cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþRkill 2.7.0 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2015 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 07/17/2015 03:27:47 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\WINDOWS\system32\msiexec.exe (PID: 3516) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* ImapiService [Missing Service]
* Spooler [Missing Service]

Searching for Missing Digital Signatures:

* C:\WINDOWS\System32\sfcfiles.dll : 1 571 840 : 12/08/2014 03:20 PM : 98abc27257b3c3befd501469a856f1ed [NoSig]

* C:\WINDOWS\System32\userinit.exe : 35 328 : 12/08/2014 03:12 PM : b7dfa4b92bb67d3ebfda11b1e49ed1ac [NoSig]
+-> C:\WINDOWS\system32\dllcache\userinit.exe : 26 624 : 12/08/2014 03:12 PM : e74ddb12188c2ff57a78624dbf7332fc [Pos Repl]

* C:\WINDOWS\System32\UxTheme.dll : 219 648 : 12/08/2014 03:08 PM : 68ad993dc682aff7a512fa017c36ecf2 [NoSig]

* C:\WINDOWS\explorer.exe : 1 046 528 : 12/08/2014 03:16 PM : 56d9c2cb1016454ccfa2df1ff361dd74 [NoSig]
+-> C:\WINDOWS\system32\dllcache\explorer.exe : 1 037 824 : 12/08/2014 03:16 PM : f2317622d29f9ff0f88aeecd5f60f0dd [Pos Repl]

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/

Program finished at: 07/17/2015 03:28:13 PM
Execution time: 0 hours(s), 0 minute(s), and 25 seconds(s)

Publicité


Signaler le contenu de ce document

Publicité