Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

1.9.3.525 16.67%
1.9.3.502 16.67%
1.9.3.454 16.67%
1.9.3.448 50.00%

Relationships

Parent process
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
AdjustTokenPrivileges, AllocateAndInitializeSid, ChangeServiceConfigW, CheckTokenMembership, CloseServiceHandle, ControlService, ConvertStringSecurityDescriptorToSecurityDescriptorW, CreateServiceW, CryptAcquireContextW, CryptCreateHash, CryptDestroyHash, CryptGetHashParam, CryptHashData, CryptReleaseContext, FreeSid, GetSecurityDescriptorSacl, GetUserNameA, GetUserNameW, InitializeSecurityDescriptor, InitiateSystemShutdownW, LookupPrivilegeValueW, OpenProcessToken, OpenSCManagerW, OpenServiceW, QueryServiceStatus, RegCloseKey, RegConnectRegistryW, RegCreateKeyExA, RegCreateKeyExW, RegDeleteKeyW, RegDeleteValueA, RegDeleteValueW, RegEnumKeyA, RegEnumKeyExW, RegEnumValueW, RegFlushKey, RegLoadKeyW, RegOpenKeyExA, RegOpenKeyExW, RegOpenKeyW, RegQueryInfoKeyA, RegQueryInfoKeyW, RegQueryValueExA, RegQueryValueExW, RegReplaceKeyW, RegRestoreKeyW, RegSaveKeyW, RegSetValueExA, RegSetValueExW, RegUnLoadKeyW, SetNamedSecurityInfoW, SetSecurityDescriptorDacl, StartServiceW
comctl32.dll
FlatSB_GetScrollInfo, FlatSB_GetScrollPos, FlatSB_SetScrollInfo, FlatSB_SetScrollPos, FlatSB_SetScrollProp, ImageList_Add, ImageList_BeginDrag, ImageList_Copy, ImageList_Create, ImageList_Destroy, ImageList_DragEnter, ImageList_DragLeave, ImageList_DragMove, ImageList_DragShowNolock, ImageList_Draw, ImageList_DrawEx, ImageList_EndDrag, ImageList_GetBkColor, ImageList_GetDragImage, ImageList_GetIcon, ImageList_GetIconSize, ImageList_GetImageCount, ImageList_GetImageInfo, ImageList_LoadImageW, ImageList_Read, ImageList_Remove, ImageList_Replace, ImageList_ReplaceIcon, ImageList_SetBkColor, ImageList_SetIconSize, ImageList_SetImageCount, ImageList_SetOverlayImage, ImageList_Write, InitializeFlatSB, _TrackMouseEvent
comdlg32.dll
ChooseColorW, GetSaveFileNameA, GetSaveFileNameW, PrintDlgW, GetOpenFileNameW
crypt32.dll
CertCloseStore, CertFindCertificateInStore, CertFreeCertificateContext, CertGetNameStringW, CryptMsgClose, CryptMsgGetParam, CryptQueryObject
gdi32.dll
AbortDoc, AngleArc, Arc, ArcTo, BitBlt, Chord, CloseEnhMetaFile, CombineRgn, CopyEnhMetaFileW, CreateBitmap, CreateBrushIndirect, CreateCompatibleBitmap, CreateCompatibleDC, CreateDCW, CreateDIBSection, CreateDIBitmap, CreateEnhMetaFileW, CreateFontA, CreateFontIndirectW, CreateFontW, CreateHalftonePalette, CreateICW, CreatePalette, CreatePen, CreatePenIndirect, CreateRectRgn, CreateRectRgnIndirect, CreateRoundRectRgn, CreateSolidBrush, DeleteDC, DeleteEnhMetaFile, DeleteObject, Ellipse, EndDoc, EndPage, EnumFontFamiliesExW, EnumFontsW, ExcludeClipRect, ExtCreatePen, ExtCreateRegion, ExtFloodFill, ExtTextOutW, FrameRgn, GdiFlush, GetBitmapBits, GetBrushOrgEx, GetClipBox, GetCurrentObject, GetCurrentPositionEx, GetDIBColorTable, GetDIBits, GetDeviceCaps, GetEnhMetaFileBits, GetEnhMetaFileDescriptionW, GetEnhMetaFileHeader, GetEnhMetaFilePaletteEntries, GetNearestPaletteIndex, GetObjectW, GetPaletteEntries, GetPixel, GetRgnBox, GetStockObject, GetSystemPaletteEntries, GetTextColor, GetTextExtentPoint32A, GetTextExtentPoint32W, GetTextExtentPointW, GetTextFaceA, GetTextMetricsW, GetViewportOrgEx, GetWinMetaFileBits, GetWindowOrgEx, IntersectClipRect, LPtoDP, LineTo, MaskBlt, MoveToEx, PatBlt, Pie, PlayEnhMetaFile, PolyBezier, PolyBezierTo, PolyPolyline, Polygon, Polyline, RealizePalette, RectVisible, Rectangle, ResizePalette, RestoreDC, RoundRect, SaveDC, SelectClipRgn, SelectObject, SelectPalette, SetAbortProc, SetBkColor, SetBkMode, SetBrushOrgEx, SetDIBColorTable, SetDIBits, SetEnhMetaFileBits, SetMapMode, SetPixel, SetROP2, SetStretchBltMode, SetTextColor, SetViewportExtEx, SetViewportOrgEx, SetWinMetaFileBits, SetWindowExtEx, SetWindowOrgEx, StartDocA, StartDocW, StartPage, StretchBlt, StretchDIBits, TextOutA, TextOutW, UnrealizeObject
