Ir para conteúdo
magalhaesrj

Meu antivirus não consegue remover o virus

Recommended Posts

/_ Boa Noite! magalhaesrj _\

 

> Baixe: < IASCZft.jpgFarbar Recovery Scan Tool

 

Citar

http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/


> No link àcima,temos a ferramenta para sistemas 32bits!

 

Citar


> No link àcima,temos o download para sistemas 64bits! (FRST64.exe)
> Salve-a ao desktop! (Área de trabalho ...)
> Execute a ferramenta! 
> Clique "Sim" >> "Examinar".

 

4y9giFrI.jpg

 

> Antes de clicar "Examinar",verifique se as caixinhas em "Whitelist" estão assinaladas.
> Em "Exame Opcional",deixe marcada as checkbox "Addition.txt" e "Arquivos 90 Dias".
> Ps: Será gerado,também,o relatório "Addition.txt".
> Poste os relatórios! (FRST.txt + Addition.txt)

 

Citar

http://www.cjoint.com/


> Como os logs serão extensos,envie-os à cjoint.com.

 

EUE4tdb.jpg

 

> Clique no botão Parcourir... 
> Busque o relatório e clique no botão Abrir.
> Clique no botão "Créer le lien Cjoint".
> Copie o link que está ao lado de "Le lien a été créé" e poste-o em sua resposta.

 

Copierlelien_zpsd51f499f.jpg

 

> Ou clique "Copier le lien (*)" e cole o link ao seu Post.
> Outra opçãohospedar os relatórios em Hébergement de fichiers, Security-x.fr.

 

Citar

http://dl.free.fr


> Ou ainda,em dl.free.fr.
> Ou ainda em: https://textup.fr/
> Fique atento,pois teremos 2 links a serem postados!

 

A+

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Noite!  magalhaesrj /!\


> Desinstale: <2>

 

Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)

SAntivirus Realtime Protection Lite (HKLM-x32\...\SAntivirus) (Version: 1.0.22.8 - Digital Com. Inc) <==== ATENÇÃO

 

> Copie estas informações , logo abaixo,para o Bloco de Notas.

