Техническая информация
- '%TEMP%\bbdcabfecbfi.exe' 9-4-9-4-6-6-2-9-1-5-6 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423250055.txt bios get serialnumber
- %TEMP%\insHv27.exe
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\nsq2.tmp\nsisunz.dll
- %TEMP%\insHv27.bbdcabfecbfi
- %TEMP%\nsq2.tmp\hoy.dll
- %TEMP%\bbdcabfecbfi.zip
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\tmp3.tmp
- %TEMP%\insHv27.exe в %TEMP%\bbdcabfecbfi.exe