;*********************************************************************************************************************************************************************************** ANALYSIS: 2008-06-22 13:18:40 PROTECTIONS: 1 MALWARE: 22 SUSPECTS: 0 ;*********************************************************************************************************************************************************************************** PROTECTIONS Description Version Active Updated ;=================================================================================================================================================================================== AVG 7.5.524 7.5.524 Yes Yes ;=================================================================================================================================================================================== MALWARE Id Description Type Active Severity Disinfectable Disinfected Location ;=================================================================================================================================================================================== 00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Deckard\System Scanner\backup\DOCUME~1\Mike\LOCALS~1\Temp\Cookies\mike@doubleclick[1].txt 00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\Mike\Desktop\SmitfraudFix\SmitfraudFix\Process.exe 00152401 Cookie/Belnk TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Application Data\Mozilla\Profiles\default\1wunquxx.slt\cookies.txt[.belnk.com/] 00160284 Cookie/Findwhat TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Cookies\mike@findwhat[1].txt 00167749 Cookie/Toplist TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Application Data\Mozilla\Profiles\default\1wunquxx.slt\cookies.txt[.toplist.cz/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Deckard\System Scanner\backup\DOCUME~1\Mike\LOCALS~1\Temp\Cookies\mike@ad.yieldmanager[2].txt 00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Firefox\Profiles\84h0gyty.default\cookies.txt[.apmebf.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Firefox\Profiles\84h0gyty.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Firefox\Profiles\84h0gyty.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Firefox\Profiles\84h0gyty.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Firefox\Profiles\84h0gyty.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Firefox\Profiles\84h0gyty.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Cookies\mike@advertising[1].txt 00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Deckard\System Scanner\backup\DOCUME~1\Mike\LOCALS~1\Temp\Cookies\mike@zedo[2].txt 00184086 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Application Data\Mozilla\Profiles\default\1wunquxx.slt\cookies.txt[image.checkmystats.com.au/] 00184086 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Application Data\Mozilla\Profiles\default\1wunquxx.slt\cookies.txt[image.checkmystats.com.au/] 00187950 Cookie/bravenetA TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Application Data\Mozilla\Profiles\default\1wunquxx.slt\cookies.txt[.bravenet.com/] 00187950 Cookie/bravenetA TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Application Data\Mozilla\Profiles\default\1wunquxx.slt\cookies.txt[.bravenet.com/] 00187950 Cookie/bravenetA TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Profiles\Jennifer\nmrfv6yq.slt\cookies.txt[.bravenet.com/] 00187950 Cookie/bravenetA TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Profiles\default\eu1p62cn.slt\cookies.txt[.bravenet.com/] 00187950 Cookie/bravenetA TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Profiles\default\eu1p62cn.slt\cookies.txt[.bravenet.com/] 00207338 Cookie/Target TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Cookies\mike@target[1].txt 00207338 Cookie/Target TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Firefox\Profiles\84h0gyty.default\cookies.txt[.target.com/] 00219235 adware/commad Adware No 0 Yes No hkey_local_machine\system\controlset001\enum\root\legacy_cmdservice 00219235 adware/commad Adware No 0 Yes No hkey_local_machine\system\controlset001\enum\root\legacy_network_monitor 00252281 Adware/Trymedia Adware No 0 Yes No C:\Documents and Settings\Jennifer\My Documents\ScrabbleBlast-dm.exe 00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Profiles\default\eu1p62cn.slt\cookies.txt[.atwola.com/] 00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\Jennifer\Application Data\Mozilla\Profiles\default\zgthepzl.slt\cookies.txt[.atwola.com/] 00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\Mike\Application Data\Mozilla\Profiles\default\1wunquxx.slt\cookies.txt[.atwola.com/] 00272231 Trj/FamKeylog.A Virus/Trojan No 0 No No C:\Documents and Settings\Mike\Desktop\familykeylogger-2.83\FamilyKeyLogger-setup.exe[ctfmon.exe] 00821548 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Mike\Desktop\familykeylogger-2.83\FamilyKeyLogger-setup.exe[ctfmon.dll] 00874691 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Mike\Desktop\familykeylogger-2.83\FamilyKeyLogger-setup.exe[ctfs.dll] 02197130 Trj/Rebooter.J Virus/Trojan No 1 Yes No C:\Documents and Settings\Mike\Desktop\SmitfraudFix\SmitfraudFix\Reboot.exe 02893538 Adware/PurityScan Adware No 0 Yes No C:\Documents and Settings\Mike\Local Settings\Temporary Internet Files\Content.IE5\41GGHVBG\!update-4495[1].0000 02919872 Adware/PurityScan Adware Yes 1 Yes No C:\PROGRAM FILES\AЅSEMBLY\АTI2EVXX.EXE 03008451 Application/AdvancedXPFixer HackTools No 0 Yes No C:\Program Files\shc7nmj0ee4e\shc7nmj0ee4eSkin.dll 03008451 Application/AdvancedXPFixer HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP14\A0003311.dll 03008451 Application/AdvancedXPFixer HackTools No 0 Yes No C:\Program Files\rhc5nmj0ee4e\rhc5nmj0ee4eSkin.dll ;=================================================================================================================================================================================== SUSPECTS Sent Location %d ;=================================================================================================================================================================================== ;=================================================================================================================================================================================== VULNERABILITIES Id Severity Description %d ;=================================================================================================================================================================================== 184380 MEDIUM MS08-002 %d 184379 MEDIUM MS08-001 %d 182048 HIGH MS07-069 %d 182046 HIGH MS07-067 %d 182043 HIGH MS07-064 %d ;===================================================================================================================================================================================