ee74c63f...4752 | Files
Logo
Try VMRay Analyzer
VTI SCORE: 95/100
Dynamic Analysis Report
Classification: Trojan, Keylogger

ee74c63faa2eb9709b1d738762e28072aece2e7b9eeffc5913eb6a5fd1564752 (SHA256)

key_payload.exe.zzz.exe

Windows Exe (x86-32)

Created at 2018-08-20 09:32:00

...

Notifications (1/1)

Some extracted files may be missing in the report since the maximum number of extracted files was reached during the analysis. You can increase the limit in the configuration settings.

Remarks

Some extracted files may be missing in the report since the maximum number of extracted files was reached during the analysis. You can increase the limit in the configuration settings.

Filters:
Filename Category Type Severity Actions
C:\Users\CIiHmnxMn6Ps\Desktop\key_payload.exe.zzz.exe Sample File Binary
Blacklisted
...
»
Also Known As C:\Users\CIiHmnxMn6Ps\AppData\Local\key_payload.exe.zzz.exe (Created File)
Mime Type application/x-dosexec
File Size 2.82 MB
MD5 901d893f665c6f9741aa940e5f275952 Copy to Clipboard
SHA1 3b5369c0aeffe5c0d0b164a3d90ec245b093674d Copy to Clipboard
SHA256 ee74c63faa2eb9709b1d738762e28072aece2e7b9eeffc5913eb6a5fd1564752 Copy to Clipboard
SSDeep 49152:0u1ImfQE5L1PtWHeHoQAOs1dKvHHg/o2S1pj798JGKCO8C/eZkwCr:dzV5JPtWHeHoIs1dGHHx2S1998JGKCOD Copy to Clipboard
ImpHash 12cd8972276e53763a1fd2342172ae3c Copy to Clipboard
File Reputation Information
»
Severity
Blacklisted
First Seen 2018-08-09 03:19 (UTC+2)
Last Seen 2018-08-11 16:26 (UTC+2)
Names Win32.Trojan.Filecoder
Families Filecoder
Classification Trojan
PE Information
»
Image Base 0x400000
Entry Point 0x562227
Size Of Code 0x1fc200
Size Of Initialized Data 0xdf200
File Type executable
Subsystem windows_gui
Machine Type i386
Compile Timestamp 2018-08-07 14:31:20+00:00
Sections (5)
»
Name Virtual Address Virtual Size Raw Data Size Raw Data Offset Flags Entropy
.text 0x401000 0x1fc1e1 0x1fc200 0x400 cnt_code, mem_execute, mem_read 6.63
.rdata 0x5fe000 0x775be 0x77600 0x1fc600 cnt_initialized_data, mem_read 5.11
.data 0x676000 0x1562c 0xc600 0x273c00 cnt_initialized_data, mem_read, mem_write 4.98
.rsrc 0x68c000 0x2b360 0x2b400 0x280200 cnt_initialized_data, mem_read 4.51
.reloc 0x6b8000 0x26e14 0x27000 0x2ab600 cnt_initialized_data, mem_discardable, mem_read 6.5
Imports (20)
»
KERNEL32.dll (214)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
VirtualQuery 0x0 0x5fe1f4 0x271c14 0x270214 0x4f1
SetStdHandle 0x0 0x5fe1f8 0x271c18 0x270218 0x487
GetFileType 0x0 0x5fe1fc 0x271c1c 0x27021c 0x1f3
GetStdHandle 0x0 0x5fe200 0x271c20 0x270220 0x264
GetStartupInfoW 0x0 0x5fe204 0x271c24 0x270224 0x263
QueryPerformanceCounter 0x0 0x5fe208 0x271c28 0x270228 0x3a7
GetEnvironmentStringsW 0x0 0x5fe20c 0x271c2c 0x27022c 0x1da
FreeEnvironmentStringsW 0x0 0x5fe210 0x271c30 0x270230 0x161
UnhandledExceptionFilter 0x0 0x5fe214 0x271c34 0x270234 0x4d3
SetUnhandledExceptionFilter 0x0 0x5fe218 0x271c38 0x270238 0x4a5
CreateSemaphoreW 0x0 0x5fe21c 0x271c3c 0x27023c 0xae
IsValidCodePage 0x0 0x5fe220 0x271c40 0x270240 0x30a
GetACP 0x0 0x5fe224 0x271c44 0x270244 0x168
GetOEMCP 0x0 0x5fe228 0x271c48 0x270248 0x237
GetStringTypeW 0x0 0x5fe22c 0x271c4c 0x27024c 0x269
GetConsoleCP 0x0 0x5fe230 0x271c50 0x270250 0x19a
GetConsoleMode 0x0 0x5fe234 0x271c54 0x270254 0x1ac
SetFilePointerEx 0x0 0x5fe238 0x271c58 0x270258 0x467
GetTimeZoneInformation 0x0 0x5fe23c 0x271c5c 0x27025c 0x298
ReadConsoleW 0x0 0x5fe240 0x271c60 0x270260 0x3be
OutputDebugStringW 0x0 0x5fe244 0x271c64 0x270264 0x38a
GetDateFormatW 0x0 0x5fe248 0x271c68 0x270268 0x1c8
LCMapStringW 0x0 0x5fe24c 0x271c6c 0x27026c 0x32d
IsValidLocale 0x0 0x5fe250 0x271c70 0x270270 0x30c
EnumSystemLocalesW 0x0 0x5fe254 0x271c74 0x270274 0x10f
WriteConsoleW 0x0 0x5fe258 0x271c78 0x270278 0x524
SetEnvironmentVariableA 0x0 0x5fe25c 0x271c7c 0x27027c 0x456
OpenProcess 0x0 0x5fe260 0x271c80 0x270280 0x380
GetSystemInfo 0x0 0x5fe264 0x271c84 0x270284 0x273
UnregisterWaitEx 0x0 0x5fe268 0x271c88 0x270288 0x4db
QueryDepthSList 0x0 0x5fe26c 0x271c8c 0x27028c 0x39e
InterlockedFlushSList 0x0 0x5fe270 0x271c90 0x270290 0x2ee
InterlockedPushEntrySList 0x0 0x5fe274 0x271c94 0x270294 0x2f1
InterlockedPopEntrySList 0x0 0x5fe278 0x271c98 0x270298 0x2f0
InitializeSListHead 0x0 0x5fe27c 0x271c9c 0x27029c 0x2e7
ReleaseSemaphore 0x0 0x5fe280 0x271ca0 0x2702a0 0x3fe
FreeLibraryAndExitThread 0x0 0x5fe284 0x271ca4 0x2702a4 0x163
UnregisterWait 0x0 0x5fe288 0x271ca8 0x2702a8 0x4da
RegisterWaitForSingleObject 0x0 0x5fe28c 0x271cac 0x2702ac 0x3f5
SetThreadAffinityMask 0x0 0x5fe290 0x271cb0 0x2702b0 0x490
GetProcessAffinityMask 0x0 0x5fe294 0x271cb4 0x2702b4 0x246
GetNumaHighestNodeNumber 0x0 0x5fe298 0x271cb8 0x2702b8 0x229
DeleteTimerQueueTimer 0x0 0x5fe29c 0x271cbc 0x2702bc 0xda
ChangeTimerQueueTimer 0x0 0x5fe2a0 0x271cc0 0x2702c0 0x48
CreateTimerQueueTimer 0x0 0x5fe2a4 0x271cc4 0x2702c4 0xbd
GetLogicalProcessorInformation 0x0 0x5fe2a8 0x271cc8 0x2702c8 0x20a
GetThreadPriority 0x0 0x5fe2ac 0x271ccc 0x2702cc 0x28e
SwitchToThread 0x0 0x5fe2b0 0x271cd0 0x2702d0 0x4bc
SignalObjectAndWait 0x0 0x5fe2b4 0x271cd4 0x2702d4 0x4b0
WaitForSingleObjectEx 0x0 0x5fe2b8 0x271cd8 0x2702d8 0x4fa
CreateTimerQueue 0x0 0x5fe2bc 0x271cdc 0x2702dc 0xbc
FormatMessageA 0x0 0x5fe2c0 0x271ce0 0x2702e0 0x15d
GetThreadTimes 0x0 0x5fe2c4 0x271ce4 0x2702e4 0x291
HeapQueryInformation 0x0 0x5fe2c8 0x271ce8 0x2702e8 0x2d1
IsProcessorFeaturePresent 0x0 0x5fe2cc 0x271cec 0x2702ec 0x304
CloseHandle 0x0 0x5fe2d0 0x271cf0 0x2702f0 0x52
IsDebuggerPresent 0x0 0x5fe2d4 0x271cf4 0x2702f4 0x300
GetModuleFileNameW 0x0 0x5fe2d8 0x271cf8 0x2702f8 0x214
GetModuleHandleW 0x0 0x5fe2dc 0x271cfc 0x2702fc 0x218
Sleep 0x0 0x5fe2e0 0x271d00 0x270300 0x4b2
SizeofResource 0x0 0x5fe2e4 0x271d04 0x270304 0x4b1
LockResource 0x0 0x5fe2e8 0x271d08 0x270308 0x354
LoadResource 0x0 0x5fe2ec 0x271d0c 0x27030c 0x341
FindResourceW 0x0 0x5fe2f0 0x271d10 0x270310 0x14e
GlobalFree 0x0 0x5fe2f4 0x271d14 0x270314 0x2ba
GetCurrentProcess 0x0 0x5fe2f8 0x271d18 0x270318 0x1c0
GlobalAlloc 0x0 0x5fe2fc 0x271d1c 0x27031c 0x2b3
GetLastError 0x0 0x5fe300 0x271d20 0x270320 0x202
GetTickCount 0x0 0x5fe304 0x271d24 0x270324 0x293
CreateToolhelp32Snapshot 0x0 0x5fe308 0x271d28 0x270328 0xbe
Process32FirstW 0x0 0x5fe30c 0x271d2c 0x27032c 0x396
Process32NextW 0x0 0x5fe310 0x271d30 0x270330 0x398
CreateFileW 0x0 0x5fe314 0x271d34 0x270334 0x8f
GetFileSize 0x0 0x5fe318 0x271d38 0x270338 0x1f0
MoveFileW 0x0 0x5fe31c 0x271d3c 0x27033c 0x363
VirtualAlloc 0x0 0x5fe320 0x271d40 0x270340 0x4e9
SetFilePointer 0x0 0x5fe324 0x271d44 0x270344 0x466
ReadFile 0x0 0x5fe328 0x271d48 0x270348 0x3c0
WriteFile 0x0 0x5fe32c 0x271d4c 0x27034c 0x525
VirtualFree 0x0 0x5fe330 0x271d50 0x270350 0x4ec
FindFirstFileW 0x0 0x5fe334 0x271d54 0x270354 0x139
FindNextFileW 0x0 0x5fe338 0x271d58 0x270358 0x145
GetLogicalDrives 0x0 0x5fe33c 0x271d5c 0x27035c 0x209
SetErrorMode 0x0 0x5fe340 0x271d60 0x270360 0x458
GetDriveTypeA 0x0 0x5fe344 0x271d64 0x270364 0x1d2
GetTimeFormatW 0x0 0x5fe348 0x271d68 0x270368 0x297
TerminateProcess 0x0 0x5fe34c 0x271d6c 0x27036c 0x4c0
GetModuleFileNameA 0x0 0x5fe350 0x271d70 0x270370 0x213
GetEnvironmentVariableA 0x0 0x5fe354 0x271d74 0x270374 0x1db
DeleteFileA 0x0 0x5fe358 0x271d78 0x270378 0xd3
CreateFileA 0x0 0x5fe35c 0x271d7c 0x27037c 0x88
FlushFileBuffers 0x0 0x5fe360 0x271d80 0x270380 0x157
SetLastError 0x0 0x5fe364 0x271d84 0x270384 0x473
CreateProcessA 0x0 0x5fe368 0x271d88 0x270388 0xa4
WideCharToMultiByte 0x0 0x5fe36c 0x271d8c 0x27038c 0x511
MultiByteToWideChar 0x0 0x5fe370 0x271d90 0x270390 0x367
FormatMessageW 0x0 0x5fe374 0x271d94 0x270394 0x15e
LocalAlloc 0x0 0x5fe378 0x271d98 0x270398 0x344
lstrlenW 0x0 0x5fe37c 0x271d9c 0x27039c 0x54e
LocalSize 0x0 0x5fe380 0x271da0 0x2703a0 0x34d
lstrcpynW 0x0 0x5fe384 0x271da4 0x2703a4 0x54b
LocalFree 0x0 0x5fe388 0x271da8 0x2703a8 0x348
GetTempPathW 0x0 0x5fe38c 0x271dac 0x2703ac 0x285
DeleteFileW 0x0 0x5fe390 0x271db0 0x2703b0 0xd6
CopyFileW 0x0 0x5fe394 0x271db4 0x2703b4 0x75
WaitForSingleObject 0x0 0x5fe398 0x271db8 0x2703b8 0x4f9
GetExitCodeProcess 0x0 0x5fe39c 0x271dbc 0x2703bc 0x1df
CreateProcessW 0x0 0x5fe3a0 0x271dc0 0x2703c0 0xa8
CreateThread 0x0 0x5fe3a4 0x271dc4 0x2703c4 0xb5
GetComputerNameW 0x0 0x5fe3a8 0x271dc8 0x2703c8 0x18f
SetEvent 0x0 0x5fe3ac 0x271dcc 0x2703cc 0x459
HeapReAlloc 0x0 0x5fe3b0 0x271dd0 0x2703d0 0x2d2
HeapAlloc 0x0 0x5fe3b4 0x271dd4 0x2703d4 0x2cb
HeapFree 0x0 0x5fe3b8 0x271dd8 0x2703d8 0x2cf
GetProcessHeap 0x0 0x5fe3bc 0x271ddc 0x2703dc 0x24a
InitializeCriticalSectionAndSpinCount 0x0 0x5fe3c0 0x271de0 0x2703e0 0x2e3
LeaveCriticalSection 0x0 0x5fe3c4 0x271de4 0x2703e4 0x339
RaiseException 0x0 0x5fe3c8 0x271de8 0x2703e8 0x3b1
HeapSize 0x0 0x5fe3cc 0x271dec 0x2703ec 0x2d4
EnterCriticalSection 0x0 0x5fe3d0 0x271df0 0x2703f0 0xee
DecodePointer 0x0 0x5fe3d4 0x271df4 0x2703f4 0xca
DeleteCriticalSection 0x0 0x5fe3d8 0x271df8 0x2703f8 0xd1
TlsAlloc 0x0 0x5fe3dc 0x271dfc 0x2703fc 0x4c5
