;*********************************************************************************************************************************************************************************** ANALYSIS: 2008-07-18 12:41:35 PROTECTIONS: 1 MALWARE: 15 SUSPECTS: 1 ;*********************************************************************************************************************************************************************************** PROTECTIONS Description Version Active Updated ;=================================================================================================================================================================================== AVG Anti-Virus Free 8.0 Yes Yes ;=================================================================================================================================================================================== MALWARE Id Description Type Active Severity Disinfectable Disinfected Location ;=================================================================================================================================================================================== 00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.atdmt.com/] 00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\Administrator\Desktop\SmitfraudFix\Process.exe 00139535 Application/Processor HackTools No 0 Yes No C:\WINDOWS\system32\Process.exe 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.tribalfusion.com/] 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.tribalfusion.com/] 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.tribalfusion.com/] 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.tribalfusion.com/] 00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.com.com/] 00167647 Cookie/Yadro TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.yadro.ru/] 00167647 Cookie/Yadro TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.yadro.ru/] 00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.xiti.com/] 00167744 Cookie/GoStats TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.gostats.com/] 00167744 Cookie/GoStats TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.gostats.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.serving-sys.com/] 00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.bs.serving-sys.com/] 00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.adtech.de/] 00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[server.iad.liveperson.net/] 00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[server.iad.liveperson.net/] 00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.ads.pointroll.com/] 00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.ads.pointroll.com/] 00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.ads.pointroll.com/] 00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.ads.pointroll.com/] 00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.ads.pointroll.com/] 00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.ads.pointroll.com/] 00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.ads.pointroll.com/] 00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.questionmarket.com/] 00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.questionmarket.com/] 00194327 Cookie/Go TrackingCookie No 0 Yes No C:\Documents and Settings\Jean\Application Data\Mozilla\Firefox\Profiles\zsg8mtu7.default\cookies.txt[.go.com/] 02197130 Trj/Rebooter.J Virus/Trojan No 1 Yes No C:\Documents and Settings\Administrator\Desktop\SmitfraudFix\Reboot.exe ;=================================================================================================================================================================================== SUSPECTS Sent Location !ƒ ;=================================================================================================================================================================================== No C:\Documents and Settings\Administrator\Desktop\SmitfraudFix.exe !ƒ ;=================================================================================================================================================================================== VULNERABILITIES Id Severity Description !ƒ ;=================================================================================================================================================================================== ;===================================================================================================================================================================================