Thanks to visit codestin.com
Credit goes to www.scribd.com

Scribd
Upload
1 views2 pages

Rkill

Rkill 2.9.1, developed by Lawrence Abrams, was executed on June 29, 2023, to check for and terminate malware processes on a Windows 10 Home system. Two processes were terminated, and a backup registry file was created while no malware services were found. The program also fixed permissions for editing the HOSTS file and identified multiple entries related to Piriform products.

Uploaded by

fabruxagduar
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
1 views2 pages

Rkill

Rkill 2.9.1, developed by Lawrence Abrams, was executed on June 29, 2023, to check for and terminate malware processes on a Windows 10 Home system. Two processes were terminated, and a backup registry file was created while no malware services were found. The program also fixed permissions for editing the HOSTS file and identified multiple entries related to Piriform products.

Uploaded by

fabruxagduar
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 2

Rkill 2.9.

1 by Lawrence Abrams (Grinler)


http://www.bleepingcomputer.com/
Copyright 2008-2023 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 06/29/2023 03:36:30 PM in x64 mode.


Windows Version: Windows 10 Home

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Users\ezu_k\OneDrive\Escritorio\ScpServer\bin\ScpService.exe (PID: 5828) [UP-


HEUR]
* C:\Users\ezu_k\AppData\Roaming\Up2d74c_4551\Update_202304202327162320547_s.exe
(PID: 20444) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

* Explorer Policy Removed: DisallowRun [HKCU]

Backup Registry file created at:


C:\Users\ezu_k\OneDrive\Escritorio\rkill\rkill-06-29-2023-03-36-39.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.


* Permissions Fixed. Administrators can now edit the HOSTS file.

* HOSTS file entries found:

127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 speccy.piriform.com
127.0.0.1 www.speccy.piriform.com
127.0.0.1 recuva.piriform.com
127.0.0.1 www.recuva.piriform.com
127.0.0.1 defraggler.piriform.com
127.0.0.1 www.defraggler.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
127.0.0.1 license-api.ccleaner.com

Program finished at: 06/29/2023 03:37:09 PM


Execution time: 0 hours(s), 0 minute(s), and 39 seconds(s)

You might also like