Multi-License Discount Quote

Change Region

English
Threat Database Keyloggers Trojan.Keylogger.AG

Trojan.Keylogger.AG

By CagedTech in Keyloggers, Trojans

Analysis Report

General information

Family Name: Trojan.Keylogger.AG
Signature status: No Signature

Known Samples

MD5: e516f64ca7c49773bc7ebfe065fb7f1d
SHA1: 5f4ccbef8db6d8e5db88bef42be51f20734bdb5b
File Size: 3.92 MB, 3922619 bytes
MD5: c9e7f98686ce77f8765017b1767aacca
SHA1: 254b9f4420c0b6c0af9875114efff0b768326dcf
SHA256: 2DF23AF575EA3200660D5EA2F9BF60E027AD0D984494A84FD30464565AB59BB5
File Size: 7.82 MB, 7823932 bytes
MD5: a7091ddc66e225acba7815a7827e944d
SHA1: e49f77f933df26bc24a46e521266098f4a0f47a6
SHA256: 3752E9110869FAADB964117FFD4A9447FF5F9247905F2835AEFDC689D42CA7CE
File Size: 9.73 MB, 9726517 bytes
MD5: f4f63ce885194cf59626d95a764d4ee3
SHA1: 0aa89cba5b9ff262927fa5f43e74a67f7177634d
SHA256: 8F5F839D8BBC78606112A62D04140133314CA48B6443EDFC453796184C9A59CC
File Size: 5.56 MB, 5564067 bytes
MD5: b1b56cc14b35eca8022d38aadf3d9df5
SHA1: 400c00a4a5b0878d75f11162fe13a03f8bc785e3
SHA256: 9EC1B0CE00B1F4665F4ABA037621D17EABCE09242741298874A65491FE257912
File Size: 2.98 MB, 2982508 bytes
Show More
MD5: 1838a1e5b7b471477602e9c50a67cea9
SHA1: 952dc07a9dd8a11aec9437672593488b5ce4bdaf
SHA256: 688D02298DBE367C0C2EC68C271C4FB75B8F8C6F40830C9BCE7706DC80D06B5E
File Size: 2.63 MB, 2629812 bytes
MD5: 5cce34e128bcdcb913ede8771eddc1f7
SHA1: 8dfeb05276e4a19c538352b84beb89b053e14554
SHA256: BE90BC76CA580BEAB52B87C32FAF13F674B15DB080AE23CEAC37A68288BFA278
File Size: 7.30 MB, 7297079 bytes
MD5: 7b736697bcaab99860514e7986e36c15
SHA1: 64cfce409ef3a6c21e3c81271b167f15e579d40e
SHA256: C21D32A7B5E53DD680F6A9E3F5663D59D5A68021A8237D5A72D21F5F61D6137A
File Size: 8.42 MB, 8424743 bytes
MD5: 7837f09b2247fd0ca3fae30854c15411
SHA1: cf72bf9ee89280e1d9af0de2b59793d9ee0c7c55
SHA256: 3FCCDE031A9BEE93CA02556DB931DE9CEF871953A8BA66A201BB7BA4EC38EDED
File Size: 3.94 MB, 3944983 bytes
MD5: a52148b31195dc49d5c2ae2eb2b0e6fd
SHA1: 45e4748dd72ed1e0f433824a22e90cf627b201f9
SHA256: 17B4A2D2ED05CA64AFD8C9F77F305D6E591A712D3AA178C78FD1A98BED5C8686
File Size: 7.33 MB, 7332760 bytes
MD5: 072cf728cac5dc082945d337ec0542c1
SHA1: 3cda07379e94635f26c00ce88996d8cb2b795daa
SHA256: D714F3E18ED1352FE5495419A708BDC398E22DA79B00899151A01140963BDCED
File Size: 2.56 MB, 2563228 bytes
MD5: fe743c3b6efb065f3996df0606076c77
