Техническая информация
- '%TEMP%\bcdbcabeebfb.exe' 4-6-3-7-0-3-8-7-8-2-5 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420027982.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420027982.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420027982.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsm2.tmp\aal.dll
- %TEMP%\insHmar.bcdbcabeebfb
- %TEMP%\bcdbcabeebfb.zip
- %TEMP%\insHmar.exe
- %TEMP%\nsm2.tmp\nsisunz.dll
- %TEMP%\81420027982.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bcdbcabeebfb.zip
- %TEMP%\insHmar.bcdbcabeebfb
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHmar.exe в %TEMP%\bcdbcabeebfb.exe