Jump to content
magalhaesrj

Meu antivirus não consegue remover o virus

Recommended Posts

/_ Boa Noite! magalhaesrj _\

 

> Baixe: < IASCZft.jpgFarbar Recovery Scan Tool

 

Citar

http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/


> No link àcima,temos a ferramenta para sistemas 32bits!

 

Citar


> No link àcima,temos o download para sistemas 64bits! (FRST64.exe)
> Salve-a ao desktop! (Área de trabalho ...)
> Execute a ferramenta! 
> Clique "Sim" >> "Examinar".

 

4y9giFrI.jpg

 

> Antes de clicar "Examinar",verifique se as caixinhas em "Whitelist" estão assinaladas.
> Em "Exame Opcional",deixe marcada as checkbox "Addition.txt" e "Arquivos 90 Dias".
> Ps: Será gerado,também,o relatório "Addition.txt".
> Poste os relatórios! (FRST.txt + Addition.txt)

 

Citar

http://www.cjoint.com/


> Como os logs serão extensos,envie-os à cjoint.com.

 

EUE4tdb.jpg

 

> Clique no botão Parcourir... 
> Busque o relatório e clique no botão Abrir.
> Clique no botão "Créer le lien Cjoint".
> Copie o link que está ao lado de "Le lien a été créé" e poste-o em sua resposta.

 

Copierlelien_zpsd51f499f.jpg

 

> Ou clique "Copier le lien (*)" e cole o link ao seu Post.
> Outra opçãohospedar os relatórios em Hébergement de fichiers, Security-x.fr.

 

Citar

http://dl.free.fr


> Ou ainda,em dl.free.fr.
> Ou ainda em: https://textup.fr/
> Fique atento,pois teremos 2 links a serem postados!

 

A+

Share this post


Link to post
Share on other sites

/!\ Boa Noite!  magalhaesrj /!\


> Desinstale: <2>

 

Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)

SAntivirus Realtime Protection Lite (HKLM-x32\...\SAntivirus) (Version: 1.0.22.8 - Digital Com. Inc) <==== ATENÇÃO

 

> Copie estas informações , logo abaixo,para o Bloco de Notas.

