Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'SExplorer' = '%WINDIR%\SExplorer.exe'
- Интерпретатора командной строки (CMD)
- <SYSTEM32>\taskkill.exe /f /im wordpad.exe
- <SYSTEM32>\taskkill.exe /f /im notepad.exe
- <SYSTEM32>\taskkill.exe /f /im explorer.exe
- %WINDIR%\Explorer.EXE
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoLogOff' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoRun' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoClose' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoDrives' = '03FFFFFF'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoViewOnDrive' = '03FFFFFF'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoFolderOptions' = '00000001'
- <SYSTEM32>\taskkill.exe
- %WINDIR%\SExplorer.exe
- %WINDIR%\SExplorer.exe
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''