!This program cannot be run in DOS mode.
`.rsrc
@.reloc
KDBM(
Y _c
Y _c
, .oJ
v4.0.30319
#Strings
15BF521BABFB5C1FEE5F26C6055B911F7E4F95BC407BB13AB2D974B61C67CF00
__StaticArrayInitTypeSize=10
__StaticArrayInitTypeSize=20
B328EF9B169848AC16E98FFAB6CC0B5CE207F93585CB947E31971B279CEE1930
__StaticArrayInitTypeSize=30
BBF53E52B5265CC086F4ED5817C26530615505D9D43DE23E3A4F0B957AF96540
__StaticArrayInitTypeSize=40
1799F6B8827A7A005CC263478161C12D8166E30DF1A611A767D25CD61CB92950
__StaticArrayInitTypeSize=90
4E168AC258E01B8936855B11D96A0A3CC136BAE2C1C0444AC4D9A541DFA37A90
3488D559053F26931513BB1309B4DE169E47DE113F944AB235052CD81F3FFE90
8DBBB4D475F8A3F6D96DAAED2DBE70050FD07AFBA607AA9EEA8D2274AEACCEA0
<>9__0_0
<TryFind>b__0_0
<Scan>b__0_0
<.ctor>b__0_0
<Init>b__0_0
<DistinctBy>b__0_0
<>c__DisplayClass0_0
<>9__2_0
<GetScanArgs>b__2_0
<>9__3_0
<ContainsDomains>b__3_0
<>9__8_0
<ListOfPrograms>b__8_0
<>9__9_0
<AvailableLanguages>b__9_0
<.cctor>b__0
g_E_c_
DECB45FCB70E8E983C4553B3CFB6A87FF3B1218EB9722CF15426EE98A9553701
EF75241BA6BD1625A1A8267A4BDB5F8258738F1F99B68B5A3C1DFC73975ACC01
81980601C64AB4287E860768DFC6CA60F27E76014012E9F5A9DDCF95752E5941
3CD1C70F09B91817271F4D17F1FC1518FC6A4B5EBEE22D8D507AFD1959157A41
61DF1D35B67849E6958D82133DF2193EDE3DE23ADF16B3BD446A5EA556424C41
6D2A02E09C30B77FDEC1B38436315A9B6CF421AC12DBECD888B9DA9F128E8671
358F8B546C235383B6CF6B6218150EC7D9B499220AD5FDA426617058DE0DC871
9E3CE464192F20B31E05F3B8E5A89CBFF96F8150A9A3DEDA7F01307DE208FF71
88D61630E86761E0D50736FE77A3FA1A6C73D8BB96679FB9C5D9D3E043918091
88F75A1E99CE1F91BFF9E45FD8AC2F1E9C573CB02CF146720FD54F796030A7C1
E1C6241389F45BF0368756075C6F46D2E586461C421942B956E17709F29B6DD1
<>9__3_1
<ContainsDomains>b__3_1
<Scan>b__1
<.cctor>b__1
Func`1
IEnumerable`1
IOrderedEnumerable`1
ICollection`1
IEnumerator`1
IList`1
ChannelFactory`1
__StaticArrayInitTypeSize=102
529EC42879232BD3E60788C07607C27259FC9402B9C7DE46D7A10299BE64E102
8AB8A11BB538129FA5884A2430B953F325D3EFA1D06707F4D4DC156635F44902
__StaticArrayInitTypeSize=12
__StaticArrayInitTypeSize=22
__StaticArrayInitTypeSize=32
Microsoft.Win32
ToUInt32
ToInt32
__StaticArrayInitTypeSize=42
B4672E390AE958C75DE0EB7F8ECE55EC2F37483B45C39A77D4E19E55A4749E42
1BB412143382AB525B1AB1B07AB235AE8F39A9AD97A9A1FDCB8B16A59C014152
__StaticArrayInitTypeSize=152
C36AC7D18D98A297375D1AB1AAA79310DDB1DCDEA1410C98DA8F51F3069E8252
__StaticArrayInitTypeSize=52
__StaticArrayInitTypeSize=62
__StaticArrayInitTypeSize=72
9CFA266E1C0D46351B65205946940BD03389017F85B40B3C0F27FC7B6DE67F72
__StaticArrayInitTypeSize=282
<>9__0_2
<Scan>b__0_2
<GetTokens>d__2
<>c__0`2
Func`2
IGrouping`2
KeyValuePair`2
LSIDsd2
8150398FC349FFAF50C51484EB02305FC7868C1B032BA06A3C87A764028FCA03
asd44123
BDA766955CF8786D95C6541A1ED2CC9820388ECDB57D27B3F76343CA561EA633
BCCCB0E1CA30D9F93BD028CAF30E82278B2FBE50551D7690FDA0E792D735FA33
95800157AFF833B8FEC912656127E8662450456CA5E4709C77FEEF95527E5053
358F794B19B6B44F344D690A7C57850378C8B58BCA7073A9B36C77FAADB3B753
38DE2962329C28744D656A17953529F5F5CE1745F1A447200E9303ADFE4FA763
A5122D81DFE6F054FDFEA49E964CB773692CDA2D2B23513128736E8A46A8A1B3
64845EDCADC189570C2316307BF55BE0EB2016759CE79F4B49D35C64D0D7B1B3
C160648AC532D4078F0A1D300D56B00A02CB0377FADA248837C8318F321484F3
70DE0569EDBA691CB7DF3537734256234FB3C42ED859B50504D1419E600FE9F3
7784A75652692259A3315D2F7CA9446EB86CC5A9110B2343F2011AF1B58D6BF3
<Scan>b__3
__StaticArrayInitTypeSize=114
__StaticArrayInitTypeSize=14
__StaticArrayInitTypeSize=124
__StaticArrayInitTypeSize=24
sdfo8n234
__StaticArrayInitTypeSize=144
2A6892F5816AA6BFCBB9A723F813236867DE7E0B584186FCA56C32DE88F1B544
__StaticArrayInitTypeSize=44
__StaticArrayInitTypeSize=154
FromBase64
ToInt64
__StaticArrayInitTypeSize=74
B2A83F7A8DF70388FE40B967A9DFF09AB5D2D99AF89604E9866A27E0AB5A3B74
