5.9
高危
DACN
0.14
FACILE
1.00
IMCLNet
0.82
MFGraph
0.00
反病毒引擎
| 查杀引擎 | 查杀结果 | 查杀时间 | 查杀版本 |
|---|---|---|---|
| Alibaba | None | 20190527 | 0.3.0.5 |
| Avast | Win32:Renos-KY [Trj] | 20200224 | 18.4.3895.0 |
| Baidu | Win32.Worm.Autorun.o | 20190318 | 1.0.0.2 |
| CrowdStrike | win/malicious_confidence_100% (D) | 20190702 | 1.0 |
| Kingsoft | None | 20200224 | 2013.8.14.323 |
| McAfee | W32/Pykse.worm.gen.a | 20200224 | 6.0.6.653 |
| Tencent | None | 20200224 | 1.0.0.1 |
静态指标
查询计算机名称
(50 out of 59 个事件)
检查系统中的内存量,这可以用于检测可用内存较少的虚拟机
(2 个事件)
| Time & API | Arguments | Status | Return | Repeated |
|---|---|---|---|---|
|
1727545301.437125 GlobalMemoryStatusEx |
success | 1 | 0 | |
|
1727545304.5005 GlobalMemoryStatusEx |
success | 1 | 0 |
一个或多个进程崩溃
(6 个事件)
动态指标
解析可疑的顶级域名(TLD)
(6 个事件)
| domain | iiuhlwnansnan.cc | description | 科科斯群岛域名 TLD | ||||||
| domain | dthuzifox.cc | description | 科科斯群岛域名 TLD | ||||||
| domain | xsymfsfox.cc | description | 科科斯群岛域名 TLD | ||||||
| domain | mfnsvqfqbex.cc | description | 科科斯群岛域名 TLD | ||||||
| domain | kufamkdsholapet.cc | description | 科科斯群岛域名 TLD | ||||||
| domain | klzczyfqbex.cc | description | 科科斯群岛域名 TLD | ||||||
查找外部 IP 地址
(4 个事件)
| domain | whatismyipaddress.com |
| domain | www.whatismyip.ca |
| domain | whatismyip.everdot.org |
| domain | www.showmyipaddress.com |
在文件系统上创建可执行文件
(1 个事件)
| file | C:\Users\Administrator\AppData\Local\Temp\zhkuzlr.exe |
创建隐藏或系统文件
(42 个事件)
禁用Windows的注册表编辑器
(2 个事件)
| registry | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools |
| registry | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools |
投放一个二进制文件并执行它
(1 个事件)
| file | C:\Users\Administrator\AppData\Local\Temp\zhkuzlr.exe |
将可执行文件投放到用户的 AppData 文件夹
(1 个事件)
| file | C:\Users\Administrator\AppData\Local\Temp\zhkuzlr.exe |
检查系统上可疑权限的本地唯一标识符
(1 个事件)
网络通信
与未执行 DNS 查询的主机进行通信
(2 个事件)
| host | 114.114.114.114 | |||
| host | 8.8.8.8 | |||
尝试停止活动服务
(7 个事件)
一个进程试图延迟分析任务。
(1 个事件)
| description | zhkuzlr.exe 试图睡眠 1464.755 秒,实际延迟分析时间 1464.755 秒 | |||
在 Windows 启动时自我安装以实现自动运行
(50 out of 220 个事件)
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell | reg_value | Explorer.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | ypbuidsazjpszdse.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | ztievtlwyluakrjyshd.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\yjpckzikdh | reg_value | ypbuidsazjpszdse.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\tfmajzjmglm | reg_value | bxomffzmqfqyktnearpii.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\qdlakbmqlrts | reg_value | ztievtlwyluakrjyshd.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\qfpgslyebjnotv | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\mhxumleqthryjrkavlia.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\pdmcnfrwszccg | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\fxketpfoozgksxnas.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\zhkuzlr | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ypbuidsazjpszdse.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\bxomffzmqfqyktnearpii.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ztievtlwyluakrjyshd.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell | reg_value | Explorer.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | mhxumleqthryjrkavlia.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | ztievtlwyluakrjyshd.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\yjpckzikdh | reg_value | ohvqgduefrzentkyrf.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\tfmajzjmglm | reg_value | ohvqgduefrzentkyrf.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\qdlakbmqlrts | reg_value | fxketpfoozgksxnas.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\qfpgslyebjnotv | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\mhxumleqthryjrkavlia.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\pdmcnfrwszccg | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ypbuidsazjpszdse.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\zhkuzlr | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\mhxumleqthryjrkavlia.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ypbuidsazjpszdse.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ohvqgduefrzentkyrf.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell | reg_value | Explorer.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | ypbuidsazjpszdse.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | ohvqgduefrzentkyrf.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\yjpckzikdh | reg_value | fxketpfoozgksxnas.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\tfmajzjmglm | reg_value | ohvqgduefrzentkyrf.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\qdlakbmqlrts | reg_value | mhxumleqthryjrkavlia.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\qfpgslyebjnotv | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\mhxumleqthryjrkavlia.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\pdmcnfrwszccg | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ztievtlwyluakrjyshd.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\zhkuzlr | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ztievtlwyluakrjyshd.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ztievtlwyluakrjyshd.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\bxomffzmqfqyktnearpii.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell | reg_value | Explorer.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | ohvqgduefrzentkyrf.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | ztievtlwyluakrjyshd.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\yjpckzikdh | reg_value | bxomffzmqfqyktnearpii.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\tfmajzjmglm | reg_value | bxomffzmqfqyktnearpii.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\qdlakbmqlrts | reg_value | fxketpfoozgksxnas.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\qfpgslyebjnotv | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\bxomffzmqfqyktnearpii.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\pdmcnfrwszccg | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ztievtlwyluakrjyshd.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\zhkuzlr | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\ypbuidsazjpszdse.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\mhxumleqthryjrkavlia.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | C:\Users\ADMINI~1\AppData\Local\Temp\fxketpfoozgksxnas.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell | reg_value | Explorer.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\oxbmsfmm | reg_value | mhxumleqthryjrkavlia.exe | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\fpugnbjkc | reg_value | ypbuidsazjpszdse.exe . | ||||||
| reg_key | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\yjpckzikdh | reg_value | ypbuidsazjpszdse.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\tfmajzjmglm | reg_value | ohvqgduefrzentkyrf.exe | ||||||
| reg_key | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\qdlakbmqlrts | reg_value | ohvqgduefrzentkyrf.exe . | ||||||
尝试修改 UAC 提示行为
(3 个事件)
| registry | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin |
| registry | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorUser |
| registry | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\PromptOnSecureDesktop |
通过 in 指令特性检测 VMWare
(3 个事件)
生成一些 ICMP 流量
禁用 Windows 安全功能
(1 个事件)
| description | 尝试禁用用户访问控制 | registry | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | ||||||
文件已被 VirusTotal 上 63 个反病毒引擎识别为恶意
(50 out of 63 个事件)
| ALYac | Gen:Variant.Ulise.98190 |
| APEX | Malicious |
| AVG | Win32:Renos-KY [Trj] |
| Acronis | suspicious |
| Ad-Aware | Gen:Variant.Ulise.98190 |
| AhnLab-V3 | Trojan/Win32.Zepfod.R4378 |
| Antiy-AVL | Worm[IM]/Win32.Chydo.clr |
| Arcabit | Trojan.Ulise.D17F8E |
| Avast | Win32:Renos-KY [Trj] |
| Avira | TR/Crypt.XPACK.Gen |
| Baidu | Win32.Worm.Autorun.o |
| BitDefender | Gen:Variant.Ulise.98190 |
| BitDefenderTheta | Gen:NN.ZexaF.34090.@pW@auzS4qk |
| Bkav | W32.AIDetectVM.malware |
| CAT-QuickHeal | Worm.Pykspa.C3 |
| CMC | Trojan.Win32.Chydo!O |
| ClamAV | Win.Worm.Pykspa-6057105-0 |
| Comodo | Worm.Win32.Autorun.Agent_TG1@1isixd |
| CrowdStrike | win/malicious_confidence_100% (D) |
| Cybereason | malicious.04b4c1 |
| Cylance | Unsafe |
| Cyren | W32/Pykspa.A.gen!Eldorado |
| DrWeb | Trojan.Kypes |
| ESET-NOD32 | Win32/AutoRun.Agent.TG |
| Emsisoft | Gen:Variant.Ulise.98190 (B) |
| Endgame | malicious (high confidence) |
| F-Prot | W32/Pykspa.A.gen!Eldorado |
| F-Secure | Trojan.TR/Crypt.XPACK.Gen |
| FireEye | Generic.mg.8ec27c004b4c14a0 |
| Fortinet | W32/Pykse.F!tr |
| GData | Gen:Variant.Ulise.98190 |
| Ikarus | Worm.Win32.Pykspa |
| Invincea | heuristic |
| Jiangmin | Trojan/Vilsel.bgc |
| K7AntiVirus | Trojan ( 003da8d71 ) |
| K7GW | Trojan ( 003da8d71 ) |
| Kaspersky | Trojan.Win32.Chydo.aaae |
| MAX | malware (ai score=88) |
| Malwarebytes | Worm.Pykspa |
| MaxSecure | Trojan.Malware.300983.susgen |
| McAfee | W32/Pykse.worm.gen.a |
| McAfee-GW-Edition | BehavesLike.Win32.Dropper.wz |
| MicroWorld-eScan | Gen:Variant.Ulise.98190 |
| Microsoft | Worm:Win32/Pykspa.C |
| NANO-Antivirus | Trojan.Win32.Vilsel.bqgox |
| Panda | Trj/Genetic.gen |
| Qihoo-360 | HEUR/QVM08.0.74B5.Malware.Gen |
| Rising | Worm.Autorun!8.50 (TFE:dGZlOgX9CmvbJhyoNA) |
| Sangfor | Malware |
| SentinelOne | DFI - Malicious PE |
连接到不再响应请求的 IP 地址(合法服务通常会保持运行)
(4 个事件)
| dead_host | 104.19.223.79:80 |
| dead_host | 104.21.74.56:80 |
| dead_host | 104.27.207.92:80 |
| dead_host | 162.249.65.162:80 |
二进制图像
288x288
224x224
192x192
160x160
128x128
96x96
64x64
32x32
运行截图
暂无运行截图
该样本运行过程中未生成截图
PE Compile Time
2006-12-09 17:25:49
PE Imphash
09575b4ed99dd83f21822ca70914a783
Sections
| Name | Virtual Address | Virtual Size | Size of Raw Data | Entropy |
|---|---|---|---|---|
| .text | 0x00001000 | 0x00026fe3 | 0x00040000 | 5.034900377596639 |
| .rdata | 0x00028000 | 0x000036f4 | 0x0000c000 | 2.1316063899656212 |
| .data | 0x0002c000 | 0x00035ed4 | 0x0002c000 | 6.422535371792958 |
Imports
Library KERNEL32.dll:
• 0x428054 CreateThread
• 0x428058 GetLogicalDriveStringsA
• 0x42805c GetDriveTypeA
• 0x428060 GetWindowsDirectoryA
• 0x428064 MoveFileA
• 0x428068 FreeLibrary
• 0x42806c EnumResourceNamesA
• 0x428070 LoadLibraryA
• 0x428074 GetProcAddress
• 0x428078 GetModuleHandleA
• 0x42807c GetSystemInfo
• 0x428080 GetVersionExA
• 0x428084 SetThreadPriority
• 0x428088 GetCurrentThread
• 0x42808c FreeResource
• 0x428090 UpdateResourceA
• 0x428094 SizeofResource
• 0x428098 LockResource
• 0x42809c LoadResource
• 0x4280a0 FindResourceA
• 0x4280a4 EnumResourceLanguagesA
• 0x4280a8 EndUpdateResourceA
• 0x4280ac BeginUpdateResourceA
• 0x4280b0 CreateMutexA
• 0x4280b4 GetLastError
• 0x4280b8 WaitForSingleObject
• 0x4280bc GetVolumeInformationA
• 0x4280c0 GetComputerNameA
• 0x4280c4 GetCurrentProcess
• 0x4280c8 OpenMutexA
• 0x4280cc SetPriorityClass
• 0x4280d0 GetTempPathA
• 0x4280d4 GetModuleFileNameA
• 0x4280d8 GetSystemDirectoryA
• 0x4280dc SetErrorMode
• 0x4280e0 InitializeCriticalSection
• 0x4280e4 HeapAlloc
• 0x4280e8 GetProcessHeap
• 0x4280ec HeapFree
• 0x4280f0 WideCharToMultiByte
• 0x4280f4 MultiByteToWideChar
• 0x4280f8 ExitThread
• 0x4280fc GetTimeFormatA
• 0x428100 GetDateFormatA
• 0x428104 GetFileSize
• 0x428108 lstrlenA
• 0x42810c GlobalUnlock
• 0x428110 GlobalLock
• 0x428114 GlobalAlloc
• 0x428118 lstrcmpiA
• 0x42811c SetFileTime
• 0x428120 SystemTimeToFileTime
• 0x428124 GetSystemTime
• 0x428128 CreateDirectoryA
• 0x42812c CreateProcessA
• 0x428130 GetCurrentProcessId
• 0x428134 FlushFileBuffers
• 0x428138 GetSystemTimeAsFileTime
• 0x42813c GetCurrentThreadId
• 0x428140 QueryPerformanceCounter
• 0x428144 SetEnvironmentVariableA
• 0x428148 CompareStringW
• 0x42814c CompareStringA
• 0x428150 HeapSize
• 0x428154 HeapReAlloc
• 0x428158 GetLocaleInfoA
• 0x42815c GetExitCodeProcess
• 0x428160 GetStringTypeW
• 0x428164 GetStringTypeA
• 0x428168 VirtualFree
• 0x42816c HeapCreate
• 0x428170 HeapDestroy
• 0x428174 GetFileType
• 0x428178 SetHandleCount
• 0x42817c GetEnvironmentStringsW
• 0x428180 FreeEnvironmentStringsW
• 0x428184 GetEnvironmentStrings
• 0x428188 FreeEnvironmentStringsA
• 0x42818c UnhandledExceptionFilter
• 0x428190 GetStdHandle
• 0x428194 VirtualAlloc
• 0x428198 VirtualProtect
• 0x42819c GetCPInfo
• 0x4281a0 GetOEMCP
• 0x4281a4 GetACP
• 0x4281a8 SetStdHandle
• 0x4281ac LCMapStringW
• 0x4281b0 LCMapStringA
• 0x4281b4 VirtualQuery
• 0x4281b8 InterlockedExchange
• 0x4281bc RtlUnwind
• 0x4281c0 TerminateProcess
• 0x4281c4 GetCommandLineA
• 0x4281c8 GetStartupInfoA
• 0x4281cc SetFilePointer
• 0x4281d0 WriteFile
• 0x4281d4 CreateFileA
• 0x4281d8 ReadFile
• 0x4281dc CloseHandle
• 0x4281e0 Sleep
• 0x4281e4 FindFirstFileA
• 0x4281e8 lstrcpyA
• 0x4281ec lstrcatA
• 0x4281f0 ExitProcess
• 0x4281f4 lstrcmpA
• 0x4281f8 lstrcpynA
• 0x4281fc EnterCriticalSection
• 0x428200 LeaveCriticalSection
• 0x428204 DeleteFileA
• 0x428208 SetFileAttributesA
• 0x42820c GetFileAttributesA
• 0x428210 GetTickCount
• 0x428214 CopyFileA
• 0x428218 FindNextFileA
• 0x42821c FindClose
Library USER32.dll:
• 0x428248 TranslateMessage
• 0x42824c GetMessageA
• 0x428250 UpdateWindow
• 0x428254 RegisterClassA
• 0x428258 DispatchMessageA
• 0x42825c wsprintfA
• 0x428260 GetWindowRect
• 0x428264 GetDesktopWindow
• 0x428268 ShowWindow
• 0x42826c EnableWindow
• 0x428270 GetClassNameA
• 0x428274 DestroyWindow
• 0x428278 SetWindowPos
• 0x42827c PostMessageA
• 0x428280 UnregisterClassA
• 0x428284 GetWindowTextA
• 0x428288 IsWindowVisible
• 0x42828c EnumWindows
• 0x428290 IsWindowEnabled
• 0x428294 LookupIconIdFromDirectoryEx
• 0x428298 GetCursorPos
• 0x42829c SetCursorPos
• 0x4282a0 GetSystemMetrics
• 0x4282a4 ReleaseDC
• 0x4282a8 GetWindowDC
• 0x4282ac SetClipboardData
• 0x4282b0 EmptyClipboard
• 0x4282b4 SendInput
• 0x4282b8 SetFocus
• 0x4282bc SetForegroundWindow
• 0x4282c0 SetWindowTextA
• 0x4282c4 EnumChildWindows
• 0x4282c8 SendMessageTimeoutA
• 0x4282cc RegisterWindowMessageA
• 0x4282d0 GetWindowThreadProcessId
• 0x4282d4 PostQuitMessage
• 0x4282d8 GetClientRect
• 0x4282dc GetWindowInfo
• 0x4282e0 GetWindow
• 0x4282e4 GetWindowPlacement
• 0x4282e8 MessageBoxA
Library GDI32.dll:
• 0x428034 CreateCompatibleDC
• 0x428038 CreateCompatibleBitmap
• 0x42803c SelectObject
• 0x428040 BitBlt
• 0x428044 DeleteDC
• 0x428048 GetDIBits
• 0x42804c DeleteObject
Library ADVAPI32.dll:
• 0x428000 SetSecurityDescriptorGroup
• 0x428004 ChangeServiceConfigA
• 0x428008 GetUserNameA
• 0x42800c SetSecurityDescriptorOwner
• 0x428010 SetSecurityDescriptorDacl
• 0x428014 InitializeSecurityDescriptor
• 0x428018 AddAccessAllowedAce
• 0x42801c InitializeAcl
• 0x428020 GetLengthSid
• 0x428024 GetTokenInformation
• 0x428028 SetFileSecurityA
• 0x42802c SetSecurityDescriptorSacl
Library SHELL32.dll:
• 0x428234 ShellExecuteA
• 0x428238 SHGetSpecialFolderLocation
• 0x42823c SHGetPathFromIDListA
• 0x428240 SHGetMalloc
Library WS2_32.dll:
• 0x428300 inet_addr
• 0x428304 connect
• 0x428308 ioctlsocket
• 0x42830c WSACreateEvent
• 0x428310 WSAEventSelect
• 0x428314 WSAWaitForMultipleEvents
• 0x428318 WSAEnumNetworkEvents
• 0x42831c WSACloseEvent
• 0x428320 sendto
• 0x428324 htons
• 0x428328 gethostbyaddr
• 0x42832c socket
• 0x428330 accept
• 0x428334 getpeername
• 0x428338 shutdown
• 0x42833c inet_ntoa
• 0x428340 gethostname
• 0x428344 gethostbyname
• 0x428348 select
• 0x42834c __WSAFDIsSet
• 0x428350 recv
• 0x428354 send
• 0x428358 closesocket
• 0x42835c WSAGetLastError
Library VERSION.dll:
• 0x4282f0 GetFileVersionInfoSizeA
• 0x4282f4 GetFileVersionInfoA
• 0x4282f8 VerQueryValueA
L!This program cannot be run in DOS mode.
