Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'MsCDKLibrary' = '{9359F21D-D161-4881-BE59-05ECF0BBABCC}'
- %WINDIR%\explorer.exe
- <SYSTEM32>\taskkill.exe /f /im explorer.exe
- ClassName: '' WindowName: ''