imagehlp.dll
MapFileAndCheckSumW
iphlpapi.dll
GetAdaptersInfo, SendARP
kernel32.dll
DllMain
ole32.dll
CoCreateGuid, CoCreateInstance, CoGetClassObject, CoInitialize, CoTaskMemAlloc, CoTaskMemFree, CoUninitialize, CreateStreamOnHGlobal, IsAccelerator, IsEqualGUID, OleDraw, OleInitialize, OleRegEnumVerbs, OleSetMenuDescriptor, OleUninitialize, ProgIDFromCLSID, StringFromCLSID
psapi.dll
EnumProcessModules, EnumProcesses, GetModuleFileNameExA, GetModuleFileNameExW, GetProcessImageFileNameA, GetProcessImageFileNameW
sfc.dll
SfcIsFileProtected
shell32.dll
ExtractIconA, ExtractIconW, SHGetFileInfoW, SHGetMalloc, SHGetPathFromIDListW, SHGetSpecialFolderLocation, ShellExecuteA, ShellExecuteExA, ShellExecuteExW, ShellExecuteW, Shell_NotifyIconW, SHGetPathFromIDListA
urlmon.dll
ObtainUserAgentString
user32.dll
DllMain
version.dll
GetFileVersionInfoA, GetFileVersionInfoSizeA, GetFileVersionInfoSizeW, GetFileVersionInfoW, VerQueryValueA, VerQueryValueW
winhttp.dll
WinHttpCloseHandle, WinHttpGetIEProxyConfigForCurrentUser, WinHttpGetProxyForUrl, WinHttpOpen
wininet.dll
InternetQueryOptionA, InternetSetCookieExW
winmm.dll
timeGetTime
winspool.drv
ClosePrinter, DocumentPropertiesW, EnumPrintersW, OpenPrinterW
wintrust.dll
CryptCATAdminAcquireContext, CryptCATAdminCalcHashFromFileHandle, CryptCATAdminEnumCatalogFromHash, CryptCATAdminReleaseCatalogContext, CryptCATAdminReleaseContext, CryptCATCatalogInfoFromContext, WTHelperGetProvCertFromChain, WTHelperGetProvSignerFromChain, WTHelperProvDataFromStateData, WinVerifyTrust
wtsapi32.dll
WTSQuerySessionInformationW
Export table
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$35Shdocvw_tlb@TInternetExplorerMedium
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$ynpqqrp14System@TObject$v
@@Antilogger@Finalize
@@Antilogger@Initialize
@@Antissllogger@Finalize
@@Antissllogger@Initialize
@@Autodetect@Finalize
@@Autodetect@Initialize
@@Blockhooks@Finalize
@@Blockhooks@Initialize
@@Captionpanel@Finalize
@@Captionpanel@Initialize
@@Chromeuseragent@Finalize
@@Chromeuseragent@Initialize
@@Clouddecision@Finalize
@@Clouddecision@Initialize
@@Compression@Finalize
@@Compression@Initialize
@@Driverhelper@Finalize
@@Driverhelper@Initialize
@@Encryption@Finalize
@@Encryption@Initialize
@@Enumfolders@Finalize
@@Enumfolders@Initialize
@@Enumprocessesandmodules@Finalize
@@Enumprocessesandmodules@Initialize
@@Errorreportform@Finalize
@@Errorreportform@Initialize
@@Filenameparser@Finalize
@@Filenameparser@Initialize
@@Fileversioninfo@Finalize
@@Fileversioninfo@Initialize
@@Firefoxuseragent@Finalize
@@Firefoxuseragent@Initialize
@@Formactivationok@Finalize
@@Formactivationok@Initialize
@@Formalert@Finalize
@@Formalert@Initialize
@@Formcaptcha@Finalize
@@Formcaptcha@Initialize
@@Formconnection@Finalize
@@Formconnection@Initialize
@@Formconnectionerror@Finalize
@@Formconnectionerror@Initialize
@@Formdata@Finalize
@@Formdata@Initialize
@@Forminfo@Finalize
@@Forminfo@Initialize
@@Formmain@Finalize
@@Formmain@Initialize
@@Formpasswordsetup@Finalize
@@Formpasswordsetup@Initialize
@@Formreminder@Finalize
@@Formreminder@Initialize
@@Formsettings@Finalize
@@Formsettings@Initialize
@@Formstartprogress@Finalize
@@Formstartprogress@Initialize
@@Glassbutton@Finalize
@@Glassbutton@Initialize
@@Helperfunctions@Finalize
@@Helperfunctions@Initialize
@@Httpmanager@Finalize
@@Httpmanager@Initialize