N{/AN{/AN{/A]sFAM{/AKw AW{/AKwpA-{/AX6AL{/A]srAL{/AsrAC{/AN{.A{/AKwOAv{/AKwuAO{/ARichN{/A
`.rdata
@.data
PPup hB
u| uxutPW
YYuwPhB
YYu`PhB
YYuIPhxB
YYu2PhpB
up PS P
UQQSVu
3RSMQV5D
@_^[QSU38
3@_^][YUVu
_^]VW|$
t*SEPVuW
VuKYYt
EY_^:[t
P PPPXP
j(CPV*
uj(xWV
EY_^[U
E(9E|j
EYY_^[UQQe
ZuZj&CNh
EY_^[U
Et(SMQVWP
VWnYYt
EY_^[U
Y3]}fjAZ3jJ
EPPh$B
PSPh(bE
SPhPhcE
U SV5cE
Y3]}fEPu
^[VjG-
GC_^]j
@uVW|$
v$u2^_
u3_^VW33
B33_^
W;]}F>;=dE
t.VYu#W
}}CEPWWPF
;|-WSE
E|_^[2Vt$
3S3VW](})f3
]U]P]L]V]WEX
]<]d]@]Du
08]V]\]j]k]dtc8]Wu^ELjB3Y3v8}P
ELjB3YFB;rj
3FE8PSSPG
SVEjPW
8]bt]}jTu8EkT@}tj
EkSE\]bP8]ct }jC
EkCE\]c,9]\
@}kTE\uc
EPELYEdU}kSun
+E8PSSPG
)E\9]\
PudPHc
EPudPQd
PudPXb
~TEdjA
3Y;ue;EHw`8
;YuGu|uxj
u|uxVudP6i
]X9]P_^[t
YEXlUl$
}Lf3\B
Y}f39]ht
uhEP9]lt
ulEP9]pt
upEP9]tt
MLEME|<ar
EPr]dhPB
f}`P5\B
E`PhLB
EPS]dS
]dEPPELPE
3YBBRV(
YY_^[TULD
2okBVj
78^Bu*j@F
^_[UHSVW}
YYShpB
}MujBEPW
YtdShlB
vTWHSEPW$t1}Ru
YFX^UVu
^]UQQE
>VW]]]u
EE_^[UQSVu
_^[UQM
hE^[SWhD
3MUVWr
nPvXu^]hD
PEPWVE
tjEPYu\S
E_[E^UQQD
E@X;u}
jA3YvOSVt$
j@VP@L
AKu_^[UM
"u;A9"t
th"t"++u
A9"t% t ++u
_^[]Vj
V3t2WF
YY_^[U
;}P3<;t
0j$3;}~*bx-u
|8SSS`P`P
SS`PSS
EPEP`SP]]
Y3j?`aY\]f`P\P
`Puu0R
j@`P`P
tUSEPuuW
E;Eu'8t,38
PSS`PSS
PS`P`PSS
PEPuSEP`P
P`PuSEPj
uJ`PhB
||`P~;Yt$`P};Yt
@8:u8:
<:u_{D
;CDrO{H
;CHs?{L
t>FL^MVD$
u9Ve;~HYs
YYF$^V5(D
(SVWr>j(3Y
u13v't$
PFP(G;YYr
2_^[UQ(D
@$uU=\E
t)V5(D
VWj?3YfTj@Ph@B
SSSj@Ph
YYt:fE
;t19D$
YYt2D$
_^3]@[
tuD$,PSD$4(
u!D$PVP4
D$4PhBT@
_^]3[D
SVW3WEPWh
WWWjFPh(B
[SEPSWj
jdWEPWh
WWWjFPh(B
SEPSWj
}jdSEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jdWEPWh
WWWjFPhB
jdSEPSWj
jdWEPWh
WWWjFPhB
jdSEPSWj
jdWEPWh
WWWjdPhXB
SEPSWj
jdWEPWh
WWWj@PhB
SEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jdSEPSWj
jd_^[U
}YtX~BSW
PPPhT@
<AtL<atHh4B
_[U(SVWE
N>\u>\t
3WWPhcE
t|VP}w
YYVVPP
N>\u>\t
;twVEPPuPPW
VVPhcE
3@_^[U
fjAY3}
N>\u>\t
M+@PWP
SPPhcE
3@_^[U
3jWjAY3
PVYY3@_^Ul$L
E|SVWj2
XPux(WPu|(PN
ucXP(P
XPux(WP
jAY3\$
E|SVWj
E,Y}-f
E,PPE,P
tH<.tDuxP
V395GE
F@;5GE
<0r)<9w%<9w
_^[]Ul$H
SVW}|j
t>\.t5
0\Pux,hB
YYud\P
YtS\PAYtB\PYu1GE
\PYE|0PS
_^[p3FU
SWjA3Y3
SPYY95GE
YYUQSVW=
^2^UQQSVWu
t\.tSPPu
PW0u!PW
P7YWPj?
Y1f0jxPe
SVW3j 3Y89fj
<]Y}f]U
PWP8]5
t SWh(bE
2_^[U8
tSVWjAY3j?
YfjAY3
3PMQPh
PPPEj@PhB
3PPMQPP
F8\uVf
Y}fj 3Y
Yt)WP2YYt#PP
SVWj$E@j
2BEMUp
Etm=3'
u~EPPPj
EtAt<PV
j2Ph B
EPSShO@
Nu^[QQSUVt$
Wt$ t$(V
VD$$Pt$ t$0t$0t$0t$@
PVD$,Pt$$D$$VPt$$t$0t$(j
PVD$,Pt$$D$$VPt$$t$0t$(j
PVD$,Pt$$D$$VPt$$t$0t$(j
D$$t-PVPt$$D$$VPt$$
D$$t$0Pj
~t$$5B
_^]3[YY
YtEWt$
^_VW|$
SP@$tn
i3F~h$B
j$YAUy
EvaSWh
WEPuVS
3f3f3f3f
f 3!f'3(f.3/f536f<3=fC3DfJ3Kff
33j.Zff
3f3f3f
3f3f3f3f3f3f3f3f3f3f3f
f^`3lf3opf3vwf3}~f3f3f3f3f3f3f3f3f3f3f3f3f
!3%f(3)f3j Yf/1637f=3>fD3EfK3LfR3SfY3Zf`3afg3hfn3ofu3vff
9]})@~
_3^@[S
3Y]}fEPEPE2
SSSSEPSSEP
`f3o}3}fB
]]]]]]]E
2lEPSSSSSSh
t39]v/W9]u"7u
^[UQQVW33EP
u}%0cE
}1fj 3YE
}fEpPEPEp
E|PE0Pg
PEP5OD
SHPSWO
SHPSWO
SVWjAY3
SVWjAY33jAY
SSSjFPhB
jdSEPSh
SSSj@Ph
jdSEPSh
SSSj@PhPB
jdSEPSh
SSSjPPhB
jdSEPSh
SSSj@Ph
jdSEPSh
SSSj@PhPB
SSSj@Ph
jdSEPSh
SSSj@PhPB
jdSEPSh
SSSjPPhB
jd9]u-
EjdSEPSh
SSSj@Ph
jdSEPSh
SSSj@PhPB
jd_^[U4
SVWjJY3
_^[SV5B
RQShXMV
E[YZME
SVWjAY3jA
EY}fh(bE
EPPh\B
P_^[VW
SSShDA
SSShS@
SSSh\@
SSShT@
f9=XcE
SSSSSh
SSSSSh@
SSSSSh
SSSSSh_@
SSSSShL@
t0SSSh
SSSSSh
SSSSSh
SSSSSh
SSSSSh<q@
SSSSSh^
SSSSSh(?A
SSSSShA
G?"t B
YYuh`B
Y3;tR?-uMj
GWh(bE
GWh(bE
SSShw@
SSSSSh)@
Etm=3'
uzEPPPj
Et=t8PV
PWj_8PhB
t|EMQSS48Q@P
<=t!<"t
<"t<'t< u
.u?/u[
u&EPPPP
<=t!<"t
<"t<'t< u
(u9(u+(<>t
u&EPPPP
fEEPMEY}
PVPj_8PhB
Y_^]3[
UQS38]
E(Ht#j
EPSVh@
r_^[SVW|$
F<> tj
>tC< u
3@_^[U$E
SVWhtB
@u3@_^[U
3j?Yf3j?YfE
]}EPSSPG
}EPSSP3G
yfj?3Y
yfE\PxPxPulE\P
E`xPfED
yfxPxPh
}X]`ETPj
xyfVxPhB
;vfE\a}`ETPj
}`ETPj
2^[_du`
f3]\}]fj ]3Y}f]o
SSEpPL
Pj EPhB
j EPhB
B@FSSEpPL
Pj EPh4B
j@EPhXB
B@FSSEpPL
Pj EPhB
B@FSSEpPL
Pj EPhB
j EPhB
B@FSSEpPL
Pj EPhB
j EPhB
SSEpPL
B@FSSEpPL
Pj EPhB
j(EPhB
B@FSSEpPL
Pj EPhXB
j(EPhxB
B@FSSEpPL
Pj EPh
taj EPh8B
YYj Y3LMfh
t93(}2
3_^[xU|/
PEPu|N
ElEPfEL
}`ElM\QWWQ@P
F3nPPh B
}dGt{SW=
YEdtXB
YEpt0SW
3;Y~2jd[
Es3A;~v
EsA;|ul
_^[tV2
f95XcE
f9=`cE
J95dcE
f95XcE
[339D$
SVW3j@Yu
t]SMQVWP
Y3_^[U
SVWj@Y33j@
_^[UQSV5
SVWj@3Y
PPSWPPj&1
PPSWP]Pj
PPSWP.
[UQVWdE
EPaWYt
_^UQVWdeE
_^UQVWLeE
EPi=Yt
_^UQVW4eE
jphXcE
^UQSVWdE
_^[UQVWdeE
_^UQVWLeE
_^UQVW4eE
EPj YYt
_^UQSVW
2YYt#}pu
jpWhXcE
<\uFhXB
tN.tEPu
uW_^3[Ul$
3Y3SSju|fS=B
S]p]X]`
6PYVPju|EdSS
E`PEXPEpPjEhP3GWud
9}puh}l
}SSfjdEPj6SS
YYu?u|P
ElEl;Ep
!udY_^[tU`VWj
N>.u3FG=lcE
t EPEh,B
|_^Ul$
uj Y3]}fh
t63(}/
kQU,VWj,3EVPu
WY3_^U@e
}+}]+]
3PPVSWPPu
EEE39u
_^UDS]
j@EPC P
(j@{`sZY3
|_^[VWXB
YYt5@VP
YYt'@VP
uj,YL$
@$;u;u
p(q(H(;t
p$q$L$
3t2V3t*Wy$t!Q
AYu*Vgt$
YF$p(F$^U
SVW338X
;u_^[U
E|SVWj
UDrYuA=D
et*st%btGpt
EUDbt"pt
E|EhTB
PYYjFEPh@B
E Ph4B
E PEPE PEPE PEPEPPu|EPh,
PxPE@p
SVWjFEPh@B
EPEPEPEPEPEPh,
SdPPdPu
_^[UdS]
jY3Y@g
EYYE3PPMQh
33ESGP}o
EP3fXcE
jAYEPSSPEE
^MQMQPu
EPEPWu
YYwm=eE
3;v194eE
AP;rHeE
3;v6u94eE
;YYtvP
~dV;YtY
+YYtEHHuHeE
3;v=U9
AP;rHeE
V}YEE;E
jAYEPSSPE@eE
_^[SVW=
SUVW3SSSh
uUSVWfE
uSVW33
33_^[U
}]f}]ftO;t
fE9]uZ
uV3=dE
u[^_UE
u_^[]U
O};v9,8_
;u^_[U
QQMfEuf3
YYt1uYu
QQufYY
~utB+F
QQfEuf
ty9EsrdE
EfMtJQQuf
^]UHVWj
}jAEPhB
MF;r[_
^ULSWj
}jAEPhB
[ULSWj
}jAEPhB
3AJu_^VWj
YYD>._^U
;YYu4})]uF>
YYM;tGM
;Es3_^[
#_^UDVWjAEPhB
UQQSVu
W33<0r
<0sEPD
7h_^[t
[U SVh?
