Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'TNOD - Yaron\'S Team' = '%ProgramFiles%\TNod\TNODUP.exe'
- %TEMP%\aut1.tmp
- %ProgramFiles%\TNod\TNODUP.exe
- %TEMP%\aut2.tmp
- \\Device\\HarddiskVolume1\\Program Files\\TNod\\Yaron\'S Team.ico
- \\Device\\HarddiskVolume1\\Muldrop\\Ybspo\'S Tfbn.jdp_0
- \\Device\\HarddiskVolume1\\Documents and Settings\\All Users\\Start Menu\\Programs\\TNod\\TNOD - Yaron\'S Team.lnk
- \\Device\\HarddiskVolume1\\Muldrop\\TNOD - Ybspo\'S Tfbn.mol_0
- %TEMP%\aut3.tmp
- C:\ProgramData\ESET\ESET Security\registryFileStorage_globalA.cfg
- %TEMP%\aut4.tmp
- C:\ProgramData\ESET\ESET Security\registryFileStorage_globalB.cfg
- \\Device\\HarddiskVolume1\\Documents and Settings\\All Users\\Desktop\\Yaron\'S Team TNod.lnk
- \\Device\\HarddiskVolume1\\Muldrop\\Ybspo\'S Tfbn TNpe.mol_0
- \\Device\\HarddiskVolume1\\Program Files\\TNod\\Yaron\'S Team.ico
- %TEMP%\aut1.tmp
- %TEMP%\aut2.tmp
- %TEMP%\aut3.tmp
- %TEMP%\aut4.tmp