Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: sordid-snaked.cyou |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: awake-weaves.cyou |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: wrathful-jammy.cyou |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: debonairnukk.xyz |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: diffuculttan.xyz |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: effecterectz.xyz |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: deafeninggeh.biz |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: immureprech.biz |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: poweryressz.click |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: lid=%s&j=%s&ver=4.0 |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: TeslaBrowser/5.5 |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: - Screen Resoluton: |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: - Physical Installed Memory: |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: Workgroup: - |
Source: 00000000.00000002.3237395177.00000000038C0000.00000004.00001000.00020000.00000000.sdmp | String decryptor: Dvh8ui--n9 |
Source: BDxsBr8Dce.exe | String found in binary or memory: ftp://.mode |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://bugreports.qt.io/ |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://bugreports.qt.io/Microsoft-IIS/4.Microsoft-IIS/5.Netscape-Enterprise/3.WebLogicRocketdetected |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://cacerts.digicert.com/DigiCertGlobalRootCA.crt0 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://cacerts.digicert.com/DigiCertGlobalRootCA.crt0B |
Source: BDxsBr8Dce.exe, 00000000.00000003.1752180305.0000000001D57000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3237107985.0000000001D59000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: http://crl.microsoft |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crl.rootca1.amazontrust.com/rootca1.crl0 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1549536823.0000000004A94000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crl.sectigo.com/SectigoPublicTimeStampingCAR36.crl0z |
Source: BDxsBr8Dce.exe, 00000000.00000003.1549536823.0000000004A94000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crl.sectigo.com/SectigoPublicTimeStampingRootR46.crl0 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crl07 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crl0= |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crl4.digicert.com/DigiCertGlobalRootCA.crl00 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crt.rootca1.amazontrust.com/rootca1.cer0? |
Source: BDxsBr8Dce.exe, 00000000.00000003.1549536823.0000000004A94000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crt.sectigo.com/SectigoPublicTimeStampingCAR36.crt0# |
Source: BDxsBr8Dce.exe, 00000000.00000003.1549536823.0000000004A94000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://crt.sectigo.com/SectigoPublicTimeStampingRootR46.p7c0# |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://ocsp.digicert.com0 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://ocsp.rootca1.amazontrust.com0: |
Source: BDxsBr8Dce.exe, 00000000.00000003.1549536823.0000000004A94000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://ocsp.sectigo.com0 |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://qt-project.org/ |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://qt-project.org/xml/features/report-start-end-entity |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://qt-project.org/xml/features/report-whitespace-only-CharData |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://qt.digia.com/ |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://qt.digia.com/Product/Licensing/ |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://trolltech.com/xml/features/report-start-end-entity |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://trolltech.com/xml/features/report-whitespace-only-CharData |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://www.phreedom.org/md5) |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://www.phreedom.org/md5)08:27 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://x1.c.lencr.org/0 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1646404644.0000000004818000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: http://x1.i.lencr.org/0 |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://xml.org/sax/features/namespace-prefixes |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://xml.org/sax/features/namespaces |