SSSSSSSjj
E_^[t$
EPEPBfUfEfE
j2YBfU~
j7YEPEPBfUd
j2YBfU0
j7YEPEPBfUj
EPEPEPV
VEEPVuE
3@^3^U0VEP3j
WEPVV3GWu
EPuSWu
_^U VEP3j
YEPuWj
tU3CSEP
[^UQVu
E3GPW}fE
EPW}fE
f]_^[U8j8Ej
_^U SVWEP
MtDU+U
)EU+U,
E+Ej@PE+EPVWjS
SSSSSjd
_^[U VEP
^t*E+Eh
PE+EPE+Puj
3SVW\B
3_^[Vt$
P#YYt;j<EPV
U@j EPu
PYYu(Eh,B
XEPh~f
^[SVt$
:tCx:t=x:t7:u
SW9;=dE
t'V0t V
^_[Vt$
B;|^2^Vt$
B;|^2^UVW}
8\@;|3~'<>\u
A9\tQP
VSVSYt$
PZYU-B
SzYh`B
EEPP3PWW}
3_^[Vt$
^UTSVWj
SE3GPW}fE
SEPW}fE
SEPW}fE
SEPW}fE
SEP}fE
SEPW}fE
_^[U8SVWj
SE3GPW}fE
SEPW}fE
SEPW}fE
SEPW}fE
u^G? u
G? t? t
3_^[V5B
WWWWWjd
_^U SVWEP
)EU+U,
SSSSSjd
_^[U0SVWu
_3^@[U
3_^U0SVWu
_3^@[V5B
jdqjdh@
YY3@^U8SVWu
_3^@[U
Y3@U8SVWu
_3^@[Vt$
WVYYuSU-
J3B;~KD78 u
HI8 t+;~+
HI8 u+;~
W]]9]u
Y}fElPYYup%fE
EPu\f}`PYYt"
E`PhLB
3YEBBRP
P*YY.j
3PPPPEPQQu\f$
Voj$j$j%_WWWWWWW,h,
EhPEdPVS
ElPYEpt=fE
VuhudV
YfPV<PPEPP,j
uhudV2
VuhudV
QQu\fYYuupfE
XEEEPh
jFpPh(B
EPEPEPj
SUVWjAD$
SSD$ PSS
SSShCA
V3VEPVh
VVVjFxPh(B
3^UQW}
^[_S\$
VWPEPh
VPEPEPVP-,P
_[UQQSV5
f(}|BWuu
;S}/+}
YY_^[U
+@VFPSW
SVWuxP
ETPh~f
td;uWE
+EdPuXV
udP&YYu
~u|WPVO
u<EPhTB
3_^[hU
PEPPPu
PPuP_ }
PPiYYtPh
PP0EfE
_[^UQSVW
W<uYYEPW
WY_^[U@
tK;uGj,EWP
P[PYYt:YD
WPEPPP3V}
PWPhxB
E Ph0B
SWj 33
]Y}fEpP]pUYt
t]Ed:EpuUj
k3@^_[tU<
E$SVWj
UE}M~l9E
t!u(uu$
_^[UtVWj
+MVMM+ME+UMU
Sj!SVj
S_^[]3D$
UQSVW}
+3BP33
^[]Vt$
W339L$
GAA;|$
SVW3S-
EPVW-1
WlY3_^[UH
EPVWR0
@j@EPP
tUQQS]
]3+tSKt2Kt
t3Nt"Nt
Y_^[UQS]
[t]Nt8Nt
t<Nt(Nt
aY_^[UQVK
OuSjY_^U
tcItAIt IudJ
uMp}uu
t[It=It
WY_^[Vt$
^UQSVu
WY_^[Vt$
@[_^3USVu
01u_^[]USVu
u+9 u'VWYY~
A?u*;u&WVYY~
_^[]US]
3F;u1;u
SWWYY|
VWS-uXu
SW-uG;u.SW!YY|
_^[]UE
YY]SVWj Y}
VW]YYVY_^[]V;W~
VWj Y|$
VW"YYW
Y_^QSUVW395YD
t$$h oE
j [+WSW]iVSVa
DSVEYY~
WuWVuV
SVW39=YD
j Y58oE
+QWMVuV
SVYY~#VSVE
VS+ S58oE
_^[UQW}
<[_UQQSVW3V
<Su(V|
uSBVVu
VSV0>u
OuSvY_^[UM
|[_^]Ul$
SV3FVUj
Ed*YYEp8G
uEh^MEl
E`Mp]d
VSDSVS<SWSBEp$^X
[xUQSVW8w
Y_^[SVt$
Y|_VVY^[
*V8^]Vj
^UQSVWjDXj
MuS/Y_^[SVWjD
Ku_^[UQQSVW
EVWWVV
vVVuWuv
_^[UQx
YYWtau
WP8NYCuYY_^UQQSVW3SSSSEVu
VW|utul
_^[UQVu
8Y[_^UU
|_^[]S\$
;|^_[USVu
VyY_^[]U
SVW3Sj
SnSf,E~
tDuuVuWuu
WWuMEUuu}(UM
Su;YYu
~JME+EE+E
}t>EG;
~@UE}+
WutSVu
dSVWuuVM
)E+u)E}
A;|_^[U W}
MK;]Ur!w%
~O}UE++
G;|^[_U
M]~$Euu
E~"]uu
EKuE_F
SWYY[^S\$
^_[UQQM
p_^[EUQQE
Eu[Vt$
{YY^VWj
^[]US]
@<>@AO;v
v+u 3u
4u >@BAO;v
VWj?Y3
EPEPPEPEPPV}
v.EPEPPEPEP3
VWj?Y3
EPEPPEPEPPV}
v.EPEPPEPEP3
YYP5_D
WPW5_D
YYP5_D
VPV5_D
AVMWxPXhpT#P
xl330#334pp3Pt33M3U
x\#33<338p|3Hx33M3U
33@>33Dv
33M33Uu
ph#xl#}33H
xp#pt#
33P33T
#H(#px33\33X3
#]33`33d3
33h33l3
M #H@0
33p33t3M3U3M3U
3(#HH3
33x33|3
30#HP3
38#HXH
3M3333M3U3MT
}MH#Hh]3M
3#3M333M3U3
P#Hp]3M
3#3M333M3U
X#Hx\#P|h
3M#3333
E%%$ 3
s3333MEE
X^_[]UE
u0Fu,u(u$u u
EP4VUjd
}9}(|t}(
k9}0~b}0
Qu48u0u,u(u$u Vu
P`PV8Pu
u+W39|$
6iG;|$
U]*Mf+M
?^[_UVu
X_[^]UQVu
P@YYW8;
MvDvH7SVhB
@;u!8;
3CSWEVPj
@G;|(;u";
_^[UVu
3[^]Vt$
Y~OSUD$
GG;|_][
X+EE)uE
;|_^[Vt$
X^S3C9
DUW|$PD$
SW^[3_@]D
YfPuZYY_tQhHB
P|YYt>h
UQEPhA
t{SWVVYSVj
SVVh`B
3_@[^UE
;E wrE
SWjAY33
_[U8=_D
j2uu_^U
P>yY3Y@
VWjAY3
Wj@3\$
D$$hqE
QRVWk4t
QRVWE t
QRVW t
Hu*SSSh!A
SSShvA
SSSSSh*A
PuYYtiEP
EPShXB
E+Ej@PE+EPE+PujS
SZYu@h,
PkuYYt
SSSSSjd
WS_3^@[
PjtYYt
PDtYYtiEP
EPShXB
E+Ej@PE+EPE+PujS
SYuDhp
SSSSSjd
WS_3^@[
tu^%}E
YYtT=}E
t63CSSSW|
rYYtTEP
EPWhXB
E+Ej@PE+EPE+PujW
tCQPEEWPMr
Y}uuuu
uj2Wyj2uu
VPEEWPu
j2xxj2uuh,
VWEP3Su
u"EPEPj
j!hpaD
MtKEQPu
Y}uuuu
j2tj2uu
@@PDYt$
VsiYYt
VbiYYt
W<iYYu
K^_[j$BYL$
_VPYtYT$
fYYu.u
^][3_H
W3j D$
V-bYYuxh(B
bYYug$B
bYYuUWVaYYuHh
VaYYu7h
VaYYu&h
^][3_H
u^[_W=\E
u^[_Ul$
SVWj E
fVu|rB
CVS]pDB
ulu|Eh
uls^YYt0
GdP8WPVE|
Pu|tu|&9
PiYY ul{
WiYYh~E
u u|EhdB
YtAVOYu$VVEh<B
_^[tVj$7D$
UP.gYYhB
gYY_][^Ul$
uVj`64Yt$
P 4Yt$
|>WYu59
WNFXp\FXY
3_^Vt$
GLY][_^U
Wj Y3E
}fSEhB
EPSEhPB
EPSEhB
_^[VW|$
^[_SV5B
{YWh@B
mYWh(B
CYWS9YWhB
+YW_^[U
VS_PYY
SYtpUSYu
Yt"HTu
p ^QQSUVW
X;u3hu
v/8_Pu*h~E
[tRHtDHt)Ht
VVVhNA
VoJYYtDV
U\SVWE3P]
upEPEP
]]]]]]
Wj?Y33
SSSh|A
SVY_^[3
YYt^VhB
YYu^_[
u9VW3D
_^US38
33;tGF
u3_^[]
_^3]@[VWG
PlCYYu
:u'F;|
EPuSF:
@Ht<PTYt1
@H9Et't#;t }
tLPTYtA
9Et79Et2t.;t*}
@ tRP3TYtG
@ 9Et=9Et89Et3;t/39Mu
X 39Et
tRPSYtG
9Et=9Et89Et3;t/39Mu
VWSYtC9ut>9ut99ut4;t039Eu
VRYtC9ut>9ut99ut4;t039Eu
VRYtC9ut>9ut99ut4;t039Eu
V RYtC9ut>9ut99ut4;t039Eu
VQYtC9ut>9ut99ut4;t039Eu
tVPKQYtK
9EtA9Et<9Et7;t339Mu
VPYtC9ut>9ut99ut4;t039Eu
9Et=9Et89Et3;t/39Mu
Suuuuu
QQf)I$t
ULSVWj
3}j@f^(j
Wp0Z<YYt
u2E;~+9}~&+E;
YY_^[U@E
^%;t"?C
Vva=xcE
MWst,~
[ u2_^[
YYu2_^[
VWj 3E
Y}fEPLt'j
SVWj?Y33
Y]3}fh
`tKat=Ht1Ht%H
SVupt=Wj?3Y
Y}fEP_u
EPPOGYYu?v
^[xUl$
upt=Wj?3Y
Y}fEP\_u
EPP%FYYt
^[xUl$
SVupt=Wj?3Y
Y}fEP/_u
EPPDYYt
^[xSUVW
gF'39F
P,YYtRSVE
Pe,YYu
PQ,YYt8VhPux
S]xVWETP3SuT
PZ+YYt?El
S YY=hcE
Pm*YYt
P?*YYt
3FVS,5El;YY
VV3VS3
M\EXL9
QPEhE$SPMlba
uluDuh
}\D8 )j
D8lExj
PuxSZ=|B
u{j Y3E
S21YY=hcE
u`]\EhP
.jduluhC
QPEhE$SPMl
Y}<u@uluDuh
u@^MdE`
QPuxEhE$PMl],j
u@uluDuh
QPuxEhE$PMl_],j
u@uluDuh
_3^@[p
_^]3[h|
DDDDDDDDDDDDDD
t+t'NW8u
8t3^[_
^[_Vt$
Y@];ExB
Mut$VMQPV
VEPuV-
+SVWEePEEEEd
Y_^[QVC20XC00U
33333]^]
]_^[]UL$
;t_^+[]3]UQQ=
B8t6t8t't
B^_[VD$
tAt2t$
+WVS3D$
[]US39
j Y+L$
_^[U E
YYj`hB
f8MZu H<
XPuVVPg}9uu
eYt*F=<D
uH80t8
3@3UQQ}
SVWt']
A80t.F
D$$VP3>-
(Wj0U~
_^][USVu
|(;}$t
]EuMm]E
t;j\V4
;YYu7~
Y[^_Eh
;ru,h?B
;r3_^UV3F950
^UQQS]
VWj\SJ2
uEuKj:S2
YYu;S=
YYt}h,B
YE_^[t$
t6SY%P;Yv
USVWUj
t.;t$$t(4v
EtVMf9MZ
_^[UQQ=
F;s"95<D
QPEPW5
_^[UWVSM
[^_j8h8B
u8SS3FVh0B
YE;t@E
t!SS9]
E;tSSu
e}VSW[
33M;u#uV
Y;t1uSW%
EPWu u^/
u9]t#W?
t6SUW
VPVPV5
@;rD3Ar
@;rM^.
@;vAAy
3UV3PPPPPPPPU
$r ^UV3PPPPPPPPU
$s ^Vt$
YYULSVWj
MQ@Puu
33Vt$
_3[@^3^
^[U$,T
3MEEEEE
It.ht lt
HHt`HHt\
YYE}[E
@@@u3@t
t$ERPWS&09]
~DE]EM3f
CYCY~-
uMEFYE
^[]U$t
PYY}P@<Yv"PE;j
SuWS~hB
^[]VW39=
t.t$<"u
u_^S39
U*VsE>=Yt
t7VPvYY
3Y]_^[5
@B8\t8"u&
_[UQQSVW39=
3_^[QQ
SUVW=|B
SSS+S@PVSSD$4
;t2U;YD$
t#SSUPt$$VSS
u+@UV;Yu
_^][YY
;rSVWD$
_^3[Dj
u5EP3GWh0B
j Yj Y+
VWj Y|$
Pj Y+3BR0$
}_^UQe
Yj ^+3B
QPIYYu
<+3E_^[
Ju^3L$
SVWj ^]
EPEPEWPv
@PEP 3;>v
|!3}MEP^
oYY3j Y+N
E3PPPPu
EPEPS#
E3PPPPu
DDDDDDDDDDDDDD
W=@PWVT
_^[]UQU
PEP)YYh
tH8;t;"t
#^]U39
Bu^[]U=
#]3]V5
uVjD^VESPfu5D
;EY0EY]H
E8]t,H
EPEPSu
_^[US]
3Y_^[]
]UQQSV3W=
VVVVjPVV;
EtZPB;YEtLVVuPj7VV
;u3_^[uEYU
WWWWVSWu
YYE;t2WWVPVSWu
W3;u4DP
^_UQQM
MOI;|9 M
3@_^[U
WI <}}
MLD3#um
#Mj _^{
;]r;]u&
]#\D\D
W>+~'WPv
^3^SVW33395
^]SVt$
F3w9=@
_^[VWj
_^[U$d
E;|!E+
VWumhB
;VWEN@
}ShSbEPSSRE
tfEM_^fC
ESEVE33W}
+t HHt
+t%-t 0tFC~E~
VPDY3YB
VPvY3YB
tfW1OM|
+tzHHtj
#fWEEEEEEEEEEEE?E
PEPfU}
EPNYuO
EPWEPNEPEPEP8EM
0H;s;s
wHVSU5
Yt(CH;r
V"Yu3^_][
E33F9=
}}9} u
M]3F3E;u
3};tIj
W,u$YY
VPAYuu
S3;W]u
aV0;utSj=V;YYEtB;t>38X
t?^_[9]t
;YYtC<9]
tPuW@@P
;YYt8uV^+EY
=N@uNVEP
E3E35D
3;t Mu
t78t2=D
PMYtDu
EEEEfF
EEPKYu}
u5}u,e
^YY39M
u_^M[$Vt$
VP{YY^3^SUVW|$
_^][Vt$
-AV3t$
F;r^U}
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
G//AU
pOBwUc_B\/
gC0^"_pNr`>
up_,4b
UPp@p1_8b{
8T9o{cK
zS,{n;
HHyuA;k/
#+PCQP
OVIYhqN)Q
Ecu7B:kBk
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
G//AU
pOBwUc_B\/
gC0^"_pNr`>
up_,4b
UPp@p1_8b{
^LDS]h
c;(I:4V[+
6BEZ88ka&t
R}MEj A`
QR_^ial
-wV'$/
m).!U+U!D0q]~xsw
sVV4c>
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
G//AU
pOBwUc_B\/
gC0^"_pNr`>
up_,4b
UPp@p1_8b{
8T9o{cK
8T9o{cK
8T9o{cK
vV(^"E
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
vV(^"E=
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
vV(^"E=
8T9o{cK
8T9o{cK
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
8T9o{c
8T9o{c
8T9o{c
8T9o{c
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
G//AU
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
G//AU
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
vV(^"E=
K%M:i|
iW6w"gTO ^O
1jB(Z_!5
8T9o{cK
vV(^"E=
8T9o{cK
vV(^"E=
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{c
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{c
8T9o{c
8T9o{c
8T9o{c
8T9o{cK
8T9o{c
8T9o{cK
8T9o{c
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{c
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{c
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{cK
8T9o{c
8T9o{cK
8T9o{cK
no key
This program cannot be run in DOS mode
a "..\%s.rar" *
?i=%s&l=%s&t=%s
http://
tooltips_class32
twitter
svchost.exe
unknown
SeDebugPrivilege
:\System Volume Information
Gbnt#n7:
cw -y -tk -inul "%s" "%s"
c -y -tk -inul -z"%s" "%s"
a -y -tk -inul "%s" "%s"
Desktop
%s\%s\%s
icacls
%s /grant %s:D
takeown
"%s" /grant %s:D
/f "%s"
common
winrar
kernel32.dll
GetProductInfo
GetNativeSystemInfo
%s\%s*
www.blogger.com/
www.wikipedia.org/
www.yahoo.com/
www.youtube.com/
www.myspace.com/
www.facebook.com/
www.google.com/
shutdown -r
\WinRAR\rar.exe
mailto:
172.16
192.168
content-length
chunked
transfer-encoding
HH:mm:ss
ddd, dd MMM yyyy
application/octet-stream
<h1>%s</h1>
Windows NT
User-Agent:
ServicesActive
sfc_os.dll
SeShutdownPrivilege
NtShutdownSystem
ntdll.dll
%d.%d.%d.%d
Notification Ar
ToolbarWindow32
NotifyIconOverflowW
Shell_TrayWnd
Twitter
User Account Control
Registry Edi
Please restart your computer.
Shutdown
device
InternetGatewayDevice
WANIPConnection
service
WANPPPConnection
urn:schemas-upnp-org:
Content-Length:
errorCode
controlURL
</service>
<serviceType>%s</serviceType>
%s%s:%s:%d
http://%s/
URLBase
modelName
friendlyName
GET %s HTTP/1.1
HOST: %s
ACCEPT-LANGUAGE: en
LOCATION:
M-SEARCH * HTTP/1.1
HOST: 239.255.255.250:1900
MAN: "ssdp:discover"
MX: %d
ST: %s
<%s>%s</%s>
<%s>%d</%s>
Content-Type: text/xml; charset="utf-8"
SOAPAction: "
Content-Length:
HTTP/1.1
HOST:
</s:Body>
</s:Envelope>
</u:
xmlns:u="
s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/">
<s:Body>
<u:
<?xml version="1.0"?><s:Envelope
xmlns:s="http://schemas.xmlsoap.org/soap/envelope/"
NewLeaseDuration
NewPortMappingDescription
NewEnabled
NewInternalClient
NewInternalPort
NewProtocol
NewExternalPort
NewRemoteHost
AddPortMapping
4d(2dhP
v.A0,;
]w[T1`m
tskMainForm.
tSkMainForm.
