Jump to content
magalhaesrj

Meu antivirus não consegue remover o virus

Recommended Posts

/_ Boa Noite! magalhaesrj _\

 

> Baixe: < IASCZft.jpgFarbar Recovery Scan Tool

 

Citar

http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/


> No link àcima,temos a ferramenta para sistemas 32bits!

 

Citar


> No link àcima,temos o download para sistemas 64bits! (FRST64.exe)
> Salve-a ao desktop! (Área de trabalho ...)
> Execute a ferramenta! 
> Clique "Sim" >> "Examinar".

 

4y9giFrI.jpg

 

> Antes de clicar "Examinar",verifique se as caixinhas em "Whitelist" estão assinaladas.
> Em "Exame Opcional",deixe marcada as checkbox "Addition.txt" e "Arquivos 90 Dias".
> Ps: Será gerado,também,o relatório "Addition.txt".
> Poste os relatórios! (FRST.txt + Addition.txt)

 

Citar

http://www.cjoint.com/


> Como os logs serão extensos,envie-os à cjoint.com.

 

EUE4tdb.jpg

 

> Clique no botão Parcourir... 
> Busque o relatório e clique no botão Abrir.
> Clique no botão "Créer le lien Cjoint".
> Copie o link que está ao lado de "Le lien a été créé" e poste-o em sua resposta.

 

Copierlelien_zpsd51f499f.jpg

 

> Ou clique "Copier le lien (*)" e cole o link ao seu Post.
> Outra opçãohospedar os relatórios em Hébergement de fichiers, Security-x.fr.

 

Citar

http://dl.free.fr


> Ou ainda,em dl.free.fr.
> Ou ainda em: https://textup.fr/
> Fique atento,pois teremos 2 links a serem postados!

 

A+

Share this post


Link to post
Share on other sites

/!\ Boa Noite!  magalhaesrj /!\


> Desinstale: <2>

 

Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)

SAntivirus Realtime Protection Lite (HKLM-x32\...\SAntivirus) (Version: 1.0.22.8 - Digital Com. Inc) <==== ATENÇÃO

 

> Copie estas informações , logo abaixo,para o Bloco de Notas.

