Technical Information
- [<HKLM>\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] '360se' = '<Full path to file>'
- User Account Control (UAC)
- %CommonProgramFiles(x86)%\rkdltecq\pioifz.pif
- %WINDIR%\syswow64\1076188.dep
- '%WINDIR%\syswow64\cmd.exe' /c sc stop policyagent' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c sc stop policyagent
- '%WINDIR%\syswow64\sc.exe' stop policyagent