多許可證折扣報價

更改區域

English Português 汉语 漢語
威脅數據庫 潛在有害程序 安裝核心

安裝核心

潛在有害程序GoldSparrow
翻譯為:

威脅評分卡

Popularity Rank: 6
威胁级别: 10 % (普通的)
受感染的计算机: 4,544,122
初见: August 30, 2013
最后一次露面: February 6, 2026
受影响的操作系统: Windows

InstallCore是一個廣告軟件擴展,已被PC安全分析人員歸類為“潛在有害程序”。有許多不必要的行為是由InstallCore引起的。其中一些可能包括以下內容:

  • 受影響的瀏覽器上的刺激性重複性彈出廣告。
  • Web瀏覽器重定向到包含可疑的潛在破壞內容的網頁。
  • 受影響的Web瀏覽器上突然出現,而未由受影響的計算機用戶安裝。

InstallCore可能與免費軟件捆綁在一起,包括作為瀏覽器插件或工具欄,可以與免費軟件一起安裝,除非計算機用戶明確選擇退出。不幸的是,在安裝新程序時選擇退出InstallCore和類似的廣告軟件可能是一個困難的過程。在許多情況下,計算機用戶必須使用自定義安裝或高級安裝來確保僅安裝他們想要的軟件,並且安裝中不包括其他組件或PUP(如InstallCore)。

許多反惡意軟件程序可能無法識別InstallCore,因為它是一種低級別的威脅。因此,安全軟件可能不會阻止PC用戶安裝InstallCore。在許多情況下,計算機用戶可能不會意識到問題,直到他們的Web瀏覽器開始用廣告轟炸他們,並開始違背他們的意願將他們重定向到低質量的網站。儘管某些計算機用戶可能會發現InstallCore有用,但是InstallCore在受影響的計算機上引起的許多有害行為無法彌補使用此PUP可能帶來的任何好處。

具有相似特性的InstallCore和PUP是什麼意思

InstallCore會對Windows註冊表和受影響的瀏覽器設置進行不必要的更改。其中一些更改可能包括以下內容:

  • InstallCore可能會自動更改受影響的Web瀏覽器的默認搜索引擎和主頁。
  • InstallCore可能會將廣告添加到在受影響的Web瀏覽器上查看的網站。
  • InstallCore可能會降低受影響的Web瀏覽器的安全設置並更改受影響的計算機的設置,以便在計算機用戶啟動Windows時自動啟動。
  • 更改了受影響的計算機的設置,使得很難從受影響的PC中刪除InstallCore。

由於各種策略,例如,即使在計算機用戶卸載InstallCore之後,仍保留在受影響的PC上,可能很難刪除InstallCore。已報告有關InstallCore的一個問題是,如果未正確卸載,InstallCore可能會返回。

處理InstallCore和類似的PUP

諸如InstallCore之類的瀏覽器擴展僅用於一個目的:賺錢以犧牲PC用戶為代價。儘管事實上已經推廣了InstallCore,作為在Web瀏覽器上獲得額外功能的一種方式,但是其中許多特殊優惠還是有疑問的,或者要求計算機用戶填寫可疑調查或訪問可疑網站。 InstallCore可能會在受影響的瀏覽器上顯示大量廣告和不需要的內容,這使其非常難以使用,並很快變得令人討厭。 InstallCore可能會在受影響的瀏覽器上查看的網頁上插入橫幅廣告和文本鏈接。此PUP還可能導致受影響的瀏覽器顯示彈出窗口,並導致許多性能問題。例如,受影響的Web瀏覽器可能會嚴重凍結,崩潰或減慢速度,通常無法完全加載Web頁面。 InstallCore也可能會影響在受影響的瀏覽器上使用的搜索引擎,從而使它們顯示廣告,而不是真實,有用的搜索結果. PC安全研究人員建議在可靠,經過全面更新的能夠檢測和刪除PUP的反惡意軟件程序的幫助下刪除InstallCore。刪除InstallCore後,計算機用戶應將此PUP更改的所有設置恢復為默認設置。

SpyHunter 检测并删除 安裝核心

文件系統詳情

安裝核心 可能會創建以下文件:
展开全部 | 全部收缩
# 文件名 MD5 偵測
1. f_0002d9 3503a9bd742e8c006318a45e0e74124e 693
2. bitcomet_setup (1).exe 3198d49b3340abc014fe48105dbcb1e0 397
3. 6c480bb3548f03a2b70953942943c9c7efd205d7e45d694783fa4ad0ea6f8bf2 4ac6d206aa429c9eb7ea9f31e6653e65 201
4. b549bb5041992d049a542a4ee96854153a6bec1e8891eddd75bd59d0c4b6f12e 71776dc44e1a07ee318832634b29c096 184
5. Bit5AA8.tmp.exe f83f96418b9cc63755101118a0ae59d5 167
6. Bit3763.tmp.exe a482b3b670befeb3a73af1dfafea9602 166
7. bitcomet_setup[1].exe ee250a5366e37d0054e574179bbac75b 165
8. f_0078fc 0a8ef10c91fc9dd32fb62b5b6a3cc6ad 149
9. Bit3D60.tmp.exe b0c67496ee35317cc2a4bd4a41c648b1 137
10. BitC61C.tmp.exe ae3ab2debc6c9972ba43527d0892764f 134
11. aTube_Catcher_2241024900.exe 4e4c2e5a5dc4c8a47d8f69292f91a89a 123
12. BitB646.tmp.exe f603b2aa3e80ff9a1fb44c0955cd04e0 112
13. Bit8508.tmp.exe 2fc58c411b7f32a701b52294134ad060 109
14. Bit79D0.tmp.exe 7e6328af4e4da7f5c42c8d98494597af 98
15. filezilla_3.49.0_win64_sponsored-setup.exe 8dbbaa884b8f0b1571dbc32acf13b133 85
16. BitA2C9.tmp.exe 38435866bda2da5d879a9c8626713a26 81
17. Bit232A.tmp.exe e0523261bf58a39304adc6011700bef9 78
18. $RWHQK54.exe a846ec26b88a1803ec0ebb46fc722f31 72
19. Bit5E0.tmp.exe ab7859996516e94088925cd6da773a06 63
20. aTube_Catcher_1332679800.exe 42ff6047caa0ff7dea7b1604865ba3a2 51
21. bitcomet_setup.exe dd610db266069bc95d5aa6df74fbbd81 49
22. Baixaki_Format Factory_2913681990.exe 2125d5a9106f210f322e2032b837c990 45
23. 9abc45ed39955ca1ea1b61873f4b87f84e2a391daa5a6ebdb4ca83352133ff16 e83d5030209ce640578653bbb28166e8 43
24. $R61WGVT.exe bf02d49760cfa812c5b9c13739069917 41
25. aTube_Catcher_0070660122.exe 8b06462f7bcb9264e3c44fb6cfc7c6c8 29
26. media_player_1328494215.exe 5231677253f27135ad18d91b5cd25172 10
27. VirtualBox-13122-AsystentPobierania_4091853220.exe 2753a597c984256161a182bc99bcc42b 8
28. messengerfordesktopsetup_1818897196.exe 5dc9126345c686139c87645f81481299 2
更多文件

註冊表詳情

安裝核心 可能會創建以下註冊表項或註冊表項:
Regexp file mask
%localappdata%\[RANDOM CHARACTERS].del
HKEY..\..\..\..{RegistryKeys}
Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I
Software\csastats
Software\InstallCore
Software\ProductSetup
Software\SoftSuma\Evasi0n_Setup.exe
SOFTWARE\Wow6432Node\InstallCore

