Static Analysis

PE Compile Time

2025-03-09 01:05:20

PE Imphash

573bb7b41bc641bd95c0f5eec13c233b

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x000065b1 0x00006600 6.46727735025
.rdata 0x00008000 0x00001358 0x00001400 5.10392905216
.data 0x0000a000 0x0001fb38 0x00000600 4.03045923971
.ndata 0x0002a000 0x00010000 0x00000000 0.0
.rsrc 0x0003a000 0x00022910 0x00022a00 6.0647294128

Resources

Name Offset Size Language Sub-language File type
RT_ICON 0x0005be78 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US Device independent bitmap graphic, 16 x 32 x 32, image size 1024
RT_ICON 0x0005be78 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US Device independent bitmap graphic, 16 x 32 x 32, image size 1024
RT_ICON 0x0005be78 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US Device independent bitmap graphic, 16 x 32 x 32, image size 1024
RT_ICON 0x0005be78 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US Device independent bitmap graphic, 16 x 32 x 32, image size 1024
RT_ICON 0x0005be78 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US Device independent bitmap graphic, 16 x 32 x 32, image size 1024
RT_ICON 0x0005be78 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US Device independent bitmap graphic, 16 x 32 x 32, image size 1024
RT_DIALOG 0x0005c500 0x00000060 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_DIALOG 0x0005c500 0x00000060 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_DIALOG 0x0005c500 0x00000060 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_ICON 0x0005c560 0x0000005a LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_MANIFEST 0x0005c5c0 0x00000349 LANG_ENGLISH SUBLANG_ENGLISH_US XML 1.0 document, ASCII text, with very long lines (841), with no line terminators

Imports

Library ADVAPI32.dll:
0x408000 RegEnumValueW
0x408004 RegEnumKeyW
0x408008 RegQueryValueExW
0x40800c RegSetValueExW
0x408010 RegCloseKey
0x408014 RegDeleteValueW
0x408018 RegDeleteKeyW
0x408024 OpenProcessToken
0x408028 RegOpenKeyExW
0x40802c RegCreateKeyExW
Library SHELL32.dll:
0x408178 SHBrowseForFolderW
0x40817c SHGetFileInfoW
0x408180 SHFileOperationW
0x408184 ShellExecuteExW
Library ole32.dll:
0x408290 CoCreateInstance
0x408294 OleUninitialize
0x408298 OleInitialize
0x40829c IIDFromString
0x4082a0 CoTaskMemFree
Library COMCTL32.dll:
0x408034 ImageList_Destroy
0x408038 None
0x40803c ImageList_AddMasked
0x408040 ImageList_Create
Library USER32.dll:
0x40818c MessageBoxIndirectW
0x408190 GetDlgItemTextW
0x408194 SetDlgItemTextW
0x408198 CreatePopupMenu
0x40819c AppendMenuW
0x4081a0 TrackPopupMenu
0x4081a4 OpenClipboard
0x4081a8 EmptyClipboard
0x4081ac SetClipboardData
0x4081b0 CloseClipboard
0x4081b4 IsWindowVisible
0x4081b8 CallWindowProcW
0x4081bc GetMessagePos
0x4081c0 CheckDlgButton
0x4081c4 LoadCursorW
0x4081c8 SetCursor
0x4081cc GetSysColor
0x4081d0 SetWindowPos
0x4081d4 GetWindowLongW
0x4081d8 IsWindowEnabled
0x4081dc SetClassLongW
0x4081e0 GetSystemMenu
0x4081e4 EnableMenuItem
0x4081e8 GetWindowRect
0x4081ec ScreenToClient
0x4081f0 EndDialog
0x4081f4 RegisterClassW
0x4081fc CharPrevW
0x408200 GetClassInfoW
0x408204 DialogBoxParamW
0x408208 CharNextW
0x40820c ExitWindowsEx
0x408210 DestroyWindow
0x408214 CreateDialogParamW
0x408218 SetTimer
0x40821c SetWindowTextW
0x408220 PostQuitMessage
0x408224 SetForegroundWindow
0x408228 ShowWindow
0x40822c wsprintfW
0x408230 SendMessageTimeoutW
0x408234 FindWindowExW
0x408238 IsWindow
0x40823c GetDlgItem
0x408240 SetWindowLongW
0x408244 LoadImageW
0x408248 GetDC
0x40824c ReleaseDC
0x408250 EnableWindow
0x408254 InvalidateRect
0x408258 SendMessageW
0x40825c DefWindowProcW
0x408260 BeginPaint
0x408264 GetClientRect
0x408268 FillRect
0x40826c DrawTextW
0x408270 EndPaint
0x408274 CharNextA
0x408278 wsprintfA
0x40827c DispatchMessageW
0x408280 CreateWindowExW
0x408284 PeekMessageW
0x408288 GetSystemMetrics
Library GDI32.dll:
0x408048 GetDeviceCaps
0x40804c SetBkColor
0x408050 SelectObject
0x408054 DeleteObject
0x408058 CreateBrushIndirect
0x40805c CreateFontIndirectW
0x408060 SetBkMode
0x408064 SetTextColor
Library KERNEL32.dll:
0x40806c lstrcmpiA
0x408070 CreateFileW
0x408074 GetTempFileNameW
0x408078 RemoveDirectoryW
0x40807c CreateProcessW
0x408080 CreateDirectoryW
0x408084 CreateThread
0x408088 GlobalLock
