Roguekiller 1er virus windows vista recovery

Bonjour,

après le 1er rapport de roguekiller suite a une infection de windows vista recovery.


Killer V6.1.7 [05/11/2011] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Demarrage : Mode normal
Utilisateur: famille coquet [Droits d'admin]
Mode: Recherche -- Date : 13/11/2011 21:30:41

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 8 ¤¤¤
[SUSP PATH] HKCU\[...]\Run : upwJQGgCXjxrDJa.exe (C:\ProgramData\upwJQGgCXjxrDJa.exe) -> FOUND
[SUSP PATH] HKLM\[...]\Run : BigDogPath (C:\Windows\VM_STI.EXE %;USB\VID_0AC8&PID_0302.DeviceDesc%) -> FOUND
[SUSP PATH] HKUS\S-1-5-21-816196865-1066258942-3951261231-1000[...]\Run : upwJQGgCXjxrDJa.exe (C:\ProgramData\upwJQGgCXjxrDJa.exe) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
::1 localhost


Termine : << RKreport[1].txt >>
RKreport[1].txt