Fichier / Dossier invisible après un virus
Résolu
e_d_g_a_r
Messages postés
7
Date d'inscription
Statut
Membre
Dernière intervention
-
00kmfr Messages postés 31 Date d'inscription Statut Membre Dernière intervention -
00kmfr Messages postés 31 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
J'ai windows 7 version intégral 64bits, et suite a un virus appelé "windows restor" que j'ai supprimé avec Malwarebytes, mon bureau est noir, il manque plus de la moiter des icon, plusieurs fichier ou dossier son introuvable, mais pourtant rien n'a été effacé car il y a toujours autant d'espace utilisé sur mon disque dur.
Voilà le rapport après scan et réparation de malwarebytes:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 6285
Windows 6.1.7600 (Safe Mode)
Internet Explorer 8.0.7600.16385
06/04/2011 13:24:14
mbam-log-2011-04-06 (13-24-14).txt
Type d'examen: Examen complet (C:\|D:\|E:\|F:\|)
Elément(s) analysé(s): 457138
Temps écoulé: 33 minute(s), 34 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 27
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\vVTKvjYbBVaNeSx (Trojan.FakeAlert) -> Value: vVTKvjYbBVaNeSx -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
c:\Users\Edgar-HD\AppData\Roaming\microsoft\Windows\start menu\Programs\windows restore (Trojan.FakeAlert) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\programdata\vvtkvjybbvanesx.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\programdata\46128904.exe (Rogue.FakeHDD) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\6AB9.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\err.log13991012 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\scwrexaomn.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup1391085632.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup1522427264.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup2356798560.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup248807136.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup2548243296.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup282004064.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup3277195136.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup3282635168.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup379243092.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup3839085312.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup3922158940.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup4165224780.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup501607264.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup661454688.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\tmp1365.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Roaming\Adobe\plugs\kb14000543.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\Desktop\Crysis\razor1911\rzr-crys.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\Desktop\restauration\activation\windows 7 loader.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\Desktop\restauration\guitare pro 5\guitarpro 5\Keygen\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\Music\guitare pro 5\guitarpro 5\Keygen\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Roaming\microsoft\Windows\start menu\Programs\windows restore\uninstall windows restore.lnk (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Roaming\microsoft\Windows\start menu\Programs\windows restore\windows restore.lnk (Trojan.FakeAlert) -> Quarantined and deleted successfully.
J'ai windows 7 version intégral 64bits, et suite a un virus appelé "windows restor" que j'ai supprimé avec Malwarebytes, mon bureau est noir, il manque plus de la moiter des icon, plusieurs fichier ou dossier son introuvable, mais pourtant rien n'a été effacé car il y a toujours autant d'espace utilisé sur mon disque dur.
Voilà le rapport après scan et réparation de malwarebytes:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 6285
Windows 6.1.7600 (Safe Mode)
Internet Explorer 8.0.7600.16385
06/04/2011 13:24:14
mbam-log-2011-04-06 (13-24-14).txt
Type d'examen: Examen complet (C:\|D:\|E:\|F:\|)
Elément(s) analysé(s): 457138
Temps écoulé: 33 minute(s), 34 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 27
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\vVTKvjYbBVaNeSx (Trojan.FakeAlert) -> Value: vVTKvjYbBVaNeSx -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
c:\Users\Edgar-HD\AppData\Roaming\microsoft\Windows\start menu\Programs\windows restore (Trojan.FakeAlert) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\programdata\vvtkvjybbvanesx.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\programdata\46128904.exe (Rogue.FakeHDD) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\6AB9.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\err.log13991012 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\scwrexaomn.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup1391085632.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup1522427264.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup2356798560.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup248807136.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup2548243296.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup282004064.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup3277195136.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup3282635168.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup379243092.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup3839085312.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup3922158940.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup4165224780.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup501607264.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\setup661454688.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Local\Temp\tmp1365.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Roaming\Adobe\plugs\kb14000543.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\Desktop\Crysis\razor1911\rzr-crys.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\Desktop\restauration\activation\windows 7 loader.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\Desktop\restauration\guitare pro 5\guitarpro 5\Keygen\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\Music\guitare pro 5\guitarpro 5\Keygen\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Roaming\microsoft\Windows\start menu\Programs\windows restore\uninstall windows restore.lnk (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\Edgar-HD\AppData\Roaming\microsoft\Windows\start menu\Programs\windows restore\windows restore.lnk (Trojan.FakeAlert) -> Quarantined and deleted successfully.
A voir également:
- Fichier / Dossier invisible après un virus
- Fichier bin - Guide
- Comment réduire la taille d'un fichier - Guide
- Comment ouvrir un fichier epub ? - Guide
- Fichier rar - Guide
- Dossier appdata - Guide
4 réponses
A non j'avais pas vue qu'il y avait un rapport avec RogueKiller ^^'
RogueKiller V4.3.7 par Tigzy
contact sur https://www.luanagames.com/index.fr.html
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur: Edgar-HD [Droits d'admin]
Mode: Recherche -- Date : 06/04/2011 17:44:12
Processus malicieux: 0
Entrees de registre: 0
Fichier HOSTS:
127.0.0.1 localhost
Termine : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
RogueKiller V4.3.7 par Tigzy
contact sur https://www.luanagames.com/index.fr.html
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur: Edgar-HD [Droits d'admin]
Mode: Recherche -- Date : 06/04/2011 17:44:12
Processus malicieux: 0
Entrees de registre: 0
Fichier HOSTS:
127.0.0.1 localhost
Termine : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
Merci beaucoup pour ton aide !
Merci pour votre aide précieuse.