start::
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO
Task: {2C98BC02-9B01-4F21-86C5-36E5FD4CEE2E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: )
Task: {3031AB16-44AF-48DA-9171-77E5315CE73E} - System32\Tasks\update-S-1-5-21-2491648592-1319402890-2819360954-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: )
Task: {DC56B25F-A930-4FA7-A6C9-1FF95CA512EF} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
Task: {EDDC8BE0-2099-4058-AAA3-48667F593CFF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2491648592-1319402890-2819360954-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
SearchScopes: HKLM -> DefaultScope valor está ausente
SearchScopes: HKLM-x32 -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnV7NCmYbopnJFVR%2BKmme%2BkMNL8LHS1ov2HwWspjJINuAByiecMUmnkBgMvWtE5HugLNENT7JYulVy77X5QmPLiUYrMrkDxG0AC84PJH4agQcTk7axkucYKUlv8Jdb%2FelYEwrWV%2FJWCcrQWh6xD1ZwMpRmixPlRQmLCInmVBkI37%2FNGJNlwEwS%2BsKvsyoRHbiyOUMwwOK6M0nSiTrbt%2Bhw%2BqWTgQAsuWSsd8bA0%2B%2B3owtB%2F1AOMtWiEi4P8EFevQc1p16NW8bGS2bpUQ4sKCuFaDAuPc3vAzWXa7lJbpxs3CKB5J6114BeDOIuubkr0Qxzw%3D%3D&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> {2A23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnV7NCmYbopnJFVR%2BKmme%2BkMNL8LHS1ov2HwWspjJINuAByiecMUmnkBgMvWtE5HugLNENT7JYulVy77X5QmPLiUYrMrkDxG0AC84PJH4agQcTk7axkucYKUlv8Jdb%2FelYEwrWV%2FJWCcrQWh6xD1ZwMpRmixPlRQmLCInmVBkI37%2FNGJNlwEwS%2BsKvsyoRHbiyOUMwwOK6M0nSiTrbt%2Bhw%2BqWTgQAsuWSsd8bA0%2B%2B3owtB%2F1AOMtWiEi4P8EFevQc1p16NW8bGS2bpUQ4sKCuFaDAuPc3vAzWXa7lJbpxs3CKB5J6114BeDOIuubkr0Qxzw%3D%3D&p={searchTerms}
Edge HomeButtonPage: HKU\S-1-5-21-2491648592-1319402890-2819360954-1001 -> hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnTfUN%2BYRjdlPoVLewKWO5Gdr1oHQn0rWb7XUAV1OmghSZ3pFvGGNfdcnLUPRVjIZ1iMlADwG4TK1%2BDOrw6pOvxThTFhd41D2RgVFiWpaJEGkM%2FgG2Mn5qzfsXQbHGoGk79hrudyLIohPMUgb57%2BIYtDVBbd1oSaoDWoqppZaEDni8s1bba9vVA%2BydOos4UopeI0ZnXa8Xnv0Im4Ls24bpdik81PFC6C39CyshXQ%2Be3L3kOqtE5HjVDwpc93Ku4XWLuAcrjfU84e%2F8mQAkEMww4gnMVsfKLnpG8ctqfz78InKAmXqJF%2BMzVIFvJuctO982g%3D%3D
Edge HomePage: Default -> hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1Gna%2BL5afMx1kcQU9cR9MMkcy8XUSJLCgFfB3PcpZEFkXUbaGeAoCkTe3bHlXM41NY0bjK8Kqi5FBgV%2BFqH6sG6I65ok4MyIZPkIRgx%2FJM9l9OAXDABUgazPWH8YGVUCfl9LaSMe4NqM8N08j0oXskit%2Fk8f1m6DX2RhNFZIX0N8zd1UhiFkMBvMKpfregpxnMIrZuoTteMJ8nHt0wKC9HlqoUyFwqA5gDCSzUK1dZkT5FSd%2BnTclqeogxvskHHMhvaY3bHKYD%2F%2BXPbdq9pzSUxe7aPdJGE1b0Z0PgbVuI35I5B8Yoh4eYFv0nDl9thVDzEQ%3D%3D
Edge StartupUrls: Default -> "hxxps://br.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnSlLt%2BpC5rB7Yipv1XcHLI7gnO9i37hZHlFQaAGw8molRnXKA%2Bg1I7xHAlwyl9totAkzxaT3fL5tit%2FD2nyonzf0EVo9%2FhgiaHyEAZe7%2BXKNP%2F5Ol8Lm4iQPEUEu1XLadqeT15DyZ9%2BB76S%2F2Nypmx6Sb5AzKu3bQXkr5YN0qzr%2BrFWqsxhycobBxuq6LzAcfSLj37Uvg2pkcoFUOVj3F1cgduCXExiTnGgl1tYfnjTCmAzxIp%2BbPQZwnRlhTT0ojhkzpuPyhv0zQzd2k30OFWn07ujrCFrepMlMhubrJDd%2FwAmneFc5zFrKjOzWUj6muQ%3D%3D"
Edge DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87bbk0epo8acegik1tc002820¶m1=y6bdVFVIsvuYsgEClQfz8DvEGkcjx4pP8Fm5IxAfh268QXeMrVIXluafJ4cDO9TpUNo4o3bUaP1rjycimA1GnfiWFhaxZL9A%2BjhCv3yWnSQS7YwCJYk0zQtgYPL5ENvTHsWpFYu6UtQRkEBuk%2BMmzjV5UImosmu0II3RuBHNI8nkxWZfROEdt%2Fh4lUFXr0AfXhwkXtP4z01%2BsPNPNEjEf%2BM37lwrI4uWrYziCiLjyWwv39JU9xWts3b%2B5fAgQBahP73rQAtAnEvgT7aeDBJXgBL1WedUPZOuQ0VQ8iGKaCmIAzYHjg%2BXWpzRFnMscr71xo3zRKi9gbSD2BOfRC1JGBmyh%2BBDA5YZZxa1F82VXP8WtKjHtXel5GKfMO2T4XnXN6JEE67cEkVQH56z2jVYLQ%3D%3D&p={searchTerms}
Edge DefaultSearchKeyword: Default -> search.yahoo.com
Edge DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
"SAntivirusIC" => serviço foi desbloqueado. <==== ATENÇÃO
R2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe [6947608 2020-07-09] (Digital Communications Inc -> Incorp DigCom) <==== ATENÇÃO
S2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [X] <==== ATENÇÃO
R1 SANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusKD.sys [74544 2020-07-09] (Digital Communications Inc -> Digital Comm. Inc) <==== ATENÇÃO
U3 avgbdisk; não ImagePath
2020-07-16 01:33 - 2020-07-16 01:33 - 000000000 ____D C:\Users\marce\Documents\Lightshot
2020-07-16 01:33 - 2020-07-16 01:33 - 000000000 ____D C:\Program Files (x86)\Skillbrains
ContextMenuHandlers1: [FortiClient] -> {7AE5C558-994B-40B7-8730-2DAC2B96781B} => C:\Program Files\Fortinet\FortiClient\FortiCliSh.dll -> Nenhum Arquivo
StartPowershell:
DISM /Online /Cleanup-image /Restorehealth
sfc /scannow
EndPowershell:
CMD: ipconfig /flushdns
SubSystems: [Windows] ==> SAntivirus Realtime Protection Lite
CreateRestorePoint:
EmptyTemp:
Reboot:
Hosts:
end::