start::
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO
Task: {2C98BC02-9B01-4F21-86C5-36E5FD4CEE2E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: )
Task: {3031AB16-44AF-48DA-9171-77E5315CE73E} - System32\Tasks\update-S-1-5-21-2491648592-1319402890-2819360954-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: )
Task: {DC56B25F-A930-4FA7-A6C9-1FF95CA512EF} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
Task: {EDDC8BE0-2099-4058-AAA3-48667F593CFF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2491648592-1319402890-2819360954-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
SearchScopes: HKLM -> DefaultScope valor está ausente
SearchScopes: HKLM-x32 -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnV7NCmYbopnJFVR%2BKmme%2BkMNL8LHS1ov2HwWspjJINuAByiecMUmnkBgMvWtE5HugLNENT7JYulVy77X5QmPLiUYrMrkDxG0AC84PJH4agQcTk7axkucYKUlv8Jdb%2FelYEwrWV%2FJWCcrQWh6xD1ZwMpRmixPlRQmLCInmVBkI37%2FNGJNlwEwS%2BsKvsyoRHbiyOUMwwOK6M0nSiTrbt%2Bhw%2BqWTgQAsuWSsd8bA0%2B%2B3owtB%2F1AOMtWiEi4P8EFevQc1p16NW8bGS2bpUQ4sKCuFaDAuPc3vAzWXa7lJbpxs3CKB5J6114BeDOIuubkr0Qxzw%3D%3D&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> {2A23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnV7NCmYbopnJFVR%2BKmme%2BkMNL8LHS1ov2HwWspjJINuAByiecMUmnkBgMvWtE5HugLNENT7JYulVy77X5QmPLiUYrMrkDxG0AC84PJH4agQcTk7axkucYKUlv8Jdb%2FelYEwrWV%2FJWCcrQWh6xD1ZwMpRmixPlRQmLCInmVBkI37%2FNGJNlwEwS%2BsKvsyoRHbiyOUMwwOK6M0nSiTrbt%2Bhw%2BqWTgQAsuWSsd8bA0%2B%2B3owtB%2F1AOMtWiEi4P8EFevQc1p16NW8bGS2bpUQ4sKCuFaDAuPc3vAzWXa7lJbpxs3CKB5J6114BeDOIuubkr0Qxzw%3D%3D&p={searchTerms}
Edge HomeButtonPage: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnTfUN%2BYRjdlPoVLewKWO5Gdr1oHQn0rWb7XUAV1OmghSZ3pFvGGNfdcnLUPRVjIZ1iMlADwG4TK1%2BDOrw6pOvxThTFhd41D2RgVFiWpaJEGkM%2FgG2Mn5qzfsXQbHGoGk79hrudyLIohPMUgb57%2BIYtDVBbd1oSaoDWoqppZaEDni8s1bba9vVA%2BydOos4UopeI0ZnXa8Xnv0Im4Ls24bpdik81PFC6C39CyshXQ%2Be3L3kOqtE5HjVDwpc93Ku4XWLuAcrjfU84e%2F8mQAkEMww4gnMVsfKLnpG8ctqfz78InKAmXqJF%2BMzVIFvJuctO982g%3D%3D
Edge HomePage: Default -> hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1Gna%2BL5afMx1kcQU9cR9MMkcy8XUSJLCgFfB3PcpZEFkXUbaGeAoCkTe3bHlXM41NY0bjK8Kqi5FBgV%2BFqH6sG6I65ok4MyIZPkIRgx%2FJM9l9OAXDABUgazPWH8YGVUCfl9LaSMe4NqM8N08j0oXskit%2Fk8f1m6DX2RhNFZIX0N8zd1UhiFkMBvMKpfregpxnMIrZuoTteMJ8nHt0wKC9HlqoUyFwqA5gDCSzUK1dZkT5FSd%2BnTclqeogxvskHHMhvaY3bHKYD%2F%2BXPbdq9pzSUxe7aPdJGE1b0Z0PgbVuI35I5B8Yoh4eYFv0nDl9thVDzEQ%3D%3D
Edge StartupUrls: Default -> "hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnSlLt%2BpC5rB7Yipv1XcHLI7gnO9i37hZHlFQaAGw8molRnXKA%2Bg1I7xHAlwyl9totAkzxaT3fL5tit%2FD2nyonzf0EVo9%2FhgiaHyEAZe7%2BXKNP%2F5Ol8Lm4iQPEUEu1XLadqeT15DyZ9%2BB76S%2F2Nypmx6Sb5AzKu3bQXkr5YN0qzr%2BrFWqsxhycobBxuq6LzAcfSLj37Uvg2pkcoFUOVj3F1cgduCXExiTnGgl1tYfnjTCmAzxIp%2BbPQZwnRlhTT0ojhkzpuPyhv0zQzd2k30OFWn07ujrCFrepMlMhubrJDd%2FwAmneFc5zFrKjOzWUj6muQ%3D%3D"
Edge DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnfiWFhaxZL9A%2BjhCv3yWnSQS7YwCJYk0zQtgYPL5ENvTHsWpFYu6UtQRkEBuk%2BMmzjV5UImosmu0II3RuBHNI8nkxWZfROEdt%2Fh4lUFXr0AfXhwkXtP4z01%2BsPNPNEjEf%2BM37lwrI4uWrYziCiLjyWwv39JU9xWts3b%2B5fAgQBahP73rQAtAnEvgT7aeDBJXgBL1WedUPZOuQ0VQ8iGKaCmIAzYHjg%2BXWpzRFnMscr71xo3zRKi9gbSD2BOfRC1JGBmyh%2BBDA5YZZxa1F82VXP8WtKjHtXel5GKfMO2T4XnXN6JEE67cEkVQH56z2jVYLQ%3D%3D&p={searchTerms}
Edge DefaultSearchKeyword: Default -> search.yahoo.com
Edge DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
"SAntivirusIC" => serviço foi desbloqueado. <==== ATENÇÃO
R2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe [6947608 2020-07-09] (Digital Communications Inc -> Incorp DigCom) <==== ATENÇÃO
S2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [X] <==== ATENÇÃO
R1 SANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusKD.sys [74544 2020-07-09] (Digital Communications Inc -> Digital Comm. Inc) <==== ATENÇÃO
U3 avgbdisk; não ImagePath
2020-07-16 01:33 - 2020-07-16 01:33 - 000000000 ____D C:\Users\marce\Documents\Lightshot
2020-07-16 01:33 - 2020-07-16 01:33 - 000000000 ____D C:\Program Files (x86)\Skillbrains
ContextMenuHandlers1: [FortiClient] -> {7AE5C558-994B-40B7-8730-2DAC2B96781B} => C:\Program Files\Fortinet\FortiClient\FortiCliSh.dll -> Nenhum Arquivo
StartPowershell:
DISM /Online /Cleanup-image /Restorehealth
sfc /scannow
EndPowershell:
CMD: ipconfig /flushdns
SubSystems: [Windows] ==> SAntivirus Realtime Protection Lite
CreateRestorePoint:
EmptyTemp:
Reboot:
Hosts:
end::