分析报告

一般信息

Family Name: PUP.InstallCore
Signature status: Root Not Trusted

Known Samples

MD5: ed289f2d134e9f022c537f1895134e73
SHA1: 7ea9f4f2db0c9a1a82d23853bfc15381c9420dca
文件大小: 1.28 MB, 1278512 bytes
MD5: 8c46590c5791ee103b400940d05ab0c9
SHA1: 0eee79dbb087e33053f52be3b2a8d24b382472e6
文件大小: 1.23 MB, 1231944 bytes
MD5: 6e9e17913c6d226b4037cd6e8f98cd43
SHA1: 92f3a1170acbf00bbbd22022c8519b928ccb0c01
文件大小: 1.67 MB, 1668096 bytes
MD5: e8d1c0a64e433dc8d926ed09339cb8bf
SHA1: 7c9d5d046c6f96dd55036c4bc8fb9710629d55e9
文件大小: 1.10 MB, 1099380 bytes
MD5: 9dfeb383bc8263a813b03142192905b1
SHA1: b1e8a89b109301c2cec8608ebc19a4cc0842c7c1
文件大小: 2.46 MB, 2458480 bytes
Show More
MD5: 8f9072ab663fcbbf35485c34c2dffa74
SHA1: e01a494e94ca3695b48419c1dbe81f7511b47fdb
文件大小: 774.08 KB, 774080 bytes
MD5: d8476a25e7cacfc4a2286140252b8a81
SHA1: df63ea09c17337b5038031b16168af645f3db5ca
文件大小: 2.14 MB, 2144129 bytes
MD5: c4b081878d49751324ee1c2bde16d547
SHA1: 77d58d47f23a2dc14c3b5436b7623053c66812b0
文件大小: 4.43 MB, 4425232 bytes
MD5: 06d2423337429b6b19c4eb2c9976ee16
SHA1: 7c96d0426eb42d6a718b7a04bb1c6ea2d7edf4ef
文件大小: 1.60 MB, 1602536 bytes
MD5: f576bc3087b3f1202d2df4f3a36acf50
SHA1: 6acbbbf39a0284143ff47d5e65e8253be92f16e3
文件大小: 991.82 KB, 991816 bytes
MD5: cd93be8dc38dd1c0043ac1b92b1f43a1
SHA1: 5b19cbbd7319b2a333af213340a1a2faa4757c0f
文件大小: 2.33 MB, 2330088 bytes
MD5: 5826dcd2575a5553cdb4a813816fb45f
SHA1: 5b9720b060192e98d8431c00efc9e32faa55852c
文件大小: 2.54 MB, 2539544 bytes
MD5: 698c0c094dcfa2aef97db1bde0eb85fa
SHA1: 69228ff061d3bf8a6acf0b2497131caedc24b90f
文件大小: 2.59 MB, 2594691 bytes
MD5: 005df392def18b7d97e85a872ccee8bb
SHA1: c8d277fafdf44a0750f72cc440c4ed7699ef11de
文件大小: 649.30 KB, 649304 bytes
MD5: a3b875605d58d7b0ad134760db5d41ee
SHA1: 46693a8c55376c5d9904d11dbc80b4ca4313394e
文件大小: 3.21 MB, 3210656 bytes
MD5: 57e9cc25045d59a07d785a6a57a82af4
SHA1: 3b36faab9b694b9d0733b0f02ef06214ff415fe5
文件大小: 2.13 MB, 2130188 bytes
MD5: 7c07d353bdad2b9aca013bbedd5e1026
SHA1: f65bdd319be490185a7fdf46bf7b8c7657e3bb2b
文件大小: 808.43 KB, 808432 bytes
MD5: 06e95d777c313c97934f72b7d77705d0
SHA1: b26d1d90cc1e63890c5bc5f19879987513eb4e4a
文件大小: 2.09 MB, 2089208 bytes
MD5: 4b2c898b1e5025472be5b4a1248e1ef3
SHA1: e7c2ebd11bdfc90dcd490ac169e1630f7cb36132
文件大小: 1.19 MB, 1194376 bytes
MD5: ecc9c1a60486641df2674d201dbfbd38
SHA1: cfb231b0ce415c038243173c7bb2a1a157bd8bc0
文件大小: 1.63 MB, 1627684 bytes
MD5: 0e0afad0b66a4afd8d2de15caa1a087f
SHA1: 35531354472f2640b2cf9a88b1e1a8cb50184513
文件大小: 5.86 MB, 5856976 bytes
MD5: 685b3e148fad5f2988534636b78254e2
SHA1: b4e0f114c4f07e8bcf861de1b8714b70da278ea6
文件大小: 2.72 MB, 2722617 bytes
MD5: 8e4e568e17bd38987d1ff73e961e73a6
SHA1: 793a3145e70748d2b1fe8f320ae113ae33724907
文件大小: 1.88 MB, 1881120 bytes
MD5: 1270b614731996f2288f3839cefe3f1f
SHA1: 6bf5fe5edc4564e9ba658584694a9fc13320b525
文件大小: 633.62 KB, 633624 bytes
MD5: 14c943ee0141d50160e2523c9a66d97b
SHA1: 36a29984a1539e2926c3b5efa4774ab022468aea
文件大小: 686.33 KB, 686328 bytes
MD5: 803bc9fad94fdca0cc6b80a750e351cd
SHA1: 79a91baaefc6aa02addfe480d39d433a76be31b5
文件大小: 2.65 MB, 2649966 bytes
MD5: f74c6ee02113e4b2d2db669c43725a99
SHA1: f3d7a41474585947d6f93a0ffc0fa93759058e39
文件大小: 1.83 MB, 1825504 bytes
MD5: 7a7c320a5bc4c2770435b2b7c89ce47d
SHA1: aadc00eb21cb3ed33ab2a90b539ec09ba037280d
文件大小: 1.01 MB, 1009520 bytes
MD5: b3a1f2f0da735271acb13a95a3d69094
SHA1: f26ee557fd4b12a7e95e2ef740f671c9fd9ccb34
文件大小: 1.24 MB, 1235648 bytes
MD5: d43945b65c7ae3a76cb2575515f91c51
SHA1: fd6660b34073fbd47e9c9bd2e7a79dd6ad1b010d
文件大小: 664.86 KB, 664864 bytes
MD5: d5c184fbeeca699793ce2ac37643251f
SHA1: a3fcd28261f4e03d93209308b91a6b1963c9f99b
文件大小: 1.21 MB, 1212000 bytes
MD5: 10be86ccf592ea16e733fdbce36f97d5
SHA1: 999563aa5b0a78198d343fbf54dfe43c15655409
文件大小: 550.41 KB, 550408 bytes
MD5: ddb96f8530a51fd23e4471ed4eded425
SHA1: 950d7d7ab53ac6dbe4a400438db97b7c0a36b798
文件大小: 2.15 MB, 2152960 bytes
MD5: 3f629437010cf4d6cf7c3cc9f1e1c650
SHA1: e10e9ca9b32c3bb25b057ac1bff08f2386bceeaf
文件大小: 681.53 KB, 681528 bytes
MD5: 7ea85dab202415cc23ea3d7dfaa7b187
SHA1: efcfd71b107d926576d5a97b3a66316953aea03f
文件大小: 1.77 MB, 1774880 bytes
MD5: acda3f9064524c1061bc7c5e76cc2000
SHA1: c52c08ba9db029dc2bab621d6979e3deaeff3b2b
文件大小: 1.30 MB, 1298896 bytes
MD5: 27bb583e4603297f89f6f0832dda10e0
SHA1: 0917c275ddbb365faf4cb8924b481338122a02b0
文件大小: 1.50 MB, 1496584 bytes
MD5: 8c43f75ed9aa261ec2c20d129ef1a2df
SHA1: 074cd53a74f9a3ea8af1fe4e6fc35d28fc20d0a7
文件大小: 983.07 KB, 983072 bytes
MD5: c0b2536f5cd323c707e17943cceb998a
SHA1: 259f41722338a9693183f912af481ba7367a12e4
文件大小: 1.30 MB, 1302992 bytes
MD5: f6455c68c46d0115d1fcc9cf5750f66d
SHA1: 840518b67409edeea23ba00e1131fee41e389cb9
文件大小: 3.74 MB, 3744824 bytes
MD5: ca91da421a85dbe075da9e6d9fabfa43
SHA1: 5a250bbee5dadf2513ce9172468c53589c100a3c
文件大小: 1.57 MB, 1569496 bytes
MD5: 1999d78d1580ec67918ef5d4d056dff0
SHA1: ab2ce66fa00c8081205e948de7341b0a29d9892a
文件大小: 1.23 MB, 1229448 bytes
MD5: efa678d0647daf1e708766e47de03591
SHA1: ae1920c49068cc948b6db17afcc8ddad04811940
文件大小: 3.31 MB, 3309600 bytes
MD5: 338b6e21ef63f9a02467e8d83aaba0fc
SHA1: ce92fd73161e5e2974a573b3141206a53342da8e
文件大小: 964.50 KB, 964496 bytes
MD5: cee99e4633a053c70802aad4b64e65db
SHA1: 26658c909c185b334219647ad323be0194824cba
文件大小: 985.53 KB, 985535 bytes
MD5: f71778fbe6261906eeeb91a7db4836ee
SHA1: 0b3383be6a0a1151a24bad50f3bfa3bbab79a62a
文件大小: 5.11 MB, 5112288 bytes
MD5: 27d076ea1e360f25474de98bf5fdbfa3
SHA1: 8298ac63defecc38b7b1943dcd25ab302c5e063b
文件大小: 962.13 KB, 962128 bytes
MD5: 2507a7db14f223878dbf23fb4ea33a7d
SHA1: 05bdd5a8e36da5729661f63672843d89f99d7612
文件大小: 1.82 MB, 1824944 bytes
MD5: 58b7c7d3f11dcf03140e3432b2634531
SHA1: fae15fc7ff6d1c4dfd43fa86101885a1e8736e6f
文件大小: 1.30 MB, 1296336 bytes
MD5: fbd88c26329a641d642c54a414d7eeb7
SHA1: 3ee13af2a36240cda9ef5e2f9f61092d2280364b
文件大小: 3.57 MB, 3574920 bytes
MD5: 409ee3f3df9b3ca22b5f67589dd96fa6
SHA1: 6fc0416eb366073e66a0837e3c28c6fc83939344
文件大小: 3.25 MB, 3251917 bytes
MD5: 71a8f774cd3ba7268bb24e9961161f06
SHA1: af39679dd5035d948b7e7576ae9afae5ce1fd116
文件大小: 577.91 KB, 577912 bytes
MD5: c73ea444427f973e201c5d19a6ec744c
SHA1: 90b4e4f5d2eba295aa3739d914958e658bb65a8f
文件大小: 763.98 KB, 763979 bytes
MD5: c7befe7a37ae6634eb1913ceffa6c18b
SHA1: 15f2a5050c509ba0a6d86e5bee4075997747b3ae
文件大小: 1.23 MB, 1228048 bytes
MD5: 362725bf362fcd72db55a1ebf62caae3
SHA1: b8b45b5c8da0a17962fa27273603dbf984ae50dd
文件大小: 979.34 KB, 979336 bytes
MD5: b1b3d7ac0ed7f709d225730673948925
SHA1: dc8c2b2de3b83549b5d85ee0d1818870d96b8836
文件大小: 1.51 MB, 1507600 bytes
MD5: cf401b72e7807be8678aa216bafcc6a8
SHA1: 52a22d74f877d4f06918801c90a035956394b951
文件大小: 957.76 KB, 957760 bytes
MD5: a192454e9a18ac749cb4cfd99fbe71c4
SHA1: 91c1b729309f5bbf83094ac1f31dc7015f5562c2
文件大小: 983.12 KB, 983120 bytes
MD5: d954fdf473df4a0e713c6d1e1ed64dc6
SHA1: fd7480eca81f2e75565c44ce938a0f3928476484
文件大小: 1.57 MB, 1569761 bytes
MD5: 1275b779db63960bacdcbad77116a100
SHA1: 6c963fb259a14ad199b887d2710b98b9ed6f86a5
文件大小: 1.57 MB, 1572864 bytes
MD5: fbe88b3435bbe1484b5f4b41ced05da1
SHA1: 5a96e5323b545bbd2343deb2198455775b27c056
文件大小: 649.97 KB, 649968 bytes
MD5: 2a96c24d99eebc65b747ed8ed4dd00ec
SHA1: db1ea474ff667fb7300a8bc88a5c52be0e0e1cb5
文件大小: 3.31 MB, 3309600 bytes
MD5: 82e15515ccc6b112ff3c3213abd56339
SHA1: 1047be5bbab6f74c02e246c410720eb0cb6144c4
文件大小: 1.30 MB, 1302119 bytes
MD5: 3df91fbfcae4487220b6177638ef06cb
SHA1: df93560287b8e2c23ab8accad73a6051e37aa805
文件大小: 1.42 MB, 1422568 bytes
MD5: 435779caef0bfd16bf1ab9b7edc10e80
SHA1: 14da3ad530e8e79cbf9ea76eaccce7a686dd4b22
文件大小: 2.33 MB, 2333008 bytes
MD5: f9713343f218e0feb4ba681f8824a7e6
SHA1: 0645f82c73e7782297ad2232f9dc258c699bbd5c
文件大小: 754.24 KB, 754240 bytes
MD5: fdf7013611d769bb8c1006861e1e74fb
SHA1: b32004799061b0a6f1aeb8b6aae1e6a66c203f6c
文件大小: 1.00 MB, 1003576 bytes
MD5: 0d470c4abe48752dcb692c9623998eca
SHA1: 9dcf378767eb5329ed4325a3fe40d1afeb6a9f5d
文件大小: 1.88 MB, 1878616 bytes
MD5: 60a6f4937bc523135426a87220f1c208
SHA1: fedfbafd80eff765942e5241cc1a707d2c44a199
文件大小: 1.18 MB, 1180376 bytes
MD5: 7db932a2e3d0516ec47559a44dfe0750
SHA1: b681d8c4b2f3d855faca402faa9a9c965a52ac33
文件大小: 1.59 MB, 1587096 bytes
MD5: d640a5b2eb9e0ff11839135378d88fb3
SHA1: e770fd21de3efc630a4ccfb4a7ea279a39cc0cd0
文件大小: 5.59 MB, 5591456 bytes
MD5: 075c4b8934f5736f28c162342a6b17dc
SHA1: bba54e38ebeb0353eb521daed5b9bc5ba4556e6a
文件大小: 1.00 MB, 1003864 bytes
MD5: f154766ed2648ec2af524e0c557289e4
SHA1: 29aabb3025a4b1fa7171d9dd57e64c71f2e2f86c
文件大小: 969.92 KB, 969920 bytes
MD5: 0dffb6ddc3382c4ced14b8e55a5bfb13
SHA1: 37429384b93d8f7b9b843f8b5d9390e68225f697
文件大小: 692.96 KB, 692960 bytes
MD5: 32dc6c71acde175febabcf1b71e87c6a
SHA1: 720996e26ac5fcceef494f26099933063b9bf089
文件大小: 3.40 MB, 3400617 bytes
MD5: af9b3f1ac6229c960d9b8fbdb9ac0512
SHA1: 35db0ac699b236db47ee636b2acbaac1ab3a8187
文件大小: 1.86 MB, 1855904 bytes
MD5: 36a6fac55bf0fb0636c08dd372d2e08b
SHA1: b239c80926ce14ba149e5d35700857df8a64591d
文件大小: 2.90 MB, 2903632 bytes
MD5: 8d1534e6a4471dda9a38e37fbad1d64b
SHA1: b56996588b633988752462f3addde53bc1071b9b
文件大小: 685.25 KB, 685248 bytes
MD5: c715c10c35f96fdef879efbe92b61b7c
SHA1: 5a89e7b3bd496176fb3a195dd32d8e43559b23b6
文件大小: 1.57 MB, 1570592 bytes
MD5: b58defa88fdbfe8d586429f8b2f2352e
SHA1: 01f6499450117d4358d7c08c0af530fea49ed748
文件大小: 2.29 MB, 2290880 bytes
MD5: 2696ddbfe3ae8b0c797db32cf94d857f
SHA1: 6228f99d8de04cf6272631cbb66bd27473b66312
文件大小: 828.44 KB, 828440 bytes
MD5: 2042d1e041c893aaefe595f0c84ba61f
SHA1: bbe090e3b92910f3552c75f6192f2b662686f57c
文件大小: 673.61 KB, 673608 bytes
MD5: 3977ec5b57a35fb9ec9c09b07ecfc78f
SHA1: 3bd0418467034c5bbab21900b8af8ed0b3b72ed8
文件大小: 1.29 MB, 1287520 bytes
MD5: b7bacebab36a4218bb99f3a82f8b79d5
SHA1: ef1c4b210580e4f912a8d5a31eff3e88b93fc14d
文件大小: 1.87 MB, 1867472 bytes
MD5: af7338bd2b20db7e236cca916c93b346
SHA1: 947aa1f4ced886f24fe2977df9ccc3b64fad7dbe
文件大小: 1.55 MB, 1551516 bytes
MD5: 9da82ce5a366e029a6bac2874a2c7462
SHA1: c984bdd3a03a7f128a3af400d1f3d44141cc0fd1
文件大小: 703.26 KB, 703264 bytes
MD5: e0cbda18a7becb06e23b61e5c589ba6b
SHA1: ed5b3a80b0b2ee47fb231b3883bac2d0c26f076d
文件大小: 1.26 MB, 1259368 bytes
MD5: 24bdb263f7e5a5d1a35d5e34e6cd9b51
SHA1: befceb835a358da471a0cfc5211b3f3f6a113f58
文件大小: 1.51 MB, 1513763 bytes
MD5: 13a600eb59a9ed6ae9306910417c9af0
SHA1: 8737cad42bc87274d897217376ec87859e590d1a
文件大小: 2.21 MB, 2214704 bytes
MD5: a142573cfcf0b468aab366268b97b840
SHA1: 962938d0a2dd96013d5ef0930b40411f0e34244a
文件大小: 3.31 MB, 3309600 bytes
MD5: 6a531a1196ff0696d86c763648ea1438
SHA1: 92ffb41a33bf1935e449d8476006aaff0b9e6956
文件大小: 4.42 MB, 4420624 bytes
MD5: ec05841a88853d5c0522bc3ce204281d
SHA1: 6c8e91b3477c37f995d967833f5e23c8301b46b4
文件大小: 1.58 MB, 1579472 bytes
MD5: cc83059b43a1c1fdf5cc4e65fd88b797
SHA1: 048d9e3a51bd1dc701c7e3f03b05ee99748d23fd
文件大小: 1.49 MB, 1491072 bytes
MD5: dc75b1140f7185c2eb3579f8d6bb8a0a
SHA1: ba4bb4f0f9b0b52ab9400be371597afab58b8a96
文件大小: 1.32 MB, 1319200 bytes
MD5: 4eb122b256dbb1689b071f0a594660c0
SHA1: cb69f85fb609c1ae05a4304b4ea6dd5d6d8dfd96
文件大小: 2.11 MB, 2108232 bytes
MD5: 9d31d682bc63259c235d3d8c319ea506
SHA1: cb1d6ea27690144d669d503cf3c708911599846a
文件大小: 3.40 MB, 3400618 bytes
MD5: 06affa8c4ba10590e243eb5f35445314
SHA1: 29e97fbf9c90caf109891a438bc0192282c16e12
文件大小: 1.49 MB, 1494224 bytes
MD5: 539934f096fa4155308f034e1869d112
SHA1: 916940bb6021cb01e1d1fa4ae3345eceea3fe1ee
文件大小: 700.90 KB, 700904 bytes
MD5: 1efb2acad767620876e4200d789d0323
SHA1: bcb9efebd45c6556d11e141adfb6865e037d80d0
文件大小: 2.90 MB, 2898694 bytes
MD5: 3572103f5706aa7c1c52756de2a71970
SHA1: e6e3ca1012e8904f759e7b31206ea8ea02337164
文件大小: 3.39 MB, 3391136 bytes
MD5: 09eba025b996ce64382bfe474703cdca
SHA1: 34e6fb183f8640671dc15f17369cd5012358dc95
文件大小: 2.90 MB, 2899700 bytes
MD5: fcf73d855c71f6032e9f24c2271d36fe
SHA1: 900fe177fbe04f316701416c12ecb2664726372c
文件大小: 1.56 MB, 1562240 bytes
MD5: 6b0c2ddd6c082b22b4c13b0ccd935804
SHA1: 31b040b67948b862fd95758b87cddbc96bb5020b
文件大小: 2.56 MB, 2563544 bytes
MD5: dc6b9f78c01b55ee21837e5763ff746a
SHA1: 689b3928d677a9455d4d81d52e2cd333919e4c1c
文件大小: 1.34 MB, 1338291 bytes
MD5: 892be2f8e9432f1cdf7dc8228f2a20c7
SHA1: 72f14729d86ca36ba842dc584a3225e93d7a975a
文件大小: 980.20 KB, 980199 bytes
MD5: c6457b6586c29a5dcb001865553866f8
SHA1: 4ee4aa49bb5fc61af317753bdf3bdd1d4b27bb0d
文件大小: 2.21 MB, 2208112 bytes
MD5: af74033d49b46668c4b7d9f4fccc954a
SHA1: 098dca643a3c8e8eaecda728221d202e583417ea
文件大小: 3.64 MB, 3641344 bytes
MD5: fce7cfc7d7c38a985c3e67bc42f596d3
SHA1: 9ccc7792763e0b9b036cff040326aeb9dc93eb9f
文件大小: 997.05 KB, 997048 bytes
MD5: 1d35cbb11fab727630bf9de51ed7c930
SHA1: 26156b539adde34f43c3b87f8261d1a358ac9ce3
文件大小: 1.65 MB, 1653632 bytes
MD5: e9e629a996dc8d9c716f3517bf3270f1
SHA1: 6aa71a30da5fcf8315bbce8a78044f2212ed5417
文件大小: 1.84 MB, 1838663 bytes
MD5: 10941e5094dded0e699b860d917d14ca
SHA1: c6850958b83cc21d4804c266ebb0a622637f0411
文件大小: 2.92 MB, 2921144 bytes
MD5: f287358efc0116c483c428785d16a47d
SHA1: 6ff6f43b7295ad821994b8a62a510a2f534c1a09
文件大小: 1.01 MB, 1008560 bytes
MD5: 74e5189b6a2e04eaa54e81b8fdc47972
SHA1: a9ca0523399367bdbb38ca6f45db5a4832f07977
文件大小: 531.22 KB, 531216 bytes
MD5: 5a9c7ed26d51af3656f654a0816d6c06
SHA1: c82c94b622e5fc78df4ce02bb781e8830cd8b181
文件大小: 1.18 MB, 1184736 bytes
MD5: 67d36b24e4f0f71b0731c1a287f50ee7
SHA1: 20a4535ca190e762ecbee95c20ec3df5458a3ed2
文件大小: 1.47 MB, 1466656 bytes
MD5: 4c650d92c6dcae77c1ccf4a3140ce7c1
SHA1: d88c65082e90c2ff2bae770817b3549e8952539e
文件大小: 619.18 KB, 619176 bytes
MD5: 29de0f2fe516e64e647e152e10d2978b
SHA1: c4c5e9470ecc86444566ca5ffa583c0453a0724a
文件大小: 1.48 MB, 1484316 bytes
MD5: 0bfa6b5d2bcf24346f862bdf8c534c39
SHA1: 36b1a6ba595a94ce7deaf83084b4f0bd8093c194
文件大小: 4.42 MB, 4420624 bytes
MD5: a686841fcdef5396ca10283a35c64654
SHA1: ea67a7de923f1a829e2f1f9252a48d58a7cda005
文件大小: 629.52 KB, 629520 bytes
MD5: 42126797e90bffe3a2690ce6591ffc4f
SHA1: 912a14214af1062b7ba185a5a07fc1c7669d6147
文件大小: 673.25 KB, 673248 bytes
MD5: c083a08dc512c390a2c03c648f03d33a
SHA1: b049f748e53aa755be149eb92ef721b315c6f835
文件大小: 798.99 KB, 798992 bytes
MD5: 236d6427133795cd84e1365aa8413609
SHA1: e4c55fdba5f554cefa3183fd56f80df3de3656c4
文件大小: 1.52 MB, 1520592 bytes
MD5: 5e4ee02c186ecdaec64d21d35814e301
SHA1: 96429a63bfaae93613c6ab832006706fc2c5e7c9
文件大小: 663.31 KB, 663312 bytes
MD5: abd2852a37c3e376009ad4bda7105a41
SHA1: 9a1ae0d5d19e3e25b1737c678dfbae0b8150e200
文件大小: 229.89 KB, 229888 bytes
MD5: 64ec6af052be87e7103c10a904ddc283
SHA1: f00ccbd02bf0004052e3588bda1665c7d7d98d2a
文件大小: 1.05 MB, 1053448 bytes
MD5: 7683aa7cf96629388ed3ecd72949551f
SHA1: c73416f7562f0307f253f67ee8dae86468d1990e
文件大小: 1.58 MB, 1578768 bytes
MD5: 801b714bdeb39d2abc968847e48275fa
SHA1: 3f046865a755511bd8c19154bbb3e30d50d893c0
文件大小: 3.57 MB, 3574920 bytes
MD5: 759824c6661179267ff08f7b3ebd9d9b
SHA1: e012a9bb46a61ed2847ab05e94a2fcc30cd568e4
SHA256: A8FC9B2BE17CF5EE2669B3300686FF4DA9D9201879FA33DD807772DFB2B12D63
文件大小: 2.10 MB, 2103008 bytes
MD5: 138cc41e05589a2be436655bd9bc11ee
SHA1: dc70702b742e7320fb28861743a71673ce2795d4
SHA256: F46635181F943073BAC0BF4AC80AB1B6822D49B1B9C6E3465977565532EA93AC
文件大小: 3.40 MB, 3400852 bytes
MD5: a1ff24a8a6ee1b7660aa90d13467dcc5
SHA1: 17cc379819cde5cac8b6f11a5015f4c4d6a64578
SHA256: 7D172519BC84CD190B00006C5D2D41B95BA3C86B142037C9369A70EA44E4B04E
文件大小: 3.25 MB, 3252928 bytes
MD5: eb09d486f51a8297e35abd300d4d24ec
SHA1: e0e00e47b6c7adf100e35e3b3b4f09822093cd0c
SHA256: 1603CB16B80B16C897417A62C43BECFE3BCEDBE07022413BB68F86C57E6D4171
文件大小: 716.16 KB, 716161 bytes
MD5: 5501bbe99df73460bfa460a928d78537
SHA1: dccecfa3d5f99d626d592af7ad599a8255c6b11e
SHA256: CF33AACBF2B62493C13108B0E4853A65CA0185CD6A65A7BD5B6E5A13EA4497E6
文件大小: 5.86 MB, 5863136 bytes
MD5: c4753624c40f70e89a87ebb2efc031dc
SHA1: c1154473850690deeba6cb9472758a43c6ede043
SHA256: C8A3B7BF349679F0B297A01E43A4CCA8FF41B062428D91914C2C9F1DE6A6AD21
文件大小: 1.47 MB, 1466656 bytes
MD5: 56a1f5e8a8c17ae291dd738a490ce1e9
SHA1: 3816edd71e1e0c3c9cfa1aa839ce93f29b0bd1aa
SHA256: 16918FE42F449615F7F408707EB593A11D7A7FB1FE741DFE5FEB313BB3E908F3
文件大小: 5.58 MB, 5584288 bytes
MD5: 71a4650cadb37c9fd453c4ed86a073b8
SHA1: 520ca47e2f8976503126f9c53cb93b34f6fd7a05
SHA256: D64EA3F56FA9D3AC799D99CB92FE88521E6BA41ADEEDBAECD9DF5B8CD2126662
文件大小: 1.67 MB, 1667968 bytes
MD5: 2aca02cadb616f5a662ffbc107c63284
SHA1: d54e653814e73ee5f0107b7256f0f9b6a0d37fb1
SHA256: BB94169590352FCDC079B9A3E1C4D5515E8FEF06454F9186EEB824FB42A62938
文件大小: 3.68 MB, 3683328 bytes
MD5: 188c06d17548792c726c77572a4877c0
SHA1: 67f5018b0f7612bcbcbdf145bd092ef3732c8e05
SHA256: DC5EAB967A607941ED18E49B0027F14CE3EF2B834044011050CA585296C068B0
文件大小: 4.40 MB, 4399008 bytes
MD5: 7c923987fa7cb1a5f6d66fbfb2c0dc3c
SHA1: 6a1acf994603a26345b39a79cd891225a0cd6d42
SHA256: E67A331C43522064DFB087E113C25D7A578E0ED645E2056FBF6CE789A037AA8E
文件大小: 3.38 MB, 3378080 bytes
MD5: e59e5746ff0291486f139d2dafb4a2d9
SHA1: f5f4e2aeff46aba75c6483fbf0166d3e3e6e11db
SHA256: E140C0DA536B731BBBCAB44FD14EC70F3CF91554EA11527195BF301AE8DBCB08
文件大小: 953.72 KB, 953720 bytes
MD5: ef424dccd7fe591c184e89574c03fa16
SHA1: 6d43d9ad9b59d7090194e49fba555c195e4fa292
SHA256: D49269122DEEC4A89A1B004ECC6AF0762F68BB78CCFAFE5F5D64EAC627FAB319
文件大小: 1.45 MB, 1446648 bytes
MD5: 85dc8cfe7052fd50ba685156964fe3a7
SHA1: f2e09d4e0c2b78f6f293fa9f1911fd089d856f19
SHA256: 79DB625DA47BC772D1FB3DA22245C44CA506C5CEADC7EB07E7BBC5D79E2C85A7
文件大小: 1.52 MB, 1524744 bytes
MD5: fae8bc2bdf1f7906bdbe436ba9bb64b7
SHA1: 9a7319ff0e5f3d825f84c5537485cdbd1ffcab4d
SHA256: EB806C4915F4361F01DF78550757741B530E6D6CC0F6881EA59F180E383A1FA7
文件大小: 1.80 MB, 1798216 bytes
MD5: 5af955ce25cc67a8600520ff0a31de06
SHA1: daed4512cd092a03377552cdbfcd4890ac9af6bf
SHA256: 743269FE129DA22B4233B56D1965B439138B561ECD0BC8EB4593388FA7756B40
文件大小: 1.70 MB, 1701768 bytes
MD5: efc904ea2c385dbdfa87c56c76b5881e
SHA1: 5af2558c5bad930fabdabc50c6699c47183d22bb
SHA256: 77EF04393843D81BAEB07FE7FCD2595D7D58DA7A02BF5AE6BF2B234EDEA3CF7C
文件大小: 1.73 MB, 1733426 bytes
MD5: d58638186fe7c47113724d45c0eb2bf7
SHA1: b351445bdcc7cc198e1940edfb27afa01298a4c6
SHA256: 57D65A0413DF842A9D5FF924769C6F64E6ABCA90D9399037E61E99003798FA6B
文件大小: 1.51 MB, 1507600 bytes
MD5: 5c36c892ac59330c66b46468062c20f2
SHA1: 47f83f3ddd36f40725eb731f2825999fcb07121f
SHA256: 530B3A85B43514798483C58BD61ECC2C158C54DD762204E72B7FD5F8FB781F29
文件大小: 654.96 KB, 654960 bytes
MD5: 82fe9cd39a48b1177b515a6b0b4630e8
SHA1: ba7c60b97a5bfa0629ed8b529feae47b566b2c82
SHA256: 423D7325FAD042965DE93E31E20438741D57680490B06A21AA767B648A5551CD
文件大小: 754.22 KB, 754216 bytes
MD5: 0d1e09c01e55fd0261a63cbf398b9f55
SHA1: 6875ee4aa1f721329a03a9ef28d50b190cafe78a
SHA256: 6FD021CC4E9104E57DAB662693A7A5D0FCBDFCBF3484E6AD27E2F89D7915F90B
文件大小: 777.63 KB, 777632 bytes
MD5: f340ac4dba9b99c47f7d552e77234546
SHA1: ab47776a0b7effceb7f6407d8f4ca5a233a20aca
SHA256: 703CE610E6C8AFAABE3E3CCD3179786A01447F3CCF5AB67055FE2C8A9C066374
文件大小: 1.67 MB, 1673271 bytes
MD5: ca989996e718059301d58eb5d85feb95
SHA1: 41aea230e1ebf9a6695b99d8ad0911ea3cdd0225
SHA256: 79FBBFF98ABFAC434148272896127912E5BCB3DF8F28935C818FFCECD44546CD
文件大小: 1.61 MB, 1612496 bytes
MD5: a35b1f171b7596218eb1f12575db5233
SHA1: 1c25229ae2f15a6f2001c22e8e5679bac1a64fc6
SHA256: 88F1AF0086F15785B0BA858784EB84E0F966B501094D821AEA8E65103D45D0F2
文件大小: 4.42 MB, 4420624 bytes
MD5: 18c580e07fa0a3c0c73dea75ff43b5bc
SHA1: 0e4e7a694673e5d3112ab0b31fb9fb8a8276fd9c
SHA256: F4D488120E69FB71415FBD5B01CD1E23F7652A1EAFB91F29A48815CBA898C1CA
文件大小: 4.43 MB, 4425232 bytes
MD5: cddca03743f0f145d1bb46f18f63b217
SHA1: 42d0d14dad669a29deaf477fd0e68f795b5b3e5e
SHA256: CB73459E3947589655CD77DCB05C24497952C2DEDE9D702D19EC3E44CCC7B3BA
文件大小: 979.00 KB, 979000 bytes
MD5: d84c7a5e7d6ff5a80b61ebbedd13079a
SHA1: 90b5884097fbb84749ed77e776bc09d350b49457
SHA256: D7072E7A30A84EEB604EFAEF63D49935D18D0A413F595C2D82F72D3F4CB4732E
文件大小: 1.55 MB, 1553204 bytes
MD5: ffc195904f5734399f8dbf3d2c12a02f
SHA1: 45a25a2f78d0df77aa193b4d2f02c0593c778659
SHA256: B5FC38C5D45951AB2957C1562585F8DA136B63F4E450BA9F833A75FD60C5D6B9
文件大小: 2.31 MB, 2308520 bytes
MD5: e6f4d179b1e689f9d9e640f73ade4f99
SHA1: 012bca49e7bd4434d595dbfb49b5d8646eb04925
SHA256: 26768800103B30667BB9E328EDCED68652F9130B1A5CCF92E86D26E69F9C0171
文件大小: 1.16 MB, 1162840 bytes
MD5: 7960efe61a3083ca2240270fda89ebac
SHA1: 8dfc6373f738caf798294baecf37694565a29e08
SHA256: 8A8E4B568AB90043A29FB694121D456CCFBC427525B2C9B691062ED96F2783B4
文件大小: 973.34 KB, 973336 bytes
MD5: 07daf25cb3a7de91d76ccb77f0815dae
SHA1: 7f234fff56fa8771ab383cba285fe9428332acae
SHA256: 39665E63BAF6BEE82C63D05276D385CC1371E556403617D9EC7A5E9AE304B7CA
文件大小: 1.72 MB, 1721240 bytes
MD5: edd9af6cb343b57371811a91f40b34f3
SHA1: 8b4fe90675efcdbb8d7bf954f16d51765e8f0be0
SHA256: 66ECCA5A4AE5DFDAB9D517BAC99AA13499F2AC97C0DA676D9A8C72A52A860730
文件大小: 1.32 MB, 1315528 bytes
MD5: 17b13424e4d570f0bff7355f956b631d
SHA1: e9908e0b4c373f3ba1ec84ec502f87ad9506b437
SHA256: 19B6FC433A7E4828C235A08231CAB5E593F69CD24C5E827D3411EB6DE52A90CD
文件大小: 1.27 MB, 1269688 bytes
MD5: 4bb9da9c7517206a56e0fd410481e5a8
SHA1: d4605dcf6a58b1fb324819e6b2b439a41de49dc7
SHA256: 5C840ECB8A1AFA14AC4954172BA3D445671241973404248E18DE2BA1F52066BC
文件大小: 987.20 KB, 987200 bytes
MD5: a8a27f36a5c77c9e59190b1b36516c15
SHA1: 49cfc07aee360e81d5a38e485615083c8d865589
SHA256: 630582E55FA988611D5574804FD2D7B687C08F889E6D02D38343987C85C9E9F5
文件大小: 965.98 KB, 965980 bytes
MD5: 9258dd4dad61c5632f56deb2505932a8
SHA1: c72d7869c0544236ac1ccb0625e0afeab3f77d92
SHA256: 20ECF73CF1B1B3BE3C58F9A68D8C59CACF49BACA8E3DB1A84D9600EC70BF1C5E
文件大小: 1.54 MB, 1538824 bytes
MD5: 6a98afee763978819157da2c3a9f69f7
SHA1: f49b755a8f4f94fe7434e68323e60c9c64772397
SHA256: FECCCB14249296B20FF3F11B380909E3ED30CC4B234EE96A67AB89CF6965A89D
文件大小: 971.12 KB, 971123 bytes
MD5: 1c85085e3181375888a7e957b1e1f116
SHA1: 0f128d6c486be97178b34d583f31a8f48726ba4a
SHA256: 612259A0483F62411AB5DD77C6655A45DAB4CD48632C09019D9744BC1882A1E1
文件大小: 692.96 KB, 692960 bytes
MD5: 2e811dc86c4cad38d80fa8e5a2d17a33
SHA1: 57a06635e9a308fe1fed48602c59cd924ca48295
SHA256: 884083444246424DE4F5CB0536F7808168C9EC103C06232611D9C83C53D52BAA
文件大小: 1.51 MB, 1509514 bytes
MD5: a0b85320f8abef0496eb9d01acc67183
SHA1: a5cd1c7c5b721b8d7edcfc51f8fbf8ae5c43ac0f
SHA256: CD506E4304D894BF9E287EE935D59011A676EC71972F1BF932CFCEF28B12A42E
文件大小: 1.27 MB, 1270563 bytes
MD5: 682fdb7e016392ba1dadde04e5c520de
SHA1: bb9b9fd7f19d247ca9c4118c72f844c08c5c4930
SHA256: F10909C329A3FA731F57BDC22A67BBB2777081E80B012AA8E91C0520CA669BFD
文件大小: 707.66 KB, 707656 bytes
MD5: 1f714f11349302c789bf9d166854dca8
SHA1: 5e59d6c7cf6ff5b12bf09d0445877f1dfed38323
SHA256: 135C77499691DAAF1E20226726F59801296A06BF450C8D8C90236C55E15892C9
文件大小: 666.65 KB, 666648 bytes
MD5: 5ac885bff10e3c51785cfd49ac753bb2
SHA1: e236dbe4662629333df5721fe36af5194479b7f7
SHA256: 18D373895AAABAA80C580BB87B29B76418562CD93AEA2B18A923386C47026DAB
文件大小: 2.48 MB, 2479528 bytes
MD5: 07c8463c778d0e72071ccd01739f341f
SHA1: 19133335047690cb528db5665e99f3c6fda86964
SHA256: A7787823BB7E9B5A9974B3FD34BB380BE5E917CBD78E66B1E0B7322C5C23B7B6
文件大小: 1.20 MB, 1202112 bytes
MD5: c7f99ebd7edd348757f24d7e626aebd2
SHA1: 787f79df59ce9ec8f57d4ff15e0b86339d280090
SHA256: 578096D01FE000C432B94CC5E395A134553CB54E50B071CF0735216D47FA1550
文件大小: 4.08 MB, 4078328 bytes
MD5: 2cd0876830eb4d2e18437126c347ef23
SHA1: d5e83fd17293a175ed90d3890157bccff3652afd
SHA256: C6D64A52191809BCCC31B9FDC9092F0AB591E126B828D944168C3422E7BF221E
文件大小: 1.81 MB, 1810168 bytes
MD5: 45fa730712456ff47f1a273c9179e648
SHA1: f90cbaf7e2ab2068ba088127c329c7f42e7e3c09
SHA256: E7758551B029C49F2E6DCCDD4EF92EF77FB53563794EC513B9CF6CA05A4C5B83
文件大小: 1.57 MB, 1573120 bytes
MD5: 01a1ef8339e01f6da9b9f1b35e4efe67
SHA1: 5f472826eab6a65b8207872e358a0555bd64de29
SHA256: DF7845B57854FAFC2CA53DF01C8419CBCBEACC325EAE7904C80D5A774E3650E7
文件大小: 599.43 KB, 599432 bytes
MD5: a7db6a791c0bb5a31a208e4026be1a60
SHA1: e28901a5ba377513b1a6a3dfb7e2f89829df775a
SHA256: 63D76BD0601A5FF15DC1BA7C1D4F556168611E7A3E92B66BACFEB99712E91CE2
文件大小: 2.54 MB, 2537683 bytes
MD5: f67da2036038d9e6ebc09ebe59d70959
SHA1: 75b0b2ca8b162fa4af378717e34402d677e9f3b5
SHA256: E98793869DBE29A54F3EA44E6087D52D35B941ED9C8BE424074F12D413CEFB3C
文件大小: 2.49 MB, 2488816 bytes
MD5: 971f8bca4f98573c21e1f47f80e6dd2c
SHA1: a1336a1ead0daea1c7f27618c657d9658d0fc081
SHA256: E3FBA2692E8B71D56077FD55E4B0F23C9D95713A7256C6C06724FA7B528FF1C0
文件大小: 576.52 KB, 576520 bytes
MD5: ee5d51f490e510d7d70b79eecc6a87cf
SHA1: 874962dd6a87bcd87a7c6bfa82002ebfd3a8acf6
SHA256: 0A3AB3CADC96B00058D5A00DB6CB841D0991E88977C536E589A7C017E376D6CD
文件大小: 1.32 MB, 1317808 bytes
MD5: 855405b984008950349a7e3d08a8eb76
SHA1: 0635579d7e555ffd04cfccc64d13d12d71b62603
SHA256: F30CF0918FF5144A2AA2CEFDF943BDC35C3F1517B67E6AE8EC024B8CED832BF0
文件大小: 3.06 MB, 3056432 bytes
MD5: a9152b17fcd04ab3b80195e87eee1028
SHA1: ff0a570031d967e51f05a542efcd70a356cd57c4
SHA256: 9980EE54E3CF923CDA306ABA14BCEAE498CB783121CDCBCAEDCEB818F183970F
文件大小: 1.64 MB, 1638613 bytes
MD5: f06b988fc73cb908d225c6bf8b289fa0
SHA1: 3c32c42dd0fbf2419b86d6ab1eae9c9541bc5498
SHA256: CE2FAF7F2B4B606C3EF119CC17A8112A65F742EC6A063D9BCC44E2BFCA9AA44E
文件大小: 686.14 KB, 686136 bytes
MD5: b426a8727c0a0144852d761ba8b890c2
SHA1: 78282b91183e643e392b8cad793fa66bb8c2167a
SHA256: F8773EB40DDFA44DA25F3FDA0242F9DCE46E6DBA698AE229AD67AFFD824AEED8
文件大小: 1.23 MB, 1231944 bytes
MD5: cf37e32c16eb34b2174358587ed54195
SHA1: f99a8daedd101214c3af03c55789cf1123ba0200
SHA256: 2F3E821E91C98B3E05C15C159F3517E90DE388CA8A9997FEF23DAC3A7CB619B8
文件大小: 4.42 MB, 4420624 bytes
MD5: 1717768716a5147cefb1e5a9ca5ba856
SHA1: 4159eb94d00a2709fd23673b7d04848063a2564d
SHA256: AD848F8587BDA3C482889A24762309899B7123183FAE29E130C45FA1D2F4CFCA
文件大小: 716.16 KB, 716160 bytes
MD5: 078249d5554979768c3feeea51136f8c
SHA1: f3dd0073d3da5391556c4fab0c3792a844926d74
SHA256: 3FB1D5AD03C819C329544AD6AB862F3E28668115AA65CCCD5533F6FE379AF9F0
文件大小: 3.15 MB, 3148146 bytes
MD5: 67a294ad9598f17f174f7412514771ba
SHA1: a4d985cc4365e253ea4ac49a5e3f19cffad77542
SHA256: C0B89E55CB5220617A43619C8FFC00D32DF8265DC7D8FF660821C2AE3094EEDC
文件大小: 1.79 MB, 1790974 bytes
MD5: 5474c1c329a8e90c19db1688052e289a
SHA1: 58b13321f3512c4d6b1aa636e3a7d387ce225d83
SHA256: 2C2A6E05DC238D36C4E2AD670BC9FB6F8F8559E821501477CD242E08C6AA77D6
文件大小: 6.96 MB, 6962568 bytes
MD5: 180c7e397bb9467ce33ca85256212810
SHA1: d4257cf33466da2dd578c955df4c4c424a4eb52c
SHA256: 635B7AF8958D0B3A2D33F276BD5F6B81FFB9EE07D5F0096F2B88C6B6D7B8421C
文件大小: 629.28 KB, 629280 bytes
MD5: 4b6b8cad88918826fbdb80531dd5b953
SHA1: 44ab80ffdd5f6dd5edc729544ecde1bae6e4296c
SHA256: 302AF2AA5CB5C947D6F74D9D1569F12FC5C0B7D8FC0D3E69CBB8F0A3D1E3CDDA
文件大小: 1.21 MB, 1209072 bytes
MD5: 60d2574c5fb2dac2e27aef0386c6aa68
SHA1: aaa19691028442fedb143b4577d2b545bdc618a4
SHA256: 153168F4F6707EC7993AFBC7522B2C453877F1401174B450A72B0D2A197C7E2E
文件大小: 1.85 MB, 1845928 bytes
MD5: 12aafc546636379bcfe71d70cb79d342
SHA1: 2fa49c39654dcbba2b711a8e845b798543be213d
SHA256: CB26FEEA3B4E9C859441FA8186ED9421A56B715B58C0456A62478E0D542CE89C
文件大小: 2.23 MB, 2233192 bytes
MD5: 2a680d9b691b8c7799b6961ace6054de
SHA1: 8a4a50c74a03a5213e25bf4e486d703a67bf6a49
SHA256: 6239DAB5087E43B60427BE098B7396702B89296397124847BA6E34EDC396FDFA
文件大小: 2.28 MB, 2280384 bytes
MD5: 074025b34177fe534d924a4f1cc54ce4
SHA1: 89b4f5ae9f383ee3f4b19976e4e7da3ce0926163
SHA256: 158D100902EFBDCF11501412E18C27FB3E9AF35F57159BFF17C4C3CD1203CF69
文件大小: 3.31 MB, 3309600 bytes
MD5: d1782874caa90274b80cd1927711fb54
SHA1: aec2adcecca63293db333414011f2cd9f23ecf9d
SHA256: 7AF090A30541DBAB271D7600D80DB275DA64C447A77BA1DC6E56315F1D57A8EB
文件大小: 1.86 MB, 1864672 bytes
MD5: 31b4b2bbdb79e81cae2526c59d0ca454
SHA1: 4b5e07a766b4bf8a13f136bb2508936520bf6e80
SHA256: 019C98E5A5AB8D855D696F20D3698FD531EA779150EB858C993D35F8C22C5541
文件大小: 2.92 MB, 2921144 bytes
MD5: 45293094133ea80dda3bb9624b8668f2
SHA1: 40d62f2b1b279921d302a40b28ffde6570055da3
SHA256: 9E552CED1B16BCA105B4BCB56CEDC6F611D1445F9A9C7A6E3E9244B05BE0C02B
文件大小: 1.61 MB, 1609960 bytes
MD5: c4befa6e61c8fb25755c1477a2fa344c
SHA1: 9e59642c96168147f9e6076e5cbb24c02988d3f7
SHA256: 8C4CE6B0245A736DCD46679983B50E6FCC261C67824550581E568C903646A869
文件大小: 1.26 MB, 1259368 bytes
MD5: 2e981ac5e0d2a10ebbf8e7532e62ea5d
SHA1: e330f872c9d4d33dda69a8b19cb9b4eda469dd43
SHA256: 58B226644B65DC36B53B928CD62B0F259C96A33E887F05E46CE1097F7E699501
文件大小: 923.24 KB, 923240 bytes
MD5: b6bfc2bce2f169c403fa03cddad65ea7
SHA1: 4a979ccc78c27ce00013af240a3290e0574d239e
SHA256: BEE0461702FED73E1FA07E164D1DF2216847963847288BBE12B74F8B6C28439C
文件大小: 959.76 KB, 959760 bytes