> Salve-as com o nome fixlist. << Texto ou Unicode,caso solicite!
> Salve-as ao desktop! ( Área de trabalho ... )

 

IsRtnte.jpg

 

> Execute FRST/FRST64 >> Clique "Corrigir" << Aguarde! 
> Poste o relatório "Resultado da Correção pela Farbar Recovery Scan Tool". (Fixlog.txt)
> Este e outros relatórios,podem ser encontrados na pasta: Disco Local (C) > FRST > Logs

 

< Peço aos visitantes que não utilizem este script em outros computadores,sob risco de danos aos mesmos! >

 

[A+]

Share this post


Link to post
Share on other sites

/!\ Boa Noite! magalhaesrj /!\

 

> Copie estas informações que estão no Código,para o Bloco de Notas.
> Salve-as com o nome fixlist. << Texto ou Unicode,caso solicite!
> Salve-as ao desktop! ( Área de trabalho ... )

start::
Unlock: HKLM\System\CurrentControlSet\Services\SAntivirusIC
Reg: reg delete HKLM\System\CurrentControlSet\Services\SAntivirusIC /f
Unlock: HKLM\System\CurrentControlSet\Services\SAntivirusSvc
Reg: reg delete HKLM\System\CurrentControlSet\Services\SAntivirusSvc /f
Unlock: HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD 
Reg: reg delete HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD /f
Reboot:
end::

IsRtnte.jpg

 

> Execute FRST/FRST64 >> Clique "Corrigir" << Aguarde! 
> Poste o relatório "Resultado da Correção pela Farbar Recovery Scan Tool". (Fixlog.txt)
> Este e outros relatórios,podem ser encontrados na pasta: Disco Local (C) > FRST > Logs

 

[A+]
 

Share this post


Link to post
Share on other sites

/!\  Boa Tarde! magalhaesrj /!\

 

Citar

"HKLM\System\CurrentControlSet\Services\SAntivirusIC" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SAntivirusIC /f =========

ERRO: Acesso negado.

========= Fim de Reg: =========

"HKLM\System\CurrentControlSet\Services\SAntivirusSvc" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SAntivirusSvc /f =========

ERRO: Acesso negado.


========= Fim de Reg: =========

"HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD" => foi desbloqueado

========= reg delete HKLM\System\CurrentControlSet\Services\SANTIVIRUSKD /f =========

ERRO: Acesso negado.
 

 

> O Rogue ,que está presente e com informações protegidas ao registro,foi desbloqueado pelo script,mas estamos encontrando renitência na remoção.

 

RogueKiller

 

Baixe este antimalware ( RogueKiller )e instale-o em seu computador.

Utilize a função "Standard Scan" e ao finalizar ,busque remover suas detecções!

Na busca pelo log,clique em History >> Reports >> Scan e/ou Delete.

Caso queira,envie-nos os Reports (Scan) + (Delete). << São 2 relatórios!

 

[Abs!]

Share this post


Link to post
Share on other sites

/!\ Boa Noite!  magalhaesrj /!\

 

[Rogue.Segurazo (Malicious)] HKEY_LOCAL_MACHINE\Software\SAntivirus -- -> ERROR [5]
[Rogue.Segurazo (Malicious)] SAntivirus -- %programdata%\Microsoft\Windows\Start Menu\Programs\SAntivirus -> ERROR [5]
=> SAProduct.lnk --C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\SAntivirus\SAProduct.lnk -> ERROR [0]

>

> Started in : Normal mode

> Execute novamente a RogueKiller, mas em Modo de Segurança, pois em Modo Normal surgiram estes erros,que impediram estas remoções.

 

1iZWfCWd_t.jpg

>

> Ps: O criador da ferramenta (Tygzy),confirma minhas suspeitas.

 

> Baixe: < AdwCleaner_Logo2_zps580bcd78.jpg >  << Link!    ( ... par Xplode )

 

> Ao acessar,clique em "Download ".

> Salve-o ao desktop!
> Desabilite seu antivírus!

 

< Executar_Administrador.jpg >

 

> Clique direito em adwcleaner.exe,e escolha sua execução como administrador.

> Clique "Definições". 

 

XZTQ4T3.jpg

 

> Estando em "Definições",deixe as configurações conforme este banner.

 

bk0BviF.jpg

 

> Ps: Dê início ao scan,clicando em "Verificar Agora". 
> Ao concluir,clique "Limpar e Reparar".
> Na mensagem,clique "Limpar e Reiniciar".
> Ao concluir,clique "Ver Ficheiro de Registos".    
> Copie e poste o relatório! (Mode: Clean)/(AdwCleaner[C00])

 

[]s

Edited by DigRam
Inserir relevantes informações!