start::
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO
Task: {2C98BC02-9B01-4F21-86C5-36E5FD4CEE2E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: )
Task: {3031AB16-44AF-48DA-9171-77E5315CE73E} - System32\Tasks\update-S-1-5-21-2491648592-1319402890-2819360954-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: )
Task: {DC56B25F-A930-4FA7-A6C9-1FF95CA512EF} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
Task: {EDDC8BE0-2099-4058-AAA3-48667F593CFF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2491648592-1319402890-2819360954-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
SearchScopes: HKLM -> DefaultScope valor está ausente
SearchScopes: HKLM-x32 -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnV7NCmYbopnJFVR%2BKmme%2BkMNL8LHS1ov2HwWspjJINuAByiecMUmnkBgMvWtE5HugLNENT7JYulVy77X5QmPLiUYrMrkDxG0AC84PJH4agQcTk7axkucYKUlv8Jdb%2FelYEwrWV%2FJWCcrQWh6xD1ZwMpRmixPlRQmLCInmVBkI37%2FNGJNlwEwS%2BsKvsyoRHbiyOUMwwOK6M0nSiTrbt%2Bhw%2BqWTgQAsuWSsd8bA0%2B%2B3owtB%2F1AOMtWiEi4P8EFevQc1p16NW8bGS2bpUQ4sKCuFaDAuPc3vAzWXa7lJbpxs3CKB5J6114BeDOIuubkr0Qxzw%3D%3D&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> {2A23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnV7NCmYbopnJFVR%2BKmme%2BkMNL8LHS1ov2HwWspjJINuAByiecMUmnkBgMvWtE5HugLNENT7JYulVy77X5QmPLiUYrMrkDxG0AC84PJH4agQcTk7axkucYKUlv8Jdb%2FelYEwrWV%2FJWCcrQWh6xD1ZwMpRmixPlRQmLCInmVBkI37%2FNGJNlwEwS%2BsKvsyoRHbiyOUMwwOK6M0nSiTrbt%2Bhw%2BqWTgQAsuWSsd8bA0%2B%2B3owtB%2F1AOMtWiEi4P8EFevQc1p16NW8bGS2bpUQ4sKCuFaDAuPc3vAzWXa7lJbpxs3CKB5J6114BeDOIuubkr0Qxzw%3D%3D&p={searchTerms}
Edge HomeButtonPage: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnTfUN%2BYRjdlPoVLewKWO5Gdr1oHQn0rWb7XUAV1OmghSZ3pFvGGNfdcnLUPRVjIZ1iMlADwG4TK1%2BDOrw6pOvxThTFhd41D2RgVFiWpaJEGkM%2FgG2Mn5qzfsXQbHGoGk79hrudyLIohPMUgb57%2BIYtDVBbd1oSaoDWoqppZaEDni8s1bba9vVA%2BydOos4UopeI0ZnXa8Xnv0Im4Ls24bpdik81PFC6C39CyshXQ%2Be3L3kOqtE5HjVDwpc93Ku4XWLuAcrjfU84e%2F8mQAkEMww4gnMVsfKLnpG8ctqfz78InKAmXqJF%2BMzVIFvJuctO982g%3D%3D
Edge HomePage: Default -> hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1Gna%2BL5afMx1kcQU9cR9MMkcy8XUSJLCgFfB3PcpZEFkXUbaGeAoCkTe3bHlXM41NY0bjK8Kqi5FBgV%2BFqH6sG6I65ok4MyIZPkIRgx%2FJM9l9OAXDABUgazPWH8YGVUCfl9LaSMe4NqM8N08j0oXskit%2Fk8f1m6DX2RhNFZIX0N8zd1UhiFkMBvMKpfregpxnMIrZuoTteMJ8nHt0wKC9HlqoUyFwqA5gDCSzUK1dZkT5FSd%2BnTclqeogxvskHHMhvaY3bHKYD%2F%2BXPbdq9pzSUxe7aPdJGE1b0Z0PgbVuI35I5B8Yoh4eYFv0nDl9thVDzEQ%3D%3D
Edge StartupUrls: Default -> "hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnSlLt%2BpC5rB7Yipv1XcHLI7gnO9i37hZHlFQaAGw8molRnXKA%2Bg1I7xHAlwyl9totAkzxaT3fL5tit%2FD2nyonzf0EVo9%2FhgiaHyEAZe7%2BXKNP%2F5Ol8Lm4iQPEUEu1XLadqeT15DyZ9%2BB76S%2F2Nypmx6Sb5AzKu3bQXkr5YN0qzr%2BrFWqsxhycobBxuq6LzAcfSLj37Uvg2pkcoFUOVj3F1cgduCXExiTnGgl1tYfnjTCmAzxIp%2BbPQZwnRlhTT0ojhkzpuPyhv0zQzd2k30OFWn07ujrCFrepMlMhubrJDd%2FwAmneFc5zFrKjOzWUj6muQ%3D%3D"
Edge DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnfiWFhaxZL9A%2BjhCv3yWnSQS7YwCJYk0zQtgYPL5ENvTHsWpFYu6UtQRkEBuk%2BMmzjV5UImosmu0II3RuBHNI8nkxWZfROEdt%2Fh4lUFXr0AfXhwkXtP4z01%2BsPNPNEjEf%2BM37lwrI4uWrYziCiLjyWwv39JU9xWts3b%2B5fAgQBahP73rQAtAnEvgT7aeDBJXgBL1WedUPZOuQ0VQ8iGKaCmIAzYHjg%2BXWpzRFnMscr71xo3zRKi9gbSD2BOfRC1JGBmyh%2BBDA5YZZxa1F82VXP8WtKjHtXel5GKfMO2T4XnXN6JEE67cEkVQH56z2jVYLQ%3D%3D&p={searchTerms}
Edge DefaultSearchKeyword: Default -> search.yahoo.com
Edge DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
"SAntivirusIC" => serviço foi desbloqueado. <==== ATENÇÃO
R2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe [6947608 2020-07-09] (Digital Communications Inc -> Incorp DigCom) <==== ATENÇÃO
S2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [X] <==== ATENÇÃO
R1 SANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusKD.sys [74544 2020-07-09] (Digital Communications Inc -> Digital Comm. Inc) <==== ATENÇÃO
U3 avgbdisk; não ImagePath
2020-07-16 01:33 - 2020-07-16 01:33 - 000000000 ____D C:\Users\marce\Documents\Lightshot
2020-07-16 01:33 - 2020-07-16 01:33 - 000000000 ____D C:\Program Files (x86)\Skillbrains
ContextMenuHandlers1: [FortiClient] -> {7AE5C558-994B-40B7-8730-2DAC2B96781B} => C:\Program Files\Fortinet\FortiClient\FortiCliSh.dll -> Nenhum Arquivo
StartPowershell:
DISM /Online /Cleanup-image /Restorehealth
sfc /scannow
EndPowershell:
CMD: ipconfig /flushdns
SubSystems: [Windows] ==> SAntivirus Realtime Protection Lite
CreateRestorePoint:
EmptyTemp:
Reboot:
Hosts:
end::

