Format du document : text/plain


ÿþRkill 2.7.0 by Lawrence Abrams (Grinler)
Copyright 2008-2015 BleepingComputer.com
More Information about Rkill can be found at this link:

Program started at: 08/04/2015 01:20:23 PM in x64 mode.
Windows Version: Windows 10 Home Single Language

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* AeLookupSvc [Missing Service]
* AllUserInstallAgent [Missing Service]
* hkmsvc [Missing Service]
* THREADORDER [Missing Service]
* WPCSvc [Missing Service]
* adp94xx [Missing Service]
* adpahci [Missing Service]
* adpu320 [Missing Service]
* arc [Missing Service]
* discache [Missing Service]
* FxPPM [Missing Service]
* HdAudAddService [Missing Service]
* iirsp [Missing Service]
* LSI_SAS2 [Missing Service]
* LSI_SCSI [Missing Service]
* nfrd960 [Missing Service]
* viaide [Missing Service]
* Wd [Missing Service]
* AppMgmt [Missing Service]
* CSC [Missing Service]
* CscService [Missing Service]
* PeerDistSvc [Missing Service]

* napagent [Missing ImagePath]

* MMCSS => \SystemRoot\system32\drivers\mmcss.sys [Incorrect ImagePath]
* SystemEventsBroker => %SystemRoot%\system32\svchost.exe -k DcomLaunch [Incorrect ImagePath]
* WSService => %SystemRoot%\System32\svchost.exe -k wsappx [Incorrect ImagePath]
* CompositeBus => \SystemRoot\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [Incorrect ImagePath]
* swenum => \SystemRoot\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/

Program finished at: 08/04/2015 01:20:59 PM
Execution time: 0 hours(s), 0 minute(s), and 36 seconds(s)


Signaler le contenu de ce document