Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'DisallowRun' = '00000000'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoTrayContextMenu' = '00000000'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoViewContextMenu' = '00000000'
- %TEMP%\1.tmp\SystemOpen.bat
- '<SYSTEM32>\reg.exe' ADD "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ImmersiveShell\EdgeUI" /V DisabledEdges /T REG_DWORD /D 0x00000182 /F
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /V NoTrayContextMenu /T REG_DWORD /D 0 /F
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /V DisallowRun /T REG_DWORD /D 0 /F
- '<SYSTEM32>\xcopy.exe' C:\Users\wes\AppData\Local\Microsoft\Windows\WinX_ C:\Users\wes\AppData\Local\Microsoft\Windows\WinX\ /Y /S /E /H /R
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System" /V DisableTaskMgr /T REG_DWORD /D 0 /F
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\SystemOpen.bat" <Полный путь к файлу>"
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" /V NoViewContextMenu /T REG_DWORD /D 0 /F
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /V HideIcons /T REG_DWORD /D 0 /F