ROFL ! this one is nasty... if i go on paranoid & Conspiracy mode: "this is why MS doesn't tell why we shouldn't disable SMB2.0/3.0 !!!! i knew it !!! "
SysInternal's WinObj would be of assistance since it will show all file filter managers installed as noted in the below screen shot:
Doubt this exploit will make it into widespread use due to this: https://arstechnica.com/security/20...-implant-turns-servers-into-malware-carriers/