Share this post


Link to post
Share on other sites

/!\ Bom Dia! magalhaesrj /!\

 

# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-31-2020
# Duration: 00:00:13
# OS: Windows 10 Home Single Language
# Cleaned: 31
# Failed: 9

>

> A AdwCleaner,também não pode remover algumas entradas e pastas,pertencente ao Segurazo.

> Ps: (...são 3 pastas e 2 entradas!)

 

C:\Program Files (x86)\Digital Communication << Diretório protegido!
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAntivirus << Diretório protegido!
C:\ProgramData\SAntivirus << Diretório protegido!

HKLM\Software\SAntivirus << Entrada protegida!
HKLM\Software\Wow6432Node\SAntivirus << Entrada protegida!

> Pelo visto,estão protegidas por ACL.

> São inócuas,pois o serviço do Rogue foi excluído!

 

http://ptcomputador.com/Sistemas/windows/218996.html

 

> Baixe: < ZHPCleaner > < 6LcRokv.jpg ... de Nicolas Coolman >

> Ou |Aqui!| << Mirror!

 

https://nicolascoolman.eu/en/download/zhpcleaner/

 

> Ou aqui àcima! Recomendado!

 

Citar


> Caso tenha algum impedimento ao download,assista este tutorial que foi postado no YouTube,para desativar o Windows SmartScreen.

 

> Estando na página,clique 7ukwnm8.jpg

 

> Salve-a ao desktop! ( ZHPCleaner.exe )
> Desabilite seu antivírus e execute ZHPCleaner.exe <<

 

nDQ00tR.jpg

 

> Ao abrir esta tela,evite clicar em Update ou Atualização,para não ser direcionado ao ZHPBrowser.
> Ps: Feche a mensagem ao clicar no "X".

 

6MKUYyzn.jpg

 

> Com a ferramenta aberta,clique em Scanner.

 

ljOOETD.jpg

 

> Aguarde a conclusão!

 

9g2LW3p.jpg

 

> Ao concluir,clique Repair.

 

88z05Yv.jpg

 

> Ps: Ignore possíveis alertas quanto à sua configuração de rede. (DNS)
> Clique Sim >> Sim!

 

CWxMrxRA.jpg

 

> Surgirão guias que estarão em vermelho,indicando problemas a serem reparados.
> Clique Repair.

 

fN86PG8.jpg

 

> Ao concluir,clique Report.
> Poste o log de reparo: ~ Type : Reparo

 

Citar

file:///C:/Users/xxx../AppData/Roaming/ZHP/ZHPCleaner.html


Ps: Ao clicar "Report",você obterá o relatório,dentre outras informações,em formato HTML.
file:///C:/Users/xxx.../AppData/Roaming/ZHP/ZHPCleaner.txt


> Este será seu relatório direto,obtido ao modificar na barra de endereços,de (.html) para (.txt).
> Basta selecionar (ctrl + A),copiar (ctrl + C) e colar ao seu Post ou Bloco de Notas. (ctrl + V)
> Outra opçãohospedar o relatório em Hébergement de fichiers, Security-x.fr.

 

[Abs]

Share this post


Link to post
Share on other sites

/!\ Boa Noite! magalhaesrj /!\

 

---\ Summary of the elements found (4)
https://nicolascoolman.eu/2019/07/23/sup-segurazo/ =>SUP.Optional.Segurazo
>

> A ZHPCleaner removeu as entradas e pastas do Rogue.

> Ps: Seu antivírus McAfee ainda detecta o Segurazo?

> Ps: Caso queira,podes confirmar com esta ferramenta standalone da Eset.

>

> Baixe: ESET Rogue Applications Remover

 

Citar

 

sVXlUIqx_t.jpg

 

> Escolha a opção para 64 bit.

 

HSvImBK3_t.jpg

 

> Salve-o ao desktop! ( ERARemover_x64)
> Execute-a e ao abrir,clique Accept para aceitar a EULA.

 

0qyxTlUW_t.jpg

 

> A mensagem "No rogue applications detected",indicará seu PC livre do Segurazo.
> Ao concluir aperte "N" e,à seguir,aperte Enter 2 vezes para fechar a janela.

> Informe!

 

[]s

Share this post


Link to post
Share on other sites

/!\ Boa Noite! magalhaesrj /!\

 

Verifique qual caminho ao vírus,o MacAfee aponta. Caso seja alguma quarentena das ferramentas aplicadas,basta removê-las.

 

> Baixe: KpRm

 

https://toolslib.net/downloads/viewdownload/951-kprm/ > << Link!