@@Ieproxydetect@Finalize
@@Ieproxydetect@Initialize
@@Initdatamodule@Finalize
@@Initdatamodule@Initialize
@@Intelliguardlibrary@Finalize
@@Intelliguardlibrary@Initialize
@@Keycrypthelper@Finalize
@@Keycrypthelper@Initialize
@@Keycryptsdk@Finalize
@@Keycryptsdk@Initialize
@@Localhelper@Finalize
@@Localhelper@Initialize
@@Md5@Finalize
@@Md5@Initialize
@@Notificationform@Finalize
@@Notificationform@Initialize
@@Partnersessions@Finalize
@@Partnersessions@Initialize
@@Plimuscookie@Finalize
@@Plimuscookie@Initialize
@@Productinfo@Finalize
@@Productinfo@Initialize
@@Protectiongroup@Finalize
@@Protectiongroup@Initialize
@@Servicemanager@Finalize
@@Servicemanager@Initialize
@@Shdocvw_ocx@Finalize
@@Shdocvw_ocx@Initialize
@@Shdocvw_tlb@Finalize
@@Shdocvw_tlb@Initialize
@@Specialpanel@Finalize
@@Specialpanel@Initialize
@@Tappdatabase@Finalize
@@Tappdatabase@Initialize
@@Tencryptedinifile@Finalize
@@Tencryptedinifile@Initialize
@@Threatdb@Finalize
@@Threatdb@Initialize
@@Tinjector@Finalize
@@Tinjector@Initialize
@@Tkeycrypt@Finalize
@@Tkeycrypt@Initialize
@@Tlock@Finalize
@@Tlock@Initialize
@@Tracer@Finalize
@@Tracer@Initialize
@@Trules@Finalize
@@Trules@Initialize
@@Tstopwatch@Finalize
@@Tstopwatch@Initialize
@@Ttoolhelpsnapshot32@Finalize
@@Ttoolhelpsnapshot32@Initialize
@@Verifysignature@Finalize
@@Verifysignature@Initialize
@@Zalsdkcore@Finalize
@@Zalsdkcore@Initialize
@Shdocvw_ocx@Register$qqrv
@Shdocvw_tlb@CLSID_CppCScriptErrorList
@Shdocvw_tlb@CLSID_CppInternetExplorer
@Shdocvw_tlb@CLSID_CppShellBrowserWindow
@Shdocvw_tlb@CLSID_CppShellUIHelper
@Shdocvw_tlb@CLSID_CppShellWindows
@Shdocvw_tlb@CLSID_CppWebBrowser
@Shdocvw_tlb@CLSID_CppWebBrowser_V1
@Shdocvw_tlb@CLSID_InternetExplorerMedium
@Shdocvw_tlb@CLSID_ShellFavoritesNameSpace
@Shdocvw_tlb@DIID_DShellNameSpaceEvents
@Shdocvw_tlb@DIID_DShellWindowsEvents
@Shdocvw_tlb@DIID_DWebBrowserEvents
@Shdocvw_tlb@DIID_DWebBrowserEvents2
@Shdocvw_tlb@IID_IScriptErrorList
@Shdocvw_tlb@IID_IShellFavoritesNameSpace
@Shdocvw_tlb@IID_IShellNameSpace
@Shdocvw_tlb@IID_IShellUIHelper
@Shdocvw_tlb@IID_IShellUIHelper2
@Shdocvw_tlb@IID_IShellUIHelper3
@Shdocvw_tlb@IID_IShellWindows
@Shdocvw_tlb@IID_IWebBrowser
@Shdocvw_tlb@IID_IWebBrowser2
@Shdocvw_tlb@IID_IWebBrowserApp
@Shdocvw_tlb@LIBID_SHDocVw
@Shdocvw_tlb@TCppInternetExplorer@
@Shdocvw_tlb@TCppInternetExplorer@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TCppInternetExplorer@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppInternetExplorer@ClientToWindow$qqrpit1
@Shdocvw_tlb@TCppInternetExplorer@Connect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@ConnectTo$qqr69%TComInterface$24Shdocvw_tlb@IWebBrowser2px5_GUID$gIID_IWebBrowser2$%
@Shdocvw_tlb@TCppInternetExplorer@Disconnect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@ExecWB$qqr20Shdocvw_tlb@OLECMDID25Shdocvw_tlb@OLECMDEXECOPTp10tagVARIANTt3
@Shdocvw_tlb@TCppInternetExplorer@get_AddressBar$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Application$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Busy$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Container$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Document$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_FullName$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_FullScreen$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Height$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_HWND$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Left$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_LocationName$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_LocationURL$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