1.0
低危
DACN
0.12
FACILE
1.00
IMCLNet
0.46
MFGraph
0.00
反病毒引擎
| 查杀引擎 | 查杀结果 | 查杀时间 | 查杀版本 |
|---|---|---|---|
| Alibaba | Trojan:Win32/Aenjaris.479 | 20190527 | 0.3.0.5 |
| Avast | Win32:DropperX-gen [Drp] | 20240216 | 23.9.8494.0 |
| Baidu | None | 20190318 | 1.0.0.2 |
| CrowdStrike | win/malicious_confidence_100% (W) | 20231026 | 1.0 |
| Kingsoft | malware.kb.c.1000 | 20230906 | None |
| McAfee | GenericRXBD-AO!DC49D2984F88 | 20240216 | 6.0.6.653 |
| Tencent | Trojan.Win32.Blocker.ya | 20240216 | 1.0.0.1 |
静态指标
此可执行文件具有 PDB 路径
(1 个事件)
| pdb_path | C:\Documents and Settings\hack\Desktop\Virus Projeto\Release\Teste.pdb |
动态指标
网络通信
与未执行 DNS 查询的主机进行通信
(1 个事件)
| host | 114.114.114.114 | |||
文件已被 VirusTotal 上 62 个反病毒引擎识别为恶意
(50 out of 62 个事件)
| ALYac | Trojan.Agent.DFAY |
| APEX | Malicious |
| AVG | Win32:DropperX-gen [Drp] |
| AhnLab-V3 | Trojan/Win32.Agent.R238376 |
| Alibaba | Trojan:Win32/Aenjaris.479 |
| Antiy-AVL | Trojan[Dropper]/Win32.Dapato |
| Arcabit | Trojan.Agent.DFAY |
| Avast | Win32:DropperX-gen [Drp] |
| Avira | HEUR/AGEN.1316147 |
| BitDefender | Trojan.Agent.DFAY |
| BitDefenderTheta | Gen:NN.ZemsilF.36744.quW@a8c@B7mi |
| Bkav | W32.AIDetectMalware.CS |
| CAT-QuickHeal | Trojan.Generic.TRFH11 |
| ClamAV | Win.Malware.Dfay-9787661-0 |
| CrowdStrike | win/malicious_confidence_100% (W) |
| Cybereason | malicious.4bb724 |
| Cylance | unsafe |
| Cynet | Malicious (score: 100) |
| DeepInstinct | MALICIOUS |
| DrWeb | BackDoor.Siggen2.2976 |
| ESET-NOD32 | a variant of MSIL/Agent.ROC |
| Elastic | malicious (high confidence) |
| Emsisoft | Trojan.Agent.DFAY (B) |
| F-Secure | Heuristic.HEUR/AGEN.1316147 |
| FireEye | Generic.mg.dc49d2984f88c6cc |
| Fortinet | MSIL/Agent.ROC!tr |
| GData | MSIL.Trojan.PSE.1C0YG3B |
| Detected | |
| Gridinsoft | Trojan.Win32.Agent.vb!s1 |
| Ikarus | Trojan.Agent |
| K7AntiVirus | Trojan ( 005003531 ) |
| K7GW | Trojan ( 005003531 ) |
| Kaspersky | HEUR:Trojan-Ransom.MSIL.Blocker.gen |
| Kingsoft | malware.kb.c.1000 |
| Lionic | Trojan.MSIL.Blocker.j!c |
| MAX | malware (ai score=82) |
| Malwarebytes | Generic.Malware.AI.DDS |
| MaxSecure | Trojan.Agent.dfay |
| McAfee | GenericRXBD-AO!DC49D2984F88 |
| MicroWorld-eScan | Trojan.Agent.DFAY |
| Microsoft | Trojan:Win32/Aenjaris!pz |
| NANO-Antivirus | Trojan.Win32.Mlw.fkkzve |
| Rising | Trojan.Agent!1.AA9A (CLASSIC) |
| SUPERAntiSpyware | Trojan.Agent/Gen-Dropper |
| Sangfor | Trojan.Win32.Save.a |
| SentinelOne | Static AI - Malicious PE |
| Skyhigh | BehavesLike.Win32.Generic.dh |
| Sophos | Troj/Agent-AZXX |
| Symantec | W32.Styes |
| TACHYON | Trojan/W32.DN-Agent.265216.T |
二进制图像
288x288
224x224
192x192
160x160
128x128
96x96
64x64
32x32
运行截图
暂无运行截图
该样本运行过程中未生成截图
PE Compile Time
2017-03-16 04:32:22
PDB Path
C:\Documents and Settings\hack\Desktop\Virus Projeto\Release\Teste.pdb
PE Imphash
bbbb5742270ee85d3af96e198765cf98
Sections
| Name | Virtual Address | Virtual Size | Size of Raw Data | Entropy |
|---|---|---|---|---|
| .text | 0x00001000 | 0x0000b22c | 0x0000b400 | 5.236919413301993 |
| .rdata | 0x0000d000 | 0x00013302 | 0x00013400 | 6.189333620557055 |
| .data | 0x00021000 | 0x0000d930 | 0x00000600 | 2.665751512749202 |
| .rsrc | 0x0002f000 | 0x00020c68 | 0x00020e00 | 5.615088990797284 |
| .reloc | 0x00050000 | 0x00000be8 | 0x00000c00 | 2.924809306513537 |
Resources
| Name | Offset | Size | Language | Sub-language | File type |
|---|---|---|---|---|---|
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_ICON | 0x0004f4b8 | 0x00000468 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_GROUP_ICON | 0x0004f998 | 0x00000076 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_GROUP_ICON | 0x0004f998 | 0x00000076 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
| RT_MANIFEST | 0x0004fa10 | 0x00000256 | LANG_ENGLISH | SUBLANG_ENGLISH_US | None |
Imports
Library MSVCP90.dll:
• 0x40d0c8 ?width@ios_base@std@@QAEHH@Z
• 0x40d0cc ?width@ios_base@std@@QBEHXZ
• 0x40d0d0 ?flags@ios_base@std@@QBEHXZ
• 0x40d0d4 ?good@ios_base@std@@QBE_NXZ
• 0x40d0d8 ?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
• 0x40d0dc ?to_char_type@?$char_traits@D@std@@SADABH@Z
• 0x40d0e0 ?length@?$char_traits@D@std@@SAIPBD@Z
• 0x40d12c ?uncaught_exception@std@@YA_NXZ
• 0x40d134 ?max_size@?$allocator@_W@std@@QBEIXZ
• 0x40d13c ?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
• 0x40d17c ?allocate@?$allocator@_W@std@@QAEPA_WI@Z
• 0x40d180 ?deallocate@?$allocator@_W@std@@QAEXPA_WI@Z
• 0x40d184 ??0?$allocator@_W@std@@QAE@ABV01@@Z
• 0x40d188 ??0?$allocator@_W@std@@QAE@XZ
• 0x40d18c ??0?$allocator@D@std@@QAE@XZ
Library MSVCR90.dll:
• 0x40d1e0 ??0exception@std@@QAE@XZ
• 0x40d1e4 _time64
• 0x40d1e8 __CxxDetectRethrow
• 0x40d1ec getenv
• 0x40d1f0 _CxxThrowException
• 0x40d1f4 wcstombs_s
• 0x40d1f8 __CxxUnregisterExceptionObject
• 0x40d1fc ??0exception@std@@QAE@ABV01@@Z
• 0x40d200 _crt_debugger_hook
• 0x40d204 _controlfp_s
• 0x40d208 _invoke_watson
• 0x40d20c _except_handler4_common
• 0x40d210 _decode_pointer
• 0x40d214 _onexit
• 0x40d218 _lock
• 0x40d21c __dllonexit
• 0x40d220 _unlock
• 0x40d228 ?terminate@@YAXXZ
• 0x40d22c __set_app_type
• 0x40d230 _encode_pointer
• 0x40d234 __p__fmode
• 0x40d238 __p__commode
• 0x40d23c _adjust_fdiv
• 0x40d240 __setusermatherr
• 0x40d244 _configthreadlocale
• 0x40d248 _initterm_e
• 0x40d24c _initterm
• 0x40d250 _acmdln
• 0x40d254 exit
• 0x40d258 _ismbblead
• 0x40d25c _XcptFilter
• 0x40d260 _exit
• 0x40d264 _cexit
• 0x40d268 __getmainargs
• 0x40d26c _amsg_exit
• 0x40d270 ?what@exception@std@@UBEPBDXZ
• 0x40d274 ??3@YAXPAX@Z
• 0x40d278 __CxxFrameHandler3
• 0x40d27c __FrameUnwindFilter
• 0x40d280 _encoded_null
• 0x40d284 ??2@YAPAXI@Z
• 0x40d288 memmove_s
• 0x40d28c sprintf
• 0x40d290 mbstowcs
• 0x40d294 ??1exception@std@@UAE@XZ
• 0x40d298 isdigit
• 0x40d29c ??0exception@std@@QAE@ABQBD@Z
• 0x40d2a0 isspace
• 0x40d2a4 __CxxRegisterExceptionObject
• 0x40d2a8 atoi
• 0x40d2ac remove
• 0x40d2b0 _invalid_parameter_noinfo
• 0x40d2b4 ??_V@YAXPAX@Z
• 0x40d2b8 __CxxExceptionFilter
• 0x40d2bc rand
• 0x40d2c0 srand
• 0x40d2c4 __CxxQueryExceptionSize
Library KERNEL32.dll:
• 0x40d000 InterlockedCompareExchange
• 0x40d004 CloseHandle
• 0x40d008 WideCharToMultiByte
• 0x40d00c CreateToolhelp32Snapshot
• 0x40d010 FindNextFileW
• 0x40d014 CreateMutexA
• 0x40d018 Process32NextW
• 0x40d01c Process32FirstW
• 0x40d020 FindClose
• 0x40d024 GetLastError
• 0x40d028 MultiByteToWideChar
• 0x40d02c GetModuleFileNameW
• 0x40d030 GetFileAttributesA
• 0x40d034 OpenProcess
• 0x40d038 GetProcessHeap
• 0x40d03c CreateDirectoryW
• 0x40d040 HeapFree
• 0x40d044 InterlockedDecrement
• 0x40d048 GetDriveTypeW
• 0x40d04c FindFirstFileW
• 0x40d050 IsDebuggerPresent
• 0x40d054 UnhandledExceptionFilter
• 0x40d058 GetCurrentProcess
• 0x40d05c TerminateProcess
• 0x40d060 GetSystemTimeAsFileTime
• 0x40d064 GetCurrentProcessId
• 0x40d068 InterlockedExchange
• 0x40d06c Sleep
• 0x40d070 GetStartupInfoA
• 0x40d074 SetUnhandledExceptionFilter
• 0x40d078 QueryPerformanceCounter
• 0x40d07c GetTickCount
• 0x40d080 GetCurrentThreadId
Library WSOCK32.dll:
• 0x40d2e8 gethostname
• 0x40d2ec inet_ntoa
• 0x40d2f0 gethostbyname
• 0x40d2f4 WSAStartup
Library msvcm90.dll:
• 0x40d304 ?ThrowModuleLoadException@<CrtImplementationDetails>@@YAXP$AAVString@System@@P$AAVException@3@@Z
Library mscoree.dll:
• 0x40d2fc _CorExeMain
L!This program cannot be run in DOS mode.