5E8463FDC1E5A0B045A2A95CAE106EAB5D96C90386EAF5B7832EFC577F1514A4
<>9__0_4
<Scan>b__0_4
fdfg9i3jn4
get_IPv4
set_IPv4
0BC5C4881C6861CF939463C71FD1B10430ECA86418FDC324C302F203EC539115
0FFAAA71C1E586FFE7DF4DBE321CB57C6F6CBD3BB2345CEBCF47452EFD60DD15
1425B2F0978E8EA13640F8F7E34032A48751B17745899F2D409935EFBE7A9825
A8764DAF4D01EA14CB00FA78F5D058128CFD262BDE34ECCDBAA3DFC1F30C5035
askd435
7E6F4C83F9F3ECF97D91B6F11C20E7979B522B0A3388F86437076BD3125EC755
854B4F8D3B851EA473158512636FDBF4EA7BCC2ACA57F0CD1C3658659D7C5065
AA53A9E1437F8EE3165D7569D9B22C9395330883C9E6753128D7064135D1F365
7AB02AA2C45B1B63DD910C51B54AAB11297B10A1EAF7AF677AE60F974BDDB475
8B7A282785346A01A376BDDFAE8D502936D618E89424DF0927E64FB1419156A5
E6FFE1430C509DBF24C78EE61ED1E4E6382E995B6F645F016A9CF0038AD049D5
4C8C6FE5B61C6F5D4F79024B3F0FDC98713701ED71D1616B39F672C65CBB4CF5
<Scan>b__5
B507EB66983C00A93BEE84B04919DD0B529FD0C1B179BB026E18274A9D647106
4DF3296BB8B6D2CFB472D5417DC8804145A8E28902E797FB9A90547E933EF206
BDE4B995CAC3FD83107D6A4E42CCF2DC9D0F81722028C3F6E2292D807678E616
3AC41153E386B53D939A1262A34351F9A5F3466B6D76703D879FE3A307435816
__StaticArrayInitTypeSize=16
57DAA67B1BEEBC63D953E34F3F68212241F459F5461894F9373573DC8F3DAD16
3989F78F62882E7EA86562E0955EB7720033BAAA327F5CBF077571A452600F26
__StaticArrayInitTypeSize=46
__StaticArrayInitTypeSize=176
__StaticArrayInitTypeSize=76
__StaticArrayInitTypeSize=6
ADC5E0C344755D609CE374EC1E597AE5559FCC3C4FB287372B5BBF7FE30D04B6
E61FAD0261B041799A5F9C813F8868F2FC87FD2BAB1410DFD4E76007B6F1E5B6
<>9__0_6
<Scan>b__0_6
BD3C5560B20826330532BE84108CC33F6102317E3217FABA0814E374B02BEC17
5C73B8C72CF5F3CC5DE8FA422C09818ACEE1BE5282BF02688B6FF4BFE07F7757
DB0143CB66E37E9D444812C849E0F537F49802160386291E002E694E06634767
99257E973EE0EE9F8B9AD3331BDA6DFEAC83700722D7C5D3147D557E28725187
49A1EF205B4556772877A5DF18C42716511A1D2CC5DC4FCA1E2B9D9AD3D050C7
0C97BE5C77D7CE83B08EBE707A6D8FEF44F4B43019ADCBE262FC0C47CB01C8C7
<Scan>b__7
45E57CE10CD57645AD6FB62B07C894A9A656790A532924E3D718FD37CCF99918
__StaticArrayInitTypeSize=18
__StaticArrayInitTypeSize=28
__StaticArrayInitTypeSize=38
__StaticArrayInitTypeSize=48
__StaticArrayInitTypeSize=58
990A0B80582D6FD75E41D0CB28156C2616D5580669061E0B65076B273E455568
__StaticArrayInitTypeSize=78
__StaticArrayInitTypeSize=88
BF091F103CDEA841886E339BEBAE8DA0A60316DEFB8E1D57922A82178CEC7E88
get_UTF8
<>9__0_8
<Scan>b__0_8
asdkadu8
1B0F4E0836F436456B48BB1099E41BFC8ED359D6632C86565CBCBBC8EBAF3439
91D4FB456AF2426A729FED35DFEDEBD60F8A2FEA7F1F59D8986D56F0E7044B39
F159D325C0D9736B7097D8DBD1994B0E38EAD59B22677A89A04B10BA86E5AB79
3C76FC41D752AC999F076B7C301F543F2E83FD68970E6C33FEF100FACEE0F789
C8FC2074879EA24D3947AAF00BA31C82475AE0B283FF1021B380D30B694DA0B9
<Module>
<PrivateImplementationDetails>
414E8E422D9D1955308BB44622BF70EE3FED79008F7FDE60458641896341472A
304F22904D15493E5F75A94DE7BE63A897BDAFC7FC95A54D9A9DA0A3404EB3CA
05EF2BA4DA1670A349F93699D7BF6C874A6C84A90CC775B7A3503F4212B8B42B
F6D1C12E75062F0BE9A159CFA983A2ABC135999E9FDF3885E9026A09B93AEB2B
A9F3AA2DDDC39AD2BF196CD1E13A6FAFC7F6752F887559493A0C8F615EDA054B
E292E6BF7A12D42600D82EF2A212C32A195633232EBA127BC5557EA35CB55D7B
411CFFA9055465712C7095477E5ED51C6CE0AF291D519DA6032233C2A76B698B
91E3659C6BC914613728EE4C4EA0D374F209D9268EEBE24E9D2B0EF772B3D98B
A9D8113C6DA7821381514C8F5B00B075E0BDA49E27248D993A013A238DD09F8B
D12134482EBBF628C8645711FAF9E98515ED9814668F404A7A6383A6DAAAFAEB
551085EBB45AEE3C8D6B12DB9C66E3A70FFEDDE176EEF4EDF39318F5FB597FFB
6626EA5D1D222F39F4AAD264D6A89965DFCDC40FE11B565C520AD296A24AC40C
8DF5A643AA442C2520D414F6B75445BD317E8313656BE41332D9B76BCB06722C
77BEA44E829802181A11E7E53232FF4A88C1B647888AA2303E0E5B2F611BEE3C