_MenuBar$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Name$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Offline$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Parent$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Path$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_ReadyState$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_RegisterAsBrowser$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_RegisterAsDropTarget$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Resizable$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Silent$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_StatusBar$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_StatusText$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_TheaterMode$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_ToolBar$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Top$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_TopLevelContainer$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Type$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Visible$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Width$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GetDefaultInterface$qv
@Shdocvw_tlb@TCppInternetExplorer@GetDunk$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GetProperty$qqrpb
@Shdocvw_tlb@TCppInternetExplorer@GoBack$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GoForward$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GoHome$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GoSearch$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InitServerData$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppInternetExplorer@Navigate$qqrpbp10tagVARIANTt2t2t2
@Shdocvw_tlb@TCppInternetExplorer@Navigate2$qqrp10tagVARIANTt1t1t1t1
@Shdocvw_tlb@TCppInternetExplorer@PutProperty$qqrpb10tagVARIANT
@Shdocvw_tlb@TCppInternetExplorer@QueryStatusWB$qqr20Shdocvw_tlb@OLECMDID
@Shdocvw_tlb@TCppInternetExplorer@Quit$qqrv
@Shdocvw_tlb@TCppInternetExplorer@Refresh$qqrv
@Shdocvw_tlb@TCppInternetExplorer@Refresh2$qqrp10tagVARIANT
@Shdocvw_tlb@TCppInternetExplorer@set_AddressBar$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_FullScreen$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Height$qqrl
@Shdocvw_tlb@TCppInternetExplorer@set_Left$qqrl
@Shdocvw_tlb@TCppInternetExplorer@set_MenuBar$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Offline$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_RegisterAsBrowser$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_RegisterAsDropTarget$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Resizable$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Silent$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_StatusBar$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_StatusText$qqrpb
@Shdocvw_tlb@TCppInternetExplorer@set_TheaterMode$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_ToolBar$qqri
@Shdocvw_tlb@TCppInternetExplorer@set_Top$qqrl
@Shdocvw_tlb@TCppInternetExplorer@set_Visible$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Width$qqrl
@Shdocvw_tlb@TCppInternetExplorer@ShowBrowserBar$qqrp10tagVARIANTt1t1
@Shdocvw_tlb@TCppInternetExplorer@Stop$qqrv
@Shdocvw_tlb@TCppShellUIHelper@
@Shdocvw_tlb@TCppShellUIHelper@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TCppShellUIHelper@AddChannel$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@AddDesktopComponent$qqrpbt1p10tagVARIANTt3t3t3
