Troj/Bredo-MY exhibits the following characteristics:
Runtime Analysis
Copies Itself To
- c:\Documents and Settings\test user\Application Data\csrss.exe
Processes Created
- c:\windows\system32\svchost.exe
HTTP Requests
- http://agurinul12.ru/vip/index.php
- http://www.google.com/
DNS Requests
- agurinul12.ru
- www.google.com