> Salve-as com o nome fixlist. << Texto ou Unicode,caso solicite!
> Salve-as ao desktop! ( Área de trabalho ... )

 

IsRtnte.jpg

 

> Execute FRST/FRST64 >> Clique "Corrigir" << Aguarde! 
> Poste o relatório "Resultado da Correção pela Farbar Recovery Scan Tool". (Fixlog.txt)
> Este e outros relatórios,podem ser encontrados na pasta: Disco Local (C) > FRST > Logs

 

< Peço aos visitantes que não utilizem este script em outros computadores,sob risco de danos aos mesmos! >

 

[A+]

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Noite! magalhaesrj /!\

 

> Copie estas informações que estão no Código,para o Bloco de Notas.
> Salve-as com o nome fixlist. << Texto ou Unicode,caso solicite!
> Salve-as ao desktop! ( Área de trabalho ... )

start::
Unlock: HKLM\System\CurrentControlSet\Services\SAntivirusIC
Reg: reg delete HKLM\System\CurrentControlSet\Services\SAntivirusIC /f
Unlock: HKLM\System\CurrentControlSet\Services\SAntivirusSvc
Reg: reg delete HKLM\System\CurrentControlSet\Services\SAntivirusSvc /f
Unlock: HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD 
Reg: reg delete HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD /f
Reboot:
end::

IsRtnte.jpg

 

> Execute FRST/FRST64 >> Clique "Corrigir" << Aguarde! 
> Poste o relatório "Resultado da Correção pela Farbar Recovery Scan Tool". (Fixlog.txt)
> Este e outros relatórios,podem ser encontrados na pasta: Disco Local (C) > FRST > Logs

 

[A+]
 

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\  Boa Tarde! magalhaesrj /!\

 

Citar

"HKLM\System\CurrentControlSet\Services\SAntivirusIC" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SAntivirusIC /f =========

ERRO: Acesso negado.

========= Fim de Reg: =========

"HKLM\System\CurrentControlSet\Services\SAntivirusSvc" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SAntivirusSvc /f =========

ERRO: Acesso negado.


========= Fim de Reg: =========

"HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD /f =========

ERRO: Acesso negado.
 

 

> O Rogue ,que está presente e com informações protegidas ao registro,foi desbloqueado pelo script,mas estamos encontrando renitência na remoção.

 

RogueKiller

 

Baixe este antimalware ( RogueKiller )e instale-o em seu computador.

Utilize a função "Standard Scan" e ao finalizar ,busque remover suas detecções!

Na busca pelo log,clique em History >> Reports >> Scan e/ou Delete.

Caso queira,envie-nos os Reports (Scan) + (Delete). << São 2 relatórios!

 

[Abs!]

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Noite!  magalhaesrj /!\

 

[Rogue.Segurazo (Malicious)] HKEY_LOCAL_MACHINE\Software\SAntivirus -- -> ERROR [5]
[Rogue.Segurazo (Malicious)] SAntivirus -- %programdata%\Microsoft\Windows\Start Menu\Programs\SAntivirus -> ERROR [5]
=> SAProduct.lnk --C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\SAntivirus\SAProduct.lnk -> ERROR [0]

>

> Started in : Normal mode

> Execute novamente a RogueKiller, mas em Modo de Segurança, pois em Modo Normal surgiram estes erros,que impediram estas remoções.

 

1iZWfCWd_t.jpg

>

> Ps: O criador da ferramenta (Tygzy),confirma minhas suspeitas.

 

> Baixe: < AdwCleaner_Logo2_zps580bcd78.jpg >  << Link!    ( ... par Xplode )

 

> Ao acessar,clique em "Download ".

> Salve-o ao desktop!
> Desabilite seu antivírus!

 

< Executar_Administrador.jpg >

 

> Clique direito em adwcleaner.exe,e escolha sua execução como administrador.

> Clique "Definições". 

 

XZTQ4T3.jpg

 

> Estando em "Definições",deixe as configurações conforme este banner.

 

bk0BviF.jpg

 

> Ps: Dê início ao scan,clicando em "Verificar Agora". 
> Ao concluir,clique "Limpar e Reparar".
> Na mensagem,clique "Limpar e Reiniciar".
> Ao concluir,clique "Ver Ficheiro de Registos".    
> Copie e poste o relatório! (Mode: Clean)/(AdwCleaner[C00])

 

[]s

Editado por DigRam
Inserir relevantes informações!

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Bom Dia! magalhaesrj /!\

 

# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-31-2020
# Duration: 00:00:13
# OS: Windows 10 Home Single Language
# Cleaned: 31
# Failed: 9

>

> A AdwCleaner,também não pode remover algumas entradas e pastas,pertencente ao Segurazo.

