RogueKiller is a tool written in C, which scans the processes running, and kill those who are malicious. I developed this tool after seeing that some rogues (eg Security Tools) blocked the execution of disinfection programs, and some programs (eg Rkill) appeared ineffective in killing the rogue process. So I developed a tool based on speed of execution, which is to clean up the process and requested clean the registry to make a sanitizing faster and safer then with the usual tools.
User manual:
1: Download the desktop RogueKiller (link above)
2: Quit all running programs
3: On Vista / Seven, right click -> run as administrator
4: Otherwise just throw RogueKiller.exe
5: When prompted, type 1 and validate
6: When the report opens (RKreport.txt is also located next to the executable), save and give to the person who is helping you
7: If the program has been blocked, do not hesitate to try several times. If it really does not (it could happen), rename it to winlogon.exe
Notes:
** If a registry key has been detected, if you are sure it is up to Rogue, go to Mode 2. If you do not get help. In all cases, the infection process have been killed, you can disinfect quietly with more generic tools (eg Malwarebytes)
** If you notice that your HOSTS file is corrupt (HOSTS Section of the report), boost mode 3 RogueKiller to restore a clean copy
** If you notice any unwanted proxy, raise RogueKiller Mode 4
** If you notice any unwanted DNS, restart RogueKiller mode 5
** If your shortcuts and folders on the desktop / start menu / etc have diparu, boost mode RogueKiller 6
>> Download or Here
User manual:
1: Download the desktop RogueKiller (link above)
2: Quit all running programs
3: On Vista / Seven, right click -> run as administrator
4: Otherwise just throw RogueKiller.exe
5: When prompted, type 1 and validate
6: When the report opens (RKreport.txt is also located next to the executable), save and give to the person who is helping you
7: If the program has been blocked, do not hesitate to try several times. If it really does not (it could happen), rename it to winlogon.exe
Notes:
** If a registry key has been detected, if you are sure it is up to Rogue, go to Mode 2. If you do not get help. In all cases, the infection process have been killed, you can disinfect quietly with more generic tools (eg Malwarebytes)
** If you notice that your HOSTS file is corrupt (HOSTS Section of the report), boost mode 3 RogueKiller to restore a clean copy
** If you notice any unwanted proxy, raise RogueKiller Mode 4
** If you notice any unwanted DNS, restart RogueKiller mode 5
** If your shortcuts and folders on the desktop / start menu / etc have diparu, boost mode RogueKiller 6
>> Download or Here
