Техническая информация
- '%TEMP%\ababcabfbbbc.exe' 0-2-0-6-4-6-0-3-5-9-2 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420120503.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420120503.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsv2.tmp\aass.dll
- %TEMP%\insHv3.ababcabfbbbc
- %TEMP%\ababcabfbbbc.zip
- %TEMP%\insHv3.exe
- %TEMP%\nsv2.tmp\nsisunz.dll
- %TEMP%\tmp5.tmp
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp4.tmp
- %TEMP%\insHv3.ababcabfbbbc
- %TEMP%\ababcabfbbbc.zip
- %TEMP%\tmp3.tmp
- %TEMP%\insHv3.exe в %TEMP%\ababcabfbbbc.exe