Source: BDxsBr8Dce.exe | String found in binary or memory: http://xml.org/sax/features/namespaceshttp://xml.org/sax/features/namespace-prefixeshttp://trolltech |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://ac.ecosia.org/autocomplete?q= |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647849824.00000000047E8000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://bridge.sfo1.admarketplace.net/ctp?version=16.0.0&key=1696495411400900000.2&ci=1696495411208. |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647849824.00000000047E8000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://bridge.sfo1.ap01.net/ctp?version=16.0.0&key=1696495411400900000.1&ci=1696495411208.12791&cta |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://cdn.ecosia.org/assets/images/ico/favicon.icohttps://www.ecosia.org/search?q= |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://ch.search.yahoo.com/favicon.icohttps://ch.search.yahoo.com/search |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://ch.search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command= |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647849824.00000000047E8000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://contile-images.services.mozilla.com/CuERQnIs4CzqjKBh9os6_h9d4CUDCHO3oiqmAQO6VLM.25122.jpg |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647849824.00000000047E8000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://contile-images.services.mozilla.com/obgoOYObjIFea_bXuT6L4LbBJ8j425AD87S1HMD3BWg.9991.jpg |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://duckduckgo.com/ac/?q= |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://duckduckgo.com/chrome_newtab |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://duckduckgo.com/favicon.icohttps://duckduckgo.com/?q= |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647849824.00000000047E8000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://imp.mt48.net/static?id=7RHzfOIXjFEYsBdvIpkX4Qqm4pqd4plX4pbW1CbWfpbW7ReNxR3UIG8zInwYIFIVs9eYi |
Source: BDxsBr8Dce.exe, 00000000.00000003.2386217778.0000000001D81000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3237169586.0000000001D81000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.2386465145.0000000001D04000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.2386217778.0000000001D6F000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3237155372.0000000001D70000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3236997897.0000000001D04000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://kliplorihoe0.shop/int_clp_ldr_pan.txt |
Source: BDxsBr8Dce.exe, 00000000.00000002.3237666672.0000000003D4A000.00000004.00000010.00020000.00000000.sdmp | String found in binary or memory: https://kliplorihoe0.shop/int_clp_ldr_pan.txt537.36 |
Source: BDxsBr8Dce.exe, 00000000.00000003.2386465145.0000000001D04000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3236997897.0000000001D04000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://kliplorihoe0.shop/int_clp_ldr_pan.txtfu |
Source: BDxsBr8Dce.exe, 00000000.00000003.1599778820.0000000001D6B000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.2386465145.0000000001CEC000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://poweryressz.click/ |
Source: BDxsBr8Dce.exe, 00000000.00000003.2386217778.0000000001D81000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1752367178.0000000001D85000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.2386501646.0000000001D85000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3237260851.0000000001D87000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://poweryressz.click/-Control |
Source: BDxsBr8Dce.exe, 00000000.00000002.3237107985.0000000001D5D000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1646245461.00000000047DD000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.2386217778.0000000001D81000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1752392605.0000000001D81000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1708797314.00000000047F7000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1670500741.00000000047F5000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1692027815.00000000047F5000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1645810683.00000000047F4000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3237169586.0000000001D81000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3236997897.0000000001CEE000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1645754992.00000000047F3000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1645986650.00000000047DD000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1670933153.00000000047DD000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1668872001.00000000047F5000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.2386339814.00000000047F4000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1668699168.00000000047F5000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1752180305.0000000001D5D000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.2386465145.0000000001CEC000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://poweryressz.click/api |