@Shdocvw_tlb@TCppShellUIHelper@AddFavorite$qqrpbp10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@AddSearchProvider$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@AddService$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@AddToFavoritesBar$qqrpbt1p10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@AutoCompleteAttach$qqrp10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@AutoCompleteSaveForm$qqrp10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@AutoScan$qqrpbt1p10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellUIHelper@BrandImageUri$qqrv
@Shdocvw_tlb@TCppShellUIHelper@BuildNewTabPage$qqrv
@Shdocvw_tlb@TCppShellUIHelper@Connect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ConnectTo$qqr75%TComInterface$27Shdocvw_tlb@IShellUIHelper3px5_GUID$gIID_IShellUIHelper3$%
@Shdocvw_tlb@TCppShellUIHelper@ContentDiscoveryReset$qqrv
@Shdocvw_tlb@TCppShellUIHelper@CustomizeClearType$qqrs
@Shdocvw_tlb@TCppShellUIHelper@CustomizeSettings$qqrsspb
@Shdocvw_tlb@TCppShellUIHelper@DefaultSearchProvider$qqrv
@Shdocvw_tlb@TCppShellUIHelper@DiagnoseConnection$qqrv
@Shdocvw_tlb@TCppShellUIHelper@Disconnect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@EnableSuggestedSites$qqrs
@Shdocvw_tlb@TCppShellUIHelper@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellUIHelper@GetDunk$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ImportExportFavorites$qqrspb
@Shdocvw_tlb@TCppShellUIHelper@InitServerData$qqrv
@Shdocvw_tlb@TCppShellUIHelper@InPrivateFilteringEnabled$qqrv
@Shdocvw_tlb@TCppShellUIHelper@IsSearchMigrated$qqrv
@Shdocvw_tlb@TCppShellUIHelper@IsSearchProviderInstalled$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@IsServiceInstalled$qqrpbt1
@Shdocvw_tlb@TCppShellUIHelper@IsSubscribed$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@IsSuggestedSitesEnabled$qqrv
@Shdocvw_tlb@TCppShellUIHelper@NavigateAndFind$qqrpbt1p10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@NavigateToSuggestedSites$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@PhishingEnabled$qqrv
@Shdocvw_tlb@TCppShellUIHelper@RefreshOfflineDesktop$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ResetFirstBootMode$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ResetSafeMode$qqrv
@Shdocvw_tlb@TCppShellUIHelper@RunOnceHasShown$qqrv
@Shdocvw_tlb@TCppShellUIHelper@RunOnceRequiredSettingsComplete$qqrs
@Shdocvw_tlb@TCppShellUIHelper@RunOnceShown$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SearchGuideUrl$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SetActivitiesVisible$qqrs
@Shdocvw_tlb@TCppShellUIHelper@SetRecentlyClosedVisible$qqrs
@Shdocvw_tlb@TCppShellUIHelper@ShowBrowserUI$qqrpbp10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@ShowInPrivateHelp$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ShowTabsHelp$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SkipRunOnce$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SkipTabsWelcome$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SqmEnabled$qqrv
@Shdocvw_tlb@TCppShellWindows@
@Shdocvw_tlb@TCppShellWindows@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TCppShellWindows@_NewEnum$qqrv
@Shdocvw_tlb@TCppShellWindows@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellWindows@Connect$qqrv
@Shdocvw_tlb@TCppShellWindows@ConnectTo$qqr71%TComInterface$25Shdocvw_tlb@IShellWindowspx5_GUID$gIID_IShellWindows$%
@Shdocvw_tlb@TCppShellWindows@Disconnect$qqrv
@Shdocvw_tlb@TCppShellWindows@FindWindowSW$qqrp10tagVARIANTt1ipli
@Shdocvw_tlb@TCppShellWindows@get_Count$qqrv
@Shdocvw_tlb@TCppShellWindows@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellWindows@GetDunk$qqrv
@Shdocvw_tlb@TCppShellWindows@InitServerData$qqrv
@Shdocvw_tlb@TCppShellWindows@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppShellWindows@Item$qqr10tagVARIANT
