Technical Information
- <Current directory>\pev.exe -k * -preg#[0-9]+\.exe$#
- <SYSTEM32>\taskkill.exe /FI "WINDOWTITLE eq Windows Enterprise Suite*"
- <SYSTEM32>\taskkill.exe /FI "WINDOWTITLE eq Security Central*" /f
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\rkill.bat""
- <SYSTEM32>\taskkill.exe /FI "WINDOWTITLE eq Security Tool*" /f
- fsav32.exe
- miranda32.exe
- msn6.exe
- AVGCC32.EXE
- AVP32.EXE
- drweb386.exe
- <Current directory>\ncmd.cfxxe
- %TEMP%\rkill.log
- <Current directory>\rkill.reg
- %TEMP%\1.tmp\rkill.bat
- <Current directory>\pev.exe
- ClassName: '' WindowName: ''