Техническая информация
- [<HKLM>\SOFTWARE\Classes\InternetShortcut\shell\open\command] '' = 'rundll32.exe shdocvw.dll,OpenURL %l'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'Explorer.exe'
- [<HKLM>\SOFTWARE\Microsoft\Command Processor] 'AutoRun' = ''
- Cредство проверки системных файлов (SFC)
- '<SYSTEM32>\regini.exe' "C:\regset.ini"
- '<SYSTEM32>\cmd.exe' /C del /s/q/f "%APPDATA%\Microsoft\Internet Explorer\Quick Launch\*Internet*"
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3] 'DisplayName' = 'Internet'
- %HOMEPATH%\Favorites\链接\网址导航.url
- %TEMP%\aut7.tmp
- %HOMEPATH%\Favorites\链接\第九论坛.url
- %TEMP%\aut6.tmp
- %WINDIR%\mui\muisetup.exe.new
- <SYSTEM32>\dllcache\muisetup.exe.new
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\启动 Internet Explorer 浏览器.lnk
- C:\regset.ini
- %TEMP%\aut5.tmp
- %TEMP%\aut2.tmp
- %HOMEPATH%\Favorites\GhostXP系统盘、软件尽在XP系统下载乐园.url
- %TEMP%\aut1.tmp
- %HOMEPATH%\Favorites\2535.Cn网址导航 新一代绿色安全网站指引.url
- %TEMP%\aut4.tmp
- %HOMEPATH%\Favorites\系统下载之家 - XP系统之家,win7之家,Windows7系统,XP系统下载网.url
- %TEMP%\aut3.tmp
- %HOMEPATH%\Favorites\XP之家 - 主题,XP系统下载,win7系统下载基地.url
- %TEMP%\aut7.tmp
- %TEMP%\aut6.tmp
- C:\regset.ini
- %WINDIR%\mui\muisetup.exe
- %TEMP%\aut5.tmp
- %TEMP%\aut2.tmp
- %TEMP%\aut1.tmp
- %TEMP%\aut4.tmp
- %TEMP%\aut3.tmp
- C:\regset.ini