hxxp://ad.ghura.pl/dm.exedm.exe - Result: 3/41 (7.32%) - Trojan.Win32.Alureon.h (v)
http://www.virustotal.com/analisis/900f ... 1277123868
BSA:
Detailed report of suspicious malware actions:
Defined file type created: C:\Users\Administrator\AppData\Desktop\dm.exe
Detected backdoor listening on port: 0
Detected process privilege elevation
Internet connection: C:\Program Files\Mozilla Firefox\firefox.exe Connects to "202.104.237.103" on port 80 (TCP - HTTP).
Internet connection: C:\Program Files\Mozilla Firefox\firefox.exe Connects to "74.53.201.162" on port 80 (TCP - HTTP).
Listed all entry names in a remote access phone book
Opened a service named: rasman
Opened a service named: Sens
Opened a service named: spooler
Query DNS: li1i16b0.com
Risk evaluation result: High