365.JPG
21:08:19.0843 0452 Known suspicious file: G:\Свадьба\IMG_2366.JPG
21:08:19.0890 0452 Known suspicious file: G:\Свадьба\IMG_2367.JPG
21:08:19.0890 0452 Known suspicious file: G:\Свадьба\IMG_2368.JPG
21:08:19.0906 0452 Known suspicious file: G:\Свадьба\IMG_2369.JPG
21:08:19.0937 0452 Known suspicious file: G:\Свадьба\IMG_2370.JPG
21:08:19.0953 0452 Known suspicious file: G:\Свадьба\IMG_2371.JPG
21:08:19.0968 0452 Known suspicious file: G:\Свадьба\IMG_2372.JPG
21:08:19.0984 0452 Known suspicious file: G:\Свадьба\IMG_2373.JPG
21:08:20.0000 0452 Known suspicious file: G:\Свадьба\IMG_2374.JPG
21:08:20.0015 0452 Known suspicious file: G:\Свадьба\IMG_2375.JPG
21:08:20.0031 0452 Known suspicious file: G:\Свадьба\IMG_2376.JPG
21:08:20.0062 0452 Known suspicious file: G:\Свадьба\IMG_2377.JPG
21:08:20.0093 0452 Known suspicious file: G:\Свадьба\IMG_2378.JPG
21:08:20.0125 0452 Known suspicious file: G:\Свадьба\IMG_2379.JPG
21:08:20.0156 0452 Known suspicious file: G:\Свадьба\IMG_2380.JPG
21:08:20.0171 0452 Known suspicious file: G:\Свадьба\IMG_2381.JPG
21:08:20.0187 0452 Known suspicious file: G:\Свадьба\IMG_2382.JPG
21:08:20.0234 0452 Known suspicious file: G:\Свадьба\IMG_2383.JPG
21:08:20.0250 0452 Known suspicious file: G:\Свадьба\IMG_2384.JPG
21:08:20.0250 0452 Known suspicious file: G:\Свадьба\IMG_2385.JPG
21:08:20.0265 0452 Known suspicious file: G:\Свадьба\IMG_2386.JPG
21:08:20.0281 0452 Known suspicious file: G:\Свадьба\IMG_2387.JPG
21:08:20.0296 0452 Known suspicious file: G:\Свадьба\IMG_2388.JPG
21:08:20.0312 0452 Known suspicious file: G:\Свадьба\IMG_2389.JPG
21:08:20.0328 0452 Known suspicious file: G:\Свадьба\IMG_2390.JPG
21:08:20.0343 0452 Known suspicious file: G:\Свадьба\IMG_2391.JPG
21:08:20.0359 0452 Known suspicious file: G:\Свадьба\IMG_2392.JPG
21:08:20.0375 0452 Known suspicious file: G:\Свадьба\IMG_2393.JPG
21:08:20.0390 0452 Known suspicious file: G:\Свадьба\IMG_2394.JPG
21:08:20.0421 0452 Known suspicious file: G:\Свадьба\IMG_2395.JPG
21:08:20.0437 0452 Known suspicious file: G:\Свадьба\IMG_2396.JPG
21:08:20.0453 0452 Known suspicious file: G:\Свадьба\IMG_2397.JPG
21:08:20.0468 0452 Known suspicious file: G:\Свадьба\IMG_2398.JPG
21:08:20.0500 0452 Known suspicious file: G:\Свадьба\IMG_2399.JPG
21:08:20.0515 0452 Known suspicious file: G:\Свадьба\IMG_2400.JPG
21:08:20.0531 0452 Known suspicious file: G:\Свадьба\IMG_2401.JPG
21:08:20.0546 0452 Known suspicious file: G:\Свадьба\IMG_2402.JPG
21:08:20.0562 0452 Known suspicious file: G:\Свадьба\IMG_2403.JPG
21:08:20.0593 0452 Known suspicious file: G:\Свадьба\IMG_2404.JPG
21:08:20.0640 0452 Known suspicious file: G:\Свадьба\IMG_2405.JPG
21:08:20.0640 0452 Known suspicious file: G:\Свадьба\IMG_2406.JPG