Source: BDxsBr8Dce.exe, 00000000.00000003.1708797314.00000000047F7000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1670500741.00000000047F5000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1692027815.00000000047F5000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1668872001.00000000047F5000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.2386339814.00000000047F4000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1668699168.00000000047F5000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://poweryressz.click/api9v |
Source: BDxsBr8Dce.exe, 00000000.00000003.1668762965.0000000001D77000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://poweryressz.click/apia |
Source: BDxsBr8Dce.exe, 00000000.00000003.1668762965.0000000001D77000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://poweryressz.click/apih |
Source: BDxsBr8Dce.exe, 00000000.00000003.2386217778.0000000001D81000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1752392605.0000000001D81000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3237169586.0000000001D81000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://poweryressz.click/apilC |
Source: BDxsBr8Dce.exe, 00000000.00000003.1692106471.0000000001D85000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1691967736.0000000001D82000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://poweryressz.click:443/api- |
Source: BDxsBr8Dce.exe, 00000000.00000003.1549536823.0000000004A94000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://sectigo.com/CPS0 |
Source: BDxsBr8Dce.exe, 00000000.00000003.2386465145.0000000001D04000.00000004.00000020.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000002.3236997897.0000000001D04000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://slotwang.com/file/SigmaHealth.exe |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647439842.0000000004A84000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://support.mozilla.org/kb/customize-firefox-controls-buttons-and-toolbars?utm_source=firefox-br |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647439842.0000000004A84000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://support.mozilla.org/products/firefoxgro.all |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647849824.00000000047E8000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.amazon.com/?tag=admarketus-20&ref=pd_sl_e149f5d53c9263616797a13067f7a114fa287709b159d0a5 |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.ecosia.org/newtab/ |
Source: BDxsBr8Dce.exe, 00000000.00000003.1600138824.000000000479C000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600209487.0000000004799000.00000004.00000800.00020000.00000000.sdmp, BDxsBr8Dce.exe, 00000000.00000003.1600292349.0000000004799000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.google.com/images/branding/product/ico/googleg_lodp.ico |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647849824.00000000047E8000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.invisalign.com/?utm_source=admarketplace&utm_medium=paidsearch&utm_campaign=Invisalign&u |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647439842.0000000004A84000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.mozilla.org/about/gro.allizom.www.HCe2hc5EPKfq |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647439842.0000000004A84000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.mozilla.org/contribute/gro.allizom.www.oX6J3D7V9Efv |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647439842.0000000004A84000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.mozilla.org/en-US/privacy/firefox/Firefox |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647439842.0000000004A84000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.mozilla.org/firefox/?utm_medium=firefox-desktop&utm_source=bookmarks-toolbar&utm_campaig |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647439842.0000000004A84000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.mozilla.org/media/img/mozorg/mozilla-256.4720741d4108.jpg |
Source: BDxsBr8Dce.exe, 00000000.00000003.1647439842.0000000004A84000.00000004.00000800.00020000.00000000.sdmp | String found in binary or memory: https://www.mozilla.org/privacy/firefox/gro.allizom.www. |
Source: BDxsBr8Dce.exe | String found in binary or memory: Wrong argument(s) for option --startserver. |
Source: BDxsBr8Dce.exe | String found in binary or memory: no-force-installations |
Source: BDxsBr8Dce.exe | String found in binary or memory: <!--StartFragment--> |
Source: BDxsBr8Dce.exe | String found in binary or memory: --startserver |
Source: BDxsBr8Dce.exe | String found in binary or memory: Your installation seems to be corrupted. Please consider re-installing from scratch. |
Source: BDxsBr8Dce.exe | String found in binary or memory: Wrong argument(s) for option --startserver. |
Source: BDxsBr8Dce.exe | String found in binary or memory: Installer Framework SHA1: "4d8d527"Build date: "Jun 1 2015"IFW Version: "2.0.1"yyyy-MM-dd - HH:mm:ssInstaller creation time: 2.0.1The following options are mutually exclusive: %1., Wrong argument(s) for option --startserver.1quit()2destroyed()Unknown option: Unknown exception caught.:/metadataException thrown: %sstring too longinvalid string positionbad cast |
