Rkill 2.8.4 by Lawrence Abrams (Grinler) http://www.bleepingcomputer.com/ Copyright 2008-2017 BleepingComputer.com More Information about Rkill can be found at this link: http://www.bleepingcomputer.com/forums/topic308364.html Program started at: 03/19/2017 11:02:45 PM in x86 mode. Windows Version: Windows 7 Professional Checking for Windows services to stop: * No malware services found to stop. Checking for processes to terminate: * C:\Users\SAMIA\AppData\Roaming\Kyubey\Kyubey.exe (PID: 1320) [UP-HEUR] 1 proccess terminated! Checking Registry for malware related settings: * No issues found in the Registry. Resetting .EXE, .COM, & .BAT associations in the Windows Registry. * HKLM\Software\Classes\.exe\shell found and deleted! Performing miscellaneous checks: * No issues found. Checking Windows Service Integrity: * No issues found. Searching for Missing Digital Signatures: * No issues found. Checking HOSTS File: * Cannot edit the HOSTS file. * Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/ * HOSTS file entries found: 127.0.0.1tonec.com 127.0.0.1 www.tonec.com 127.0.0.1 internetdownloadmanager.com 205.199.44.156 registeridm.com 205.199.44.16 registeridm.com 127.0.0.1 www.internetdownloadmanager.com128.199.121.125 sladp.com 128.199.121.125 onhax.net 127.0.0.2 www.onhax.net 128.199.121.125 do2dear.net 128.199.121.125 cloudanna.com 128.199.121.125 www.fullstuff.net 128.199.121.125 www.masterkreatif.com 128.199.121.125 keyscity.net 128.199.121.125 piratecity.net 127.0.0.1 IDOWNLWITHIDM.com 127.0.0.1 IDownloadmanager.com 127.0.0.1 IDMDwnlMgr.com Program finished at: 03/19/2017 11:04:35 PM Execution time: 0 hours(s), 1 minute(s), and 50 seconds(s)