Техническая информация
- '%TEMP%\bdbcabfehig.exe' 7-8-1-0-0-5-5-1-7-3-7 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423168748.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423168748.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423168748.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsi2.tmp\ob01.dll
- %TEMP%\insHv32.bdbcabfehig
- %TEMP%\bdbcabfehig.zip
- %TEMP%\insHv32.exe
- %TEMP%\nsi2.tmp\nsisunz.dll
- %TEMP%\81423168748.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv32.exe в %TEMP%\bdbcabfehig.exe