Source: BDxsBr8Dce.exe | String found in binary or memory: no-force-installations |
Source: BDxsBr8Dce.exe | String found in binary or memory: ifw_srvDefaultAuthorizationKeyproxyscriptupdatermanage-packagesno-force-installationsshow-virtual-componentslogging-rulescreate-local-repositoryaddRepositoryaddTempRepositorysetTempRepositorystartclient |
Source: BDxsBr8Dce.exe | String found in binary or memory: :/metadata/installer-config/ |
Source: BDxsBr8Dce.exe | String found in binary or memory: create Error-Exception:/lockmyApp1234865.lockAnother %1 instance is already running. Wait until it finishes, close it, or restart your system.Waiting for %1AlreadyRunningifw.* = falseLanguage:No UI language setArguments: QResources:/metadata/Updates.xmlScript file does not exist.:/metadata/installer-config/Cannot start installer binary as updater.Cannot start installer binary as package manager.Empty repository list for option 'addRepository'.Empty repository list for option 'addTempRepository'.Empty repository list for option 'setTempRepository'.:/translations_qtResource tree::/:/qt-project.org Adding custom repository:.datfalsetrue |
Source: BDxsBr8Dce.exe | String found in binary or memory: /lockmyApp15021976.lockAn instance is already checking for updates.Installers cannot check for updates.There are currently no updates available.updatesupdatenameversionsizeKey=Valueversionframework-versionvverboseproxyscriptcheckupdatesupdatermanage-packagesno-force-installationsshow-virtual-componentslogging-rulescreate-local-repositoryaddRepositoryaddTempRepositorysetTempRepositorystartserverstartclientDisplays version information.Displays the version of the Qt Installer Framework.Verbose mode. Prints out more information.Use system proxy on Windows and Linux. This option has no effect on OS X.fileExecute the script given as argument.Check for updates and return an XML description.Start application in updater mode.Start application in package manager mode.Allow deselecting components that are marked as forced.Show virtual components in installer and package manager.rulesEnables logging according to passed rules. Comma separated logging rules have the following syntax: loggingCategory=true/false. Passing empty logging rules enables all logging categories. The following rules enable a single category: ifw.*=false,ifw.category=true The following logging categories are available: |
Source: BDxsBr8Dce.exe | String found in binary or memory: Your installation seems to be corrupted. Please consider re-installing from scratch. |
Source: BDxsBr8Dce.exe | String found in binary or memory: Downloading packages...1cancel()2installationInterrupted()1emitLabelAndDetailTextChanged(QString)2outputTextChanged(QString)2downloadStatusChanged(QString)2progressChanged(double)Installation canceled by userAll downloads finished.Cancelling the InstallerprogressChanged(double)adminuninstall-onlyMkdirforceremovalcomponentSome components could not be removed completely because admin rights could not be acquired: %1.Authentication ErrorElevationErrorSome components could not be removed completely because an unknown error happened.Unknown error.unknownHKEY_CLASSES_ROOT.%1/DefaultQInstaller::PackageManagerCore::StatusQInstaller::PackageManagerCore::WizardPageOperations missing for installed packagesOrphaned operationsYour installation seems to be corrupted. Please consider re-installing from scratch.Corrupt installationCorrupt_Installation_ErrorOperations sanity check succeeded.InstallationLog.txtLogFileNameApplication not running in Package Manager mode!No installed packages found.Could not register component! Component with identifier %s already registered.Application running in Uninstaller mode!There is an important update available, please run the updater first.AllComponentsModel1setRootComponents(QList<QInstaller::Component*>)2finishAllComponentsReset(QList<QInstaller::Component*>)UpdaterComponentsModel2finishUpdaterComponentsReset(QList<QInstaller::Component*>)Error while elevating access rights.try to kill process: %1(%2) |
Source: BDxsBr8Dce.exe | String found in binary or memory: :/installer |
Source: BDxsBr8Dce.exe | String found in binary or memory: CftphttphttpsCould not register file downloader for https protocol: QSslSocket::supportsSsl() returns falseControlScriptQNetworkProxyQInstaller::RepositoryInstallerApplicationIconInstallerWindowIconLogoPrefixWatermarkBannerProductUrlBackgroundAdminTargetDirMaintenanceToolNameUserRepositoriesTemporaryRepositoriesMaintenanceToolIniFileRemoteRepositoriesDependsOnLocalInstallerBinaryTranslationsFtpProxyHttpProxyProxyTypeIgnoring following settings reader error in %1, line %2, column %3: %4Ignoring following settings reader error: %sUnexpected attribute for element '%1'.Unexpected element '%1'.\s+UrlEnabled/:/overrideconfig.xmlCould not open settings file %1 for reading: %2InstallerUnexpected element '%1' as root element.Element '%1' has been defined before.TranslationArgumentError in %1, line %2, column %3: %4Missing or empty <Name> tag in %1.Missing or empty <Version> tag in %1.:/installermaintenancetoolUninstallerNamecomponents.xml.iniUninstallerIniFile.icoreplaceremoveaddifw.componentCheckerifw.resourcesifw.translations\b(,|, )\b |