0AF5336B6DA2B75A4A111B0078A650B1B5CD817536277D9D328BB91FDEF6135C
1A1FBF222936BA5B0B9E3E9FF1AD33C3EA8B703632082FE9D3765ED7FC2C845C
FE38D15483398A068BAF6CDC87D304E0AA32A35BD0529A017AC2691D50C4B76C
2D83973F8A026997CE94DF6FAB1AEB94DA98E85B3D8BAF1C8F77E50BF4F82DBC
get_CC
set_CC
ScanCC
362E6DB08DDF1FA28F9C7D086ABE3568D42543FEA8E6AA4FB2398328B41992FC
0084183C49F2A35CF0898EF45127EF3C2B54427BE15A7C9C0374FBC6C5F0160D
5A2F0996C87DA99D6AF430CDEC73E50D4BDB006C47F11588B0DF67D9430CD54D
E5EA76AFE933A9552A9C7E24776FED64CCAE7D70567EE4A0FEEE1DA616851A7D
6C5D15002E0D0E64E65846C5BDDD6C4FB059504262397E76B9A385EF7337669D
D8847D69BCB243474EB745B4FD0CF4EDE928A55CEF2FAD1FCFA97F1FAB6834BD
E76D6A98F7FE028F824F62A1EBA3C0B47F19FD7A798BE6E06A87C121B6375FFD
get_ReleaseID
set_ReleaseID
get_TaskID
set_TaskID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_ASCII
LocatorAPI
get_URL
set_URL
EL3_K_Tr00M
TotalOfRAM
BCRYPT_INIT_AUTH_MODE_INFO_VERSION
get_JSON
FromJSON
ToJSON
TryInitNordVPN
PartNordVPN
get_ScanVPN
set_ScanVPN
TryInitOpenVPN
PartOpenVPN
TryInitProtonVPN
PartProtonVPN
BCRYPT_AUTHENTICATED_CIPHER_MODE_INFO
BCRYPT_OAEP_PADDING_INFO
BCRYPT_PSS_PADDING_INFO
System.IO
get_IP
set_IP
get_BlockedIP
set_BlockedIP
get_ScanFTP
set_ScanFTP
pMsvVwER
E_x0_d_u_S
BCRYPT_KEY_LENGTHS_STRUCT
get_TZ
set_TZ
value__
Guarda
FileZilla
sdi845sa
cbData
DownloadData
ProtectedData
bEncryptedData
cbAuthData
pbAuthData
mscorlib
dsf9jb
DecryptBlob
ResFac
Graphic
Atomic
System.Collections.Generic
get_ManagedThreadId
<>l__initialThreadId
updateId
pszAlgId
taskId
get_SessionId
set_MaxBytesPerRead
get_CurrentThread
Download
managed
set_Enabled
BytesToStringConverted
<IPv4>k__BackingField
<CC>k__BackingField
<ReleaseID>k__BackingField
<TaskID>k__BackingField
<URL>k__BackingField
<ScanVPN>k__BackingField
<IP>k__BackingField
<BlockedIP>k__BackingField
<ScanFTP>k__BackingField
<TZ>k__BackingField
<ScanDiscord>k__BackingField
<Password>k__BackingField
<PostalCode>k__BackingField
<ZipCode>k__BackingField
<geoplugin_countryCode>k__BackingField
<postal_code>k__BackingField
<country_code>k__BackingField
<geoplugin_longitude>k__BackingField
<geoplugin_latitude>k__BackingField
<Language>k__BackingField
<NameOfFile>k__BackingField
<PathOfFile>k__BackingField
<DirOfFile>k__BackingField
<BrowserProfile>k__BackingField
<Name>k__BackingField
<MachineName>k__BackingField
<HolderName>k__BackingField
<BrowserName>k__BackingField
<Username>k__BackingField
<HardType>k__BackingField
<Hardware>k__BackingField
<SeenBefore>k__BackingField
<Secure>k__BackingField
<Value>k__BackingField
<Recoursive>k__BackingField
<Tag>k__BackingField
<TaskArg>k__BackingField
<Path>k__BackingField
<Month>k__BackingField
<ScanSteam>k__BackingField
<ScanTelegram>k__BackingField
<ScanScreen>k__BackingField
<Open>k__BackingField
<geoplugin_region>k__BackingField
<Version>k__BackingField
<OSVersion>k__BackingField
<NameOfApplication>k__BackingField
<Location>k__BackingField
<FileLocation>k__BackingField
<Action>k__BackingField
<Resolution>k__BackingField
<Proton>k__BackingField
<Pattern>k__BackingField
<ip>k__BackingField
<Http>k__BackingField
<Year>k__BackingField
<Number>k__BackingField
<NameOfBrowser>k__BackingField
<DomainFilter>k__BackingField
<Counter>k__BackingField
<Monitor>k__BackingField
<AvailableLanguages>k__BackingField
<Cookies>k__BackingField
<ScannedFiles>k__BackingField
<ScanFiles>k__BackingField
<GameLauncherFiles>k__BackingField
<GameChatFiles>k__BackingField
<MessageClientFiles>k__BackingField
<SystemHardwares>k__BackingField
<Softwares>k__BackingField
<Expires>k__BackingField
<Processes>k__BackingField
<PassedPaths>k__BackingField
<ScanFilesPaths>k__BackingField
<ScanChromeBrowsersPaths>k__BackingField
<ScanGeckoBrowsersPaths>k__BackingField