Skype.exe
Lower: %x
Higher: %x
SkypePath
Software\Skype\Phone
TrayClockWClass
skype.exe
tSkNotify
tSkACLForm.
TCommunicatorForm.
OPEN CHAT %s
??????
(party)
(kiss)
:D :D :D
:ddddd
GET CHAT %s CHATMESSAGES
CHATNAME
GET CHATMESSAGE %s CHATNAME
STATUS
FROM_HANDLE
PARTNER_HANDLE
TIMESTAMP
FILEPATH
FAILED
COMPLETED
CANCELLED
TRANSFERRING_OVER_RELAY
TRANSFERRING
WAITING_FOR_ACCEPT
REMOTE_DOES_NOT_SUPPORT_FT
REMOTELY_CANCELLED
FAILUREREASON
GET MESSAGE %d TIMESTAMP
GET MESSAGE %d PARTNER_HANDLE
GET MESSAGE %d BODY
GET CHAT %s TIMESTAMP
NROF_AUTHED_BUDDIES
MOOD_TEXT
ONLINE
OFFLINE
UNKNOWN
ONLINESTATUS
ISBLOCKED
ISAUTHORIZED
BUDDYSTATUS
IS_VOICEMAIL_CAPABLE
IS_VIDEO_CAPABLE
HOMEPAGE
PHONE_MOBILE
PHONE_OFFICE
PHONE_HOME
COUNTRY
LANGUAGE
BIRTHDAY
FULLNAME
GET USER %s ONLINESTATUS
GET USER %s MOOD_TEXT
GET USER %s ISBLOCKED
GET USER %s ISAUTHORIZED
GET USER %s BUDDYSTATUS
GET USER %s IS_VOICEMAIL_CAPABLE
GET USER %s IS_VIDEO_CAPABLE
GET USER %s ABOUT
GET USER %s HOMEPAGE
GET USER %s PHONE_MOBILE
GET USER %s PHONE_OFFICE
GET USER %s PHONE_HOME
GET USER %s CITY
GET USER %s COUNTRY
GET USER %s LANGUAGE
GET USER %s SEX
GET USER %s BIRTHDAY
GET USER %s FULLNAME
TIMEZONE
IPCOUNTRY
PSTN_BALANCE
GET PROFILE TIMEZONE
GET PROFILE MOOD_TEXT
GET PROFILE ABOUT
GET PROFILE HOMEPAGE
GET PROFILE PHONE_MOBILE
GET PROFILE PHONE_OFFICE
GET PROFILE PHONE_HOME
GET PROFILE CITY
GET PROFILE IPCOUNTRY
GET PROFILE COUNTRY
GET PROFILE SEX
GET PROFILE BIRTHDAY
GET PROFILE FULLNAME
GET PROFILE PSTN_BALANCE
GET CURRENTUSERHANDLE
GET UI_LANGUAGE
CHATMESSAGES
SEARCH CHATS
SET CALL %s STATUS FINISHED
CURRENTUSERHANDLE
FILETRANSFER
CHATS
CHATMESSAGE
MESSAGE
PROFILE
USERS
UI_LANGUAGE
SEARCH FRIENDS
SET USERSTATUS DND
Skype-API-Test-
SkypeControlAPIDiscover
SkypeControlAPIAttach
CHAT CREATE %s
CHATMESSAGE %s %s
#32770
Button
ChatRichEdit
RichView
TConversationForm.
TskMultiChatForm.
TskConfirmForm.
TGettingStartedForm.
TTrayAlert
cmd.exe
command.com
COMSPEC
GAIsProcessorFeaturePresent
KERNEL32
CorExitProcess
mscoree.dll
`h````
ppxxxx
(null)
runtime error
TLOSS error
SING error
DOMAIN error
- This application cannot run using the active version of the Microsoft .NET Runtime
Please contact the application's support team for more information.
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
This application has requested the Runtime to terminate it in an unusual way.
Please contact the application's support team for more information.
- not enough space for environment
- not enough space for arguments
- floating point not loaded
Microsoft Visual C++ Runtime Library
Runtime Error!
Program:
<program name unknown>
GetProcessWindowStation
GetUserObjectInformationA
GetLastActivePopup
GetActiveWindow
MessageBoxA
user32.dll
1#QNAN
1#SNAN
Program:
A buffer overrun has been detected which has corrupted the program's
internal state. The program cannot safely continue execution and must
now be terminated.
Buffer overrun detected!
A security error of unknown cause has been detected which has
corrupted the program's internal state. The program cannot safely
continue execution and must now be terminated.
Unknown security failure detected!
FindClose
FindNextFileA
CopyFileA
lstrcatA
lstrcpyA
FindFirstFileA
CloseHandle
ReadFile
CreateFileA
WriteFile
SetFilePointer
lstrlenA
GetTickCount
SetFileAttributesA
DeleteFileA
LeaveCriticalSection
EnterCriticalSection
lstrcpynA
lstrcmpA
ExitProcess
lstrcmpiA
CreateThread
GetLogicalDriveStringsA
GetDriveTypeA
GetWindowsDirectoryA
MoveFileA
FreeLibrary
EnumResourceNamesA
LoadLibraryA
GetProcAddress
GetModuleHandleA
GetSystemInfo
GetVersionExA
SetThreadPriority
GetCurrentThread
FreeResource
UpdateResourceA
SizeofResource
LockResource
LoadResource
FindResourceA
EnumResourceLanguagesA
EndUpdateResourceA
BeginUpdateResourceA
CreateMutexA
GetLastError
WaitForSingleObject
GetVolumeInformationA
GetComputerNameA
GetCurrentProcess
OpenMutexA
SetPriorityClass
GetTempPathA
GetModuleFileNameA
GetSystemDirectoryA
SetErrorMode
InitializeCriticalSection
HeapAlloc
GetProcessHeap
HeapFree
WideCharToMultiByte
MultiByteToWideChar
ExitThread
GetTimeFormatA
GetDateFormatA
GetFileSize
GlobalUnlock
GlobalLock
GlobalAlloc
GetFileAttributesA
SetFileTime
SystemTimeToFileTime
GetSystemTime
CreateDirectoryA
CreateProcessA
GetCurrentProcessId
KERNEL32.dll
wsprintfA
GetWindowRect
GetDesktopWindow
ShowWindow
EnableWindow
GetClassNameA
DestroyWindow
SetWindowPos
PostMessageA
GetWindowThreadProcessId
GetWindowTextA
IsWindowVisible
EnumWindows
IsWindowEnabled
LookupIconIdFromDirectoryEx
GetCursorPos
SetCursorPos
GetSystemMetrics
ReleaseDC
GetWindowDC
SetClipboardData
EmptyClipboard
SendInput
SetFocus
SetForegroundWindow
SetWindowTextA
EnumChildWindows
MessageBoxA
GetWindowPlacement
GetWindow
GetWindowInfo
GetClientRect
PostQuitMessage
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
RegisterClassA
UnregisterClassA
SendMessageTimeoutA
RegisterWindowMessageA
USER32.dll
GetDIBits
DeleteDC
BitBlt
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
DeleteObject
GDI32.dll
GetUserNameA
ChangeServiceConfigA
SetSecurityDescriptorSacl
SetSecurityDescriptorGroup
SetSecurityDescriptorOwner
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AddAccessAllowedAce
InitializeAcl
GetLengthSid
GetTokenInformation
SetFileSecurityA
ADVAPI32.dll
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHELL32.dll
WSACloseEvent
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
WSAEventSelect
WSACreateEvent
WS2_32.dll
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VERSION.dll
RpcStringFreeA
UuidToStringA
UuidCreate
RPCRT4.dll
GetStartupInfoA
GetCommandLineA
TerminateProcess
RtlUnwind
InterlockedExchange
VirtualQuery
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
GetCPInfo
VirtualProtect
VirtualAlloc
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetStringTypeA
GetStringTypeW
GetExitCodeProcess
GetLocaleInfoA
HeapReAlloc
HeapSize
CompareStringA
CompareStringW
SetEnvironmentVariableA
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
FlushFileBuffers
SetStdHandle
1.0.0.1
KE$F\ 83
\-z"IV2EopL}xpw
R-Dd4/~?
[dc(lkKwy,X\
Kq>|<R
LT:raz"
x2v%.nd?@,LnX
v~?7_s
^I:n~i
Lgc-mC(SxLivk
1D}~5m
3r]Pty
o|y2)AG,
hJp"#Xpq|dT6
$;>8/%
29fAl#2^[<\XXAEZy1
1+x8y<
;rG0=Qzt
%u<?q/
N{ ?Ft
?X;~we.^;
[_Ru59
WcmWqP$s
3.VdcyB
W\+^UZ
:JJ?K%uOek<~B2
=G*[fD&_EPO7
i"8ekR
Qx&`RiB
fR+~8?9j
uJldHo
WlH-V&'&>
4Jv$b?MBw@/n3:RO%YU
b]1.6$`
#=|1'A\tHC t\1O
6zLu/z.!3CQ
H{+Ulsm
#z^BEAP
Hd/dWnJI
/EFlv'F
xQt3G9oN?
_B8R]Hop
yGv)6O
(U<y26 /<
5ijP];?(%*XK
e=Fzu<LkW6;p@6S
XBX>KPb};
0,wD:<+g
%+z2$nMT
eEK`%o
*p(YV}(
YI,qE3m%DbkD
6dYyD
lc##`SmPQ>
e4eLOh)NU
t`HVfGAb
np`ll;5E{
l';Up7
.(bB+huNG
S=0"`;?D
3uH+"V
&-H>hs
o88+m#XN
`}R`#y`aoFd
fQj.d>
a`}R`#y`aoFd
fQj.d>
hb? M,
`}R`#y`aoFd
fQj.d>
hb?"M\$9wT
Nv*lw,Yy_
G`}R`#y`aoFd
@{R&-:
B! ;l@
?;V!Ef/'O
`}R`#y`aoFd
fQj.d>
hb?"M\$/,
)6Y1_"
H\.(yC\
H\.(yC\
v<CtZ>@1Y%!
xtk,&kp
v<v+:SLcq4 {
cmwP3Iaq
`}R`#y`aoFd
fQj.d>
hb?"M\$9wT
|~crHi9e
cYo4 ^;
6CdiBg
D,pT1XO6XK7lg
`}R`#y`aoFd
&.%r,.Y
3dr4TCD
MCPFrW
r4TCD"w
KRfxD?
`}R`#y`aoFd
@{R&-:
B! ;l@
?;V!Er/'
|~crHi9e
B=z *-
ENyq[t#
]MEmOG
\lyGC+
s")kMDP
k 8'}9h
L*zqcbsH!tG
FY9J55| zT]\w(w+?L
P~9J"k
J+ g$6D
J+ g$$gXsC
J+ g$[1
{wMMCI;
aK*`[UONG\7Xl#)w
d"OY#8
Q<?u{whCEO~kjHn&B
/8n@R (9(h
{wMMCI;
aK*`[UO U
Cq3P5ok
ST}r++
c 3l;.)G?
2XWj[O
Q"yi?L[O
vTE|UA
UP5!Wj
XW%JDw
|&q?~ZCxg
LQp)0%
vTE|UA
rNWKNZu7p
ITYAwZ*W
NZu1p)
@"+^CRYd7#
m4u@PP:#FFR`S2Z
+u'Z#DJ
~Vq)H{\
%6!j<no
c#KPA5
CEd$)[
cT{m*AW,1@u
';|FM4!l
%+Un7S0
n\)-Ui
<N* !*ClQ
Dp)Un7S0
%@p<$A`5?N"b
A/jr!]
X4z9mh
y060_aT7
"+%%'iUn7S0
TlQR?Mt{
-Wt"nj
?Us$#99UtA}(
X:wJlBIUP,
pNO\(XK2>ch
~Vo(#51M+2
P)V=tFw"
`AZjV0b
\( } U^
tFxV4!>!~r
2pz`{itFl
%C@,,2vEB
KJtFxVDKi
pNO\("U~
a;.;3Qfx*a;>8
a;)w4~
a;)w4~
a;.%@u>K\a;(]V-=
MkHGr6
v5;C,*
u61C|4
pNO\(]@`
}mg6hBz;g|nM$sv
|{xX{POapT'
7RH}D%
l:WmwV
7Hvlz+
[Ze@]C
Ze@]eF
^{XGEh
^{XGq#
}s)W |$
}s)W |!
}s)W | v>i
}s"uE9
}s|CHQZ
Z{DJ{Hl
kr^-K`{~f}Z
tFv*Pdm
vWxp:mG
vWxp:mG3
tFk:5a1\}'1
{pnRc~
f}*g9G?`CTJ
M(YE&.IUtF}S3y/!&f
-r0tF}S3y/!&f
PF'|@4
Y9Yk/]f~
Ta_5kV
dbSfyd~z
zv6zzA
~\R:FfL$t3
3Uhy0!
B|vUo^.l:
L!x5ek/@
v,2s5#l
qW%h_0
w4U<y5)
LB#iyf]
2re%]HL
;o^%/`<a
J#%7HK%$^<16"E6Qy6
+;hjODha4'u.
,JM{*(
xc*qb'H[#Qqe
:wZvMH}*
2t [@;
)Q9 5l9W
xyN]nVG
M1r+:U
4DMPW%
B81XAFn{r
GMU\%_
C=V:z)
Iu}y+*
xrO-RZ
i_F?<Xn
jsoE3/>8eo(ps-U
W@~(,hNMZT
iQY;uD
gi)G]^
) mGA!#XM
ELZw59
&u(+5jk"ZG
fN =Xh
m:1o"p
K3+KyQvy
7OShFHDX
KeaG;XQ:
*Cz+Bi
Cqz4`Ow
/E]+ge@
;c"bT&cBs}F n4
Hu#7eu
KB>f1^(
~d>I,)
Qbi#kR.(9nHt#'7nN6?k@TSw
5Z-r3\VoD5"
v@2zF3ic
P6"|=<lIq
;hlSQ`
F6C)K[
d1r?vCe?
]F#F63P
J'26e6[
m9x/$,ck
P,*qr0
JHwn1*!
ypJ:K`&qq
L0y2/L
0+j>mwb
(N/l89?*gIKaTdNY_
ch3@ *~ ^$S{
_ii'Lc|
@-Tt:b
9h*|6 G
2_"mC1z!^jQG7{5
ym/w K*
(nH+aA>@Wo#b:<
JbQccM
-~'zg?
+WM3:qQ$)1
62P*E,
D'2+z h
)Cl?sb>2
zr,Q;T
rQdJ#0>
2p!`dnZ
Govwy#
Scy~=e
Pc< b#'C
zcL'k
+F4SM@Rcp
+w[. h
HUsM%{PW$n
.43 yw
QkX1i|t
[SUvzz
g:~X#o,QbR&G
xVSj84_
FX'^[]
BW[" /FL
Q(s mck
GBdHWah
3bzA"n~zh
*q7?ku7sY@"O
8GR1ez}
.nVu:Wy
v3CE}xY
,-#^>
D~Gp8\v
r3Nm7ZDL
DI/eq5
6Dh=21S<~jKN0Z)DG=4
CJ`SzZ
eXnC6:
aN.00&
rJ)[]a/C2a '
uw[fXN!
VUs5 T!}
zti`Gt
,7\e?#
{dvrm;
y=~|w54
HGA?<kQ
-0>38y9
_m.I[GZ|
8U@:mZ;Alk
h%`mryS&(BuD'a0H0
E4@?Ug
on{}O54#s
#QY,'0Z
}|/=[^!,6
`^&~ `3q*@^S.N?
\j7m[<gxJfL]Jv
=CFgr'
ZWDv-if
]p5 ~LZX@`P
_4$]O;
WHi*3v,]
i)zyM;@B
*na/#Uy9T.
_"FUeO
,n[.4~-$Z< l J#H
MJo)C3tW
w!E7/
HmM*19zRnjMS0"
qzz2v=yL
q4~67>GOJ*(U
tQ%PV-
\h/~Ok6zX@,
EUI4W{
nr_dT:W
'q{-Gz
Plu5r-J>
'}\_`&_
<v4/J2zU*
%IwEwS
q9@hczt
r7`WPHm])
G=&-A-EY7
e(x3pY=C
T1.>'_aZ)
OrI2 ,|
PJ.yRGlAM
v_3 3dX19n%0
!]A[JR
nPQgbo
(Z&}/^
S<([IY@=Hv
WP]?;&6G#'
X~_\U[@
y%!cJ{
66o`~j
k)x0XU^GYU
}Dfhg|4%3wCNEI@L
#Hj]qavlZ!'