> Salve-as com o nome fixlist. << Texto ou Unicode,caso solicite!
> Salve-as ao desktop! ( Área de trabalho ... )

 

IsRtnte.jpg

 

> Execute FRST/FRST64 >> Clique "Corrigir" << Aguarde! 
> Poste o relatório "Resultado da Correção pela Farbar Recovery Scan Tool". (Fixlog.txt)
> Este e outros relatórios,podem ser encontrados na pasta: Disco Local (C) > FRST > Logs

 

< Peço aos visitantes que não utilizem este script em outros computadores,sob risco de danos aos mesmos! >

 

[A+]

Share this post


Link to post
Share on other sites

/!\ Boa Noite! magalhaesrj /!\

 

> Copie estas informações que estão no Código,para o Bloco de Notas.
> Salve-as com o nome fixlist. << Texto ou Unicode,caso solicite!
> Salve-as ao desktop! ( Área de trabalho ... )

start::
Unlock: HKLM\System\CurrentControlSet\Services\SAntivirusIC
Reg: reg delete HKLM\System\CurrentControlSet\Services\SAntivirusIC /f
Unlock: HKLM\System\CurrentControlSet\Services\SAntivirusSvc
Reg: reg delete HKLM\System\CurrentControlSet\Services\SAntivirusSvc /f
Unlock: HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD 
Reg: reg delete HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD /f
Reboot:
end::

IsRtnte.jpg

 

> Execute FRST/FRST64 >> Clique "Corrigir" << Aguarde! 
> Poste o relatório "Resultado da Correção pela Farbar Recovery Scan Tool". (Fixlog.txt)
> Este e outros relatórios,podem ser encontrados na pasta: Disco Local (C) > FRST > Logs

 

[A+]
 

Share this post


Link to post
Share on other sites

/!\  Boa Tarde! magalhaesrj /!\

 

Citar

"HKLM\System\CurrentControlSet\Services\SAntivirusIC" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SAntivirusIC /f =========

ERRO: Acesso negado.

========= Fim de Reg: =========

"HKLM\System\CurrentControlSet\Services\SAntivirusSvc" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SAntivirusSvc /f =========

ERRO: Acesso negado.


========= Fim de Reg: =========

"HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD /f =========

ERRO: Acesso negado.
 

 

> O Rogue ,que está presente e com informações protegidas ao registro,foi desbloqueado pelo script,mas estamos encontrando renitência na remoção.

 

RogueKiller

 

Baixe este antimalware ( RogueKiller )e instale-o em seu computador.

Utilize a função "Standard Scan" e ao finalizar ,busque remover suas detecções!

Na busca pelo log,clique em History >> Reports >> Scan e/ou Delete.

Caso queira,envie-nos os Reports (Scan) + (Delete). << São 2 relatórios!

 

[Abs!]

Share this post


Link to post
Share on other sites

/!\ Boa Noite!  magalhaesrj /!\

 

[Rogue.Segurazo (Malicious)] HKEY_LOCAL_MACHINE\Software\SAntivirus -- -> ERROR [5]
[Rogue.Segurazo (Malicious)] SAntivirus -- %programdata%\Microsoft\Windows\Start Menu\Programs\SAntivirus -> ERROR [5]
=> SAProduct.lnk --C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\SAntivirus\SAProduct.lnk -> ERROR [0]

>

> Started in : Normal mode

> Execute novamente a RogueKiller, mas em Modo de Segurança, pois em Modo Normal surgiram estes erros,que impediram estas remoções.

 

1iZWfCWd_t.jpg

>

> Ps: O criador da ferramenta (Tygzy),confirma minhas suspeitas.

 

> Baixe: < AdwCleaner_Logo2_zps580bcd78.jpg >  << Link!    ( ... par Xplode )

 

> Ao acessar,clique em "Download ".

> Salve-o ao desktop!
> Desabilite seu antivírus!

 

< Executar_Administrador.jpg >

 

> Clique direito em adwcleaner.exe,e escolha sua execução como administrador.

> Clique "Definições". 

 

XZTQ4T3.jpg

 

> Estando em "Definições",deixe as configurações conforme este banner.

 

bk0BviF.jpg

 

> Ps: Dê início ao scan,clicando em "Verificar Agora". 
> Ao concluir,clique "Limpar e Reparar".
> Na mensagem,clique "Limpar e Reiniciar".
> Ao concluir,clique "Ver Ficheiro de Registos".    
> Copie e poste o relatório! (Mode: Clean)/(AdwCleaner[C00])

 

[]s

Edited by DigRam
Inserir relevantes informações!

