Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
teracopy.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\Directory Opus.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\$Recycle.Bin\S-1-5-18\desktop.ini
|
Windows desktop.ini
|
dropped
|
||
|
C:\Config.Msi\4a89ab.rbs
|
data
|
dropped
|
||
|
C:\Config.Msi\4a89ad.rbs
|
data
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\DefaultData\PowerOff.cmd
|
DOS batch file, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\af\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\ar\default.mo
|
GNU message catalog (little endian), revision 0.0, 269 messages, Project-Id-Version: teracopy '%s \331\205\331\204\331\201
\330\255\331\201\330\270 hash'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\bg\default.mo
|
GNU message catalog (little endian), revision 0.0, 140 messages, Project-Id-Version: teracopy '\320\227\320\260 \320\277\321\200\320\276\320\263\321\200\320\260\320\274\320\260\321\202\320\260'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\ca\default.mo
|
GNU message catalog (little endian), revision 0.0, 268 messages, Project-Id-Version: teracopy '%d element\011'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\cs\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\da\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d element'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\de\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d Element'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\el\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \316\243\317\204\316\277\316\271\317\207\316\265\316\257\316\277'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\es-ES\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d elemento'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\es-ES\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\es-MX\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d elemento'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\es-MX\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\et\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\he\default.mo
|
GNU message catalog (little endian), revision 0.0, 44 messages, Project-Id-Version: teracopy '\327\224\327\225\327\241\327\243
\327\234\327\252\327\244\327\250\327\231\327\230 \327\241\327\231\327\231\327\250 \327\224\327\227\327\234\327\225\327\240\327\225\327\252'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\he\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\hr\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\id\default.mo
|
GNU message catalog (little endian), revision 0.0, 188 messages, Project-Id-Version: teracopy '(Membutuhkan akses administrator
yang lebih tinggi)'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\it\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\ja\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\ko\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\lt\default.mo
|
GNU message catalog (little endian), revision 0.0, 1 message, Project-Id-Version: teracopy
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\lt\default.po
|
GNU gettext message catalogue, ASCII text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\no\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d element'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\pt-BR\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\pt-PT\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d item'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\pt-PT\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\ru\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\sat\default.mo
|
GNU message catalog (little endian), revision 0.0, 26 messages, Project-Id-Version: teracopy '\341\261\252\341\261\256\341\261\233\341\261\237\341\261\261
\341\261\250\341\261\256 \341\261\233\341\261\237\341\261\246\341\261\256\341\261\270 \341\261\242\341\261\237'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\sat\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\sl\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\sr\default.mo
|
GNU message catalog (little endian), revision 0.0, 43 messages, Project-Id-Version: teracopy '\320\224\320\276\320\264\320\260\321\230
\321\203 \320\272\320\276\320\275\321\202\320\265\320\272\321\201\321\202\321\203\320\260\320\273\320\275\320\276\320\274
\320\274\320\265\320\275\320\270\321\230\321\203 Explorer-\320\260'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\sr\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\th\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\tr\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \303\266\304\237e'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\tr\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\zh-CN\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Locale\zh-TW\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \345\200\213\351\240\205\347\233\256'
|
dropped
|
||
|
C:\Program Files\TeraCopy\App\Sounds\Complete.wav
|
RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
|
dropped
|
||
|
C:\Program Files\TeraCopy\Context.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Program Files\TeraCopy\License.rtf
|
Rich Text Format data, version 1, ANSI
|
dropped
|
||
|
C:\Program Files\TeraCopy\Readme.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\sorttable.js
|
ISO-8859 text, with CRLF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\updater.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Program Files\TeraCopy\updater.ini
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Program Files\TeraCopy\xxHashAVX2.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\ProgramData\Caphyon\Advanced Installer\{DF5325DF-1F43-4282-85D5-1CA3353E6B13}\teracopy3.17.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\ProgramData\Caphyon\Advanced Installer\{DF5325DF-1F43-4282-85D5-1CA3353E6B13}\teracopy3.17.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
modified
|
||
|
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive,
ctime=Sun Dec 3 10:00:40 2023, mtime=Thu Oct 3 19:54:52 2024, atime=Sun Dec 3 10:00:40 2023, length=4825824, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\ExternalUICleaner.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\GSBT.xaml
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\ImageCheckBox.xaml
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\ProgressImage.png
|
PNG image data, 172 x 2, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\TeraCopy.png
|
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\aboutbtn
|
PNG image data, 144 x 24, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\aboutbtn.xaml
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\aboutbtndark.xaml
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\applogoicon.ico
|
MS Windows icon resource - 9 icons, 256x256, 32 bits/pixel, -128x-128, 32 bits/pixel
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\applogoicondark.ico
|
MS Windows icon resource - 9 icons, 256x256, 32 bits/pixel, -128x-128, 32 bits/pixel
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\background
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data,
big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 400x300, components 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\backgrounddark