>J>J>JYJ?J ZJ:J LJ*J \J9J KJ.J
-J0J>JJ EJ?J [J?J ^J?JRich>J
`.rdata
@.data
@.reloc
,XH .2+
,XH .2+
&+Z&(U
&+Z&(U
&+Y&(U
&+Z&(U
&+Z&(U
Wt%VhJ@
EE8csmt
8csmu*x
YYEEPEPu
;r_^%d@
B(;r3_^[]
1E3PEd
Y_^[]%L@
1E3PeuEEEEd
Y__^[]Q
E3E3;u
^_[%(@
JJ csm.
PQSVW(
bad allocation
E(&AX?4Y!
,TBwq.z>I
?Z:L*9K-=0E[
atingiu o limite de threads ativas
%d.%d.%d.%d
Importante
Documentos
Arquivos
Registros
Relatorio
Sistema
Dados Trabalho
Wallpapers
PDFs Importantes
Mais Arquivos
Para Verificar
Minha Conta
Meus Dados
Arquivos e Documentos
Backup
importaes
configurao
ativos
Objetos
Photos
Important
Documents
Registers
Reports
System
actives
my account
my data
important files
more files
my works
Objects
Desktop
pendrive
http://serverjarvis.sytes.net/resource_vir/command.php?version=0019
&cache=
&iplocal=
\6s4d5f65sd4f65sd4gg3216564_0019.sys
APPDATA
Windows Update
./tmp.err
\4564567453432.bat
\win32_35465465.exe
\Windows Objects\
execute
wmiintegrator.exe
nocreatefolder
wmihostwin.exe
wmimic.exe
wmisecure.exe
autorun
wmisecure64.exe
\6s5d4f65ds4g65d47gfd684gfd_0019.sys
wmiintegrator
wmihostwin
winlsv
wmisecure
wmisecure64
wmimic
\Microsoft\Windows\Start Menu\Programs\Startup
\Microsoft\Windows\Menu Iniciar\Programas\Inicializar
\Menu Iniciar\Programas\Inicializar
USERPROFILE
\Start Menu\Programs\Startup
\6s5d41g65s4g65d6tr465465t.sys
winstart
Windows log.
s6d54fd6f54hgf654h6__autorun
add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run" /v "KeybordDriver" /t REG_SZ /d
\Windows Objects\wmimic.exe\" winstart" /f
reg.exe
unkilable
jdfhdskjdgfyus543530665
\system32\notepad.exe
WINDIR
\Microsoft\Windows\
\NTUSER.DAT
invalid vector<T> subscript
vector<T> too long
deque<T> too long
v2.0.50727
#Strings
O T 4 9 *!5!:!?!p!u!z!!!!!F"K"
<Module>
$ArrayType$$$BY0O@$$CBD
<CppImplementationDetails>
LanguageSupport
<CrtImplementationDetails>
gcroot<System::String ^>
HINSTANCE__
HWND__
$ArrayType$$$BY00Q6MPBXXZ
Progress
$ArrayType$$$BY0A@P6AXXZ
_SECURITY_ATTRIBUTES
$ArrayType$$$BY0A@P6AHXZ
__enative_startup_state
TriBool
_EXCEPTION_POINTERS
$ArrayType$$$BY0P@$$CBD
$ArrayType$$$BY0BA@$$CBD
$ArrayType$$$BY05$$CBD
$ArrayType$$$BY04$$CBD
$ArrayType$$$BY01$$CBD
$ArrayType$$$BY0BG@$$CBD
$ArrayType$$$BY08$$CBD
bad_alloc
_Aux_cont
_Container_base_aux
logic_error
basic_string<char,std::char_traits<char>,std::allocator<char> >
length_error
out_of_range
ios_base
_Fac_node
basic_ostream<char,std::char_traits<char> >
_Sentry_base
sentry
basic_ios<char,std::char_traits<char> >
basic_streambuf<char,std::char_traits<char> >
fpos<int>
allocator<char>
_String_val<char,std::allocator<char> >
_s__RTTICompleteObjectLocator
$_s__RTTIBaseClassArray$_extraBytes_12
$_TypeDescriptor$_extraBytes_23
_s__ThrowInfo
_s__RTTIClassHierarchyDescriptor
$ArrayType$$$BY01Q6AXXZ
_s__RTTIBaseClassDescriptor2
$ArrayType$$$BY02Q6AXXZ
$_s__RTTIBaseClassArray$_extraBytes_8
$_s__RTTIBaseClassArray$_extraBytes_4
$_TypeDescriptor$_extraBytes_22
_s__CatchableType
$_TypeDescriptor$_extraBytes_20
$_s__CatchableTypeArray$_extraBytes_8
$_s__CatchableTypeArray$_extraBytes_12
exception
ThisModule
Thread
JARVIS
EntryPoint
_String_const_iterator<char,std::char_traits<char>,std::allocator<char> >
unary_negate<std::pointer_to_unary_function<int,int,int (__cdecl*)(int)> >
_String_iterator<char,std::char_traits<char>,std::allocator<char> >
reverse_iterator<std::_String_iterator<char,std::char_traits<char>,std::allocator<char> > >
$ArrayType$$$BY0DH@$$CBD
$ArrayType$$$BY00$$CBD
$ArrayType$$$BY0CD@$$CBD
$ArrayType$$$BY0M@$$CBD
$ArrayType$$$BY0L@$$CBD
$ArrayType$$$BY09$$CBD
$ArrayType$$$BY07$$CBD
$ArrayType$$$BY0BB@$$CBD
$ArrayType$$$BY06$$CBD
$ArrayType$$$BY0N@$$CBD
_Vector_iterator<wchar_t,std::allocator<wchar_t> >
$ArrayType$$$BY01$$CB_W
$ArrayType$$$BY02$$CB_W
$ArrayType$$$BY02$$CBD
in_addr
$ArrayType$$$BY03$$CBD
$ArrayType$$$BY0EE@$$CBD
$ArrayType$$$BY0CF@$$CBD
$ArrayType$$$BY09$$CB_W
istreambuf_iterator<char,std::char_traits<char> >
$ArrayType$$$BY0BD@$$CBD
$ArrayType$$$BY0BE@$$CBD
$ArrayType$$$BY0BC@$$CBD
$ArrayType$$$BY0BC@$$CB_W
$ArrayType$$$BY0P@$$CB_W
$ArrayType$$$BY0L@$$CB_W
$ArrayType$$$BY0O@$$CB_W
$ArrayType$$$BY0CP@$$CBD
$ArrayType$$$BY0DG@$$CBD
$ArrayType$$$BY0CE@$$CBD
$ArrayType$$$BY0BN@$$CBD
$ArrayType$$$BY0BP@$$CBD
$ArrayType$$$BY0GG@$$CBD
$ArrayType$$$BY0CL@$$CBD
$ArrayType$$$BY0BI@$$CBD
_String_iterator<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >
$ArrayType$$$BY0M@$$CB_W
$ArrayType$$$BY0N@$$CB_W
$ArrayType$$$BY06$$CB_W
_String_const_iterator<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >
_Vector_const_iterator<wchar_t,std::allocator<wchar_t> >
$ArrayType$$$BY0BM@$$CBD
reverse_iterator<char *>
forward_iterator_tag
input_iterator_tag
_bstr_t
Data_t
_com_error
RuntimeException
basic_ofstream<char,std::char_traits<char> >
basic_stringstream<char,std::char_traits<char>,std::allocator<char> >
basic_ifstream<char,std::char_traits<char> >
stack<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > > >
basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >
basic_filebuf<char,std::char_traits<char> >
vector<wchar_t,std::allocator<wchar_t> >
deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >
vector<char *,std::allocator<char *> >
allocator<wchar_t>
_Vector_val<wchar_t,std::allocator<wchar_t> >
_Deque_val<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >
_Vector_val<char *,std::allocator<char *> >
_String_val<wchar_t,std::allocator<wchar_t> >
_Container_base_aux_alloc_real<std::allocator<wchar_t> >
_Deque_iterator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > >,1>
allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > *>
_Deque_const_iterator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > >,1>
pointer_to_unary_function<int,int,int (__cdecl*)(int)>
_WIN32_FIND_DATAW
$_TypeDescriptor$_extraBytes_30
tagPROCESSENTRY32W
WSAData
IUnknown
IBindStatusCallback
hostent
$_TypeDescriptor$_extraBytes_17
$ArrayType$$$BY0IE@H
$ArrayType$$$BY03H
$ArrayType$$$BY0BAAA@D
$ArrayType$$$BY0CI@PAD
$ArrayType$$$BY0BAE@_W
$ArrayType$$$BY05PAD
$ArrayType$$$BY0BE@D
$_TypeDescriptor$_extraBytes_5
mscorlib
Microsoft.VisualC
System
System.Data
System.Drawing
System.Windows.Forms
System.Xml
CallConvStdcall
System.Runtime.CompilerServices
CallConvCdecl
CallConvThiscall
IsVolatile
DebugInfoInPDBAttribute
MiscellaneousBitsAttribute
NativeCppClassAttribute
IsConst
UnsafeValueTypeAttribute
ValueType
Exception
Object
DecoratedNameAttribute
IsImplicitlyDereferenced
IsLong
DebuggerStepThroughAttribute
System.Diagnostics
ReliabilityContractAttribute
System.Runtime.ConstrainedExecution
Consistency
EventArgs
PrePrepareMethodAttribute
EventHandler
FixedAddressValueTypeAttribute
CLSCompliantAttribute
GCHandle
System.Runtime.InteropServices
IntPtr
AppDomain
RuntimeHelpers
Interlocked
System.Threading
SecurityAction
System.Security.Permissions
SecurityPermissionAttribute
AssemblyAttributesGoHereSM
Marshal
IsSignUnspecifiedByte
OutOfMemoryException
IsBoxed
ModuleHandle
RuntimeMethodHandle
RuntimeTypeHandle
Module
System.Reflection
IDisposable
List`1
System.Collections.Generic
MulticastDelegate
IAsyncResult
AsyncCallback
System.Text.RegularExpressions
String
IsUdtReturn
IsCopyConstructed
Process
IEnumerator
System.Collections
MatchCollection
GroupCollection
Capture
RegexOptions
Encoding
System.Text
ParameterizedThreadStart
StreamReader
System.IO
ProcessStartInfo
SuppressUnmanagedCodeSecurityAttribute
System.Security
<CrtImplementationDetails>.NativeDll.IsSafeForManagedCode