")[ko_
z9bFsDiM(Q
6D!\V_[=jBG
n2FyaU(
>wz|}T\%
niljuqY)e
N:1 UfR?
hQx8 l
FP:)o1V
x+'eS q@
Z~}OO3+Yp*gU
hTn~Td
6f@s8fi
sEI!w(TY>
UtaUDjM
5 PK` q{8(m+HA$l
%{[L<vvd&9d
3o5hh;
OIhxxW
*gIg ^!nce:}
V!Ivl0l
]M^$pZq
atkfr>a9,
w?e?O:Hg
-aD6Mx9wxX
7y cgY
>uP>k>`
G;|S:@
` TGsg
H##*$%{
6(N3cl
a@l7>&vn
QBr`BI,p%
{:PtRR!K_yT
L)"$*Js%
i,Jb!d]6='i
P9e]+x?
s \wYBY
Nn4F<@61
gXZm'q
llLImX
XSS]rW7
"NdRPA6A
^VP)x.
H;a<=uIgx,AvXkvr\1
"tTkPY
5XADE_
g_] QxV+gW:
^^1Gy'
'&=VIa.O7
E0m?|I
a+B0}6j(ZVSZL!b[
Qzdv2V)V
4-e`w|
]<f%BH'
9@%x#BT$]S}_
jR-q&D
h*o9m
oUUECK/
Gw_4bmt
=GD}"GF"
j(ki8,Y-
yM>ZP&!
w ]7@M[M
{-l{a8
KPC:S[Uj*{H
bv,~>r0w'
q};y(7/:
<JpVk%qI[)XQBj8$
W[v7C#?jO
z jf1EV[G
x=+f.ZCpFl2abtXO9
sCFi\?
:;l>+S
:gm6P4+{
J jjp"
qdH1_&5Dn
>*M#plw
\)KL}e
vh^+*wk8E5+
4a(us*
}h&#m`
/)XWvAO&.G
BaDJ(s
bn4):vyZ*
UI{>0#fs{9?
2b>ZuB/OnEwK73
FVvp>h
oU#1Yh5tB
zEWGEb
e-N-^\-[KFi@
T\{z$Ca
)A?kEp/Hc{#
$yl'-R(
#m*U0:tT
+qoK@Rm{
O7#z({^
'Nb:eT
:k&kT[<w=x-.
3}P|Ko
yWRJq (Xp)(K(l
zRYz\9?eN
8{$"bR
%gKV2xZ"B
lffBaR'+%!YrV x@<ui"!^_=
Y?x{4;
~C=SG+$GP7
71~> .NA
tDfLo/ h}
V+xh}j@fR7da )
S/>.@3Yk#n
lA0*%+
T}1hR P"r
k=_a=)1)
.`f(g<Un!]
kt"$oK2@Q/ lI!
"IH5Vj
qjfuUt
el(e$@Lgs
eGAbR&n=sbQ6^
Ycg*M?1v`
phR"?ghS
'S7lyfdx{ydipGR
( kmnlHzE<
:kN \!!8W
Ag9o,~R
9m?"P:0
OBV"vLp~6mB>
f`O^<QZ
-?z0nV
K)YY5k9*
$#{fbu.9*
w/[&,lT5\FfS
m#^Iee
z5}q-q
AXw?z!5
cQv9:i
i,Wf3[
Iu:qOXib
S-^zTW:hN
=OE/PDi
*A|G=3
_upvpg
R1"ya%%
F!e m#
(7fttJ7b1
wk+b*m
Y&2LWC;^>n
SwDuh*Ayy
l~@7H5({VhyXM
~bxexy3/=4
>TEG9%5
{5] AU
Pgr/a?=
BNS#u[#DJ;fD
Q<Ra4MH
aN<fl[
R~<Wt`M]}\TO`
\YA]l`#.H~(9
!~>D!`
0`+%.9Q
(B,%SBB
:f?H&0{
-'dsd{ A]nozq?=
p4=MHOwe_
kwcV/-
_Qi?}H
EzOTo28FH=m
2&\8lf$
9uBeT<:
E+{*@0IBd
k?gw}vO:
)hD<Ep*6YQSRyNGH7{R_0
#^_)pYl
k]u52hh
u2 ~Wc
Uer8s{
U;/UXu&!Z2d
fYgymn
')d*sq!k
Gv8`f}A!
-Y!$1v9XU
k{Gwev?H
KQp;$Q3
506be*=Rg<
R;&:,;
cPXx/KLEryh]Atm{,Vp;~
4?0>UN
~+At8}TIO
/7Si)X!KZ)lH5Z w,D|R"
C!wDo*X&7"
o&z +|=n7o
zt4=x&[D|5
l4,Q?*J
/~g+Zv
JT^N~#
I`Nc(Azw
GtZ;2El,
YzvH[`
-8$y^G7
Tq=@+;
WRUX*}
L\QqY+tz)%-E MBe
3g+fvM<
{KJE5b6e
EPLjy(
>7+y\0l
^@uvndg^l7O VR)*Sn
]%w#VQu;
+7o w\z/
y]hbP2K
y!"y`HS*g%
8#`-USnT
K'ZZQ &
4}R]B/O<
`>w)HY$
aH_.D%*$bq\5R
Nw9_p5K
eVtu'51<4>
=WFLpfJ[
.0=Rjh=>+
*)b wS7~R
1p%;f81x@H *|[? 7*r
tJiTV($
Z$/9o(o
hb!)du
K{ G;;|
s{EZX(dFp3l
8s.BVHl}T
LzVoQ]uv
Pd;gdA
0q#mq!j0tE
)i-2(M821/E
R 6'[3
-.VD`4(+
nLxI"7}o
!vY@O.
#^+x9| +hvjZCc-]p
#<E+Iju
!(xVwcd]B7G?W*&`
Q&\xD-E
\sF}*S
Q2lFw"i
mSKRQ #TZaQ,xWv
fg7lUV
#$b'Lh
JjDmj1v2?bvOb
A*z\W
2V`hKq
,3idsVl
L4!qIj
#IQB]"
!jvM;D*5
]Y"d>/BrS[
h%AMaxz8gNAji`
CLF=BV
q<Q J2u-@V(
WQ<O %a7o9
d;k)sV
Yj'nlDl"
fU MmV
E6'iEfV/n
svAo9hF
,F.O5agpPl
>t5hxY
*F,+rOU$-H(fs
~U{d.RYCB8E!1[d,E8 _(CQw8R
W'Rn-Y|
s0Vl;(%=%
?$1Qk5U
[}nbt(HX&%oGg
}o>Yp0kpl#<A+%.
CNJ`**i
pCf+87
)8y?)Rl
t<]HM}]&36r
7c\Mc#^#v
O:DFxN\AI2o
w*kPE{Z|V
sJ;TeN
bsI5uMX
X;mpg'jh
7G|hGav_
F~WbZ/
C7!rW[
E~EDG!
_Vr1|d%
9+l|{S
}B er= h
H\{aT70aA
Gd,NZ1
&"\sq3~
wdPT'cm2?_5d
]ZE^L[
gH:dGyoe
Z3tw7uP
CUaKU\
FXnN6pU+7TR}o(
9Wd<pl
JUWcf7D
;kipd#^-k@
_bNQ~u?
F1,2E:q5
cN` 67G$;D[
,UjxT<Y8.
bwxvA0E`
oOF (")s
kyNwiokEi
{Ph;jN
'#rnQSLi
LVm3 /r*
XC(X\OzqN
=|Oytf}l
7B[ri]
&{lCi"
j2Cq&c85D.j
/Y4RB /"o
Hg<jJM
+A=toF'
A2`4(8c5
QS]7cmV`{
hTK'o&wy
^E,\ 9C
: TK56P&ae
teYwO; (
#_tTChei
_^b!KW
T'nEy+Yw-J
e#a'j&
x Uz$?,l
U$P]G1
##LkU2
eYX60S^
LmijWFi~y|e
d3ayfM
<'R"ag
3'fd`flP[%
6({3{2
t@E)oSPqB
(Rje1T
=T1hcq
X>=smyD0>~H
sq9&cA
r_OI^Xe(kw
WB[#4JU:
;:c3sC5+
kxxIEo
b"(F?{.
iz}d\$'
k_{8FV
2zaN y *h
dELgjdv
@`g~ mwJf{
~)4V~C
zsy}^F
< 1~^6
B[$GfSI/-
<lN`~sE
-E&8#- ?w
S:-,x"5pKr8k
'37oVM
uE_(<&
@~ar\j
>dwyEW
C+x([nUauZ
,$lYWvq&i,,
g#XF7fQ"
04002s%O'
&tokW%Rl8
v*u=3xr
pga91%:5m>
fyo>ZwyW
chy$_[
wZBOls~:
ehH:M@`+)&
|OaI<9}
4J$g6<
!&-Vq\vvhs
cv^{b6@DfJG
| lx:odJ
w;?`Irm\-D
ktOG7Yf+h"h
8aM'g'L0
k3GG83
^Wt[aPcxF
jLK`M9
5D6~ M
t!ma jN!
-Djt[C5wc1|dE)SOiy
CDC\?xF
S}v_t+CGq!y)
YhtEDN=kDnIo
W:}<ZUu)z=n
=iR=:j
{9jvEdc
<\5p[=f5=J2a *
+A6y3,Kf92
*pAffMk
A Pca t
sqD[7R}n`of+8[d
>7)mM%
OCm^3_$}?i
27@Y+T>m"y@
(zscg6@<R
k_[X:8'=
OcJAlZO%
l"Q~6Z
9,=\7b
/M@Pv`cPDrv
A2zO;S
DO3A[Grdk
-:)Qi
5X>/-/
B>dgSk
V",%w!>@Urf
^:]RD{/I[N
'f33\3
s]DH2d
[pbYw3
H43UxhLc|
]7pU\)
E[fE/5A;
W?(4*0
L9Jd}zBq?*
LzpL?w6
ykHSnll
mI,E}s%
[ r J8[F
}`=oXI;06-(+
H/3DWuN
<Fz3C#h
_zx*P(A2
AGvj+|N9s
6b9tO3C6i8g:^&#,
hP,^2/mw-
=H-j;v^
]d.Olr
/Y?@gdxN
8!f*K0
$@0hP7xM1Q
` nlO+
CX~9D}
~XI:YO%,
-=yrDB[
rtA'N<4OL
isN{[3
x`]hn=
Ux8&\KMrp
LycgWO&f,
H:{#9Cbz
sHN+xjK
7;gJO+3A
Ty:\E[5J!
oDlw>g
_)E@i(UzV0G(1W9B
2A%ijN
Jp:*=P
oa8r.{t
to?V*DEq
/F`W@HTEZadG7|
Xjsw@s
kzl';PC
;vs>TvL9C7
eX4!wP
h9P-R{VU
hO#pod
c&FyF:6
/_uN&B
`d=}:L
UjI>y}<Dl
UpW6qK"
@;fZn
(^e|yi
1tX3f0
Wjj)j,
/ 4Ptv
L^A:'^
z)BP=dU
3!e},G
/=!!w5
^-Mqm|5sg
UDCjcSz
*6T!]f16
gUZ~;S>%
F%_g$]Kqe
wWFW!~h,
|ejD s7
8q 6Y=
G$rQk1SP
zDfx\O"4X
Mq <Q^
&+s`3\@'C3R4
Csm`~^
^I>*S
%M6xhbV.
3pEEsj*^[jM7
miB@*!P3bC
&B[901
jdW2\(
|Jcu";
SI`3{I
"Oe]!z
YD S^wz^
FP;3 uq]
'Be7S!7 gg.-3{vIG
\NUtly"}
`$v.v(
D=:s{J
vNUe#A-z
-$R`$n\
ey\?[U
X"qEMx]o?!y_F
F,]PNKuKd{VB"zhX
$bc y,S
"FXR(uzhF}?h6$
W(myT"xlSR!`8b@
*RqmP^IC3p
BI:2bz
%Rj]2ln!$ly
cl,S>Ufl
]1#dLrmaa
yy~`giN
6kyf$$1
ZK`"&j
! A# K
`4sJ[\~9p%
#yXzQ|M
QXoQN0
r]G"7=,v1jo
9mV]+hO
8 @6v_cv7Mq
\XixZl^
1)(IS,2A
{KyIr]?00,{& 8
943"KP
YL'Tv?<ojY
h.Q(}pCm`7c
i]{J9{
9!StOD|
2QcHB9
?R53"n"
cnF\{;
6rF3j[
-,q$A\_\U=G
,q@T{Th
E/~D[\
|u1P(=,%*
fy8**9i
xs]&e#_O
`x4(@TA
B!+O8(
n>q~ec
]*+Y6RqL
:7fO=TBY
A#<AFgWK:kVw
rQ:Gu<
.[WaHfclN
hiuWH3
f)9M1KHWO4|$
yz3?_n&m/{_O
r@oEb;kka?(
v\i\A[h
8)0 .,.]~_D4E)D3&2?H
~~5;)4;
yj(w,|jd|
e}hOLQWEA>C
ipPK:HC@a|-7Fu/
58#JZ85<f$`
u1lrvC
DGmQ)gm/<]
d}{s_e%
Xl`Sx|J
+&: &BufUAq
0-mh@~bvftf-*&w
*^?MGgA
SMl@`0W Nm?
J[8y1!
. <9hb
O@iP72
9lPP^Q3|>|
`[E'aHx
mJ;n/:IR4w_
ZTkGLz
3TI,t$<
{IW@ly
L"}B)qf$
eKBtT:JtpG
KL;aJ7c
d|Wv~h(eNU_.aK(q
U4<&Az
CY(WkDZ,
HGI[*nz
}*%t)1\d
1Ivep5K
P5^3`p_
MG_JV/Bdj
Rhj(@`Y
!wfk+Q
Ul)=]?w
L[/2RF/D~\byT:J*
[,6/ G
.p3>+^qd
Gh_GDI
bCJZ79d
^5ZO]`
*o^}0Cnc#%
ut#6"kF
"6YO"D6f@
yx2J{a]I<R
s5"zgJ
H+IW??
AgTtNe`
;';Oe0*
qa}edy.\
Jv _`s4
%y@_@|e
y}s\1jnl410
{d^ew$6GpV
nKHi&rZ>0|X
?0Upo L
<~|C$v
pwllY:
WbMo%o
(Gq1b+
'3Rz@ee(~g8
*=uHy[V{H M!
YIL%NB04~{
s)_I7Ej'|ME
ZH`U";e=
x'F~*0":j
,XnUec
ZE>PaA!
l*um\^Ta<
#jIP;,VSeNNFu
*#Gf?8
%&IrXS0
{.SeN@5B
9@Sw+KNu|v#K
+3e-x\"
e\ 5R$8flr
:~uQ01
|FFHN^KN5+
=@cK;uE hd[p> YE/t
`>"/Aa:&Z_)m
sm!G,Qo.
a/@a>13j
*A]n'Y"YG#
o)^wX<
*{#. <v
@%eC~Ri$
0Qp/E,q={V:]s Y#]
&"z} H>z
xh?}yHQ
Hb3 e\
s2y>oSF
X8H_eC[a:l
Q\1LkI
N!G,qn
qty?BK]tHoa
Z]bxA&
Z6T&XI
q0NbOhkO~-{m
M4&yVv
)V$xy!A
jFbcA:Bso
4<kA/}24j
t|]K)zN >
l^P\%{.(=$42
Jl*dSg k"7Gi
XCIH=sIG$,POEU
^HZ_ S|*
i5{?r]
W".%U\/+
mhIz '
F`II0s:
?Y%'tox
y#%}i'
%0/FEi
^Y2ox1y
3!ZzqE
o&|D*5;^zY
_r)08K`
;@n@@ hT|
f17)5mu9VU
JK?AgM
Fr2-K/P
qf r&,
!HL$@a I
}8?:`+
7$&mu!~
Qh5@<q
^[b!Vh#y`bt
8D[7@2)2mMo=WC%L 7sCx
7[tqr)p[ F
9zFuSm
2vi9U
f>td#@
DJ%l=b
6$y+!b*MH
yl0l%)
dh^zwe(zR
0`nr4A\
tJg08}f2
?XWAy /xQ
!4J//.2
gm*<zr
"dt(U}
=)"6k4>V
H9,AS!(IqR
:nH(NS
c;37tVs
>r=bkP
&+%lNHy
ad![zpO
S*1/.-Cca<F-
J{#v9="%
0C,R\@
Y^p(gmf
p@7\w(ZA
1mU~W}
n?,* .aP
|P(QW`;:
"4fFG.\P|xr4
\hb"OjN'Ac_xFn
E]ik=01G
pZeVZg
!.PY-r.<Q14J
"3+1n2?pIX:
CZ"(LD4
X!uaBot
5/|u)Cl.IlNRldD
UR`2;t
KMNri<Y
UGW'sj E?~,]E[#+*
Ib'rDp
ylNdtzzuiRw1
Y'%OMn
u>D\5DvK
Z;ukLHa
rw~v!PwW)
0kERlo7R:'
u+]?rjwlR
/{A#:%e
Ro[JHt69^Dzg,
~n+rd61=7vV
h8[_Y%7t
)f uPV
>z6==+
>h6#S_su$
jk0j)yt
GxItlL
v pw7,
bT&ESm$q#gNZ
Ujj:4$
>"3JAH
0GV|PO*O
{eDq"(
,pIUZ\n?<
2@co e
05):`kCv=a
G:2m=Ky
7T=U:Yg\j30R1[4M
&PLKQ^ u
z),)*=!$v4@382
ST~2&"|K
\xKkW("
=doFH"FY}
3II+GO
d&:oaP
NtY,KC
6K.1p3
y#,QIG]
EG 't
>h~";N
jb0yV1Y
I',)/,4M
9Hw08x
rvgN6[.e"#C
&.{m8+`|%31
P5F{n4
F>v8n*
^8a#D2j
yD2zw_3ua&*
vBV!I"
9>`o;>
:<oqi+=
$~_~#>!G
|{UCfmq#[z&O
&*&i?;0[
im`Y'Sx1m
!2unJN
6}WC;J
mrP<xfs
3^(=1p
mC&r}2>p
(TZ1';
X8&De%
D^M,Xf
rXyj=.^6W<-^>3
_v/d1o
Wrfs:?