@Shdocvw_tlb@TCppShellWindows@OnActivated$qqrls
@Shdocvw_tlb@TCppShellWindows@OnCreated$qqrlp8IUnknown
@Shdocvw_tlb@TCppShellWindows@OnNavigate$qqrlp10tagVARIANT
@Shdocvw_tlb@TCppShellWindows@ProcessAttachDetach$qqrs
@Shdocvw_tlb@TCppShellWindows@Register$qqrp9IDispatchlipl
@Shdocvw_tlb@TCppShellWindows@RegisterPending$qqrlp10tagVARIANTt2ipl
@Shdocvw_tlb@TCppShellWindows@Revoke$qqrl
@Shdocvw_tlb@TCppWebBrowser@
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp6HWND__
@Shdocvw_tlb@TCppWebBrowser@CControlData
@Shdocvw_tlb@TCppWebBrowser@ClientToWindow$qqrpit1
@Shdocvw_tlb@TCppWebBrowser@CreateControl$qqrv
@Shdocvw_tlb@TCppWebBrowser@DEF_CTL_INTF
@Shdocvw_tlb@TCppWebBrowser@EventDispIDs
@Shdocvw_tlb@TCppWebBrowser@ExecWB$qqr20Shdocvw_tlb@OLECMDID25Shdocvw_tlb@OLECMDEXECOPTp10tagVARIANTt3
@Shdocvw_tlb@TCppWebBrowser@get_Application$qqrv
@Shdocvw_tlb@TCppWebBrowser@get_Container$qqrv
@Shdocvw_tlb@TCppWebBrowser@get_Document$qqrv
@Shdocvw_tlb@TCppWebBrowser@get_HWND$qqrv
@Shdocvw_tlb@TCppWebBrowser@get_Parent$qqrv
@Shdocvw_tlb@TCppWebBrowser@GetDefaultInterface$qqrv
@Shdocvw_tlb@TCppWebBrowser@GetProperty$qqrpb
@Shdocvw_tlb@TCppWebBrowser@GetWordBoolProp$qqri
@Shdocvw_tlb@TCppWebBrowser@GoBack$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoForward$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoHome$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoSearch$qqrv
@Shdocvw_tlb@TCppWebBrowser@InitControlData$qqrv
@Shdocvw_tlb@TCppWebBrowser@Navigate$qqrpbp10tagVARIANTt2t2t2
@Shdocvw_tlb@TCppWebBrowser@Navigate2$qqrp10tagVARIANTt1t1t1t1
@Shdocvw_tlb@TCppWebBrowser@OptParam
@Shdocvw_tlb@TCppWebBrowser@PutProperty$qqrpb10tagVARIANT
@Shdocvw_tlb@TCppWebBrowser@QueryStatusWB$qqr20Shdocvw_tlb@OLECMDID
@Shdocvw_tlb@TCppWebBrowser@Quit$qqrv
@Shdocvw_tlb@TCppWebBrowser@Refresh$qqrv
@Shdocvw_tlb@TCppWebBrowser@Refresh2$qqrp10tagVARIANT
@Shdocvw_tlb@TCppWebBrowser@SetWordBoolProp$qqrio
@Shdocvw_tlb@TCppWebBrowser@ShowBrowserBar$qqrp10tagVARIANTt1t1
@Shdocvw_tlb@TCppWebBrowser@Stop$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@
@Shdocvw_tlb@TInternetExplorerMedium@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TInternetExplorerMedium@BeforeDestruction$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@ClientToWindow$qqrpit1
@Shdocvw_tlb@TInternetExplorerMedium@Connect$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@ConnectTo$qqr69%TComInterface$24Shdocvw_tlb@IWebBrowser2px5_GUID$gIID_IWebBrowser2$%
@Shdocvw_tlb@TInternetExplorerMedium@Disconnect$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@ExecWB$qqr20Shdocvw_tlb@OLECMDID25Shdocvw_tlb@OLECMDEXECOPTp10tagVARIANTt3
@Shdocvw_tlb@TInternetExplorerMedium@get_AddressBar$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Application$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Busy$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Container$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Document$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_FullName$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_FullScreen$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Height$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_HWND$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Left$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_LocationName$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_LocationURL$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_MenuBar$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Name$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Offline$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Parent$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