<CrtImplementationDetails>.DefaultDomain.DoNothing
cookie
<CrtImplementationDetails>.DefaultDomain.HasPerProcess
<CrtImplementationDetails>.DefaultDomain.HasNative
<CrtImplementationDetails>.DefaultDomain.NeedsInitialization
<CrtImplementationDetails>.DefaultDomain.Initialize
?A0x250abb45.??__E?Initialized@CurrentDomain@<CrtImplementationDetails>@@$$Q2HA@@YMXXZ
?A0x250abb45.??__E?Uninitialized@CurrentDomain@<CrtImplementationDetails>@@$$Q2HA@@YMXXZ
?A0x250abb45.??__E?IsDefaultDomain@CurrentDomain@<CrtImplementationDetails>@@$$Q2_NA@@YMXXZ
?A0x250abb45.??__E?InitializedVtables@CurrentDomain@<CrtImplementationDetails>@@$$Q2W4State@Progress@2@A@@YMXXZ
?A0x250abb45.??__E?InitializedNative@CurrentDomain@<CrtImplementationDetails>@@$$Q2W4State@Progress@2@A@@YMXXZ
?A0x250abb45.??__E?InitializedPerProcess@CurrentDomain@<CrtImplementationDetails>@@$$Q2W4State@Progress@2@A@@YMXXZ
?A0x250abb45.??__E?InitializedPerAppDomain@CurrentDomain@<CrtImplementationDetails>@@$$Q2W4State@Progress@2@A@@YMXXZ
<CrtImplementationDetails>.LanguageSupport.InitializeVtables
<CrtImplementationDetails>.LanguageSupport.InitializeDefaultAppDomain
<CrtImplementationDetails>.LanguageSupport.InitializeNative
<CrtImplementationDetails>.LanguageSupport.InitializePerProcess
<CrtImplementationDetails>.LanguageSupport.InitializePerAppDomain
<CrtImplementationDetails>.LanguageSupport.InitializeUninitializer
<CrtImplementationDetails>.LanguageSupport._Initialize
<CrtImplementationDetails>.LanguageSupport.UninitializeAppDomain
<CrtImplementationDetails>.LanguageSupport._UninitializeDefaultDomain
<CrtImplementationDetails>.LanguageSupport.UninitializeDefaultDomain
<CrtImplementationDetails>.LanguageSupport.DomainUnload
source
arguments
<CrtImplementationDetails>.LanguageSupport.Cleanup
innerException
<CrtImplementationDetails>.LanguageSupport.Initialize
.cctor
<CrtImplementationDetails>.LanguageSupport.{ctor}
<CrtImplementationDetails>.LanguageSupport.{dtor}
gcroot<System::String ^>.{ctor}
gcroot<System::String ^>.{dtor}
gcroot<System::String ^>.=
gcroot<System::String ^>..P$AAVString@System@@
__ehvec_dtor
?A0x644ad69d.ArrayUnwindFilter
pExPtrs
__ArrayUnwind
std.bad_alloc.{dtor}
std.bad_alloc.__vecDelDtor
std.logic_error.{dtor}
std.logic_error.what
std.logic_error.__vecDelDtor
std.out_of_range.{dtor}
std.out_of_range.__vecDelDtor
std.out_of_range.{ctor}
std.logic_error.{ctor}
std.allocator<char>.{ctor}
std.bad_alloc.{ctor}
<CrtImplementationDetails>.AtExitLock._handle
<CrtImplementationDetails>.AtExitLock._lock_Set
<CrtImplementationDetails>.AtExitLock._lock_Get
<CrtImplementationDetails>.AtExitLock._lock_Destruct
<CrtImplementationDetails>.AtExitLock.IsInitialized
<CrtImplementationDetails>.AtExitLock.AddRef
?A0x11773762.__alloc_global_lock
?A0x11773762.__dealloc_global_lock
_exit_callback
_initatexit_m
_initatexit_app_domain
_app_exit_callback
_initterm_e
pfbegin
_initterm
<CrtImplementationDetails>.ThisModule.Handle
_initterm_m
<CrtImplementationDetails>.ThisModule.ResolveMethod<void const * __clrcall(void)>
methodToken
___CxxCallUnwindDtor
delete
std.length_error.{dtor}
std.length_error.__vecDelDtor
?A0x099a5d79.time
_bstr_t.{dtor}
_bstr_t.Data_t.Release
_com_error.__vecDelDtor
_com_error.{dtor}
?A0x099a5d79.ltrim
?A0x099a5d79.rtrim
?A0x099a5d79.trim
JARVIS.RuntimeException.what
JARVIS.RuntimeException.__vecDelDtor
JARVIS.RuntimeException.{dtor}
_rand2
replaceBinary
assembleHost
buffer
dirExists
dirName_in
fileExists
createFile
overrideFile
injectOnDir
countLimit
std.stack<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > > >.{dtor}
MarshalString
sendFile
limitSubDirs
threadSendFile
ipIterator
injectLocal
letter
getLocalIp
ipStringToArray
startLocal
startIpLocal
startIpRemote
download
execCommand
FindProcessId
processName
startNewP
startUnkilable
killProc
canCreateFolder
moduleName
execRemoteCommand
init002
WinMain
std.fpos<int>.{ctor}
std.vector<wchar_t,std::allocator<wchar_t> >.{dtor}
std.vector<wchar_t,std::allocator<wchar_t> >.at
std.vector<char *,std::allocator<char *> >.{ctor}
std.vector<char *,std::allocator<char *> >.{dtor}
std._Vector_val<wchar_t,std::allocator<wchar_t> >.{dtor}
std._Deque_val<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >.{dtor}
std._Vector_val<char *,std::allocator<char *> >.{dtor}
std._String_iterator<char,std::char_traits<char>,std::allocator<char> >.*
std.vector<wchar_t,std::allocator<wchar_t> >.resize
_Newsize
std.vector<wchar_t,std::allocator<wchar_t> >._Xran
std._Container_base_aux_alloc_real<std::allocator<wchar_t> >.{dtor}
std._Vector_iterator<wchar_t,std::allocator<wchar_t> >.*
std.deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >.{ctor}
std.deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >.push_back
std.deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >.pop_back
std.deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >._Tidy
std.istreambuf_iterator<char,std::char_traits<char> >.*
std.istreambuf_iterator<char,std::char_traits<char> >.++
std._String_iterator<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.*
std.basic_ostream<char,std::char_traits<char> >.sentry.{ctor}
std.basic_ostream<char,std::char_traits<char> >.sentry.{dtor}
std._String_const_iterator<char,std::char_traits<char>,std::allocator<char> >.!=
_Right
std.vector<wchar_t,std::allocator<wchar_t> >.erase
_First_arg
_Last_arg
std.vector<wchar_t,std::allocator<wchar_t> >._Insert_n
_Where
_Count
std.vector<wchar_t,std::allocator<wchar_t> >._Xlen
std._String_const_iterator<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.!=
std.deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >._Growmap
std.istreambuf_iterator<char,std::char_traits<char> >._Peek
std.basic_ostream<char,std::char_traits<char> >._Sentry_base.{dtor}
std.length_error.{ctor}
std.vector<wchar_t,std::allocator<wchar_t> >._Ufill
std._Vector_const_iterator<wchar_t,std::allocator<wchar_t> >.+=
std._Vector_const_iterator<wchar_t,std::allocator<wchar_t> >.!=
std.deque<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > > >._Xlen
std.allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > *>.allocate
std._Deque_const_iterator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > >,1>.*
std._Deque_const_iterator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >,std::allocator<std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> > >,1>.+=
std.operator<<<struct std::char_traits<char> >
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.{ctor}<class std::_Vector_iterator<wchar_t,class std::allocator<wchar_t> > >
_First
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.{ctor}<class std::_String_iterator<char,struct std::char_traits<char>,class std::allocator<char> > >
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.{ctor}<class std::istreambuf_iterator<char,struct std::char_traits<char> > >
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.{ctor}<class std::_String_iterator<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> > >
std.operator!=<char,struct std::char_traits<char> >
std.vector<wchar_t,std::allocator<wchar_t> >._Umove<wchar_t *>
stdext._Unchecked_move_backward<wchar_t *,wchar_t *>
stdext.unchecked_uninitialized_copy<class std::basic_string<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> > * *,class std::basic_string<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> > * *,class std::allocator<class std::basic_string<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> > *> >