Source: BDxsBr8Dce.exe | String found in binary or memory: :/metadata/installer-config/config.xml |
Source: BDxsBr8Dce.exe | String found in binary or memory: GQSettingsrootDirhomeDirRootDirHomeDirInstallerDirPathInstallerFilePath/optApplicationsDirwinosHKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell FoldersHKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell FoldersProgramsCommon ProgramsDesktopDesktopDir:/metadata/installer-config/config.xmlProductVersion\\|/ |
Source: BDxsBr8Dce.exe | String found in binary or memory: --startserver |
Source: BDxsBr8Dce.exe | String found in binary or memory: {RemoteClientPrivateKeepAlive--startserver%1,%2,%3Could not get authorization that is needed for continuing the installation. |
Source: BDxsBr8Dce.exe | String found in binary or memory: /installer-config |
Source: BDxsBr8Dce.exe | String found in binary or memory: FfilesCould not set file permissions %1!/%1meta.7zCould not move file %1 to %2. Error: %3Installer needs to be an offline version: %1.:/metadata/Updates.xmlCould not open file: %1Could not read: %1. Error: %2Could not open file: %1. Error: %2Could not create target dir: %1./installer-config/config*.qrcUnknown exception caught: %1.bool __thiscall QInstaller::CreateLocalRepositoryOperation::performOperation(void)Removing file: %0Could not remove %0.Cannot remove directory %1: %2 |
Source: BDxsBr8Dce.exe | String found in binary or memory: dialog-help-icon |
Source: BDxsBr8Dce.exe | String found in binary or memory: filedialog-start-icon |
Source: BDxsBr8Dce.exe | String found in binary or memory: activate-on-singleclickarrow-keys-navigate-into-childrenbackward-iconbutton-layoutcd-iconcombobox-list-mousetrackingcombobox-popupcomputer-icondesktop-icondialog-apply-icondialog-cancel-icondown-arrowdialog-close-iconup-arrowdialog-discard-iconleft-arrowdialog-help-iconright-arrowdialog-no-iconindicatordialog-ok-iconmenu-indicatordialog-open-icondrop-downdialog-reset-icondialog-save-iconup-buttondialog-yes-icondown-buttondialogbuttonbox-buttons-have-iconstitledirectory-closed-iconmenu-buttondirectory-iconmenu-arrowdirectory-link-icontabdirectory-open-icondither-disable-textadd-pagedockwidget-close-iconsub-pagedownarrow-iconadd-linedvd-iconsub-lineetch-disabled-textfirstfile-iconlastfile-link-iconfiledialog-backward-iconscrollerfiledialog-contentsview-icontearofffiledialog-detailedview-iconiconfiledialog-end-iconbranchfiledialog-infoview-iconsectionfiledialog-listview-iconchunkfiledialog-new-directory-icontearfiledialog-parent-directory-icongroovefiledialog-start-icontick-markfloppy-iconpaneforward-icontab-bargridline-colorleft-cornerharddisk-iconright-cornerhome-iconclose-buttonicon-sizefloat-buttonleftarrow-iconminimize-buttonlineedit-password-characternormal-buttonlineedit-password-mask-delaymaximize-buttonmdi-fill-space-on-maximizeshade-buttonmenu-scrollableunshade-buttonmenubar-altkey-navigationcontexthelp-buttonmenubar-separatorsys-menumessagebox-critical-icontextmessagebox-information-iconcornermessagebox-question-iconmessagebox-text-interaction-flagsmessagebox-warning-iconmouse-trackingnetwork-iconopacitypaint-alternating-row-colors-for-empty-arearightarrow-iconscrollbar-contextmenuscrollbar-leftclick-absolute-positionscrollbar-middleclick-absolute-positionscrollbar-roll-between-buttonsscrollbar-scroll-when-pointer-leaves-controlscrollview-frame-around-contentsshow-decoration-selectedspinbox-click-autorepeat-ratespincontrol-disable-on-boundstabbar-elide-modetabbar-prefer-no-arrowstitlebar-close-icontitlebar-contexthelp-icontitlebar-maximize-icontitlebar-menu-icontitlebar-minimize-icontitlebar-normal-icontitlebar-shade-icontitlebar-unshade-icontoolbutton-popup-delaytrash-iconuparrow-icon |
Source: BDxsBr8Dce.exe | String found in binary or memory: activate-on-singleclickarrow-keys-navigate-into-childrenbackward-iconbutton-layoutcd-iconcombobox-list-mousetrackingcombobox-popupcomputer-icondesktop-icondialog-apply-icondialog-cancel-icondown-arrowdialog-close-iconup-arrowdialog-discard-iconleft-arrowdialog-help-iconright-arrowdialog-no-iconindicatordialog-ok-iconmenu-indicatordialog-open-icondrop-downdialog-reset-icondialog-save-iconup-buttondialog-yes-icondown-buttondialogbuttonbox-buttons-have-iconstitledirectory-closed-iconmenu-buttondirectory-iconmenu-arrowdirectory-link-icontabdirectory-open-icondither-disable-textadd-pagedockwidget-close-iconsub-pagedownarrow-iconadd-linedvd-iconsub-lineetch-disabled-textfirstfile-iconlastfile-link-iconfiledialog-backward-iconscrollerfiledialog-contentsview