> Ps: (...são 3 pastas e 2 entradas!)

 

C:\Program Files (x86)\Digital Communication << Diretório protegido!
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAntivirus << Diretório protegido!
C:\ProgramData\SAntivirus << Diretório protegido!

HKLM\Software\SAntivirus << Entrada protegida!
HKLM\Software\Wow6432Node\SAntivirus << Entrada protegida!

> Pelo visto,estão protegidas por ACL.

> São inócuas,pois o serviço do Rogue foi excluído!

 

http://ptcomputador.com/Sistemas/windows/218996.html

 

> Baixe: < ZHPCleaner > < 6LcRokv.jpg ... de Nicolas Coolman >

> Ou |Aqui!| << Mirror!

 

https://nicolascoolman.eu/en/download/zhpcleaner/

 

> Ou aqui àcima! Recomendado!

 

Citar


> Caso tenha algum impedimento ao download,assista este tutorial que foi postado no YouTube,para desativar o Windows SmartScreen.

 

> Estando na página,clique 7ukwnm8.jpg

 

> Salve-a ao desktop! ( ZHPCleaner.exe )
> Desabilite seu antivírus e execute ZHPCleaner.exe <<

 

nDQ00tR.jpg

 

> Ao abrir esta tela,evite clicar em Update ou Atualização,para não ser direcionado ao ZHPBrowser.
> Ps: Feche a mensagem ao clicar no "X".

 

6MKUYyzn.jpg

 

> Com a ferramenta aberta,clique em Scanner.

 

ljOOETD.jpg

 

> Aguarde a conclusão!

 

9g2LW3p.jpg

 

> Ao concluir,clique Repair.

 

88z05Yv.jpg

 

> Ps: Ignore possíveis alertas quanto à sua configuração de rede. (DNS)
> Clique Sim >> Sim!

 

CWxMrxRA.jpg

 

> Surgirão guias que estarão em vermelho,indicando problemas a serem reparados.
> Clique Repair.

 

fN86PG8.jpg

 

> Ao concluir,clique Report.
> Poste o log de reparo: ~ Type : Reparo

 

Citar

file:///C:/Users/xxx../AppData/Roaming/ZHP/ZHPCleaner.html


Ps: Ao clicar "Report",você obterá o relatório,dentre outras informações,em formato HTML.
file:///C:/Users/xxx.../AppData/Roaming/ZHP/ZHPCleaner.txt


> Este será seu relatório direto,obtido ao modificar na barra de endereços,de (.html) para (.txt).
> Basta selecionar (ctrl + A),copiar (ctrl + C) e colar ao seu Post ou Bloco de Notas. (ctrl + V)
> Outra opçãohospedar o relatório em Hébergement de fichiers, Security-x.fr.

 

[Abs]

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Noite! magalhaesrj /!\

 

---\ Summary of the elements found (4)
https://nicolascoolman.eu/2019/07/23/sup-segurazo/ =>SUP.Optional.Segurazo
>

> A ZHPCleaner removeu as entradas e pastas do Rogue.

> Ps: Seu antivírus McAfee ainda detecta o Segurazo?

> Ps: Caso queira,podes confirmar com esta ferramenta standalone da Eset.

>

> Baixe: ESET Rogue Applications Remover

 

Citar

 

sVXlUIqx_t.jpg

 

> Escolha a opção para 64 bit.

 

HSvImBK3_t.jpg

 

> Salve-o ao desktop! ( ERARemover_x64)
> Execute-a e ao abrir,clique Accept para aceitar a EULA.

 

0qyxTlUW_t.jpg

 

> A mensagem "No rogue applications detected",indicará seu PC livre do Segurazo.
> Ao concluir aperte "N" e,à seguir,aperte Enter 2 vezes para fechar a janela.

> Informe!

 

[]s

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Noite! magalhaesrj /!\

 

Verifique qual caminho ao vírus,o MacAfee aponta. Caso seja alguma quarentena das ferramentas aplicadas,basta removê-las.

 

> Baixe: KpRm

 

https://toolslib.net/downloads/viewdownload/951-kprm/ > << Link!

 

QXKihdBk_o.jpg

 

> Clique Download e salve-o ao desktop,como local de destino.

 

iF8Kyk0w_o.jpg
 

> Na tela,marque:

 

Apagar ferramentas
Deletar pontos de restauração
Criar um ponto de restauração

 

> Eliminar quarentena:  Eliminar agora

> Clique Executar e aguarde!

 

UzSZYPQ6_o.jpg

 

> Ao finalizar,clique OK!