std._Find_if<class std::reverse_iterator<char *>,class std::unary_negate<class std::pointer_to_unary_function<int,int,int (__cdecl*)(int)> > >
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >._Construct<class std::_Vector_iterator<wchar_t,class std::allocator<wchar_t> > >
__unnamed002
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >._Construct<class std::_String_iterator<char,struct std::char_traits<char>,class std::allocator<char> > >
std.basic_string<char,std::char_traits<char>,std::allocator<char> >._Construct<class std::istreambuf_iterator<char,struct std::char_traits<char> > >
std.basic_string<char,std::char_traits<char>,std::allocator<char> >._Construct<class std::_Vector_iterator<wchar_t,class std::allocator<wchar_t> > >
std.basic_string<char,std::char_traits<char>,std::allocator<char> >._Construct<class std::_String_iterator<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> > >
std._String_iterator<char,std::char_traits<char>,std::allocator<char> >.++
std._Vector_iterator<wchar_t,std::allocator<wchar_t> >.++
std._String_iterator<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.++
_WinMainCRTStartup
_getFiberPtrId
_amsg_exit
__security_init_cookie
<CrtImplementationDetails>.ThrowModuleLoadException
<CrtImplementationDetails>.DoDllLanguageSupportValidation
<CrtImplementationDetails>.ThrowNestedModuleLoadException
<CrtImplementationDetails>.RegisterModuleUninitializer
<CrtImplementationDetails>.DoCallBackInDefaultDomain
_cexit
terminate
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.{ctor}
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.{dtor}
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.c_str
delete[]
std.exception.{ctor}
std.exception.{dtor}
_encode_pointer
_decode_pointer
_encoded_null
__FrameUnwindFilter
std.char_traits<char>.length
std.char_traits<char>.to_char_type
std.char_traits<char>.eq_int_type
std.ios_base.good
std.ios_base.flags
std.ios_base.width
std.basic_stringstream<char,std::char_traits<char>,std::allocator<char> >.__vbaseDtor
std.basic_ifstream<char,std::char_traits<char> >.__vbaseDtor
std.basic_ofstream<char,std::char_traits<char> >.__vbaseDtor
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.=
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.erase
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.begin
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.end
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.rbegin
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.rend
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.find_last_of
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.substr
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.{ctor}
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.{dtor}
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.=
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.begin
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.end
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.c_str
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.compare
std.basic_streambuf<char,std::char_traits<char> >.sgetc
std.basic_ios<char,std::char_traits<char> >.setstate
std.basic_ios<char,std::char_traits<char> >.rdbuf
std.basic_ostream<char,std::char_traits<char> >.<<
std.basic_ostream<char,std::char_traits<char> >.write
std.basic_ostream<char,std::char_traits<char> >.flush
std.basic_ostream<char,std::char_traits<char> >.seekp
std.basic_stringstream<char,std::char_traits<char>,std::allocator<char> >.{ctor}
std.basic_stringstream<char,std::char_traits<char>,std::allocator<char> >.str
std.basic_ifstream<char,std::char_traits<char> >.{ctor}
std.basic_ifstream<char,std::char_traits<char> >.rdbuf
std.basic_ifstream<char,std::char_traits<char> >.close
std.basic_ofstream<char,std::char_traits<char> >.{ctor}
std.basic_ofstream<char,std::char_traits<char> >.open
std.basic_ofstream<char,std::char_traits<char> >.close
std.allocator<wchar_t>.{ctor}
std.allocator<wchar_t>.deallocate
std.allocator<wchar_t>.allocate
std._String_val<char,std::allocator<char> >.{ctor}
std._String_val<wchar_t,std::allocator<wchar_t> >.{ctor}
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.append
std.basic_string<char,std::char_traits<char>,std::allocator<char> >.reserve
std.basic_string<char,std::char_traits<char>,std::allocator<char> >._Tidy
std.basic_string<char,std::char_traits<char>,std::allocator<char> >._Myptr
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.append
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >._Tidy
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >._Myptr
std.basic_streambuf<char,std::char_traits<char> >.sbumpc
std.basic_streambuf<char,std::char_traits<char> >.sputc
std.basic_streambuf<char,std::char_traits<char> >.sputn
std.basic_streambuf<char,std::char_traits<char> >._Unlock
std.basic_ios<char,std::char_traits<char> >.fill
std.basic_streambuf<char,std::char_traits<char> >._Lock
std.basic_ios<char,std::char_traits<char> >.tie
std.basic_ostream<char,std::char_traits<char> >._Osfx
std.allocator<wchar_t>.max_size
std.basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t> >.reserve
__CxxQueryExceptionSize
_time64
__CxxDetectRethrow
CloseHandle
gethostname
getenv
CreateToolhelp32Snapshot
FindNextFileW
CreateMutexA
inet_ntoa
Process32NextW
SysFreeString
WSAStartup
URLDownloadToFileW
_CxxThrowException
ShellExecuteW
sprintf
Process32FirstW
FindClose
_com_issue_error
wcstombs_s
__CxxUnregisterExceptionObject
isdigit
GetLastError
__CxxExceptionFilter
MultiByteToWideChar
GetModuleFileNameW
TerminateProcess
_invalid_parameter_noinfo
_com_util.ConvertBSTRToString
GetFileAttributesA
remove
OpenProcess
GetProcessHeap
__CxxRegisterExceptionObject
ShellExecuteA
gethostbyname
CreateDirectoryW
HeapFree
isspace
InterlockedDecrement
GetDriveTypeW
URLDownloadToFileA
FindFirstFileW
std.uncaught_exception
std.operator+<char,struct std::char_traits<char>,class std::allocator<char> >
std.operator+<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> >
std.exception.what
std.operator<<<char,struct std::char_traits<char>,class std::allocator<char> >
std.operator!=<char,struct std::char_traits<char>,class std::allocator<char> >
std.operator==<char,struct std::char_traits<char>,class std::allocator<char> >
mbstowcs
memmove_s
SysAllocString
?A0x250abb45.__xc_mp_z
?Uninitialized@CurrentDomain@<CrtImplementationDetails>@@$$Q2HA
?A0x250abb45.?Uninitialized$initializer$@CurrentDomain@<CrtImplementationDetails>@@$$Q2P6MXXZA
?A0x250abb45.__xi_vt_a
?InitializedPerAppDomain@CurrentDomain@<CrtImplementationDetails>@@$$Q2W4State@Progress@2@A
?A0x250abb45.?InitializedPerAppDomain$initializer$@CurrentDomain@<CrtImplementationDetails>@@$$Q2P6MXXZA
?IsDefaultDomain@CurrentDomain@<CrtImplementationDetails>@@$$Q2_NA
?A0x250abb45.?IsDefaultDomain$initializer$@CurrentDomain@<CrtImplementationDetails>@@$$Q2P6MXXZA
?A0x250abb45.__xc_ma_a
?InitializedNative@CurrentDomain@<CrtImplementationDetails>@@$$Q2W4State@Progress@2@A
?A0x250abb45.?InitializedNative$initializer$@CurrentDomain@<CrtImplementationDetails>@@$$Q2P6MXXZA
?Initialized@CurrentDomain@<CrtImplementationDetails>@@$$Q2HA
?A0x250abb45.?Initialized$initializer$@CurrentDomain@<CrtImplementationDetails>@@$$Q2P6MXXZA
?A0x250abb45.__xc_ma_z
?InitializedVtables@CurrentDomain@<CrtImplementationDetails>@@$$Q2W4State@Progress@2@A
?A0x250abb45.?InitializedVtables$initializer$@CurrentDomain@<CrtImplementationDetails>@@$$Q2P6MXXZA
?A0x250abb45.__xi_vt_z
?InitializedPerProcess@CurrentDomain@<CrtImplementationDetails>@@$$Q2W4State@Progress@2@A