886 additional samples are not displayed above.

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have debug information
  • File doesn't have exports table
  • File doesn't have relocations information
  • File doesn't have security information
  • File has been packed
  • File has exports table
  • File has TLS information
  • File is .NET application
  • File is 32-bit executable
Show More
  • File is 64-bit executable
  • File is console application (IMAGE_SUBSYSTEM_WINDOWS_CUI)
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Show More

2002 additional icons are not displayed above.

Windows PE Version Information

姓名 价值
Assembly Version
  • 1.92.4.8949
  • 1.92.3.8643
  • 1.92.2.8615
  • 1.5.1.6578
  • 1.5.1.6476
  • 1.2.2.0
  • 1.0.2.6605
  • 1.0.0.4724
  • 0.0.0.0
Build August 2018
Comments
  • 2022-07-11-1221
  • aTube Installer
  • C-RTG
  • CHIP Secured Installer
  • IG Downloader. Copyright (c) 2012. All rights reserved.
  • Motus Software
  • Product
  • Publisher: CoinisRevShare
  • Publisher: DownloadAstro
  • Publisher: komputerswiat.pl
Show More
  • Publisher: PDF Reader Technologies
  • This application protects your eyes from looking a long time to your monitor or laptop screen
  • This installation was built with Inno Setup.
  • This installation was built with InstallAware: http://www.installaware.com
Company Name
  • 32/05 team
  • adsafiliados
  • Application
  • Application Installer generic
  • Application Lite Program
  • Application Program
  • Aryan Software
  • Bikofobolo
  • Bituh
  • Bogutebed
Show More
  • Bote
  • Cad
  • CamStudio
  • Cas
  • Cepuc
  • Ceradager
  • CHIP Digital GmbH
  • Cipemakepe
  • CoinisRevShare
  • Cumefihe
  • Cutelecod
  • Dacanosiso
  • Datos101
  • Docesipete
  • Dosega
  • DownloadAstro
  • Dusaligu
  • DVDVideoSoft_DLM
  • Fatub
  • Febube
  • Ferodudo
  • Fesoh
  • Fetas
  • Ficamace
  • File
  • File Application
  • File Program Internet
  • File Software
  • File Web Soft
  • Fomuda
  • FreeEXELock Co., Ltd.
  • FreeOCRtoWord, Inc.
  • FreeTrimMP3 Co., Ltd.
  • Gak
  • GamesPub Ltd.
  • Gecu
  • Generic
  • Generic installer
  • Generic Internet Program
  • Generic Web
  • Generic Web Program
  • Gifumeled
  • Gikis
  • Gokelekec
  • Gokon
  • Gokuba
  • Gorapafo
  • Gorusitat
  • Guh
  • Hadimelam
  • Hafirilug
  • Hal
  • Hekomacidi
  • Helapir
  • Hisol
  • Hob
  • Hocobona
  • Hohatu
  • Honarubab
  • Hunenit
  • IC001
  • Innova Group
  • InstallCore ©
  • Installer
  • Installer Application
  • Installer Fast
  • Installer internet
  • Installer Internet
  • Installer Program
  • Installer program
  • Installer Soft Program
  • Installer ©
  • Internet
  • Internet Installer
  • Internet lite
  • Internet Software
  • Internet Software stub
  • ISP001
  • Kamocis
  • Kiko
  • komputerswiat.pl
  • Lade
  • Ladohofen
  • Lamana
  • Lapehokop
  • Lebu
  • Ledobor
  • Lemiga
  • Licarelo
  • Lite

99 additional items are not displayed above.

Developer The Developer
File Description
  • 2023 - FiveM Connection Failled Error Server Connection Tim
  • App generic Setup
  • App Internet Setup
  • Application Program Setup
  • Application Setup
  • application Setup
  • application software Setup
  • application stub Setup
  • Application web Setup
  • App Setup
Show More
  • App Web Setup
  • App Wizard Setup
  • aTube Installer
  • Bab Setup
  • Bacas Setup
  • BackupRestoreInstallCore Setup
  • Baixaki Downloader
  • Bakateh Setup
  • Bemohicec Setup
  • Bepe Setup
  • Bibakuro Setup
  • Bigikubo Setup
  • Bodatalege Setup
  • Bofopadi Setup
  • Bohidek Setup
  • Bonenonof Setup
  • Cahacelec Setup
  • CamStudio Installer
  • Carekanum Setup
  • Cehapahor Setup
  • Cekofabeka Setup
  • Celon Setup
  • Cer Setup
  • Cesumahi Setup
  • Cesutofido Setup
  • CHIP Secured Installer
  • Cif Setup
  • Cika Setup
  • Cobu Setup
  • Cocabasic Setup
  • Cogebelek Setup
  • Cogi Setup
  • Conekogil Setup
  • Coroleri Setup
  • Coser Setup
  • Cot Setup
  • Cure Setup
  • Cuti Setup
  • Dabo Setup
  • Daf Setup
  • Dakedin Setup
  • Daki Setup
  • Dak Setup
  • Danoketed Setup
  • Datos101 Online Backup Client
  • Datuka Setup
  • Dek Setup
  • Delobana Setup
  • Dem Setup
  • dobreprogramy Downloader
  • Dof Setup
  • Dolag Setup
  • DownloadAstro Downloader
  • DriverDoc Installation
  • Dugacefom Setup
  • Dukogilule Setup
  • Dupad Setup
  • Durbetsel Setup
  • DVDVideoSoft
  • Elest Setup
  • EngineGame Installer
  • English subtitles for Mind Your Language Hows Your Father (1
  • Est Setup
  • Eyes Guard
  • Fadadas Setup
  • Fafa Setup
  • Faferonaco Setup
  • Fagopog Setup
  • Fahukef Setup
  • Fakadal Setup
  • Faluf Setup
  • Fanudim Setup
  • Fas Setup
  • Fast Application Setup
  • Fast Installer application Setup
  • Fast Installer Lite Setup
  • Fast Internet Installer Setup
  • Fast Program Setup
  • Fast Setup
  • Fast Software Application Setup
  • Fast Stub Setup
  • Febeci Setup
  • Fegen Setup
  • Fekipitu Setup
  • Femofamese Setup
  • Femosobag Setup
  • Fenakedu Setup
  • Fena Setup
  • Fesiheseb Setup
  • FH Manager

393 additional items are not displayed above.

