Техническая информация
- '%TEMP%\bhcabfceef.exe' 8-2-5-6-8-9-8-5-1-2-1 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420638248.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420638248.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420638248.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsj2.tmp\jjff.dll
- %TEMP%\insHv10.bhcabfceef
- %TEMP%\bhcabfceef.zip
- %TEMP%\insHv10.exe
- %TEMP%\nsj2.tmp\nsisunz.dll
- %TEMP%\81420638248.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bhcabfceef.zip
- %TEMP%\insHv10.bhcabfceef
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv10.exe в %TEMP%\bhcabfceef.exe