|
Thanks to S!r!
Instructions for SmitFraudFix
SmitFraudFix only works with Windows XP or 2000
SmitFraudFix
removes Desktop Hijack malware: Smitfraud, Win32.puper, AVGold,
Security iGuard, Spyware Vanisher, quicknavigate.com,
updateSearches.com, startsearches.net, Virtual Maid, SpySheriff,
PSGuard, SpyAxe, WinHound, AlphaCleaner, AdwarePunisher, SpywareQuake,
SpywareSheriff...
Download
Mirror #1
Mirror #2
Use:
- Extract all the archive content
Search:
- Double-click smitfraudfix.cmd
- Select 1 and hit
Enter to create a report of the infected files. The report can be found
at the root of the system drive, usually at C:\rapport.txt
Clean:
- Reboot your computer in Safe Mode (before the Windows icon appears, tap the F8 key continually)
- Double-click smitfraudfix.cmd
- Select 2 and hit Enter to delete infect files.
-
You will be prompted: Do you want to clean the registry ? answer Y
(yes) and hit Enter in order to remove the Desktop background and clean
registry keys associated with the infection.
- The tool will now
check if wininet.dll is infected. You may be prompted to replace the
infected file (if found): Replace infected file ? answer Y (yes) and
hit Enter to restore a clean file.
- A reboot may be needed to
finish the cleaning process. The report can be found at the root of the
system drive, usually at C:\rapport.txt
- Optional:
- To restore Trusted and Restricted site zone, select 3 and hit Enter.
- You will be prompted: Restore Trusted Zone ? answer Y (yes) and hit Enter to delete trusted zone.
Note:
process.exe
is detected by some antivirus programs (AntiVir, Dr.Web, Kaspersky) as
a "RiskTool". It is not a virus, but a program used to stop system
processes. Antivirus programs cannot distinguish between "good" and
"malicious" use of such programs, therefore they may alert the user.
Source
|
News 