Техническая информация
- '%TEMP%\cld.exe' 3-4-9-1-4-9-6-1-4-5-9 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427754964.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427754964.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81427754964.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsf2.tmp\dpmez.dll
- %TEMP%\xx7.cld
- %TEMP%\cld.zip
- %TEMP%\xx7.exe
- %TEMP%\nsf2.tmp\nsisunz.dll
- %TEMP%\tmp5.tmp
- %TEMP%\81427754964.txt
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\xx7.exe в %TEMP%\cld.exe