SHA1: b51ad69906ff96c6861a286112406f240fb3b0ae
SHA256: F3D695658B51FFDFB9EB2E7480422DA4576AC31ABD20CC334D98AC1BEED58428
File Size: 5.88 MB, 5881280 bytes
MD5: f42afd0fb0843a009fa094ddd353e173
SHA1: 68b7ec4fcf1f92f52de1e3bde2a86db066ed53c9
SHA256: 3C26E50B4F677DFBD8BBE71E3CD1A546CCC7DB20C1A00911185F792A8F2FC8A9
File Size: 2.10 MB, 2097267 bytes
MD5: c8ab6d1ccd587c130cd5e5d123510fc1
SHA1: 434b188cb593a7c203a11756f491dc9ca9d79019
SHA256: 254D01EBF90331DDBA2FED1A3C688450EA1A27EA24DA25227F8FFA5B6ABF55A7
File Size: 9.63 MB, 9631615 bytes
MD5: 0e61fdf7dc934f7ff41ac61a3b5040fe
SHA1: 3045927f10b8db9281a949445938022169a8d31a
SHA256: DE4A038E749521335041289B9AC36C2AB481DB692A76BB2AE59E9DA04EEC13AF
File Size: 9.14 MB, 9141760 bytes
MD5: 526465f0dd67a51cb1b278411589eccb
SHA1: 51813acace9eac07851d2e5f7232b6e6cbbc47cf
SHA256: 75E3EF6E5C7B5806380EFC4621E2B0C70B7953125A8068DE84ABCB020C5A6007
File Size: 3.67 MB, 3671899 bytes
MD5: ec2ce92ac6dc53c9d61885a1b1e1c79e
SHA1: c2c1e7a417b224f6be6e60c6918bd35f6af691e5
SHA256: F96E9928AAD0496CF3DCADC0206CEA1F022A75F6B3EA09E3C15AEB1512DDF850
File Size: 3.65 MB, 3648608 bytes
MD5: e13e9af63c79750d5ad0ed0f92802751
SHA1: 0795bb614261f9a51046fc1030c554d1ea24a073
SHA256: 96E2390CCD066EAE2387C76F0BF2D029D6450113196A5D9D7841293765B81EE3
File Size: 4.99 MB, 4985762 bytes
MD5: 264e898e907a17990e07474bec4bcd96
SHA1: 7571aaf4cb556bfccf9130f8b5901f4d696c4c11
SHA256: AE375EFD11CDC74391551D9B0D2FA81369083CBE1E4EB11156DF3B21DD4B5DF1
File Size: 5.61 MB, 5610472 bytes
MD5: 8f4ef53c9280be1f590450575afacec9
SHA1: 170478899576fe5897ae75ccbc733a8260b787b4
SHA256: 8D1E275B9B3FEB8CE58DFE5C78EDC30E806C84E72412902EDB4FD28BAAE8F707
File Size: 2.69 MB, 2690327 bytes
MD5: 532e29b5ef4e9fa243bfbd8da2554c28
SHA1: 8184cda330c15b86dd478d4d4375d3c44d8dd9fe
SHA256: 4FFF0DEA4BFEFC6BCD1623F594D7126B86D29DC3F72ACC50A0F5594A4B4C3BC1
File Size: 6.29 MB, 6290303 bytes
MD5: 32c17d4e90649aa6810b81f49eb951e8
SHA1: 2236504d5c2d10e523a26903ef0574f6e120887c
SHA256: 08EBA4910180C97BC2D6AC8F7E6863085EC6EEC61CA5D8D1E9B58F264C3A8EA4
File Size: 7.18 MB, 7178433 bytes
MD5: a4ce87913a3f062dce617b931f24d789
SHA1: 9535c19c1625ab1f6522a0f47a87bf29aaf88396
SHA256: E6D9FAEDADB829168746109570B72F9C00D54F28F314AF5CE88A555D14743F7A
File Size: 2.32 MB, 2316959 bytes
MD5: 052409b67c44a55f69cc95f1e07f547a
SHA1: b527230ae5a784fcbe5b8e18e4eced1c0d155382
