Техническая информация
- '%TEMP%\cbcabfehbea.exe' 7-3-3-4-3-7-4-4-1-6-0 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81422845584.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81422845584.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81422845584.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsf2.tmp\gxr.dll
- %TEMP%\insHv32.cbcabfehbea
- %TEMP%\cbcabfehbea.zip
- %TEMP%\insHv32.exe
- %TEMP%\nsf2.tmp\nsisunz.dll
- %TEMP%\81422845584.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv32.exe в %TEMP%\cbcabfehbea.exe