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data,
big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 400x300, components 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\buttonimgs
|
PNG image data, 624 x 37, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\buttonimgs.xaml
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\buttonimgsdark
|
PNG image data, 624 x 37, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\checkboximgs
|
PNG image data, 192 x 16, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\checkboximgsdark
|
PNG image data, 192 x 16, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\cmdlinkarrow
|
MS Windows icon resource - 3 icons, 16x16, 16 colors, 4 bits/pixel, 16x16, 8 bits/pixel
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\custominstallbtn
|
PNG image data, 144 x 28, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\custominstallbtndark
|
PNG image data, 144 x 28, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\defaultPrograms.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\defaultPrograms.dll_1
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\dictionarywinui.xaml
|
exported SGML document, ASCII text, with very long lines (702), with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\exclamic
|
PNG image data, 50 x 69, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\info
|
PNG image data, 50 x 69, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\infoIconMsi
|
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AI_EXTUI_BIN_6300\lzmaextractor.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\AiFilesBackNoImpers_DF5325DF_1F43_4282_85D5_1CA3353E6B13.bak
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\MSI69C0.tmp
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\MSI6A9E.tmp
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\shi6923.tmp
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\upd5ED1.tmp (copy)
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\upd5ED1.tmp.part
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\32-bit\Blake3.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\32-bit\Context.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\32-bit\TeraCopy.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\32-bit\TeraCopy.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\32-bit\TeraCopyService.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\AppDataFolder\TeraCopy\Ignore\Temp files.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\AppDataFolder\TeraCopy\Ignore\Video files.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\AppDataFolder\TeraCopy\Scripts\Eject drives.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\AppDataFolder\TeraCopy\Scripts\Notify via IFTTT.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\AppDataFolder\TeraCopy\Scripts\Notify via Ntfy.ps1
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\af\default.mo
|
GNU message catalog (little endian), revision 0.0, 42 messages, Project-Id-Version: teracopy 'Voeg by Explorer konteks kieslys'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ar\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\bg\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\bn\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \340\246\234\340\246\277\340\246\250\340\246\277\340\246\270\340\246\252\340\246\244\340\247\215\340\246\260'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\bn\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ca\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\cs\default.mo
|
GNU message catalog (little endian), revision 0.0, 43 messages, Project-Id-Version: teracopy 'P\305\231idat do kontextov\303\251
nab\303\255dky Pr\305\257zkumn\303\255ka'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\da\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\de\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\el\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\es-AR\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d elemento'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\es-AR\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\et\default.mo
|
GNU message catalog (little endian), revision 0.0, 210 messages, Project-Id-Version: teracopy '%s: l\303\265petatud'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\fa\default.mo
|
GNU message catalog (little endian), revision 0.0, 158 messages, Project-Id-Version: teracopy '\330\257\330\261\330\250\330\247\330\261\331\207'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\fa\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\fi\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d kohde'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\fi\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\fr\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \303\251l\303\251ments'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\fr\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\hi\default.mo
|
GNU message catalog (little endian), revision 0.0, 27 messages, Project-Id-Version: teracopy '%d \340\244\265\340\244\270\340\245\215\340\244\244\340\245\201'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\hi\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\hr\default.mo
|
GNU message catalog (little endian), revision 0.0, 165 messages, Project-Id-Version: teracopy '(ovo zahtjeva administratorske
ovlasti)'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\hu\default.mo
|
GNU message catalog (little endian), revision 0.0, 169 messages, Project-Id-Version: teracopy 'N\303\251vjegy'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\hu\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\id\default.po
|
GNU gettext message catalogue, ASCII text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\it\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d voce'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ja\default.mo
|
GNU message catalog (little endian), revision 0.0, 271 messages, Project-Id-Version: teracopy '%d \351\240\205\347\233\256'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ka\default.mo
|
GNU message catalog (little endian), revision 0.0, 43 messages, Project-Id-Version: teracopy '\341\203\231\341\203\235\341\203\234\341\203\242\341\203\224\341\203\245\341\203\241\341\203\242\341\203\243\341\203\240
\341\203\233\341\203\224\341\203\234\341\203\230\341\203\243\341\203\250\341\203\230 \341\203\223\341\203\220\341\203\233\341\203\220\341\203\242\341\203\224\341\203\221\341\203\220'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ka\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ko\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \355\225\255\353\252\251'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ms\default.mo
|
GNU message catalog (little endian), revision 0.0, 1 message, Project-Id-Version: teracopy
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ms\default.po
|
GNU gettext message catalogue, ASCII text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\nl\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d item'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\nl\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\no\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\pl\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d element'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\pl\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\pt-BR\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d item'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ro\default.mo