SHA256: 07610F131E9EE023F0945CE6780E84EA8C2E73BBB827E0761884F44072F0A958
File Size: 4.96 MB, 4958388 bytes
MD5: 1fa9434638f86409beeb5a16f2cf3931
SHA1: 392d7130cc10cce10b3df6a9cbecae27109e6c58
SHA256: D78844B38B7B42FA1D24731A4F3A3C34ABE64D36586E3EFA1AA6637FDD5C7631
File Size: 6.13 MB, 6131195 bytes
MD5: dd625465cea1df086c0bc442172e7697
SHA1: f7c29de51d452da85bcd430fa95664481065005e
SHA256: 120F44585246C0E3872E17121358B8FCF32DB4C230FDF3633D71665A603D770F
File Size: 8.43 MB, 8432977 bytes
MD5: 607978b535030b68b6933dc13e551916
SHA1: 1f97ab45013fe22f068cb0a3cfc4af6a4fade972
SHA256: 2B2331365A0F5F9F66DBA10D88A653E219B5C24B6F398377D356C4E9FA770276
File Size: 2.10 MB, 2100381 bytes
MD5: 161ea24088ab4263910e05514f2d817a
SHA1: bcfaf07b292357f69aefc772bacb9ac0cad01577
SHA256: E4C3144D50FB2099A83682E4A6A55EB83314A9DF48AB19C956E92007DD1C1286
File Size: 6.82 MB, 6819233 bytes
MD5: 2fc4e3c40b6f920db9132806e9d8a5be
SHA1: 806d2c96d0cfa6f001d782fcedbbdc717de19b80
SHA256: 423679B63E39FDB2E8AB35914500E3196A94A0F1FD237B834A04CA261B93D62D
File Size: 6.31 MB, 6306059 bytes
MD5: 6b77670d7b4918c5648f5882df8a398d
SHA1: c269921c5af25fa51910b033cf93569de69d6a7d
SHA256: 03795536C00DDCD07BE36EC25ACF67F8A08D404D778E02394DC9CE6FF3FE3FB9
File Size: 1.08 MB, 1083392 bytes
MD5: c24c0d74c2bafcc51bf535b9401ff7e7
SHA1: e3e9d2d99c53dc9ec52b68352ad2afbd5476c0d8
SHA256: 860073D976D05E7775CADF5A4B480157C970C6655D353AB6FE899BA372EDB270
File Size: 4.14 MB, 4137833 bytes
MD5: 58939002ff210c2a1a0e8d53b357bc01
SHA1: 80fbb41afdc17fc4001ce6541f647b40c9de957d
SHA256: 4E0B092BEB71EC252A4B315E48325950ADC20084E47303423C67BA89A7BA768E
File Size: 2.57 MB, 2573701 bytes
MD5: 728d441aa44eef0f2a18f1ca81d3f516
SHA1: 4cef86de5cce8555c568691500bb0afd0a66b599
SHA256: E4397F471ACBFBB8692E0C09B50FDA6CFE628396377C6F62BC52C8D869935110
File Size: 8.33 MB, 8334891 bytes
MD5: c2e66ad28544233b5a5579bb6c35a4b6
SHA1: 0d6869ef11571e1c7f121c1f864de509fa74ac51
SHA256: 3975ED5E8B5FCC26EA42209D0187052B15B235194CBFE20053659EC7A4F21FA4
File Size: 2.92 MB, 2922242 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have debug information
  • File doesn't have exports table
  • File doesn't have security information
  • File has exports table
  • File is 32-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
Show More
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Show More