> Informe!

 

[]s
 

Editado por DigRam
Ajustar imagens!

Compartilhar este post


Link para o post
Compartilhar em outros sites

# Run at 11/08/2020 08:22:14
# KpRm (Kernel-panik) version 2.8
# Website https://kernel-panik.me/tool/kprm/
# Run by marce from C:\Users\marce\Downloads
# Computer Name: DESKTOP-FH3AH9C
# OS: Windows 10 X64 (18363) 
# Number of passes: 1

- Checked options -

    ~ Delete Tools
    ~ Delete Restore Points
    ~ Create Restore Point
    ~ Delete Quarantines

- Delete Tools -


  ## AdwCleaner
     [OK] C:\Users\marce\Desktop\adwcleaner_8.0.7.exe deleted
     [OK] C:\AdwCleaner deleted

  ## ESET Rogue Applications Remover
     [OK] C:\Users\marce\Desktop\ERARemover_x64.exe deleted
     [OK] C:\Users\marce\Desktop\ERARemover_x86.exe deleted
     [OK] C:\ProgramData\ESET\ESET Rogue Applications Remover deleted

  ## FRST
     [OK] C:\Users\marce\Desktop\fixlist.txt deleted
     [OK] C:\FRST deleted

  ## RogueKiller
     [OK] C:\ProgramData\RogueKiller\quarantine\00B99D34562F1776.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\00B99D34562F1776.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\021DE6F18AC183BB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\021DE6F18AC183BB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\027603917685D273.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\027603917685D273.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0463460A2783889C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0463460A2783889C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\05B3DD345F3DB77C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\05B3DD345F3DB77C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\062E20B99340F74B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\062E20B99340F74B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0637978E933AD252.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0637978E933AD252.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\07BDB531846C7F94.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\07BDB531846C7F94.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\080C523A44144E4D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\080C523A44144E4D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\086218585D2E8DA9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\086218585D2E8DA9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0ACE48F93879E973.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0ACE48F93879E973.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0B2CEA3FC31C1701.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0B2CEA3FC31C1701.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0C93252B58C87F76.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0C93252B58C87F76.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0D023BB87A78DFF8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0D023BB87A78DFF8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1193DB4A198626.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1193DB4A198626.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1A43CD49FA2CB9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1A43CD49FA2CB9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0EDB2564C10DEE2F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0EDB2564C10DEE2F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0F1F4DD768D4279A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0F1F4DD768D4279A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\10A913233B8B83D0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\10A913233B8B83D0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\11B66B91BE08A87A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\11B66B91BE08A87A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\13E5A08C6240F49B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\13E5A08C6240F49B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16B604BC1B1EA29B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16B604BC1B1EA29B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16C4B7D2D63D62D7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16C4B7D2D63D62D7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1A4DB2396CAAE020.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1A4DB2396CAAE020.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1B56401D67D5D955.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1B56401D67D5D955.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1EF9B29EC402E360.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1EF9B29EC402E360.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\21885E2A8B0DCA36.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\21885E2A8B0DCA36.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\22049BCF38226A2D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\22049BCF38226A2D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\232615D4A401B1BB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\232615D4A401B1BB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2396B753365BB3C3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2396B753365BB3C3.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\246E6E07DE27D464.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\246E6E07DE27D464.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\24B47D27C8F66988.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\24B47D27C8F66988.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2838BF7716CE1A4C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2838BF7716CE1A4C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\287081C3109C8A3D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\287081C3109C8A3D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2935CC43DB06DDBD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2935CC43DB06DDBD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2AB9F6B291714D71.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2AB9F6B291714D71.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2C1150FD2F9945B7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2C1150FD2F9945B7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2DD238790A49E865.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2DD238790A49E865.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E04F28D7C9FD215.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E04F28D7C9FD215.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E733571A7F71F90.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E733571A7F71F90.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2EA064FDF37E8A90.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2EA064FDF37E8A90.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F3DD08EE26EA132.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F3DD08EE26EA132.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F62DE206EB7EE03.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F62DE206EB7EE03.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\30A4CDB40863FD1E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\30A4CDB40863FD1E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\33BDA1601492F912.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\33BDA1601492F912.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\34A6FF58CDE27A9B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\34A6FF58CDE27A9B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\38BABA5810DB915F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\38BABA5810DB915F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AB3EB112586F98D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AB3EB112586F98D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AFCF20CBBED0C3E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AFCF20CBBED0C3E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BD72AECE8D84D53.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BD72AECE8D84D53.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BE3721F37021866.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BE3721F37021866.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3C1E4A3B3B35054A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3C1E4A3B3B35054A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DA98E16C708BAF3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DA98E16C708BAF3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DCA640838037DAE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DCA640838037DAE.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3F666E0A8CB61885.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3F666E0A8CB61885.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\40366FE5D304B25A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\40366FE5D304B25A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43BEEBFCAED7D2EE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43BEEBFCAED7D2EE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43EC42007B178A0E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43EC42007B178A0E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\44D9E0663031BC65.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\44D9E0663031BC65.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4799C1E1E6196C9E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4799C1E1E6196C9E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\48D68D36FFC1D871.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\48D68D36FFC1D871.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4926264D91088D2E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4926264D91088D2E.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A04B4B66C4A1FFD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A04B4B66C4A1FFD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A46193A3B7F91B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A46193A3B7F91B0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4C2D0F09A9D132B3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4C2D0F09A9D132B3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4DFD2633E4F73833.