InterlockedIncrement 0x0 0x5fe3e0 0x271e00 0x270400 0x2ef
InterlockedExchange 0x0 0x5fe3e4 0x271e04 0x270404 0x2ec
InterlockedDecrement 0x0 0x5fe3e8 0x271e08 0x270408 0x2eb
InterlockedExchangeAdd 0x0 0x5fe3ec 0x271e0c 0x27040c 0x2ed
WaitForMultipleObjects 0x0 0x5fe3f0 0x271e10 0x270410 0x4f7
TerminateThread 0x0 0x5fe3f4 0x271e14 0x270414 0x4c1
QueueUserAPC 0x0 0x5fe3f8 0x271e18 0x270418 0x3af
CreateEventW 0x0 0x5fe3fc 0x271e1c 0x27041c 0x85
SleepEx 0x0 0x5fe400 0x271e20 0x270420 0x4b5
PostQueuedCompletionStatus 0x0 0x5fe404 0x271e24 0x270424 0x38e
CreateIoCompletionPort 0x0 0x5fe408 0x271e28 0x270428 0x94
SetWaitableTimer 0x0 0x5fe40c 0x271e2c 0x27042c 0x4ac
GetQueuedCompletionStatus 0x0 0x5fe410 0x271e30 0x270430 0x25e
InterlockedCompareExchange 0x0 0x5fe414 0x271e34 0x270434 0x2e9
VerSetConditionMask 0x0 0x5fe418 0x271e38 0x270438 0x4e4
VerifyVersionInfoW 0x0 0x5fe41c 0x271e3c 0x27043c 0x4e8
CreateWaitableTimerW 0x0 0x5fe420 0x271e40 0x270440 0xc2
GetSystemTimeAsFileTime 0x0 0x5fe424 0x271e44 0x270444 0x279
TlsGetValue 0x0 0x5fe428 0x271e48 0x270448 0x4c7
TlsSetValue 0x0 0x5fe42c 0x271e4c 0x27044c 0x4c8
TlsFree 0x0 0x5fe430 0x271e50 0x270450 0x4c6
GlobalSize 0x0 0x5fe434 0x271e54 0x270454 0x2c2
GlobalLock 0x0 0x5fe438 0x271e58 0x270458 0x2be
GlobalUnlock 0x0 0x5fe43c 0x271e5c 0x27045c 0x2c5
MulDiv 0x0 0x5fe440 0x271e60 0x270460 0x366
OutputDebugStringA 0x0 0x5fe444 0x271e64 0x270464 0x389
EncodePointer 0x0 0x5fe448 0x271e68 0x270468 0xea
GetCurrentThreadId 0x0 0x5fe44c 0x271e6c 0x27046c 0x1c5
GetSystemDirectoryW 0x0 0x5fe450 0x271e70 0x270470 0x270
FreeLibrary 0x0 0x5fe454 0x271e74 0x270474 0x162
FreeResource 0x0 0x5fe458 0x271e78 0x270478 0x165
GetModuleHandleA 0x0 0x5fe45c 0x271e7c 0x27047c 0x215
GetProcAddress 0x0 0x5fe460 0x271e80 0x270480 0x245
LoadLibraryExW 0x0 0x5fe464 0x271e84 0x270484 0x33e
GlobalDeleteAtom 0x0 0x5fe468 0x271e88 0x270488 0x2b5
lstrcmpW 0x0 0x5fe46c 0x271e8c 0x27048c 0x542
LoadLibraryA 0x0 0x5fe470 0x271e90 0x270490 0x33c
LoadLibraryW 0x0 0x5fe474 0x271e94 0x270494 0x33f
GlobalAddAtomW 0x0 0x5fe478 0x271e98 0x270498 0x2b2
GlobalFindAtomW 0x0 0x5fe47c 0x271e9c 0x27049c 0x2b7
GetCurrentProcessId 0x0 0x5fe480 0x271ea0 0x2704a0 0x1c1
GetCurrentThread 0x0 0x5fe484 0x271ea4 0x2704a4 0x1c4
GetVersionExW 0x0 0x5fe488 0x271ea8 0x2704a8 0x2a4
lstrcmpA 0x0 0x5fe48c 0x271eac 0x2704ac 0x541
lstrcpyW 0x0 0x5fe490 0x271eb0 0x2704b0 0x548
SetThreadPriority 0x0 0x5fe494 0x271eb4 0x2704b4 0x499
ResumeThread 0x0 0x5fe498 0x271eb8 0x2704b8 0x413
GetPrivateProfileIntW 0x0 0x5fe49c 0x271ebc 0x2704bc 0x23c
GetPrivateProfileStringW 0x0 0x5fe4a0 0x271ec0 0x2704c0 0x242
WritePrivateProfileStringW 0x0 0x5fe4a4 0x271ec4 0x2704c4 0x52b
GlobalGetAtomNameW 0x0 0x5fe4a8 0x271ec8 0x2704c8 0x2bc
FileTimeToSystemTime 0x0 0x5fe4ac 0x271ecc 0x2704cc 0x125
GetThreadLocale 0x0 0x5fe4b0 0x271ed0 0x2704d0 0x28c
InitializeCriticalSection 0x0 0x5fe4b4 0x271ed4 0x2704d4 0x2e2
GlobalReAlloc 0x0 0x5fe4b8 0x271ed8 0x2704d8 0x2c1
GlobalHandle 0x0 0x5fe4bc 0x271edc 0x2704dc 0x2bd
LocalReAlloc 0x0 0x5fe4c0 0x271ee0 0x2704e0 0x34b
CompareStringW 0x0 0x5fe4c4 0x271ee4 0x2704e4 0x64
GetLocaleInfoW 0x0 0x5fe4c8 0x271ee8 0x2704e8 0x206
GetSystemDefaultUILanguage 0x0 0x5fe4cc 0x271eec 0x2704ec 0x26e
GetUserDefaultUILanguage 0x0 0x5fe4d0 0x271ef0 0x2704f0 0x29e
GlobalFlags 0x0 0x5fe4d4 0x271ef4 0x2704f4 0x2b9
GetCurrentDirectoryW 0x0 0x5fe4d8 0x271ef8 0x2704f8 0x1bf
GetFileAttributesW 0x0 0x5fe4dc 0x271efc 0x2704fc 0x1ea
FindClose 0x0 0x5fe4e0 0x271f00 0x270500 0x12e
GetFullPathNameW 0x0 0x5fe4e4 0x271f04 0x270504 0x1fb
GetVolumeInformationW 0x0 0x5fe4e8 0x271f08 0x270508 0x2a7
LockFile 0x0 0x5fe4ec 0x271f0c 0x27050c 0x352
SetEndOfFile 0x0 0x5fe4f0 0x271f10 0x270510 0x453
UnlockFile 0x0 0x5fe4f4 0x271f14 0x270514 0x4d4
DuplicateHandle 0x0 0x5fe4f8 0x271f18 0x270518 0xe8
lstrcmpiW 0x0 0x5fe4fc 0x271f1c 0x27051c 0x545
GetStringTypeExW 0x0 0x5fe500 0x271f20 0x270520 0x268
GetTempFileNameW 0x0 0x5fe504 0x271f24 0x270524 0x283
GetWindowsDirectoryW 0x0 0x5fe508 0x271f28 0x270528 0x2af
SearchPathW 0x0 0x5fe50c 0x271f2c 0x27052c 0x41d
GetProfileIntW 0x0 0x5fe510 0x271f30 0x270530 0x259
FileTimeToLocalFileTime 0x0 0x5fe514 0x271f34 0x270534 0x124
GetFileAttributesExW 0x0 0x5fe518 0x271f38 0x270538 0x1e7
GetFileSizeEx 0x0 0x5fe51c 0x271f3c 0x27053c 0x1f1
GetFileTime 0x0 0x5fe520 0x271f40 0x270540 0x1f2
VirtualProtect 0x0 0x5fe524 0x271f44 0x270544 0x4ef
FindResourceExW 0x0 0x5fe528 0x271f48 0x270548 0x14d
GetUserDefaultLCID 0x0 0x5fe52c 0x271f4c 0x27054c 0x29b
GetCPInfo 0x0 0x5fe530 0x271f50 0x270550 0x172
ExitThread 0x0 0x5fe534 0x271f54 0x270554 0x11a
RtlUnwind 0x0 0x5fe538 0x271f58 0x270558 0x418
ExitProcess 0x0 0x5fe53c 0x271f5c 0x27055c 0x119
GetModuleHandleExW 0x0 0x5fe540 0x271f60 0x270560 0x217
AreFileApisANSI 0x0 0x5fe544 0x271f64 0x270564 0x15
GetCommandLineW 0x0 0x5fe548 0x271f68 0x270568 0x187
USER32.dll (223)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
SetRectEmpty 0x0 0x5fe62c 0x27204c 0x27064c 0x2af
SetLayeredWindowAttributes 0x0 0x5fe630 0x272050 0x270650 0x298
LoadCursorW 0x0 0x5fe634 0x272054 0x270654 0x1eb
SetCursor 0x0 0x5fe638 0x272058 0x270658 0x288
ShowOwnedPopups 0x0 0x5fe63c 0x27205c 0x27065c 0x2db
TranslateMessage 0x0 0x5fe640 0x272060 0x270660 0x2fc
GetMessageW 0x0 0x5fe644 0x272064 0x270664 0x15d
MapVirtualKeyW 0x0 0x5fe648 0x272068 0x270668 0x208
GetKeyNameTextW 0x0 0x5fe64c 0x27206c 0x27066c 0x13c
DrawIconEx 0x0 0x5fe650 0x272070 0x270670 0xc8
IsRectEmpty 0x0 0x5fe654 0x272074 0x270674 0x1d4
OffsetRect 0x0 0x5fe658 0x272078 0x270678 0x225
InflateRect 0x0 0x5fe65c 0x27207c 0x27067c 0x1b5
DrawFocusRect 0x0 0x5fe660 0x272080 0x270680 0xc4
GetSysColorBrush 0x0 0x5fe664 0x272084 0x270684 0x17c
SetWindowRgn 0x0 0x5fe668 0x272088 0x270688 0x2c7
GetSystemMetrics 0x0 0x5fe66c 0x27208c 0x27068c 0x17e
DrawFrameControl 0x0 0x5fe670 0x272090 0x270690 0xc6
DrawEdge 0x0 0x5fe674 0x272094 0x270694 0xc3
MapDialogRect 0x0 0x5fe678 0x272098 0x270698 0x204
SetWindowContextHelpId 0x0 0x5fe67c 0x27209c 0x27069c 0x2c1
PostQuitMessage 0x0 0x5fe680 0x2720a0 0x2706a0 0x237
SendDlgItemMessageA 0x0 0x5fe684 0x2720a4 0x2706a4 0x272
GetCursorPos 0x0 0x5fe688 0x2720a8 0x2706a8 0x120
ClientToScreen 0x0 0x5fe68c 0x2720ac 0x2706ac 0x47
EndPaint 0x0 0x5fe690 0x2720b0 0x2706b0 0xdc
BeginPaint 0x0 0x5fe694 0x2720b4 0x2706b4 0xe
ReleaseDC 0x0 0x5fe698 0x2720b8 0x2706b8 0x265
GetWindowDC 0x0 0x5fe69c 0x2720bc 0x2706bc 0x192
GetDC 0x0 0x5fe6a0 0x2720c0 0x2706c0 0x121
TabbedTextOutW 0x0 0x5fe6a4 0x2720c4 0x2706c4 0x2ee
GrayStringW 0x0 0x5fe6a8 0x2720c8 0x2706c8 0x1a8
DrawTextExW 0x0 0x5fe6ac 0x2720cc 0x2706cc 0xcf
DrawTextW 0x0 0x5fe6b0 0x2720d0 0x2706d0 0xd0
GetWindowThreadProcessId 0x0 0x5fe6b4 0x2720d4 0x2706d4 0x1a4
GetDesktopWindow 0x0 0x5fe6b8 0x2720d8 0x2706d8 0x123
GetActiveWindow 0x0 0x5fe6bc 0x2720dc 0x2706dc 0x100
GetNextDlgTabItem 0x0 0x5fe6c0 0x2720e0 0x2706e0 0x162
EndDialog 0x0 0x5fe6c4 0x2720e4 0x2706e4 0xda
CreateDialogIndirectParamW 0x0 0x5fe6c8 0x2720e8 0x2706e8 0x61
LoadMenuW 0x0 0x5fe6cc 0x2720ec 0x2706ec 0x1f7
SetMenuItemInfoW 0x0 0x5fe6d0 0x2720f0 0x2706f0 0x2a2
GetMenuCheckMarkDimensions 0x0 0x5fe6d4 0x2720f4 0x2706f4 0x14d
SetMenuItemBitmaps 0x0 0x5fe6d8 0x2720f8 0x2706f8 0x2a0
EnableMenuItem 0x0 0x5fe6dc 0x2720fc 0x2706fc 0xd6
CheckMenuItem 0x0 0x5fe6e0 0x272100 0x270700 0x3f
IsDialogMessageW 0x0 0x5fe6e4 0x272104 0x270704 0x1cd
SetWindowTextW 0x0 0x5fe6e8 0x272108 0x270708 0x2cb
IsWindowEnabled 0x0 0x5fe6ec 0x27210c 0x27070c 0x1dc
CheckDlgButton 0x0 0x5fe6f0 0x272110 0x270710 0x3e
MoveWindow 0x0 0x5fe6f4 0x272114 0x270714 0x21b
GetMonitorInfoW 0x0 0x5fe6f8 0x272118 0x270718 0x15f
MonitorFromWindow 0x0 0x5fe6fc 0x27211c 0x27071c 0x21a
SystemParametersInfoW 0x0 0x5fe700 0x272120 0x270720 0x2ec
GetScrollInfo 0x0 0x5fe704 0x272124 0x270724 0x175
SetScrollInfo 0x0 0x5fe708 0x272128 0x270728 0x2b0
LoadIconW 0x0 0x5fe70c 0x27212c 0x27072c 0x1ed
GetWindow 0x0 0x5fe710 0x272130 0x270730 0x18e
GetLastActivePopup 0x0 0x5fe714 0x272134 0x270734 0x144
GetTopWindow 0x0 0x5fe718 0x272138 0x270738 0x185
GetParent 0x0 0x5fe71c 0x27213c 0x27073c 0x164
GetClassLongW 0x0 0x5fe720 0x272140 0x270740 0x110
SetWindowLongW 0x0 0x5fe724 0x272144 0x270744 0x2c4
GetWindowLongW 0x0 0x5fe728 0x272148 0x270748 0x196
PtInRect 0x0 0x5fe72c 0x27214c 0x27074c 0x240
EqualRect 0x0 0x5fe730 0x272150 0x270750 0xf3
CopyRect 0x0 0x5fe734 0x272154 0x270754 0x55
GetSysColor 0x0 0x5fe738 0x272158 0x270758 0x17b
MapWindowPoints 0x0 0x5fe73c 0x27215c 0x27075c 0x209
InvalidateRgn 0x0 0x5fe740 0x272160 0x270760 0x1bf
AdjustWindowRectEx 0x0 0x5fe744 0x272164 0x270764 0x3
GetWindowTextLengthW 0x0 0x5fe748 0x272168 0x270768 0x1a2
GetWindowTextW 0x0 0x5fe74c 0x27216c 0x27076c 0x1a3
MonitorFromPoint 0x0 0x5fe750 0x272170 0x270770 0x218
GetPropW 0x0 0x5fe754 0x272174 0x270774 0x16b
SetPropW 0x0 0x5fe758 0x272178 0x270778 0x2ad
ShowScrollBar 0x0 0x5fe75c 0x27217c 0x27077c 0x2dc
