for the last few days my network connection seemsto have taken a bit of a beating. I have noticed that winlogon.exe seems to be doing something which it shouldn't. A further investigation has shown that it is sending emails like this:
Has anyone else came across this recently? I cant see any information on it anywhere.
TIA
Gav.
Code:
</head>
<body>
<p>Hi, luiz.carlos.</p>
<p><br></p>
<p><a href="http://bfyrxmjpxmgoaold4in0w1zj1jwavv6ivd60ddv.swizkn.com/?nofsffat">
<img alt="" hspace=1 vspace=1 src="cid:83212306.01C61F91.53A02E63.5130B9F6_csseditor"></a>
</p>
<p><br></p>
<p>
I knocks of utopian a feel? the achievement is syllables<br>
She decimalised was awoke of superurgent it participant resentfully<br>
Me forbidden sceptical is cats? of join a riddles<br>
A salt the canker killed? it lifted she whos<br>
You family of curlingirons? the unthinkable and admiringly or aspirin<br>
Not comment you granted and freely' me asphalt knuckle<br>
No prompts is apart this bristles of vicinity the stream<br>
If candelabrum we moreover of coin a appointing is happened?<br>
An rimmed me impostor you twentyfour she sign strangled<br>
Have tremble damage of bouncing it twanged was there?'<br>
Was bloom not enter sandals a dating or losses<br>
And dodges unfolding is model of sirs an smiling<br>
</p>
<p><br></p>
<p><span class=rvts6>-- </span></p>
<p><span class=rvts6>Best Regards,</span></p>
<p><span class=rvts6></span> Page Gregg
<a class=rvts7 href="mailto:[email protected]">mailto:[email protected]</a></p>
</body></html>
------------6CF0183155CAC36--
------------35178191A640ABB
Content-Type: image/gif; name="SJXJNF.gif"
Content-Transfer-Encoding: base64Has anyone else came across this recently? I cant see any information on it anywhere.
TIA
Gav.
