Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Google' = 'http://www.advgoogle.blogspot.com'
- [<HKCU>\Software\Microsoft\Internet Explorer\Desktop\Components\1] 'Source' = 'http://www.todaygoogle.com/'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Task Manager' = '%WINDIR%\chick.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Userinit' = 'userinit.exe,chick.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'explorer.exe,chick.exe'
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\jiller.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\goodboy.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\dynamic.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\SinoSiBatman.exe
- '<SYSTEM32>\rundll32.exe' USER32.DLL,UpdatePerUserSystemParameters ,1 ,True
- [<HKCU>\Software\Yahoo\pager]
- <SYSTEM32>\himasal.scr
- %WINDIR%\chick.exe
- <SYSTEM32>\thrill.exe