Share this post


Link to post
Share on other sites

/!\ Bom Dia! magalhaesrj /!\

 

# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-31-2020
# Duration: 00:00:13
# OS: Windows 10 Home Single Language
# Cleaned: 31
# Failed: 9

>

> A AdwCleaner,também não pode remover algumas entradas e pastas,pertencente ao Segurazo.

> Ps: (...são 3 pastas e 2 entradas!)

 

C:\Program Files (x86)\Digital Communication << Diretório protegido!
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAntivirus << Diretório protegido!
C:\ProgramData\SAntivirus << Diretório protegido!

HKLM\Software\SAntivirus << Entrada protegida!
HKLM\Software\Wow6432Node\SAntivirus << Entrada protegida!

> Pelo visto,estão protegidas por ACL.

> São inócuas,pois o serviço do Rogue foi excluído!

 

http://ptcomputador.com/Sistemas/windows/218996.html

 

> Baixe: < ZHPCleaner > < 6LcRokv.jpg ... de Nicolas Coolman >

> Ou |Aqui!| << Mirror!

 

https://nicolascoolman.eu/en/download/zhpcleaner/

 

> Ou aqui àcima! Recomendado!

 

Citar


> Caso tenha algum impedimento ao download,assista este tutorial que foi postado no YouTube,para desativar o Windows SmartScreen.

 

> Estando na página,clique 7ukwnm8.jpg

 

> Salve-a ao desktop! ( ZHPCleaner.exe )
> Desabilite seu antivírus e execute ZHPCleaner.exe <<

 

nDQ00tR.jpg

 

> Ao abrir esta tela,evite clicar em Update ou Atualização,para não ser direcionado ao ZHPBrowser.
> Ps: Feche a mensagem ao clicar no "X".

 

6MKUYyzn.jpg

 

> Com a ferramenta aberta,clique em Scanner.

 

ljOOETD.jpg

 

> Aguarde a conclusão!

 

9g2LW3p.jpg

 

> Ao concluir,clique Repair.

 

88z05Yv.jpg

 

> Ps: Ignore possíveis alertas quanto à sua configuração de rede. (DNS)
> Clique Sim >> Sim!

 

CWxMrxRA.jpg

 

> Surgirão guias que estarão em vermelho,indicando problemas a serem reparados.
> Clique Repair.

 

fN86PG8.jpg

 

> Ao concluir,clique Report.
> Poste o log de reparo: ~ Type : Reparo

 

Citar

file:///C:/Users/xxx../AppData/Roaming/ZHP/ZHPCleaner.html


Ps: Ao clicar "Report",você obterá o relatório,dentre outras informações,em formato HTML.
file:///C:/Users/xxx.../AppData/Roaming/ZHP/ZHPCleaner.txt


> Este será seu relatório direto,obtido ao modificar na barra de endereços,de (.html) para (.txt).
> Basta selecionar (ctrl + A),copiar (ctrl + C) e colar ao seu Post ou Bloco de Notas. (ctrl + V)
> Outra opçãohospedar o relatório em Hébergement de fichiers, Security-x.fr.

 

[Abs]

Share this post


Link to post
Share on other sites

/!\ Boa Noite! magalhaesrj /!\

 

---\ Summary of the elements found (4)
https://nicolascoolman.eu/2019/07/23/sup-segurazo/ =>SUP.Optional.Segurazo
>

> A ZHPCleaner removeu as entradas e pastas do Rogue.

> Ps: Seu antivírus McAfee ainda detecta o Segurazo?

> Ps: Caso queira,podes confirmar com esta ferramenta standalone da Eset.

>

> Baixe: ESET Rogue Applications Remover

 

Citar

 

sVXlUIqx_t.jpg

 

> Escolha a opção para 64 bit.

 

HSvImBK3_t.jpg

 

> Salve-o ao desktop! ( ERARemover_x64)
> Execute-a e ao abrir,clique Accept para aceitar a EULA.

 

0qyxTlUW_t.jpg

 

> A mensagem "No rogue applications detected",indicará seu PC livre do Segurazo.
> Ao concluir aperte "N" e,à seguir,aperte Enter 2 vezes para fechar a janela.

> Informe!

 

[]s

Share this post


Link to post
Share on other sites

/!\ Boa Noite! magalhaesrj /!\

 

Verifique qual caminho ao vírus,o MacAfee aponta. Caso seja alguma quarentena das ferramentas aplicadas,basta removê-las.