<ScanDetails>k__BackingField
<SecurityUtils>k__BackingField
<Autofills>k__BackingField
<Logins>k__BackingField
<Actions>k__BackingField
<PreStageActions>k__BackingField
<FtpConnections>k__BackingField
<Browsers>k__BackingField
<InstalledBrowsers>k__BackingField
<ScanBrowsers>k__BackingField
<TaskProcessors>k__BackingField
<ScannedWallets>k__BackingField
<ScanWallets>k__BackingField
<NordAccounts>k__BackingField
<Result>k__BackingField
<os_crypt>k__BackingField
<geoplugin_request>k__BackingField
<Host>k__BackingField
<Body>k__BackingField
<encrypted_key>k__BackingField
<Directory>k__BackingField
<Country>k__BackingField
<BlockedCountry>k__BackingField
<City>k__BackingField
<geoplugin_city>k__BackingField
RecordHeaderField
Append
CreateBind
TryFind
NotFound
method
get_ScanDiscord
set_ScanDiscord
TryInitDiscord
PartDiscord
get_Password
set_Password
sdf934asd
asdk9345asd
asdk8jasd
sdf9j3nasd
Chr_0_M_e
serviceInterface
Replace
IsNullOrWhiteSpace
Binance
cbNonce
pbNonce
source
get_PostalCode
set_PostalCode
get_ZipCode
set_ZipCode
get_geoplugin_countryCode
set_geoplugin_countryCode
set_Mode
chainingMode
SessionMode
X509CertificateValidationMode
set_CertificateValidationMode
set_TransferMode
SecurityMode
SelectSingleNode
XmlNode
xmlNode
get_postal_code
set_postal_code
get_country_code
set_country_code
get_Unicode
get_BigEndianUnicode
get_geoplugin_longitude
set_geoplugin_longitude
get_geoplugin_latitude
set_geoplugin_latitude
FromImage
set_Message
get_Language
set_Language
get_CurrentInputLanguage
AddRange
ScannedCookie
EndInvoke
BeginInvoke
ReadContextTable
IEnumerable
IDisposable
ToDouble
RuntimeFieldHandle
RuntimeTypeHandle
GetTypeFromHandle
Rectangle
DownloadFile
ScannedFile
get_NameOfFile
set_NameOfFile
get_PathOfFile
set_PathOfFile
get_DirOfFile
set_DirOfFile
CopyFile
get_BrowserProfile
set_BrowserProfile
profile
SetConsole
hModule
get_Name
set_Name
procName
fieldName
tableName
set_FileName
lpExistingFileName
GetTempFileName
lpNewFileName
fileName
get_MachineName
set_MachineName
GeckoRoamingName
ChromeGetRoamingName
get_EnglishName
GeckoLocalName
ChromeGetLocalName
get_FullName
ItemName
get_UserDomainName
get_HolderName
set_HolderName
get_UserName
get_BrowserName
set_BrowserName
ChromeGetName
GetProcessesByName
get_DisplayName
tmpFilename
filename
get_Username
set_Username
DateTime
AppendLine
get_NewLine
Combine
LocalMachine
DataProtectionScope
dataProtectionScope
pszBlobType
get_HardType
set_HardType
ChangeType
HardwareType
ValueType
MessageCredentialType
set_ClientCredentialType
SecurityProtocolType
Compare
get_Hardware
set_Hardware
SystemHardware
System.Core
get_SeenBefore
set_SeenBefore
get_Secure
set_Secure
get_Culture
get_InvariantCulture
ApiResponse
System.IDisposable.Dispose
Reverse
X509Certificate
get_ServiceCertificate
certificate
DownloadUpdate
CommandLineUpdate
DownloadAndExecuteUpdate
OpenUpdate
VerifyUpdate
GetDelegate
MulticastDelegate
LocalState
<>1__state
Delete
CompilerGeneratedAttribute
UnverifiableCodeAttribute
DebuggableAttribute
TargetFrameworkAttribute
DebuggerHiddenAttribute
ExtensionAttribute
SecurityPermissionAttribute
DataMemberAttribute
EnumMemberAttribute
CompilationRelaxationsAttribute
DataContractAttribute
ServiceContractAttribute
OperationContractAttribute
ReliabilityContractAttribute
ParamArrayAttribute
RuntimeCompatibilityAttribute
set_UseShellExecute
get_Value
set_Value
GatherValue
GetValue
ReadContextValue
get_Recoursive
set_Recoursive
Remove
pMsvVwER.exe
get_Size
cbSize
_pageSize
set_MaxReceivedMessageSize
_sqlDataTypeSize
MaxAuthTagSize
set_MaxBufferPoolSize
Serialize
Deserialize
SuppressFinalize
Resize
SizeOf
get_ItemOf
IndexOf
sdfi35sdf
ReadOff
get_Tag
set_Tag
authTag
get_Jpeg
System.Threading
