Техническая информация
- '%TEMP%\bccjcabedddb.exe' 9-5-0-6-4-8-4-0-5-5-1 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420550343.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420550343.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420550343.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsk2.tmp\iix.dll
- %TEMP%\insHv18.bccjcabedddb
- %TEMP%\bccjcabedddb.zip
- %TEMP%\insHv18.exe
- %TEMP%\nsk2.tmp\nsisunz.dll
- %TEMP%\81420550343.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bccjcabedddb.zip
- %TEMP%\insHv18.bccjcabedddb
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv18.exe в %TEMP%\bccjcabedddb.exe