Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'explorer.exe <SYSTEM32>\game.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DoNotAllowExceptions' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'EnableFirewall' = '00000000'
- Диспетчера задач (Taskmgr)
- Редактора реестра (RegEdit)
- <SYSTEM32>\net1.exe localgroup %USERNAME%s sqlagent /add
- <SYSTEM32>\netsh.exe firewall set opmode mode=disable
- <SYSTEM32>\net1.exe user sqlagent hack /add
- ClassName: 'Shell_TrayWnd' WindowName: ''