 

QXKihdBk_o.jpg

 

> Clique Download e salve-o ao desktop,como local de destino.

 

iF8Kyk0w_o.jpg
 

> Na tela,marque:

 

Apagar ferramentas
Deletar pontos de restauração
Criar um ponto de restauração

 

> Eliminar quarentena:  Eliminar agora

> Clique Executar e aguarde!

 

UzSZYPQ6_o.jpg

 

> Ao finalizar,clique OK!

> Informe!

 

[]s
 

Edited by DigRam
Ajustar imagens!

Share this post


Link to post
Share on other sites

# Run at 11/08/2020 08:22:14
# KpRm (Kernel-panik) version 2.8
# Website https://kernel-panik.me/tool/kprm/
# Run by marce from C:\Users\marce\Downloads
# Computer Name: DESKTOP-FH3AH9C
# OS: Windows 10 X64 (18363) 
# Number of passes: 1

- Checked options -

    ~ Delete Tools
    ~ Delete Restore Points
    ~ Create Restore Point
    ~ Delete Quarantines

- Delete Tools -


  ## AdwCleaner
     [OK] C:\Users\marce\Desktop\adwcleaner_8.0.7.exe deleted
     [OK] C:\AdwCleaner deleted

  ## ESET Rogue Applications Remover
     [OK] C:\Users\marce\Desktop\ERARemover_x64.exe deleted
     [OK] C:\Users\marce\Desktop\ERARemover_x86.exe deleted
     [OK] C:\ProgramData\ESET\ESET Rogue Applications Remover deleted