GetScrollRange 0x0 0x5fe760 0x272180 0x270780 0x177
SetRect 0x0 0x5fe764 0x272184 0x270784 0x2ae
GetNextDlgGroupItem 0x0 0x5fe768 0x272188 0x270788 0x161
SetParent 0x0 0x5fe76c 0x27218c 0x27078c 0x2a6
SendMessageW 0x0 0x5fe770 0x272190 0x270790 0x27c
PeekMessageW 0x0 0x5fe774 0x272194 0x270794 0x233
LoadStringW 0x0 0x5fe778 0x272198 0x270798 0x1fa
DispatchMessageW 0x0 0x5fe77c 0x27219c 0x27079c 0xaf
SetScrollRange 0x0 0x5fe780 0x2721a0 0x2707a0 0x2b2
GetScrollPos 0x0 0x5fe784 0x2721a4 0x2707a4 0x176
SetScrollPos 0x0 0x5fe788 0x2721a8 0x2707a8 0x2b1
ScrollWindow 0x0 0x5fe78c 0x2721ac 0x2707ac 0x270
RedrawWindow 0x0 0x5fe790 0x2721b0 0x2707b0 0x24a
ValidateRect 0x0 0x5fe794 0x2721b4 0x2707b4 0x31c
GetForegroundWindow 0x0 0x5fe798 0x2721b8 0x2707b8 0x12d
SetActiveWindow 0x0 0x5fe79c 0x2721bc 0x2707bc 0x27f
TrackPopupMenu 0x0 0x5fe7a0 0x2721c0 0x2707c0 0x2f6
SetMenu 0x0 0x5fe7a4 0x2721c4 0x2707c4 0x29c
GetMenu 0x0 0x5fe7a8 0x2721c8 0x2707c8 0x14b
GetCapture 0x0 0x5fe7ac 0x2721cc 0x2707cc 0x108
GetKeyState 0x0 0x5fe7b0 0x2721d0 0x2707d0 0x13d
GetFocus 0x0 0x5fe7b4 0x2721d4 0x2707d4 0x12c
SetFocus 0x0 0x5fe7b8 0x2721d8 0x2707d8 0x292
GetDlgCtrlID 0x0 0x5fe7bc 0x2721dc 0x2707dc 0x126
GetDlgItem 0x0 0x5fe7c0 0x2721e0 0x2707e0 0x127
EndDeferWindowPos 0x0 0x5fe7c4 0x2721e4 0x2707e4 0xd9
DeferWindowPos 0x0 0x5fe7c8 0x2721e8 0x2707e8 0x9d
BeginDeferWindowPos 0x0 0x5fe7cc 0x2721ec 0x2707ec 0xd
SetWindowPlacement 0x0 0x5fe7d0 0x2721f0 0x2707f0 0x2c5
GetWindowPlacement 0x0 0x5fe7d4 0x2721f4 0x2707f4 0x19b
SetWindowPos 0x0 0x5fe7d8 0x2721f8 0x2707f8 0x2c6
DestroyWindow 0x0 0x5fe7dc 0x2721fc 0x2707fc 0xa6
IsChild 0x0 0x5fe7e0 0x272200 0x270800 0x1c9
CreateWindowExW 0x0 0x5fe7e4 0x272204 0x270804 0x6e
GetClassInfoExW 0x0 0x5fe7e8 0x272208 0x270808 0x10d
EnumDisplayMonitors 0x0 0x5fe7ec 0x27220c 0x27080c 0xe6
DestroyMenu 0x0 0x5fe7f0 0x272210 0x270810 0xa4
GetMenuItemInfoW 0x0 0x5fe7f4 0x272214 0x270814 0x154
CopyImage 0x0 0x5fe7f8 0x272218 0x270818 0x54
RealChildWindowFromPoint 0x0 0x5fe7fc 0x27221c 0x27081c 0x243
IntersectRect 0x0 0x5fe800 0x272220 0x270820 0x1bd
TrackMouseEvent 0x0 0x5fe804 0x272224 0x270824 0x2f5
IsIconic 0x0 0x5fe808 0x272228 0x270828 0x1d1
IsZoomed 0x0 0x5fe80c 0x27222c 0x27082c 0x1e2
CharUpperW 0x0 0x5fe810 0x272230 0x270830 0x3c
GetAsyncKeyState 0x0 0x5fe814 0x272234 0x270834 0x107
SetCapture 0x0 0x5fe818 0x272238 0x270838 0x280
ReleaseCapture 0x0 0x5fe81c 0x27223c 0x27083c 0x264
KillTimer 0x0 0x5fe820 0x272240 0x270840 0x1e3
GetSystemMenu 0x0 0x5fe824 0x272244 0x270844 0x17d
GetClassInfoW 0x0 0x5fe828 0x272248 0x270848 0x10e
RegisterClassW 0x0 0x5fe82c 0x27224c 0x27084c 0x24e
DeleteMenu 0x0 0x5fe830 0x272250 0x270850 0x9e
MessageBeep 0x0 0x5fe834 0x272254 0x270854 0x20d
WindowFromPoint 0x0 0x5fe838 0x272258 0x270858 0x32c
NotifyWinEvent 0x0 0x5fe83c 0x27225c 0x27085c 0x21f
CreatePopupMenu 0x0 0x5fe840 0x272260 0x270860 0x6b
GetMenuDefaultItem 0x0 0x5fe844 0x272264 0x270864 0x14f
SetMenuDefaultItem 0x0 0x5fe848 0x272268 0x270868 0x29e
IsMenu 0x0 0x5fe84c 0x27226c 0x27086c 0x1d2
UpdateLayeredWindow 0x0 0x5fe850 0x272270 0x270870 0x30e
EnableScrollBar 0x0 0x5fe854 0x272274 0x270874 0xd7
WinHelpW 0x0 0x5fe858 0x272278 0x270878 0x329
UnionRect 0x0 0x5fe85c 0x27227c 0x27087c 0x301
LoadAcceleratorsW 0x0 0x5fe860 0x272280 0x270880 0x1e5
MessageBoxW 0x0 0x5fe864 0x272284 0x270884 0x215
EnableWindow 0x0 0x5fe868 0x272288 0x270888 0xd8
SetWindowsHookExW 0x0 0x5fe86c 0x27228c 0x27088c 0x2cf
UnhookWindowsHookEx 0x0 0x5fe870 0x272290 0x270890 0x300
PostThreadMessageW 0x0 0x5fe874 0x272294 0x270894 0x239
IsWindowVisible 0x0 0x5fe878 0x272298 0x270898 0x1e0
ShowWindow 0x0 0x5fe87c 0x27229c 0x27089c 0x2df
SetForegroundWindow 0x0 0x5fe880 0x2722a0 0x2708a0 0x293
CallNextHookEx 0x0 0x5fe884 0x2722a4 0x2708a4 0x1c
GetWindowRect 0x0 0x5fe888 0x2722a8 0x2708a8 0x19c
GetClientRect 0x0 0x5fe88c 0x2722ac 0x2708ac 0x114
UpdateWindow 0x0 0x5fe890 0x2722b0 0x2708b0 0x311
SetTimer 0x0 0x5fe894 0x2722b4 0x2708b4 0x2bb
IsWindow 0x0 0x5fe898 0x2722b8 0x2708b8 0x1db
UnregisterClassW 0x0 0x5fe89c 0x2722bc 0x2708bc 0x306
GetMenuStringW 0x0 0x5fe8a0 0x2722c0 0x2708c0 0x158
GetMenuState 0x0 0x5fe8a4 0x2722c4 0x2708c4 0x156
GetSubMenu 0x0 0x5fe8a8 0x2722c8 0x2708c8 0x17a
GetMenuItemID 0x0 0x5fe8ac 0x2722cc 0x2708cc 0x152
GetMenuItemCount 0x0 0x5fe8b0 0x2722d0 0x2708d0 0x151
InsertMenuW 0x0 0x5fe8b4 0x2722d4 0x2708d4 0x1ba
AppendMenuW 0x0 0x5fe8b8 0x2722d8 0x2708d8 0xa
RemoveMenu 0x0 0x5fe8bc 0x2722dc 0x2708dc 0x267
DrawStateW 0x0 0x5fe8c0 0x2722e0 0x2708e0 0xcc
InvalidateRect 0x0 0x5fe8c4 0x2722e4 0x2708e4 0x1be
FillRect 0x0 0x5fe8c8 0x2722e8 0x2708e8 0xf6
GetClassNameW 0x0 0x5fe8cc 0x2722ec 0x2708ec 0x112
LoadBitmapW 0x0 0x5fe8d0 0x2722f0 0x2708f0 0x1e7
RegisterWindowMessageW 0x0 0x5fe8d4 0x2722f4 0x2708f4 0x263
GetMessagePos 0x0 0x5fe8d8 0x2722f8 0x2708f8 0x15b
GetMessageTime 0x0 0x5fe8dc 0x2722fc 0x2708fc 0x15c
PostMessageW 0x0 0x5fe8e0 0x272300 0x270900 0x236
DefWindowProcW 0x0 0x5fe8e4 0x272304 0x270904 0x9c
CallWindowProcW 0x0 0x5fe8e8 0x272308 0x270908 0x1e
OpenClipboard 0x0 0x5fe8ec 0x27230c 0x27090c 0x226
CloseClipboard 0x0 0x5fe8f0 0x272310 0x270910 0x49
SetClipboardData 0x0 0x5fe8f4 0x272314 0x270914 0x286
EmptyClipboard 0x0 0x5fe8f8 0x272318 0x270918 0xd5
WaitMessage 0x0 0x5fe8fc 0x27231c 0x27091c 0x327
CharNextW 0x0 0x5fe900 0x272320 0x270920 0x31
RemovePropW 0x0 0x5fe904 0x272324 0x270924 0x269
CopyAcceleratorTableW 0x0 0x5fe908 0x272328 0x270928 0x52
DestroyIcon 0x0 0x5fe90c 0x27232c 0x27092c 0xa3
LoadImageW 0x0 0x5fe910 0x272330 0x270930 0x1ef
SetCursorPos 0x0 0x5fe914 0x272334 0x270934 0x28a
BringWindowToTop 0x0 0x5fe918 0x272338 0x270938 0x10
LockWindowUpdate 0x0 0x5fe91c 0x27233c 0x27093c 0x1fd
GetDoubleClickTime 0x0 0x5fe920 0x272340 0x270940 0x12b
GetIconInfo 0x0 0x5fe924 0x272344 0x270944 0x133
CopyIcon 0x0 0x5fe928 0x272348 0x270948 0x53
ModifyMenuW 0x0 0x5fe92c 0x27234c 0x27094c 0x217
DestroyAcceleratorTable 0x0 0x5fe930 0x272350 0x270950 0xa0
SetClassLongW 0x0 0x5fe934 0x272354 0x270954 0x284
GetUpdateRect 0x0 0x5fe938 0x272358 0x270958 0x187
ToUnicodeEx 0x0 0x5fe93c 0x27235c 0x27095c 0x2f4
GetKeyboardLayout 0x0 0x5fe940 0x272360 0x270960 0x13e
GetKeyboardState 0x0 0x5fe944 0x272364 0x270964 0x142
DrawIcon 0x0 0x5fe948 0x272368 0x270968 0xc7
GetWindowRgn 0x0 0x5fe94c 0x27236c 0x27096c 0x19d
DestroyCursor 0x0 0x5fe950 0x272370 0x270970 0xa2
CreateMenu 0x0 0x5fe954 0x272374 0x270974 0x6a
GetComboBoxInfo 0x0 0x5fe958 0x272378 0x270978 0x11c
TranslateMDISysAccel 0x0 0x5fe95c 0x27237c 0x27097c 0x2fb
DefMDIChildProcW 0x0 0x5fe960 0x272380 0x270980 0x99
DefFrameProcW 0x0 0x5fe964 0x272384 0x270984 0x97
DrawMenuBar 0x0 0x5fe968 0x272388 0x270988 0xc9
MapVirtualKeyExW 0x0 0x5fe96c 0x27238c 0x27098c 0x207
IsCharLowerW 0x0 0x5fe970 0x272390 0x270990 0x1c6
IsClipboardFormatAvailable 0x0 0x5fe974 0x272394 0x270994 0x1ca
SubtractRect 0x0 0x5fe978 0x272398 0x270998 0x2e6
InvertRect 0x0 0x5fe97c 0x27239c 0x27099c 0x1c0
HideCaret 0x0 0x5fe980 0x2723a0 0x2709a0 0x1a9
FrameRect 0x0 0x5fe984 0x2723a4 0x2709a4 0xfd
ReuseDDElParam 0x0 0x5fe988 0x2723a8 0x2709a8 0x26c
UnpackDDElParam 0x0 0x5fe98c 0x2723ac 0x2709ac 0x304
InsertMenuItemW 0x0 0x5fe990 0x2723b0 0x2709b0 0x1b9
TranslateAcceleratorW 0x0 0x5fe994 0x2723b4 0x2709b4 0x2fa
CharUpperBuffW 0x0 0x5fe998 0x2723b8 0x2709b8 0x3b
RegisterClipboardFormatW 0x0 0x5fe99c 0x2723bc 0x2709bc 0x250
CreateAcceleratorTableW 0x0 0x5fe9a0 0x2723c0 0x2709c0 0x58
ScreenToClient 0x0 0x5fe9a4 0x2723c4 0x2709c4 0x26d
GDI32.dll (98)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
GetTextFaceW 0x0 0x5fe058 0x271a78 0x270078 0x224
SetPixelV 0x0 0x5fe05c 0x271a7c 0x27007c 0x29d
GetWindowOrgEx 0x0 0x5fe060 0x271a80 0x270080 0x22c
LPtoDP 0x0 0x5fe064 0x271a84 0x270084 0x234
GetViewportOrgEx 0x0 0x5fe068 0x271a88 0x270088 0x229
PtInRegion 0x0 0x5fe06c 0x271a8c 0x27008c 0x259
GetBoundsRect 0x0 0x5fe070 0x271a90 0x270090 0x1ab
FrameRgn 0x0 0x5fe074 0x271a94 0x270094 0x147
FillRgn 0x0 0x5fe078 0x271a98 0x270098 0x142
EnumFontFamiliesExW 0x0 0x5fe07c 0x271a9c 0x27009c 0x125
SetPaletteEntries 0x0 0x5fe080 0x271aa0 0x2700a0 0x29a
ExtFloodFill 0x0 0x5fe084 0x271aa4 0x2700a4 0x135
GetSystemPaletteEntries 0x0 0x5fe088 0x271aa8 0x2700a8 0x212
GetNearestPaletteIndex 0x0 0x5fe08c 0x271aac 0x2700ac 0x1f7
GetPaletteEntries 0x0 0x5fe090 0x271ab0 0x2700b0 0x200
CreatePalette 0x0 0x5fe094 0x271ab4 0x2700b4 0x49
RoundRect 0x0 0x5fe098 0x271ab8 0x2700b8 0x26a
OffsetRgn 0x0 0x5fe09c 0x271abc 0x2700bc 0x23d
Rectangle 0x0 0x5fe0a0 0x271ac0 0x2700c0 0x25f
SetDIBColorTable 0x0 0x5fe0a4 0x271ac4 0x2700c4 0x287
StretchBlt 0x0 0x5fe0a8 0x271ac8 0x2700c8 0x2b3
SetPixel 0x0 0x5fe0ac 0x271acc 0x2700cc 0x29b
RealizePalette 0x0 0x5fe0b0 0x271ad0 0x2700d0 0x25c
GetRgnBox 0x0 0x5fe0b4 0x271ad4 0x2700d4 0x20c
CreateDIBSection 0x0 0x5fe0b8 0x271ad8 0x2700d8 0x35
CreateRoundRectRgn 0x0 0x5fe0bc 0x271adc 0x2700dc 0x51
DPtoLP 0x0 0x5fe0c0 0x271ae0 0x2700e0 0xa4