KD[8= }O6nV25
%?U%l*B
5Oe.~C%)pKMD-,%
[d~wBop|`h;#W
sM@1{J&# }/
J")8R@F|
%fR+Sp0u
sh-j0t|
S_j\/
Jj(oZ,
2}HTmf7!~4W? n]
mjFa=@Q`^ZV1p#$
zo`> ]m
`eF*{P*H
H5Z+5y@h
XOoK{|xQ
KHwS:=
g+u:mD
|{vU:L7MK
g'1U6wG
~Nw~CR":b
N:5*K54
Gn[*ZC7
Az%%R]
]&T>y]\f.5#F
4D5yP%"
:]#E*kBUB"h $
hX]7H>2
NTD#aFF
L]u\hm
%jmR5dw<N4q
[m(w-*7
$x$NPXL!
Tu4/C;x
'&>.G'8P>FW#VH
Zv.`-&>
L!&,H9'I}
.lWyAk
uceZ;3
mh "N/S
8Iga\1} \
..ldu%,
d\f}H3w
E9/":~#2i{I
A>](]P
9gT # 5
H p-u!U%DCC
sl37JdZ
V@L#1 ;e;|F;a![W-Y
Up@ }a
_DFLE"
mnEU_T
2;4bVbjx1|q}#G%
-QNavufG]^
A4u V0f
c/C2B=
PtI%eQ
6l5GX}B
_p&7vUGLE?B:fG
MZlg%`
P;\&yTBSc
1^,z*sCXbeD=
ZU3oIJRb(adJ Y2
7ys8dAbRDBQL
7=2Yup
jXJ3m.Vl
UW<G-wv.
LS<{hL5"=Y
ZNVQRuZ9=x'(
*qp}lI]v<c6i|-
@jO&b1
k#VrJW$US
k'(fJA]~N
z{>2,P
VzU)tU *<+Hba\
~`^@:/
n0,# yuwVJ+DNn`YJ/
qI-Y~1
~_M<*E\R"vOL
4V1?J=
D+~=^R
zRzf i
<t2XD/ HV
q=e uN
i9Nv).$8q_D
B[(v"Ir
0C0)5/3
KBLg:jNvr:
jDneoi%
CIW:lEI#
7:*a7u$
hQ#OcAE
iE'FNFr
wPPmt'
c[Hoz-pe
~8nH m
~R|<-vjfM;
Uh3<\B
j"GTciOqcFFcC
ZfJP 2,
]8L^.,<1dV|804{y$e
zK~s*8
oh_C2dd
B~.mqJf
x>!B&R5S"
Oot!O'
v9s C- jR
ky,*.YV
!gq]IJy
sqg}Yno
#,s! ./L(f
Ro1>7/2!*$N
nYRDyml@Ov{
<7~03q
GG%\T*V
<ic,_Gq
TH[o$|OQk6
}{-Rb)X
PKb5EcL0f}
[\7PWk
Jg<c=hNo A0
8s4%'tJX
G-Sb|T
Kf]yBDI
Na/taz
qMB`sM
<UI4]f<11
cG}{f8v_6-2
BGJ`?zDKv
K'TOY3],cFR_
a"[)oxn<
_CCW&h
$,'rKA2"
#!c_qifta=
do2:# >
~*[CZ!F
`88!ZH2E
CAm3<b,x4T(n!
KTllnwD9&}+{
_-H>);
VVb@E,
-3(I+w
qK]uSpd a Z2?V
Sq>3L2jKq<
se'ux4C
$;J[Ox5V\P
Q!;74!
HOI`@HeX
L-KyPzN
iSx|o!;{
dZI!P/<
3BY wuiuf
[DGR35-w
H9yA|_P7+D
f.p~/A8P
@2Ng7&
7.J:0JvDL
t0L}2],*^+
Ns'amPJ
5xMOR"b|tsG=
n $aXR.Lf
XlFuk"Jm
kjKY>dj8
8kx,QwGI[g4H1Jl!
H (3W3
?r[2|b P
}c"t$eHAa
FO[}z2G!iT>b\
A8Hl[x
TQ PPORv ;
;r>X?4t^PI
qEGMq
Or@8eTCV,D
{[e!)zO6I
+#@3T+i
z?wYXrH
Tx_Qz3LbH
A0t^FK
himz*on/
rP]4WB
rO;-yN
"mH]='y
tOAhwdz`uf
*pl{U\_1JAe
8PCJC7
W.2V]5(7l
\a'-}'
bWQw8~B8F
\Aj6l6
I|m7n.W
;P]U_RB{
r=\obeh$Swu
RIt <rv
Lf'Z+oYX5]
ZQ!XLb(S 3
aF|D^%~
eFq'`?u2+j#I
+A;TL1
\|A_3j
MZNq"q:U
F_:!OdOos
(Y1m Mi
IC)rcF/|
jW l g
(6+"oC
XV+dRi;
)*J#=[}R`Q
'ipqXQB
;}ocmaZrZx2
=i@{~xX}|
OI+].,
WbPv.s^^^T%'
YfT^.{%M
j"*2-&
YXIR$b}4
z~]3ubN<ZO
d9qVB9
VjW+ &+Y]lN,u
7rE]z_Yd
p/t 'LBpy_
KIPXEb4/I{
DsM#be3#'J+%)^ji
1s@+HGoyg(
DE(3et
-?cGzJn\dK'.
mU9H d
aubRn&J:
8}&yrf
iD@qIB
OOx37|q
>p/\s(
H|,xqP
%@Lu?y
":nAd9S.
'Ua(?2l
D|{pt0
k>hlu>r
mbbDmJgO8
=Kp^~T*Ih
tu}Jom\
jNHI5m
Z:`: F;C
{xJ1iQ16
mg~j!Lk
U<+M>}
~LGfnq
nz-{@x@/[zVfH7I
./T{g"~31L>1 4N[CMP49h
Jt9Ic%&~Dci)v>k7qzB-
luEg"<;
\UghJo
2_j`.z&
v8_s(c?
uy?OM6V3Vu]U-IP
_FkD1;O
06nr$e#sI1C3^XbF
Lx{0XPBA/
7K2@ 9a;Pr
!5\&g-.U0,
+1O1e8
=[%,AQj
G2#()Qr
1u)J!,j9
Z[l46|
Lk\><.
HA{W$5 &2d*Xl
`ky(e!
w|[<wT
z$Nc!mN
%4q+Q6R
p&M8JBD
"bt Tjn_
WP1 r*
v}QXa7M
KN-ATtm
3ql};U
rL}eJc[Kl"
Ceo]xL_
lp}viLJ
o?o2Koh
vYp}<S{ {?e@N+
df-(3+4I
Lp rF%bt
9f=z+1
A'"K?l
AF~.4#uQ
lu=y\a<2
cw/C`+/
&?^op!3
H1Fe\6
bhP$jXQt89
24$IW`N
~6Jd9X+
qfE3uEr r}"
Quz,n#
<HD}lh>L`>
PwKG;
bNwJdi&
-YC?g]
5r'?/R&
"5PS>oo#
G*@OsVg U]p!&DI
`t~+pH
N^9Gw `V
gPSDKi
GHmU-bZ&
9*v}DtDstW
4k1(R,.
D#VpMJ
cVaN^/
r`*cCte0OqO
+M%X=p
.p8dV>2k
lMX=Xo
{zC?fW
-i,IP-.h)
G|Uy+-
sQABHn
< b.t0U
K'1#CZXQ
0hkb<0(^4uvxgwrOv}Q
i~E\/R
2zRCj,GQsV
RNn6`x
IXtT 6m8
'fWES $
jtJ!X@
(x7Lp4
MmP>-';Q9
wrC jz
Xp! P6>
G0vNXHs4p*
xWA~v|k$+
qP m{xf]
FU+tiFM5
M;)]]vO4?
7XnQJ2qP1
T7&z6N
(3/fQl
70q^t]
]Z>/ MobNm
d{4(,U]
ly:4I4
%BXS/x
hyx{N&E
"-,Z$c3 ED
i%W8G|1
cE5-j:L"NG^KKu
+=rv4P
$K[/"&|
}R={_(
>F>0fcl
n%(`}EBf?_
g^-sEN]rC<3
c"m0dP
yBG]%_8
Mnr~D&TC&{Iv #n4
VIDp*SvR/
OAt-g;C[
rM7%XI
= ZUZJc
?[u2C
k9S?*5
M,]cB@
UnPqlg
=W<m(!P]lZ
_n5R 0Zui
`Bg&V"HQg2>
SM5P>{Zw(z5
31pK8iQ/=
aL`NP#40
C@I8GI
w[BYWGD
$ipYF$*x
%.mf iBn!M*{\[C#
A0:"-+
}I_*oNsc
q$zbx_
%Sjr+<At,S
$s-Alo^*wznT
p}'HJN xN@xK|
P;#5xz=]
}3O%aYZ
|x;N_n!H&
Z7bOQr9aAeTI!ZB2
mTK/^D
k#tu}k4hY*J9O
%b_!K1ps+
D4Y:Aw2p
_B?<+LV
WAk>*}z;8[\0O
Se{M]8
}Xh5zV[2Ip
oJS17|[$
ulw;&TcPTNl
Z~tXof9,>
/_zz56
,X"I&Q|
I&qi_l{
:Ev eIE&ULl|1Q3"h-m
H'=fS](ru
Vvl"#zG(z^
OQ:jSd
T+m|{y
DWf%Sa
kO<Yi0
[:fX0k
W53f^g
O@`d(4
eXaUjS
@*G+)6$h
8X:#.ay R
\E\z%6uw8Zu
`|~>c=T@%
}O| J+<j
E6U%7X3c
ltY/.j
|jY*bb
%3eZRu
6|%MrCd
~g,cGQ+
"tuZ}6<X
o:l ?!5
mF/!#c
d CE]R
Fe=#H;&`
I/E<Oy-
:ODU}ck:
o$=?WHd+\FoYqg]Qsx~R
L>i4>.*
6TJYkeB0AjTg
;Db7<y*
|c8m_hw)
C{ydhx=O#KU
9|<EY|"A5]
;Ry;K|De95a"!BWSeB
Bv(O LO+
2kj*Bp
bV%!6D
G&U4\W\$"
UkC])R$`P!$;=Mi
68WXZu[Y
;]xM#!
uxPpPo[
CCv ?pr
FD0 F/5~=P
5hr^"kf
/}AV$%
C3YI[>
OB<V%]
;Fm1'H
maXcZz
8n/ i%n7"C
c7iIC>Z
3'wKPyF
UUe~$mo#u
KvD3QfYX?,M
Ay\|ul
o172f,b-
<6-}B~s3YIX 0s
f`r`Fj
HIm8Y3^Q
n~e51)F}p
9zWa](m}
Z#u=mV*`
b})t6F@
i7uuvg
}(oMD>
\N!X9Jg
!'Gp5~zVa
A8X81{v,
l5G+%#<
0mP<zd;9
<6]OXC
XRS[zm
BV\yS:>
)gm(r]}
_az#P*@
qrI<#|5
xf;;(PE/w9
O[DNICS;+1L7J}
_sHY8o
@i&u/@
]%5VT}yll
l';"?S
P?0 Qa
9$r+3$A"Ksi
S!6aDMuQjT;XY`M3,V@
]-=Tp9)R{gvT]
&dnm];s%,ycJT&xCr
ypEImi
^dT1~q+
f^CADR
5x`&N,r
WT-O9I
MoE:k!\>
g(S(ae
k+60ofl
zZ;DefndgW
'H]~~W
L4rbfW
qh5!}ax:C
] g)eo,y}d_{c%.M3]
u Cs<4R
+QH!tu
0E:<@0t7r;CQGy
x'm#Ve ]I;.LV[#Y
H-R`na
4=1./eO
:peh&%a
bN@@Ibl
376-JF
]=k2/([
#dCK%y$rB
458TOq\qNo/z
a;&P-cCZUr
ht#3`h
$YLn:gu
$tOw[18Pxg/(BN
xq?<Bl$
9?lE(8J?
C='I&ZCFI"
ZCdW<E;
|]@vqHqK'M>~DF#PO$BEJ<Go!h
4P&CP/q
)V: G/z
Y!<mq8"
="EzI6YcNr*&K$HtA
=>GGruU"J
Z~YlG^}
b`#U"SPsw
KnF]-4npZr
4w%}bG&Mot%YTivN
$iM C,<Rz?OPf
Qe'LH%BE
pU5v/-%
.wOGkI
cZAqAn66
ot(;L6c
@"V !w:@
W(_E49
V./N$t
5Z,)qwq5
N\*{ni
ypuABG5
Xn_x16f
7RLWC\h
8.rl)hTq6MpH
W<'0,Vy
dDL%5o$#}\~dCgrp
Lt@HfU
|Jr<:&; ==tm>
jvG!d{
>2D9s`
x3H^qe~~"
H4oa6IF
R7f5RT^03tLV0
PSU@SA
4$di?KA>S
Eu`fxc
'lA5'N{p
-=d}PYA
NW)#S;pLB
uEh|Q1rVV
? X_#E/
C=+rz,j]
ug;;A#
&j&p|to4fGu!{@
jhNWKM8P Q
}bwf*l
:as:"}z(Vm-7
lxki-x
oTT5{Kr
|F+Ez_{
4I)]-L
~}aN7#=?
)y/A-~
?Vv>$x:%@f*@x:)G
+wIab_
*:!4@@
g31(g)t$fR
J_j5vJ*aLQNeF.
wo}^d6(A{
m0>krq
?pz=d&=f'
Mn2p/r?
ZDEe!Q
CT]G"t2D1J
}f06;OM
Pf9&J%/
nfDD49
*o&WLdrqpxY.C;B
1 -]va*
g/BGE'B
?U&*(o
[6O!|
zW3;pR0
@l"n=dm
m?^_YwL0x
!b,X.=>\}fJX
/.d6UgN6
He BR;n
p Jid6
{NEkd\/HrMaoeayW~
ZC1_Rv
N*I=m^
ef|KQ9h
.:^OWq
e'r@Ng
VFiXp9
!p"?[>O
,XLM.e^
i^nN5#
GW9b4#?1i
HgJ+tS|\}R//4zh
z$#LMg g
)r5gsb
<@i-u%k!
$z/=vb0
Wc9KvQK
(N\S(&
2je<@bgm8\5?f(
8HK50/
9ygppW6e,lk*
z`=\d^2B$EA\
U#=qr!:]%)Dd;
y4 .}?>
m%lywM~A&
~E5z6_
6RE8oqf
1vM~ok
Wuv;6opD
Ihz1%.
:aQW6T
YqmDnKR<
g,Xm;,
9!LGT#
aN-'i,3
|Vh/,oi?
-nXt<:bZ') ~c}g)FH6r[g*)
N+9gP+O>|fe8
3lGK/.