0x40808c GlobalUnlock
0x408090 GetDiskFreeSpaceW
0x408094 WideCharToMultiByte
0x408098 lstrcpynW
0x40809c lstrlenW
0x4080a0 SetErrorMode
0x4080a4 GetVersionExW
0x4080a8 GetCommandLineW
0x4080ac GetTempPathW
0x4080b8 WriteFile
0x4080bc ExitProcess
0x4080c0 GetCurrentProcess
0x4080c4 GetModuleFileNameW
0x4080c8 GetLastError
0x4080cc GetFileSize
0x4080d0 GetTickCount
0x4080d4 Sleep
0x4080d8 SetFileAttributesW
0x4080dc GetFileAttributesW
0x4080e4 MoveFileW
0x4080e8 GetFullPathNameW
0x4080ec GetShortPathNameW
0x4080f0 SearchPathW
0x4080f4 CompareFileTime
0x4080f8 SetFileTime
0x4080fc CloseHandle
0x408100 lstrcmpiW
0x408104 lstrcmpW
0x40810c GlobalFree
0x408110 GlobalAlloc
0x408114 GetModuleHandleW
0x408118 LoadLibraryExW
0x40811c FreeLibrary
0x408128 lstrlenA
0x40812c MultiByteToWideChar
0x408130 ReadFile
0x408134 SetFilePointer
0x408138 FindClose
0x40813c FindNextFileW
0x408140 FindFirstFileW
0x408144 DeleteFileW
0x408148 MulDiv
0x40814c lstrcpyA
0x408150 MoveFileExW
0x408154 lstrcatW
0x408158 GetSystemDirectoryW
0x40815c GetProcAddress
0x408160 GetModuleHandleA
0x408164 GetExitCodeProcess
0x408168 WaitForSingleObject
0x40816c CopyFileW
!This program cannot be run in DOS mode.
`.rdata
@.data
.ndata
s495L
Instuj
softua
NulluX
UVWj _3
L$bf-S
D$ Pj(
D$(Ph0
D$,UPU
Vj%UUU
D$$+D$
D$,+D$$P
WWWWjn
\u f9O
90u'AAf
l$(9l$(tr
+D$(PV
UXTHEME
USERENV
SETUPAPI
APPHELP
PROPSYS
DWMAPI
CRYPTBASE
OLEACC
CLBCATQ
NTMARTA
RichEd32
RichEd20
RegEnumValueW
RegEnumKeyW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegOpenKeyExW
RegCreateKeyExW
ADVAPI32.dll
SHFileOperationW
SHGetFileInfoW
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteExW
SHELL32.dll
CoTaskMemFree
IIDFromString
CoCreateInstance
OleUninitialize
OleInitialize
ole32.dll
ImageList_Destroy
ImageList_AddMasked
ImageList_Create
COMCTL32.dll
EndPaint
DrawTextW
FillRect
GetClientRect
BeginPaint
DefWindowProcW
SendMessageW
InvalidateRect
EnableWindow
ReleaseDC
LoadImageW
SetWindowLongW
GetDlgItem
IsWindow
FindWindowExW
SendMessageTimeoutW
wsprintfW
ShowWindow
SetForegroundWindow
PostQuitMessage
SetWindowTextW
SetTimer
CreateDialogParamW
DestroyWindow
ExitWindowsEx
CharNextW
DialogBoxParamW
GetClassInfoW
CreateWindowExW
SystemParametersInfoW
RegisterClassW
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongW
IsWindowEnabled
GetWindowLongW
SetWindowPos
GetSysColor
SetCursor
LoadCursorW
CheckDlgButton
GetMessagePos
CallWindowProcW
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
AppendMenuW
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharPrevW
CharNextA
wsprintfA
DispatchMessageW
PeekMessageW
USER32.dll
SelectObject
SetTextColor
SetBkMode
CreateFontIndirectW
CreateBrushIndirect
DeleteObject
GetDeviceCaps
SetBkColor
GDI32.dll
MulDiv
DeleteFileW
FindFirstFileW
FindNextFileW
FindClose
SetFilePointer
ReadFile
MultiByteToWideChar
lstrlenA
GetPrivateProfileStringW
WritePrivateProfileStringW
FreeLibrary
LoadLibraryExW
GetModuleHandleW
GlobalAlloc
GlobalFree
ExpandEnvironmentStringsW
lstrcmpW
lstrcmpiW
CloseHandle
SetFileTime
CompareFileTime
SearchPathW
GetShortPathNameW
GetFullPathNameW
MoveFileW
SetCurrentDirectoryW
GetFileAttributesW
SetFileAttributesW
GetTickCount
GetFileSize
GetLastError
GetModuleFileNameW
GetCurrentProcess
ExitProcess
CopyFileW
SetEnvironmentVariableW
GetWindowsDirectoryW
GetTempPathW
GetCommandLineW
GetVersionExW
SetErrorMode
lstrlenW
lstrcpynW
WideCharToMultiByte
GetDiskFreeSpaceW
GlobalUnlock
GlobalLock
CreateThread
CreateDirectoryW
CreateProcessW
RemoveDirectoryW
lstrcmpiA
CreateFileW
GetTempFileNameW
WriteFile
lstrcpyA
MoveFileExW
lstrcatW
GetSystemDirectoryW
GetProcAddress
GetModuleHandleA
GetExitCodeProcess
WaitForSingleObject
KERNEL32.dll
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VERSION
SHGetFolderPathW
SHFOLDER
SHAutoComplete
SHLWAPI
SHGetKnownFolderPath
SHELL32
InitiateShutdownW
RegDeleteKeyExW
ADVAPI32
GetUserDefaultUILanguage
GetDiskFreeSpaceExW
SetDefaultDllDirectories
KERNEL32
[Rename]
%ls=%ls
h71+xME;
>70|&"
b=6/|_UI
^@91~g[O
R*% l]RG
T93,vmaT
P>70xsfX
nnmbMMMF<<<:999:888<DDDDabb\~~~
J1+&lmaT
J@91v|n_
@92,l}pa
_^\|'&&R
"""r h...fIIIpnnm
P,,+fttr
n))(|omi
BMF@nri^
f*(%l52/rA=:~DA=
530~)'%x$!xi]Q
ZE=5vk_R
Fqpo $$#
0~~} ]\[
tEXtSoftware
GLDPNG ver 3.4q
tpNGGLD3
3++?-==)**zudd
2sr)#+
9W2:%%%
8l4}:|
:thdIII
HY5E'e
7Ru]#U
cOVq,HO?
