API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 17th, 2013
46
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.10 KB | None | 0 0
raw download clone embed print report
  1. Rkill 2.6.2 by Lawrence Abrams (Grinler)
  2. http://www.bleepingcomputer.com/
  3. Copyright 2008-2013 BleepingComputer.com
  4. More Information about Rkill can be found at this link:
  5. http://www.bleepingcomputer.com/forums/topic308364.html
  6.  
  7. Program started at: 10/17/2013 08:17:12 PM in x64 mode.
  8. Windows Version: Windows 7 Home Premium Service Pack 1
  9.  
  10. Checking for Windows services to stop:
  11.  
  12. * No malware services found to stop.
  13.  
  14. Checking for processes to terminate:
  15.  
  16. * No malware processes found to kill.
  17.  
  18. Checking Registry for malware related settings:
  19.  
  20. * Explorer Policy Removed: NoActiveDesktopChanges [HKLM]
  21.  
  22. Backup Registry file created at:
  23. C:\Users\Caleb's Computer\Desktop\rkill\rkill-10-17-2013-08-17-16.reg
  24.  
  25. Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  26.  
  27. Performing miscellaneous checks:
  28.  
  29. * Modified HKCU\...\Winlogon: [Shell] => C:\Users\Caleb's Computer\AppData\Roaming\dlc.xmm,explorer.exe
  30.  
  31. * Windows Defender Disabled
  32.  
  33. [HKLM\SOFTWARE\Microsoft\Windows Defender]
  34. "DisableAntiSpyware" = dword:00000001
  35.  
  36. * Reparse Point/Junctions Found (These may be legitimate)!
  37.  
  38. * C:\Windows\winsxs\amd64_security-malware-windows-defender-events_31bf3856ad364e35_6.1.7600.16385_none_118cf1dcd54a3dea\MpEvMsg.dll => <Unknown Target> [File]
  39. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.17514_none_b5e2b6396ecea306\MpAsDesc.dll => <Unknown Target> [File]
  40. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.17514_none_b5e2b6396ecea306\MpCmdRun.exe => <Unknown Target> [File]
  41. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.17514_none_b5e2b6396ecea306\MpOAV.dll => <Unknown Target> [File]
  42. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.17514_none_b5e2b6396ecea306\MpRTP.dll => <Unknown Target> [File]
  43. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.17514_none_b5e2b6396ecea306\MSASCui.exe => <Unknown Target> [File]
  44. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.17514_none_b5e2b6396ecea306\MsMpCom.dll => <Unknown Target> [File]
  45. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.17514_none_b5e2b6396ecea306\MsMpLics.dll => <Unknown Target> [File]
  46. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.17514_none_b5e2b6396ecea306\MsMpRes.dll => <Unknown Target> [File]
  47. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MpAsDesc.dll => <Unknown Target> [File]
  48. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MpClient.dll => <Unknown Target> [File]
  49. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MpCmdRun.exe => <Unknown Target> [File]
  50. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MpCommu.dll => <Unknown Target> [File]
  51. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MpOAV.dll => <Unknown Target> [File]
  52. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MpRTP.dll => <Unknown Target> [File]
  53. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MpSvc.dll => <Unknown Target> [File]
  54. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MSASCui.exe => <Unknown Target> [File]
  55. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MsMpCom.dll => <Unknown Target> [File]
  56. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MsMpLics.dll => <Unknown Target> [File]
  57. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.18170_none_b59db7296f030a55\MsMpRes.dll => <Unknown Target> [File]
  58. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.22341_none_b648c5e888076cca\MpAsDesc.dll => <Unknown Target> [File]
  59. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.22341_none_b648c5e888076cca\MpCmdRun.exe => <Unknown Target> [File]
  60. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.22341_none_b648c5e888076cca\MpOAV.dll => <Unknown Target> [File]
  61. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.22341_none_b648c5e888076cca\MpRTP.dll => <Unknown Target> [File]
  62. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.22341_none_b648c5e888076cca\MSASCui.exe => <Unknown Target> [File]
  63. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.22341_none_b648c5e888076cca\MsMpCom.dll => <Unknown Target> [File]
  64. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.22341_none_b648c5e888076cca\MsMpLics.dll => <Unknown Target> [File]
  65. * C:\Windows\winsxs\amd64_security-malware-windows-defender_31bf3856ad364e35_6.1.7601.22341_none_b648c5e888076cca\MsMpRes.dll => <Unknown Target> [File]
  66.  
  67. Checking Windows Service Integrity:
  68.  
  69. * Windows Firewall Authorization Driver (mpsdrv) is not Running.
  70. Startup Type set to: Manual
  71.  
  72. * BFE [Missing Service]
  73. * iphlpsvc [Missing Service]
  74. * MpsSvc [Missing Service]
  75. * PcaSvc [Missing Service]
  76. * PolicyAgent [Missing Service]
  77. * RemoteAccess [Missing Service]
  78. * WinDefend [Missing Service]
  79. * wscsvc [Missing Service]
  80.  
  81. * SharedAccess [Missing ImagePath]
  82.  
  83. Searching for Missing Digital Signatures:
  84.  
  85. * No issues found.
  86.  
  87. Checking HOSTS File:
  88.  
  89. * No issues found.
  90.  
  91. Program finished at: 10/17/2013 08:18:30 PM
  92. Execution time: 0 hours(s), 1 minute(s), and 17 seconds(s)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!