 

> Baixe: KpRm

 

https://toolslib.net/downloads/viewdownload/951-kprm/ > << Link!

 

QXKihdBk_o.jpg

 

> Clique Download e salve-o ao desktop,como local de destino.

 

iF8Kyk0w_o.jpg
 

> Na tela,marque:

 

Apagar ferramentas
Deletar pontos de restauração
Criar um ponto de restauração

 

> Eliminar quarentena:  Eliminar agora

> Clique Executar e aguarde!

 

UzSZYPQ6_o.jpg

 

> Ao finalizar,clique OK!

> Informe!

 

[]s
 

Edited by DigRam
Ajustar imagens!

Share this post


Link to post
Share on other sites

# Run at 11/08/2020 08:22:14
# KpRm (Kernel-panik) version 2.8
# Website https://kernel-panik.me/tool/kprm/
# Run by marce from C:\Users\marce\Downloads
# Computer Name: DESKTOP-FH3AH9C
# OS: Windows 10 X64 (18363) 
# Number of passes: 1

- Checked options -

    ~ Delete Tools
    ~ Delete Restore Points
    ~ Create Restore Point
    ~ Delete Quarantines

- Delete Tools -


  ## AdwCleaner
     [OK] C:\Users\marce\Desktop\adwcleaner_8.0.7.exe deleted
     [OK] C:\AdwCleaner deleted

  ## ESET Rogue Applications Remover
     [OK] C:\Users\marce\Desktop\ERARemover_x64.exe deleted
     [OK] C:\Users\marce\Desktop\ERARemover_x86.exe deleted
     [OK] C:\ProgramData\ESET\ESET Rogue Applications Remover deleted