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4DFD2633E4F73833.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4FD1E7C5F76E9666.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4FD1E7C5F76E9666.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5462D88585E06BE8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5462D88585E06BE8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\556519C4190C9155.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\556519C4190C9155.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5710FAA754645CA9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5710FAA754645CA9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5823DF837D904681.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5823DF837D904681.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5970C33703D7A87A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5970C33703D7A87A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5B59D99E76A85246.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5B59D99E76A85246.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5DDB34A21CD1F5AB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5DDB34A21CD1F5AB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E0DFB30C6D6E3F0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E0DFB30C6D6E3F0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E205CD0EB69F2F9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E205CD0EB69F2F9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5EAAC0BB86A6AF82.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5EAAC0BB86A6AF82.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5FC1314B2CB09BA5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5FC1314B2CB09BA5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6066F3E009B1812B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6066F3E009B1812B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\60792BD0A1213FBA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\60792BD0A1213FBA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6411CEBB3ADEBD28.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6411CEBB3ADEBD28.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\64A8E40848F166AB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\64A8E40848F166AB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6519628497A59896.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6519628497A59896.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\684F93CF303C3BC8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\684F93CF303C3BC8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6899C922CF4B3C71.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6899C922CF4B3C71.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\69F8DA7801AD7E7D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\69F8DA7801AD7E7D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B2F666BD3E6BB42.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B2F666BD3E6BB42.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B85F55E272EA490.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B85F55E272EA490.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BB673D39B7A6870.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BB673D39B7A6870.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BD42E1475475F1D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BD42E1475475F1D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BE49C7F5F133197.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BE49C7F5F133197.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6CFB2FDF17052ADD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6CFB2FDF17052ADD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D0D063B2ED5CFC0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D0D063B2ED5CFC0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D18C27632A8B6EE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D18C27632A8B6EE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D73D25034E08394.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D73D25034E08394.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6DC8237E19726058.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6DC8237E19726058.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6FEEDFB17EC0AEB4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6FEEDFB17EC0AEB4.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\708A4B47475E07B5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\708A4B47475E07B5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73E28F4FA709140E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73E28F4FA709140E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73F3359A9EEF11D9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73F3359A9EEF11D9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74114C943F676636.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74114C943F676636.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74627983A3F49FB2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74627983A3F49FB2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7464D6ECD83A9146.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7464D6ECD83A9146.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\750A00F0D868936F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\750A00F0D868936F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7A49FDE9B68E7CBF.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7A49FDE9B68E7CBF.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7B421E67A29BE4DA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7B421E67A29BE4DA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7C01D59F191613B2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7C01D59F191613B2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7CD2857CD4C4FC6B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7CD2857CD4C4FC6B.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7DA8972941BC7679.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7DA8972941BC7679.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7FFD65B4A2F78F33.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7FFD65B4A2F78F33.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8058586CE8782C95.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8058586CE8782C95.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\82810D7FD30B3ADC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\82810D7FD30B3ADC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\83E50BE4EBCC3603.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\83E50BE4EBCC3603.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\85C56EAAFFD602DA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\85C56EAAFFD602DA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8691682F63DE1A8E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8691682F63DE1A8E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\899C6D8977176C80.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\899C6D8977176C80.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B022516619C4B08.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B022516619C4B08.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B04E066B49B1DE7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B04E066B49B1DE7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8BC5823EA35A6FB5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8BC5823EA35A6FB5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8D12D8F4049CAC68.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8D12D8F4049CAC68.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\90205C931F14D951.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\90205C931F14D951.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\91E9D8D9578B576D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\91E9D8D9578B576D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\924B10613D2C05FE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\924B10613D2C05FE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\93B8BFB26E6C0BD6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\93B8BFB26E6C0BD6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\94F36E24BF2AE8A0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\94F36E24BF2AE8A0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9697766A482BFC47.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9697766A482BFC47.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\96FDF62E0C14815B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\96FDF62E0C14815B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\975CEE48F6EB7F20.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\975CEE48F6EB7F20.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9ADD20A2E99F116B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9ADD20A2E99F116B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9B772CDD49BBB19C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9B772CDD49BBB19C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9E00F9E12125BF2D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9E00F9E12125BF2D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9F5882AF1550CB85.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9F5882AF1550CB85.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0540C1D2D610609.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0540C1D2D610609.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0A40028AA27D3D4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0A40028AA27D3D4.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A3713A328065FC54.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A3713A328065FC54.