Техническая информация
- '%TEMP%\bdbcabfedjc.exe' 9-9-5-8-2-6-8-4-1-8-2 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427266686.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427266686.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81427266686.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsz2.tmp\ob01.dll
- %TEMP%\insHv28.bdbcabfedjc
- %TEMP%\bdbcabfedjc.zip
- %TEMP%\insHv28.exe
- %TEMP%\nsz2.tmp\nsisunz.dll
- %TEMP%\81427266686.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv28.exe в %TEMP%\bdbcabfedjc.exe