Техническая информация
- Диспетчера задач (Taskmgr)
- '<SYSTEM32>\net1.exe' STOP sharedaccess
- '<SYSTEM32>\net.exe' STOP sharedaccess
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\net1.exe' user system32 jenya999 /add
- '<SYSTEM32>\chcp.com' 1251
- '<SYSTEM32>\cmd.exe' /c %WINDIR%\peernet\svchost.bat
- '<SYSTEM32>\reg.exe' add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 1 /f
- '<SYSTEM32>\reg.exe' delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe" /v Debugger /f
- %WINDIR%\PeerNet\svchost.bat
- ClassName: 'Shell_TrayWnd' WindowName: ''