Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'TITLE3' = '%WINDIR%\n0x.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'TITLE2' = '<SYSTEM32>\n0x.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'TITLE' = '<SYSTEM32>\shutdown.exe -r -t 360 -f'
- <SYSTEM32>\reg.exe ADD HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon /v IgnoreShiftOverride /t REG_SZ /d "1" /f
- <SYSTEM32>\reg.exe ADD HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon /v IgnoreShiftOverride /t REG_SZ /d "1" /f
- <SYSTEM32>\reg.exe ADD HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /V TITLE3 /D "%WINDIR%\n0x.exe" /f
- <SYSTEM32>\reg.exe ADD HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /V TITLE /D "<SYSTEM32>\shutdown.exe -r -t 360 -f" /f
- <SYSTEM32>\reg.exe ADD HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /V TITLE2 /D "<SYSTEM32>\n0x.exe" /f
- %TEMP%\bt8508.bat
- %TEMP%\bt8508.bat