NetTcpBinding
_dbEncoding
GetEncoding
System.Drawing.Imaging
FileScanning
System.Runtime.Versioning
FromBase64String
ToString
GetString
GetHexString
Substring
System.Drawing
ConvertToULong
get_TaskArg
set_TaskArg
FileScannerArg
scannerArg
Search
GetMd5Hash
ComputeHash
get_Path
set_Path
profilePath
GetFolderPath
rootPath
get_Width
get_Length
dwMinLength
set_MaxJsonLength
set_MaxStringContentLength
get_RowLength
dwMaxLength
set_MaxArrayLength
StartsWith
get_Month
set_Month
set_MaxDepth
AsyncCallback
RemoteCertificateValidationCallback
get_ServerCertificateValidationCallback
set_ServerCertificateValidationCallback
callback
OpenLink
EnumCook
ScanCook
UpdateTask
updateTask
TryCompleteTask
AllocHGlobal
FreeHGlobal
get_Local
Marshal
X509CertificateRecipientClientCredential
cbLabel
pbLabel
System.ServiceModel
CreateChannel
IClientChannel
maxLevel
kernel32.dll
bcrypt.dll
Autofill
System.Xml
get_SecurityProtocol
set_SecurityProtocol
MemoryStream
get_ScanSteam
set_ScanSteam
get_ScanTelegram
set_ScanTelegram
Program
get_Item
get_Is64BitOperatingSystem
phAlgorithm
HashAlgorithm
Random
TryConfirm
RootNum
rowNum
DecryptChromium
TimeSpan
CopyFromScreen
get_ScanScreen
set_ScanScreen
get_Open
set_Open
X509Chain
GeoPlugin
get_geoplugin_region
set_geoplugin_region
get_OSVersion
set_OSVersion
get_Version
set_Version
get_FileVersion
dwInfoVersion
BrowserVersion
GetWindowsVersion
get_ReliableSession
OptionalReliableSession
get_NameOfApplication
set_NameOfApplication
get_Authentication
X509ServiceCertificateAuthentication
get_Location
set_Location
get_FileLocation
set_FileLocation
pszImplementation
System.Globalization
System.Runtime.Serialization
System.Web.Script.Serialization
get_Action
set_Action
IsValidAction
UpdateAction
SecurityAction
action
System.Reflection
InputLanguageCollection
MatchCollection
PathsCollection
ManagementObjectCollection
TryGetConnection
EndpointConnection
RequestConnection
connection
SearchOption
searchOption
CryptographicException
NotSupportedException
InvalidOperationException
System.ServiceModel.Description
System.Runtime.ConstrainedExecution
get_Resolution
set_Resolution
StringComparison
get_Proton
set_Proton
get_Pattern
set_Pattern
Unknown
CompareTo
FileInfo
fileInfo
TimeZoneInfo
CultureInfo
pPaddingInfo
FileSystemInfo
FileVersionInfo
GetVersionInfo
GeoInfo
ProcessStartInfo
DirectoryInfo
Bitmap
MessageSecurityOverTcp
get_ip
set_ip
CopyToTemp
NordApp
get_Http
set_Http
System.Linq
get_Year
set_Year
get_Number
set_Number
GetSerialNumber
AddressHeader
XmlReader
XmlTextReader
MD5CryptoServiceProvider
BCryptCloseAlgorithmProvider
BCryptOpenAlgorithmProvider
CryptoProvider
IFormatProvider
provider
StringBuilder
dataFolder
SpecialFolder
GetFolder
sender
Buffer
ServicePointManager
DesktopMessanger
GameLauncher
FileSearcher
ManagementObjectSearcher
Gather
FileCopier
FileScanner
NativeHelper
SystemInfoHelper
CryptoHelper
ToUpper
CurrentUser
get_NameOfBrowser
set_NameOfBrowser
get_DomainFilter
set_DomainFilter
GetDelegateForFunctionPointer
get_Counter
set_Counter
BitConverter
TaskResolver
ToLower
JavaScriptSerializer
ITaskProcessor
IEnumerator
ManagementObjectEnumerator
System.Collections.Generic.IEnumerable<ScannedFile>.GetEnumerator
System.Collections.IEnumerable.GetEnumerator
.cctor
get_Monitor
set_Monitor
IntPtr
base64str
set_ReaderQuotas
XmlDictionaryReaderQuotas
Graphics
System.Diagnostics
Fields
GetBounds
GetGraphicCards
ScanPasswords
System.Runtime.InteropServices
System.Runtime.CompilerServices
DebuggingModes
get_ChildNodes
get_AvailableLanguages
set_AvailableLanguages
TryInitLanguages
PartLanguages
get_InstalledInputLanguages
languages
Matches
get_Cookies
set_Cookies
MakeTries
EnumerateDirectories
GetDirectories
_masterTableEntries