  ## FRST
     [OK] C:\Users\marce\Desktop\fixlist.txt deleted
     [OK] C:\FRST deleted

  ## RogueKiller
     [OK] C:\ProgramData\RogueKiller\quarantine\00B99D34562F1776.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\00B99D34562F1776.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\021DE6F18AC183BB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\021DE6F18AC183BB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\027603917685D273.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\027603917685D273.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0463460A2783889C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0463460A2783889C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\05B3DD345F3DB77C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\05B3DD345F3DB77C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\062E20B99340F74B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\062E20B99340F74B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0637978E933AD252.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0637978E933AD252.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\07BDB531846C7F94.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\07BDB531846C7F94.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\080C523A44144E4D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\080C523A44144E4D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\086218585D2E8DA9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\086218585D2E8DA9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0ACE48F93879E973.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0ACE48F93879E973.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0B2CEA3FC31C1701.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0B2CEA3FC31C1701.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0C93252B58C87F76.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0C93252B58C87F76.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0D023BB87A78DFF8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0D023BB87A78DFF8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1193DB4A198626.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1193DB4A198626.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1A43CD49FA2CB9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1A43CD49FA2CB9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0EDB2564C10DEE2F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0EDB2564C10DEE2F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0F1F4DD768D4279A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0F1F4DD768D4279A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\10A913233B8B83D0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\10A913233B8B83D0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\11B66B91BE08A87A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\11B66B91BE08A87A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\13E5A08C6240F49B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\13E5A08C6240F49B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16B604BC1B1EA29B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16B604BC1B1EA29B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16C4B7D2D63D62D7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16C4B7D2D63D62D7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1A4DB2396CAAE020.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1A4DB2396CAAE020.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1B56401D67D5D955.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1B56401D67D5D955.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1EF9B29EC402E360.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1EF9B29EC402E360.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\21885E2A8B0DCA36.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\21885E2A8B0DCA36.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\22049BCF38226A2D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\22049BCF38226A2D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\232615D4A401B1BB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\232615D4A401B1BB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2396B753365BB3C3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2396B753365BB3C3.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\246E6E07DE27D464.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\246E6E07DE27D464.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\24B47D27C8F66988.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\24B47D27C8F66988.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2838BF7716CE1A4C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2838BF7716CE1A4C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\287081C3109C8A3D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\287081C3109C8A3D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2935CC43DB06DDBD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2935CC43DB06DDBD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2AB9F6B291714D71.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2AB9F6B291714D71.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2C1150FD2F9945B7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2C1150FD2F9945B7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2DD238790A49E865.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2DD238790A49E865.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E04F28D7C9FD215.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E04F28D7C9FD215.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E733571A7F71F90.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E733571A7F71F90.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2EA064FDF37E8A90.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2EA064FDF37E8A90.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F3DD08EE26EA132.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F3DD08EE26EA132.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F62DE206EB7EE03.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F62DE206EB7EE03.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\30A4CDB40863FD1E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\30A4CDB40863FD1E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\33BDA1601492F912.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\33BDA1601492F912.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\34A6FF58CDE27A9B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\34A6FF58CDE27A9B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\38BABA5810DB915F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\38BABA5810DB915F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AB3EB112586F98D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AB3EB112586F98D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AFCF20CBBED0C3E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AFCF20CBBED0C3E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BD72AECE8D84D53.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BD72AECE8D84D53.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BE3721F37021866.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BE3721F37021866.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3C1E4A3B3B35054A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3C1E4A3B3B35054A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DA98E16C708BAF3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DA98E16C708BAF3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DCA640838037DAE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DCA640838037DAE.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3F666E0A8CB61885.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3F666E0A8CB61885.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\40366FE5D304B25A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\40366FE5D304B25A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43BEEBFCAED7D2EE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43BEEBFCAED7D2EE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43EC42007B178A0E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43EC42007B178A0E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\44D9E0663031BC65.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\44D9E0663031BC65.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4799C1E1E6196C9E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4799C1E1E6196C9E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\48D68D36FFC1D871.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\48D68D36FFC1D871.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4926264D91088D2E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4926264D91088D2E.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A04B4B66C4A1FFD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A04B4B66C4A1FFD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A46193A3B7F91B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A46193A3B7F91B0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4C2D0F09A9D132B3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4C2D0F09A9D132B3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4DFD2633E4F73833.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4DFD2633E4F73833.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4FD1E7C5F76E9666.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4FD1E7C5F76E9666.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5462D88585E06BE8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5462D88585E06BE8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\556519C4190C9155.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\556519C4190C9155.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5710FAA754645CA9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5710FAA754645CA9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5823DF837D904681.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5823DF837D904681.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5970C33703D7A87A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5970C33703D7A87A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5B59D99E76A85246.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5B59D99E76A85246.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5DDB34A21CD1F5AB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5DDB34A21CD1F5AB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E0DFB30C6D6E3F0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E0DFB30C6D6E3F0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E205CD0EB69F2F9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E205CD0EB69F2F9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5EAAC0BB86A6AF82.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5EAAC0BB86A6AF82.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5FC1314B2CB09BA5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5FC1314B2CB09BA5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6066F3E009B1812B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6066F3E009B1812B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\60792BD0A1213FBA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\60792BD0A1213FBA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6411CEBB3ADEBD28.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6411CEBB3ADEBD28.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\64A8E40848F166AB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\64A8E40848F166AB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6519628497A59896.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6519628497A59896.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\684F93CF303C3BC8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\684F93CF303C3BC8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6899C922CF4B3C71.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6899C922CF4B3C71.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\69F8DA7801AD7E7D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\69F8DA7801AD7E7D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B2F666BD3E6BB42.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B2F666BD3E6BB42.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B85F55E272EA490.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B85F55E272EA490.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BB673D39B7A6870.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BB673D39B7A6870.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BD42E1475475F1D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BD42E1475475F1D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BE49C7F5F133197.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BE49C7F5F133197.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6CFB2FDF17052ADD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6CFB2FDF17052ADD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D0D063B2ED5CFC0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D0D063B2ED5CFC0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D18C27632A8B6EE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D18C27632A8B6EE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D73D25034E08394.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D73D25034E08394.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6DC8237E19726058.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6DC8237E19726058.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6FEEDFB17EC0AEB4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6FEEDFB17EC0AEB4.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\708A4B47475E07B5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\708A4B47475E07B5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73E28F4FA709140E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73E28F4FA709140E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73F3359A9EEF11D9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73F3359A9EEF11D9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74114C943F676636.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74114C943F676636.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74627983A3F49FB2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74627983A3F49FB2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7464D6ECD83A9146.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7464D6ECD83A9146.