Path$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_ReadyState$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_RegisterAsBrowser$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_RegisterAsDropTarget$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Resizable$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Silent$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_StatusBar$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_StatusText$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_TheaterMode$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_ToolBar$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Top$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_TopLevelContainer$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Type$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Visible$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Width$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GetDefaultInterface$qv
@Shdocvw_tlb@TInternetExplorerMedium@GetDunk$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GetProperty$qqrpb
@Shdocvw_tlb@TInternetExplorerMedium@GoBack$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GoForward$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GoHome$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GoSearch$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@InitServerData$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TInternetExplorerMedium@Navigate$qqrpbp10tagVARIANTt2t2t2
@Shdocvw_tlb@TInternetExplorerMedium@Navigate2$qqrp10tagVARIANTt1t1t1t1
@Shdocvw_tlb@TInternetExplorerMedium@PutProperty$qqrpb10tagVARIANT
@Shdocvw_tlb@TInternetExplorerMedium@QueryStatusWB$qqr20Shdocvw_tlb@OLECMDID
@Shdocvw_tlb@TInternetExplorerMedium@Quit$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@Refresh$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@Refresh2$qqrp10tagVARIANT
@Shdocvw_tlb@TInternetExplorerMedium@set_AddressBar$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_FullScreen$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Height$qqrl
@Shdocvw_tlb@TInternetExplorerMedium@set_Left$qqrl
@Shdocvw_tlb@TInternetExplorerMedium@set_MenuBar$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Offline$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_RegisterAsBrowser$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_RegisterAsDropTarget$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Resizable$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Silent$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_StatusBar$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_StatusText$qqrpb
@Shdocvw_tlb@TInternetExplorerMedium@set_TheaterMode$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_ToolBar$qqri
@Shdocvw_tlb@TInternetExplorerMedium@set_Top$qqrl
@Shdocvw_tlb@TInternetExplorerMedium@set_Visible$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Width$qqrl
@Shdocvw_tlb@TInternetExplorerMedium@ShowBrowserBar$qqrp10tagVARIANTt1t1
@Shdocvw_tlb@TInternetExplorerMedium@Stop$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@
@Shdocvw_tlb@TShellFavoritesNameSpace@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TShellFavoritesNameSpace@BeforeDestruction$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Connect$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@ConnectTo$qqr75%TComInterface$27Shdocvw_tlb@IShellNameSpacepx5_GUID$gIID_IShellNameSpace$%
@Shdocvw_tlb@TShellFavoritesNameSpace@CreateSubscriptionForSelection$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@DeleteSubscriptionForSelection$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Disconnect$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Expand$qqr10tagVARIANTi