File Version
  • 127.199
  • 98.166
  • 97.165
  • 96.164
  • 61.114
  • 51.1052.0.0
  • 43.83
  • 14.38
  • 12.23.6149.9272
  • 12.11.2371.8174
Show More
  • 12.0.58849
  • 11.2.0
  • 9.1.1241
  • 8.3.2.11
  • 7.6.0
  • 7.4.0
  • 6.91.0.0
  • 6.6.0.0
  • 6.4.5.0
  • 6.2.0.0
  • 5.8.4.4
  • 5.8.3.3
  • 5.8.2.7
  • 5.8.1.6
  • 5.7.5.2
  • 5.7.2.2
  • 5.7.1.6
  • 5.6.2.8
  • 5.6.2.1
  • 5.6.1.7
  • 5.6.1.2
  • 5.5.5.5
  • 5.5.5.2
  • 5.5.4.0
  • 5.5.2.8
  • 5.5.2.7
  • 5.5.1.5
  • 5.5.1.1
  • 5.4.5.1
  • 5.4.5.0
  • 5.4.4.0
  • 5.4.3.4
  • 5.4.2.8
  • 5.4.1.2
  • 5.3.4.5
  • 5.3.4.3
  • 5.3.2.2
  • 5.2.5.3
  • 5.2.4.5
  • 5.2.4.4
  • 5.2.3.7
  • 5.2.3.5
  • 5.2.2.5
  • 5.2.1.1
  • 5.1.5.7
  • 5.1.2.7
  • 5.1.1.2
  • 5.0.4.8
  • 5.0.4.7
  • 5.0.4.4
  • 5.0.2.2
  • 5.0.1.7
  • 5.0.1.4
  • 5.0.1.3
  • 4.12.2185
  • 4.8.4.3
  • 4.8.4.2
  • 4.8.3
  • 4.8.2.3
  • 4.8.2.2
  • 4.7.5.1
  • 4.7.4.5
  • 4.7.4.0
  • 4.7.3.4
  • 4.7.3.2
  • 4.7.1.4
  • 4.6.5.8
  • 4.6.4.6
  • 4.6.4.0
  • 4.6.2.4
  • 4.5.5.2
  • 4.5.4.2
  • 4.5.4.0
  • 4.5.3.4
  • 4.5.2.3
  • 4.4.3.2
  • 4.4.2.1
  • 4.4.1.6
  • 4.4.1.2
  • 4.4.1.1
  • 4.3.5.1
  • 4.3.4.3
  • 4.3.2.0
  • 4.2.4.8
  • 4.2.4.3
  • 4.2.3.8
  • 4.2.3.0
  • 4.2.1.3
  • 4.1.5.5
  • 4.1.5.3

229 additional items are not displayed above.

I S Internal Description Setup Launcher Unicode
I S Internal Version 17.0.714
Internal Build Number 99584
Internal Name
  • 7zS.sfx
  • aTube.exe
  • Baixaki.exe
  • ClickOnceSetup.exe
  • EyesGuard.exe
  • GenericSetup.exe
  • IC001.exe
  • Installer
  • Installer Internal Name
  • Installer Powered by installcore.com - SDK v2.1
Show More
  • Pivot.exe
  • RBT001.exe
  • RTGDemo
  • SaveFrom.net Helper Installer
  • Setup
  • Setup.exe
  • TJprojMain
  • Win
  • _IsIcoRes.exe
Legal Copyright
  • (c) GamesPub Ltd. All rights reserved.
  • 2014-2019 © Datos101 All rights reserved.
  • adsafiliados
  • All rights reserved
  • All Rights reserved © 2013-2017
  • All Rights reserved © 2013-2018
  • App
  • Application
  • Application Fast Program
  • Application File
Show More
  • Application Installer
  • Application Internet File
  • Application Lite
  • Application Lite Program
  • Application program
  • Application Soft
  • Application Wizard
  • Bic
  • Bis
  • Botik
  • Bufofacoc
  • CamStudio
  • Cenenaka
  • Copyright (C) 2006 Macrovision Corporation
  • Copyright (c) 2011 RealTimeGaming, Inc.
  • Copyright (c) 2012 Innova Group
  • Copyright (c) 2012 Real-Time Gaming
  • Copyright 2021 CHIP Digital GmbH
  • Copyright aTube 2022
  • Copyright Pіvotstіck
  • Copyright © 2014 Chip Digital GmbH
  • Copyright © 2015 Chip Digital GmbH
  • Copyright © 2016 Chip Digital GmbH
  • Copyright © 2017
  • Copyright © 2017 Chip Digital GmbH
  • Copyright © Adaware 2021
  • Copyright © Adaware 2022
  • Copyright © Adaware 2023
  • Copyright © InstallCore
  • Copyright © Instsaller
  • Dasenagofa
  • Degot
  • Dodolela
  • DownloadAstro
  • DVDVideoSoft_DLM
  • Faseto
  • Fast
  • Fast Application
  • Fast installer
  • Fast Internet
  • Fast lite
  • Fast program
  • Fast Software
  • Fast Stub
  • Fast Wizard
  • File
  • File Lite
  • File Prog
  • File program
  • File Program
  • File Software
  • File web
  • Fimatos
  • Fosega
  • Fotihiti
  • Fubararaf
  • Gadapububo
  • Generic Installer Application
  • Generic Installer Software
  • Generic Internet
  • Generic program
  • Gogok
  • Gugatelele
  • Installer
  • Installer Application
  • Installer Application web
  • Installer Fast
  • Installer Lite
  • Installer soft
  • Installer Software
  • Installer Software Fast
  • Installer Software internet
  • Installer Web
  • Installer Wizard
  • Internet
  • Internet File
  • Internet Installer
  • Internet Soft
  • Internet Software
  • Internet wizard
  • Kitohotoha
  • komputerswiat.pl
  • Laneh
  • Leforab
  • Limafe
  • Lite
  • Lite Application
  • Lite Fast Stub
  • Lite installer
  • Lite Internet

91 additional items are not displayed above.

Legal Trademarks
  • All rights reserved.
  • Copyright (c) 2012 Innova Group
Original File Name Аррlісаtіօո рοrtаl.exe
Original Filename
  • aTube.exe
  • Baixaki.exe
  • ClickOnceSetup.exe
  • EyesGuard.exe
  • GenericSetup.exe
  • InstallShield Setup.exe
  • Pivot.exe
  • RockyBytes
  • Setup.exe
  • sf-helper-default-installer.exe
Show More
  • TJprojMain.exe
  • Win.exe
  • _IsIcoRes.exe
Private Build No private build info.
Product Name
  • 2023 - FiveM Connection Failled Error Server Connection Tim
  • App
  • App generic
  • App Internet
  • Application
  • application
  • Application Program
  • application software
  • application stub
  • Application web
Show More
  • Applicazioni Windows
  • App Web
  • App Wizard
  • aTube Installer
  • Bab
  • Bacas
  • BackupRestoreInstallCore
  • Baixaki Downloader
  • Bakateh
  • Bemohicec
  • Bepe
  • Bibakuro
  • Bigikubo
  • Bodatalege
  • Bofopadi
  • Bohidek
  • Bonenonof
  • Cahacelec
  • Camstudio Installer
  • Carekanum
  • Casino Titan
  • Cehapahor
  • Cekofabeka
  • Celon
  • Cer
  • Cesumahi
  • Cesutofido
  • Cif
  • Cika
  • Cobu
  • Cocabasic
  • Cogebelek
  • Cogi
  • Conekogil
  • CoolROM
  • Coroleri
  • Coser
  • Cure
  • Cuti
  • Dabo
  • Daf
  • Dak
  • Dakedin
  • Daki
  • Danoketed
  • Datos101 Online Backup Client
  • Datuka
  • Dek
  • Delobana
  • Dem
  • dobreprogramy Downloader
  • Dof
  • Dolag
  • DownloadAstro Downloader
  • DriverDoc
  • Dugacefom
  • Dukogilule
  • Dupad
  • Durbetsel
  • DVDVideoSoft
  • Elest
  • EngineGame
  • English subtitles for Mind Your Language Hows Your Father (1
  • Est
  • Eyes Guard
  • Fadadas
  • Fafa
  • Faferonaco
  • Fagopog
  • Fahukef
  • Fakadal
  • Faluf
  • Fanudim
  • Fas
  • Fast
  • Fast Application
  • Fast Installer application
  • Fast Installer Lite
  • Fast Internet Installer
  • Fast Program
  • Fast Software Application
  • Fast Stub
  • Febeci
  • Fegen
  • Fekipitu
  • Femofamese
  • Femosobag
  • Fena
  • Fenakedu
  • Fesiheseb

391 additional items are not displayed above.

Product Version
  • 127.199
  • 98.166
  • 97.165
  • 96.164
  • 61.114
  • 43.83
  • 14.38
  • 12.23.6149.9272
  • 12.11.2371.8174
  • 12.0
Show More
  • 11.2.0
  • 9.1.1241
  • 8.3.2.11
  • 7.14.2.0
  • 7.6.0
  • 7.5.0
  • 7.4.0
  • 6.95.1.0
  • 6.01 -by hirania Spolszczony
  • 5.8.8
  • 5.8.7
  • 5.8.7
  • 5.8.6
  • 5.8.3
  • 5.8.2
  • 5.8.1
  • 5.8
  • 5.8
  • 5.7.5
  • 5.7.3
  • 5.7.2
  • 5.7.0.4
  • 5.7.0
  • 5.7
  • 5.6.9
  • 5.6.5
  • 5.6.4
  • 5.6.1
  • 5.6.0
  • 5.6
  • 5.6
  • 5.5.9
  • 5.5.8
  • 5.5.7
  • 5.5.6
  • 5.5.6
  • 5.5.4
  • 5.5
  • 5.4.9
  • 5.4.7
  • 5.4.5
  • 5.4.4
  • 5.4.4
  • 5.4.3
  • 5.4.2
  • 5.4.0
  • 5.4
  • 5.4
  • 5.3.9
  • 5.3.7
  • 5.3.4
  • 5.3.1
  • 5.3
  • 5.2.8
  • 5.2.7
  • 5.2.7
  • 5.2.6
  • 5.2.5
  • 5.2.3
  • 5.2.1
  • 5.2.0
  • 5.2
  • 5.2
  • 5.1.8
  • 5.1.7
  • 5.1.5
  • 5.1.2
  • 5.1.1
  • 5.1.0
  • 5.1
  • 5.1
  • 5.0.9
  • 5.0.6
  • 5.0.5
  • 5.0.3
  • 5.0.2
  • 5.0
  • 5.0
  • 4.12.2185
  • 4.8.8
  • 4.8.7
  • 4.8.4
  • 4.8.4
  • 4.8.3
  • 4.8.1
  • 4.8
  • 4.8
  • 4.7.9
  • 4.7.8
  • 4.7.8

286 additional items are not displayed above.

Special Build No special build info.

Digital Signatures

Signer Root Status
OOO Biglin AAA Certificate Services Root Not Trusted
CHIP Digital GmbH CHIP Digital GmbH Self Signed
File.org COMODO Code Signing CA 2 Self Signed
Komcore Corporation COMODO Code Signing CA 2 Self Signed
AITI Kabelni Systemy, TOV COMODO RSA Certification Authority Root Not Trusted
Show More
Advertaizing Grupp COMODO RSA Certification Authority Root Not Trusted
Install Accelerated (Alpha Criteria Ltd) COMODO RSA Certification Authority Root Not Trusted
Installer Genius COMODO RSA Certification Authority Hash Mismatch
LLC "MEREZHA AYTI-KONSALTYNH" COMODO RSA Certification Authority Root Not Trusted
OOO Advert M COMODO RSA Certification Authority Root Not Trusted
OOO DIGITAL VEI COMODO RSA Certification Authority Root Not Trusted
OOO Vympel COMODO RSA Certification Authority Root Not Trusted
Setup Turbo (Superior Media Ltd) COMODO RSA Certification Authority Root Not Trusted
Vast Pipe (Alpha Criteria Ltd.) COMODO RSA Certification Authority Root Not Trusted
CHIP Digital GmbH COMODO RSA Code Signing CA Self Signed
DMN Partners SRL COMODO RSA Code Signing CA Self Signed
DS NET CORP SA DE CV COMODO RSA Code Signing CA Hash Mismatch
DS NET CORP SA DE CV COMODO RSA Code Signing CA Self Signed
Funny Cookie (Superior Media Ltd) COMODO RSA Code Signing CA Self Signed
Global Smart LTD, TOV COMODO RSA Code Signing CA Self Signed
Gostechnologies (Alpha Criteria Ltd.) COMODO RSA Code Signing CA Self Signed
MyAppBox (Superior Media Ltd) COMODO RSA Code Signing CA Self Signed
OOO "ELEKTRO-KOD" COMODO RSA Code Signing CA Self Signed
Purple Skyline (Superior Media Ltd) COMODO RSA Code Signing CA Self Signed
SUMY IT Servis, TOV COMODO RSA Code Signing CA Self Signed
Speedy Rabbit (Superior Media Ltd) COMODO RSA Code Signing CA Self Signed
Superb Distribution (Alpha Criteria Ltd.) COMODO RSA Code Signing CA Self Signed
Total Beam (Alpha Criteria Ltd.) COMODO RSA Code Signing CA Self Signed
Unique Taste (Superior Media Ltd) COMODO RSA Code Signing CA Self Signed
VIZARD-TORG, TOV COMODO RSA Code Signing CA Self Signed
Bully Unity LTD DigiCert Assured ID Code Signing CA-1 Self Signed
CHIP Digital GmbH DigiCert EV Code Signing CA (SHA2) Self Signed
CBS Interactive, Inc. DigiCert High Assurance Code Signing CA-1 Self Signed
CHIP Digital GmbH DigiCert SHA2 Assured ID Code Signing CA Self Signed
Chancers Technology B.V. DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1 Self Signed
INNOVA MEDIA d.o.o. DigiCert Trusted Root G4 Root Not Trusted
EngineGame EngineGame Self Signed
6785719 Canada Inc. Entrust Root Certification Authority - G2 Hash Mismatch
GT CONSULTORIA EM INFORMATICA LTDA GT CONSULTORIA EM INFORMATICA LTDA Self Signed
Magicbit, Inc GlobalSign Hash Mismatch
AMBI SERVICOS DE INTERNET LTDA GlobalSign CodeSigning CA - G2 Self Signed
AVSoftware GlobalSign CodeSigning CA - G2 Self Signed
Adverts Technologies GlobalSign CodeSigning CA - G2 Self Signed
Alpha IS (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Astro Funnel (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
BeamMax (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Born To Be Net Consulting S.L. GlobalSign CodeSigning CA - G2 Self Signed
CUIBARI A. ALEXANDRU-CRISTIAN PFA GlobalSign CodeSigning CA - G2 Self Signed
Delivery X Apps (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Dobreprogramy sp. z o.o. GlobalSign CodeSigning CA - G2 Self Signed
Dove Delivery (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Download Free (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
FlashFunnel (New Media Holdings Ltd) GlobalSign CodeSigning CA - G2 Self Signed
Max Criteria (New Media Holdings Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
MaxSpeedy (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Media Theory (Fried Cookie Ltd) GlobalSign CodeSigning CA - G2 Hash Mismatch
Media Theory (Fried Cookie Ltd) GlobalSign CodeSigning CA - G2 Self Signed
MediaProgramas SL GlobalSign CodeSigning CA - G2 Self Signed
New Software S.C. Marek Lubas, Mateusz Ponikowski GlobalSign CodeSigning CA - G2 Self Signed
NextInteractive GlobalSign CodeSigning CA - G2 Self Signed
No Zebra Network Ltda. GlobalSign CodeSigning CA - G2 Self Signed
PremiumBeam (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Prompt Setup (Fried Cookie Ltd) GlobalSign CodeSigning CA - G2 Self Signed
Quality Path (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Ringier Axel Springer Polska Sp z o.o. GlobalSign CodeSigning CA - G2 Self Signed
Setup Prompt (Fried Cookie Ltd) GlobalSign CodeSigning CA - G2 Self Signed
Setup Superb (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Smooth Funnel (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Super IS (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
SuperbFlash (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
Swift Funnel (Fried Cookie Ltd.) GlobalSign CodeSigning CA - G2 Self Signed
dobreprogramy sp. z o.o. GlobalSign CodeSigning CA - G2 Self Signed
Advertiso GmbH GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
AgileMax (Alpha Criteria Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Ambi Servicos de Internet Ltda. GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Apponic GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Delivery Agile (New Media Holdings Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Delta Platform (New Media Holdings Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Destiny Dream S.A. GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Dobreprogramy sp. z o.o. GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
FlashFunnel (New Media Holdings Ltd) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Funnel Agile (New Media Holdings Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
FunnelOpti (Alpha Criteria Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
HALOMOT ITZHAK LTD GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
InstallSpeedy (New Media Holdings Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
MaxPlatform (New Media Holdings Ltd) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Media Theory (Alpha Criteria Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Media Theory (New Media Holdings Ltd) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Mode Beta (Fried Cookie Ltd) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
New Software S.C. Marek Lubas Mateusz Ponikowski GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
No Zebra Network Ltda. GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Platform Astro (Alpha Criteria Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Platform Beta (Fried Cookie Ltd) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Platform Superb (Fried Cookie Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
PlatformFlash (New Media Holdings Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Quality Funnel (Fried Cookie Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Quality Install (Alpha Criteria Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Ringier Axel Springer Polska Sp z o.o. GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Setup Quality (Alpha Criteria Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed
Silver Funnel (Fried Cookie Ltd.) GlobalSign CodeSigning CA - SHA256 - G2 Self Signed

129 additional signatures are not displayed above.

File Traits

  • .NET
  • 2+ executable sections
  • big overlay
  • HighEntropy
  • imgui
  • Inno
  • InnoSetup Installer
  • Installer Manifest
  • Installer Version
  • nosig nsis
Show More
  • No Version Info
  • Nullsoft Installer
  • packed
  • VirtualQueryEx
  • WriteProcessMemory
  • x64
  • x86

Block Information

Total Blocks: 96
Potentially Malicious Blocks: 0
Whitelisted Blocks: 71
Unknown Blocks: 25

Visual Map

? ? ? ? ? ? ? ? ? ? ? 0 ? 0 ? 0 ? 0 0 ? ? ? 0 0 ? 0 ? 0 0 0 0 0 0 0 0 ? 0 0 0 0 0 0 ? 0 ? 0 0 0 0 0 ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? 0 0 0 0 0 ?
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • Agent.LA
  • Autoit
  • Autorun.X
  • BadJoke.FH
  • Bancteian.A
Show More
  • Banker.AN
  • Banker.GT
  • Banker.LH
  • Banker.R
  • Banker.TH
  • BestaFera.G
  • Casbaneiro.A
  • Chapak.HBX
  • CobaltStrike.GI
  • CobaltStrike.GIA
  • Convagent.I
  • Delf.DA
  • Delf.XB
  • DialupPass.A
  • DotSetupIo.A
  • Downloader.VE
  • Emotet.CDD
  • Farfli.NB
  • Filecoder.IFA
  • Gulpix.F
  • Injector.AK
  • Injector.GPB
  • Injector.GSD
  • Injector.KFAD
  • Injector.KZP
  • Injector.XD
  • Injector.XN
  • Installcore.BA
  • Jeefo.A
  • Kryptik.DEK
  • Kryptik.XXBA
  • Lokorrito.C
  • Lumma.GFD
  • MSIL.Kryptik.SA
  • MSIL.Remcos.LFA
  • MSILZilla.TC
  • Marte.W
  • Marte.Z
  • Ousaban.C
  • Ousaban.V
  • Parite.F
  • Parite.FA
  • Parite.P
  • Parite.W
  • QQPass.W
  • Rozena.XC
  • Rugmi.IA
  • Sheloader.A
  • Sheloader.C
  • Stealer.KF
  • Stealer.UHAN
  • Ulise.BE
  • Webalta.A