_tableEntries
ExpandEnvironmentVariables
get_ScannedFiles
set_ScannedFiles
TryInitScannedFiles
PartScannedFiles
remoteFiles
TryInitSteamFiles
PartSteamFiles
TryInitTelegramFiles
PartTelegramFiles
get_ScanFiles
set_ScanFiles
get_GameLauncherFiles
set_GameLauncherFiles
get_GameChatFiles
set_GameChatFiles
GetFiles
get_MessageClientFiles
set_MessageClientFiles
profiles
GetSubKeyNames
get_SystemHardwares
set_SystemHardwares
TryInitHardwares
PartHardwares
hardwares
get_Softwares
set_Softwares
TryInitInstalledSoftwares
PartInstalledSoftwares
softwares
get_Expires
set_Expires
get_Processes
set_Processes
ListOfProcesses
TryInitProcesses
PartProcesses
processes
System.Security.Cryptography.X509Certificates
ReleaseUpdates
GetUpdates
StripQuotes
FromMinutes
_fileBytes
ReadAllBytes
WriteAllBytes
GetBytes
ReplaceEmptyValues
GetLogicalDrives
dwFlags
settings
ScanningArgs
GetScanArgs
TryGetArgs
get_PassedPaths
set_PassedPaths
FindPaths
browserPaths
get_ScanFilesPaths
set_ScanFilesPaths
get_ScanChromeBrowsersPaths
set_ScanChromeBrowsersPaths
get_ScanGeckoBrowsersPaths
set_ScanGeckoBrowsersPaths
AddMonths
get_Ticks
remoteTasks
TryGetTasks
Locals
get_Credentials
ScanCredentials
ClientCredentials
System.ServiceModel.Channels
get_ScanDetails
set_ScanDetails
get_SecurityUtils
set_SecurityUtils
ScanFills
get_Autofills
set_Autofills
ListOfPrograms
System.Windows.Forms
GetTokens
ContainsDomains
domains
Contains
get_Logins
set_Logins
System.Web.Extensions
System.Text.RegularExpressions
System.Security.Permissions
get_Actions
set_Actions
get_PreStageActions
set_PreStageActions
System.Collections
get_FtpConnections
set_FtpConnections
TryInitFtpConnections
PartFtpConnections
StringSplitOptions
searchPatterns
patterns
get_Chars
TryInitDefenders
PartDefenders
defenders
scanners
RuntimeHelpers
get_Browsers
set_Browsers
get_InstalledBrowsers
set_InstalledBrowsers
TryInitInstalledBrowsers
PartInstalledBrowsers
installedBrowsers
get_ScanBrowsers
set_ScanBrowsers
GetBrowsers
TryInitBrowsers
PartBrowsers
browsers
loginPairs
SslPolicyErrors
sslPolicyErrors
get_TaskProcessors
GetProcessors
Success
success
GetCurrentProcess
GetProcAddress
EndpointAddress
address
get_ScannedWallets
set_ScannedWallets
TryInitColdWallets
PartColdWallets
AllWallets
get_ScanWallets
set_ScanWallets
GetArguments
get_NordAccounts
set_NordAccounts
get_Exists
bFailIfExists
arrays
ParsSt
Concat
ImageFormat
ManagementBaseObject
hObject
ICommunicationObject
ManagementObject
cbKeyObject
pbKeyObject
object
Select
CheckConnect
Unprotect
mYDict
System.Net
System.Collections.IEnumerator.Reset
offset
get_Height
set_RecursionLimit
TryInit
WaitForExit
cbSalt
get_Result
pcbResult
IAsyncResult
ScanResult
__result
GetRecent
WebClient
System.Management
XmlElement
get_DocumentElement
dwIncrement
SqlStatement
Environment
XmlDocument
System.Collections.Generic.IEnumerator<ScannedFile>.Current
System.Collections.IEnumerator.Current
System.Collections.Generic.IEnumerator<ScannedFile>.get_Current
System.Collections.IEnumerator.get_Current
<>2__current
Content
EntryPoint
IRemoteEndpoint
get_Count
set_MaxNameTableCharCount
GetRowCount
Account
OsCrypt
get_os_crypt
set_os_crypt
StringDecrypt
BCryptDecrypt
RepeatPart
TrimStart
Convert
get_geoplugin_request
set_geoplugin_request
XmlNodeList
ToList
get_Host
set_Host
set_SendTimeout
set_CloseTimeout
set_ReceiveTimeout
set_OpenTimeout
cbInput
pbInput
cbOutput
pbOutput
MoveNext
System.Text
ReadAllText
cipherText
get_InnerText
chiperText
cbMacContext
pbMacContext
ReadMasterOfContext
createdNew
get_Now
GetConsoleWindow
set_CreateNoWindow
nCmdShow
DownloadAndEx
endIdx
startIdx
startIndex
rowIndex
GroupBy
OrderBy
DistinctBy
TryInitDisplay
display
InitializeArray
ToArray
Consistency
get_Body
set_Body
