Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'tjpacqlife' = ''
- <SYSTEM32>\msvbvm60.dll
- <SYSTEM32>\tjpacqlife.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\install[1].htm
- %TEMP%\rad806C8.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\tjpacqlife_back[1].htm
- <SYSTEM32>\tjpacqlife.exe
- <SYSTEM32>\MSINET.OCX
- <SYSTEM32>\VB6KO.DLL
- %TEMP%\~DF2FE2.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\install[1].htm
- 'in#####.punypack.net':80
- 'ad###.is-admin.com':80
- 'localhost':1036
- DNS ASK in#####.punypack.net
- DNS ASK ad###.is-admin.com