Вы находитесь на странице: 1из 2

SmitFraudFix v2.

418

Scan done at 21:39:07,51, 07/05/2017


Run from C:\Users\pocha\Downloads\SmitfraudFix
OS: Microsoft Windows [Versin 6.1.7601] - Windows_NT
The filesystem type is NTFS
Fix run in safe mode

SharedTaskScheduler Before SmitFraudFix


!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

Killing process

hosts

127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 www.imtoo.com
127.0.0.1 online.imtoo.com
127.0.0.1 service2.xilisoft.net

VACFix

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.

Generic Renos Fix

GenericRenosFix by S!Ri

Deleting infected files

IEDFix

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

Agent.OMZ.Fix

Agent.OMZ.Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
404Fix

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

RK

DNS

Description: Broadcom 802.11n Network Adapter


DNS Server Search Order: 200.83.1.5
DNS Server Search Order: 190.160.0.15

HKLM\SYSTEM\CCS\Services\Tcpip\..\{9E43DC48-C2A0-479F-8F4A-E8A591B00608}:
DhcpNameServer=200.83.1.5 190.160.0.15
HKLM\SYSTEM\CS1\Services\Tcpip\..\{9E43DC48-C2A0-479F-8F4A-E8A591B00608}:
DhcpNameServer=200.83.1.5 190.160.0.15
HKLM\SYSTEM\CS2\Services\Tcpip\..\{9E43DC48-C2A0-479F-8F4A-E8A591B00608}:
DhcpNameServer=200.83.1.5 190.160.0.15
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=200.83.1.5 190.160.0.15
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=200.83.1.5 190.160.0.15
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=200.83.1.5 190.160.0.15

Deleting Temp Files

Winlogon.System
!!!Attention, following keys are not inevitably infected!!!

"VMApplet"="SystemPropertiesPerformance.exe /pagefile"

RK.2

Registry Cleaning

Registry Cleaning done.

SharedTaskScheduler After SmitFraudFix


!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

End

Оценить