get_Key
OpenSubKey
ReadKey
chromeKey
stringKey
bMasterKey
hImportKey
BCryptImportKey
BCryptDestroyKey
RegistryKey
get_encrypted_key
set_encrypted_key
System.Security.Cryptography
GetExecutingAssembly
SelectMany
BlockCopy
CreateShadowCopy
entropy
LoadLibrary
FreeLibrary
Armory
DbFactory
ChannelFactory
get_Directory
set_Directory
baseDirectory
CreateDirectory
set_WorkingDirectory
profilesDirectory
TableEntry
SqliteMasterEntry
get_Country
set_Country
get_BlockedCountry
set_BlockedCountry
Registry
get_City
set_City
get_geoplugin_city
set_geoplugin_city
op_Equality
op_Inequality
System.ServiceModel.Security
System.Security
System.Net.Security
set_Security
NetTcpSecurity
CreateDnsIdentity
EndpointIdentity
IsNullOrEmpty
IsEmpty
BCryptSetAlgorithmProperty
BCryptGetProperty
BCryptSetProperty
pszProperty
property
C_o1_n0_m
System.Security.Permissions.SecurityPermissionAttribute, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
SkipVerification
System.Security.Permissions.SecurityPermissionAttribute, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
SkipVerification
WrapNonExceptionThrows
.NETFramework,Version=v4.0
FrameworkDisplayName
.NET Framework 4
CheckConnect
EnvironmentSettings
InitDisplay
PartDefenders
PartLanguages"
PartInstalledSoftwares
PartProcesses
PartHardwares
PartBrowsers
PartFtpConnections!
PartInstalledBrowsers
PartScannedFiles
PartColdWallets
PartSteamFiles
PartNordVPN
PartOpenVPN
PartProtonVPN
PartTelegramFiles
PartDiscord
Confirm
GetUpdates
VerifyUpdate
AccountT
Namespace
BrowserExtension1
AutofillT
Namespace
BrowserExtension7
ScannedBrowserT
Namespace
BrowserExtension7
BrowserVersionT
Namespace
BrowserExtension+
Namespace
BrowserExtension
GeoPlugin
HardwareType
EndpointTUwSystem.ServiceModel.SessionMode, System.ServiceModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
SessionMode
LocalState
OsCrypt4
ScanDetailsT
Namespace
BrowserExtension6
ScannedCookieT
Namespace
BrowserExtension4
ScannedFileT
Namespace
BrowserExtension5
ScanningArgsT
Namespace
BrowserExtension3
ScanResultT
Namespace
BrowserExtension7
SystemHardwareT
Namespace
BrowserExtension
RemoteTaskAction3
UpdateTaskT
Namespace
BrowserExtension
Username
Password
BrowserName
BrowserProfile
Logins
Autofills
Cookies
NameOfBrowser
Version
PathOfFile
HolderName
Number
geoplugin_request
geoplugin_city
geoplugin_region!
geoplugin_countryCode
geoplugin_latitude
geoplugin_longitude
postal_code
country_code
os_crypt
encrypted_key
SecurityUtils
AvailableLanguages
Softwares
Processes
SystemHardwares
Browsers
FtpConnections
InstalledBrowsers
ScannedFiles
GameLauncherFiles
ScannedWallets
Proton
MessageClientFiles
GameChatFiles
Secure
Expires
NameOfFile
NameOfApplication
DirOfFile
ScanBrowsers
ScanFiles
ScanFTP
ScanWallets
ScanScreen
ScanTelegram
ScanVPN
ScanSteam
ScanDiscord
ScanFilesPaths
BlockedCountry
BlockedIP#
ScanChromeBrowsersPaths"
ScanGeckoBrowsersPaths
Hardware
ReleaseID
MachineName
OSVersion
Language
ScreenSize
ScanDetails
Country
TimeZone
Monitor
ZipCode
FileLocation
SeenBefore
Counter
HardType
TaskID
TaskArg
Action
DomainFilter
C:\Users\Administrator\Desktop\team\Redline\obj\x86\Release\pMsvVwER.pdb
_CorExeMain
mscoree.dll
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
<security>
<requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
<requestedExecutionLevel level="asInvoker" uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
-$0'2(9)=*>,?<@CAHBVEeHhJjOn
P Q R+S5T5U=V=WFXHYKZK[K\K]K^K_K`KaKbKcKdKeKfKgKhKiKjKkKlKmKnKoKpKqKrKsKtKuKvKwKxKyKzK{K
*wallet*
Atomic
\atomic
Binance
\Binance
*app-store*
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
UNKNOWN
cmyredmyit_cmyardmys
windows-1251
Microsoft Primitive Provider
ChainingModeGCM
AuthTagLength
