Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'reboot_system' = 'shutdown -s -t 0'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'slear.exe' = '<SYSTEM32>\slear.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'slear.exe' = '%WINDIR%\system\shutdown.bat'
- '<SYSTEM32>\reg.exe' add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v "reboot_system" /t REG_SZ /d "shutdown -s -t 0"
- '<SYSTEM32>\cmd.exe' /c c:\forshotdown.cmd
- C:\forshotdown.cmd
- %WINDIR%\system\shutdown.bat
- <SYSTEM32>\slear.exe
- C:\forshotdown.cmd
- ClassName: 'Indicator' WindowName: '(null)'