Files Modified

File Attributes
\device\namedpipe Generic Read,Write Attributes
\device\namedpipe Generic Write,Read Attributes
\device\namedpipe\0c1f1f1i0r0o0m Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\0c1f1f1i0r0o0m_test Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\0k1c1t1i1e1c1f1n1c1t1h1v0vtb Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\0k1c1t1i1e1c1f1n1c1t1h1v0vtb_test Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1q1f1s1c1p1e1c1f1n1c1t1h2utf1e1i Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1q1f1s1c1p1e1c1f1n1c1t1h2utf1e1i_test Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp0b1t1l2v1t1j1ltp1v Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp0b1t1l2v1t1j1ltp1v_test Generic Read,Write Data,Write Attributes,Write extended,Append data
Show More
\device\namedpipe\1vtp0f0l0v0p1i1t2u1p1ctp1v Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp0f0l0v0p1i1t2u1p1ctp1v_test Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp0i1g1b2z1t1i1j1ltf1e1itp1v Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp0i1g1b2z1t1i1j1ltf1e1itp1v_test Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp0t1p1i1p0c1m1t1c1n1p1ctp1v Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp0t1p1i1p0c1m1t1c1n1p1ctp1v_test Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp1q1g1i1qtf1r1f1htp1v Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\1vtp1q1g1i1qtf1r1f1htp1v_test Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\gmdasllogger Generic Write,Read Attributes
\device\namedpipe\pipe_console Generic Write,Read Attributes
\device\namedpipe\srvsvc Generic Read,Write Data,Write Attributes,Write extended,Append data
\device\namedpipe\wkssvc Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\aut.wav Synchronize,Write Data
c:\program files (x86)\est\et\consequuntur.exe Synchronize,Write Data
c:\program files (x86)\est\et\eligendi.pdf Synchronize,Write Data
c:\program files (x86)\est\et\facilis.bat Synchronize,Write Data
c:\program files (x86)\est\et\is-0gd83.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\et\is-5s710.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\et\is-b482e.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\et\is-bml98.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\et\is-jd4ce.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\et\is-nml7q.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\et\is-sc6q0.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\et\is-v0mqo.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\et\provident.tex Synchronize,Write Data
c:\program files (x86)\est\et\quaerat.pif Synchronize,Write Data
c:\program files (x86)\est\et\repellendus.tex Synchronize,Write Data
c:\program files (x86)\est\et\sqlite3.dll Synchronize,Write Data
c:\program files (x86)\est\et\ut.zip Synchronize,Write Data
c:\program files (x86)\est\is-30lhv.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\is-3lvt2.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\is-5pm5o.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\iste.pdf Synchronize,Write Data
c:\program files (x86)\est\nisi\is-25r2l.tmp Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\nisi\quos.htm Synchronize,Write Data
c:\program files (x86)\est\unins000.dat Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\est\unins000.exe Synchronize,Write Data
c:\programdata\aviutl2\aviutl2.ini Generic Write,Read Attributes
c:\programdata\mia5286.tmp Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\driverdocsetup.msi Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\driverdocsetup.msi Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_ar.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_ar.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_bg.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_bg.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_cs.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_cs.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_da.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_da.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_de.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_de.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_el.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\languages\language_el.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win7-bottom-left.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win7-bottom-left.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win7-bottom-right.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win7-bottom-right.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win7-top-left.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win7-top-left.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win7-top-right.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win7-top-right.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win8-bottom-left.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win8-bottom-left.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win8-bottom-right.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win8-bottom-right.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win8-top-left.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win8-top-left.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win8-top-right.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-win8-top-right.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-winxp-bottom-left.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-winxp-bottom-left.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-winxp-bottom-right.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-winxp-bottom-right.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-winxp-top-left.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-winxp-top-left.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-winxp-top-right.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\arrows\balloon-arrow-winxp-top-right.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\bg_stretch.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\bg_stretch.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\done_btn.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\done_btn.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\done_btn_down.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\done_btn_down.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_complete.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_complete.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_done.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_done.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_error.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_error.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_fdf.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_fdf.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_info.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_info.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_info_active.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_info_active.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_productname.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_productname.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_shield.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_shield.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_slow.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_slow.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_spam.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_spam.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_spy.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_spy.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_support.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_support.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_support_active.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_support_active.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_tktrayapp.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_tktrayapp.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_virus.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icon_virus.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\critical.ico Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\critical.ico Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\help-win8.ico Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\help-win8.ico Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\help.ico Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\help.ico Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\info-win8.ico Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\info-win8.ico Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\info.ico Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\info.ico Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\warning.ico Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\icons\warning.ico Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\scrollbar\sb-v-scroll-next.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\scrollbar\sb-v-scroll-next.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\scrollbar\sb-v-scroll-prev.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\scrollbar\sb-v-scroll-prev.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\spinner.gif Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\spinner.gif Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\unipb.gif Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\unipb.gif Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\unipb_install.gif Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\html\gfx\unipb_install.gif Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\notification\gfx\icon_close.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\notification\gfx\icon_close.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\notification\gfx\icon_productname.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\notification\gfx\icon_productname.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\notification\gfx\popup_bubble.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\notification\gfx\popup_bubble.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_ar.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_ar.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_bg.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_bg.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_cs.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_cs.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_da.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_da.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_de.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_de.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_el.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_el.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_en.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\mergemod\program files\solvusoft\tray\translations\language_en.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\3d474d5a\46353557\folder.jpg Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\3d474d5a\46353557\folder.jpg Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\3e5d6866\46353557\icon_tktray-upd-dvpro.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\3e5d6866\46353557\icon_tktray-upd-dvpro.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\560996e1\46353557\dvpro.xml Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\560996e1\46353557\dvpro.xml Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\history_tabicon_history.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\history_tabicon_history.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\history_tabicon_ignore.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\history_tabicon_ignore.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\history_tabicon_restore.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\history_tabicon_restore.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\ignore_icon.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\ignore_icon.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\restore_icon.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\56fa06eb\restore_icon.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_details.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_details.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_fullversion.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_fullversion.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_mypage.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_mypage.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_productkey.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_productkey.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_productkeyhistory.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_productkeyhistory.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_renew.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_renew.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_tabicon_accountsettings.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_tabicon_accountsettings.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_tabicon_licensesettings.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\671c91bc\account_tabicon_licensesettings.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\c5e30e1\about.png Generic Write,Read Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\c5e30e1\about.png Synchronize,Write Attributes
c:\programdata\mia5286.tmp\data\offline\858db3b9\c5e30e1\arrow.png Generic Write,Read Attributes

3524 additional files are not displayed above.

Registry Modifications

Key::Value 数据 API Name
HKLM\software\microsoft\tracing\rasapi32::enablefiletracing RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasapi32::enableautofiletracing RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasapi32::enableconsoletracing RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasapi32::filetracingmask ￿ RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasapi32::consoletracingmask ￿ RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasapi32::maxfilesize  RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasapi32::filedirectory %windir%\tracing RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasmancs::enablefiletracing RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasmancs::enableautofiletracing RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasmancs::enableconsoletracing RegNtPreCreateKey
Show More
HKLM\software\microsoft\tracing\rasmancs::filetracingmask ￿ RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasmancs::consoletracingmask ￿ RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasmancs::maxfilesize  RegNtPreCreateKey
HKLM\software\microsoft\tracing\rasmancs::filedirectory %windir%\tracing RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\c52c08ba9db029dc2bab621d6979e3deaeff3b2b_0001298896.exe::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::proxybypass  RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::intranetname  RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::uncasintranet  RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::autodetect RegNtPreCreateKey
HKCU\software\ocs::cid f1f27b75-e8ec-4f3f-830e-8a36d366b199 RegNtPreCreateKey
HKCU\software\ocs::pid chipderedesign RegNtPreCreateKey
HKCU\software\ocs::lastpid chipderedesign RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\259f41722338a9693183f912af481ba7367a12e4_0001302992.exe::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\ddfb16cd4931c973a2037d3fc83a4d7d775d05e4::blob RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\fae15fc7ff6d1c4dfd43fa86101885a1e8736e6f_0001296336.exe::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\ddfb16cd4931c973a2037d3fc83a4d7d775d05e4::blob RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\ddfb16cd4931c973a2037d3fc83a4d7d775d05e4::blob RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\8cf427fd790c3ad166068de81e57efbb932272d4::blob RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\8cf427fd790c3ad166068de81e57efbb932272d4::blob RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\0563b8630d62d75abbc8ab1e4bdfb5a899b24d43::blob 캇笋สI壡魱꠷犓쩭큛켍༜瀲퍙뉴ꚜ엣ꘊS@㸰ἰआ虠ňﶆɬ、〒ؐ⬊ĆĄ㞂ļ́ダ؛朅ಁ́ሰူਆثЁ舁㰷āȃ쀀 4㈰ࠆثԁ܅ȃࠆثԁ܅̃ࠆثԁ܅Ѓࠆثԁ܅ăࠆثԁ܅ࠃb 逾떙币䢏lᆝ﨡㖺襚槟Ṗ옽尲 RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\0563b8630d62d75abbc8ab1e4bdfb5a899b24d43::blob RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc3475 RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc3475 RegNtPreCreateKey
HKCU\software\ocs::cid 2943f7bb-6b15-443c-80f5-487bf4bc1a67 RegNtPreCreateKey
HKCU\software\ocs::cid b1576483-29c1-490e-99b0-372715e25f12 RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\91c6d6ee3e8ac86384e548c299295c756c817b81::blob ﺅᯱ䝏㧾勒ƃ柳皉﻾컠*⠰ࠆثԁ܅ȃࠆثԁ܅̃ࠆثԁ܅Ѓࠆثԁ܅ă *⠰ࠆثԁ܅ȃࠆثԁ܅̃ࠆثԁ܅Ѓࠆثԁ܅ăS%⌰ℰଆ虠ňŅ〇、〒ؐ⬊ĆĄ㞂ļ́拀Ā 贀⽲ꦁᏁ秀ꈶ涖沲કᶗ殴饁띔ﮋᒟĀ᐀笀䕛꿏쯎ﵺ鈱 RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\91c6d6ee3e8ac86384e548c299295c756c817b81::blob 쪌௜츢뻵걲ᩁꠑዘ욑訾揈쉈⦙畜腬腻h~쀀⼃ǖ thawte㭛gʀ䈮孠㭫䁲孻콅캯立ㇽ᪒뙪䛳埫偈b 犍脯솩쀓ᵹ㛱隢뉭镬霊됝䅫哪讷鿻S%⌰ℰଆ虠ňŅ〇、〒ؐ RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\91c6d6ee3e8ac86384e548c299295c756c817b81::blob 珜럹ᘞᷕ刦㉽᪱㵪ﺅᯱ䝏㧾勒ƃ柳皉﻾컠*⠰ࠆثԁ܅ȃࠆثԁ܅̃ࠆثԁ܅Ѓࠆثԁ܅ă *⠰ࠆثԁ܅ȃࠆثԁ܅̃ࠆثԁ܅Ѓࠆثԁ܅ăS%⌰ℰଆ虠ňŅ〇、〒ؐ⬊ĆĄ㞂ļ́拀Ā 贀⽲ꦁᏁ秀ꈶ涖沲કᶗ殴饁 RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\91c6d6ee3e8ac86384e548c299295c756c817b81::blob \ࠀ쪌௜츢뻵걲ᩁꠑዘ욑訾揈쉈⦙畜腬腻h~쀀⼃ǖ thawte㭛gʀ䈮孠㭫䁲孻콅캯立ㇽ᪒뙪䛳埫偈b 犍脯솩쀓ᵹ㛱隢뉭镬霊됝䅫哪讷鿻S%⌰ℰଆ RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Bpqeovke\AppData\Local\Temp\3354215998cc498efdf76f123473fe62\ServiceHide.dll RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Bpqeovke\AppData\Local\Temp\3354215998cc498efdf76f123473fe62\ServiceHide.dll\??\C:\Users\Bpqeovke\AppData\Local\T RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\ddfb16cd4931c973a2037d3fc83a4d7d775d05e4::blob RegNtPreCreateKey
HKCU\software\ocs::cid b6bcbd2a-784d-41b8-98d8-3162c40e8c06 RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\8cf427fd790c3ad166068de81e57efbb932272d4::blob RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\8cf427fd790c3ad166068de81e57efbb932272d4::blob RegNtPreCreateKey
HKCU\software\ocs::cid 99327af6-7931-4571-80ed-5999b64f6e17 RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc3475 킊ȁภ龡^œ紘ǵ獖}ž좟Ê RegNtPreCreateKey
HKCU\software\ocs::cid 2ca14f74-cda6-465a-ac5e-72e2e2592d5a RegNtPreCreateKey
HKLM\software\classes\applications\6b2cfb199a13f5f1916c7343eb65de0af6d3948a_0007041049::ishostapp RegNtPreCreateKey
HKCU\software\ocs::cid f55dbea1-7b18-403a-b681-ac7650fd266e RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\explorer::slowcontextmenuentries RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc3475 RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\45cac895921e78cb47e23cb99199859e5577ecad_0001307545::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKCU\software\ocs::cid ecde34c1-2fe4-4783-8ad4-8701334a7687 RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Oeqljtjo\AppData\Local\Temp\3354215998cc498efdf76f123473fe62\ServiceHide.dll RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Oeqljtjo\AppData\Local\Temp\3354215998cc498efdf76f123473fe62\ServiceHide.dll\??\C:\Users\Oeqljtjo\AppData\Local\T RegNtPreCreateKey
HKCU\software\ocs::cid a3ee39b5-46e7-46ef-90fa-55225df0d781 RegNtPreCreateKey
HKCU\software\ocs::pid chipde RegNtPreCreateKey
HKCU\software\ocs::lastpid chipde RegNtPreCreateKey
HKCU\software\ocs::cid e1300f74-a142-4dc7-b2b5-77934744e266 RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\38285f88e8cec3f3e570c2dbd6f0ad6e37d21b7a_0001305043::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Scuzwkco\AppData\Local\Temp\nsu97AC.tmp\ RegNtPreCreateKey
HKCU\software\ocs::cid 45a49712-ca74-448d-ad82-0f5e7014efe3 RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\259de4f5fb448142e0b446792fc249a48277877f_0000682291::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Ezrbjpsh\AppData\Local\Temp\3354215998cc498efdf76f123473fe62\ServiceHide.dll RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Ezrbjpsh\AppData\Local\Temp\3354215998cc498efdf76f123473fe62\ServiceHide.dll\??\C:\Users\Ezrbjpsh\AppData\Local\T RegNtPreCreateKey
HKCU\software\ocs::cid cb06aa81-8597-49e4-988d-9821d262ed20 RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\5.0\cache\content::cacheprefix RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\5.0\cache\cookies::cacheprefix Cookie: RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\5.0\cache\history::cacheprefix Visited: RegNtPreCreateKey
HKLM\software\classes\jscript:: JScript Language RegNtPreCreateKey
HKLM\software\classes\jscript\clsid:: {f414c260-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\livescript:: JScript Language RegNtPreCreateKey
HKLM\software\classes\livescript\clsid:: {f414c260-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\javascript:: JScript Language RegNtPreCreateKey
HKLM\software\classes\javascript\clsid:: {f414c260-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\javascript1.1:: JScript Language RegNtPreCreateKey
HKLM\software\classes\javascript1.1\clsid:: {f414c260-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\javascript1.2:: JScript Language RegNtPreCreateKey
HKLM\software\classes\javascript1.2\clsid:: {f414c260-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\javascript1.3:: JScript Language RegNtPreCreateKey
HKLM\software\classes\javascript1.3\clsid:: {f414c260-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\ecmascript:: JScript Language RegNtPreCreateKey
HKLM\software\classes\ecmascript\clsid:: {f414c260-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c260-6ac0-11cf-b6d1-00aa00bbbb58}:: JScript Language RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c260-6ac0-11cf-b6d1-00aa00bbbb58}\progid:: JScript RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c260-6ac0-11cf-b6d1-00aa00bbbb58}\inprocserver32:: C:\WINDOWS\SysWow64\jscript.dll RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c260-6ac0-11cf-b6d1-00aa00bbbb58}\inprocserver32::threadingmodel Both RegNtPreCreateKey
HKLM\software\classes\jscript author:: JScript Language Authoring RegNtPreCreateKey
HKLM\software\classes\jscript author\clsid:: {f414c261-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\jscript.compact author:: JScript Language Authoring RegNtPreCreateKey
HKLM\software\classes\jscript.compact author\clsid:: {f414c261-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\livescript author:: JScript Language Authoring RegNtPreCreateKey
HKLM\software\classes\livescript author\clsid:: {f414c261-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\javascript author:: JScript Language Authoring RegNtPreCreateKey
HKLM\software\classes\javascript author\clsid:: {f414c261-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\javascript1.1 author:: JScript Language Authoring RegNtPreCreateKey
HKLM\software\classes\javascript1.1 author\clsid:: {f414c261-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\javascript1.2 authorjavascript1.3 author:: JScript Language Authoring RegNtPreCreateKey
HKLM\software\classes\javascript1.2 authorjavascript1.3 author\clsid:: {f414c261-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\ecmascript author:: JScript Language Authoring RegNtPreCreateKey
HKLM\software\classes\ecmascript author\clsid:: {f414c261-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c261-6ac0-11cf-b6d1-00aa00bbbb58}:: JScript Language Authoring RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c261-6ac0-11cf-b6d1-00aa00bbbb58}\progid:: JScript Author RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c261-6ac0-11cf-b6d1-00aa00bbbb58}\inprocserver32:: C:\WINDOWS\SysWow64\jscript.dll RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c261-6ac0-11cf-b6d1-00aa00bbbb58}\inprocserver32::threadingmodel Both RegNtPreCreateKey
HKLM\software\classes\jscript.encode:: JScript Language Encoding RegNtPreCreateKey
HKLM\software\classes\jscript.encode\clsid:: {f414c262-6ac0-11cf-b6d1-00aa00bbbb58} RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c262-6ac0-11cf-b6d1-00aa00bbbb58}:: JScript Language Encoding RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c262-6ac0-11cf-b6d1-00aa00bbbb58}\progid:: JScript.Encode RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c262-6ac0-11cf-b6d1-00aa00bbbb58}\inprocserver32:: C:\WINDOWS\SysWow64\jscript.dll RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{f414c262-6ac0-11cf-b6d1-00aa00bbbb58}\inprocserver32::threadingmodel Both RegNtPreCreateKey
HKLM\software\classes\jscript.compact:: JScript Compact Profile (ECMA 327) RegNtPreCreateKey
HKLM\software\classes\jscript.compact\clsid:: {cc5bbec3-db4a-4bed-828d-08d78ee3e1ed} RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{cc5bbec3-db4a-4bed-828d-08d78ee3e1ed}:: JScript Compact Profile (ECMA 327) RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{cc5bbec3-db4a-4bed-828d-08d78ee3e1ed}\progid:: JScript.Compact RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{cc5bbec3-db4a-4bed-828d-08d78ee3e1ed}\inprocserver32:: C:\WINDOWS\SysWow64\jscript.dll RegNtPreCreateKey
HKLM\software\classes\wow6432node\clsid\{cc5bbec3-db4a-4bed-828d-08d78ee3e1ed}\inprocserver32::threadingmodel Both RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Tieybasr\AppData\Local\Temp\3dba2b032e844ea98475f6258ce8bb25\sciter32.dll RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Users\Tieybasr\AppData\Local\Temp\3dba2b032e844ea98475f6258ce8bb25\sciter32.dll\??\C:\Users\Tieybasr\AppData\Local\Temp RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\7a6b2b15d4d01a30874debe02c10ad47f65430b4_0001131272::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKCU\software\ocs::cid 54cfcae4-462b-4937-af1b-785f8d4109c4 RegNtPreCreateKey
HKCU\software\ocs::cid 9491269e-1d51-4355-adee-1f3423807f25 RegNtPreCreateKey
HKCU\software\ocs::cid 108d9676-cd45-4fd5-884c-70dca7441ca7 RegNtPreCreateKey
HKCU\software\ocs::cid 6ce5b45e-aff0-4eb3-9fe3-0262f39e727c RegNtPreCreateKey
HKCU\software\ocs::cid f20cb98d-6848-4084-8a6a-66d9614a34ca RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::inno setup: setup version 5.5.0 (u) RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::inno setup: app path C:\Program Files (x86)\Est RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::installlocation C:\Program Files (x86)\Est\ RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::inno setup: icon group (Default) RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::inno setup: user Vmxnzinp RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::inno setup: language default RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::displayname Est version 2.2.10.4 RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::uninstallstring "C:\Program Files (x86)\Est\unins000.exe" RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::quietuninstallstring "C:\Program Files (x86)\Est\unins000.exe" /SILENT RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::displayversion 2.2.10.4 RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::nomodify  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::norepair  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::installdate % RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::majorversion  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::minorversion  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\est_is1::estimatedsize RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75 RegNtPreCreateKey
HKCU\software\ocs::cid e8c19d2b-1feb-426c-8c5a-68715937d3ec RegNtPreCreateKey
HKCU\software\magicbit\savefrom.net helper::userid 20C65795-0F9C-4669-8B98-81340645747F RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75 沓䈛x䠱O噀ñ቎Ĥ᝹ʁ뽹ɞ傄ë힇ġɼகþ龕ij¨悽ʩ駃ó័VߙĤ泦봂~蒬ĎÉŁ뜪ĢŃ| RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75 沔⬉ʾ䈛x䠱O噀ñ቎Ĥ᝹ʁ뽹ɞ傄ë힇ġɼகþ龕ij¨悽ʩ駃ó័VߙĤ泦봂~蒬ĎÉŁ뜪ĢŃ| RegNtPreCreateKey
HKLM\system\controlset001\services\bam\state\usersettings\s-1-5-21-3119368278-1123331430-659265220-1001::\device\harddiskvolume2\windows\system32\conhost.exe ᫾㬲惩ǜ RegNtPreCreateKey
HKCU\software\ocs::cid d342dbaa-330e-4edb-acd1-6bd474706a88 RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc3475 鯌ȁ龡^3獖} 偫~ 엦1dᵂċᵆċeꙥžܰ엦1¶fꙥži'ꙥžr3֢vꙥž—뎾ï RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\bb8d1d0f6a611a8dd61ba8e61a8acac16757f98a_0001080072::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75 RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations \??\C:\Windows\SystemTemp\a9dd6c3f-d641-4292-855a-e9c09c1b694b.tmp\??\C:\Windows\SystemTemp\85968c61-a19d-4e7b-a80f-d2a1fc3c08 RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75 RegNtPreCreateKey
HKCU\software\ocs::cid f14103bd-c3bc-47d6-8c4a-6ab21ca25d0f RegNtPreCreateKey
HKCU\software\ocs::cid 0a82ca97-ffd5-457a-bd93-eb00315b4437 RegNtPreCreateKey
HKCU\software\ocs::cid 9822b388-3644-45c6-bfe9-ca76beef1660 RegNtPreCreateKey
HKCU\software\ocs::cid d5aa46de-a3ed-4a27-8513-b8b25db67ea5 RegNtPreCreateKey
HKLM\system\controlset001\services\eventlog\application\d956f524f0a04582ec904d254781e836b12aa07a_0001307753::eventmessagefile C:\Windows\Microsoft.NET\Framework64\v4.0.30319\EventLogMessages.dll RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc3475 RegNtPreCreateKey
HKCU\software\ocs::cid d6082e5c-676b-4e1a-ab3c-921ff048f23a RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\91c6d6ee3e8ac86384e548c299295c756c817b81::blob 쪌௜츢뻵걲ᩁꠑዘﺅᯱ䝏㧾勒ƃ柳皉﻾컠*⠰ࠆثԁ܅ȃࠆثԁ܅̃ࠆثԁ܅Ѓࠆثԁ܅ă *⠰ࠆثԁ܅ȃࠆثԁ܅̃ࠆثԁ܅Ѓࠆثԁ܅ăS%⌰ℰଆ虠ňŅ〇、〒ؐ⬊ĆĄ㞂ļ́拀Ā 贀⽲ꦁᏁ秀ꈶ涖沲કᶗ殴饁 RegNtPreCreateKey
HKLM\software\microsoft\systemcertificates\authroot\certificates\91c6d6ee3e8ac86384e548c299295c756c817b81::blob \ࠀ珜럹ᘞᷕ刦㉽᪱㵪욑訾揈쉈⦙畜腬腻h~쀀⼃ǖ thawte㭛gʀ䈮孠㭫䁲孻콅캯立ㇽ᪒뙪䛳埫偈b 犍脯솩쀓ᵹ㛱隢뉭镬霊됝䅫哪讷鿻S%⌰ℰଆ RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\explorer::slowcontextmenuentries RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75 RegNtPreCreateKey
HKCU\software\microsoft\edge\blbeacon::failed_count RegNtPreCreateKey
HKCU\software\microsoft\edge\blbeacon::state  RegNtPreCreateKey
HKCU\software\microsoft\edge\thirdparty::statuscodes (NULL) RegNtPreCreateKey
HKCU\software\microsoft\edge\thirdparty::statuscodes  RegNtPreCreateKey
HKCU\software\microsoft\edge\elfbeacon::version 143.0.3650.139 RegNtPreCreateKey
HKCU\software\microsoft\edge\blbeacon::failed_count  RegNtPreCreateKey
HKCU\software\microsoft\edge\blbeacon::state  RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations *1\??\C:\Windows\SystemTemp\MicrosoftEdgeUpdate.exe.old122e4*1\??\C:\Windows\SystemTemp\CopilotUpdate.exe.old12352*1\??\C:\P RegNtPreCreateKey
HKCU\software\ocs::cid f77d472a-22aa-4edc-bff5-d7dc51c4e26b RegNtPreCreateKey
HKLM\system\controlset001\control\session manager::pendingfilerenameoperations *1\??\C:\Windows\SystemTemp\MicrosoftEdgeUpdate.exe.old5af52*1\??\C:\Windows\SystemTemp\CopilotUpdate.exe.old5af62*1\??\C:\P RegNtPreCreateKey
HKCU\software\ocs::cid 8d655dcd-7de6-4b40-8099-d6a863213b29 RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing::enableconsoletracing RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasapi32::enablefiletracing RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasapi32::enableautofiletracing RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasapi32::enableconsoletracing RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasapi32::filetracingmask ￿ RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasapi32::consoletracingmask ￿ RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasapi32::maxfilesize  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasapi32::filedirectory %windir%\tracing RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasmancs::enablefiletracing RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasmancs::enableautofiletracing RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasmancs::enableconsoletracing RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasmancs::filetracingmask ￿ RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasmancs::consoletracingmask ￿ RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasmancs::maxfilesize  RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\tracing\rasmancs::filedirectory %windir%\tracing RegNtPreCreateKey

