Техническая информация
- '%TEMP%\cfcabfiiih.exe' 2-5-7-3-4-1-2-3-8-2-6 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427930522.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427930522.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81427930522.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsx2.tmp\grz.dll
- %TEMP%\rc73.cfcabfiiih
- %TEMP%\cfcabfiiih.zip
- %TEMP%\rc73.exe
- %TEMP%\nsx2.tmp\nsisunz.dll
- %TEMP%\81427930522.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\rc73.exe в %TEMP%\cfcabfiiih.exe