-^%6'`
UWWWnS1>$>
R2r)9=
"^nh>N
t &Al_t<
Ak(pK_
e:9C5S%
6giJ2f
>$BH HH`?mb
9/7><?<!b
Arood,
C&iyG(
&o>qFbf
JG Jkmg
~ju9^{$cC"
a{(8t7
tb_Vw#V?
fdRz6?
[#bhSx
<*AH`;
|Rj:%0
2s(%-S
:icF3SV.b
L3b_`pd,
`Ek7Rbj&
+o,sy+
.@f:Pd
VkI/`+XB
o&Shl"
",`yX4-
)S2_P(
SYIDAT@V
aS3s)3
\+\3\C\
\h(=.
*Z/A@d
h5V@Pa
7!)%MR
%7%Xiu.~vK
<f'iyE
^CJ++O
STQyN"
S2(">Q&
a)`-p[
/?V_+>V
4L^/@
*I,X)g
Em:vwTv
3hap<MX
nD<'69
k).5W$ "
_@3%(h
3 P` @P
=x7' L@@
=gNNZF
!S@ nu
B(;+raq1+|
T&La;ma0
VzQlVhS
(Fp\@@
?fP= x
w@(?,;
8)}UA@
xo @v
!l +7O
,ihH#K
->~UT_G
?$z5MZ
T7<"bO
;hl-C^
jHGhL"M[
CrssH)~
|*,, P
^3PfSY
RA91pXNC
*-'"Tg[N
,'!Lvi[
`_]z766d)('
KC9~($~>:6
93,j5/)fA:2vh]R
DE<3dZPE
WMC|@8/^
0PG=nvk_
_``n??@LKLM`
974j<5.tpcT
D<3Pi`U
H@7J~tj
mllv{zy
73/z=95
E>7zmaS
5.&(ZRILjbZbjbZ`XPHH1*"$
<?xml version="1.0" encoding="UTF-8" standalone="yes"?><assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"><assemblyIdentity version="1.0.0.0" processorArchitecture="*" name="Nullsoft.NSIS.exehead" type="win32"/><description>Nullsoft Install System v3.11</description><trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"><security><requestedPrivileges><requestedExecutionLevel level="requireAdministrator" uiAccess="false"/></requestedPrivileges></security></trustInfo><compatibility xmlns="urn:schemas-microsoft-com:compatibility.v1"><application><supportedOS Id="{8e0f7a12-bfb3-4fe8-b9a5-48fd50a15a9a}"/><supportedOS Id="{1f676c76-80e1-4239-95bb-83d0f6d0da78}"/><supportedOS Id="{4a2f28e3-53b9-4441-ba9c-d69d4a4a6e38}"/><supportedOS Id="{35138b9a-5d96-4fbd-8e2d-a2440225f93a}"/></application></compatibility></assembly>
NullsoftInst
PBk)B0
zP'.[>3
*M8$Q
TR,D#;Fq
VR7J2,
syl`>e2
+[w*]v
tf6qkd
!TCGUOe
54.MKk
M8Z!xk
|<W(=[R
PDY+oE
.l%Irh
`3V%C|
KuZ `h
Z[a4p<@#t
(B[\&;
fc2~jM
w%32`Op
,k8el<
Mm8/F
:Fc2pP
xn]J7$
Q$7s2R
;ahZ',
s\T;j5Y
`D|%pG
eb8+/|
XO$5/=
F:<9`J
/}ZM0K
@zdFs~
3|"+qG
2ssES+
rIOa=n
k7;{6C
3bQZ-.
w|$pgAv
q7O[5G9
`2<ptT
1r8">!
`"cH(4
VZX{s6?