?A0x250abb45.?InitializedPerProcess$initializer$@CurrentDomain@<CrtImplementationDetails>@@$$Q2P6MXXZA
?InitializedPerProcess@DefaultDomain@<CrtImplementationDetails>@@2_NA
?Entered@DefaultDomain@<CrtImplementationDetails>@@2_NA
?InitializedNative@DefaultDomain@<CrtImplementationDetails>@@2_NA
?Count@AllDomains@<CrtImplementationDetails>@@2HA
?hasNative@DefaultDomain@<CrtImplementationDetails>@@0W4State@TriBool@2@A
?hasPerProcess@DefaultDomain@<CrtImplementationDetails>@@0W4State@TriBool@2@A
?InitializedNativeFromCCTOR@DefaultDomain@<CrtImplementationDetails>@@2_NA
?A0x250abb45.__xc_mp_a
__unep@?DoNothing@DefaultDomain@<CrtImplementationDetails>@@$$FCGJPAX@Z
__unep@?_UninitializeDefaultDomain@LanguageSupport@<CrtImplementationDetails>@@$$FCGJPAX@Z
??_C@_0P@GHFPNOJB@bad?5allocation?$AA@
??_R4out_of_range@std@@6B@
??_R0?AVout_of_range@std@@@8
??_7bad_alloc@std@@6B@
??_R1A@?0A@EA@exception@std@@8
??_R1A@?0A@EA@logic_error@std@@8
??_R0?AVexception@std@@@8
??_R2bad_alloc@std@@8
??_R1A@?0A@EA@bad_alloc@std@@8
??_R2out_of_range@std@@8
??_7logic_error@std@@6B@
??_R3bad_alloc@std@@8
??_7out_of_range@std@@6B@
??_R0?AVbad_alloc@std@@@8
??_R4logic_error@std@@6B@
??_R2exception@std@@8
??_R3exception@std@@8
??_R3out_of_range@std@@8
??_R2logic_error@std@@8
??_R3logic_error@std@@8
??_R0?AVlogic_error@std@@@8
??_R4bad_alloc@std@@6B@
std.?A0x9e79dd2a._bad_alloc_Message
std.?A0x9e79dd2a._Fac_head
??_R1A@?0A@EA@out_of_range@std@@8
__exit_list_size_app_domain
__onexitbegin_app_domain
?A0x11773762.__exit_list_size
__onexitend_app_domain
?A0x11773762.__onexitbegin_m
?A0x11773762.__onexitend_m
?_lock@AtExitLock@<CrtImplementationDetails>@@$$Q0PAXA
?_ref_count@AtExitLock@<CrtImplementationDetails>@@$$Q0HA
??_C@_01NBENCBCI@?$CK?$AA@
??_C@_0DH@DGOCDPBG@E?$NO?$CI?e?$LE?$CG?$PO?$LDA?$NM?EX?$DP4?$PPY?$CB?$NN?$KF?p?q?$LF?0TBwq?4z?$IK?$KB?$DO@
??_C@_00CNPNBAHC@?$AA@
??_C@_0CD@BPKKHFJE@atingiu?5o?5limite?5de?5threads?5ativ@
??_C@_0M@PCENNPGA@?$CFd?4?$CFd?4?$CFd?4?$CFd?$AA@
??_C@_05CPJKMGFC@Fotos?$AA@
??_C@_0L@DLJBJIAN@Importante?$AA@
??_C@_0L@GEMFLCBF@Documentos?$AA@
??_C@_08LCHFGBEB@Arquivos?$AA@
??_C@_09HECLFCNM@Registros?$AA@
??_C@_09PCGBLHCJ@Relatorio?$AA@
??_C@_07OOKPOBEB@Sistema?$AA@
??_C@_0P@BNFNGMOL@Dados?5Trabalho?$AA@
??_C@_0L@EPEGFDJP@Wallpapers?$AA@
??_C@_05JPKIAOHJ@Disco?$AA@
??_C@_05BEBFLIBD@Erros?$AA@
??_C@_0BB@LFILMENC@PDFs?5Importantes?$AA@
??_C@_0O@DNIHOJOC@Mais?5Arquivos?$AA@
??_C@_0P@DNABKGMA@Para?5Verificar?$AA@
??_C@_0M@JMFPCLPB@Minha?5Conta?$AA@
??_C@_0L@CKHKCMEB@Meus?5Dados?$AA@
??_C@_0BG@OAKOPLJH@Arquivos?5e?5Documentos?$AA@
??_C@_06DNBPDGPM@Backup?$AA@
??_C@_0M@ILLKBPFF@importa?g?ues?$AA@
??_C@_0N@LDEAMGGL@configura?g?co?$AA@
??_C@_06ECAOGEFD@ativos?$AA@
??_C@_07CNDAOIPJ@Objetos?$AA@
??_C@_06BNEHDFHO@Photos?$AA@
??_C@_09MCGAFAPH@Important?$AA@
??_C@_09IBGBKIMC@Documents?$AA@
??_C@_05DIOAMJFE@Files?$AA@
??_C@_09KNBLANNJ@Registers?$AA@
??_C@_07NCMMNIJM@Reports?$AA@
??_C@_06JIODDOFH@System?$AA@
??_C@_05NAOIJFC@Error?$AA@
??_C@_07DMAJFAJO@actives?$AA@
??_C@_0L@OBHDNIJO@my?5account?$AA@
??_C@_07GPFJNOLD@my?5data?$AA@
??_C@_0BA@DAHKIDJI@important?5files?$AA@
??_C@_0L@NHEGCEPP@more?5files?$AA@
??_C@_04MDPPAFID@disk?$AA@
??_C@_08EEJLIFID@my?5works?$AA@
??_C@_07PAINMLEO@Objects?$AA@
??_C@_07FDJHENA@Desktop?$AA@
??_C@_08LEHIHMIJ@pendrive?$AA@
??_C@_04JLMDILM@?4exe?$AA@
??_C@_13BBDEGPLJ@?$AA?$CK?$AA?$AA@
??_C@_13JOFGPIOO@?$AA?4?$AA?$AA@
??_C@_15DDHGOCBH@?$AA?4?$AA?4?$AA?$AA@
??_C@_01KICIPPFI@?2?$AA@
??_C@_02HDBGODGB@?2?2?$AA@
??_C@_03GCNDMCJL@a?3?2?$AA@
??_C@_03HAGGGNHF@b?3?2?$AA@
??_C@_03FFANDCKJ@d?3?2?$AA@
??_C@_03ONLBFFMM@e?3?2?$AA@
??_C@_03PPAEPKCC@f?3?2?$AA@
??_C@_03EHLIJNEH@g?3?2?$AA@
??_C@_03BPNLINBB@h?3?2?$AA@
??_C@_03KHGHOKHE@i?3?2?$AA@
??_C@_03LFNCEFJK@j?3?2?$AA@
??_C@_03NGOCCPP@k?3?2?$AA@
??_C@_03JALJBKEG@l?3?2?$AA@
??_C@_03CIAFHNCD@m?3?2?$AA@
??_C@_03DKLANCMN@n?3?2?$AA@
??_C@_03ICAMLFKI@o?3?2?$AA@
??_C@_03IKHGPCGB@p?3?2?$AA@
??_C@_03DCMKJFAE@q?3?2?$AA@
??_C@_03CAHPDKOK@r?3?2?$AA@
??_C@_03JIMDFNIP@s?3?2?$AA@
??_C@_03FBEGFDG@t?3?2?$AA@
??_C@_03LNKIACFD@u?3?2?$AA@
??_C@_03KPBNKNLN@v?3?2?$AA@
??_C@_03EPMCNKIO@x?3?2?$AA@
??_C@_03OFMLBCAF@z?3?2?$AA@
??_C@_03BHKBMKNI@w?3?2?$AA@
??_C@_03PHHOLNOL@y?3?2?$AA@
??_C@_0EE@CKNGGNOI@http?3?1?1serverjarvis?4sytes?4net?1re@
??_C@_07NIMGFCME@?$CGcache?$DN?$AA@
??_C@_09MBDPDOGO@?$CGiplocal?$DN?$AA@
??_C@_0CF@KDDNNLPL@?26s4d5f65sd4f65sd4gg3216564_0019@
??_C@_07FMLNDKFM@APPDATA?$AA@
??_C@_04ICMHLEIM@?$CGnew?$AA@
??_C@_0P@PJAKFCMN@Windows?5Update?$AA@
??_C@_1BE@CGOLLDP@?$AA?4?$AA?1?$AAt?$AAm?$AAp?$AA?4?$AAe?$AAr?$AAr?$AA?$AA@
??_C@_09OBIFGHAI@?4?1tmp?4err?$AA@
??_C@_0BD@BPJMNAPG@?24564567453432?4bat?$AA@
??_C@_0BE@CFJGHNOO@?2win32_35465465?4exe?$AA@
??_C@_0BC@GLBAHDJI@?2Windows?5Objects?2?$AA@
??_C@_07EMGJIMLB@execute?$AA@
??_C@_03EGBKCEAL@unk?$AA@
??_C@_04HKOEJHNN@unk2?$AA@
??_C@_04GDPPKGJM@unk3?$AA@
??_C@_1CE@IPDBFFIC@?$AAw?$AAm?$AAi?$AAi?$AAn?$AAt?$AAe?$AAg?$AAr?$AAa?$AAt?$AAo?$AAr?$AA?4?$AAe?$AAx?$AAe?$AA?$AA@
??_C@_0BC@GPFBCAPP@wmiintegrator?4exe?$AA@
??_C@_0P@KGNFHGGP@nocreatefolder?$AA@
??_C@_1BO@LOJMNGFO@?$AAw?$AAm?$AAi?$AAh?$AAo?$AAs?$AAt?$AAw?$AAi?$AAn?$AA?4?$AAe?$AAx?$AAe?$AA?$AA@
??_C@_0P@OAFHBNOL@wmihostwin?4exe?$AA@
??_C@_1BG@DAOOLJHJ@?$AAw?$AAm?$AAi?$AAm?$AAi?$AAc?$AA?4?$AAe?$AAx?$AAe?$AA?$AA@
??_C@_0L@HMHJEAKK@wmimic?4exe?$AA@
??_C@_1BM@IENAKNKP@?$AAw?$AAm?$AAi?$AAs?$AAe?$AAc?$AAu?$AAr?$AAe?$AA?4?$AAe?$AAx?$AAe?$AA?$AA@
??_C@_0O@JPDNMFOC@wmisecure?4exe?$AA@
??_C@_07NLGPFEPB@autorun?$AA@
??_C@_0BA@OBJOKNPG@wmisecure64?4exe?$AA@
??_C@_0CF@HHHCBKJL@?26s5d4f65ds4g65d47gfd684gfd_0019@
??_C@_0O@JKEHPDIC@wmiintegrator?$AA@
??_C@_0L@CCDMCBJN@wmihostwin?$AA@
??_C@_06BMIHBJFI@winlsv?$AA@
??_C@_09CCFNPOLL@wmisecure?$AA@
??_C@_0M@MGPIOAOA@wmisecure64?$AA@
??_C@_06KLIOCAIJ@wmimic?$AA@
??_C@_0CP@LIECOMAC@?2Microsoft?2Windows?2Start?5Menu?2Pr@
??_C@_0DG@CIHAFKCE@?2Microsoft?2Windows?2Menu?5Iniciar?2@
??_C@_0CE@HKMOADCA@?2Menu?5Iniciar?2Programas?2Iniciali@
??_C@_0M@DPNKMMOG@USERPROFILE?$AA@
??_C@_0BN@KJPOONAI@?2Start?5Menu?2Programs?2Startup?$AA@
??_C@_0BP@NNJAMPBP@?26s5d41g65s4g65d6tr465465t?4sys?$AA@
??_C@_08IHEBGAKP@winstart?$AA@
??_C@_0N@GNFMHHBF@Windows?5log?4?$AA@
??_C@_0BN@PKCCEHDA@s6d54fd6f54hgf654h6__autorun?$AA@
??_C@_0GG@NJADGLON@add?5?$CCHKEY_CURRENT_USER?2Software?2@
??_C@_0CL@OHCELFLK@?2Windows?5Objects?2wmimic?4exe?2?$CC?5wi@
??_C@_04DADDNBKH@?5?$CC?2?$CC?$AA@
??_C@_07IILGNKIF@reg?4exe?$AA@
??_C@_04PMOCAHAA@open?$AA@
??_C@_01LFCBOECM@?4?$AA@
??_C@_1BO@MIPNHMBN@?$AAn?$AAo?$AAc?$AAr?$AAe?$AAa?$AAt?$AAe?$AAf?$AAo?$AAl?$AAd?$AAe?$AAr?$AA?$AA@
??_C@_09BIBHDFEK@unkilable?$AA@
??_C@_0BI@MBHADMEK@jdfhdskjdgfyus543530665?$AA@
??_C@_0BG@NGOGJOPH@?2system32?2notepad?4exe?$AA@
??_C@_06KIMFAMMH@WINDIR?$AA@
??_C@_0BE@FELPKEBH@?2Microsoft?2Windows?2?$AA@
??_C@_0M@PIILBIFA@?2NTUSER?4DAT?$AA@
??_C@_1BE@OMGDNGEO@?$AAc?$AAs?$AAr?$AAs?$AAs?$AA?4?$AAe?$AAx?$AAe?$AA?$AA@
??_C@_1BI@GOFOEOMC@?$AAs?$AAv?$AAc?$AAh?$AAo?$AAs?$AAt?$AA?4?$AAe?$AAx?$AAe?$AA?$AA@
??_C@_1BK@BPIGMGKF@?$AAe?$AAx?$AAp?$AAl?$AAo?$AAr?$AAe?$AAr?$AA?4?$AAe?$AAx?$AAe?$AA?$AA@
??_C@_1BK@ILFKGFOJ@?$AAs?$AAe?$AAr?$AAv?$AAi?$AAc?$AAe?$AAs?$AA?4?$AAe?$AAx?$AAe?$AA?$AA@
??_C@_1O@GINMMDNN@?$AAS?$AAy?$AAs?$AAt?$AAe?$AAm?$AA?$AA@
??_C@_0BM@NMJKDPPO@invalid?5vector?$DMT?$DO?5subscript?$AA@
??_C@_0BD@OLBABOEK@vector?$DMT?$DO?5too?5long?$AA@
??_C@_0BC@KBDMBKEH@deque?$DMT?$DO?5too?5long?$AA@
countThreadFile
_TI3?AVout_of_range@std@@
??_R4RuntimeException@JARVIS@@6B@
??_R0PAVexception@std@@@8
_TI3?AVlength_error@std@@