21:08:20.0671 0452 Known suspicious file: G:\Свадьба\IMG_2407.JPG
21:08:20.0687 0452 Known suspicious file: G:\Свадьба\IMG_2408.JPG
21:08:20.0703 0452 Known suspicious file: G:\Свадьба\IMG_2409.JPG
21:08:20.0718 0452 Known suspicious file: G:\Свадьба\IMG_2410.JPG
21:08:20.0734 0452 Known suspicious file: G:\Свадьба\IMG_2411.JPG
21:08:20.0765 0452 Known suspicious file: G:\Свадьба\IMG_2412.JPG
21:08:20.0796 0452 Known suspicious file: G:\Свадьба\IMG_2413.JPG
21:08:20.0796 0452 Known suspicious file: G:\Свадьба\IMG_2414.JPG
21:08:20.0812 0452 Known suspicious file: G:\Свадьба\IMG_2415.JPG
21:08:20.0828 0452 Known suspicious file: G:\Свадьба\IMG_2416.JPG
21:08:20.0843 0452 Known suspicious file: G:\Свадьба\IMG_2417.JPG
21:08:20.0859 0452 Known suspicious file: G:\Свадьба\IMG_2418.JPG
21:08:20.0875 0452 Known suspicious file: G:\Свадьба\IMG_2419.JPG
21:08:20.0906 0452 Known suspicious file: G:\Свадьба\IMG_2420.JPG
21:08:20.0921 0452 Known suspicious file: G:\Свадьба\IMG_2421.JPG
21:08:20.0937 0452 Known suspicious file: G:\Свадьба\IMG_2422.JPG
21:08:20.0953 0452 Known suspicious file: G:\Свадьба\IMG_2423.JPG
21:08:20.0984 0452 Known suspicious file: G:\Свадьба\IMG_2424.JPG
21:08:21.0031 0452 Known suspicious file: G:\Свадьба\IMG_2425.JPG
21:08:21.0046 0452 Known suspicious file: G:\Свадьба\IMG_2426.JPG
21:08:21.0046 0452 Known suspicious file: G:\Свадьба\IMG_2427.JPG
21:08:21.0078 0452 Known suspicious file: G:\Свадьба\IMG_2428.JPG
21:08:21.0109 0452 Known suspicious file: G:\Свадьба\IMG_2429.JPG
21:08:21.0125 0452 Known suspicious file: G:\Свадьба\IMG_2430.JPG
21:08:21.0140 0452 Known suspicious file: G:\Свадьба\IMG_2431.JPG
21:08:21.0156 0452 Known suspicious file: G:\Свадьба\IMG_2432.JPG
21:08:21.0187 0452 Known suspicious file: G:\Свадьба\IMG_2433.JPG
21:08:21.0203 0452 Known suspicious file: G:\Свадьба\Свадьба.rar
21:08:21.0250 0452 Not crypted
21:08:22.0703 0452 Unknown Trojan-Ransom.Win32.Rector modification
21:08:22.0703 0452
21:08:22.0703 0452 Statistic:
21:08:22.0703 0452 Processed: 82
21:08:22.0703 0452 Found: 0
21:08:22.0703 0452 Decrypted: 0
21:08:22.0703 0452 ================================================== ==============================
21:08:22.0703 0452 Scan finished
21:08:22.0703 0452 ================================================== ==============================
21:08:38.0718 3744 Deinitialize success
-
Вы запускали так, как я просил в сообщениии №8? У меня все расшифровало
Microsoft MVP 2012-2016 Consumer Security
Microsoft MVP 2016 Reconnect
-
-
Junior Member
- Вес репутации
- 42
прошу прощения . при нахождении фотографий на флешке нечего не расшифровывалось.при переносе на жесткий диск все расшифровалось.завтра попытаюсь денежкой отблагодарить