126 additional icons are not displayed above.

Windows PE Version Information

Name Value
Company Name
  • 2XDSOFT
  • 2xDSoft
  • Anime squad
  • Beadybox
  • BKG666
  • Clickteam
  • David Foster
  • Gamejolt|@Froctic
File Description
  • Aktywator języka polskiego dla AC: Brotherhood
  • Clickteam Fusion Stand Alone Application
  • David Foster
  • Minimal puzzle with matchsticks
  • Sterownik SRG-5000P
  • THE GUMMY BEAR GAME
  • Очень страшная игра
File Version
  • OLD6.4.7
  • 10.19.8.24
  • 6.1.1.2
  • 3.0.290.4
  • 3.0.286.6
  • 3.0.284.10
  • 3.0.283.5
  • 1.3
  • 1.1.1.1
  • 1.1
Show More
  • 1.022
  • 1.0.1.0
  • 1.0
Internal Name StdRt.exe
Legal Copyright
  • 2xDSoft
  • 2XDSOFT
  • 2015 Scott Cawthon
  • 2016 Scott Cawthon
  • Copyright © 1996-2014 Clickteam
  • Copyright © 1996-2015 Clickteam
  • Copyright © 1996-2016 Clickteam
  • Copyright © 1996-2017 Clickteam
  • David Foster
  • Froctic & ZTM Poznań
Show More
  • Scott Cawthon
Original Filename StdRt.exe

File Traits

  • big overlay
  • x86

Block Information

Total Blocks: 3,669
Potentially Malicious Blocks: 1,837
Whitelisted Blocks: 1,832
Unknown Blocks: 0