Windows API Usage

Category API
Process Manipulation Evasion
  • NtUnmapViewOfSection
  • ReadProcessMemory
Process Shell Execute
  • CreateProcess
  • ShellExecute
  • ShellExecuteEx
  • WriteConsole
User Data Access
  • GetComputerName
  • GetComputerNameEx
  • GetUserDefaultLocaleName
  • GetUserName
  • GetUserObjectInformation
Other Suspicious
  • AdjustTokenPrivileges
  • SetWindowsHookEx
Keyboard Access
  • GetAsyncKeyState
  • GetKeyState
Network Winsock
  • closesocket
  • connect
  • freeaddrinfo
  • getaddrinfo
  • gethostbyname
  • getpeername
  • getsockname
  • inet_addr
  • recv
  • send
Show More
  • setsockopt
  • socket
Syscall Use
  • ntdll.dll!NtAccessCheck
  • ntdll.dll!NtAddAtomEx
  • ntdll.dll!NtAdjustPrivilegesToken
  • ntdll.dll!NtAlertThreadByThreadId
  • ntdll.dll!NtAlpcConnectPort
  • ntdll.dll!NtAlpcConnectPortEx
  • ntdll.dll!NtAlpcCreatePortSection
  • ntdll.dll!NtAlpcCreateSectionView
  • ntdll.dll!NtAlpcCreateSecurityContext
  • ntdll.dll!NtAlpcDeleteSecurityContext
Show More
  • ntdll.dll!NtAlpcQueryInformation
  • ntdll.dll!NtAlpcQueryInformationMessage
  • ntdll.dll!NtAlpcSendWaitReceivePort
  • ntdll.dll!NtAlpcSetInformation
  • ntdll.dll!NtApphelpCacheControl
  • ntdll.dll!NtAssociateWaitCompletionPacket
  • ntdll.dll!NtCancelTimer2
  • ntdll.dll!NtCancelWaitCompletionPacket
  • ntdll.dll!NtClearEvent
  • ntdll.dll!NtClose
  • ntdll.dll!NtCompareSigningLevels
  • ntdll.dll!NtConnectPort
  • ntdll.dll!NtCreateEvent
  • ntdll.dll!NtCreateFile
  • ntdll.dll!NtCreateIoCompletion
  • ntdll.dll!NtCreateKey
  • ntdll.dll!NtCreateMutant
  • ntdll.dll!NtCreatePrivateNamespace
  • ntdll.dll!NtCreateSection
  • ntdll.dll!NtCreateSemaphore
  • ntdll.dll!NtCreateThreadEx
  • ntdll.dll!NtCreateTimer2
  • ntdll.dll!NtCreateWaitCompletionPacket
  • ntdll.dll!NtCreateWorkerFactory
  • ntdll.dll!NtDelayExecution
  • ntdll.dll!NtDeleteValueKey
  • ntdll.dll!NtDeviceIoControlFile
  • ntdll.dll!NtDuplicateObject
  • ntdll.dll!NtDuplicateToken
  • ntdll.dll!NtEnumerateKey
  • ntdll.dll!NtEnumerateValueKey
  • ntdll.dll!NtFlushKey
  • ntdll.dll!NtFlushProcessWriteBuffers
  • ntdll.dll!NtFreeVirtualMemory
  • ntdll.dll!NtFsControlFile
  • ntdll.dll!NtGetCachedSigningLevel
  • ntdll.dll!NtGetCompleteWnfStateSubscription
  • ntdll.dll!NtGetWriteWatch
  • ntdll.dll!NtMapViewOfSection
  • ntdll.dll!NtNotifyChangeKey
  • ntdll.dll!NtOpenDirectoryObject
  • ntdll.dll!NtOpenEvent
  • ntdll.dll!NtOpenFile
  • ntdll.dll!NtOpenKey
  • ntdll.dll!NtOpenKeyEx
  • ntdll.dll!NtOpenProcess
  • ntdll.dll!NtOpenProcessToken
  • ntdll.dll!NtOpenProcessTokenEx
  • ntdll.dll!NtOpenSection
  • ntdll.dll!NtOpenSemaphore
  • ntdll.dll!NtOpenSymbolicLinkObject
  • ntdll.dll!NtOpenThread
  • ntdll.dll!NtOpenThreadToken
  • ntdll.dll!NtOpenThreadTokenEx
  • ntdll.dll!NtPowerInformation
  • ntdll.dll!NtProtectVirtualMemory
  • ntdll.dll!NtQueryAttributesFile
  • ntdll.dll!NtQueryDebugFilterState
  • ntdll.dll!NtQueryDefaultLocale
  • ntdll.dll!NtQueryDirectoryFileEx
  • ntdll.dll!NtQueryEvent
  • ntdll.dll!NtQueryFullAttributesFile
  • ntdll.dll!NtQueryInformationFile
  • ntdll.dll!NtQueryInformationJobObject
  • ntdll.dll!NtQueryInformationProcess
  • ntdll.dll!NtQueryInformationThread
  • ntdll.dll!NtQueryInformationToken
  • ntdll.dll!NtQueryKey
  • ntdll.dll!NtQueryLicenseValue
  • ntdll.dll!NtQueryPerformanceCounter
  • ntdll.dll!NtQuerySecurityAttributesToken
  • ntdll.dll!NtQuerySecurityObject
  • ntdll.dll!NtQuerySystemInformation
  • ntdll.dll!NtQuerySystemInformationEx
  • ntdll.dll!NtQueryValueKey
  • ntdll.dll!NtQueryVirtualMemory
  • ntdll.dll!NtQueryVolumeInformationFile
  • ntdll.dll!NtQueryWnfStateData
  • ntdll.dll!NtQueueApcThread
  • ntdll.dll!NtQueueApcThreadEx2
  • ntdll.dll!NtReadFile
  • ntdll.dll!NtReadRequestData
  • ntdll.dll!NtReadVirtualMemory
  • ntdll.dll!NtReleaseMutant
  • ntdll.dll!NtReleaseSemaphore
  • ntdll.dll!NtReleaseWorkerFactoryWorker
  • ntdll.dll!NtRequestWaitReplyPort
  • ntdll.dll!NtResetWriteWatch
  • ntdll.dll!NtResumeThread
  • ntdll.dll!NtSetEvent

35 additional items are not displayed above.

Encryption Used
  • BCryptOpenAlgorithmProvider
  • CryptAcquireContext
Anti Debug
  • IsDebuggerPresent
  • NtQuerySystemInformation
  • OutputDebugString
Network Winsock2
  • WSAConnect
  • WSASend
  • WSASocket
  • WSAStartup
  • WSAttemptAutodialName
Network Winhttp
  • WinHttpOpen
Network Info Queried
  • GetAdaptersAddresses
  • GetAdaptersInfo
  • GetNetworkParams
Network Wininet
  • HttpOpenRequest
  • HttpSendRequest
  • InternetConnect
  • InternetOpen
  • InternetQueryOption
Service Control
  • StartServiceCtrlDispatcher
Process Terminate
  • TerminateProcess