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\750A00F0D868936F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\750A00F0D868936F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7A49FDE9B68E7CBF.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7A49FDE9B68E7CBF.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7B421E67A29BE4DA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7B421E67A29BE4DA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7C01D59F191613B2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7C01D59F191613B2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7CD2857CD4C4FC6B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7CD2857CD4C4FC6B.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7DA8972941BC7679.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7DA8972941BC7679.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7FFD65B4A2F78F33.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7FFD65B4A2F78F33.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8058586CE8782C95.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8058586CE8782C95.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\82810D7FD30B3ADC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\82810D7FD30B3ADC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\83E50BE4EBCC3603.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\83E50BE4EBCC3603.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\85C56EAAFFD602DA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\85C56EAAFFD602DA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8691682F63DE1A8E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8691682F63DE1A8E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\899C6D8977176C80.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\899C6D8977176C80.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B022516619C4B08.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B022516619C4B08.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B04E066B49B1DE7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B04E066B49B1DE7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8BC5823EA35A6FB5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8BC5823EA35A6FB5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8D12D8F4049CAC68.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8D12D8F4049CAC68.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\90205C931F14D951.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\90205C931F14D951.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\91E9D8D9578B576D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\91E9D8D9578B576D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\924B10613D2C05FE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\924B10613D2C05FE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\93B8BFB26E6C0BD6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\93B8BFB26E6C0BD6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\94F36E24BF2AE8A0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\94F36E24BF2AE8A0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9697766A482BFC47.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9697766A482BFC47.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\96FDF62E0C14815B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\96FDF62E0C14815B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\975CEE48F6EB7F20.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\975CEE48F6EB7F20.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9ADD20A2E99F116B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9ADD20A2E99F116B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9B772CDD49BBB19C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9B772CDD49BBB19C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9E00F9E12125BF2D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9E00F9E12125BF2D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9F5882AF1550CB85.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9F5882AF1550CB85.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0540C1D2D610609.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0540C1D2D610609.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0A40028AA27D3D4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0A40028AA27D3D4.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A3713A328065FC54.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A3713A328065FC54.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A470B1F44C4FD38D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A470B1F44C4FD38D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A6FB537018D27D23.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A6FB537018D27D23.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A7CF41A013FAB3AD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A7CF41A013FAB3AD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAF9F9615F73F956.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAF9F9615F73F956.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAFD1F99FA1401BC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAFD1F99FA1401BC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC5624C4769EA38C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC5624C4769EA38C.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC581EDE1302C153.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC581EDE1302C153.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AE000C93ED409078.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AE000C93ED409078.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AFC1EB3C0CC5CC10.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AFC1EB3C0CC5CC10.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B55A6ED89E71F521.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B55A6ED89E71F521.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B66562FD64BA885F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B66562FD64BA885F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B75E1659FDBBB598.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B75E1659FDBBB598.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B847C86BFFFC4B38.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B847C86BFFFC4B38.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BC4109586198711C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BC4109586198711C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BF6DAF733B9894D9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BF6DAF733B9894D9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C0482BFE3BD6C3B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C0482BFE3BD6C3B0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C1A20E4EF6F584E0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C1A20E4EF6F584E0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C32539C3860D36F3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C32539C3860D36F3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C39E8B351648DD8E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C39E8B351648DD8E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C8AAE542F3B55A5C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C8AAE542F3B55A5C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB66F498718B7B64.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB66F498718B7B64.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB69E1EC2564171A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB69E1EC2564171A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CC373045F92F06C7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CC373045F92F06C7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD3427C9A53D9EEC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD3427C9A53D9EEC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD818293D1B94837.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD818293D1B94837.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD841CCD3BA0D0D6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD841CCD3BA0D0D6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDA1056AF9C2F6DC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDA1056AF9C2F6DC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDBC54CE4DFD9542.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDBC54CE4DFD9542.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CE79A3169774F1B1.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CE79A3169774F1B1.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D054BECE244567A0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D054BECE244567A0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D1510A6432E277FA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D1510A6432E277FA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D37AB992BBD9A309.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D37AB992BBD9A309.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D5E420A70ED2D25E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D5E420A70ED2D25E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D6C3AA1DBAB34A31.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D6C3AA1DBAB34A31.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7E4F01ED36D216B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7E4F01ED36D216B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7EBB4774647EE2B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7EBB4774647EE2B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D96A0FC69E4D0F0C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D96A0FC69E4D0F0C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DB945D53F148A0B1.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DB945D53F148A0B1.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DEF6191DB52F6A70.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DEF6191DB52F6A70.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E028E465767613D5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E028E465767613D5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E181A51E37CB27BE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E181A51E37CB27BE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E222968FDCBA7D13.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E222968FDCBA7D13.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E2EB019AEC93FA1B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E2EB019AEC93FA1B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E50A7129E9E276B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E50A7129E9E276B0.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E5E43253003E6249.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E5E43253003E6249.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E6223599C1BF170D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E6223599C1BF170D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E74D9F49DB263277.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E74D9F49DB263277.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E78CCAFA5D4F561A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E78CCAFA5D4F561A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E8CA007E95C83591.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E8CA007E95C83591.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA175CDB67D9B342.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA175CDB67D9B342.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA4CC1C4060F73FF.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA4CC1C4060F73FF.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EBC9232618C1F8B4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EBC9232618C1F8B4.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\ECEB3E83694207F6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\ECEB3E83694207F6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EDBB6321F0DBC7E9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EDBB6321F0DBC7E9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EEB5AB165DA17D23.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EEB5AB165DA17D23.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F13B18C5A6371344.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F13B18C5A6371344.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F21C6EF80D277B87.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F21C6EF80D277B87.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F2919164271FA246.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F2919164271FA246.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F317B00CF2FE90E8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F317B00CF2FE90E8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F386973755AC7FB2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F386973755AC7FB2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F4282EA74F0DDFB7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F4282EA74F0DDFB7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F5026C6DE0940205.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F5026C6DE0940205.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F60B00373D5BDD72.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F60B00373D5BDD72.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F796FF67F7DBA458.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F796FF67F7DBA458.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F7A1E05F614B7045.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F7A1E05F614B7045.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA2C356F2F598920.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA2C356F2F598920.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA4B18268BDFCEED.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA4B18268BDFCEED.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FB45036130FB2577.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FB45036130FB2577.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FE302BF60C5AF216.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FE302BF60C5AF216.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FEE5B6E5E3F781C5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FEE5B6E5E3F781C5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FF3BAD141DFA6939.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FF3BAD141DFA6939.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FFFAB79FFB60B946.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FFFAB79FFB60B946.vir deleted