|
GNU message catalog (little endian), revision 0.0, 272 messages, Project-Id-Version: teracopy '%d element'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ro\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\ru\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \320\276\320\261\321\212\320\265\320\272\321\202'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\sk\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d polo\305\276ka'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\sk\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\sl\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d postavka'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\sv-SE\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d objekt'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\sv-SE\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\th\default.mo
|
GNU message catalog (little endian), revision 0.0, 178 messages, Project-Id-Version: teracopy '(\340\271\203\340\270\212\340\271\211\340\271\204\340\270\224\340\271\211\340\271\200\340\270\211\340\270\236\340\270\262\340\270\260\340\270\243\340\270\270\340\271\210\340\270\231\340\271\202\340\270\233\340\270\243)'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\uk\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \320\265\320\273\320\265\320\274\320\265\320\275\321\202'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\uk\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\vi\default.mo
|
GNU message catalog (little endian), revision 0.0, 205 messages, Project-Id-Version: teracopy '%s: \304\221\303\243 ho\303\240n
th\303\240nh'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\vi\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\zh-CN\default.mo
|
GNU message catalog (little endian), revision 0.0, 273 messages, Project-Id-Version: teracopy '%d \344\270\252\351\241\271\347\233\256'
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Locale\zh-TW\default.po
|
GNU gettext message catalogue, Unicode text, UTF-8 text, with CRLF, LF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\App\Sounds\Error.wav
|
RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\Blake3.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\License.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\Portable.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\TeraCopy.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\TeraCopy.exe
|
PE32+ executable (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\TeraCopy.msi
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Security: 0, Code page: 1252,
Revision Number: {C56D35C2-CC91-4532-A3CB-D382D42AD5C2}, Number of Words: 0, Subject: TeraCopy, Author: Code Sector, Name
of Creating Application: TeraCopy, Template: ;1033, Comments: This installer database contains the logic and data required
to install TeraCopy., Title: Installation Database, Keywords: Installer, MSI, Database, Create Time/Date: Sun Dec 3 11:04:55
2023, Last Saved Time/Date: Sun Dec 3 11:04:55 2023, Last Printed: Sun Dec 3 11:04:55 2023, Number of Pages: 450
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\TeraCopy.x64.msi
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Security: 0, Code page: 1252,
Revision Number: {D2625015-F105-4D7F-9742-61C2BD0660E8}, Number of Words: 0, Subject: TeraCopy, Author: Code Sector, Name
of Creating Application: TeraCopy, Template: x64;1033, Comments: This installer database contains the logic and data required
to install TeraCopy., Title: Installation Database, Keywords: Installer, MSI, Database, Create Time/Date: Sun Dec 3 11:04:56
2023, Last Saved Time/Date: Sun Dec 3 11:04:56 2023, Last Printed: Sun Dec 3 11:04:56 2023, Number of Pages: 450
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\TeraCopyService.exe
|
PE32+ executable (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\Total Commander.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\Whatsnew.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\XYplorer.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\share.html
|
HTML document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\53E6B13\xxHashSSE2.dll
|
PE32+ executable (DLL) (GUI) x86-64, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Code Sector\TeraCopy 3.17\install\holder0.aiph
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Obsidium x64\{3708183A-73D6E94B-A04B1AB3-BDD30077}.1894784316145562426
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\TeraCopy\History\241003-205457-862-878.db
|
SQLite 3.x database, user version 1, last written using SQLite version 3044002, writer version 2, read version 2, file counter
4, database pages 3, cookie 0x2, schema 4, UTF-8, version-valid-for 4
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\TeraCopy\History\241003-205457-862-878.db-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\TeraCopy\History\241003-205457-862-878.db-shm
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\TeraCopy\History\241003-205457-862-878.db-wal
|
SQLite Write-Ahead Log, version 3007000
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\TeraCopy\PowerOff.cmd (copy)
|
DOS batch file, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\TeraCopy\main.db
|
SQLite 3.x database, last written using SQLite version 3044002, file counter 3, database pages 2, cookie 0x1, schema 4, UTF-8,
version-valid-for 3
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\TeraCopy\main.db-journal
|
SQLite Rollback Journal
|
dropped
|
||
|
C:\Windows\Installer\MSI8C4D.tmp
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Windows\Installer\MSI9C7C.tmp
|
data
|
dropped
|
||
|
C:\Windows\Installer\MSIABB0.tmp
|
data
|
dropped
|
||
|
C:\Windows\Installer\MSIAC6C.tmp
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Windows\Installer\SourceHash{DF5325DF-1F43-4282-85D5-1CA3353E6B13}
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Installer\inprogressinstallinfo.ipi
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Installer\{DF5325DF-1F43-4282-85D5-1CA3353E6B13}\TeraCopySmall.exe
|
MS Windows icon resource - 3 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel
|
dropped
|
||
|
C:\Windows\Installer\{DF5325DF-1F43-4282-85D5-1CA3353E6B13}\ext.exe
|
MS Windows icon resource - 5 icons, 256x256, 32 bits/pixel, -128x-128, 32 bits/pixel
|
dropped
|
||
|
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\MpCmdRun.log
|
Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
modified
|
||
|
C:\Windows\Temp\~DF4151D848D35753D6.TMP
|
data
|
dropped
|
||
|
C:\Windows\Temp\~DF4EED7D5946988D2D.TMP
|
data
|
dropped
|
||
|
C:\Windows\Temp\~DF6D6C8C3E43CCAF73.TMP
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Temp\~DF7557BAFF32C28170.TMP
|
data
|
dropped
|
There are 177 hidden files, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
codesector.com
|
216.239.38.21
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
216.239.38.21
|
codesector.com
|
United States
|
||
|
184.28.90.27
|
unknown
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|