Thread: Search results being redirected in ANY web browser
View Single Post
Old 11-14-2008, 10:24 AM   #12 (permalink)
Gunsmith_Cat
Registered User
 
Join Date: Nov 2008
Posts: 20
OS: Windows Vista x64 SP1


Re: Search results being redirected in ANY web browser
Well, I was infected apparently... but the disinfect says it is only enabled if I am buying the full version or I am a client! It's telling me that SmitfraudFix is a tracking program!?!

Here are the results of the log anyway (also attached it in case the formatting is funny in this window):


;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-11-14 17:19:19
PROTECTIONS: 1
MALWARE: 5
SUSPECTS: 3
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Windows Defender 1.1.4104.0 No Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Users\Nat\AppData\Roaming\Microsoft\Windows\Cookies\nat@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Users\Nat\AppData\Roaming\Microsoft\Windows\Cookies\nat@atdmt[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\Nat\AppData\Roaming\Microsoft\Windows\Cookies\nat@serving-sys[2].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\Nat\AppData\Roaming\Microsoft\Windows\Cookies\nat@bs.serving-sys[1].txt
03477235 Application/SmithFraudFix.A HackTools No 0 Yes No C:\Users\Nat\Documents\Downloads\SmitfraudFix.exe
;===================================================================================================================================================================================
SUSPECTS
Sent Location œ��p�� s5
;===================================================================================================================================================================================
No C:\ComboFix\psexec.cfexe œ��p�� s5
No C:\Users\Nat\Documents\Downloads\SmitfraudFix\404Fix.exe œ��p�� s5
No C:\Users\Nat\Documents\Downloads\SmitfraudFix\IEDFix.C.exe œ��p�� s5
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description œ��p�� s5
;===================================================================================================================================================================================
;===================================================================================================================================================================================
Attached Files
File Type: txt ActiveScan.txt (5.7 KB, 0 views)
Gunsmith_Cat is offline