'{paZo
Z zl)-2
:?(Y]A
P/Po[
.{hri4
"*&09?
$Tv(YH|d7
EM}8mAi
FWh#q
O0OqwL
=G6&\g
hf;\nR
5yq*y
}0ueD\
<4~7bw
6V8b;\
yu83bI9
8vu2aV
hG!?+f,
<F LqC
G&d/o
cdztnX0
+@":l?R
{TrMR-
aPM2LV
+DBc,m
l$ggI9
\;9C9@
?OT87(
w^f8`O^
>&wX`b`
:%UHy]
7g%h<K
P(<hiZX
Kf'$q,
9RhL3c]
vma`>@
^k-zA7k+
:vQq?w
H-|y6y>'^!E
a9?m#I
(*OgCZ
&Ss)dy
+7},A<6
$_AX;'wmS
B2C}n^
[2(-iiSQ
lNAl={
5x~]NA
?G4IRVZ
xc?dOn
Q*}_p^
LKT9Zx
FHuoYy
9#|Qgg
)K `@C
:"nPw?
~-k}H1?
5B^e_Dx
\U*"@P1;
$VfMF9
C{k$\.
/DfVE{n
yl vU~N
qpv~g?o.n
>0K8q/F
u'.Gj*?w.
-XQqYG
}$L: !
8=Xw{W!
J pzKk"
O'"&}f
2mbwVL"
k]2c<M
Zl(:G}
zWC4J'
B)&evo
:1?0_H
<-V-Y u
#U@_~S
=ba|x3
PP-.im
"U9>4"
[*O=M}
~\bXb=5
@v x@Z
g%s)l%K
s~/+M0
f#BYA\E
<"mqFOO
cwumm
[F"lrx
6LG_>_
nks>us
a{,NIY
l/%.*H
/`%^Y?
(EWt#O
d<5Gt<+
&nqn_|A
"~i^AD
#ES?<"
Qg!R`3u
rpm5YY
mxYM,X
`;(S!T
J:."QN
Bj$acr
L*Pm*)
R*+hRtv
UDgn"]
k|{=|SO8
/F{cc>>
ZD=uV(
RBRFdL6K(
IP5gHs
6h|[`
+Js G%
&]9"0^R
Gfa[v0
l|~0tyf
l20Y/-
/ivr^e
rn@ 6$-
HtHT*?
FH$KJdz
~36h!5 H@
sU!UHn
+rV%79
5XhsCD
3G4!l-
lk6mo7~A
"iFkl
PV}|CE#+
dL,q)3
o#bFP%)~
?nx;oBk
_v8W8ju
jU-Y[B
D;X=;l
?nC(N-
.WD|OA
nn[z4
-11',H-
`/3wXYd
)?*]lis
OUOS@k
mP9})[}
<Luc>y
NmM=K<
??,2Ev
b7^c/T
q-}?$Ez
q08=&G(
J;-8/g
@ppJ:,
8g[~yH$7
iebx;B
P%$aLT
#`74]sK
>Vi>"LN
x:OI !Q^
&%ZdwZy
.G%V_\
==]o^%
TmYj/$?%?U'}Q9v
}8=j)H
*>9}|CF&
)-tv|_1w_'x
R|wDsr
c%.zx#S
=g[ fR
69`e|{
F:rp\;
|](f&*$
<E#M~P
{8.RIh
Q,7tZH
M:4=/~ u
AHi^y!
TSk\5?%
_OGoDo
u%[cW3
<5p;lP
MX#NAvL
T1UYw|
pkwTiA
M,x2my
RgrdBcUcK
g$==Ot>
bw%{l0
IQ4.x
+=_5pI52.
;Z:HS)
ND{C[%
EXG)?nY.
5ml5ao
oQ#xz+
!"=7!+
~6/`(}cM
NN[OJ@
TyqQ8O*
fv)];N
>5]gJg
T$_kn
eiCJXJ
jaLakS`
tjJYF
|&slp
6%p'Sl
3^>Qho
Pp(d&&[a
{Au@jL
]=UTi]
rJzf@Y
Q'J$+Q
&iU"P}9
7M1ScKi
TbDQgn
u4B >[
<HrA^)O
8*dV{l
tFF?5We-
DGg@Mmj
&E^y&F
]Wt8wKb
Kg#@@4
cDpRN$
+@^T#C
RqVYT?\
/Qa&!(O
e|P;`C
4te3b
[Mjw-}
r%/2L?
Y'iv9JwO
}tuEdM
T~!cb0]w
l *kD88
L>tpG!
!DT{Tg
3z(xDML-
2x"P74
?yQl3Q
Mq)qt"
I^<Yt`
1L+P)Ry
!h h1i
q,#m/z
7+ns81
pcrHOX
kf*^j
=3).9s
{+&n`Gk
Ege'"CY
P-cWWf1
eZ)Q?-I
?xiq-;o
:=<42g
gh1VM
4}`i.k
<IekF1>
fXM@lO
aV^1FN
T[.N4
|;YzwMi`*E
sP7sc){
u|HZb's
A_#,7@
sv ~acr
cf9wn]/U
\Y@1cC
Y "j/{
l~O6tL
4<PFpD
6+m60+#
B22C>^
2{W}Aj
f.E?r2=Q
Xs7/N
V]QEHw
#L!/k6
$`*R(z
f<yUsX'
zd[ioX(2
<h80U
?,DcX{
H*6d"'
]n4#Yk5oM
GMZ9O3]
<~m0*N
=29]nQ
5YIIrD
-AMXy"
6zW~hC
M9s{lt!8
cu~7`J
=-$~h!
e3xsC4
O8oG7G
\JQ8I.