  ## FRST
     [OK] C:\Users\marce\Desktop\fixlist.txt deleted
     [OK] C:\FRST deleted

  ## RogueKiller
     [OK] C:\ProgramData\RogueKiller\quarantine\00B99D34562F1776.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\00B99D34562F1776.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\021DE6F18AC183BB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\021DE6F18AC183BB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\027603917685D273.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\027603917685D273.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0463460A2783889C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0463460A2783889C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\05B3DD345F3DB77C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\05B3DD345F3DB77C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\062E20B99340F74B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\062E20B99340F74B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0637978E933AD252.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0637978E933AD252.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\07BDB531846C7F94.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\07BDB531846C7F94.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\080C523A44144E4D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\080C523A44144E4D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\086218585D2E8DA9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\086218585D2E8DA9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0ACE48F93879E973.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0ACE48F93879E973.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0B2CEA3FC31C1701.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0B2CEA3FC31C1701.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0C93252B58C87F76.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0C93252B58C87F76.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0D023BB87A78DFF8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0D023BB87A78DFF8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1193DB4A198626.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1193DB4A198626.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1A43CD49FA2CB9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0E1A43CD49FA2CB9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0EDB2564C10DEE2F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0EDB2564C10DEE2F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0F1F4DD768D4279A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\0F1F4DD768D4279A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\10A913233B8B83D0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\10A913233B8B83D0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\11B66B91BE08A87A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\11B66B91BE08A87A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\13E5A08C6240F49B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\13E5A08C6240F49B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16B604BC1B1EA29B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16B604BC1B1EA29B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16C4B7D2D63D62D7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\16C4B7D2D63D62D7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1A4DB2396CAAE020.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1A4DB2396CAAE020.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1B56401D67D5D955.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1B56401D67D5D955.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1EF9B29EC402E360.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\1EF9B29EC402E360.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\21885E2A8B0DCA36.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\21885E2A8B0DCA36.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\22049BCF38226A2D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\22049BCF38226A2D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\232615D4A401B1BB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\232615D4A401B1BB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2396B753365BB3C3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2396B753365BB3C3.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\246E6E07DE27D464.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\246E6E07DE27D464.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\24B47D27C8F66988.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\24B47D27C8F66988.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2838BF7716CE1A4C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2838BF7716CE1A4C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\287081C3109C8A3D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\287081C3109C8A3D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2935CC43DB06DDBD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2935CC43DB06DDBD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2AB9F6B291714D71.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2AB9F6B291714D71.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2C1150FD2F9945B7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2C1150FD2F9945B7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2DD238790A49E865.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2DD238790A49E865.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E04F28D7C9FD215.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E04F28D7C9FD215.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E733571A7F71F90.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2E733571A7F71F90.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2EA064FDF37E8A90.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2EA064FDF37E8A90.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F3DD08EE26EA132.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F3DD08EE26EA132.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F62DE206EB7EE03.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\2F62DE206EB7EE03.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\30A4CDB40863FD1E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\30A4CDB40863FD1E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\33BDA1601492F912.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\33BDA1601492F912.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\34A6FF58CDE27A9B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\34A6FF58CDE27A9B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\38BABA5810DB915F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\38BABA5810DB915F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AB3EB112586F98D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AB3EB112586F98D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AFCF20CBBED0C3E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3AFCF20CBBED0C3E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BD72AECE8D84D53.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BD72AECE8D84D53.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BE3721F37021866.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3BE3721F37021866.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3C1E4A3B3B35054A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3C1E4A3B3B35054A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DA98E16C708BAF3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DA98E16C708BAF3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DCA640838037DAE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3DCA640838037DAE.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3F666E0A8CB61885.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\3F666E0A8CB61885.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\40366FE5D304B25A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\40366FE5D304B25A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43BEEBFCAED7D2EE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43BEEBFCAED7D2EE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43EC42007B178A0E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\43EC42007B178A0E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\44D9E0663031BC65.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\44D9E0663031BC65.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4799C1E1E6196C9E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4799C1E1E6196C9E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\48D68D36FFC1D871.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\48D68D36FFC1D871.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4926264D91088D2E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4926264D91088D2E.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A04B4B66C4A1FFD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A04B4B66C4A1FFD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A46193A3B7F91B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4A46193A3B7F91B0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4C2D0F09A9D132B3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4C2D0F09A9D132B3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4DFD2633E4F73833.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4DFD2633E4F73833.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4FD1E7C5F76E9666.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\4FD1E7C5F76E9666.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5462D88585E06BE8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5462D88585E06BE8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\556519C4190C9155.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\556519C4190C9155.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5710FAA754645CA9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5710FAA754645CA9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5823DF837D904681.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5823DF837D904681.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5970C33703D7A87A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5970C33703D7A87A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5B59D99E76A85246.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5B59D99E76A85246.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5DDB34A21CD1F5AB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5DDB34A21CD1F5AB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E0DFB30C6D6E3F0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E0DFB30C6D6E3F0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E205CD0EB69F2F9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5E205CD0EB69F2F9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5EAAC0BB86A6AF82.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5EAAC0BB86A6AF82.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5FC1314B2CB09BA5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\5FC1314B2CB09BA5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6066F3E009B1812B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6066F3E009B1812B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\60792BD0A1213FBA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\60792BD0A1213FBA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6411CEBB3ADEBD28.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6411CEBB3ADEBD28.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\64A8E40848F166AB.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\64A8E40848F166AB.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6519628497A59896.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6519628497A59896.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\684F93CF303C3BC8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\684F93CF303C3BC8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6899C922CF4B3C71.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6899C922CF4B3C71.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\69F8DA7801AD7E7D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\69F8DA7801AD7E7D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B2F666BD3E6BB42.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B2F666BD3E6BB42.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B85F55E272EA490.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6B85F55E272EA490.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BB673D39B7A6870.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BB673D39B7A6870.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BD42E1475475F1D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BD42E1475475F1D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BE49C7F5F133197.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6BE49C7F5F133197.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6CFB2FDF17052ADD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6CFB2FDF17052ADD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D0D063B2ED5CFC0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D0D063B2ED5CFC0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D18C27632A8B6EE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D18C27632A8B6EE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D73D25034E08394.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6D73D25034E08394.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6DC8237E19726058.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6DC8237E19726058.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6FEEDFB17EC0AEB4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\6FEEDFB17EC0AEB4.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\708A4B47475E07B5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\708A4B47475E07B5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73E28F4FA709140E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73E28F4FA709140E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73F3359A9EEF11D9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\73F3359A9EEF11D9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74114C943F676636.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74114C943F676636.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74627983A3F49FB2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\74627983A3F49FB2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7464D6ECD83A9146.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7464D6ECD83A9146.