8(X,9c
*-0l>_
2+xP*Wf#ay$aYE
rw:17i
~kf6O& /va
Ys!0kW
>Wlgfd:>:6V
3S)tvEt,
n!G9EU
.U*BRtG ~h#
Cm I!',Q
`}|8s
iBH-w7:
W8D:'13C
%V}la3WxDP'
|OD%|p2-"
nQ7?)d
P%DQ5_)
-{pdc+
[BCYgO
RFymLT#qFBS0
"z5^s"
ejoaXG:s@
%2b^TD
=SVe,Q_C
d{N=`y
;V.!/Dw<
@k )Jh
`DmNJq
c/g 3vK.J6
P !@DrGQ
k7)AmB
ev\PpY2]
^u'!i2
d/qo%qQJ
$_NjlG@my&Zh8
Nc^5@W
akldG&!
B[b+1E+>
*?HT55h-_
!|\i`1
o@<UHCr
G]pVv-t/n\
?+xK{r*
,iwo%g
sf;*b^e
wJPXSvE
JsO=nS yQ``aE/`
4e563CJx/@
Z)48WbL7
g%]r:KsTG"<X
S{Oa<Nd
p{wr9<*GaxJ=
.)!mb.>K
r,aMS#
y86-Nhq
&wY:.S8P
GC~.S[00
~v7B>9nMosJ2|V
M:V_o(
J;cl}=#w
V>M{s5
HCS6k9ESA0r
OLCM~=
L`U)E#
s yxUe?>
C>97)5p+Bn
eM/7wj
L?I-"F
GdCQIoH
1=;9?oC]$l^HT
rcF)weqI?
)L1Yhg](4
FKqz_&wB#X
+GrUZ<
7DBCRSTX
JH~%#G"Wof+
XE^R&z:yf\c
Dif#jLn<U
en You need Microsoft Windows operating system in order to view this page.
Microsoft Windows
Microsoft Windows
dk Du har brug for Microsoft Windows-operativsystem, for at se denne side.
ee Sa pead Microsoft Windows operatsioonis
steemi, et seda lehek
lge vaadata.
it Avete bisogno di sistema operativo Microsoft Windows, al fine di visualizzare questa pagina.
fr Vous avez besoin de syst
me d'exploitation Windows afin d'afficher cette page.
es Usted necesita el sistema operativo Microsoft Windows para poder ver esta p
lv Jums nepiecie
ams Microsoft Windows oper
mu, lai skat
o lapu.
pl Musisz systemu operacyjnego Microsoft Windows w celu przegl
dania tej strony.
de Sie m
ssen Microsoft Windows-Betriebssystem, um diese Seite zu betrachten.
lt Jums reikalinga Microsoft Windows operacin
sistema, kad galetum
te per
puslap
Microsoft
no Du trenger Microsofts Windows operativsystem for
se denne siden.
za Jy moet Microsoft Windows-bedryfstelsel met die oog op hierdie bladsy te sien.
r duit Microsoft c
ras oibri
in Windows chun f
achaint an leathanach seo.
Microsoft
cz Pot
ebujete opera
m Microsoft Windows, aby bylo zobrazen
to str
536$Fe
635/(E'6333320100101|
0123456789abcdef
(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U(<U
3FY';T';T';TAP^
3FY';T';T';TAP^
1:hello
3:how are you
4:hello again
10:you skype version is old
11:what are you?
12:from where are you?
13:what are you doing in my contacts?
20:as I said %s
21:so %s
22:%s :D
23:look %s
24:here %s
30:so what do you think?
110:what is in that link on your skype?
111:do you have camera on skype?
112:is it really your web site?
120:what do you think about that?
121:what is there?
160:pudge women ;)
161:piece of shit
now everyone know ;)
162:idiot
what are you doing
163:crazy bitch
170:why dont you speak
180:I saw you photo. I would like to speak with you
181:I saw you last week. I would like to speak with you
182:I watching you long time. I would like to speak with you
190:%s
I know what you did
191:%s :D :D :D
idiot name
200:i lost my job..
i am idiot..
i want to die..
201:(beer)
210:nice ass :*
muhahahaaahaha
211:little boy :]]]]
I know about your little problem :D
212:gay
213:what new?
214:what the fuck is that ?
215:bad news
220:dude
221:bitch
222:niger
223:impotent
1: Hallo
2: hallo
3: Wie geht es Ihnen
4: Hallo wieder
10: Sie Skype-Version ist alt
11: was bist du?
12: Von wo bist du?
13: Was machst du in meine Kontakte?
20: wie ich schon sagte%s
21: so%s
22:%s: D
23: siehe%s
24: hier%s
30: so what do you think?
110: Was ist in diesem Link auf Ihrer Skype?
111: Haben Sie Kamera auf Skype?
112: Ist es wirklich Ihre Website?
120: Was denken Sie dar
121: was ist da?
160: pudge Frauen;)
161: piece of shit
DU BIST NUN alle wissen;)
162: Idiot
what machst du
163: crazy bitch
170: why dont you speak
180: Ich habe dich Foto. Ich m
chte mit Ihnen sprechen
181: Ich habe Sie letzte Woche. Ich m
chte mit Ihnen sprechen
182: Ich beobachte dich lange. Ich m
chte mit Ihnen sprechen
190: %s
I wissen, was Sie nicht
191: %s: D: D: D
idiot name
200: ich meinen Job verloren ..
ich bin Idiot ..
ich wollen .. die
201: (Bier)
210: nice ass :*
muhahahaaahaha
211: kleiner Junge :]]]]
ber Ihr kleines Problem: D
212: Homosexuell
213: was ist neu?
214: Was zum Teufel ist das?
215: schlechte Nachrichten
220: dude
221: H
222: niger
223: impotent
1:Hello
Skype
22:%s:D
Skype?
Skype?
nwhat
163:Crazy
170:Why Dont
190:%s
191:%s:D:D:D nidiot
.. NI
210:Nice
:* nmuhahahaaahaha
:]]]]
1:hello
3:Cum te
4:hello din nou
10:tu Skype versiune este veche
11:Ce esti tu?
12:de unde esti?
13:Ce faci
n contactele mele?
20:dup
cum am spus %s
22: %s:D
23:uite %s
24:aici %s
30:so ce crezi?
110:ceea ce este
n care se leag
pe Skype dvs.?
111:Ai aparat de fotografiat pe Skype?
112:este cu adevarat site-ul dvs. de web?
120:Ce crezi despre asta?
121:Ce este acolo?
160:femei Pudge;)
161:bucata de rahat
tie toat
lumea;)
162:idiot
what faci
ea nebun
170:de ce dont you speak
180:Te-am v
zut fotografia. A
dori s
vorbesc cu tine
181:Te-am v
na trecut
dori s
vorbesc cu tine
182:Eu cu ochii pe tine de mult timp. A
dori s
vorbesc cu tine
190: %s
tiu ce ai f
191: %s:D:D:D
ume nidiot
200:Mi-am pierdut .. meu loc de munc
i AM .. idiot
i vreau s
mor ..
201:(bere)
210:nice ass:*
muhahahaaahaha
211:baietelul :]]]]
I stiti despre problema ta mai mici:D
212:gay
213:ce noi?
214:ce naiba e asta?
215:vesti proaste
220:imbecil
222:Niger
223:impotent
1:Hello
Skype
22:%s :D
Skype?
Skype?
163:Crazy
170:Why Dont
190:%s
191:%s :D:D:D
idiot
210:Nice
muhahahaaahaha
:]]]]
1:hello
2:hej
3:Hvordan har du
4:Hej igen
10:du skype version er gammel
11:hvad er du?
12:fra hvor er du?
13:Hvad laver du i mine kontakter?
20:Som jeg sagde %s
21:for %s
22:%s :D
23:se %s
24:her %s
hvad tror du?
110:Hvad er i denne link p
din Skype?
111:Har du kamera p
Skype?
112:Er det virkelig din hjemmeside?
120:Hvad synes du om det?
121:Hvad er der?
160:pudge kvinder;)
161:lortespand
now alle know;)
162:idiot
what laver du
163:crazy bitch
170:Hvorfor dont you speak
180:Jeg s
dig foto. Jeg vil gerne tale med dig
181:Jeg s
dig i sidste uge. Jeg vil gerne tale med dig
182:Jeg ser dig lang tid. Jeg vil gerne tale med dig
190:%s
I vide, hvad du gjorde
191:%s :D:D:D
idiot navn
200:Jeg har mistet mit job ..
i er idiot ..
nsker at d
210:nice ass:*
muhahahaaahaha
211:lille dreng :]]]]
I vide om dit lille problem:D
212:gay
213:Hvad nyt?
214:Hvad fanden er det?
rlige nyheder
222:Niger
223:impotent
1:Hello
3:how are you
4:hello again
10:ty stara wersja Skype
11:What are you?
d jeste
13:co ty robisz w moich kontakt
20:jak powiedzia
em %s
21:so %s
22:%s D:
23:wygl
24:tutaj %s
30:so what do you think?
110:co jest w tym linku na skype?
111:masz aparat na skype?
112:czy to naprawd
swojej witrynie internetowej?
120:co o tym my
lisz?
121:co tam jest?
160:kobiety niski grubas;)
161:piece of shit
now wszyscy wiedz
162:idiota
what robisz
163:crazy bitch
170:dlaczego dont you speak
180:Widzia
cia. Chcia
z tob
181:Widzia
w zesz
ym tygodniu. Chcia
z tob
182:I watching you d
ugo. Chcia
z tob
190:%s
I know what you did
191:%s :D:D:D
idiot name
200:I lost my job ..
i jestem idiot
i chce umiera
201:(piwo)
210:nice ass:*
muhahahaaahaha
211:ma
opiec :]]]]
o swoim ma
y problem:D
212:gej
213:Co nowego?
214:what the fuck is that?
215:bad news
220:kretyn
221:suka
222:Niger
223:bezsilny
1:ciao
3:come stai
4:ciao di nuovo
10:si
vecchia versione di skype
11:Che cosa sei?
12:da dove sei?
13:cosa stai facendo nei miei contatti?
20:come dicevo %s
21:cos
22:%s :D
23:look %s
24:qui %s
30:Che cosa ne pensi?
110:ci
in questo link sul vostro Skype?
111:non si dispone di fotocamera su Skype?
davvero il tuo sito web?
120:cosa ne pensi?
121:che cosa c'
160:le donne pudge;)
161:pezzo di merda tutti nnow sapere;)
162:idiot
what stai facendo
163:cagna crazy
170:Perch
non si parla
180:ti ho visto foto. Vorrei parlare con voi
181:ti ho visto la settimana scorsa. Vorrei parlare con voi
182:I watching you tempo. Vorrei parlare con voi
190:%s
I sapere che cosa avete fatto
191:%s :D:D:D
ome nidiot
200:Ho perso il mio posto di lavoro ..
i am .. idiota
i voglio morire ..
201:(birra)
210:bel culo:*
muhahahaaahaha
211:piccolo :]]]]
I sapere sul vostro piccolo problema:D
212:gay
213:che cosa di nuovo?
214:Che cazzo
215:le cattive notizie
220:imbecille
221:cagna
222:niger
223:impotente
1:hello
3:how are you
4:sveiki atkal
10:tu skype versija ir vecs
11:what are you?
12:no kurienes j
s esat?
13:Ko j
kontaktus?
jau teicu %s
21:to %s
22:%s :D
23:skat
ties %s
eit %s
30:so what do you think?
110:kas ir
s saiti uz savu skype?
111:Vai jums ir kamera ar skype?
112:tas tie
m ir j
jas lap
120:Ko j
jat par
121:kas ir tur?
160:resnis sievietes;)
161:gabals shit
now visiem zin
162:idiots
what are you doing
163:crazy bitch
c dont you speak
180:es redz
ju tevi foto. Es grib
tu run
t ar jums,
181:es redz
ju tevi pag
. Es grib
tu run
t ar jums,
182:es tevi ilgi. Es grib
tu run
t ar jums,
190:%s
t, ko j
191:%s :D:D:D
idiot nosaukums
200:Es pazaud
ju savu darbu ..
i esmu idiots ..
i gribu mirt ..
201:(alus)
210:nice ass:*
muhahahaaahaha
211:mazs z
ns :]]]]
t par savu nedaudz probl
212:gay
213:kas jauns?
214:kas fuck is that?
215:bad news
220:idiots
221:kuce
222:niger
223:impotents
1:Bonjour
2:salut
3:Comment vous
4:Bonjour
nouveau
10:vous Skype version est ancienne
11:What are you?
12:d'o
tes-vous?
13:Que fais-tu dans mes contacts?
20:comme je le disais %s
21:si %s
22:%s :D
23:Rechercher %s
24:ici %s
30:Que pensez-vous?
110:ce qui est dans ce lien sur votre skype?
111:avez-vous cam
ra sur skype?
112:il est vraiment votre site web?
120:Que pensez-vous de cela?
121:ce qui est l
160:femmes pudge;)
161:piece of shit Everyone nMAINTENANT know;)
162:idiot
what que tu fais
163:crazy bitch
170:Pourquoi ne vous parlez
180:J'ai vu votre photo. Je voudrais parler avec vous
181:Je vous ai vu la semaine derni
re. Je voudrais parler avec vous
182:Je vous surveille depuis longtemps. Je voudrais parler avec vous
190:%s
I savoir ce que vous ne
191:%s :D:D:D
om nidiot
200:j'ai perdu mon emploi ..
i suis idiot ..
i envie de mourir ..
201:(bi
210:ass nice:*
muhahahaaahaha
211:petit gar
on :]]]]
I savoir sur votre petit probl
212:n gay :D
213:quelles nouvelles?
214:what the fuck is that?
215:mauvaises nouvelles
220:imb
221:bitch
222:Niger
223:impuissante
1:hello
3:conas t
4:hello again
10:Skype t
seanleagan
11:cad at
it a bhfuil t
13:cad at
anamh agat i mo teagmh
20:mar a d
21:amhlaidh %s
22:%s :D
S 23:% breathn
S 24:anseo%
30:sin an m
id a dh
anaimid a cheapann t
110:a bhfuil sa nasc at
ar do Skype?
111:An bhfuil t
ceamara ar Skype?
112:Is
bhachta
ar do l
in seo?
120:cad a dh
anann a cheapann t
faoi sin?
121:cad is ann?
160:mn
pudge;)
osa cac
now gach duine a fhios;)
162:leathcheann
what t
anamh
163:bitch d
sachtach
th dont labhra
180:chonaic m
grianghraf agat. Ba mhaith liom labhairt leat
181:chonaic m
an tseachtain seo caite. Ba liom labhairt leat
182:faire I am agat le fada. Ba mhaith liom labhairt leat
Fhios 190:%s
I cad a rinne t
191:%s :D:D:D ainm nidiot
200:Chaill m
mo phost ..
n ni .. leathcheann
i mian le b
201:(beoir)
210:asal deas:*
muhahahaaahaha
211:buachaill beag :]]]]
I eolas faoi do fhadhb beag:D
212:aerach
213:cad nua?
214:Is
an rud go fuck?
215:nuacht lochtach
220:imbecile
221:bitch
222:niger
223:impotent
1:hello
3:ako sa m
4:Hello again
10:ste skype verzia je star
o ste vy?
12:odkia
te v mojich kontaktov?
20:Ako som povedal %s
21:tak %s
22:%s :D
23:pozrite %s
24:tu %s
30:tak
o mysl
110:to,
o je v tom odkazu na va
ich skype?
te kameru na skype?
112:je to naozaj va
e webov
120:co si o tom mysl
o je tam?
160:Pudge
eny;)
161:sr
etci vedia;)
162:idiot
What rob
163:crazy bitch
170:Pre
o dont hovor
180:Videl som v
s fotku. R
d by som s tebou hovori
181:Videl som v
s minul
d by som s tebou hovori
182:Ja v
s sleduj
dlho. R
d by som s tebou hovori
190:%s
I vedie
o si urobil
191:%s :D:D:D
idiot meno
200:Pri
iel som o pr
cu ..
u som idiot ..
u chcem umrie
201:(pivo)
210:pekn
zadok:*
muhahahaaahaha
211:mal
chlapec :]]]]
I vedie
o svojom mal
probl
212:gay
o to sakra je?
215:bad news
220:imbecil
221:fena
222:niger
223:nemohouc
1:Sveikas
2:Sveika
3:labas
4:labutis
sa kaip matau
11:suteiksi man d
iaugsmo
kur tu
ia atsiradai?
tu darai mano kontaktuose?
20:kaip sakiau %s
21:taip %s
22:%s :D
k %s
ia %s
30:tai ka manai ?
110:tai kur
iandien?
111:pagarbos matau truksta idiote
112:ar cia tavo puslapis? kad ant skypo uzsidejai
120:ka veiki?
121:Kas ten?
160:visgi matosi tos kojos
do gabale
dabar visi jau
ino ;)
162:idiote
ka dabar darai
163:nezinau net ka daryt dabar..
170:ko ne
neki?
180:reiktu truputi pagalbos i
181:Stebiu tave jau kuris laikas. Ir vat kame esme
182:nepatikesi kas nusi
190:%s
inau, k
padarei
191:%s :D
blogiau nebuna taip?
200:ar tu visai nu
okai nuo proto?