Shell Command Execution

"C:\Users\Wpdvxjaf\AppData\Local\Temp\is-I4P1C.tmp\0eee79dbb087e33053f52be3b2a8d24b382472e6_0001231944.tmp" /SL5="$20262,974340,86528,c:\users\user\downloads\0eee79dbb087e33053f52be3b2a8d24b382472e6_0001231944.exe"
"C:\Users\Dufgzvuc\AppData\Local\Temp\is-IP1T4.tmp\b1e8a89b109301c2cec8608ebc19a4cc0842c7c1_0002458480.tmp" /SL5="$4021E,1559708,780800,c:\users\user\downloads\b1e8a89b109301c2cec8608ebc19a4cc0842c7c1_0002458480.exe"
"C:\Users\Zglrbept\AppData\Local\Temp\is-0A3P2.tmp\df63ea09c17337b5038031b16168af645f3db5ca_0002144129.tmp" /SL5="$3014A,1283562,135680,c:\users\user\downloads\df63ea09c17337b5038031b16168af645f3db5ca_0002144129.exe"
"C:\Users\Udqvlgjy\AppData\Local\Temp\is-KNQFO.tmp\7c96d0426eb42d6a718b7a04bb1c6ea2d7edf4ef_0001602536.tmp" /SL5="$60046,1347627,84480,c:\users\user\downloads\7c96d0426eb42d6a718b7a04bb1c6ea2d7edf4ef_0001602536.exe"
"C:\Users\Cmejzuej\AppData\Local\Temp\is-R4TQV.tmp\5b19cbbd7319b2a333af213340a1a2faa4757c0f_0002330088.tmp" /SL5="$7005A,2081950,56832,c:\users\user\downloads\5b19cbbd7319b2a333af213340a1a2faa4757c0f_0002330088.exe"
Show More
"C:\Users\Ypyvbfrf\AppData\Local\Temp\is-6GH1Q.tmp\3b36faab9b694b9d0733b0f02ef06214ff415fe5_0002130188.tmp" /SL5="$1023E,1347151,138240,c:\users\user\downloads\3b36faab9b694b9d0733b0f02ef06214ff415fe5_0002130188.exe"
"C:\Users\Aopamnar\AppData\Local\Temp\is-Q4038.tmp\b26d1d90cc1e63890c5bc5f19879987513eb4e4a_0002089208.tmp" /SL5="$701DA,1275714,155648,c:\users\user\downloads\b26d1d90cc1e63890c5bc5f19879987513eb4e4a_0002089208.exe"
"C:\Users\Uhriwwwh\AppData\Local\Temp\is-IUASU.tmp\cfb231b0ce415c038243173c7bb2a1a157bd8bc0_0001627684.tmp" /SL5="$D005C,1377693,134656,c:\users\user\downloads\cfb231b0ce415c038243173c7bb2a1a157bd8bc0_0001627684.exe"
"C:\Users\Sczcfpau\AppData\Local\Temp\is-MO5VE.tmp\35531354472f2640b2cf9a88b1e1a8cb50184513_0005856976.tmp" /SL5="$20270,4807120,845824,c:\users\user\downloads\35531354472f2640b2cf9a88b1e1a8cb50184513_0005856976.exe"
"C:\Users\Xsydzvos\AppData\Local\Temp\is-EFPT6.tmp\b4e0f114c4f07e8bcf861de1b8714b70da278ea6_0002722617.tmp" /SL5="$20262,1914133,114176,c:\users\user\downloads\b4e0f114c4f07e8bcf861de1b8714b70da278ea6_0002722617.exe"
"C:\Users\Ifrehfat\AppData\Local\Temp\is-4P8GL.tmp\793a3145e70748d2b1fe8f320ae113ae33724907_0001881120.tmp" /SL5="$1024E,1632679,203264,c:\users\user\downloads\793a3145e70748d2b1fe8f320ae113ae33724907_0001881120.exe"
"C:\Users\Gsroppzj\AppData\Local\Temp\is-JMJJ7.tmp\36a29984a1539e2926c3b5efa4774ab022468aea_0000686328.tmp" /SL5="$1E01E0,665351,73216,c:\users\user\downloads\36a29984a1539e2926c3b5efa4774ab022468aea_0000686328.exe"
"C:\Users\Puxnprrs\AppData\Local\Temp\is-LS60K.tmp\f3d7a41474585947d6f93a0ffc0fa93759058e39_0001825504.tmp" /SL5="$2025C,1433285,193536,c:\users\user\downloads\f3d7a41474585947d6f93a0ffc0fa93759058e39_0001825504.exe"
"C:\Users\Lnlhkehc\AppData\Local\Temp\is-NRNGJ.tmp\f26ee557fd4b12a7e95e2ef740f671c9fd9ccb34_0001235648.tmp" /SL5="$20272,975125,75264,c:\users\user\downloads\f26ee557fd4b12a7e95e2ef740f671c9fd9ccb34_0001235648.exe"
"C:\Users\Yjckeush\AppData\Local\Temp\is-B1VH9.tmp\a3fcd28261f4e03d93209308b91a6b1963c9f99b_0001212000.tmp" /SL5="$20236,955975,83968,c:\users\user\downloads\a3fcd28261f4e03d93209308b91a6b1963c9f99b_0001212000.exe"
"C:\Users\Beoecslz\AppData\Local\Temp\is-GC2I6.tmp\950d7d7ab53ac6dbe4a400438db97b7c0a36b798_0002152960.tmp" /SL5="$4024E,1297389,171008,c:\users\user\downloads\950d7d7ab53ac6dbe4a400438db97b7c0a36b798_0002152960.exe"
"C:\Users\Icztoyci\AppData\Local\Temp\is-S653A.tmp\efcfd71b107d926576d5a97b3a66316953aea03f_0001774880.tmp" /SL5="$1023E,839193,832512,c:\users\user\downloads\efcfd71b107d926576d5a97b3a66316953aea03f_0001774880.exe"
C:\Users\Afsdvtlm\AppData\Local\Temp\DMR\dmr_72.exe -install -82678119 -chipderedesign -2c7ee4a5cac845589965fa0ae0ee44e8 - -BLUB2 -tcfwzkgsnjekcpbv -5796
"C:\Users\Mflqlnvp\AppData\Local\Temp\is-3NTTU.tmp\074cd53a74f9a3ea8af1fe4e6fc35d28fc20d0a7_0000983072.tmp" /SL5="$5004A,719630,72704,c:\users\user\downloads\074cd53a74f9a3ea8af1fe4e6fc35d28fc20d0a7_0000983072.exe"
"C:\Users\Wtvtdntb\AppData\Local\Temp\is-HVQJI.tmp\ab2ce66fa00c8081205e948de7341b0a29d9892a_0001229448.tmp" /SL5="$10260,972352,83968,c:\users\user\downloads\ab2ce66fa00c8081205e948de7341b0a29d9892a_0001229448.exe"
.\GenericSetup.exe
"C:\Users\Sxklekjx\AppData\Local\Temp\is-3SBVV.tmp\ce92fd73161e5e2974a573b3141206a53342da8e_0000964496.tmp" /SL5="$20056,703591,56832,c:\users\user\downloads\ce92fd73161e5e2974a573b3141206a53342da8e_0000964496.exe"
"C:\Users\Dilkoctg\AppData\Local\Temp\is-H8OFE.tmp\26658c909c185b334219647ad323be0194824cba_0000985535.tmp" /SL5="$20028,738180,56832,c:\users\user\downloads\26658c909c185b334219647ad323be0194824cba_0000985535.exe"
"C:\Users\Mcfxbmbp\AppData\Local\Temp\is-G9OGP.tmp\0b3383be6a0a1151a24bad50f3bfa3bbab79a62a_0005112288.tmp" /SL5="$30234,4061545,845824,c:\users\user\downloads\0b3383be6a0a1151a24bad50f3bfa3bbab79a62a_0005112288.exe"
"C:\Users\Hzqospyr\AppData\Local\Temp\is-4LD29.tmp\05bdd5a8e36da5729661f63672843d89f99d7612_0001824944.tmp" /SL5="$2021E,1014504,171008,c:\users\user\downloads\05bdd5a8e36da5729661f63672843d89f99d7612_0001824944.exe"
"C:\Users\Vahkrcpw\AppData\Local\Temp\is-LTEJ4.tmp\90b4e4f5d2eba295aa3739d914958e658bb65a8f_0000763979.tmp" /SL5="$20236,373526,121344,c:\users\user\downloads\90b4e4f5d2eba295aa3739d914958e658bb65a8f_0000763979.exe"
"C:\Users\Sgpokamp\AppData\Local\Temp\is-55EUT.tmp\15f2a5050c509ba0a6d86e5bee4075997747b3ae_0001228048.tmp" /SL5="$20228,968907,86528,c:\users\user\downloads\15f2a5050c509ba0a6d86e5bee4075997747b3ae_0001228048.exe"
"C:\Users\Scxnwdjh\AppData\Local\Temp\is-09PT9.tmp\b8b45b5c8da0a17962fa27273603dbf984ae50dd_0000979336.tmp" /SL5="$50040,718310,57856,c:\users\user\downloads\b8b45b5c8da0a17962fa27273603dbf984ae50dd_0000979336.exe"
"C:\Users\Xjsaeyrh\AppData\Local\Temp\is-DBTK7.tmp\dc8c2b2de3b83549b5d85ee0d1818870d96b8836_0001507600.tmp" /SL5="$901E4,1251998,80384,c:\users\user\downloads\dc8c2b2de3b83549b5d85ee0d1818870d96b8836_0001507600.exe"
"C:\Users\Gduyautp\AppData\Local\Temp\is-5UB51.tmp\52a22d74f877d4f06918801c90a035956394b951_0000957760.tmp" /SL5="$4004C,701618,56832,c:\users\user\downloads\52a22d74f877d4f06918801c90a035956394b951_0000957760.exe"
"C:\Users\Vrpemdhm\AppData\Local\Temp\is-15V50.tmp\91c1b729309f5bbf83094ac1f31dc7015f5562c2_0000983120.tmp" /SL5="$20278,727056,75776,c:\users\user\downloads\91c1b729309f5bbf83094ac1f31dc7015f5562c2_0000983120.exe"
"C:\Users\Tpybwjis\AppData\Local\Temp\is-2N2UL.tmp\fd7480eca81f2e75565c44ce938a0f3928476484_0001569761.tmp" /SL5="$10258,1317452,56832,c:\users\user\downloads\fd7480eca81f2e75565c44ce938a0f3928476484_0001569761.exe"
"C:\Users\Ksyhqpvh\AppData\Local\Temp\is-A7OKB.tmp\6c963fb259a14ad199b887d2710b98b9ed6f86a5_0001572864.tmp" /SL5="$90028,1502968,81408,c:\users\user\downloads\6c963fb259a14ad199b887d2710b98b9ed6f86a5_0001572864.exe"
"C:\Users\Ksyhqpvh\AppData\Local\Temp\is-PBM86.tmp\6c963fb259a14ad199b887d2710b98b9ed6f86a5_0001572864.tmp" /SL5="$20040,56430,54272,C:\Users\Ksyhqpvh\AppData\Local\Temp\is-A7OKB.tmp\6c963fb259a14ad199b887d2710b98b9ed6f86a5_0001572864.tmp" /SL5="$90028,1502968,81408,c:\users\user\downloads\6c963fb259a14ad199b887d2710b98b9ed6f86a5_0001572864.exe"
"C:\Users\Ydpjzehe\AppData\Local\Temp\is-AN90O.tmp\1047be5bbab6f74c02e246c410720eb0cb6144c4_0001302119.tmp" /SL5="$10256,1057724,56832,c:\users\user\downloads\1047be5bbab6f74c02e246c410720eb0cb6144c4_0001302119.exe"
"C:\Users\Qnzjhsoc\AppData\Local\Temp\is-M0QVD.tmp\df93560287b8e2c23ab8accad73a6051e37aa805_0001422568.tmp" /SL5="$10228,1160725,57856,c:\users\user\downloads\df93560287b8e2c23ab8accad73a6051e37aa805_0001422568.exe"
"C:\Users\Loewobin\AppData\Local\Temp\is-VHG37.tmp\9dcf378767eb5329ed4325a3fe40d1afeb6a9f5d_0001878616.tmp" /SL5="$5007E,1030700,171008,c:\users\user\downloads\9dcf378767eb5329ed4325a3fe40d1afeb6a9f5d_0001878616.exe"
"C:\Users\Tmlgmtex\AppData\Local\Temp\is-MSKQE.tmp\fedfbafd80eff765942e5241cc1a707d2c44a199_0001180376.tmp" /SL5="$301E4,924746,75264,c:\users\user\downloads\fedfbafd80eff765942e5241cc1a707d2c44a199_0001180376.exe"
"C:\Users\Yavelhtp\AppData\Local\Temp\is-062S3.tmp\b681d8c4b2f3d855faca402faa9a9c965a52ac33_0001587096.tmp" /SL5="$7004E,1331208,142336,c:\users\user\downloads\b681d8c4b2f3d855faca402faa9a9c965a52ac33_0001587096.exe"
"C:\Users\Buvhbmzo\AppData\Local\Temp\is-PGNI6.tmp\bba54e38ebeb0353eb521daed5b9bc5ba4556e6a_0001003864.tmp" /SL5="$7004E,749147,83968,c:\users\user\downloads\bba54e38ebeb0353eb521daed5b9bc5ba4556e6a_0001003864.exe"
"C:\Users\Dkiozelq\AppData\Local\Temp\is-5HRHH.tmp\29aabb3025a4b1fa7171d9dd57e64c71f2e2f86c_0000969920.tmp" /SL5="$80056,718988,56832,c:\users\user\downloads\29aabb3025a4b1fa7171d9dd57e64c71f2e2f86c_0000969920.exe"
"C:\Users\Vgcjvhff\AppData\Local\Temp\is-B3I55.tmp\37429384b93d8f7b9b843f8b5d9390e68225f697_0000692960.tmp" /SL5="$3023C,676681,83968,c:\users\user\downloads\37429384b93d8f7b9b843f8b5d9390e68225f697_0000692960.exe"
"C:\Users\Cpescfwf\AppData\Local\Temp\is-7312G.tmp\720996e26ac5fcceef494f26099933063b9bf089_0003400617.tmp" /SL5="$200CE,2341115,845824,c:\users\user\downloads\720996e26ac5fcceef494f26099933063b9bf089_0003400617.exe"
"C:\Users\Dxyacvqg\AppData\Local\Temp\is-9ECAH.tmp\35db0ac699b236db47ee636b2acbaac1ab3a8187_0001855904.tmp" /SL5="$50184,1048443,171008,c:\users\user\downloads\35db0ac699b236db47ee636b2acbaac1ab3a8187_0001855904.exe"
"C:\Users\Cnjbgysj\AppData\Local\Temp\is-1JMQL.tmp\5a89e7b3bd496176fb3a195dd32d8e43559b23b6_0001570592.tmp" /SL5="$30026,1320414,92672,c:\users\user\downloads\5a89e7b3bd496176fb3a195dd32d8e43559b23b6_0001570592.exe"
"C:\Users\Jditfndp\AppData\Local\Temp\is-GT2MQ.tmp\01f6499450117d4358d7c08c0af530fea49ed748_0002290880.tmp" /SL5="$30060,1471934,146432,c:\users\user\downloads\01f6499450117d4358d7c08c0af530fea49ed748_0002290880.exe"
"C:\Users\Jerbuoiw\AppData\Local\Temp\is-K6J4N.tmp\3bd0418467034c5bbab21900b8af8ed0b3b72ed8_0001287520.tmp" /SL5="$5017C,1027738,81408,c:\users\user\downloads\3bd0418467034c5bbab21900b8af8ed0b3b72ed8_0001287520.exe"
"C:\Users\Ynbdpdmw\AppData\Local\Temp\is-MLF6I.tmp\ef1c4b210580e4f912a8d5a31eff3e88b93fc14d_0001867472.tmp" /SL5="$40278,1073288,171008,c:\users\user\downloads\ef1c4b210580e4f912a8d5a31eff3e88b93fc14d_0001867472.exe"
"C:\Users\Dvzygvfi\AppData\Local\Temp\is-DUCMP.tmp\947aa1f4ced886f24fe2977df9ccc3b64fad7dbe_0001551516.tmp" /SL5="$301FA,1299937,91648,c:\users\user\downloads\947aa1f4ced886f24fe2977df9ccc3b64fad7dbe_0001551516.exe"
"C:\Users\Sktgxxds\AppData\Local\Temp\is-NKH61.tmp\ed5b3a80b0b2ee47fb231b3883bac2d0c26f076d_0001259368.tmp" /SL5="$9005C,996100,75776,c:\users\user\downloads\ed5b3a80b0b2ee47fb231b3883bac2d0c26f076d_0001259368.exe"
"C:\Users\Csmlqoom\AppData\Local\Temp\is-3PD8H.tmp\befceb835a358da471a0cfc5211b3f3f6a113f58_0001513763.tmp" /SL5="$20146,1268749,56832,c:\users\user\downloads\befceb835a358da471a0cfc5211b3f3f6a113f58_0001513763.exe"
"C:\Users\Hmybhcnz\AppData\Local\Temp\is-LF3OI.tmp\8737cad42bc87274d897217376ec87859e590d1a_0002214704.tmp" /SL5="$4004A,1387654,271360,c:\users\user\downloads\8737cad42bc87274d897217376ec87859e590d1a_0002214704.exe"
"C:\Users\Jdmjoprx\AppData\Local\Temp\is-KPG90.tmp\6c8e91b3477c37f995d967833f5e23c8301b46b4_0001579472.tmp" /SL5="$40194,1323222,84480,c:\users\user\downloads\6c8e91b3477c37f995d967833f5e23c8301b46b4_0001579472.exe"
"C:\Users\Fvnpofnk\AppData\Local\Temp\is-FI6I0.tmp\048d9e3a51bd1dc701c7e3f03b05ee99748d23fd_0001491072.tmp" /SL5="$30044,1241131,57856,c:\users\user\downloads\048d9e3a51bd1dc701c7e3f03b05ee99748d23fd_0001491072.exe"
"C:\Users\Kpprtfyw\AppData\Local\Temp\is-3T4M7.tmp\cb69f85fb609c1ae05a4304b4ea6dd5d6d8dfd96_0002108232.tmp" /SL5="$30266,1266277,155648,c:\users\user\downloads\cb69f85fb609c1ae05a4304b4ea6dd5d6d8dfd96_0002108232.exe"
"C:\Users\Pwtqazxw\AppData\Local\Temp\is-DBT76.tmp\cb1d6ea27690144d669d503cf3c708911599846a_0003400618.tmp" /SL5="$3005A,2341115,845824,c:\users\user\downloads\cb1d6ea27690144d669d503cf3c708911599846a_0003400618.exe"
"C:\Users\Avwjrlov\AppData\Local\Temp\is-K4P6S.tmp\29e97fbf9c90caf109891a438bc0192282c16e12_0001494224.tmp" /SL5="$40180,1238674,75264,c:\users\user\downloads\29e97fbf9c90caf109891a438bc0192282c16e12_0001494224.exe"
"C:\Users\Zotdyvcf\AppData\Local\Temp\is-T1QKE.tmp\916940bb6021cb01e1d1fa4ae3345eceea3fe1ee_0000700904.tmp" /SL5="$10256,668893,65024,c:\users\user\downloads\916940bb6021cb01e1d1fa4ae3345eceea3fe1ee_0000700904.exe"
"C:\Users\Tdkivjvo\AppData\Local\Temp\is-1JM0B.tmp\bcb9efebd45c6556d11e141adfb6865e037d80d0_0002898694.tmp" /SL5="$30274,2518112,140800,c:\users\user\downloads\bcb9efebd45c6556d11e141adfb6865e037d80d0_0002898694.exe"
"C:\Users\Loombbtm\AppData\Local\Temp\is-TCK9E.tmp\e6e3ca1012e8904f759e7b31206ea8ea02337164_0003391136.tmp" /SL5="$7004E,2340686,845824,c:\users\user\downloads\e6e3ca1012e8904f759e7b31206ea8ea02337164_0003391136.exe"
"C:\Users\Btbrvdfb\AppData\Local\Temp\is-AJJ7O.tmp\31b040b67948b862fd95758b87cddbc96bb5020b_0002563544.tmp" /SL5="$40028,2315645,56832,c:\users\user\downloads\31b040b67948b862fd95758b87cddbc96bb5020b_0002563544.exe"
"C:\Users\Elzlxaxa\AppData\Local\Temp\is-TPC56.tmp\689b3928d677a9455d4d81d52e2cd333919e4c1c_0001338291.tmp" /SL5="$10254,1094271,66048,c:\users\user\downloads\689b3928d677a9455d4d81d52e2cd333919e4c1c_0001338291.exe"
"C:\Users\Vrxcvear\AppData\Local\Temp\is-MROK6.tmp\4ee4aa49bb5fc61af317753bdf3bdd1d4b27bb0d_0002208112.tmp" /SL5="$40266,1379935,267776,c:\users\user\downloads\4ee4aa49bb5fc61af317753bdf3bdd1d4b27bb0d_0002208112.exe"
"C:\Users\Bvfdgwbi\AppData\Local\Temp\is-QGJ7L.tmp\6aa71a30da5fcf8315bbce8a78044f2212ed5417_0001838663.tmp" /SL5="$2025A,1013489,148992,c:\users\user\downloads\6aa71a30da5fcf8315bbce8a78044f2212ed5417_0001838663.exe"
"C:\Users\Awvknhgh\AppData\Local\Temp\is-SI3TM.tmp\c82c94b622e5fc78df4ce02bb781e8830cd8b181_0001184736.tmp" /SL5="$70060,928983,86528,c:\users\user\downloads\c82c94b622e5fc78df4ce02bb781e8830cd8b181_0001184736"
C:\Users\Lyniimgj\AppData\Local\Temp\DMR\dmr_72.exe -install -58663751 -chipderedesign -1b86bfd3abde47448ead8bff1e8717b6 - -BLUB2 -ttjlkcfphxgptvjd -3724
"C:\Users\Clmszrvu\AppData\Local\Temp\is-OOFGI.tmp\c4c5e9470ecc86444566ca5ffa583c0453a0724a_0001484316.tmp" /SL5="$1026A,1084900,131072,c:\users\user\downloads\c4c5e9470ecc86444566ca5ffa583c0453a0724a_0001484316"
"C:\Users\Cxlaxmdx\AppData\Local\Temp\is-T093J.tmp\b049f748e53aa755be149eb92ef721b315c6f835_0000798992.tmp" /SL5="$2013C,679412,56832,c:\users\user\downloads\b049f748e53aa755be149eb92ef721b315c6f835_0000798992"
"C:\Users\Otgcfsps\AppData\Local\Temp\is-P23EH.tmp\e4c55fdba5f554cefa3183fd56f80df3de3656c4_0001520592.tmp" /SL5="$2014A,1269607,54272,c:\users\user\downloads\e4c55fdba5f554cefa3183fd56f80df3de3656c4_0001520592"
"C:\Users\Qcgldnxk\AppData\Local\Temp\is-7TID7.tmp\dc70702b742e7320fb28861743a71673ce2795d4_0003400852.tmp" /SL5="$F0044,2341115,845824,c:\users\user\downloads\dc70702b742e7320fb28861743a71673ce2795d4_0003400852"
(NULL) C:\Users\Exyoxytz\AppData\Local\Temp\RarSFX0\Office13TrialKeyKMS.exe /verysilent
(NULL) setup.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /SP- /verysilent
"C:\Users\Blrwabtt\AppData\Local\Temp\is-JFC26.tmp\dccecfa3d5f99d626d592af7ad599a8255c6b11e_0005863136.tmp" /SL5="$301EC,4813283,845824,c:\users\user\downloads\dccecfa3d5f99d626d592af7ad599a8255c6b11e_0005863136"
C:\Users\Atotipoo\AppData\Local\Temp\DMR\dmr_72.exe -install -54442228 -chipderedesign -792dcebff21345cea59ecb1da1e2089c - -BLUB2 -nyfosnemwedtzemb -2864
"C:\Users\Kusyeslt\AppData\Local\Temp\is-KF7QL.tmp\520ca47e2f8976503126f9c53cb93b34f6fd7a05_0001667968.tmp" /SL5="$5004C,811097,148992,c:\users\user\downloads\520ca47e2f8976503126f9c53cb93b34f6fd7a05_0001667968"
"C:\Users\Loyaunbg\AppData\Local\Temp\is-M9K5C.tmp\f5f4e2aeff46aba75c6483fbf0166d3e3e6e11db_0000953720.tmp" /SL5="$60062,699283,72704,c:\users\user\downloads\f5f4e2aeff46aba75c6483fbf0166d3e3e6e11db_0000953720"
C:\Users\Elurjkjs\AppData\Local\Temp\DMR\dmr_72.exe -install -54390305 -chipderedesign -d6abbe6733a04b4599e2470046e13d9b - -BLUB2 -stxwcdunltgultoj -4300
"C:\Users\Tfqefdca\AppData\Local\Temp\is-NKJN1.tmp\9a7319ff0e5f3d825f84c5537485cdbd1ffcab4d_0001798216.tmp" /SL5="$3021E,1002666,171008,c:\users\user\downloads\9a7319ff0e5f3d825f84c5537485cdbd1ffcab4d_0001798216"
"C:\Users\Lmglflbh\AppData\Local\Temp\is-UAVT7.tmp\5af2558c5bad930fabdabc50c6699c47183d22bb_0001733426.tmp" /SL5="$201F4,893916,832512,c:\users\user\downloads\5af2558c5bad930fabdabc50c6699c47183d22bb_0001733426"
"C:\Users\Luvgmhqd\AppData\Local\Temp\is-UAU4T.tmp\ba7c60b97a5bfa0629ed8b529feae47b566b2c82_0000754216.tmp" /SL5="$30216,743805,82944,c:\users\user\downloads\ba7c60b97a5bfa0629ed8b529feae47b566b2c82_0000754216"
"C:\Users\Vtccuixc\AppData\Local\Temp\is-PDFQ8.tmp\6875ee4aa1f721329a03a9ef28d50b190cafe78a_0000777632.tmp" /SL5="$30062,748515,56832,c:\users\user\downloads\6875ee4aa1f721329a03a9ef28d50b190cafe78a_0000777632"
"C:\Users\Cjfkupzv\AppData\Local\Temp\is-UQ7PG.tmp\ab47776a0b7effceb7f6407d8f4ca5a233a20aca_0001673271.tmp" /SL5="$40048,833540,832512,c:\users\user\downloads\ab47776a0b7effceb7f6407d8f4ca5a233a20aca_0001673271"
"C:\Users\Gsevgzhj\AppData\Local\Temp\is-2SRFT.tmp\41aea230e1ebf9a6695b99d8ad0911ea3cdd0225_0001612496.tmp" /SL5="$50042,1364876,81408,c:\users\user\downloads\41aea230e1ebf9a6695b99d8ad0911ea3cdd0225_0001612496"
"C:\Users\Vcgfhiqn\AppData\Local\Temp\is-CEQM3.tmp\90b5884097fbb84749ed77e776bc09d350b49457_0001553204.tmp" /SL5="$20204,1301563,56832,c:\users\user\downloads\90b5884097fbb84749ed77e776bc09d350b49457_0001553204"
"C:\Users\Zcxxylsy\AppData\Local\Temp\is-O2R44.tmp\45a25a2f78d0df77aa193b4d2f02c0593c778659_0002308520.tmp" /SL5="$7003E,1920630,119296,c:\users\user\downloads\45a25a2f78d0df77aa193b4d2f02c0593c778659_0002308520"
"C:\Users\Dakvnkyi\AppData\Local\Temp\is-T4KG2.tmp\012bca49e7bd4434d595dbfb49b5d8646eb04925_0001162840.tmp" /SL5="$20220,908060,75264,c:\users\user\downloads\012bca49e7bd4434d595dbfb49b5d8646eb04925_0001162840"
"C:\Users\Zasylzvh\AppData\Local\Temp\is-BAIBS.tmp\7f234fff56fa8771ab383cba285fe9428332acae_0001721240.tmp" /SL5="$30228,1464542,85504,c:\users\user\downloads\7f234fff56fa8771ab383cba285fe9428332acae_0001721240"
"C:\Users\Ajmczwlw\AppData\Local\Temp\is-6O3TS.tmp\8b4fe90675efcdbb8d7bf954f16d51765e8f0be0_0001315528.tmp" /SL5="$80210,1054010,81408,c:\users\user\downloads\8b4fe90675efcdbb8d7bf954f16d51765e8f0be0_0001315528"
"C:\Users\Huywzimd\AppData\Local\Temp\is-KSDHV.tmp\e9908e0b4c373f3ba1ec84ec502f87ad9506b437_0001269688.tmp" /SL5="$401FA,1007777,75776,c:\users\user\downloads\e9908e0b4c373f3ba1ec84ec502f87ad9506b437_0001269688"
"C:\Users\Uyqusfip\AppData\Local\Temp\is-41IIN.tmp\49cfc07aee360e81d5a38e485615083c8d865589_0000965980.tmp" /SL5="$60054,703143,75264,c:\users\user\downloads\49cfc07aee360e81d5a38e485615083c8d865589_0000965980"
"C:\Users\Gspuwksh\AppData\Local\Temp\is-JO7IV.tmp\c72d7869c0544236ac1ccb0625e0afeab3f77d92_0001538824.tmp" /SL5="$60232,1288981,92672,c:\users\user\downloads\c72d7869c0544236ac1ccb0625e0afeab3f77d92_0001538824"
"C:\Users\Tipvybld\AppData\Local\Temp\is-V9B1C.tmp\f49b755a8f4f94fe7434e68323e60c9c64772397_0000971123.tmp" /SL5="$40062,728717,76800,c:\users\user\downloads\f49b755a8f4f94fe7434e68323e60c9c64772397_0000971123"
"C:\Users\Rhyikdjo\AppData\Local\Temp\is-VJHG4.tmp\0f128d6c486be97178b34d583f31a8f48726ba4a_0000692960.tmp" /SL5="$20140,676681,83968,c:\users\user\downloads\0f128d6c486be97178b34d583f31a8f48726ba4a_0000692960"
"C:\Users\Wkwjjmym\AppData\Local\Temp\is-9M28E.tmp\57a06635e9a308fe1fed48602c59cd924ca48295_0001509514.tmp" /SL5="$501FA,1262649,57856,c:\users\user\downloads\57a06635e9a308fe1fed48602c59cd924ca48295_0001509514"
"C:\Users\Lytklxgd\AppData\Local\Temp\is-8U3EG.tmp\19133335047690cb528db5665e99f3c6fda86964_0001202112.tmp" /SL5="$2020A,943002,75776,c:\users\user\downloads\19133335047690cb528db5665e99f3c6fda86964_0001202112"
"C:\Users\Yaylcyis\AppData\Local\Temp\is-DA8VE.tmp\d5e83fd17293a175ed90d3890157bccff3652afd_0001810168.tmp" /SL5="$50240,987144,144384,c:\users\user\downloads\d5e83fd17293a175ed90d3890157bccff3652afd_0001810168"
"C:\Users\Tdufsftj\AppData\Local\Temp\is-9PC5L.tmp\e28901a5ba377513b1a6a3dfb7e2f89829df775a_0002537683.tmp" /SL5="$401F6,2152248,183808,c:\users\user\downloads\e28901a5ba377513b1a6a3dfb7e2f89829df775a_0002537683"
"C:\Users\Rocgniia\AppData\Local\Temp\is-Q20PR.tmp\874962dd6a87bcd87a7c6bfa82002ebfd3a8acf6_0001317808.tmp" /SL5="$B0212,1055814,84480,c:\users\user\downloads\874962dd6a87bcd87a7c6bfa82002ebfd3a8acf6_0001317808"
"C:\Users\Kfvhiryp\AppData\Local\Temp\is-LUMR5.tmp\ff0a570031d967e51f05a542efcd70a356cd57c4_0001638613.tmp" /SL5="$8005A,1387069,56832,c:\users\user\downloads\ff0a570031d967e51f05a542efcd70a356cd57c4_0001638613"
"C:\Users\Liljtgwu\AppData\Local\Temp\is-0B80E.tmp\4159eb94d00a2709fd23673b7d04848063a2564d_0000716160.tmp" /SL5="$2022C,648990,54272,c:\users\user\downloads\4159eb94d00a2709fd23673b7d04848063a2564d_0000716160"
"C:\Users\Liljtgwu\AppData\Local\Temp\is-D24BL.tmp\4159eb94d00a2709fd23673b7d04848063a2564d_0000716160.tmp" /SL5="$20230,57117,54272,C:\Users\Liljtgwu\AppData\Local\Temp\is-0B80E.tmp\4159eb94d00a2709fd23673b7d04848063a2564d_0000716160.tmp" /SL5="$2022C,648990,54272,c:\users\user\downloads\4159eb94d00a2709fd23673b7d04848063a2564d_0000716160"
"C:\Users\Gamfumrp\AppData\Local\Temp\is-TFNFI.tmp\58b13321f3512c4d6b1aa636e3a7d387ce225d83_0006962568.tmp" /SL5="$301E2,6659259,56832,c:\users\user\downloads\58b13321f3512c4d6b1aa636e3a7d387ce225d83_0006962568"
"C:\Users\Yyqqidkf\AppData\Local\Temp\is-0RMPH.tmp\44ab80ffdd5f6dd5edc729544ecde1bae6e4296c_0001209072.tmp" /SL5="$40064,950315,75776,c:\users\user\downloads\44ab80ffdd5f6dd5edc729544ecde1bae6e4296c_0001209072"
"C:\Users\Gojzxxlv\AppData\Local\Temp\is-VEVH9.tmp\8a4a50c74a03a5213e25bf4e486d703a67bf6a49_0002280384.tmp" /SL5="$4022A,1444036,309248,c:\users\user\downloads\8a4a50c74a03a5213e25bf4e486d703a67bf6a49_0002280384"
"C:\Users\Euxojkad\AppData\Local\Temp\is-IP7E5.tmp\aec2adcecca63293db333414011f2cd9f23ecf9d_0001864672.tmp" /SL5="$201F8,1001808,148992,c:\users\user\downloads\aec2adcecca63293db333414011f2cd9f23ecf9d_0001864672"
"C:\Users\Biizlypi\AppData\Local\Temp\is-KVODM.tmp\40d62f2b1b279921d302a40b28ffde6570055da3_0001609960.tmp" /SL5="$50042,813399,148992,c:\users\user\downloads\40d62f2b1b279921d302a40b28ffde6570055da3_0001609960"
"C:\Users\Hyrlelpd\AppData\Local\Temp\is-IE5H0.tmp\9e59642c96168147f9e6076e5cbb24c02988d3f7_0001259368.tmp" /SL5="$30136,996100,75776,c:\users\user\downloads\9e59642c96168147f9e6076e5cbb24c02988d3f7_0001259368"
"C:\Users\Xzbgvixb\AppData\Local\Temp\is-23988.tmp\e330f872c9d4d33dda69a8b19cb9b4eda469dd43_0000923240.tmp" /SL5="$2013C,731605,76800,c:\users\user\downloads\e330f872c9d4d33dda69a8b19cb9b4eda469dd43_0000923240"
"C:\Users\Hlchzxzq\AppData\Local\Temp\is-0P8VS.tmp\4a979ccc78c27ce00013af240a3290e0574d239e_0000959760.tmp" /SL5="$70066,699559,56832,c:\users\user\downloads\4a979ccc78c27ce00013af240a3290e0574d239e_0000959760"
"C:\Users\Jowvyrkv\AppData\Local\Temp\is-LO84A.tmp\bfe2a2d46be55fb71a5b9b8d634b9c283bb65fc2_0002401672.tmp" /SL5="$90040,2152541,81920,c:\users\user\downloads\bfe2a2d46be55fb71a5b9b8d634b9c283bb65fc2_0002401672"
"C:\Users\Vdodnqqn\AppData\Local\Temp\is-U0TS9.tmp\68fbeeda2850c49825b44804f071eb4cdf0d50bc_0003392104.tmp" /SL5="$20144,2341115,845824,c:\users\user\downloads\68fbeeda2850c49825b44804f071eb4cdf0d50bc_0003392104"
"C:\Users\Nqkybppm\AppData\Local\Temp\is-37CBI.tmp\092b09a6eed8c4d17725589358e805e9ac13a419_0003400863.tmp" /SL5="$501FE,2341115,845824,c:\users\user\downloads\092b09a6eed8c4d17725589358e805e9ac13a419_0003400863"
"C:\Users\Gxazvlgj\AppData\Local\Temp\is-MFF3G.tmp\684ee448d514190e95ed91d58678cad63edae69b_0001628104.tmp" /SL5="$30234,1381535,118272,c:\users\user\downloads\684ee448d514190e95ed91d58678cad63edae69b_0001628104"
"C:\Users\Opoewivi\AppData\Local\Temp\is-A8MJ8.tmp\901da4444ed8c92f685876ac2d579eb8630ebe7d_0001910328.tmp" /SL5="$4004C,1658959,159232,c:\users\user\downloads\901da4444ed8c92f685876ac2d579eb8630ebe7d_0001910328"
"C:\Users\Ekipqpwt\AppData\Local\Temp\is-RHM3C.tmp\08fe1a46bb2e394f75ee07c200cfeac41c3ebc3c_0001903912.tmp" /SL5="$20214,853511,845824,c:\users\user\downloads\08fe1a46bb2e394f75ee07c200cfeac41c3ebc3c_0001903912"
"C:\Users\Vdjzwhdp\AppData\Local\Temp\is-RBJU5.tmp\5795499945a58206bfbb70b28c84047d57ffe176_0001835984.tmp" /SL5="$3013A,1017717,148992,c:\users\user\downloads\5795499945a58206bfbb70b28c84047d57ffe176_0001835984"
"C:\Users\Amwlxfap\AppData\Local\Temp\is-8GV4E.tmp\4105e15c4edd78a1dd67cb15c827531e0f835298_0001525712.tmp" /SL5="$170022,1269784,80384,c:\users\user\downloads\4105e15c4edd78a1dd67cb15c827531e0f835298_0001525712"
"C:\Users\Hhqiethc\AppData\Local\Temp\is-KUBD2.tmp\7f49d5e4ef3b7a93bdfb1f2d3100ab0095487f24_0000758856.tmp" /SL5="$40212,739317,83968,c:\users\user\downloads\7f49d5e4ef3b7a93bdfb1f2d3100ab0095487f24_0000758856"
"C:\Users\Rypgwqdy\AppData\Local\Temp\is-1ABC3.tmp\be7f28bcc118953b44b24091646391ba44b43192_0000679640.tmp" /SL5="$A0066,658697,54272,c:\users\user\downloads\be7f28bcc118953b44b24091646391ba44b43192_0000679640"
"C:\Users\Tfcqxwnw\AppData\Local\Temp\is-17IGM.tmp\0f6a6f6eb2588a38d7d2b9e3a31362431ff15c83_0001802936.tmp" /SL5="$4021C,1019411,171008,c:\users\user\downloads\0f6a6f6eb2588a38d7d2b9e3a31362431ff15c83_0001802936"
"C:\Users\Dmzyinle\AppData\Local\Temp\is-HOHI4.tmp\ae2ace4996cac23233d6786f4d77e76bbbecb238_0002182041.tmp" /SL5="$2021E,1398285,202240,c:\users\user\downloads\ae2ace4996cac23233d6786f4d77e76bbbecb238_0002182041"
"C:\Users\Ajevhdtp\AppData\Local\Temp\is-7U85K.tmp\9e5dfcdb43c37e83eeadf9687583b725845a198e_0001887407.tmp" /SL5="$7005A,1636788,233472,c:\users\user\downloads\9e5dfcdb43c37e83eeadf9687583b725845a198e_0001887407"
"C:\Users\Owbtyhcp\AppData\Local\Temp\is-EPSOJ.tmp\2fdb77990b796e7060512d205b8534154944e25d_0002196392.tmp" /SL5="$1024A,1376580,237056,c:\users\user\downloads\2fdb77990b796e7060512d205b8534154944e25d_0002196392"
"C:\Users\Qsdtrjqg\AppData\Local\Temp\is-HRPHU.tmp\afea231739bbc2caabff262ed4934c0abf30f06c_0005918760.tmp" /SL5="$A0042,4831163,867840,c:\users\user\downloads\afea231739bbc2caabff262ed4934c0abf30f06c_0005918760"
"C:\Users\Tccbywvn\AppData\Local\Temp\is-Q8JA3.tmp\d9bf3fbaf607826e2459f1c698617805c31673a2_0001255768.tmp" /SL5="$300AE,994457,75264,c:\users\user\downloads\d9bf3fbaf607826e2459f1c698617805c31673a2_0001255768"
"C:\Users\Hgeqvvba\AppData\Local\Temp\is-GREF2.tmp\4eaefea943a77e248557f1e395239ddbd490c5bb_0000701000.tmp" /SL5="$5004C,677049,62976,c:\users\user\downloads\4eaefea943a77e248557f1e395239ddbd490c5bb_0000701000"
"C:\Users\Jopzhczi\AppData\Local\Temp\is-J9FSQ.tmp\116119b5875e3a58a2727e29e661d4ff66a455ec_0001720392.tmp" /SL5="$20214,1472529,54272,c:\users\user\downloads\116119b5875e3a58a2727e29e661d4ff66a455ec_0001720392"
C:\Users\Khoanbvu\AppData\Local\Temp\DMR\dmr_72.exe -install -54484047 -chipderedesign -b54a20cfc481451e98b46168df956121 - -BLUB2 -msxuxgjtjwqwvflb -3444
C:\Users\Etnfebwi\AppData\Local\Temp\DMR\dmr_72.exe -install -54478704 -chipderedesign -a99ff5a90b304c23b571b861e9084d0d - -BLUB2 -wctbpwsxjqxkxkuy -6236
"C:\Users\Rggdhtcs\AppData\Local\Temp\is-931GP.tmp\51e0b5d89bca04603906d4a7a3ef0586d6f5854c_0000975904.tmp" /SL5="$20144,721338,75264,c:\users\user\downloads\51e0b5d89bca04603906d4a7a3ef0586d6f5854c_0000975904"
"C:\Users\Vypbeuph\AppData\Local\Temp\is-A7F2R.tmp\5d83649b1d3b3499999e193212d74de2e0e6cf50_0000762567.tmp" /SL5="$2012C,372098,121344,c:\users\user\downloads\5d83649b1d3b3499999e193212d74de2e0e6cf50_0000762567"
"C:\Users\Gnjsozya\AppData\Local\Temp\is-DF3U3.tmp\4c01fdce47f6fddcbcf91e085cf5004c4f14bc2e_0001269000.tmp" /SL5="$10270,1009991,56832,c:\users\user\downloads\4c01fdce47f6fddcbcf91e085cf5004c4f14bc2e_0001269000"
"C:\Users\Tqqkefwe\AppData\Local\Temp\is-CK0BE.tmp\f1616b9f5a261af5716a63b1faae468a6fe2a23d_0001561160.tmp" /SL5="$20246,1305695,56832,c:\users\user\downloads\f1616b9f5a261af5716a63b1faae468a6fe2a23d_0001561160"
"C:\Users\Thgsjwas\AppData\Local\Temp\is-85NE6.tmp\0e1fbb0b8954bf408e2b4a624295468dc25547f5_0002134784.tmp" /SL5="$20268,1313339,185344,c:\users\user\downloads\0e1fbb0b8954bf408e2b4a624295468dc25547f5_0002134784"
C:\Users\Mzeeudqi\AppData\Local\Temp\DMR\dmr_72.exe -install -54389387 -chipde -2f724093b6b643aaa851473d2d3d61e3 - -BLUB2 -bovsvqneldwmtsxc -5720
"C:\Users\Okkditjm\AppData\Local\Temp\is-NR5UO.tmp\f4aee5e65088c327e7facaa8da447720407530da_0001669804.tmp" /SL5="$10244,1418917,197120,c:\users\user\downloads\f4aee5e65088c327e7facaa8da447720407530da_0001669804"
"C:\Users\Okzfvguk\AppData\Local\Temp\is-JUEJS.tmp\f9cc216ee6de65fb823aac6d57bdc3a220aa39e5_0001267531.tmp" /SL5="$20132,1023041,54272,c:\users\user\downloads\f9cc216ee6de65fb823aac6d57bdc3a220aa39e5_0001267531"
C:\WINDOWS\SysWOW64\rundll32.exe C:\WINDOWS\system32\rundll32.exe c:\users\user\downloads\7856146c534e6f0e6f8db7c732418792537a884b_0001221512.,LiQMAxHB
"C:\Users\Qqobmxlm\AppData\Local\Temp\is-LSJ6G.tmp\.tmp" /SL5="$10254,692387,56832,C:\Users\Qqobmxlm\AppData\Local\Temp\.exe"
"C:\Users\Spncwabp\AppData\Local\Temp\is-R30OQ.tmp\bd0ba75ecf9e72f4f68d1dd82f10957057ef338a_0002487529.tmp" /SL5="$1027A,1692869,151040,c:\users\user\downloads\bd0ba75ecf9e72f4f68d1dd82f10957057ef338a_0002487529"
"C:\Users\Vejxonve\AppData\Local\Temp\is-U3ESF.tmp\e21b60528d20d5db3ebb588923d75b96a4f5b1fe_0001026864.tmp" /SL5="$1026E,764893,56832,c:\users\user\downloads\e21b60528d20d5db3ebb588923d75b96a4f5b1fe_0001026864"
"C:\Users\Iovepzfy\AppData\Local\Temp\is-E113K.tmp\ca6c45b1c0b47731c03b03847ddf7ebdd1ee8a99_0001555376.tmp" /SL5="$10024C,1305871,56832,c:\users\user\downloads\ca6c45b1c0b47731c03b03847ddf7ebdd1ee8a99_0001555376"
"C:\Users\Fpkugrrb\AppData\Local\Temp\is-S0HB8.tmp\722406f38bb2ba5e83ae77510c2a028a14cc3ce5_0001210232.tmp" /SL5="$10280,962203,54272,c:\users\user\downloads\722406f38bb2ba5e83ae77510c2a028a14cc3ce5_0001210232"
"C:\Users\Ywzpjfml\AppData\Local\Temp\is-JKGRN.tmp\a94efa0316706b843c317fc25546741f9c5b417c_0001586256.tmp" /SL5="$10280,1331204,86528,c:\users\user\downloads\a94efa0316706b843c317fc25546741f9c5b417c_0001586256"
"C:\Users\Ugbbgamb\AppData\Local\Temp\is-JH6E4.tmp\e0b71075aace4dc48626267eac2297af34d53d66_0002119336.tmp" /SL5="$1027C,1264627,138240,c:\users\user\downloads\e0b71075aace4dc48626267eac2297af34d53d66_0002119336"
"C:\Users\Zxnvddmp\AppData\Local\Temp\is-SP0RG.tmp\54afdcf6afee5eb32586ccc97590d4ca13f5d832_0001774320.tmp" /SL5="$2027E,1518562,137216,c:\users\user\downloads\54afdcf6afee5eb32586ccc97590d4ca13f5d832_0001774320"
"C:\Users\Pvblzswp\AppData\Local\Temp\is-A71AD.tmp\5373eb605914843bd535b18370466e0dcf71894a_0003431979.tmp" /SL5="$10270,2956554,486912,c:\users\user\downloads\5373eb605914843bd535b18370466e0dcf71894a_0003431979"
"C:\WINDOWS\svchost.exe" "c:\users\user\downloads\b1f2e2b15acdb712df58dacf44a333cd8a63b27e_0003826864"
"c:\users\user\downloads\b1f2e2b15acdb712df58dacf44a333cd8a63b27e_0003826864"
c:\users\user\downloads\Game.exe

