Répondre à : virus ukash interpol 2016-09-08T13:37:18+00:00
Photo du profil de interpolinterpol
Participant
Post count: 17

Merci pour ton aide

Mon PC demarre en mode normal, mais des que le bureau apparait il se bloque sur la page ukash

RogueKiller V8.8.15 _x64_ [Mar 27 2014] par Adlice Software
mail : http://www.adlice.com/contact/” onclick=”window.open(this.href);return false;
Remontees : http://forum.adlice.com” onclick=”window.open(this.href);return false;
Site Web : http://www.surlatoile.org/RogueKiller/” onclick=”window.open(this.href);return false;
Blog : http://www.adlice.com” onclick=”window.open(this.href);return false;

Systeme d’exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur : SYSTEM [Droits d’admin]
Mode : Recherche — Date : 04/26/2014 14:43:20
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 2 ¤¤¤
[HJ DESK][PUM] HKLM[…]NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK][PUM] HKLM[…]NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 1 ¤¤¤
[user][HJNAME] vrei1e.lnk : D:UsersuserAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupvrei1e.lnk @X:WindowsSystem32rundll32.exe C:PROGRA~3299219~1e1ierv.cpp,work [-][7][x] -> TROUVÉ

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Addons navigateur : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤
-> D:windowssystem32configSYSTEM | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – FOUND]
-> D:windowssystem32configSOFTWARE | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – FOUND]
-> D:windowssystem32configSECURITY | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – FOUND]
-> D:UsersDefaultNTUSER.DAT | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – NOT_FOUND]
-> D:UsersuserNTUSER.DAT | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – FOUND]

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
–>

¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: (\.PHYSICALDRIVE0 @ IDE) +++++
— User —
[MBR] c3d22b3261b9f95c7c0e1b36a3f580b8
[BSP] 2347ef6f13c3d38283f9144a7837e81c : Windows 7/8 MBR Code
Partition table:
0 – [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 – [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 465513 MB
2 – [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 953577472 | Size: 11325 MB
User = LL1 … OK!
User = LL2 … OK!

+++++ PhysicalDrive1: (\.PHYSICALDRIVE1 @ USB) +++++
Error reading User MBR! ([0x15] Le périphérique n?est pas prêt. )
User = LL1 … OK!
Error reading LL2 MBR! ([0x32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive2: (\.PHYSICALDRIVE2 @ USB) USB DISK Pro USB Device +++++
— User —
[MBR] 163a0f2aa3f0b07e0699f7d26927ae28
[BSP] 9917d84d53adbfa8ed46e541bab0e455 : MBR Code unknown
Partition table:
0 – [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 32 | Size: 117 MB
User = LL1 … OK!
Error reading LL2 MBR! ([0x32] Cette demande n?est pas prise en charge. )

Termine : <>

RogueKiller V8.8.15 _x64_ [Mar 27 2014] par Adlice Software
mail : http://www.adlice.com/contact/” onclick=”window.open(this.href);return false;
Remontees : http://forum.adlice.com” onclick=”window.open(this.href);return false;
Site Web : http://www.surlatoile.org/RogueKiller/” onclick=”window.open(this.href);return false;
Blog : http://www.adlice.com” onclick=”window.open(this.href);return false;

Systeme d’exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur : SYSTEM [Droits d’admin]
Mode : Suppression — Date : 04/26/2014 14:55:07
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 2 ¤¤¤
[HJ DESK][PUM] HKLM[…]NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0)
[HJ DESK][PUM] HKLM[…]NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0)

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 1 ¤¤¤
[user][HJNAME] vrei1e.lnk : D:UsersuserAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupvrei1e.lnk @X:WindowsSystem32rundll32.exe C:PROGRA~3299219~1e1ierv.cpp,work [-][7][x] -> SUPPRIMÉ

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Addons navigateur : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤
-> D:windowssystem32configSYSTEM | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – FOUND]
-> D:windowssystem32configSOFTWARE | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – FOUND]
-> D:windowssystem32configSECURITY | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – FOUND]
-> D:UsersDefaultNTUSER.DAT | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – NOT_FOUND]
-> D:UsersuserNTUSER.DAT | DRVINFO [Drv – D:] | SYSTEMINFO [Sys – C:] [Sys32 – FOUND] | USERINFO [Startup – FOUND]

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
–>

¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: (\.PHYSICALDRIVE0 @ IDE) +++++
— User —
[MBR] c3d22b3261b9f95c7c0e1b36a3f580b8
[BSP] 2347ef6f13c3d38283f9144a7837e81c : Windows 7/8 MBR Code
Partition table:
0 – [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 – [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 465513 MB
2 – [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 953577472 | Size: 11325 MB
User = LL1 … OK!
User = LL2 … OK!

+++++ PhysicalDrive1: (\.PHYSICALDRIVE1 @ USB) +++++
Error reading User MBR! ([0x15] Le périphérique n?est pas prêt. )
User = LL1 … OK!
Error reading LL2 MBR! ([0x32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive2: (\.PHYSICALDRIVE2 @ USB) USB DISK Pro USB Device +++++
— User —
[MBR] 163a0f2aa3f0b07e0699f7d26927ae28
[BSP] 9917d84d53adbfa8ed46e541bab0e455 : MBR Code unknown
Partition table:
0 – [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 32 | Size: 117 MB
User = LL1 … OK!
Error reading LL2 MBR! ([0x32] Cette demande n?est pas prise en charge. )

Termine : <>