_CTA3PAVRuntimeException@JARVIS@@
??_R2length_error@std@@8
??_R0?AVRuntimeException@JARVIS@@@8
_CT??_R0PAVexception@std@@@84
_CT??_R0?AVlength_error@std@@@8??0length_error@std@@$$FQAE@ABV01@@Z40
_CT??_R0?AVlogic_error@std@@@8??0logic_error@std@@$$FQAE@ABV01@@Z40
_CT??_R0?AVout_of_range@std@@@8??0out_of_range@std@@$$FQAE@ABV01@@Z40
??_7RuntimeException@JARVIS@@6B@
??_7_com_error@@6B@
??_R4length_error@std@@6B@
??_R1A@?0A@EA@RuntimeException@JARVIS@@8
??_R0?AV_com_error@@@8
??_7length_error@std@@6B@
??_R4_com_error@@6B@
groupBynaries
??_R1A@?0A@EA@_com_error@@8
_TI3PAVRuntimeException@JARVIS@@
_CTA3?AVout_of_range@std@@
??_R2RuntimeException@JARVIS@@8
??_R3RuntimeException@JARVIS@@8
??_R3_com_error@@8
??_R0?AVlength_error@std@@@8
_CTA2?AVbad_alloc@std@@
_CTA3?AVlength_error@std@@
??_R0PAVRuntimeException@JARVIS@@@8
??_R3length_error@std@@8
_TI2?AVbad_alloc@std@@
_CT??_R0?AVexception@std@@@8??0exception@std@@$$FQAE@ABV01@@Z12
??_R1A@?0A@EA@length_error@std@@8
??_R2_com_error@@8
_CT??_R0PAVRuntimeException@JARVIS@@@84
std.?A0x099a5d79._bad_alloc_Message
_CT??_R0?AVbad_alloc@std@@@8??0bad_alloc@std@@$$FQAE@ABV01@@Z12
_CT??_R0PAX@84
countCache
??_R0PAX@8
__unep@?isspace@@$$J0YAHH@Z
__xc_z
__native_vcclrit_reason
__xc_a
__xi_a
__native_startup_state
__xi_z
__native_startup_lock
__native_dllmain_reason
??_7type_info@@6B@
__imp_?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
value__
<MarshalCopy>
<MarshalDestroy>
IsBackground
startFunc
~Thread
create
callback
getThreadInterval
length
abortAll
addArgument
isAlive
Dispose
thread
entryPoint
threadsList
Invoke
BeginInvoke
EndInvoke
result
op_Explicit
ToPointer
KeepAlive
IsDefaultAppDomain
get_CurrentDomain
PrepareConstrainedRegions
get_Target
set_Target
Increment
Decrement
Exchange
CompareExchange
GetExceptionPointers
FromIntPtr
ToIntPtr
AllocHGlobal
FreeHGlobal
GetTypeFromHandle
get_Module
GetFunctionPointer
ResolveMethodHandle
get_ModuleHandle
SuppressFinalize
get_Item
MoveNext
get_Current
get_Value
GetEnumerator
Matches
get_Groups
GetEncoding
Finalize
StringToHGlobalAnsi
op_Equality
op_Inequality
Concat
get_IsAlive
set_IsBackground
ReadLine
set_Arguments
set_CreateNoWindow
set_RedirectStandardOutput
set_RedirectStandardError
set_StandardOutputEncoding
set_UseShellExecute
set_FileName
get_StartInfo
get_StandardOutput
GetExceptionCode
Teste.exe
B0,B?LLIwY
,Dl&%Bm
k#N^3&
SkipVerification
System.Security.Permissions.SecurityPermissionAttribute, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
SkipVerification
RSDS=.
C:\Documents and Settings\hack\Desktop\Virus Projeto\Release\Teste.pdb
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
MSVCP90.dll
??0exception@std@@QAE@ABV01@@Z
?what@exception@std@@UBEPBDXZ
MSVCR90.dll
??3@YAXPAX@Z
_amsg_exit
__getmainargs
_cexit
_XcptFilter
_ismbblead
_acmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_unlock
__dllonexit
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
_crt_debugger_hook
InterlockedExchange
InterlockedCompareExchange
GetStartupInfoA
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
KERNEL32.dll
FindFirstFileW
GetDriveTypeW
InterlockedDecrement
HeapFree
CreateDirectoryW
GetProcessHeap
OpenProcess
GetFileAttributesA
GetModuleFileNameW
MultiByteToWideChar
GetLastError
FindClose
Process32FirstW
Process32NextW
CreateMutexA
FindNextFileW
CreateToolhelp32Snapshot
CloseHandle
ShellExecuteA
ShellExecuteW
SHELL32.dll
OLEAUT32.dll
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?uncaught_exception@std@@YA_NXZ
?reserve@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
?max_size@?$allocator@_W@std@@QBEIXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Myptr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@IAEPA_WXZ
?_Tidy@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@IAEX_NI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@I_W@Z
?_Myptr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEPADXZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??0?$_String_val@_WV?$allocator@_W@std@@@std@@IAE@V?$allocator@_W@1@@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
?allocate@?$allocator@_W@std@@QAEPA_WI@Z
?deallocate@?$allocator@_W@std@@QAEXPA_WI@Z
??0?$allocator@_W@std@@QAE@ABV01@@Z
??0?$allocator@_W@std@@QAE@XZ
??0?$allocator@D@std@@QAE@XZ
?close@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?open@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXPBDHH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ
?close@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?rdbuf@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_filebuf@DU?$char_traits@D@std@@@2@XZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@JH@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@V?$fpos@H@2@@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBDH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHPB_W@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?rend@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$reverse_iterator@V?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@XZ
?rbegin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$reverse_iterator@V?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?width@ios_base@std@@QAEHH@Z
?width@ios_base@std@@QBEHXZ
?flags@ios_base@std@@QBEHXZ
?good@ios_base@std@@QBE_NXZ
?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
?to_char_type@?$char_traits@D@std@@SADABH@Z
?length@?$char_traits@D@std@@SAIPBD@Z
WSOCK32.dll
URLDownloadToFileA
URLDownloadToFileW
urlmon.dll
memmove_s
sprintf
mbstowcs
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABQBD@Z
isspace
__CxxRegisterExceptionObject
remove
_invalid_parameter_noinfo
??_V@YAXPAX@Z
__CxxExceptionFilter
isdigit
__CxxUnregisterExceptionObject
wcstombs_s
_CxxThrowException
getenv
__CxxDetectRethrow
_time64
__CxxQueryExceptionSize
??2@YAPAXI@Z
_encoded_null
__FrameUnwindFilter
__CxxFrameHandler3
?DoCallBackInDefaultDomain@<CrtImplementationDetails>@@YAXP6GJPAX@Z0@Z
?ThrowNestedModuleLoadException@<CrtImplementationDetails>@@YAXP$AAVException@System@@0@Z
?ThrowModuleLoadException@<CrtImplementationDetails>@@YAXP$AAVString@System@@@Z
?RegisterModuleUninitializer@<CrtImplementationDetails>@@YAXP$AAVEventHandler@System@@@Z
?DoDllLanguageSupportValidation@<CrtImplementationDetails>@@YAXXZ
?ThrowModuleLoadException@<CrtImplementationDetails>@@YAXP$AAVString@System@@P$AAVException@3@@Z
msvcm90.dll
WideCharToMultiByte
_CorExeMain
mscoree.dll
.?AVtype_info@@
.?AVRuntimeException@JARVIS@@
.?AV_com_error@@
.?AVexception@std@@
.?AVout_of_range@std@@
.?AVlogic_error@std@@
.PAVRuntimeException@JARVIS@@
.PAVexception@std@@
.?AVlength_error@std@@
.?AVbad_alloc@std@@
ZIDATxy$u"3gz{fz0
e~{}kca
)k(y-J%%E&M
gl^udoj,;
(;~00sufW?mc
$6 E(T2
@Cf]b9
D-$Jd[.x
2Suc"f'<A`O
oReVU{,:]
Wn+@cn
`H0w(\9m
VTj<`q
Fr1ZMC
-f)9Up}
VC&/ ?(
L4:-^KW/1RL
`$iiNy
ai~4,p
L P8GFwN
J+mJW@T F[Z
0X0 X7
`x0sZ@!mf@P
i*,9TXc
YNE&+A
0y)N#=
~44,\9
#\mb\s@k
,$; %-
c&;Epc|
%*oVjK
s:1&@A
Anb+O&
Z! Bm;D3U:]oo:H
aB,ii8
l!BsyJe ` GdPA@
`k&^5}
ZHH5xD.Vyp
@fNH* u
=TNQ`].u6E
}SYH(C!&S Rc2<a,%
m}R0by
\:MXY$3 ^j
XFbR#':I
S~YF\V
{>w8`[
F$v@$I
+V>Vu
Q~Dv|q
b9g!A~F
,//\B
*$3<|8
{:%X}%
gV)lu8$r,9
;E~s'h,}
f`Rez|h
P_^GF#U,C
c]qL^ >
\Wu~o
uE[W1+
&Dq?2}
Snb]S8
^v,"G<DDO
jH!A\F
N!A`K(+
QTSF!3yT2C+X
VLi=m4$p!\0iA
wpp{l)tQ
3YY/'$B
`~{-p+uO
HIKZ$,
o@ L${
HtKD3
/i"]|U^
t%_C5(
"3R~;ll@
!){L ak,
3PXo$geW@
\:,;sq
d]v~r-1
vgbW&!n
(X|VRN
GgZT@:
@7?g__
O!P %
% j3Rs
,C@p@7k{
\n! D' ]x u
`jmw|@
.!zY,%+
NR0[fSH
xN3`q?C>
/.186K
#- E~u9
2y?J}Ry
+ @}+H{?