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\750A00F0D868936F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\750A00F0D868936F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7A49FDE9B68E7CBF.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7A49FDE9B68E7CBF.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7B421E67A29BE4DA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7B421E67A29BE4DA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7C01D59F191613B2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7C01D59F191613B2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7CD2857CD4C4FC6B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7CD2857CD4C4FC6B.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7DA8972941BC7679.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7DA8972941BC7679.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7FFD65B4A2F78F33.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\7FFD65B4A2F78F33.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8058586CE8782C95.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8058586CE8782C95.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\82810D7FD30B3ADC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\82810D7FD30B3ADC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\83E50BE4EBCC3603.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\83E50BE4EBCC3603.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\85C56EAAFFD602DA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\85C56EAAFFD602DA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8691682F63DE1A8E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8691682F63DE1A8E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\899C6D8977176C80.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\899C6D8977176C80.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B022516619C4B08.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B022516619C4B08.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B04E066B49B1DE7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8B04E066B49B1DE7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8BC5823EA35A6FB5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8BC5823EA35A6FB5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8D12D8F4049CAC68.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\8D12D8F4049CAC68.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\90205C931F14D951.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\90205C931F14D951.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\91E9D8D9578B576D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\91E9D8D9578B576D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\924B10613D2C05FE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\924B10613D2C05FE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\93B8BFB26E6C0BD6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\93B8BFB26E6C0BD6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\94F36E24BF2AE8A0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\94F36E24BF2AE8A0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9697766A482BFC47.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9697766A482BFC47.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\96FDF62E0C14815B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\96FDF62E0C14815B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\975CEE48F6EB7F20.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\975CEE48F6EB7F20.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9ADD20A2E99F116B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9ADD20A2E99F116B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9B772CDD49BBB19C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9B772CDD49BBB19C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9E00F9E12125BF2D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9E00F9E12125BF2D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9F5882AF1550CB85.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\9F5882AF1550CB85.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0540C1D2D610609.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0540C1D2D610609.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0A40028AA27D3D4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A0A40028AA27D3D4.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A3713A328065FC54.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A3713A328065FC54.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A470B1F44C4FD38D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A470B1F44C4FD38D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A6FB537018D27D23.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A6FB537018D27D23.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A7CF41A013FAB3AD.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\A7CF41A013FAB3AD.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAF9F9615F73F956.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAF9F9615F73F956.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAFD1F99FA1401BC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AAFD1F99FA1401BC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC5624C4769EA38C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC5624C4769EA38C.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC581EDE1302C153.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AC581EDE1302C153.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AE000C93ED409078.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AE000C93ED409078.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AFC1EB3C0CC5CC10.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\AFC1EB3C0CC5CC10.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B55A6ED89E71F521.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B55A6ED89E71F521.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B66562FD64BA885F.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B66562FD64BA885F.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B75E1659FDBBB598.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B75E1659FDBBB598.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B847C86BFFFC4B38.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\B847C86BFFFC4B38.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BC4109586198711C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BC4109586198711C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BF6DAF733B9894D9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\BF6DAF733B9894D9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C0482BFE3BD6C3B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C0482BFE3BD6C3B0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C1A20E4EF6F584E0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C1A20E4EF6F584E0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C32539C3860D36F3.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C32539C3860D36F3.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C39E8B351648DD8E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C39E8B351648DD8E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C8AAE542F3B55A5C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\C8AAE542F3B55A5C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB66F498718B7B64.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB66F498718B7B64.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB69E1EC2564171A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CB69E1EC2564171A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CC373045F92F06C7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CC373045F92F06C7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD3427C9A53D9EEC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD3427C9A53D9EEC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD818293D1B94837.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD818293D1B94837.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD841CCD3BA0D0D6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CD841CCD3BA0D0D6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDA1056AF9C2F6DC.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDA1056AF9C2F6DC.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDBC54CE4DFD9542.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CDBC54CE4DFD9542.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CE79A3169774F1B1.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\CE79A3169774F1B1.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D054BECE244567A0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D054BECE244567A0.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D1510A6432E277FA.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D1510A6432E277FA.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D37AB992BBD9A309.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D37AB992BBD9A309.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D5E420A70ED2D25E.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D5E420A70ED2D25E.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D6C3AA1DBAB34A31.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D6C3AA1DBAB34A31.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7E4F01ED36D216B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7E4F01ED36D216B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7EBB4774647EE2B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D7EBB4774647EE2B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D96A0FC69E4D0F0C.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\D96A0FC69E4D0F0C.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DB945D53F148A0B1.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DB945D53F148A0B1.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DEF6191DB52F6A70.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\DEF6191DB52F6A70.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E028E465767613D5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E028E465767613D5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E181A51E37CB27BE.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E181A51E37CB27BE.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E222968FDCBA7D13.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E222968FDCBA7D13.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E2EB019AEC93FA1B.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E2EB019AEC93FA1B.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E50A7129E9E276B0.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E50A7129E9E276B0.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E5E43253003E6249.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E5E43253003E6249.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E6223599C1BF170D.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E6223599C1BF170D.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E74D9F49DB263277.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E74D9F49DB263277.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E78CCAFA5D4F561A.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E78CCAFA5D4F561A.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E8CA007E95C83591.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\E8CA007E95C83591.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA175CDB67D9B342.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA175CDB67D9B342.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA4CC1C4060F73FF.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EA4CC1C4060F73FF.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EBC9232618C1F8B4.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EBC9232618C1F8B4.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\ECEB3E83694207F6.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\ECEB3E83694207F6.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EDBB6321F0DBC7E9.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EDBB6321F0DBC7E9.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EEB5AB165DA17D23.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\EEB5AB165DA17D23.reg deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F13B18C5A6371344.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F13B18C5A6371344.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F21C6EF80D277B87.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F21C6EF80D277B87.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F2919164271FA246.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F2919164271FA246.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F317B00CF2FE90E8.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F317B00CF2FE90E8.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F386973755AC7FB2.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F386973755AC7FB2.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F4282EA74F0DDFB7.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F4282EA74F0DDFB7.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F5026C6DE0940205.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F5026C6DE0940205.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F60B00373D5BDD72.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F60B00373D5BDD72.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F796FF67F7DBA458.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F796FF67F7DBA458.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F7A1E05F614B7045.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\F7A1E05F614B7045.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA2C356F2F598920.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA2C356F2F598920.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA4B18268BDFCEED.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FA4B18268BDFCEED.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FB45036130FB2577.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FB45036130FB2577.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FE302BF60C5AF216.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FE302BF60C5AF216.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FEE5B6E5E3F781C5.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FEE5B6E5E3F781C5.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FF3BAD141DFA6939.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FF3BAD141DFA6939.vir deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FFFAB79FFB60B946.meta deleted
     [OK] C:\ProgramData\RogueKiller\quarantine\FFFAB79FFB60B946.vir deleted

