Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Userinit' = '<SYSTEM32>\userinit.exe,'
- <SYSTEM32>\ping.exe 127.0.0.1 -n 3
- <SYSTEM32>\rundll32.exe USER32.DLL,UpdatePerUserSystemParameters
- <SYSTEM32>\regini.exe <SYSTEM32>\oemie.ini
- %TEMP%\aut5.tmp
- %HOMEPATH%\Favorites\嘻嘻小游戏.url
- %TEMP%\aut4.tmp
- %HOMEPATH%\Favorites\系统地带.url
- %TEMP%\aut6.tmp
- %HOMEPATH%\Favorites\网址导航.url
- %TEMP%\aut2.tmp
- <SYSTEM32>\oemie.ini
- %TEMP%\aut1.tmp
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\启动 Internet Explorer 浏览器.lnk
- %TEMP%\aut3.tmp
- <SYSTEM32>\IEXPLOREOEM.exe
- %TEMP%\aut4.tmp
- %TEMP%\aut5.tmp
- %TEMP%\aut6.tmp
- %TEMP%\aut1.tmp
- %TEMP%\aut2.tmp
- %TEMP%\aut3.tmp