Format du document : text/plain


ÿþRkill 2.8.4 by Lawrence Abrams (Grinler)
Copyright 2008-2016 BleepingComputer.com
More Information about Rkill can be found at this link:

Program started at: 04/18/2016 02:56:41 PM in x86 mode.
Windows Version: Windows 7 Professional Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Users\win7\AppData\Roaming\WindowsUpdate\tcpview.exe (PID: 5152) [UP-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Modified HKCU\...\Winlogon: [Shell] => C:\Users\win7\AppData\Roaming\WindowsUpdate\tcpview.exe,explorer.exe,C:\Users\win7\AppData\Roaming\WindowsUpdate\mobsync.exe

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found: # fix for traceroute and netstat display anomaly tracking.opencandy.com.s3.amazonaws.com media.opencandy.com cdn.opencandy.com tracking.opencandy.com api.opencandy.com api.recommendedsw.com installer.betterinstaller.com installer.filebulldog.com d3oxtn1x3b8d7i.cloudfront.net inno.bisrv.com nsis.bisrv.com cdn.file2desktop.com cdn.goateastcach.us cdn.guttastatdk.us cdn.inskinmedia.com cdn.insta.oibundles2.com cdn.insta.playbryte.com cdn.llogetfastcach.us cdn.montiera.com

20 out of 35 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 04/18/2016 02:57:58 PM
Execution time: 0 hours(s), 1 minute(s), and 16 seconds(s)


Signaler le contenu de ce document