21g5zG
;!Pq+o
&}V_^
a*sfpf
%D(YEL
bn+&){
)~U0sS
bFOH$U
'aZN1q
jzvqx
]KHG "
WMcK"hb
\VgTL%
{142eF
.AforS
0.(L~1
7m\^:qQ
$?])W{!
A|s6.K
5Rn UZz
z0+}<
TZ]V.;p
DN;F`p
9E,.MM
@CshqI
_(Ek)j
8U_]]j
+Ph%Ij
=1;fy
p(#U0n*5xtnc
h4D Kt
z"f~tp
*9ZCsJw
*2m7(q
hdhd,
f;a9h?fk
ou`d&F
N"Q]7T
5pmns(
|A{EOh8
Q{9d#\O
O)o"cG
Cw%!b
tM+(eN
{$l.~S
ulq66>[
crey#I
a^8o]
M|=Iw+
$K5vAN0X
LFetW4N
xg^daAVe
V8FcoSB
$q1rWq}
XK=TSu
wnVjlG
I(;#k)
IBv Mm
+~5r)K(
)Mds/+
M'1dnv
(|.SSO
:ncT8x
"UNt}g
$$Pl9u
VPd)nSo)
N#]< ;>
DgA*}Z
|a323I2
1lnEl?
KZ}Q44W
xR;mt5
aSB.{5B!
ybAn&?wA
udoIB.
{Z$m5s
'D5\ev
Dd286c
X-*u'XM
6">&eD
XWA")b
OQ<Jl>
.5,3@s
f"~u"TBe"
K%Ne($[d
s5uR]GP
N$ew&}
)R"1YJ7q#<
[Y%hRH
d_U1r,
NB,qvl
??1sX|5.u
H#z~@[hv
>!S#}D6
bN:4MEV
C>|^}
k +/IR*<
NI-6],\
QrJ&`BI
kiP%wl
w5TLx;
,>sN4\
#PPQ$)
hREL<"
tX)@\uTA=
uOrC;c9
ah&eyc
nu^{BV
S#k4c
x|k%h[<4
?96wIf
<YJX2Y
*-^fY|
! !*\7
&}:Ze[
o8Bz,
<WqZQ
w}^;!;
&ODRU*"6
W\mlRq
&@@dDm
OK$eRXX
|&qC1{W
@/F#88
f?'9gL
@#,IF#U
YCy1rN
H6-:78
Q>|kH_
y3<8;E
mYo&lX
eI(3A%
:\G#Bz6
VBn;;4)
'AmV'l4
y)~;ws
L^~'h_J
&/E[)0
H`kT5v
V<<g/ZQ
DN0WjSMa
>Jd48=r
~ge}+h
lqgak+
H$ck$Wk
,XL#%Vc0PQwi
tq.wJr
F`BIud
3cyJN=
G`aVDt
<$/y1
6onqE|J1m`
X&A1;S>
sVl?^99
746x]O
u9kJk@
Sc$*t\8
/]npg3p?M
IPu\54
]c21dm
,)\`F9[
cI9+PG`
S4%8l:e
unyq57H
.Le}K~
F]qrkJ
^SZiPWCxC
VRL8@?3
,<T1xp
u/}h,Po#
2n$u?i
~z#+jP
f8<B}^
AM\.#>
{)G*4|
UJToi;
w}xC,yv
$E=bN}1
&(!}O1
%A{kIg
YuhWi
>|eVto
ldb~ I
a!n@44
OR9|THkrg
m2A`du
Q$cGkfpo
Yx<p\Tt
&G3hS8W
do5/7v
c+?Ck$
!v4<n\
nS3q`v
4kERn\2`
6dl,^#
=QFX`h
g'Pg\3[CX
|9-oac
Z$~b2A)/w
7JjVP'
D1I/zEC2*
-BHV~n4
,jgs~R
-eXKu"
-:'U}y
UiF6?-
VK9f3R
rdmvYB
(\(1]'
=0igM$
H8]/a~
" 'kr$x
GM:(g \
ua'+eP
noLRN^u
/s;D9T
8viWhP
%vC`&;tc`R
hf '+B
mK6R5;
..+1fG
^_i_gD
^-2K'1
/9?z?$
y1&&X'hH
;N_7{-
dXI2e8
{M3QRG1<
3 ,2"S
8QP*2'A
?[T9W3.
n,.2}7%
+qU#L:<
r?[-+n>
1M$U~m
=G^H|
~S--A[w
=I25^j
'%Slww
oxMZu,#
Thc#F
Wd9-M,
bg.5sO
j|8R#7
"O'ii4l;
C0`Kgt
Q{:#q&
YFhH8
DTN'7LzS
OHS*g8
M_|Bz,
axS`A
n3~Zy^
bWy^v8p
lsiE\F
!kH<\Z*
P_LU&v3
\RI`~}Q
jooGp7WWu
1R>a2d
KdW*vV
#qg<=%f`P
8[+:[1$
B>^<p4<+>
T|w8)E
NwDV1A
=0^QsVby
N\eMeO|m
iM9kO^#
r_-.7
kmKp 4
;Vo6P&Gd
YTvP'l
#JZX8u2K
%gg#q1jok
g,1!
