Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Ransom.c!env
- Reported by neonprimetime security
- http://neonprimetime.blogspot.com
- ****
- McAfee alert seen seconds are the URL get request below
- C:\Users\xxxxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\b981a992.exe
- Ransom.c!env
- ****
- Suspicious URL Get Request
- GET /j_86zfsy/7a49d85b1f66850e02570d025103025304580302505a055902555058060f5101;150000;152 HTTP/1.1
- Accept: */*
- Accept-Language: en-SG
- Referer: http://rejlmv.hopto.org/cssvejklrus2pzktoh5cbr8nbpef71jv5w4jfvp223tjd9h
- x-flash-version: 15,0,0,152
- Accept-Encoding: gzip, deflate
- User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko
- Host: rejlmv.hopto.org
- Connection: Keep-Alive
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