Visual Map

x x x x x x x x x x x x x x x 0 x x x x x x x x x x x x 0 x x 0 x x x x x 0 x x x x x x x x x x 0 0 0 x 0 x 0 0 0 x 0 x 0 x x x x x x 0 0 x x x x x x x x x x x 0 x x 0 x x x x 0 0 x x 0 x x x x x x x 0 x x 0 0 x 0 x x x x x x x x x x 0 0 x x x x x 0 x x x x x x x x 0 x x x x 0 x x x x x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x 0 x x x x x x x x x x x x x x x 0 0 x x x x x x 0 x x x x x x x x x x x x x x x 0 x x x x x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x x x x x x x x x x x x x x x x x x x x 0 x 0 x x x x x x x x x x x x x x x x x x x x x x 0 x x x x 0 0 0 0 0 0 0 x x x 0 0 x x x 0 x x 0 x 0 0 0 x 0 0 x x 0 x x x x x x x x x 0 x x x x x x x x x x 0 x x x x x 0 0 0 x x x x x x x 0 x 0 x 0 x x 0 x 0 0 0 x x x 0 0 x x x x x x x x x x x x 0 x x 0 x 0 0 x x x 0 x 0 x x 0 0 x x 0 0 x x x x x x x x x x x x x x 0 x x x x x x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x x x x x x x x 0 0 0 0 x x x x x x 0 x x x x 0 x x x 0 x x x x x 0 x 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 x x x 0 x 0 x x x x 0 x 0 x x x x x x x x x x x x x 0 0 x x x x x x x 0 x 0 x x x 0 x x x x x x x 0 x 0 0 0 0 x 0 0 0 0 x x 0 0 x 0 0 0 0 0 x x 0 0 0 0 0 0 x x x 0 x 0 0 x x x 0 x 0 x 0 x 0 x x x 0 0 0 x 0 x 0 0 x 0 x 0 x x x 0 x 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x x x x x x x x 0 x x x x 0 x 0 x 0 x 0 x x 0 x x x 0 0 x x x x x 0 0 0 0 x 0 x 0 x 0 x x 0 x x x x 0 x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x x x x 0 x x x 0 x x x 0 x x x 0 x x x x x x x x x x x x x x 0 x 0 x 0 x x x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x x x 0 x x 0 0 x x x 0 x 0 x x x x x x x x x x x x x 0 x x x 0 x x x x x x x x x x x x 0 x 0 x 0 x 0 0 x x x x x x x x x x x x x x x x x x 0 0 0 0 0 0 0 0 x x x x 0 x x 0 x x x x x x x x x x 0 0 x x x x x x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x x x 0 x x 0 0 0 0 x 0 0 x x 0 x x x x x x x 0 x x x 0 x x x x x x x x x 0 0 0 0 0 0 0 x 0 0 0 0 0 x x x 0 0 0 0 0 0 x x x x x x 0 x x x 0 x x x 0 x x 0 x x x x x x x 0 x 0 x x x x x 0 x x x x x x 0 x x x 0 x x x x x 0 x x x x x x x x x x 0 x x x x x x 0 0 x x x 0 x 0 x 0 x x x x x x x x x x x x x x x x 0 0 x 0 x x x x x x x x 0 0 x 0 x x x x 0 0 x 0 x x x x x x x x x x x x x x x 0 0 0 x x x x x 0 x x x x x x x x x x x x x x x x 0 x x x x x x x x x 0 0 0 0 0 x x x x x 0 x x 0 0 0 x x 0 x x x x x x x x 0 x x x x x x x x x x x x x x x 0 x x x x x 0 x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 0 x x x x x x x 0 x x x 0 0 x 0 0 x x x x x x x x x x x x x 0 0 0 x x x x x 0 0 x x x x x x x x x x x 0 0 x 0 0 x x x 0 x 0 x x x 0 x x x x 0 x x x 0 x x x x x x x x x x x x x 0 0 x x x x x x 0 x 0 x x x x x x x 0 x x x x x x x x x x x 0 0 0 x x x x x x 0 x x x x x 0 x 0 x x 0 0 0 x x x 0 x 0 x x x x 0 0 0 0 x x x x 0 x x 0 x x 0 x x x x x 0 x x 0 x x 0 x 0 x x x x x x x 0 x x x x x x x x x 0 x x 0 x x x x x x x x x x x x x x 0 0 x x 0 x x x 0 x x x x x x x 0 x x x x x x 0 x x x 0 x x x x x x x x x x x 0 x x x x 0 x x x x 0 x x x 0 x 0 x x 0 0 x x x x x x 0 0 0 x x x x x 0 x x 0 0 x x x x x x x 0 0 0 x x x x x x x x x x x x x 0 x x x x x x x x x x 0 0 x x x x x x x x x x x x x x 0 x x x x x x x x x x x x x x x 0 x x x 0 x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 0 x x x x x 0 x x 0 0 0 0 x x x 0 0 x x x x x x x x x x x x 0 x x x x x 0 0 x x x x x x x x x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 0 x x x x x x x x x x 0 0 x 0 0 x x x 0 0 x x x x 0 x x x 0 x x x x x x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x 0 0 0 x x 0 x 0 x x x x x x x x x x x x x x 0 0 x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x x x x x 0 0 x 0 0 x x x x x x x x x x 0 x x 0 0 0 0 x 0 0 0 0 x x x 0 0 0 0 0 0 0 0 x x x x x x x 0 x x x x x 0 x x x x x x x x 0 x x x x x x x x x 0 x 0 x 0 0 0 x x x 0 x 0 x x x x x x x x 0 x x x 0 0 0 0 0 x x x x x 0 x x 0 x x x x x x x x x x x x 0 0 0 x x x x x x x x x x x 0 0 x x 0 x x x 0 x x x x x x x x 0 x x x x x x x x x x x x x x x 0 x x x x x x 0 x 0 x x 0 0 x x x x x 0 x x x x x x x x x x x x x x 0 x x x x x x x x x x x x
... Data truncated
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • Keylogger.AG