-icontearofffiledialog-detailedview-iconiconfiledialog-end-iconbranchfiledialog-infoview-iconsectionfiledialog-listview-iconchunkfiledialog-new-directory-icontearfiledialog-parent-directory-icongroovefiledialog-start-icontick-markfloppy-iconpaneforward-icontab-bargridline-colorleft-cornerharddisk-iconright-cornerhome-iconclose-buttonicon-sizefloat-buttonleftarrow-iconminimize-buttonlineedit-password-characternormal-buttonlineedit-password-mask-delaymaximize-buttonmdi-fill-space-on-maximizeshade-buttonmenu-scrollableunshade-buttonmenubar-altkey-navigationcontexthelp-buttonmenubar-separatorsys-menumessagebox-critical-icontextmessagebox-information-iconcornermessagebox-question-iconmessagebox-text-interaction-flagsmessagebox-warning-iconmouse-trackingnetwork-iconopacitypaint-alternating-row-colors-for-empty-arearightarrow-iconscrollbar-contextmenuscrollbar-leftclick-absolute-positionscrollbar-middleclick-absolute-positionscrollbar-roll-between-buttonsscrollbar-scroll-when-pointer-leaves-controlscrollview-frame-around-contentsshow-decoration-selectedspinbox-click-autorepeat-ratespincontrol-disable-on-boundstabbar-elide-modetabbar-prefer-no-arrowstitlebar-close-icontitlebar-contexthelp-icontitlebar-maximize-icontitlebar-menu-icontitlebar-minimize-icontitlebar-normal-icontitlebar-shade-icontitlebar-unshade-icontoolbutton-popup-delaytrash-iconuparrow-icon |
Source: BDxsBr8Dce.exe | String found in binary or memory: Gstandardbutton-help-32.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: standardbutton-help-128.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: media-stop-16.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: media-stop-32.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: Gstandardbutton-help-16.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: process-stop |
Source: BDxsBr8Dce.exe | String found in binary or memory: media-playback-start |
Source: BDxsBr8Dce.exe | String found in binary or memory: media-playback-stop |
Source: BDxsBr8Dce.exe | String found in binary or memory: :/qt-project.org/styles/commonstyle/images/standardbutton-help-16.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: :/qt-project.org/styles/commonstyle/images/stop-24.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: :/qt-project.org/styles/commonstyle/images/stop-24.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: :/qt-project.org/styles/commonstyle/images/media-stop-32.png |
Source: BDxsBr8Dce.exe | String found in binary or memory: w:/qt-project.org/styles/commonstyle/images/standardbutton-closetab-16.png:/qt-project.org/styles/commonstyle/images/standardbutton-closetab-down-16.png:/qt-project.org/styles/commonstyle/images/standardbutton-closetab-hover-16.png1_q_removeAnimation()100%QCommonStyle::drawComplexControl: Control %d not handledQCommonStyle::hitTestComplexControl: Case %d not handledQCommonStyle::subControlRect: Case %d not handledxpm:0x%pdialog-okdialog-ok-applyedit-deletedialog-closeuser-homemessagebox_infomessagebox_warningmessagebox_criticalhelpfolder-openemptytext-x-genericfolder3floppy_unmountmedia-floppycomputeruser-desktoptrashcan_emptyuser-trashcdrom_unmountmedia-opticalhdd_unmountdrive-harddiskupgo-upfolder_newdowngo-downforwardgo-nextbackgo-previousview_detailedview_iconreloadprocess-stopmedia-playback-startmedia-playback-pausemedia-playback-stopmedia-seek-forwardmedia-seek-backwardmedia-skip-forwardmedia-skip-backwardedit-clearhelp-contentsdialog-canceldocument-saveemblem-symbolic-link:/qt-project.org/styles/commonstyle/images/left-16.png:/qt-project.org/styles/commonstyle/images/right-16.png:/qt-project.org/styles/commonstyle/images/up-16.png:/qt-project.org/styles/commonstyle/images/down-16.png:/qt-project.org/styles/commonstyle/images/newdirectory-16.png:/qt-project.org/styles/commonstyle/images/viewdetailed-16.png:/qt-project.org/styles/commonstyle/images/fileinfo-16.png:/qt-project.org/styles/commonstyle/images/filecontents-16.png:/qt-project.org/styles/commonstyle/images/viewlist-16.png:/qt-project.org/styles/commonstyle/images/harddrive-16.png:/qt-project.org/styles/commonstyle/images/trash-16.png:/qt-project.org/styles/commonstyle/images/floppy-16.png:/qt-project.org/styles/commonstyle/images/networkdrive-16.png:/qt-project.org/styles/commonstyle/images/desktop-16.png:/qt-project.org/styles/commonstyle/images/computer-16.png:/qt-project.org/styles/commonstyle/images/cdr-16.png:/qt-project.org/styles/commonstyle/images/dvd-16.png:/qt-project.org/styles/commonstyle/images/diropen-16.png:/qt-project.org/styles/commonstyle/images/dirclosed-16.png:/qt-project.org/styles/commonstyle/images/dirlink-16.png:/qt-project.org/styles/commonstyle/images/file-16.png:/qt-project.org/styles/commonstyle/images/filelink-16.png:/qt-project.org/styles/commonstyle/images/standardbutton-ok-16.png:/qt-project.org/styles/commonstyle/images/standardbutton-cancel-16.png:/qt-project.org/styles/commonstyle/images/standardbutton-help-16.png:/qt-project.o |