+i&H.
kPx^0bt
=#U(Q'f
1_}dOn
b)ZU(iC
qgO>ze
.1E!"*
MD ]Ua6,"
8"-rx!K
^[CVJk
=))C20
^,p?h7
N/}Z{1-Y
]lQ:u:
m0N[-b
kt>%`@
QOJeC(
Jkz9N0
+E+?g{
q+nZlXj
th8Mxp
iG'#K)
vow!#o
ZPT!2[<
rr^9;b
UF[n@T?
h%VzrtJ
Lkh8X)>
-'PdE[
pLAs,a
u'u4Gz
TS'uLl
dLRn\s
knLt%g
zPIU4V
}][i#^,
pD7(*NT
=51AwiP
xZl}<x
w@s_khBc
Guo%[<
D3'Rbd*<
-pSOvo
9mOWqH
[NOpb01
"Bv&<?g
0~D$vj
EDiyt"
.7^nr2
[icV`J
F2>Dxu
C~Z<w1
S'g66S
Kie>5:
A4/gjP
,c:tU_ oC
#')'}>
6tR*)*
+3z%nT
iw2Zyu
</T4v
HI\/VZ
P^:T/r
;zv: `
JY|>6
S;34:V
ft;>!0]
PF`vy2
Pebr i
pa3a$J
%R8Whx
#xehN1[
iw$^<)
t1;llk>
.e|g<i
"#!jurB5S
Ee4N3)Amj
-M|i2tp
Y%Q{Y}
0(bIG7=]`
qS=7_`
udL4uM
Vr_3L-
j9&NV>I
!r Uq#.c
nTY\w>
jR"QaL
riy"6zar
2`u?HH
BoZ=,F
KPY5WF2x[
J>nm!RFZ
vi[2FJ
#dxW/M
g46_tn
x!TJ<;
cQr!*3
MY5q]4>~
/J+=}M
O'eo\*g
6^S\4w-
7P.M^m
~s5ylk
za"ENc[
g5WKFH
VO,1vb
TIV^-)
wgFIev
'_:-?u
T|W,c0
@;`(H-
e2|\,
Ks,n4%
yU#fXA
^MPko+18
PSCTm
BvR%cB
:}~_@#%
RQ>c+SM
p2hC}cA
jg:7~!
{9N!O4!
WZQkO^
0b}U^e
B2q)io`PV
}2Pmb*
{vaBN>
w|~^3O
LYoQ]6
uy'Y%If,
R%Hh@K
5L-)j#
@G48"It
!-GYs`
54`Zds
WB,:1
qPoYh[
PJ[.et
i<O)D
[XG<+#J
s5zDt#
B98A$9c
KE8k~&q
Z<Jq2W
bAmoqp
"D`{9]
mqIda3W
\V+eWM
jo+{C?i|^"lr
d{}8qUi3
cG1O)#
E36j{{
)@OG6hB
Ci@a_m
tGu*I3:R
_d\yE7
yL/Qa=,
|T,xPt\"t
jm,zpv
!yCh^Y
fg?y`h\}j="
ysHHn#p
u^Zy8)
<k=N M
D$1?Pz
HYJ2q?
ON%p2%
YXUr({qx
YMDR=:
=9N:iF
7'ypH^h
1WA4hB[
"*YSf+-w
kd)6a,}
%P>!HL
j%FC^
]8+6v
8LwTF\rnE*@'
XZcqB)*+%R,
M&U?/D
pYI+'<
NO_`i)
-#sO]%
/=F2zaA}
CO;hBl
v?X+*p
k^IeA$
tbHrt0
fU&_VQ
g%C<V|
!+@sa)u{
96dX4oE=
o7X}e*
o6Z!>#
}~5+7R
=BuUVp*b
yxEyR8%
[lKuR]
]W>KHN
;e!nEY
8X$MHW
2YGS-)h
nzF"1
MYOrXg
goh2@<m0F1
^qu<v1
9dC@w)_
5&k0AgI
~/@-:)
8W'[=IW
Z~6C)4
"BF,vd
%HL[W5c
9pHY;x'
|VQ/Ox
8TsS 7w
*|C|)N6
-Qn:r,
\)qBGo
<GpD>$x/Z
8bY~Pw}
2:r@F~O
H,zud>
P,vE`WD
3Zho)uvNW
M~,yO5
a5Seq+
*_LiQM
y9ekZ
:@t{Bk
"> i_&>
j"w4E&
wh%dH=
hbjLT<
8yRODG*
]_8ff?
Y6hB()\
v2txWv
>g$nf'
YBa")tz
@T0/&#
YX`82#
zyY=<_f
G:aglu
;|Yc*( ,
}fb-)'
&)81&Sp!; Y%]
j=_|mG
H2S0s#
N2<c07
o2ivit
5ZM!&O_
,X*/8S
|mS*^I
H/&NR!
