Техническая информация
- '%TEMP%\bfcabfdhec.exe' 0-8-8-3-0-3-7-8-1-7-1 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81428128364.txt bios get serialnumber
- %TEMP%\insHv22.exe
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\nsa2.tmp\nsisunz.dll
- %TEMP%\insHv22.bfcabfdhec
- %TEMP%\nsa2.tmp\kkss.dll
- %TEMP%\bfcabfdhec.zip
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\insHv22.bfcabfdhec
- %TEMP%\bfcabfdhec.zip
- %TEMP%\insHv22.exe в %TEMP%\bfcabfdhec.exe