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A470B1F44C4FD38D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A470B1F44C4FD38D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A6FB537018D27D23.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A6FB537018D27D23.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A7CF41A013FAB3AD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A7CF41A013FAB3AD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAF9F9615F73F956.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAF9F9615F73F956.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAFD1F99FA1401BC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAFD1F99FA1401BC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC5624C4769EA38C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC5624C4769EA38C.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC581EDE1302C153.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC581EDE1302C153.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AE000C93ED409078.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AE000C93ED409078.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AFC1EB3C0CC5CC10.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AFC1EB3C0CC5CC10.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B55A6ED89E71F521.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B55A6ED89E71F521.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B66562FD64BA885F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B66562FD64BA885F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B75E1659FDBBB598.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B75E1659FDBBB598.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B847C86BFFFC4B38.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B847C86BFFFC4B38.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BC4109586198711C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BC4109586198711C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BF6DAF733B9894D9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BF6DAF733B9894D9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C0482BFE3BD6C3B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C0482BFE3BD6C3B0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C1A20E4EF6F584E0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C1A20E4EF6F584E0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C32539C3860D36F3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C32539C3860D36F3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C39E8B351648DD8E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C39E8B351648DD8E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C8AAE542F3B55A5C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C8AAE542F3B55A5C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB66F498718B7B64.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB66F498718B7B64.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB69E1EC2564171A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB69E1EC2564171A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CC373045F92F06C7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CC373045F92F06C7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD3427C9A53D9EEC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD3427C9A53D9EEC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD818293D1B94837.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD818293D1B94837.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD841CCD3BA0D0D6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD841CCD3BA0D0D6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDA1056AF9C2F6DC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDA1056AF9C2F6DC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDBC54CE4DFD9542.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDBC54CE4DFD9542.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CE79A3169774F1B1.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CE79A3169774F1B1.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D054BECE244567A0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D054BECE244567A0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D1510A6432E277FA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D1510A6432E277FA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D37AB992BBD9A309.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D37AB992BBD9A309.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D5E420A70ED2D25E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D5E420A70ED2D25E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D6C3AA1DBAB34A31.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D6C3AA1DBAB34A31.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7E4F01ED36D216B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7E4F01ED36D216B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7EBB4774647EE2B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7EBB4774647EE2B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D96A0FC69E4D0F0C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D96A0FC69E4D0F0C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DB945D53F148A0B1.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DB945D53F148A0B1.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DEF6191DB52F6A70.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DEF6191DB52F6A70.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E028E465767613D5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E028E465767613D5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E181A51E37CB27BE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E181A51E37CB27BE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E222968FDCBA7D13.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E222968FDCBA7D13.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E2EB019AEC93FA1B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E2EB019AEC93FA1B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E50A7129E9E276B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E50A7129E9E276B0.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E5E43253003E6249.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E5E43253003E6249.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E6223599C1BF170D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E6223599C1BF170D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E74D9F49DB263277.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E74D9F49DB263277.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E78CCAFA5D4F561A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E78CCAFA5D4F561A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E8CA007E95C83591.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E8CA007E95C83591.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA175CDB67D9B342.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA175CDB67D9B342.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA4CC1C4060F73FF.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA4CC1C4060F73FF.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EBC9232618C1F8B4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EBC9232618C1F8B4.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\ECEB3E83694207F6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\ECEB3E83694207F6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EDBB6321F0DBC7E9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EDBB6321F0DBC7E9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EEB5AB165DA17D23.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EEB5AB165DA17D23.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F13B18C5A6371344.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F13B18C5A6371344.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F21C6EF80D277B87.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F21C6EF80D277B87.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F2919164271FA246.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F2919164271FA246.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F317B00CF2FE90E8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F317B00CF2FE90E8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F386973755AC7FB2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F386973755AC7FB2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F4282EA74F0DDFB7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F4282EA74F0DDFB7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F5026C6DE0940205.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F5026C6DE0940205.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F60B00373D5BDD72.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F60B00373D5BDD72.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F796FF67F7DBA458.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F796FF67F7DBA458.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F7A1E05F614B7045.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F7A1E05F614B7045.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA2C356F2F598920.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA2C356F2F598920.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA4B18268BDFCEED.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA4B18268BDFCEED.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FB45036130FB2577.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FB45036130FB2577.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FE302BF60C5AF216.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FE302BF60C5AF216.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FEE5B6E5E3F781C5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FEE5B6E5E3F781C5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FF3BAD141DFA6939.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FF3BAD141DFA6939.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FFFAB79FFB60B946.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FFFAB79FFB60B946.vir deleted

