Техническая информация
- '%TEMP%\bccjcabeddde.exe' 6-0-9-5-5-6-9-3-9-8-6 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420449429.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420449429.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420449429.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nst2.tmp\iix.dll
- %TEMP%\insHv18.bccjcabeddde
- %TEMP%\bccjcabeddde.zip
- %TEMP%\insHv18.exe
- %TEMP%\nst2.tmp\nsisunz.dll
- %TEMP%\81420449429.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bccjcabeddde.zip
- %TEMP%\insHv18.bccjcabeddde
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv18.exe в %TEMP%\bccjcabeddde.exe