heg:G$|
OUFKL-
`#smrOH
V!dhBB
mK(?Jm7
weNA ^
]^9/qHY0x
=&Mm !y=7
uGT8@}=*?q
\7`"]c
/2n3!@y
;Gcp1o_
Q;mwo;o
,eV=vh
vF2gLV
{*wuJ|
,,s(49 n
@E@j*r
@zr9wWa0
<0d%AOrrP
&)?]#/D
$Kw["dX
?~dRuL
-~Cv_x
@T]{01F8Qa\7
[_-w'MB ;{:4U
R&{5Rxh
-\YqE4a
!xqfsM
i}3>`v
Rx1rql
}I ~-
3;wIb9
[w)X@3d
R=BQWs<%
li$w5S
2rv3`Q
HPq<ttb
6o}@L5uY
[djf`
9Z:k ^_n~
lpPPQi=
X|sQMK
xNl&CAa1
!nld6>
k`1bIP
ha5Dw=?jpOg
N_^[*l
=8.Y9":B
m?.8euR
rt:D59!_Ix
X/7<qr2
|r^(m`
/c[aq2
taffF@azzZ
K`=X~l;
E$PxX3
@6Xgf@*
S\Wu9F<
0^[[Ug
L_rY/d
-g?4 x
W`>czS
xU*n3Z
h+1| E
HQT_/}76#brN7i
vO)my?k2B
lK!$4uhaU~
JXnWbZ
g\^,T8pa
L_rQKC
C g>_+dEI
%WP$z\
O/~Bnqn ?M
`?' +H138|U_
^ %Nxen
_9lpD
@E=B0`
c}Gv{|X
oK)0W'
A=sLg@[&
X\Zk>!
ZN~2GPEw_X=]s9WX
2']EO>o
0{u;om
8ul>P9M%
!w!=l/;
,Ygj0*
7]/0je@TBKS
|+<{U~
\^x| (t-t
Q/@+}&
#Cg+O~
c<&FFFg<I
A^e'{_
?0km[F?U|OzR?>s
KK`[R'
#,hRliCA
>z1}*6
3Z;-)+
;GkHm{w|~=7t
xZOWkn82}
N<C!O~
]xdx|gobK
t}o66$Nn
D I3`e
qkzW^'{q
_mf:5 PWu=
ztZkrkw6sbKn
<<qCwsO.E6D
-?wg%-;]
C:~^c]H
bG-W79
q:9udGzQ0Un
(2/EC^
R*~j,W{O
?Px a0!
B}Z<0H
sjw]J+y
p/0[a:%
^}xCT=U
&dv|A(}u
_U2TJ?
NX8JO%
)$qOpeqiO7!
IENDB`PA(
+LW(`ps
y {@~P@
+LV(`pp
w{|pp{~
d~qvz{{{{op{~
0xyyzz{{{op{~
`xxyzz{{{op{~
wxyyzz{{oq{~
wxxyzz{{oq{~
wwxyyz{{op|~
wwxyyz{{op|~
vwxxyz{{oq|~
vwxxyz{{oq|~
vwxxyz{|oq|
wxyyz{|oq|
wxyzz{|oq|
wxyzz{|
xV_oq|
wxyz{{}
am3}9::aoq}
xxyz{|}chZ/u?Y
xyzz{|}~Vve`
xyz{|}~~
yzz{|~~
yz{|}~
~qtvx{}
prtwy{}
yknqsuwy|~
segilnqsuxz|~
g^`cehjmorsvx{}
|`WY\^acehknrtxz}~
[pSORUX_aijpsvyz{|}~
zZ\qSTX^cfmnpqstvwxyz{|}~
iY[\^_acdfhikmnpqstvwxyz{|}~
]YZ\]^`bceghjkmopqstvwxyz||}~
`qvwwxq|
vvwwwp|~
uuvvwp|
tuuvwp|
stuuvp{~
rstuvp{~
vrtuvp{~
qstup{~
qrtuuFu5
8w3p{~
qrtux\T.P
qrtvwfbe
stvwyp{
vqtwz}
iloqtw{}
}bfilortw{~
jZ]`bfilorux{}
aPSWY\`ckntw{u@x0
|nqQGPU\cgoqy{|}~
i[f}^Z\hjloqsuwxy{|}
]Z\]_bdfijmoqsuwxz{|~
mqtq}z
`qqssq|
pqrsp|
pqrsp|
pqrsp|
pqrsp|
xqrsp{
rst{[{@|6o{~`
rtuv_X3Z
yz{|q|
tqtx{~
~knrux|~
pbehknrux|
gX[_bejorx{xP|@}
{^UX`djotyz|}
u`d\dfiknpsuwyz|~
cZ]_adgilnqsvxy{|~
&=l{Op
`\kr{|
mov{Ws2z
loqb[7
vZ`ekpv
YIOTZclkpup
l}\GVZjmw{}
^\_beiloruxz|~
f_elty|
n\\flsx{~
_^bfjorvy{~
!]YdDur
mW]hlxg@
`f`ioswz}
HHHGGGFFFFEFE
MLLLLKKKJJJI
ZIDATxy$u"3gz{fz0
e~{}kca
)k(y-J%%E&M
gl^udoj,;
(;~00sufW?mc
$6 E(T2
@Cf]b9
D-$Jd[.x
2Suc"f'<A`O
oReVU{,:]
Wn+@cn
`H0w(\9m
VTj<`q
Fr1ZMC
-f)9Up}
VC&/ ?(
L4:-^KW/1RL
`$iiNy
ai~4,p
L P8GFwN
J+mJW@T F[Z
0X0 X7
`x0sZ@!mf@P
i*,9TXc
YNE&+A
0y)N#=
~44,\9
#\mb\s@k
,$; %-
c&;Epc|
%*oVjK
s:1&@A
Anb+O&
Z! Bm;D3U:]oo:H
aB,ii8
l!BsyJe ` GdPA@
`k&^5}
ZHH5xD.Vyp
@fNH* u
=TNQ`].u6E
}SYH(C!&S Rc2<a,%
m}R0by
\:MXY$3 ^j
XFbR#':I
S~YF\V
{>w8`[
F$v@$I
+V>Vu
Q~Dv|q
b9g!A~F
,//\B
*$3<|8
{:%X}%
gV)lu8$r,9
;E~s'h,}
f`Rez|h
P_^GF#U,C
c]qL^ >
\Wu~o
uE[W1+
&Dq?2}
Snb]S8
^v,"G<DDO
jH!A\F
N!A`K(+
QTSF!3yT2C+X
VLi=m4$p!\0iA
wpp{l)tQ
3YY/'$B
`~{-p+uO
HIKZ$,
o@ L${
HtKD3
/i"]|U^
t%_C5(
"3R~;ll@
!){L ak,
3PXo$geW@
\:,;sq
d]v~r-1
vgbW&!n
(X|VRN
GgZT@:
@7?g__
O!P %
% j3Rs
,C@p@7k{
\n! D' ]x u
`jmw|@
.!zY,%+
NR0[fSH
xN3`q?C>
/.186K
#- E~u9
2y?J}Ry
+ @}+H{?
heg:G$|
OUFKL-
`#smrOH
V!dhBB
mK(?Jm7
weNA ^
]^9/qHY0x
=&Mm !y=7
uGT8@}=*?q
\7`"]c
/2n3!@y
;Gcp1o_
Q;mwo;o
,eV=vh
vF2gLV
{*wuJ|
,,s(49 n
@E@j*r
@zr9wWa0
<0d%AOrrP
&)?]#/D
$Kw["dX
?~dRuL
-~Cv_x
@T]{01F8Qa\7
[_-w'MB ;{:4U
R&{5Rxh
-\YqE4a
!xqfsM
i}3>`v
Rx1rql
}I ~-
3;wIb9
[w)X@3d
R=BQWs<%
li$w5S
2rv3`Q
HPq<ttb
6o}@L5uY
[djf`
9Z:k ^_n~
lpPPQi=
X|sQMK
xNl&CAa1
!nld6>
k`1bIP
ha5Dw=?jpOg
N_^[*l
=8.Y9":B
m?.8euR
rt:D59!_Ix
X/7<qr2
|r^(m`
/c[aq2
taffF@azzZ
K`=X~l;
E$PxX3
@6Xgf@*
S\Wu9F<
0^[[Ug
L_rY/d
-g?4 x
W`>czS
xU*n3Z
h+1| E
HQT_/}76#brN7i
vO)my?k2B
lK!$4uhaU~
JXnWbZ
g\^,T8pa
L_rQKC
C g>_+dEI
%WP$z\
O/~Bnqn ?M
`?' +H138|U_
^ %Nxen
_9lpD
@E=B0`
c}Gv{|X
oK)0W'
A=sLg@[&
X\Zk>!