337 additional execution are not displayed above.

熱門

網路郵件系統更新騙局

網路釣魚, 垃圾郵件
當收到聲稱需要立即採取行動的意外電子郵件時,保持警惕至關重要。網路犯罪者常常利用緊迫感和恐懼心理,迫使收件者倉促做出決定。所謂的「網路郵件系統更新」郵件就是這種伎倆的典型例子。這些郵件與任何合法公司、組織或實體均無關聯,點擊回覆可能會使用戶面臨嚴重的安全和隱私風險。 網路郵件系統更新詐騙概述 大量分析表明,這些電子郵件均為詐騙郵件,且經過精心設計,使其看起來緊急且重要。其主要目的是誘騙收件人點擊鏈接,從而進入一個旨在竊取個人信息的欺騙性網頁。 依照電子郵件或連結頁面上的指示操作可能會導致帳戶被盜用、敏感資料遺失,以及受害者的線上身分被進一步濫用。 詐騙郵件的呈現方式 這些詐騙郵件通常偽裝成網路郵件服務商的官方通知。郵件聲稱收件者目前的網路郵件版本已過時,即將停止服務。為了施加壓力,郵件警告稱,如果不立即“更新”,可能會導致以下後果:...

Myhugestories.com

廣告軟體, 瀏覽器劫持者, 流氓網站
安全專家在對可疑網站進行例行檢查時發現了 Myhugestories.com 網頁。經過仔細檢查,他們得出結論,該特定網頁作為流氓平台運行,透過瀏覽器通知積極傳播垃圾郵件,並將訪客重定向到其他網站,這些網站通常被認為是可疑或可能不安全的。大多數用戶進入 Myhugestories.com 和類似網頁的常見方式是透過使用流氓廣告網路的網站產生的重定向。 處理 Myhugestories.com...

網域故障通知郵件詐騙

網路釣魚, 垃圾郵件
處理意外收到的電子郵件時保持警惕至關重要。網路犯罪分子經常利用人們的信任和緊迫感,誘騙收件者做出有害的決定。詐騙郵件通常經過精心製作,看起來合法可信,但實際上與任何真實的公司、組織或服務提供者都沒有關聯。其中一種在網路上流傳的威脅被稱為「網域故障通知郵件詐騙」。 網域故障通知郵件詐騙概述 所謂的「網域故障通知」郵件是偽裝成緊急網域名稱或電子郵件服務警報的詐騙郵件。深入分析證實,這些郵件是網路釣魚活動的一部分,旨在誘騙收件人點擊連結並洩露敏感資訊。 這些郵件故意寫得官方且權威。郵件警告收件人的郵箱密碼即將過期,並聲稱如果不立即採取措施,帳戶將出現登入問題或被鎖定。 詐騙訊息如何操弄收件人 為了加大施壓,這些郵件指示收件人立即「確認」或「保留」密碼,以防止服務中斷。郵件中通常包含這樣的聲明:如果收件者忽略郵件內容而造成任何損失,都將由收件者自行承擔。...

最受關注

如何修復“打印機驅動程序不可用”錯誤

問題
42,853
打印機因拒絕在用戶最需要的時候完成工作而臭名昭著。幸運的是,如果您的打印機顯示“打印機驅動程序不可用”錯誤,那麼有幾個簡單的解決方案可以解決該問題。此特定錯誤可能是由損壞的驅動程序文件、過時的驅動程序或驅動程序不兼容引起的。雖然使用 Microsoft 的通用驅動程序可以避免該問題,但我們想向您介紹其他解決方案。 更新打印機的驅動程序...
Discord 在共享屏幕時顯示黑屏截图

Discord 在共享屏幕時顯示黑屏

問題
33,302
首次推出時,Discord 是一個面向遊戲社區的 VoIP 平台。然而,在接下來的幾年裡,它擴大了範圍,增加了許多新功能,並成為最大的社交平台之一,每月活躍用戶超過 1.4 億。目前,用戶可以發送私人即時消息、啟動 VoIP 和視頻通話、流式傳輸他們的計算機屏幕,並組織以特定興趣為中心的稱為服務器的社區。 毫無疑問,快速輕鬆地開始共享計算機屏幕的能力是吸引人們使用 Discord...
加載中...