  ## ZHP Tools
     [OK] C:\Users\marce\AppData\Local\ZHP deleted
     [OK] HKCU\SOFTWARE\ZHP deleted

  ## ZHPCleaner
     [OK] C:\Users\marce\Desktop\ZHPCleaner (R).txt deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner (S).txt deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.exe deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.lnk deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.txt deleted

- Other Lines -


  ## Quarantines never deleted
    ~ C:\Users\marce\AppData\Roaming\ZHP (ZHP)

- Clear Restore Points -

   ~ [OK] RP named Ponto de Verificação Agendado created at 08/10/2020 16:16:51 deleted
     [OK] All system restore points have been successfully deleted

- Create Restore Point -

     [OK] System Restore Point created

- Display System Restore Point -

   ~ RP named KpRm created at 08/11/2020 11:22:30

-- KPRM finished in 25.50s --

Share this post


Link to post
Share on other sites

/!\ Boa Tarde! magalhaesrj /!\

 

Devido a remoção de ferramentas e quarentenas,bem como pontos de restauração,seu antivírus ainda detecta alguma ocorrência?

 

## Quarantines never deleted
    ~ C:\Users\marce\AppData\Roaming\ZHP (ZHP)

 

Parece que ficou a da ZHPCleaner!

Verifique!

 

[]s

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Similar Content

    • By kelly Borges
      meu pc esta com virus e nao funciona nada, abre varias paginas e e o meu pc de trabalho, por favor me ajudem, ficarei imensamene agradecida
    • By LEANDRO BORGES SILVA'
      o meu computador esta abrindo varias janelas e digitando sozinho como se fosse altomatico. abre varias abas de internet e pastas
    • By Eduarda Lang Duarte
      O windows diz que não pode encontrar programas da Office 2010, eu ja tentei ir no Regedit e renomear o Office como Office.old e não funcionou, tentei reparar mas sempre aparece que não acha uma dll diferente. Eu já vi várias pessoas com o mesmo problema que eu, e disseram que é vírus, como eu resolvo? É minha primeira vez nesse site, se tiver algo errado, me falem que eu arrumo.
    • By Felipe Augusto de Godoy
      Olá, 
       
      Boa tarde 
       
      Estou com um problema recente em meu computador onde sempre que abro alguma página da internet demora séculos para carregar e logo após algum período as páginas carregam normalmente. Tenho notado também que sempre que estou vendo vídeos ou algo que execute áudio no PC, se eu fechar a janela ou programa, ao reabrir o serviço de áudio para de executar e tenho que reiniciar o computador. Desconfio que seja vírus pois meu irmão pequeno vive instalando porcarias no computador e desde um tempo pra cá, na inicialização, se eu não ficar apertando Enter ou mexendo o mouse o computador não inicia, vai pra uma tela onde fica uns riscos em vermelho no canto superior e não sai daquilo.
       
      Segue log do Farbar
      https://www.cjoint.com/c/IAynitdXedb
      https://www.cjoint.com/c/IAyni7MEhxb
       
      Obrigado, até logo
    • By karoline ferreira
      Boa tarde, alguém me ajude por favor! meu notebook anda travando do nada. Só começar usar ele que começa demorar carregar as coisas e travar.
       
×

Important Information

Ao usar o fórum, você concorda com nossos Terms of Use.