SetRectRgn 0x0 0x5fe0c4 0x271ae4 0x2700e4 0x2a0
GetMapMode 0x0 0x5fe0c8 0x271ae8 0x2700e8 0x1f0
GetTextCharsetInfo 0x0 0x5fe0cc 0x271aec 0x2700ec 0x217
EnumFontFamiliesW 0x0 0x5fe0d0 0x271af0 0x2700f0 0x126
CreateFontIndirectW 0x0 0x5fe0d4 0x271af4 0x2700f4 0x40
CreateDIBitmap 0x0 0x5fe0d8 0x271af8 0x2700f8 0x36
CreateCompatibleBitmap 0x0 0x5fe0dc 0x271afc 0x2700fc 0x2f
GetTextMetricsW 0x0 0x5fe0e0 0x271b00 0x270100 0x226
Polyline 0x0 0x5fe0e4 0x271b04 0x270104 0x257
Polygon 0x0 0x5fe0e8 0x271b08 0x270108 0x256
CreatePolygonRgn 0x0 0x5fe0ec 0x271b0c 0x27010c 0x4e
PatBlt 0x0 0x5fe0f0 0x271b10 0x270110 0x246
GetTextExtentPoint32W 0x0 0x5fe0f4 0x271b14 0x270114 0x21e
GetTextColor 0x0 0x5fe0f8 0x271b18 0x270118 0x218
GetBkColor 0x0 0x5fe0fc 0x271b1c 0x27011c 0x1a9
Ellipse 0x0 0x5fe100 0x271b20 0x270120 0xed
CreateRectRgnIndirect 0x0 0x5fe104 0x271b24 0x270124 0x50
CreateEllipticRgn 0x0 0x5fe108 0x271b28 0x270128 0x38
CombineRgn 0x0 0x5fe10c 0x271b2c 0x27012c 0x22
ScaleWindowExtEx 0x0 0x5fe110 0x271b30 0x270130 0x272
ScaleViewportExtEx 0x0 0x5fe114 0x271b34 0x270134 0x271
OffsetWindowOrgEx 0x0 0x5fe118 0x271b38 0x270138 0x23f
OffsetViewportOrgEx 0x0 0x5fe11c 0x271b3c 0x27013c 0x23e
SetWindowOrgEx 0x0 0x5fe120 0x271b40 0x270140 0x2ad
SetWindowExtEx 0x0 0x5fe124 0x271b44 0x270144 0x2ac
SetViewportOrgEx 0x0 0x5fe128 0x271b48 0x270148 0x2a9
SetViewportExtEx 0x0 0x5fe12c 0x271b4c 0x27014c 0x2a8
ExtTextOutW 0x0 0x5fe130 0x271b50 0x270150 0x138
TextOutW 0x0 0x5fe134 0x271b54 0x270154 0x2b9
MoveToEx 0x0 0x5fe138 0x271b58 0x270158 0x23a
SetTextAlign 0x0 0x5fe13c 0x271b5c 0x27015c 0x2a4
SetROP2 0x0 0x5fe140 0x271b60 0x270160 0x29f
SetPolyFillMode 0x0 0x5fe144 0x271b64 0x270164 0x29e
GetLayout 0x0 0x5fe148 0x271b68 0x270168 0x1ed
SetLayout 0x0 0x5fe14c 0x271b6c 0x27016c 0x291
SetMapMode 0x0 0x5fe150 0x271b70 0x270170 0x294
SetBkMode 0x0 0x5fe154 0x271b74 0x270174 0x27f
SelectPalette 0x0 0x5fe158 0x271b78 0x270178 0x278
SelectObject 0x0 0x5fe15c 0x271b7c 0x27017c 0x277
ExtSelectClipRgn 0x0 0x5fe160 0x271b80 0x270180 0x136
SelectClipRgn 0x0 0x5fe164 0x271b84 0x270184 0x275
SaveDC 0x0 0x5fe168 0x271b88 0x270188 0x270
RestoreDC 0x0 0x5fe16c 0x271b8c 0x27018c 0x269
RectVisible 0x0 0x5fe170 0x271b90 0x270190 0x25e
PtVisible 0x0 0x5fe174 0x271b94 0x270194 0x25a
LineTo 0x0 0x5fe178 0x271b98 0x270198 0x236
IntersectClipRect 0x0 0x5fe17c 0x271b9c 0x27019c 0x230
GetWindowExtEx 0x0 0x5fe180 0x271ba0 0x2701a0 0x22b
GetViewportExtEx 0x0 0x5fe184 0x271ba4 0x2701a4 0x228
GetPixel 0x0 0x5fe188 0x271ba8 0x2701a8 0x204
GetObjectType 0x0 0x5fe18c 0x271bac 0x2701ac 0x1fc
GetClipBox 0x0 0x5fe190 0x271bb0 0x2701b0 0x1c0
ExcludeClipRect 0x0 0x5fe194 0x271bb4 0x2701b4 0x131
Escape 0x0 0x5fe198 0x271bb8 0x2701b8 0x12e
CreateRectRgn 0x0 0x5fe19c 0x271bbc 0x2701bc 0x4f
CreatePatternBrush 0x0 0x5fe1a0 0x271bc0 0x2701c0 0x4a
CreatePen 0x0 0x5fe1a4 0x271bc4 0x2701c4 0x4b
CreateHatchBrush 0x0 0x5fe1a8 0x271bc8 0x2701c8 0x43
CreateCompatibleDC 0x0 0x5fe1ac 0x271bcc 0x2701cc 0x30
BitBlt 0x0 0x5fe1b0 0x271bd0 0x2701d0 0x13
CreateBitmap 0x0 0x5fe1b4 0x271bd4 0x2701d4 0x29
SetTextColor 0x0 0x5fe1b8 0x271bd8 0x2701d8 0x2a6
SetBkColor 0x0 0x5fe1bc 0x271bdc 0x2701dc 0x27e
GetObjectW 0x0 0x5fe1c0 0x271be0 0x2701e0 0x1fd
GetStockObject 0x0 0x5fe1c4 0x271be4 0x2701e4 0x20d
DeleteObject 0x0 0x5fe1c8 0x271be8 0x2701e8 0xe6
CreateSolidBrush 0x0 0x5fe1cc 0x271bec 0x2701ec 0x54
GetDeviceCaps 0x0 0x5fe1d0 0x271bf0 0x2701f0 0x1cb
CreateDCW 0x0 0x5fe1d4 0x271bf4 0x2701f4 0x32
CopyMetaFileW 0x0 0x5fe1d8 0x271bf8 0x2701f8 0x28
DeleteDC 0x0 0x5fe1dc 0x271bfc 0x2701fc 0xe3
MSIMG32.dll (2)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
TransparentBlt 0x0 0x5fe560 0x271f80 0x270580 0x3
AlphaBlend 0x0 0x5fe564 0x271f84 0x270584 0x0
WINSPOOL.DRV (3)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
ClosePrinter 0x0 0x5fe9ec 0x27240c 0x270a0c 0x1d
DocumentPropertiesW 0x0 0x5fe9f0 0x272410 0x270a10 0x4e
OpenPrinterW 0x0 0x5fe9f4 0x272414 0x270a14 0x90
ADVAPI32.dll (19)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
RegQueryValueExA 0x0 0x5fe000 0x271a20 0x270020 0x26d
RegCloseKey 0x0 0x5fe004 0x271a24 0x270024 0x230
RegEnumKeyExW 0x0 0x5fe008 0x271a28 0x270028 0x24f
RegEnumValueW 0x0 0x5fe00c 0x271a2c 0x27002c 0x252
RegQueryValueW 0x0 0x5fe010 0x271a30 0x270030 0x26f
RegEnumKeyW 0x0 0x5fe014 0x271a34 0x270034 0x250
RegDeleteKeyW 0x0 0x5fe018 0x271a38 0x270038 0x244
RegCreateKeyExW 0x0 0x5fe01c 0x271a3c 0x27003c 0x239
RegQueryValueExW 0x0 0x5fe020 0x271a40 0x270040 0x26e
DeleteService 0x0 0x5fe024 0x271a44 0x270044 0xda
QueryServiceStatusEx 0x0 0x5fe028 0x271a48 0x270048 0x229
CloseServiceHandle 0x0 0x5fe02c 0x271a4c 0x27004c 0x57
QueryServiceStatus 0x0 0x5fe030 0x271a50 0x270050 0x228
ControlService 0x0 0x5fe034 0x271a54 0x270054 0x5c
OpenServiceW 0x0 0x5fe038 0x271a58 0x270058 0x1fb
OpenSCManagerW 0x0 0x5fe03c 0x271a5c 0x27005c 0x1f9
RegSetValueExW 0x0 0x5fe040 0x271a60 0x270060 0x27e
RegDeleteValueW 0x0 0x5fe044 0x271a64 0x270064 0x248
RegOpenKeyExW 0x0 0x5fe048 0x271a68 0x270068 0x261
SHELL32.dll (13)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
DragQueryFileW 0x0 0x5fe5c8 0x271fe8 0x2705e8 0x1f
SHGetFolderPathW 0x0 0x5fe5cc 0x271fec 0x2705ec 0xc3
ShellExecuteExW 0x0 0x5fe5d0 0x271ff0 0x2705f0 0x121
ShellExecuteW 0x0 0x5fe5d4 0x271ff4 0x2705f4 0x122
SHGetMalloc 0x0 0x5fe5d8 0x271ff8 0x2705f8 0xcf
SHGetPathFromIDListW 0x0 0x5fe5dc 0x271ffc 0x2705fc 0xd7
SHGetSpecialFolderLocation 0x0 0x5fe5e0 0x272000 0x270600 0xdf
SHBrowseForFolderW 0x0 0x5fe5e4 0x272004 0x270604 0x7b
SHGetDesktopFolder 0x0 0x5fe5e8 0x272008 0x270608 0xb6
SHAppBarMessage 0x0 0x5fe5ec 0x27200c 0x27060c 0x72
DragFinish 0x0 0x5fe5f0 0x272010 0x270610 0x1b
CommandLineToArgvW 0x0 0x5fe5f4 0x272014 0x270614 0x6
SHGetFileInfoW 0x0 0x5fe5f8 0x272018 0x270618 0xbd
COMCTL32.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
InitCommonControlsEx 0x0 0x5fe050 0x271a70 0x270070 0x7b
SHLWAPI.dll (10)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
PathFindFileNameW 0x0 0x5fe600 0x272020 0x270620 0x49
PathAppendW 0x0 0x5fe604 0x272024 0x270624 0x34
PathFileExistsW 0x0 0x5fe608 0x272028 0x270628 0x45
PathFindExtensionW 0x0 0x5fe60c 0x27202c 0x27062c 0x47
PathFileExistsA 0x0 0x5fe610 0x272030 0x270630 0x44
StrTrimW 0x0 0x5fe614 0x272034 0x270634 0x150
PathRemoveFileSpecW 0x0 0x5fe618 0x272038 0x270638 0x8b
PathIsUNCW 0x0 0x5fe61c 0x27203c 0x27063c 0x71
PathStripToRootW 0x0 0x5fe620 0x272040 0x270640 0x97
StrFormatKBSizeW 0x0 0x5fe624 0x272044 0x270644 0x12d
UxTheme.dll (12)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
IsAppThemed 0x0 0x5fe9ac 0x2723cc 0x2709cc 0x3d
OpenThemeData 0x0 0x5fe9b0 0x2723d0 0x2709d0 0x43
CloseThemeData 0x0 0x5fe9b4 0x2723d4 0x2709d4 0x9
DrawThemeBackground 0x0 0x5fe9b8 0x2723d8 0x2709d8 0xa
GetThemeColor 0x0 0x5fe9bc 0x2723dc 0x2709dc 0x22
GetCurrentThemeName 0x0 0x5fe9c0 0x2723e0 0x2709e0 0x1b
DrawThemeParentBackground 0x0 0x5fe9c4 0x2723e4 0x2709e4 0xe
DrawThemeText 0x0 0x5fe9c8 0x2723e8 0x2709e8 0x10
GetThemePartSize 0x0 0x5fe9cc 0x2723ec 0x2709ec 0x2b
IsThemeBackgroundPartiallyTransparent 0x0 0x5fe9d0 0x2723f0 0x2709f0 0x40
GetThemeSysColor 0x0 0x5fe9d4 0x2723f4 0x2709f4 0x32
GetWindowTheme 0x0 0x5fe9d8 0x2723f8 0x2709f8 0x3b
ole32.dll (34)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
OleGetClipboard 0x0 0x5feab4 0x2724d4 0x270ad4 0x12f
OleUninitialize 0x0 0x5feab8 0x2724d8 0x270ad8 0x149
OleInitialize 0x0 0x5feabc 0x2724dc 0x270adc 0x132
CoFreeUnusedLibraries 0x0 0x5feac0 0x2724e0 0x270ae0 0x1d
DoDragDrop 0x0 0x5feac4 0x2724e4 0x270ae4 0x8c
OleIsCurrentClipboard 0x0 0x5feac8 0x2724e8 0x270ae8 0x134
CoLockObjectExternal 0x0 0x5feacc 0x2724ec 0x270aec 0x47
RegisterDragDrop 0x0 0x5fead0 0x2724f0 0x270af0 0x157
RevokeDragDrop 0x0 0x5fead4 0x2724f4 0x270af4 0x159
OleLockRunning 0x0 0x5fead8 0x2724f8 0x270af8 0x138
CoInitializeEx 0x0 0x5feadc 0x2724fc 0x270afc 0x3f
OleCreateMenuDescriptor 0x0 0x5feae0 0x272500 0x270b00 0x127
OleDestroyMenuDescriptor 0x0 0x5feae4 0x272504 0x270b04 0x129
OleTranslateAccelerator 0x0 0x5feae8 0x272508 0x270b08 0x148
IsAccelerator 0x0 0x5feaec 0x27250c 0x270b0c 0xce
CoRevokeClassObject 0x0 0x5feaf0 0x272510 0x270b10 0x5f
CoRegisterMessageFilter 0x0 0x5feaf4 0x272514 0x270b14 0x56
CreateStreamOnHGlobal 0x0 0x5feaf8 0x272518 0x270b18 0x86
CreateILockBytesOnHGlobal 0x0 0x5feafc 0x27251c 0x270b1c 0x80
StgOpenStorageOnILockBytes 0x0 0x5feb00 0x272520 0x270b20 0x175
StgCreateDocfileOnILockBytes 0x0 0x5feb04 0x272524 0x270b24 0x168
CoGetClassObject 0x0 0x5feb08 0x272528 0x270b28 0x26
CoDisconnectObject 0x0 0x5feb0c 0x27252c 0x270b2c 0x16
CoInitialize 0x0 0x5feb10 0x272530 0x270b30 0x3e
CoCreateInstance 0x0 0x5feb14 0x272534 0x270b34 0x10
CLSIDFromProgID 0x0 0x5feb18 0x272538 0x270b38 0x6
CLSIDFromString 0x0 0x5feb1c 0x27253c 0x270b3c 0x8
CoCreateGuid 0x0 0x5feb20 0x272540 0x270b40 0xf
CoUninitialize 0x0 0x5feb24 0x272544 0x270b44 0x6c
