Техническая информация
- '%TEMP%\bhcabfcebhg.exe' 9-9-8-5-0-9-1-0-6-2-6 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420682347.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420682347.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420682347.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsx2.tmp\jjff.dll
- %TEMP%\insHv10.bhcabfcebhg
- %TEMP%\bhcabfcebhg.zip
- %TEMP%\insHv10.exe
- %TEMP%\nsx2.tmp\nsisunz.dll
- %TEMP%\81420682347.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bhcabfcebhg.zip
- %TEMP%\insHv10.bhcabfcebhg
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv10.exe в %TEMP%\bhcabfcebhg.exe