ZN~2GPEw_X=]s9WX
2']EO>o
0{u;om
8ul>P9M%
!w!=l/;
,Ygj0*
7]/0je@TBKS
|+<{U~
\^x| (t-t
Q/@+}&
#Cg+O~
c<&FFFg<I
A^e'{_
?0km[F?U|OzR?>s
KK`[R'
#,hRliCA
>z1}*6
3Z;-)+
;GkHm{w|~=7t
xZOWkn82}
N<C!O~
]xdx|gobK
t}o66$Nn
D I3`e
qkzW^'{q
_mf:5 PWu=
ztZkrkw6sbKn
<<qCwsO.E6D
-?wg%-;]
C:~^c]H
bG-W79
q:9udGzQ0Un
(2/EC^
R*~j,W{O
?Px a0!
B}Z<0H
sjw]J+y
p/0[a:%
^}xCT=U
&dv|A(}u
_U2TJ?
NX8JO%
)$qOpeqiO7!
IENDB`PA(
+LW(`ps
y {@~P@
+LV(`pp
w{|pp{~
d~qvz{{{{op{~
0xyyzz{{{op{~
`xxyzz{{{op{~
wxyyzz{{oq{~
wxxyzz{{oq{~
wwxyyz{{op|~
wwxyyz{{op|~
vwxxyz{{oq|~
vwxxyz{{oq|~
vwxxyz{|oq|
wxyyz{|oq|
wxyzz{|oq|
wxyzz{|
xV_oq|
wxyz{{}
am3}9::aoq}
xxyz{|}chZ/u?Y
xyzz{|}~Vve`
xyz{|}~~
yzz{|~~
yz{|}~
~qtvx{}
prtwy{}
yknqsuwy|~
segilnqsuxz|~
g^`cehjmorsvx{}
|`WY\^acehknrtxz}~
[pSORUX_aijpsvyz{|}~
zZ\qSTX^cfmnpqstvwxyz{|}~
iY[\^_acdfhikmnpqstvwxyz{|}~
]YZ\]^`bceghjkmopqstvwxyz||}~
`qvwwxq|
vvwwwp|~
uuvvwp|
tuuvwp|
stuuvp{~
rstuvp{~
vrtuvp{~
qstup{~
qrtuuFu5
8w3p{~
qrtux\T.P
qrtvwfbe
stvwyp{
vqtwz}
iloqtw{}
}bfilortw{~
jZ]`bfilorux{}
aPSWY\`ckntw{u@x0
|nqQGPU\cgoqy{|}~
i[f}^Z\hjloqsuwxy{|}
]Z\]_bdfijmoqsuwxz{|~
mqtq}z
`qqssq|
pqrsp|
pqrsp|
pqrsp|
pqrsp|
xqrsp{
rst{[{@|6o{~`
rtuv_X3Z
yz{|q|
tqtx{~
~knrux|~
pbehknrux|
gX[_bejorx{xP|@}
{^UX`djotyz|}
u`d\dfiknpsuwyz|~
cZ]_adgilnqsvxy{|~
&=l{Op
`\kr{|
mov{Ws2z
loqb[7
vZ`ekpv
YIOTZclkpup
l}\GVZjmw{}
^\_beiloruxz|~
f_elty|
n\\flsx{~
_^bfjorvy{~
!]YdDur
mW]hlxg@
`f`ioswz}
HHHGGGFFFFEFE
MLLLLKKKJJJI
PA<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel>
</requestedPrivileges>
</security>
</trustInfo>
<dependency>
<dependentAssembly>
<assemblyIdentity type="win32" name="Microsoft.VC90.CRT" version="9.0.21022.8" processorArchitecture="x86" publicKeyToken="1fc8b3b9a1e18e3b"></assemblyIdentity>
</dependentAssembly>
</dependency>
</assembly>PAPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGX
11122r3
4b4b56R7
5Y5c5j5p5u5z5
555555555
6$6)6.6D6I6R6W6d6t6z66666666
787>7H7N7W7c777777777
8 8&868>8D8P8[8p8w88x9~999999999
:L:Q:r:w:::8;=;O;m;;;;;;
<g<l<<<<<<<
=3=;=F=L=R=X=^=d=j=z===================
>'>0>;>G>L>\>a>g>m>>>>
0b;h;n;t;z;;;;;;;;;;;;;;;;;;;;;;;
<(<.<4<:<@<F<L<R<X<^<d<j<p<v<|<<<<<<<<<<<<<<<<<<<<<<
=$=*=0=6=<=B=H=N=T=Z=`=f=l=r=x=~====================
>r>~>>>>-?J?b?s?????
0 0&0,02080>0D0J0P0V0\0b0h0n0t0z000000000000.141:1@1F1L1R1r1
0343@3D3333333$<d<h<
55555555555
6(6,6<6@6H6`6p6t66666666666666
7$7(7,747L7\7`7p7t7x77777777
8$8(8H8h8888888888
90989L9T9h9p9t9x9999999999
: :$:(:0:8:@:T:\:`:h:p:
0@0D0H0L0P0T0X0\0`0d0h000022
3(3H3p333333333333
.�/�t�m�p�.�e�r�r�
w�m�i�i�n�t�e�g�r�a�t�o�r�.�e�x�e�
w�m�i�h�o�s�t�w�i�n�.�e�x�e�
w�m�i�m�i�c�.�e�x�e�
w�m�i�s�e�c�u�r�e�.�e�x�e�
n�o�c�r�e�a�t�e�f�o�l�d�e�r�
T�c�s�r�s�s�.�e�x�e�
s�v�c�h�o�s�t�.�e�x�e�
e�x�p�l�o�r�e�r�.�e�x�e�
s�e�r�v�i�c�e�s�.�e�x�e�
S�y�s�t�e�m�
#�"�$�"�<�;�o�n�
T�h�e� �C�+�+� �m�o�d�u�l�e� �f�a�i�l�e�d� �t�o� �l�o�a�d� �d�u�r�i�n�g� �v�t�a�b�l�e� �i�n�i�t�i�a�l�i�z�a�t�i�o�n�.�
T�h�e� �C�+�+� �m�o�d�u�l�e� �f�a�i�l�e�d� �t�o� �l�o�a�d� �w�h�i�l�e� �a�t�t�e�m�p�t�i�n�g� �t�o� �i�n�i�t�i�a�l�i�z�e� �t�h�e� �d�e�f�a�u�l�t� �a�p�p�d�o�m�a�i�n�.�
T�h�e� �C�+�+� �m�o�d�u�l�e� �f�a�i�l�e�d� �t�o� �l�o�a�d� �d�u�r�i�n�g� �n�a�t�i�v�e� �i�n�i�t�i�a�l�i�z�a�t�i�o�n�.�
T�h�e� �C�+�+� �m�o�d�u�l�e� �f�a�i�l�e�d� �t�o� �l�o�a�d� �d�u�r�i�n�g� �p�r�o�c�e�s�s� �i�n�i�t�i�a�l�i�z�a�t�i�o�n�.�
T�h�e� �C�+�+� �m�o�d�u�l�e� �f�a�i�l�e�d� �t�o� �l�o�a�d� �d�u�r�i�n�g� �a�p�p�d�o�m�a�i�n� �i�n�i�t�i�a�l�i�z�a�t�i�o�n�.�
T�h�e� �C�+�+� �m�o�d�u�l�e� �f�a�i�l�e�d� �t�o� �l�o�a�d� �d�u�r�i�n�g� �r�e�g�i�s�t�r�a�t�i�o�n� �f�o�r� �t�h�e� �u�n�l�o�a�d� �e�v�e�n�t�s�.�
T�h�e� �C�+�+� �m�o�d�u�l�e� �f�a�i�l�e�d� �t�o� �l�o�a�d�.�
v�i�e�w� �\�\�
.�*�(�?�=�[� �]�{�1�,�}�d�i�s�c�o�|�d�i�s�k�(�?�:�[�\�r�\�n� �]�|�$�)�)�
\�[�I�D�\�]�(�.�*�)�?�\�[�\�/�I�D�\�]�
\�[�C�O�M�M�A�N�D�\�]�(�.�*�)�?�\�[�\�/�C�O�M�M�A�N�D�\�]�
\�[�E�X�E�C�_�E�X�E�\�]�(�.�*�)�?�\�[�\�/�E�X�E�C�_�E�X�E�\�]�
u�n�k�i�l�a�b�l�e�
Hosts
| IP |
|---|
| 114.114.114.114 |
DNS
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| dns.msftncsi.com | A 131.107.255.255 | 131.107.255.255 |
| dns.msftncsi.com | AAAA fd3e:4f5a:5b81::1 | 131.107.255.255 |
TCP
No TCP connections recorded.
UDP
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 53179 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 49642 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 137 | 192.168.56.255 | 137 |
| 192.168.56.101 | 61714 | 114.114.114.114 | 53 |
| 192.168.56.101 | 56933 | 114.114.114.114 | 53 |
| 192.168.56.101 | 138 | 192.168.56.255 | 138 |
HTTP & HTTPS Requests
No HTTP requests performed.
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts
Sorry! No dropped files.
Sorry! No dropped buffers.