Files Modified

File Attributes
c:\users\user\appdata\local\temp\434b188cb593a7c203a11756f491dc9ca9d79019_0009631615_steam\steam_appid.txt Generic Write,Read Attributes
c:\users\user\appdata\local\temp\mrt2d60.tmp\aviflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\bmpflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\fliflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\gifflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\jpgflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\kcboxa.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\kcboxb.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\kccursor.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\kcplugin.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
Show More
c:\users\user\appdata\local\temp\mrt2d60.tmp\kcwebx.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\pcxflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\pngflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\progressbar.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt2d60.tmp\tgaflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\cctrans.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\kcclock.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\kccursor.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\kcini.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\perspective.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt31f4.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt36e.tmp\54321.avi Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt36e.tmp\adshow.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt36e.tmp\kcwctrl.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt36e.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt36e.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt36e.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt36e.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\aviflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\bmpflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\cctrans.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\fliflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\gifflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\jpgflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\kcpica.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\kcpict.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\oggflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\pcxflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\pngflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt3f2d.tmp\tgaflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\cctrans.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\kcclock.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\kccursor.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\kcini.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\perspective.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt419c.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\aiffflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\clickteam-vector.mvx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\ctrlx.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\joystick.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\kcarray.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\kcini.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\kcwctrl.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\modflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\oggflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\onu.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\onueng_mod.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\ultimatefullscreen.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt4752.tmp\xboxgamepad.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt49b1.tmp\cctrans.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt49b1.tmp\kcini.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt49b1.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt49b1.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt622e.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt622e.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt622e.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt622e.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt6694.tmp\mid0.mid Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt66b3.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt66b3.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt66b3.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt66b3.tmp\mmfs2.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt66b3.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt66b3.tmp\stdrtd.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt66b3.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\box2dbase.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\box2dbase.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\box2dbouncingball.mvx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\box2dbouncingball.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\box2dspring.mvx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\box2dspring.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\clickteam-dragdrop.mvx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\clickteam-dragdrop.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\kclist.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\kclist.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\mmfs2.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\stdrtd.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\steam_api.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt69a3.tmp\steamworks.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt6dfa.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt6dfa.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt6dfa.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt6dfa.tmp\oggflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt6dfa.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt7003.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt7003.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt7003.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt7003.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\cctrans.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\kccursor.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\kcfile.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\kcini.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\oggflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\perspective.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt906a.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt93fa.tmp\cctrans.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt93fa.tmp\kcini.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt93fa.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt93fa.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt93fa.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt93fa.tmp\perspective.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrt93fa.tmp\waveflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta66c.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta66c.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\aviflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\binary.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\bmpflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\dlgbox.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\dlgbox.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\fliflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\gifflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\jpgflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\kcbutton.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\kcbutton.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\kcfile.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\kcpica.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\kcpica.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\layer.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\mmfs2.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\mp3flt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\pcxflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\pngflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\stdrtd.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta7d3.tmp\tgaflt.ift Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta8fc.tmp\cctrans.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta8fc.tmp\mmf2d3d8.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta8fc.tmp\mmf2d3d9.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta8fc.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta8fc.tmp\mmfs2.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta8fc.tmp\oggflt.sft Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta8fc.tmp\stdrtd.txt Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\advtray.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\audiere.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\blowfish.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\colordialog.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\ctrlx.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\dlgbox.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\editboxsel.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\fcfolder.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\fcwindowlife.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\get.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcboxb.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcbutton.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcclock.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcdialog.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcedit.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcfile.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kclist.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcplugin.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcpop.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcriched.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\kcwctrl.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\key.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\keyboard.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\lacewing.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\lacewingserver.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\localip++.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\miniatureaudiere.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\mmfs2.dll Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\parser.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\mrta9a8.tmp\popupmenu.mfx Generic Read,Write Data,Write Attributes,Write extended,Append data

188 additional files are not displayed above.