  ## ZHP Tools
     [OK] C:\Users\marce\AppData\Local\ZHP deleted
     [OK] HKCU\SOFTWARE\ZHP deleted

  ## ZHPCleaner
     [OK] C:\Users\marce\Desktop\ZHPCleaner (R).txt deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner (S).txt deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.exe deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.lnk deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.txt deleted

- Other Lines -


  ## Quarantines never deleted
    ~ C:\Users\marce\AppData\Roaming\ZHP (ZHP)

- Clear Restore Points -

   ~ [OK] RP named Ponto de Verificação Agendado created at 08/10/2020 16:16:51 deleted
     [OK] All system restore points have been successfully deleted

- Create Restore Point -

     [OK] System Restore Point created

- Display System Restore Point -

   ~ RP named KpRm created at 08/11/2020 11:22:30

-- KPRM finished in 25.50s --

Compartilhar este post


Link para o post
Compartilhar em outros sites

/!\ Boa Tarde! magalhaesrj /!\

 

Devido a remoção de ferramentas e quarentenas,bem como pontos de restauração,seu antivírus ainda detecta alguma ocorrência?

 

## Quarantines never deleted
    ~ C:\Users\marce\AppData\Roaming\ZHP (ZHP)

 

Parece que ficou a da ZHPCleaner!

Verifique!

 

[]s

Compartilhar este post


Link para o post
Compartilhar em outros sites

Crie uma conta ou entre para comentar

Você precisar ser um membro para fazer um comentário

Criar uma conta

Crie uma nova conta em nossa comunidade. É fácil!

Crie uma nova conta

Entrar

Já tem uma conta? Faça o login.

Entrar Agora

  • Conteúdo Similar

    • Por André Severino
      Olá boa tarde a todos,
       
      No ano passado (jun/21) a Anatel publicou uma nota dizendo que alguns analistas encontraram um malware em um aparelho IPTV, o aparelho em questão é o HTV.
       
      Em abril/21 eu comprei um de presente para meus pais e recentemente troquei meu roteador e ele começou a bloquear o aparelho porque ele está fazendo ataques DDOS de dentro da rede. (foi quando descobri esse artigo da anatel)
       
      Atualmente deixei o aparelho um roteador exclusivo para ele com outra faixa de IP na rede, para tentar evitar a captura dos dados do roteador principal, será que isso é suficiente ou não tem nada haver? 
       
      Enfim alguém sabe como faço para descobrir essa porta que ele usa ? Como posso bloquear isso ?
       
      Obs.: não sou a favor da pirataria muito pelo contrário, mas meu pai já usava um aparelho via satélite com o uso de duas antenas, só melhorei o equipamento dele por gratidão :D 
    • Por astronautalouco
      Olá moderadores,
       
      Hoje operando normalmente como sempre faço na internet, devo ter clicado em algo nocivo ou algum site malicioso. Não me recordo de ter feito nada arriscado, mexendo apenas nos sites mais conhecidos de todos. cliquei apenas em alguns videos no Twitter. Segue os logs: https://www.cjoint.com/c/KKrtaReahC2 e https://www.cjoint.com/c/KKrtbAdxK52 .
      Bom agradeço desde já pela ajuda! É noix...
    • Por kelly Borges
      meu pc esta com virus e nao funciona nada, abre varias paginas e e o meu pc de trabalho, por favor me ajudem, ficarei imensamene agradecida
    • Por LEANDRO BORGES SILVA'
      o meu computador esta abrindo varias janelas e digitando sozinho como se fosse altomatico. abre varias abas de internet e pastas
    • Por Eduarda Lang Duarte
      O windows diz que não pode encontrar programas da Office 2010, eu ja tentei ir no Regedit e renomear o Office como Office.old e não funcionou, tentei reparar mas sempre aparece que não acha uma dll diferente. Eu já vi várias pessoas com o mesmo problema que eu, e disseram que é vírus, como eu resolvo? É minha primeira vez nesse site, se tiver algo errado, me falem que eu arrumo.
×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.