ReleaseStgMedium 0x0 0x5feb28 0x272548 0x270b48 0x158
OleDuplicateData 0x0 0x5feb2c 0x27254c 0x270b4c 0x12c
CoTaskMemFree 0x0 0x5feb30 0x272550 0x270b50 0x68
CoTaskMemAlloc 0x0 0x5feb34 0x272554 0x270b54 0x67
OleFlushClipboard 0x0 0x5feb38 0x272558 0x270b58 0x12d
OLEAUT32.dll (14)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
SafeArrayDestroy 0x10 0x5fe57c 0x271f9c 0x27059c -
SysAllocString 0x2 0x5fe580 0x271fa0 0x2705a0 -
VariantTimeToSystemTime 0xb9 0x5fe584 0x271fa4 0x2705a4 -
VariantCopy 0xa 0x5fe588 0x271fa8 0x2705a8 -
VarBstrFromDate 0x72 0x5fe58c 0x271fac 0x2705ac -
LoadTypeLib 0xa1 0x5fe590 0x271fb0 0x2705b0 -
OleCreateFontIndirect 0x1a4 0x5fe594 0x271fb4 0x2705b4 -
VariantChangeType 0xc 0x5fe598 0x271fb8 0x2705b8 -
VariantClear 0x9 0x5fe59c 0x271fbc 0x2705bc -
VariantInit 0x8 0x5fe5a0 0x271fc0 0x2705c0 -
SysAllocStringLen 0x4 0x5fe5a4 0x271fc4 0x2705c4 -
SystemTimeToVariantTime 0xb8 0x5fe5a8 0x271fc8 0x2705c8 -
SysStringLen 0x7 0x5fe5ac 0x271fcc 0x2705cc -
SysFreeString 0x6 0x5fe5b0 0x271fd0 0x2705d0 -
oledlg.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
OleUIBusyW 0x0 0x5feb40 0x272560 0x270b60 0x3
gdiplus.dll (22)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
GdipBitmapLockBits 0x0 0x5fea58 0x272478 0x270a78 0x2b
GdipDrawImageRectI 0x0 0x5fea5c 0x27247c 0x270a7c 0xb8
GdiplusShutdown 0x0 0x5fea60 0x272480 0x270a80 0x274
GdipAlloc 0x0 0x5fea64 0x272484 0x270a84 0x21
GdipFree 0x0 0x5fea68 0x272488 0x270a88 0xed
GdiplusStartup 0x0 0x5fea6c 0x27248c 0x270a8c 0x275
GdipCloneImage 0x0 0x5fea70 0x272490 0x270a90 0x36
GdipDisposeImage 0x0 0x5fea74 0x272494 0x270a94 0x98
GdipGetImageGraphicsContext 0x0 0x5fea78 0x272498 0x270a98 0x121
GdipGetImageWidth 0x0 0x5fea7c 0x27249c 0x270a9c 0x12c
GdipGetImageHeight 0x0 0x5fea80 0x2724a0 0x270aa0 0x122
GdipGetImagePixelFormat 0x0 0x5fea84 0x2724a4 0x270aa4 0x127
GdipGetImagePalette 0x0 0x5fea88 0x2724a8 0x270aa8 0x125
GdipGetImagePaletteSize 0x0 0x5fea8c 0x2724ac 0x270aac 0x126
GdipCreateBitmapFromStream 0x0 0x5fea90 0x2724b0 0x270ab0 0x51
GdipCreateBitmapFromScan0 0x0 0x5fea94 0x2724b4 0x270ab4 0x50
GdipSetInterpolationMode 0x0 0x5fea98 0x2724b8 0x270ab8 0x218
GdipBitmapUnlockBits 0x0 0x5fea9c 0x2724bc 0x270abc 0x2e
GdipDeleteGraphics 0x0 0x5feaa0 0x2724c0 0x270ac0 0x90
GdipDrawImageI 0x0 0x5feaa4 0x2724c4 0x270ac4 0xb0
GdipCreateBitmapFromHBITMAP 0x0 0x5feaa8 0x2724c8 0x270ac8 0x4d
GdipCreateFromHDC 0x0 0x5feaac 0x2724cc 0x270acc 0x5b
WINMM.dll (2)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
PlaySoundW 0x0 0x5fe9e0 0x272400 0x270a00 0x9
timeGetTime 0x0 0x5fe9e4 0x272404 0x270a04 0x94
MPR.dll (3)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
WNetEnumResourceW 0x0 0x5fe550 0x271f70 0x270570 0x1c
WNetCloseEnum 0x0 0x5fe554 0x271f74 0x270574 0x10
WNetOpenEnumW 0x0 0x5fe558 0x271f78 0x270578 0x3d
PSAPI.DLL (3)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
EnumProcesses 0x0 0x5fe5b8 0x271fd8 0x2705d8 0x6
GetModuleBaseNameW 0x0 0x5fe5bc 0x271fdc 0x2705dc 0xe
EnumProcessModules 0x0 0x5fe5c0 0x271fe0 0x2705e0 0x4
WS2_32.dll (22)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
WSASetLastError 0x70 0x5fe9fc 0x27241c 0x270a1c -
getsockname 0x6 0x5fea00 0x272420 0x270a20 -
getsockopt 0x7 0x5fea04 0x272424 0x270a24 -
connect 0x4 0x5fea08 0x272428 0x270a28 -
bind 0x2 0x5fea0c 0x27242c 0x270a2c -
accept 0x1 0x5fea10 0x272430 0x270a30 -
htonl 0x8 0x5fea14 0x272434 0x270a34 -
freeaddrinfo 0x0 0x5fea18 0x272438 0x270a38 0x88
getaddrinfo 0x0 0x5fea1c 0x27243c 0x270a3c 0x89
WSAGetLastError 0x6f 0x5fea20 0x272440 0x270a40 -
setsockopt 0x15 0x5fea24 0x272444 0x270a44 -
WSASocketW 0x0 0x5fea28 0x272448 0x270a48 0x53
WSASend 0x0 0x5fea2c 0x27244c 0x270a4c 0x49
WSARecv 0x0 0x5fea30 0x272450 0x270a50 0x44
listen 0xd 0x5fea34 0x272454 0x270a54 -
select 0x12 0x5fea38 0x272458 0x270a58 -
ioctlsocket 0xa 0x5fea3c 0x27245c 0x270a5c -
closesocket 0x3 0x5fea40 0x272460 0x270a60 -
__WSAFDIsSet 0x97 0x5fea44 0x272464 0x270a64 -
WSACleanup 0x74 0x5fea48 0x272468 0x270a68 -
WSAStartup 0x73 0x5fea4c 0x27246c 0x270a6c -
WSAIoctl 0x0 0x5fea50 0x272470 0x270a70 0x36
OLEACC.dll (3)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
AccessibleObjectFromWindow 0x0 0x5fe56c 0x271f8c 0x27058c 0x3
LresultFromObject 0x0 0x5fe570 0x271f90 0x270590 0x14
CreateStdAccessibleObject 0x0 0x5fe574 0x271f94 0x270594 0x4
IMM32.dll (3)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
ImmGetContext 0x0 0x5fe1e4 0x271c04 0x270204 0x38
ImmGetOpenStatus 0x0 0x5fe1e8 0x271c08 0x270208 0x4a
ImmReleaseContext 0x0 0x5fe1ec 0x271c0c 0x27020c 0x68
Icons (1)
»
C:\Users\CIIHMN~1\AppData\Local\Temp\delself.bat Created File Text
Unknown
...
»
Mime Type text/x-msdos-batch
File Size 0.20 KB
MD5 acfb0de338bfba069b70958af4a84596 Copy to Clipboard
SHA1 17d3b8fada4e3e2e6a4bd58e29eb77786d209c5a Copy to Clipboard
SHA256 e5795b97792418567f4f3b8401405c2144b21f691b854c564b8ec8b73c6a63c9 Copy to Clipboard
SSDeep 6:h0zocFOkwECvMD2UzocFOkwEa/vFQ8gZi23f9sX4H:lp1rnzgZZFpH Copy to Clipboard
C:\!!!KEYPASS_DECRYPTION_INFO!!!.txt Created File Text
Unknown
...
»
Also Known As C:\$Recycle.Bin\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\$Recycle.Bin\S-1-5-18\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\$Recycle.Bin\S-1-5-21-1462094071-1423818996-289466292-1000\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\bg-BG\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\cs-CZ\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\da-DK\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\de-DE\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\el-GR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\en-GB\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\es-ES\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\es-MX\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\et-EE\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\fi-FI\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\Fonts\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\fr-CA\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\fr-FR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\hr-HR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\hu-HU\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\it-IT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\ja-JP\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\ko-KR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\lt-LT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\lv-LV\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\nb-NO\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\nl-NL\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\pl-PL\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\pt-BR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\pt-PT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\qps-ploc\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\Resources\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\Resources\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\ro-RO\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\ru-RU\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\sk-SK\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\sl-SI\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\sr-Latn-CS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\sr-Latn-RS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\sv-SE\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\tr-TR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\uk-UA\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\zh-CN\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\zh-HK\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Boot\zh-TW\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Config.Msi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
c:\users\!!!keypass_decryption_info!!!.txt (Created File)
