!This program cannot be run in DOS mode.
`.data
MSVBVM60.DLL
vb6chs.dll
Module1
C:\Program Files (x86)\Microsoft Visual Studio\VB98\VB6.OLB
shell32.dll
ShellExecuteA
urlmon
URLDownloadToFileA
shlwapi.dll
PathFileExistsA
kernel32
DeleteFileA
CreateWaitableTimerA
OpenWaitableTimerA
SetWaitableTimer
CancelWaitableTimer
CloseHandle
WaitForSingleObject
user32
MsgWaitForMultipleObjects
VBA6.DLL
__vbaObjVar
__vbaLateMemCall
__vbaVarCat
__vbaBoolVarNull
__vbaVarCopy
__vbaEnd
__vbaFreeStr
__vbaPrintFile
__vbaVarTstGt
__vbaFileClose
__vbaLineInputVar
__vbaFileOpen
__vbaFreeObjList
__vbaNew2
__vbaStrI2
__vbaStrMove
__vbaStrCat
__vbaFreeVar
__vbaFreeStrList
__vbaSetSystemError
__vbaStrToAnsi
__vbaVarMove
__vbaHresultCheckObj
__vbaFreeObj
__vbaAryUnlock
__vbaExitProc
__vbaNextEachVar
__vbaVarSetObjAddref
__vbaUnkVar
__vbaVarLateMemCallLd
__vbaObjIs
__vbaVarLateMemCallLdRf
__vbaInStrVar
__vbaVarTstNe
__vbaForEachVar
__vbaFreeVarList
__vbaVarDup
__vbaVarSetVar
__vbaOnError
__vbaErrorOverflow
__vbaStrR8
__vbaR8Str
__vbaFPFix
__vbaFpI4
__vbaObjSet
} jThl&@
}#jXhd,@
}#jPhd,@
jXhd,@
jLhp3@
j$hp3@
j,hp3@
jDhp3@
MSVBVM60.DLL
__vbaVarTstGt
__vbaStrI2
_CIcos
_adj_fptan
__vbaVarMove
__vbaFreeVar
__vbaFreeVarList
__vbaEnd
_adj_fdiv_m64
__vbaNextEachVar
__vbaFreeObjList
__vbaLineInputVar
_adj_fprem1
__vbaStrCat
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaExitProc
__vbaObjSet
__vbaOnError
_adj_fdiv_m16i
_adj_fdivr_m16i
__vbaFPFix
__vbaBoolVarNull
_CIsin
__vbaChkstk
__vbaFileClose
EVENT_SINK_AddRef
__vbaObjVar
DllFunctionCall
_adj_fpatan
__vbaStrR8
EVENT_SINK_Release
_CIsqrt
__vbaObjIs
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaPrintFile
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaInStrVar
__vbaVarCat
_CIlog
__vbaErrorOverflow
__vbaFileOpen
__vbaR8Str
__vbaVarLateMemCallLdRf
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
__vbaVarTstNe
__vbaVarSetVar
__vbaLateMemCall
__vbaVarDup
__vbaStrToAnsi
__vbaFpI4
__vbaVarLateMemCallLd
__vbaUnkVar
__vbaVarCopy
__vbaVarSetObjAddref
_CIatan
__vbaStrMove
__vbaForEachVar
_allmul
_CItan
__vbaAryUnlock
_CIexp
__vbaFreeObj
__vbaFreeStr
@*\AH:\vbfiles\bx525\
WinMgmts:
Win32_Process
InstancesOf
Description
RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 8
http://safe.ywxww.net:820/bx.txt
c:\windows\bx.txt
http://safe.ywxww.net:820/bxupdate.exe
c:\windows\bxupdate.exe
c:\windows\fn.txt
c:\windows\fp.txt
scripting.filesystemobject
c:\chrome\360chrome.exe
x:\xww\360chrome\360chrome.exe
\360chrome\chrome\Application\360chrome.exe
y:\xww\360chrome\360chrome.exe
\360chrome\chrome\Application\360chrome.exe
z:\xww\360chrome\360chrome.exe
\360chrome\chrome\Application\360chrome.exe
https://icafe8.kf5.com/kchat/1011049
FileExists
explorer.exe
[clsWaitableTimer.Wait]
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
080404B0
Comments
CompanyName
ProductName
FileVersion
1.01.0006
ProductVersion
1.01.0006
InternalName
OriginalFilename