' On Error Resume Next ' Desc: escribe a un archivo valores de claves de registro que restringen capacidades del usuario. Tipicamente ' que algunos de estas claves esta seteado a true (1), o a un valor no-defualt, es una mala seņal. Para restaurar los 'valores correctos de estas claves ejecutar elirestr-final.vbs. '------------- cambiar si se desea ------------------------- file="claves.txt" Dim objFileSystem, objOutputFile Dim bKey Dim key Dim keys ' crea los handlers a un archivo para salida Set objFileSystem = CreateObject("Scripting.fileSystemObject") Set objOutputFile = objFileSystem.OpenTextFile(file,8, TRUE) objOutputFile.WriteLine(VbCrLf & VbCrLf & _ "-------------" & Now & "-------------" & VbCrLf & _ "Comenzando la lectura de claves") ' crea el objeto shell Set Sgh=WScript.CreateObject("WScript.Shell") ' "HKEY_CLASSES_ROOT\.exe\" ' claves de asocianos de archivos objOutputFile.WriteLine("-------------Asosiaciones de archivos----------") keys1= Array( _ "HKEY_CLASSES_ROOT\.exe\",_ "HKEY_CLASSES_ROOT\.com\",_ "HKEY_CLASSES_ROOT\.cmd\",_ "HKEY_CLASSES_ROOT\.bat\",_ "HKEY_CLASSES_ROOT\.pif\",_ "HKEY_CLASSES_ROOT\.scr\",_ "HKEY_CLASSES_ROOT\.reg\",_ "HKEY_CLASSES_ROOT\exefile\shell\open\command\", _ "HKEY_CLASSES_ROOT\comfile\shell\open\command\", _ "HKEY_CLASSES_ROOT\cmdfile\shell\open\command\",_ "HKEY_CLASSES_ROOT\batfile\shell\open\command\",_ "HKEY_CLASSES_ROOT\piffile\shell\open\command\",_ "HKEY_CLASSES_ROOT\scrfile\shell\open\command\",_ "HKEY_CLASSES_ROOT\regfile\shell\open\command\" ) 'Restricciones de ficheros For each key In keys1 mostrarKey(key) Next objOutputFile.WriteLine("-------------Restriciones a archivos (Policies\Explorer)----------") keys2= Array( _ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun", _ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun\",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges", _ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoClose", _ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel", _ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDesktop",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoLogoff",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolder",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetTaskbar",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewContextMenu" _ ) For each key In keys2 mostrarKey(key) Next objOutputFile.WriteLine("-------------MAS POLITICAS (IMPOTANTES!!!)----------") keys3= Array( _ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Network\NoFileSharingControl",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Network\NoNetSetup",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Network\NoNetSetupIDPage",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Network\NoNetSetupSecurityPage",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableChangePassword",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableLockWorkstation",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoAdminPage",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoDispCPL",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoDispAppearancePage",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoDispBackgroundPage",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoDispScrSavPage",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoDispSettingsPage",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoSecCpl",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop\NoChangingWallpaper",_ "HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\Homepage",_ "HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System\disableCMD",_ "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp\Disabled"_ ) For each key In keys3 mostrarKey(key) Next objOutputFile.WriteLine("-------------OTROS en HKEY_LOCAL_MACHINE!!!----------") keys4= Array( _ "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\WinLogon\SFCDisable",_ "HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\SystemRestore\DisableConfig",_ "HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\SystemRestore\DisableSR",_ "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Ierk8243\",_ "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\explorer.exe\",_ "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iexplore.exe\"_ ) For each key In Keys4 mostrarKey(key) Next objOutputFile.WriteLine("---------- fin de lectura de claves ----------------") Function mostrarKey(k) On Error Resume Next Dim key,bKey key=k objOutputFile.WriteLine("Clave:" & key) bKey = Sgh.RegRead(key) If err.number<>0 Then objOutputFile.WriteLine("Error. Numero:" & err.number & " Desc:" & err.description) Else objOutputFile.WriteLine("Valor:" & bKey) end If End Function WScript.Quit(0)