C:\PerfLogs\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\DESIGNER\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ClickToRun\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\ar-SA\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\bg-BG\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\cs-CZ\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\da-DK\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\de-DE\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\el-GR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\en-GB\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\es-ES\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\es-MX\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\et-EE\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fi-FI\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fr-CA\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fr-FR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\auxpad\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\insert\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\keypad\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskclearui\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskmenu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\osknav\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\osknumpad\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskpred\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\symbols\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\he-IL\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\hr-HR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\hu-HU\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\HWRCustomization\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\it-IT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\ja-JP\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\ko-KR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\LanguageModel\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\lt-LT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\lv-LV\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\nb-NO\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\nl-NL\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\pl-PL\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\pt-BR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\pt-PT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\ro-RO\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\ru-RU\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\sk-SK\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\sl-SI\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\sr-Latn-CS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\sr-Latn-RS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\sv-SE\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\th-TH\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\tr-TR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\uk-UA\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\zh-CN\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\zh-HK\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\ink\zh-TW\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\MSInfo\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\MSInfo\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\OFFICE16\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\OFFICE16\Office Setup Controller\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\Source Engine\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\Stationery\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\TextConv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\TextConv\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\Triedit\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\Triedit\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\VC\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\VGX\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\VSTO\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\VSTO\10.0\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\microsoft shared\VSTO\10.0\1033\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\Services\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\System\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\System\ado\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\System\ado\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\System\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\System\msadc\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\System\msadc\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\System\Ole DB\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Common Files\System\Ole DB\en-US\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\bin\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\bin\plugin2\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\bin\server\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\amd64\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\applet\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\cmm\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\deploy\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\ext\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\fonts\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\images\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\images\cursors\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\jfr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\management\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Java\jre1.8.0_131\lib\security\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\Office16\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\PackageManifests\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\client\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\CLIPART\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\CLIPART\PUB60COR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\CLIPART\Publisher\Backgrounds\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Document Themes 16\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Flattener\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\fre\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Integration\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Licenses\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Licenses16\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\mcxml\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\mcxml\en-us\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\mcxml\es-es\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\mcxml\fr-fr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\mcxml\x-none\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office15\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\1033\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\1033\Bibliography\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\1033\DataServices\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\1033\PUBFTSCM\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\1033\PUBSPAPR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\1033\QuickStyles\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\1036\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\3082\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\AccessWeb\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ACCWIZ\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\af\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\am\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ar\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\as\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\az-Latn-AZ\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\be\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\bg\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\bn-BD\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\bn-IN\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\bs-Latn-BA\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ca\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ca-ES-valencia\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\cs\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\cy\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\da\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\de\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\el\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\es\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\et\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\eu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\fa\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\fi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\fil\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\fr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ga\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\gd\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\gl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\gu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\he\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\hi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\hr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\hu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\hy\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\id\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\is\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\it\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ja\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ka\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\kk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\km\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\kn\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ko\