Seth.avazutracking Redirect

Discussion in 'Malware Help (A Specialist Will Reply)' started by aquaman8, Dec 6, 2012.

  1. aquaman8

    aquaman8 Private E-2

    Hi,

    I am running Vista on my computer and this address (Seth.avazutracking.net or some variant) has popped up while using Firefox. The site did not open as it was stopped by Vista waiting for my approval before continuing. I obviously did not permit it to continue, but am worried that I may have some type of malware. Maybe I am just paranoid, but I followed the sticky and have attached the requested logs. I would really appreciate an expert's opinion on whether I have a problem or not!!!

    Thanks in advance for your help with this. This site is Fantastic and so are all the folks who take the time to help out!!


    Mitch
     

    Attached Files:

    aquaman8, Dec 6, 2012
    #1
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Are you deliberately set up to use this proxy?

    • R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = ftp=localhost:12080;http=localhost:12080;https=localhost:12080
     
    Kestrel13!, Dec 7, 2012
    #2
  3. aquaman8

    aquaman8 Private E-2

    Hi,


    Thanks for taking a look at my files!

    I am not sure how to answer the question as my son set up my system a few years ago!

    Does this look suspicious? Is there any way to tell when this proxy was implemented?

    Mitch
     
    aquaman8, Dec 7, 2012
    #3
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

    Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

    • R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = ftp=localhost:12080;http=localhost:12080;https=localhost:12080

    After clicking Fix exit HJT.

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista or Windows7) Then attach the new C:\MGlogs.zip file that will be created by running this.

    Let me know how things are running now.
     
    Kestrel13!, Dec 8, 2012
    #4
  5. aquaman8

    aquaman8 Private E-2

    Hi,

    I won't have access to my computer for a few days but will follow your instructions and let you know the results.

    Thanks so much for the help with for the help with this!

    Mitch
     
    aquaman8, Dec 9, 2012
    #5
  6. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    No problem! :)
     
    Kestrel13!, Dec 10, 2012
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds