SmitFraud-C.CoreService

G'Day, nothing showing in the HJT log? Still getting popups asking you to purchase Winfixer?

Please download F-Secure BlackLight Beta:
https://europe.f-secure.com/exclude/blacklight/index.shtml

Save it to its own folder in the Desktop
Double-click blbeta.exe to run the program
Click : Scan
A list of all items found is created

The list is in the BlackLight folder on the Desktop, and named fsbl.xxxxxxx.log (xxxxxxx are numbers).

Please provide the log created by BlackLight in your next reply.

(do not fix anything, some if not all files will be valid)

Thanks
 
No im not still getting the popups, in fact, these popups only occurd the one time, which makes me wonder weather it was the websites advertising, and not on my system at all, because everything says its clean, and it was a javascript

but the blacklight log is below::::
06/04/07 20:38:19 [Info]: BlackLight Engine 1.0.61 initialized
06/04/07 20:38:19 [Info]: OS: 5.1 build 2600 (Service Pack 2)
06/04/07 20:38:20 [Note]: 7019 4
06/04/07 20:38:20 [Note]: 7005 0
06/04/07 20:38:23 [Note]: 7006 0
06/04/07 20:38:23 [Note]: 7011 1780
06/04/07 20:38:23 [Note]: 7026 0
06/04/07 20:38:23 [Note]: 7026 0
06/04/07 20:38:46 [Note]: FSRAW library version 1.7.1021
06/04/07 20:47:57 [Note]: 7007 0
 
Looks good:bigthumb: I am sure you were surprised by how dangerous it is to surf the web anymore. I personally go where I need to and no where else. It is a shame the internet has gotten to this. You understand $$$ and organized crime are the driving forces. Safe surfing...Phil
 
Yeah, generally speaking i stick to where i need to be as well, besides, these forums i was in (where the popup occurd) are Relic Entertainment 's (the PC game company's) offical "unoffical" forums, so they are lagitament forums with no illegal content,
but thanks for the help anyways. Damn internet, whats it coming too
 
You would not believe how many valid sites have malware links posted at them by hackers. We usually find them quickly and notify the valid websites (some of the biggies too) but folks do get infected before the junk can be taken down. With an exploit possibility like out of date Java (but others also, Java is not alone) all it takes is for the mouse to move over an infected banner at a valid site for the exploit to happen. No actions on the part of the user are needed other than to be where they think they are safe.:sad:

Cheers
 
You must log in or register to reply here.
Back
Top