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\kok\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ky\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\lb\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\lt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\lv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\mi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\mk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ml\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\mn\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\mr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ms\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\mt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ne\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\nl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\nn-NO\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\no\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\or\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\pa\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\pl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\prs-AF\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\pt-BR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\pt-pt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\quz\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ro\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ru\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sd-Arab-PK\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\si\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sq\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sr-Cyrl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sr-Cyrl-BA\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sr-Latn\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sr-Latn-CS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\sw\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ta\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\te\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\th\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\tk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\tr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\tt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ug\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\uk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ur\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\uz-Latn-UZ\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\vi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\zh-HANS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\zh-HANT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\ar\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\bg\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\ca\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\cs\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\da\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\de\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\el\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\es\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\et\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\eu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\fi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\fr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\gl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\he\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\hi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\hr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\hu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\id\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\it\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\ja\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\kk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\ko\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\lt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\lv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\ms\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\nl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\no\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\pl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\pt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\pt-PT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\ro\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\ru\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\sk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\sl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\sr-cyrl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\sr-latn\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\sr-Latn-CS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\sv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\th\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\tr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\uk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\vi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\zh-CHS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\zh-CHT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\ar\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\bg\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\ca\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\cs\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\da\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\de\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\el\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\en\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\es\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\et\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\eu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\fi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\fr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\gl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\he\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\hi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\hr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\hu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\id\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\it\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\ja\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\kk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\ko\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\lt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\lv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\ms\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\nl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\no\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\pl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\pt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\pt-PT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1025\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1026\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\10266\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1027\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1028\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1029\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1030\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1031\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1032\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1033\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1035\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1036\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1037\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1038\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1040\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1041\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1042\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1043\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1044\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1045\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1046\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1048\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1049\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1050\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1051\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1053\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1054\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1055\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1057\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1058\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1060\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1061\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1062\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1063\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1066\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1069\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1081\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1086\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1087\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\1110\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\2052\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\2070\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\2074\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\3082\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\9242\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\ro\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\ru\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\sk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\sl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\sr-cyrl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\sr-latn\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\sr-Latn-CS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\sv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\th\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\tr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\uk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\vi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\zh-CHS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\zh-CHT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\AugLoop\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Bibliography\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Bibliography\Sort\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\BORDERS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Configuration\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\CONVERT\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\CONVERT\1033\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Document Parts\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Document Parts\1033\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Document Parts\1033\16\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FORMS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FORMS\1033\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_f14\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_f2\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_f3\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_f4\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_f7\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_FA000000006\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_FA000000008\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_FA000000011\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\FPA_w1\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Certificates\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Certificates\groove.net\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Certificates\groove.net\Components\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Certificates\groove.net\ManagedObjects\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Certificates\groove.net\Servers\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Certificates\Verisign\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Certificates\Verisign\Components\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Sounds\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Sounds\People\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Sounds\Places\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\Sounds\Things\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\ToolBMPs\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\ToolData\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\ToolData\groove.net\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\ToolData\groove.net\CommonData\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\ToolData\groove.net\Computers\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Groove\ToolIcons\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Library\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Library\Analysis\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Library\SOLVER\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\LogoImages\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\lpc.win32\images\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\lpc.win32\images\default\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\Media\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\ar\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\bg\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\ca\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\cs\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\da\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\de\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\el\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\en-us\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\es\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\et\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\eu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\fi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\fr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\gl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\he\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\hi\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\hr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\hu\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\id\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\it\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\ja\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\kk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\ko\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\lt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\lv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\ms\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\nl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\no\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\pl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\pt\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\pt-BR\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\ro\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\ru\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\sk\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\sl\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Cyrl-BA\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Cyrl-CS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Cyrl-RS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Latn-CS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Latn-RS\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\sv\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\th\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
C:\Program Files\Microsoft Office\root\Office16\MSIPC\tr\!!!KEYPASS_DECRYPTION_INFO!!!.txt (Created File)
Mime Type text/plain
File Size 0.95 KB
MD5 7b524f54f0992e83a17918784cfe1f2b Copy to Clipboard
SHA1 9d8b4a475cf0d53603c0ff53db61cbf235b30146 Copy to Clipboard
SHA256 5db4798b70270a01070bec6705c86348e1516f971a6df8583e02f4f35520b37b Copy to Clipboard
SSDeep 24:Mmu8yOp6IlrjFbcYrJyoFRjWiZVJ10sOAzzcowIYbiEcZAEcnp3o:MmCOp6w++4NoXmszzcvxgvO4 Copy to Clipboard
Exit-Icon
WHOIS Domain Information
Domain Name
WHOIS Response 

       		
      

     

    

   

  

  

  

  

   

    
    

     Function Logfile
    

    

     

      Download-Icon
     

    

    

     Exit-Icon
    

   

   

    

     

      
       This feature requires an online-connection to the VMRay backend.
      
      

      

      An offline version with limited functionality is also provided.
      

      The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".
     

     

    

   

   

    Before
   

   

    

     

      
       This feature requires an online-connection to the VMRay backend.
      
      

      

      An offline version with limited functionality is also provided.
      

      The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".
     

     

    

   

   

    After
   

   

    

     

      
       This feature requires an online-connection to the VMRay backend.
      
      

      

      An offline version with limited functionality is also provided.
      

      The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".
     

     

    

   

   

    

     
      

       
       
       
       
      

     
     
     
    

   

  

  

   

    
    

     Screenshot
    

    

     Expand-Icon
    

    

     Exit-Icon
    

   

   

    

     icon_left
    

    

     icon_left
    

   

   

   

   

    image