Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'grdpop' = '%PROGRAM_FILES%\grdpop\grdpop.exe'
- '%PROGRAM_FILES%\grdpop\grdpop.exe'
- '%PROGRAM_FILES%\grdpop\wint.exe' /spm
- %PROGRAM_FILES%\grdpop\wint.exe
- %PROGRAM_FILES%\grdpop\grdpop.exe
- %PROGRAM_FILES%\grdpop\uninst.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\update[1].xml
- 'localhost':1037
- 'yo####04.cafe24.com':80
- yo####04.cafe24.com/pak/update.xml
- yo####04.cafe24.com/log/?mo##########################################
- DNS ASK yo####04.cafe24.com