Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\csrss.exe
- %HOMEPATH%\Start Menu\Programs\Startup\csrss.exe exec%APPDATA%\BlueFlare Antivirus\csrss.exe
- %APPDATA%\BlueFlare Antivirus\csrss.exe exec%HOMEPATH%\Start Menu\Programs\Startup\csrss.exe
- %APPDATA%\BlueFlare Antivirus\BlueFlare Antivirus.exe
- %HOMEPATH%\Start Menu\Programs\BlueFlare Antivirus\BlueFlare Antivirus.lnk
- %HOMEPATH%\Desktop\BlueFlare Antivirus.lnk
- %TEMP%\1.tmp
- %APPDATA%\BlueFlare Antivirus\BlueFlare Antivirus.ico
- %APPDATA%\BlueFlare Antivirus\BlueFlare Antivirus.exe
- %APPDATA%\BlueFlare Antivirus\ms.conf
- %APPDATA%\BlueFlare Antivirus\csrss.exe
- '74.##5.232.51':80
- 'co######.s-internals.com':80
- 74.##5.232.51/
- co######.s-internals.com/stat/action.php?p=##############################################################
- DNS ASK se#####validation.com
- DNS ASK s-###ernals.com
- DNS ASK co######.s-internals.com
- DNS ASK google.com
- ClassName: 'Shell_TrayWnd' WindowName: ''