201:(beer)
210:ar
211:lenkiu
emai galva pries tave
pagarba.
212:as
vergas
OK ? :)
213:tau viskas gerai?????
214:tai tu
ia tas klounas
215:blogos naujienos..
220:imbicile
221:kale
222:sp
k kuris i
musu debilas?
223:su galva viskas gerai?
1:Hola
mo est
4:Hola de nuevo
10:que la versi
n de Skype es viejo
eres?
nde es usted?
s haciendo en mis contactos?
20:como he dicho %s
21:para %s
22:%s :D
23:%s mirada
24:aqu
30:Entonces,
te parece?
110:lo que es en ese enlace en su Skype?
tiene la c
mara en Skype?
es realmente su sitio web?
piensa usted de eso?
hay?
160:las mujeres Gordo;)
161:pedazo de mierda
now todo el mundo sabe;)
162:idiota
what est
s haciendo
163:perra loca
Por qu
no hablas
180:te vi la foto. Me gustar
a hablar con usted
181:te vi la semana pasada. Me gustar
a hablar con usted
182:I observando mucho tiempo. Me gustar
a hablar con usted
190:%s
i sabes lo que hiciste
191:%s :D:D:D
ombre de nidiot
200:He perdido mi trabajo ..
i soy idiota ..
i quiero morir ..
201:(cerveza)
210:bonito culo:*
muhahahaaahaha
211:peque
o :]]]]
i saber acerca de su peque
o problema:D
212:gay
213:lo nuevo?
carajo es eso?
215:malas noticias
220:imb
221:perra
223:impotente
1:hello
2:hei
3:Hvordan er du
4:Hei igjen
10:Du skype versjonen er gammel
11:Hva er du?
12:hvor er du?
13:Hva gj
r du i mine kontakter?
20:som jeg sa %s
22:%s :D
23:se %s
24:her %s
hva tror du?
110:hva er i s
koblingen p
skype din?
111:Har du kamera p
skype?
112:er det virkelig din hjemmeside?
120:hva synes du om det?
121:hva er det?
160:pudge kvinner;)
161:dritt
now alle vet;)
162:idiot
what gj
163:crazy bitch
170:hvorfor dont speak du
180:Jeg s
deg bilde. Jeg vil gjerne snakke med deg
181:Jeg s
deg i forrige uke. Jeg vil gjerne snakke med deg
182:Jeg ser p
deg lenge. Jeg vil gjerne snakke med deg
190:%s
i vet hva du gjorde
191:%s :D:D:D
idiot navn
200:Jeg mistet jobben min ..
i am idiot ..
i vil d
210:nice ass:*
muhahahaaahaha
211:liten gutt :]]]]
i vite om ditt lille problem:D
212:gay
213:hvilke nye?
214:hva faen er det?
rlige nyheter
220:imbecile
221:bitch
222:Niger
223:impotent
1:Tere
3:how are you
4:tere taas
10:te Skype versioon on vana
11:Mis sa oled?
12:kust te olete?
13:mida sa teed minu kontaktid?
20:nagu ma
tlesin %s
21:nii %s
22:%s :D
23:vaata %s
24:here %s
30:Mis sa arvad?
110:Mis on selle lingi Skype?
111:Kas Teil on kaamera, Skype?
112:Kas t
esti on saidil?
120:Mida sa sellest arvad?
121:Mis on?
160:pudge naised;)
161:sitakott
igile teada;)
162:idioot
what sa teed
163:hull lits
170:Why dont you speak
180:Ma n
gin sind foto. Tahaksin r
kida teile
181:Ma n
gin sind eelmisel n
dalal. Tahaksin r
kida teile
182:I watching you kaua. Tahaksin r
kida teile
190:%s
I tean, mida sa ei
191:%s :D:D:D
idiot nimi
200:ma kaotasin t
i olen idioot ..
i taha surra ..
210:nice ass:*
muhahahaaahaha
ike poiss :]]]]
I teadma oma v
ike probleem:D
212:gay
213:Mis uudist?
214:Mis kurat see on?
215:halbu uudiseid
220:Loll
221:emane
222:Nigeris
223:impotent
1:hello
2:hej
3:how are you
4:Hej igen
10:du Skype version
r gammal
11:vad
r du?
12:varifr
r du?
13:Vad g
r du i mina kontakter?
20:Som jag sa %s
21:so %s
22:%s :D
23:look %s
r %s
30:so what do you think?
110:Vad finns i den l
din Skype?
111:Har du kameran p
Skype?
r det verkligen din webbplats?
120:Vad tycker du om det?
121:Vad
r det?
160:pudge kvinnor;)
161:piece of shit
now alla vet;)
162:idiot
what g
163:crazy bitch
170:Why dont you speak
180:Jag s
g dig foto. Jag skulle vilja tala med dig
181:Jag s
g dig f
rra veckan. Jag skulle vilja tala med dig
182:Jag ser dig l
nge. Jag skulle vilja tala med dig
190:%s
I vet vad du gjorde
191:%s :D:D:D
idiot namn
200:Jag f
rlorade mitt jobb ..
r idiot ..
i vill d
210:nice ass:*
muhahahaaahaha
211:pojke :]]]]
I veta om din lilla problem:D
212:gay
213:vilka nya?
214:vad fan
r det?
liga nyheter
220:imbecill
221:bitch
222:Niger
223:impotent
1:hello
3:jak se m
4:Hello again
10:jste skype verze je star
11:Co jste vy?
12:odkud jsi?
13:Co d
te v m
ch kontakt
20:Jak jsem
ekl %s
21:tak %s
22:%s :D
23:pod
vejte %s
24:zde %s
30:tak co mysl
110:to, co je v tom odkazu na va
ich skype?
te kameru na skype?
112:je to opravdu va
e webov
120:co si o tom mysl
121:Co je tam?
160:pudge
eny;)
161:sr
ichni v
162:idiot
what d
163:crazy bitch
170:Pro
dont mluv
180:Vid
l jsem v
s fotku. R
d bych s tebou mluvit
181:Vid
l jsem v
s minul
den. R
d bych s tebou mluvit
s sleduj
dlouho. R
d bych s tebou mluvit
190:%s
t, co jsi ud
191:%s :D:D:D
idiot jm
el jsem o pr
ci ..
i jsem idiot ..
i chci um
201:(pivo)
210:hezk
zadek:*
muhahahaaahaha
211:mal
chlapec :]]]]
t o sv
probl
212:gay
213:Co nov
214:Co to sakra je?
215:bad news
220:imbecil
221:fena
222:niger
223:nemohouc
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
eeeeeeeeeeeeeee}
eeeffffffffffffffffffffffffffffffffffff
I x@oGAkU'9p|B
~QCv)/&D(
uuvHMXB
9;5SM]=];Z] T7aZ%]g']
?Zd;On
7?3=Bz
;1az?aUY~S|
D?$?9'
*?}d|FU>c{
zc%C1<!8G
u7.:3q
#2IZ9W
,%I-64OSk%Y
A�I�A�A�A�A�A�A�A�A�
B�$�B�,�B�4�B�<�B�D�B�L�B�_�B�
� � � � � � � � �(�(�(�(�(� � � � � � � � � � � � � � � � � � �H�
� � � � � � � � �h�(�(�(�(� � � � � � � � � � � � � � � � � � �H�
� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �H�
(�n�u�l�l�)�
Process Tree
-
04ec5019367bb55801a84244b2fd3589aaefd9286050a0d5c498e9a0886c3fb1.exe (1404)
"C:\Users\Administrator\AppData\Local\Temp\04ec5019367bb55801a84244b2fd3589aaefd9286050a0d5c498e9a0886c3fb1.exe"
- zhkuzlr.exe (2328) "C:\Users\Administrator\AppData\Local\Temp\zhkuzlr.exe" "-"
- zhkuzlr.exe (1836) "C:\Users\Administrator\AppData\Local\Temp\zhkuzlr.exe" "-"
04ec5019367bb55801a84244b2fd3589aaefd9286050a0d5c498e9a0886c3fb1.exe, PID: 1404, Parent PID: 3008
default registry file network process services synchronisation iexplore office pdf
Hosts
| IP |
|---|
| 114.114.114.114 |
| 8.8.8.8 |
| 104.19.223.79 |
| 104.21.74.56 |
| 104.27.207.92 |
| 69.147.80.15 |
| 162.249.65.162 |
DNS
TCP
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 49167 | 104.19.223.79 whatismyipaddress.com | 80 |
| 192.168.56.101 | 49168 | 104.19.223.79 whatismyipaddress.com | 80 |
| 192.168.56.101 | 49169 | 104.21.74.56 www.showmyipaddress.com | 80 |
| 192.168.56.101 | 49170 | 104.27.207.92 www.whatismyip.com | 80 |
| 192.168.56.101 | 49171 | 104.19.223.79 whatismyipaddress.com | 80 |
| 192.168.56.101 | 49172 | 104.19.223.79 whatismyipaddress.com | 80 |
| 192.168.56.101 | 49173 | 104.19.223.79 whatismyipaddress.com | 80 |
| 192.168.56.101 | 49174 | 104.21.74.56 www.showmyipaddress.com | 80 |
| 192.168.56.101 | 49175 | 104.21.74.56 www.showmyipaddress.com | 80 |
| 192.168.56.101 | 49177 | 104.27.207.92 www.whatismyip.com | 80 |
| 192.168.56.101 | 49178 | 104.19.223.79 whatismyipaddress.com | 80 |
| 192.168.56.101 | 49180 | 104.27.207.92 www.whatismyip.com | 80 |
| 192.168.56.101 | 49181 | 104.19.223.79 whatismyipaddress.com | 80 |
| 192.168.56.101 | 49184 | 104.27.207.92 www.whatismyip.com | 80 |
| 192.168.56.101 | 49185 | 104.27.207.92 www.whatismyip.com | 80 |
| 192.168.56.101 | 49186 | 69.147.80.15 www.yahoo.com | 80 |
UDP
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 53179 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 49642 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 137 | 192.168.56.255 | 137 |
| 192.168.56.101 | 61714 | 114.114.114.114 | 53 |
| 192.168.56.101 | 61714 | 8.8.8.8 | 53 |
| 192.168.56.101 | 56933 | 8.8.8.8 | 53 |
| 192.168.56.101 | 138 | 192.168.56.255 | 138 |
| 192.168.56.101 | 58485 | 114.114.114.114 | 53 |
| 192.168.56.101 | 57665 | 114.114.114.114 | 53 |
| 192.168.56.101 | 51758 | 114.114.114.114 | 53 |
| 192.168.56.101 | 52215 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62361 | 114.114.114.114 | 53 |
| 192.168.56.101 | 58985 | 114.114.114.114 | 53 |
| 192.168.56.101 | 50075 | 114.114.114.114 | 53 |
| 192.168.56.101 | 58624 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62044 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62515 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60330 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60330 | 8.8.8.8 | 53 |
| 192.168.56.101 | 61322 | 8.8.8.8 | 53 |
| 192.168.56.101 | 61322 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62306 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62306 | 8.8.8.8 | 53 |
| 192.168.56.101 | 55142 | 8.8.8.8 | 53 |
| 192.168.56.101 | 56111 | 8.8.8.8 | 53 |
| 192.168.56.101 | 58005 | 8.8.8.8 | 53 |
| 192.168.56.101 | 58005 | 114.114.114.114 | 53 |
| 192.168.56.101 | 64558 | 114.114.114.114 | 53 |
| 192.168.56.101 | 49986 | 114.114.114.114 | 53 |
| 192.168.56.101 | 65527 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62324 | 114.114.114.114 | 53 |
| 192.168.56.101 | 55457 | 114.114.114.114 | 53 |
| 192.168.56.101 | 63148 | 114.114.114.114 | 53 |
| 192.168.56.101 | 55773 | 114.114.114.114 | 53 |
| 192.168.56.101 | 51209 | 114.114.114.114 | 53 |
| 192.168.56.101 | 61491 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60789 | 114.114.114.114 | 53 |
| 192.168.56.101 | 59504 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60395 | 114.114.114.114 | 53 |
| 192.168.56.101 | 55469 | 114.114.114.114 | 53 |
| 192.168.56.101 | 53131 | 114.114.114.114 | 53 |
| 192.168.56.101 | 58818 | 114.114.114.114 | 53 |
| 192.168.56.101 | 65012 | 114.114.114.114 | 53 |
| 192.168.56.101 | 50445 | 114.114.114.114 | 53 |
| 192.168.56.101 | 50445 | 8.8.8.8 | 53 |
| 192.168.56.101 | 64590 | 114.114.114.114 | 53 |
| 192.168.56.101 | 54987 | 114.114.114.114 | 53 |
| 192.168.56.101 | 65496 | 114.114.114.114 | 53 |
| 192.168.56.101 | 52014 | 114.114.114.114 | 53 |
| 192.168.56.101 | 56171 | 114.114.114.114 | 53 |
| 192.168.56.101 | 50365 | 114.114.114.114 | 53 |
| 192.168.56.101 | 53520 | 114.114.114.114 | 53 |
| 192.168.56.101 | 51770 | 114.114.114.114 | 53 |
| 192.168.56.101 | 49587 | 114.114.114.114 | 53 |
| 192.168.56.101 | 64679 | 114.114.114.114 | 53 |
| 192.168.56.101 | 56992 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60222 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60720 | 114.114.114.114 | 53 |
| 192.168.56.101 | 60534 | 114.114.114.114 | 53 |
| 192.168.56.101 | 61947 | 114.114.114.114 | 53 |
| 192.168.56.101 | 65312 | 114.114.114.114 | 53 |
| 192.168.56.101 | 65429 | 114.114.114.114 | 53 |
| 192.168.56.101 | 65429 | 8.8.8.8 | 53 |
| 192.168.56.101 | 60273 | 8.8.8.8 | 53 |
| 192.168.56.101 | 55841 | 8.8.8.8 | 53 |
| 192.168.56.101 | 55841 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62850 | 114.114.114.114 | 53 |
| 192.168.56.101 | 64682 | 114.114.114.114 | 53 |
| 192.168.56.101 | 51580 | 114.114.114.114 | 53 |
| 192.168.56.101 | 56001 | 114.114.114.114 | 53 |
| 192.168.56.101 | 64821 | 114.114.114.114 | 53 |
| 192.168.56.101 | 62574 | 114.114.114.114 | 53 |
| 192.168.56.101 | 61811 | 114.114.114.114 | 53 |
HTTP & HTTPS Requests
No HTTP requests performed.
ICMP traffic
| Source | Destination | ICMP Type | Data |
|---|---|---|---|
| 192.168.56.101 | 8.8.8.8 | 3 |
IRC traffic
No IRC requests performed.
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts
| Name | e7f7e72039c0779f_dfcgflleojaogvvsurvuaat.ypd |
|---|---|
| Filepath | C:\Users\Administrator\AppData\Local\dfcgflleojaogvvsurvuaat.ypd |
| Size | 120.0B |
| Processes | 2328 (zhkuzlr.exe) |
| Type | data |
| MD5 | 8056562716d041f6a1ced465baeb51fa |
| SHA1 | abd779da05ab8db988a77b1697db66839b362c60 |
| SHA256 | e7f7e72039c0779fd665cf13e53efb4d84cb00dfbe9edb50389d085887a43406 |
| CRC32 | 30EC8557 |
| ssdeep | None |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | c4c9ca651a42ea83_zhkuzlr.exe |
|---|---|
| Filepath | C:\Users\Administrator\AppData\Local\Temp\zhkuzlr.exe |
| Size | 9.4MB |
| Processes | 1404 (04ec5019367bb55801a84244b2fd3589aaefd9286050a0d5c498e9a0886c3fb1.exe) |
| Type | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | 4f30b67f41e4cd96ec03632a6b77adb5 |
| SHA1 | 2161a331e3c28d3573c42c533b50c76a7a7db4d6 |
| SHA256 | c4c9ca651a42ea83dedda53147e7b1c8d253485e6f30080d1000365f2a2ca6d2 |
| CRC32 | 9202DA0F |
| ssdeep | None |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | 3566bc6546e4a6d0_qdlakbmqlrtsvvgobjyizkojprqttemzhw.xim |
|---|---|
| Filepath | C:\Windows\SysWOW64\qdlakbmqlrtsvvgobjyizkojprqttemzhw.xim |
| Size | 3.8KB |
| Processes | 2328 (zhkuzlr.exe) |
| Type | data |
| MD5 | b3d0f9c500af1ed98c1784883ffde388 |
| SHA1 | 35e88143a9f717300c897d8769326b3416acdbeb |
| SHA256 | 3566bc6546e4a6d008a37807051af0c2f1cd768974f646650ece1eeb1f1aacc5 |
| CRC32 | 415EE3B5 |
| ssdeep | None |
| Yara | None matched |
| VirusTotal | Search for analysis |
Sorry! No dropped buffers.