Registry Modifications

Key::Value Data API Name
HKCU\software\microsoft\internet explorer\main\featurecontrol\feature_browser_emulation::8dfeb05276e4a19c538352b84beb89b053e14554_0007297079 RegNtPreCreateKey
HKCU\software\microsoft\internet explorer\main\featurecontrol\feature_browser_emulation::8dfeb05276e4a19c538352b84beb89b053e14554_0007297079.vhost RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.imaadpcm::fdwsupport  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.imaadpcm::cformattags  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.imaadpcm::aformattagcache  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.imaadpcm::cfiltertags RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msadpcm::fdwsupport  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msadpcm::cformattags  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msadpcm::aformattagcache 2 RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msadpcm::cfiltertags RegNtPreCreateKey
Show More
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msg711::fdwsupport  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msg711::cformattags  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msg711::aformattagcache  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msg711::cfiltertags RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msgsm610::fdwsupport  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msgsm610::cformattags  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msgsm610::aformattagcache 1 RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.msgsm610::cfiltertags RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.l3acm::fdwsupport  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.l3acm::cformattags  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.l3acm::aformattagcache U RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\audiocompressionmanager\drivercache\msacm.l3acm::cfiltertags RegNtPreCreateKey
HKCU\software\microsoft\multimedia\msacm.imaadpcm::maxrtencodesetting  RegNtPreCreateKey
HKCU\software\microsoft\multimedia\msacm.imaadpcm::maxrtdecodesetting  RegNtPreCreateKey
HKCU\software\microsoft\multimedia\msacm.msgsm610::maxrtencodesetting  RegNtPreCreateKey
HKCU\software\microsoft\multimedia\msacm.msgsm610::maxrtdecodesetting  RegNtPreCreateKey
HKLM\system\controlset001\control\mediaresources\directsound\speaker configuration::speaker configuration  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\direct3d\mostrecentapplication::name bcfaf07b292357f69aefc772bacb9ac0cad01577_0006819233 RegNtPreCreateKey
HKCU\system\currentcontrolset\control\mediaproperties\privateproperties\directinput\vid_0627&pid_0001\calibration\0::guid 쯰恮⨠ᇱƀ䕄呓 RegNtPreCreateKey
HKCU\software\microsoft\directinput\mostrecentapplication::version Ԋ RegNtPreCreateKey
HKCU\software\microsoft\directinput\mostrecentapplication::name E3E9D2D99C53DC9EC52B68352AD2AFBD5476C0D8_0004137833 RegNtPreCreateKey
HKCU\software\microsoft\directinput\mostrecentapplication::id E3E9D2D99C53DC9EC52B68352AD2AFBD5476C0D8_00041378335562D670003F2369 RegNtPreCreateKey
HKCU\software\microsoft\directinput\mostrecentapplication::mostrecentstart 㓍켨빧ǜ RegNtPreCreateKey
HKCU\system\currentcontrolset\control\mediaproperties\privateproperties\directinput\vid_0627&pid_0001\calibration\0::guid 豠ᵦㆄᇱƀ䕄呓 RegNtPreCreateKey
HKCU\software\microsoft\directinput\mostrecentapplication::name 0D6869EF11571E1C7F121C1F864DE509FA74AC51_0002922242 RegNtPreCreateKey
HKCU\software\microsoft\directinput\mostrecentapplication::id 0D6869EF11571E1C7F121C1F864DE509FA74AC51_00029222425562D670002C9702 RegNtPreCreateKey
HKCU\software\microsoft\directinput\mostrecentapplication::mostrecentstart 殰谝엋ǜ RegNtPreCreateKey

Windows API Usage

Category API
Anti Debug
  • IsDebuggerPresent
  • OutputDebugString
User Data Access
  • GetUserObjectInformation
Other Suspicious
  • AdjustTokenPrivileges
  • SetWindowsHookEx
Keyboard Access
  • GetAsyncKeyState
  • GetKeyState
Network Wininet
  • InternetOpen
Network Winsock2
  • WSAStartup
Network Winsock
  • gethostbyname
  • gethostname

Trending

Most Viewed

Loading...