•HKEY_LOCAL_MACHINEVSOFTWARB\Microsoft\Wi
            ndows NT\CuưentVersion\Winlogon\"SFCDisable" =
            "0xFFFFFF9D"
            •HKEY_LOCAL_MACHINE\SOFl'WAR^Microsoft\Wi
            ndows NT\CuưentVersion\Winlogon\"SFCScan" = "0"
            •HKEY_LOCAL_MACHINEvSOFWARE\Microsoft\Win
            dows NT\CuưentVersion\Winlogon\"ReportBootOk" = "0"
            •HKEY_CURRENT_USER\Software\Microsoft\Comman
            d ProcessorVEnableExtensions" = ”0"
            •HKEY_CURRENT_USER\Software\Microsoft\Windows
           \CuưentVersion\Explorer\Advanced\"Hidden" = "2"
            •HKEY_CURRENT_USER\Software\Microsoft\Windows
           \CurrentVersion\Explorer\Advanced\"HideFileExt" = "1"
            •HKEY_CURRENl'_USER\Software\Microsoft\Windows\
            CurrentVersion\Explorei\Advanceđ\"ShowSup)erHidden" = "0"
            •HKEY_CURRENT_USER\Software\Microsoft\Windows
            NT\CurrentVersion\Windows\"load" =
            "%System%\~~~OuUuW_YeAh-----.exe"
         Cách diệt

            Vào Start > Run.
         2. Gõ Regedit.
         3. Click OK.
         4. Bạn tìm tới các khóa sau và xóa nó đi:

            HKEY_LOCAL_MACHINE\SOFTWAREW[icrosoft\Win
            dows NT\CurrentVersion\Run\"System handler" =
            "%System%\--- OuUuW_YeAh----- .exe"
            HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Win
            dow.s\CurrentVersion\Run\"StartLoad_[COMPUTER
            NAME]" = "%System%\—~OuUuW_YeAh----.exe"
            FỈKEY_CURRENT_USER\Software\Microsoft\Windows\
            CurrentVersion\Run\"Loading_[COMPUTER NAME]" =
            "%System%\--- OuUuW_YeAh----- .exe"
            HKEY_LOCAL_MACHINE\50FTWARE\Microsoft\Win

                                     304