ChainingMode
ObjectLength
KeyDataBlob
BCrypt.BCryptImportKey() failed with status code:{0}
BCrypt.BCryptGetProperty() (get size) failed with status code:{0}
BCrypt.BCryptGetProperty() failed with status code:{0}
Collection
UNIQUE
Message
BPOTE6AJI
net.tcp://
localhost
45.137.190.170:19896
@treeline300
System.UI
File.IO
Warning
Exception
Unknown
string.Replace
Guarda
\Guarda
Environment
File.WriteMFile.WriteoFile.WritenFile.WriteerFile.Writeo
File.Write
StringBuilder
\MMemoryStreamonMemoryStreameMemoryStreamro\MemoryStreamwaMemoryStreamlleMemoryStreamts
MemoryStream
kernel32
user32.dll
GetConsoleWindow
ShowWindow
%USEWanaLifeRPROFILE%\AppDaWanaLifeta\LWanaLifeocal
WanaLife
String.Replace
String.Remove
%USERPFile.WriteROFILE%\AppFile.WriteData\RoamiFile.Writeng
Handler
Yandex\YaAddon
%USERPstring.ReplaceROFILE%\Apstring.ReplacepData\Locastring.Replacel
SELECT * FROM Win32_Processor
NumberOfCores
root\CIMV2
SELECT * FROM Win32_VideoController
AdapterRAM
SOFTWARE\WOW6432Node\Clients\StartMenuInternet
SOFTWARE\Clients\StartMenuInternet
shell\open\command
Unknown Version
SELECT * FROM Win32_DiskDrive
SerialNumber
FileSystem
ExecutablePath
0 Mb or 0
SELECT * FROM Win32_OperatingSystem
{0}{1}{2}
SOFTWARE\Microsoft\Windows NT\CurrentVersion
ProductName
CSDVersion
String
Replace
@Login Data
, CommandLine:
, Name: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
-*.lo--gNoDefrdDefVPNDefID: \EWarningxodWarningus
EWarningxodWarningusCommandLine
ElMessageectrMessageum
Opera GX Stable
\tdata
AFileSystemntivFileSystemirusPrFileSystemoduFileSystemct|AntiFileSystemSpyWFileSystemareProFileSystemduct|FireFileSystemwallProdFileSystemuct
[^\u0020-\u007F]Profiles\EtFile.IOhereuFile.IOm\walFile.IOlets
expiraas21tion_yas21ear
%appdata%\discord\Local Storage\leveldb
moz_cookies
TotalVisibleMemorySize
is_secure
ESystem.UItherSystem.UIeum
waasflletasfArmory
%useStringBuilderrproStringBuilderfile%\DStringBuilderocuStringBuildermeStringBuilderntsWeb DataDisplayVersion
autofill
//settString.Replaceing[@name=\UString.Replacesername\]/vaString.Replaceluepath%appdata%\
{0}\FileZilla\recentservers.xml
User Data
{0}\FileZilla\sitemanager.xml
\CCollectionoinCollectionomCollectioni
MB or
SELECT * FROM
Cookies
config
Local State
JaxxProfile_%localappdata%\
cookies
Total of RAMwaasflleasft.datasf
card_number_encrypted
windows-1251
isSecureSoftware\Valve\SteamROOT\SecurityCenter
*ssfn*
expiry
name_on_cardSteamPath
//settinString.Removeg[@name=\PasswString.Removeord\]/valuString.Removeeencrypted_value
NWinordVWinpn.eWinxe*WinDisplayName
\Program Files\
\Program Files (x86)\
profiles1*.1l1d1b
egram.exe
host_keycmd
AppData\Local\
ProcessId
\EExceptionxodExceptionus\exodExceptionus.walExceptionlet
UnknownExtensionexpires_utc
user.config
\Telegram Desktop\tdata
AppData\Roaming\OpHandlerenVPHandlerN ConHandlernectName%USERPEnvironmentROFILE%\AppDEnvironmentata\RoaEnvironmentming
Opera GXhttps://api.ip.sb/geoip
*.walletCCollectionoinCollectionomCollectioni
ProtonVPN
\Program Data\
SELECT * FROM Win32_Process Where SessionId='
\ElBPOTE6AJIectruBPOTE6AJIm\wallBPOTE6AJIets\coFile.IOm.libeFile.IOrty.jFile.IOaxFile.IOx
%userprofile%\Documents
nameProfile_Unknown
logins
cookies.sqlite
ROOT\SecurityCenter2coMANGOokies.sqMANGOliteLocalPrefs.json
\Armory
\Windows\
*.vstring.Replacedf
expiras21ation_moas21nth%DSK_23%Tel
*.json
TReplaceokReplaceenReplaces.tReplacext
displayName
[AString-ZaString-z\d]{2String4}\.[String\w-]{String6}\.[\wString-]{2String7}
Local Extension Settingshost
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
000004b0
FileDescription
FileVersion
0.0.0.0
InternalName
pMsvVwER.exe
LegalCopyright
OriginalFilename
pMsvVwER.exe
ProductVersion
0.0.0.0
Assembly Version
0.0.0.0