//V3xb#V8
G3'g_(
,W#c>z
jJr#<gbr
O} yFL
Hk4'~3
RGrh?K:V7
}lN<xF2;
WCA0]$
ZXp}IBE_
S,{@zx
&]cYlk
xx-2 _
!6y=?B
8OIX1+
{>Lu~&
iM1U-I D$
jcU\ml
'|isl8MuQ`ac
lD]Ksz`
,}<`Y,c,
mbsKpwq
ZY$9(wJ
Mw6co%^/
[Y$_R?
Nlb9)(
uhST0B7
`\/FgD
#c"2gC
Wd=c{P
O4Y6R~#
UWY072c
)0w9pP
C{Nbwb
-F5/WJS
c)S8n(
q`s<5`h
#`*,lk<
^3I'<>O
-2_Qme`
T`UB\8
B_3eU"
:'==?+
`@vdnJ
1dkDU-
snY0BI
f/4"RON.Z
uNjg$t)
kY^Ow.&-
X^QX*v
+|5NK~
kl9`8R
%7P;4
fY=t[8u
b.N_mq
8KIgGV
{kPR!vn
b{Q 3*
`!hK H]
}@?c-;
K;qu3.
2w?PAo[,
XcpSV>
',-iT?
91er2J
P!oc%J
RF5qIO
de&Og,<
Adr['CD:F
$t!x3P
o:At"Z
RW]c_b
(g=7L:
?\N<B|
5>*'n}f
"Pf(s+9
=)DjO*-
GzFlIo
NMa9!:
94.]yN
K/0MWX
%]gtG1
'dD3(|
^iVG+K
O{"d>T<=
j]Yvq(
RqjZ}^9Vq
fG#]~I#
>Ll'Wk
3,^4[c
;"d#1l
N&P-TX
8[CcA-WT
g'hTM3
fdcSDb
\BXn%Q
U28J(+
'h>)Sc
!fOD6T*z
%8>4*$z
m9xf*:a
TI3>9q
K'dS$n
i"-W'7
x1veT-
jv^^^t46)&wI
$<t@p?G
"2dQ>h0
8=7(N
M'b?:;
;gjS-a
yrp|DG
0qE$<#
1-Ao3u
^}-NNg
X1S'@(
h?~UiQ
m!yX&Q/
5 S"(h:
?(Ajr0
$_7fS7
$S1+}J
XB>\<God
;4K*qo
O8w\$o
K%>73b
K%|Ipz
_kT|G:>
#++NFT
tt/]r_
~SL#4r
j-isA3
}S<gVla
sL7_Pa
Mb!#L;x
L=Cu-5`
LN+{q4dU_I
D-GyH
!q`_H@C
SkY_QD
V]cUm9
f=^NPff
!+~2D}
L2Lv0@
hBBL&u0
wA'?=v^
X%wYb>n
x)-)H,
FCBbVQ?
ZZHcX#
6YklL-
rNTS<S
&mxb?LJ}
UHjRi(l?[
3nEoY]
-=%F +
hlDO[h
W.d|)F_
11m^U2
e{&9`T
WlXGRy
k&OTNk
u-1)nm
h66KYP
2"R?f[
"a|W+E
8!Hp\#gL
(DuAua4F
:vWB$%
KsS=;@
!r^G--
/BO9S]6^h
:#pqFq@5g
{7e[6\
tDX_7=
~suW#Jc3
GZ"!: t
kZQR?o
.b0c.a
,^lxo<
sG}D1pl
[RCrT"
DFA;{O
No4T7e
_*djGv
&YRGFe
[7=BPx
>e8Rt@
`e83$d7
-0P *i,
$caVZ~W
c4Wo(=g!
}Pv##=`
^`k<(*2=U
6F[p6
_Jt\3e
cQN9vV
rFO,S3
k!t)7$RZy
Jrb}o)
`AX7qX
8Ow}Cd~
_rx]`A
I<Gq>{1%z
-_bW C
c/M7GU
JO6.Zz
Bq*mZ/
oo2 =d
G![$`X
)+x8K,
xtE!PwS)w
9-F7tlO
|Bfq%v
d_wUy
3PBg n
|YhS_0c&
[S.&~b
14qn4
uXZ;qt
"m_{:\Z
m%dL97
]1W29o+
UU1*[
pk3;#(
ejKR:0
E4Y8*2.
NdRrio
rI=dSN}
yUm*,D
!Pu!)s
|'Hz=KK9
yY0Tk6
=VD9%C
=zz78p
N[^^sb{
0jt,`m]
.=qZ{a&=
::OnW>
PkI&zE
d%lCJ^
!vOb<@)
>KVXq
nI1M#>
6%jC~O
!;LW&~
L?7QOB
O*XrCPjj
%-{0*j
oIN.-o
3*KPC(U
/e3DOF
GO.C2Wa
DcHs,R
c%E0&Q_
,Zt$qT
k4J`h*
ylX"Vb
>bNFWE
h7gjAW
sWw?]l
H[%muntv
U*3qH
)UUFu6
x']bo_
xjj3fI<
B(iO^_
eqKYLM
`x3N"kR
/ !+D]
7cupeb
_[BFcPF@
F}4L\E[
?*wKj^F&
h=(fgU
gCSY`Oh
eR#[4Cn
|E%^xU#u2E
AQ8,f\Y
4W9b{#:KN
.BJ_45
[Av,1c
Pcia+#Sw
@E(NN
[~:-ZW
ukx<){
P.4- Y
+bKXp~d
)+~43m`{
Qal5++u
$j{B&5
f>GZ,O
i;u\8#
}KkO+2
9D+V+4
*MuE@A
P]p~5X;
OuEu^jO
ulg:.'