  ## ZHP Tools
     [OK] C:\Users\marce\AppData\Local\ZHP deleted
     [OK] HKCU\SOFTWARE\ZHP deleted

  ## ZHPCleaner
     [OK] C:\Users\marce\Desktop\ZHPCleaner (R).txt deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner (S).txt deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.exe deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.lnk deleted
     [OK] C:\Users\marce\Desktop\ZHPCleaner.txt deleted

- Other Lines -


  ## Quarantines never deleted
    ~ C:\Users\marce\AppData\Roaming\ZHP (ZHP)

- Clear Restore Points -

   ~ [OK] RP named Ponto de Verificação Agendado created at 08/10/2020 16:16:51 deleted
     [OK] All system restore points have been successfully deleted

- Create Restore Point -

     [OK] System Restore Point created

- Display System Restore Point -

   ~ RP named KpRm created at 08/11/2020 11:22:30

-- KPRM finished in 25.50s --

Share this post


Link to post
Share on other sites

/!\ Boa Tarde! magalhaesrj /!\

 

Devido a remoção de ferramentas e quarentenas,bem como pontos de restauração,seu antivírus ainda detecta alguma ocorrência?

 

## Quarantines never deleted
    ~ C:\Users\marce\AppData\Roaming\ZHP (ZHP)

 

Parece que ficou a da ZHPCleaner!

Verifique!

 

[]s

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Similar Content

    • By astronautalouco
      Olá moderadores,
       
      Hoje operando normalmente como sempre faço na internet, devo ter clicado em algo nocivo ou algum site malicioso. Não me recordo de ter feito nada arriscado, mexendo apenas nos sites mais conhecidos de todos. cliquei apenas em alguns videos no Twitter. Segue os logs: https://www.cjoint.com/c/KKrtaReahC2 e https://www.cjoint.com/c/KKrtbAdxK52 .
      Bom agradeço desde já pela ajuda! É noix...
    • By kelly Borges
      meu pc esta com virus e nao funciona nada, abre varias paginas e e o meu pc de trabalho, por favor me ajudem, ficarei imensamene agradecida
    • By LEANDRO BORGES SILVA'
      o meu computador esta abrindo varias janelas e digitando sozinho como se fosse altomatico. abre varias abas de internet e pastas
    • By Eduarda Lang Duarte
      O windows diz que não pode encontrar programas da Office 2010, eu ja tentei ir no Regedit e renomear o Office como Office.old e não funcionou, tentei reparar mas sempre aparece que não acha uma dll diferente. Eu já vi várias pessoas com o mesmo problema que eu, e disseram que é vírus, como eu resolvo? É minha primeira vez nesse site, se tiver algo errado, me falem que eu arrumo.
    • By Felipe Augusto de Godoy
      Olá, 
       
      Boa tarde 
       
      Estou com um problema recente em meu computador onde sempre que abro alguma página da internet demora séculos para carregar e logo após algum período as páginas carregam normalmente. Tenho notado também que sempre que estou vendo vídeos ou algo que execute áudio no PC, se eu fechar a janela ou programa, ao reabrir o serviço de áudio para de executar e tenho que reiniciar o computador. Desconfio que seja vírus pois meu irmão pequeno vive instalando porcarias no computador e desde um tempo pra cá, na inicialização, se eu não ficar apertando Enter ou mexendo o mouse o computador não inicia, vai pra uma tela onde fica uns riscos em vermelho no canto superior e não sai daquilo.
       
      Segue log do Farbar
      https://www.cjoint.com/c/IAynitdXedb
      https://www.cjoint.com/c/IAyni7MEhxb
       
      Obrigado, até logo
×

Important Information

Ao usar o fórum, você concorda com nossos Terms of Use.