xu9Jp-/
6sJ*;;M
k)A]/zM
zNKT3U
VA/<!r_vp
,g ,(F
xP9$j
'"Ex+5
.vPnz7
hv'd5,
W~E>VL
,>.p.o
RichEdit
RichEdit20W
.DEFAULT\Control Panel\International
Control Panel\Desktop\ResourceLocale
Software\Microsoft\Windows\CurrentVersion
\Microsoft\Internet Explorer\Quick Launch
verifying installer: %d%%
Installer integrity check has failed. Common causes include
incomplete download and damaged media. Contact the
installer's author to obtain a new copy.
More information at:
http://nsis.sf.net/NSIS_Error
Error launching installer
... %d%%
SeShutdownPrivilege
~nsu%X.tmp
NSIS Error
Error writing temporary file. Make sure your temp folder is valid.
%u.%u%s%s
*?|<>/":
%s%S.dll
MS Shell Dlg
MS Shell Dlg
msctls_progress32
SysListView32
MS Shell Dlg
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Keygen.4!c
Elastic malicious (high confidence)
ClamAV Win.Malware.Score-6997747-0
CMC Clean
CAT-QuickHeal Trojan.Riskware
Skyhigh BehavesLike.Win32.Generic.cc
ALYac Application.Generic.3932404
Cylance Unsafe
Zillya Clean
Sangfor Trojan.Win32.Save.a
CrowdStrike win/grayware_confidence_70% (W)
Alibaba Clean
K7GW Unwanted-Program ( 0052f55b1 )
K7AntiVirus Unwanted-Program ( 0052f55b1 )
huorong Clean
Baidu Clean
VirIT Trojan.Win32.NSISDrp.ILR
Paloalto generic.ml
Symantec Trojan.Gen.MBT
tehtris Clean
ESET-NOD32 Win32/Keygen.ACE potentially unsafe
APEX Malicious
Avast Win32:Malware-gen
Cynet Malicious (score: 100)
Kaspersky Clean
BitDefender Application.Generic.3932404
NANO-Antivirus Clean
ViRobot Clean
MicroWorld-eScan Application.Generic.3932404
Tencent Clean
Sophos Generic Reputation PUA (PUA)
F-Secure Trojan.TR/AVI.Agent.ckgqd
DrWeb Clean
VIPRE Application.Generic.3932404
TrendMicro Clean
McAfeeD ti!3E5A4418610A
Trapmine Clean
CTX exe.trojan.keygen
Emsisoft Application.Generic.3932404 (B)
Ikarus Trojan.Androm
GData Application.Generic.3932404
Jiangmin Clean
Webroot Clean
Varist W32/Trojan.TSQT-6949
Avira TR/AVI.Agent.ckgqd
Antiy-AVL RiskWare/Win32.Agent
Kingsoft Win32.HackTool.Keygen.v
Gridinsoft Crack.Win32.Wacapew.sa
Xcitium Clean
Arcabit Application.Generic.D3C00F4
SUPERAntiSpyware Clean
ZoneAlarm Clean
Microsoft HackTool:Win32/Keygen!rfn
Google Detected
AhnLab-V3 HackTool/Win.Keygen.C5307056
Acronis Clean
VBA32 Clean
TACHYON Clean
Malwarebytes Malware.AI.3757947517
Panda PUP/Keygen
Zoner Clean
TrendMicro-HouseCall TROJ_GEN.R002H06EG25
Rising Clean
Yandex Clean
TrellixENS Artemis!7E1329F086BE
SentinelOne Clean
MaxSecure Trojan.Malware.388067077.susgen
Fortinet Riskware/KeyGen
AVG Win32:Malware-gen
DeepInstinct MALICIOUS
alibabacloud Clean
IRMA Signature
Trend Micro SProtect (Linux) Clean
Avast Core Security (Linux) Win32:Malware-gen
C4S ClamAV (Linux) C4S.MALWARE.SHA256.AUTOGEN.64133280.UNOFFICIAL
Trellix (Linux) GenericRXVT-BD
Sophos Anti-Virus (Linux) Clean
Bitdefender Antivirus (Linux) Application.Generic.3932404
G Data Antivirus (Windows) Virus: Application.Generic.3932404 (Engine A)
WithSecure (Linux) Trojan:W32/Generic.abch!mind
ESET Security (Windows) Clean
DrWeb Antivirus (Linux) Clean
ClamAV (Linux) Win.Malware.Score-6997747-0
eScan Antivirus (Linux) Application.Generic.3932404(DB)
Kaspersky Standard (Windows) Clean
Emsisoft Commandline Scanner (Windows) Clean
Cuckoo

We're processing your submission... This could take a few seconds.