@Shdocvw_tlb@TShellFavoritesNameSpace@Export$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Columns$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_CountViewTypes$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Depth$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_EnumOptions$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Flags$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Mode$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Root$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_SelectedItem$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_SubscriptionsEnabled$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_TVFlags$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@GetDefaultInterface$qv
@Shdocvw_tlb@TShellFavoritesNameSpace@GetDunk$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Import$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@InitServerData$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@InvokeContextMenuCommand$qqrpb
@Shdocvw_tlb@TShellFavoritesNameSpace@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TShellFavoritesNameSpace@MoveSelectionDown$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@MoveSelectionTo$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@MoveSelectionUp$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@NewFolder$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@ResetSort$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@SelectedItems$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Columns$qqrpb
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Depth$qqri
@Shdocvw_tlb@TShellFavoritesNameSpace@set_EnumOptions$qqrl
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Flags$qqrul
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Mode$qqrui
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Root$qqr10tagVARIANT
@Shdocvw_tlb@TShellFavoritesNameSpace@set_SelectedItem$qqrp9IDispatch
@Shdocvw_tlb@TShellFavoritesNameSpace@set_TVFlags$qqrul
@Shdocvw_tlb@TShellFavoritesNameSpace@SetRoot$qqrpb
@Shdocvw_tlb@TShellFavoritesNameSpace@SetViewType$qqri
@Shdocvw_tlb@TShellFavoritesNameSpace@Synchronize$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@UnselectAll$qqrv
_DataModule1
_DataModuleInit
_frmActivationOk
_frmAlert
_frmCaptcha
_frmCaptionPanel
_frmConnection
_frmConnectionError
_frmErrorReport
_frmInfo
_frmMain
_frmNotification
_frmPasswordSetup
_frmProtectionGroup
_frmReminder
_frmSettings
_frmSpecialPanel
_frmStartProgress
_TGlassButton
DLLFireUninstallEvent
GetDriverInfoFromDevice
InitIntelliGuard
IntelliDownloadAndLoadDB
IntelliGuardAddEvent
IntelliGuardAddSample
IntelliGuardChangeSettings
IntelliGuardCompatTestRegisterCallback
IntelliGuardCompatTestStruct
IntelliGuardGetDecisionByFilePath
IntelliGuardIsMonitorProcessCreationEnabled
IntelliGuardVersion
InvokeHookChain
KCSDKCopyFiles
KCSDKEnableDisableEncryption
KCSDKInit
KCSDKInstall
KCSDKIsEncryptionEnabled
KCSDKStart
KCSDKTestMe
KCSDKUnInstall
madTraceProcess
UninitializeHooks
ZALAddRuleByMD5
ZALBlockHooks
ZALDeleteRule
ZALGetBehaviourDescription
ZALGetDecisionByMD5
ZALGetDriverVersion
ZALGetLogsCount
ZALGetRules
ZALGetRulesCount
ZALGetRulesInternal
ZALGetSettings
ZALInit
ZALInstallDriver
ZALModifyRule
ZALRegisterProtectedProcess
ZALRegisterSetupProcess
ZALSaveRulesDecrypted
ZALSetHooks
ZALSetSettings
ZALShowCaptcha
ZALUninstallDriver

AntiLogger.exe

Zemana AntiLogger by Zemana Ltd. (Signed)

Remove AntiLogger.exe
Version:   1.9.3.448
MD5:   6a3658389f980faca26e613f845d18ff
SHA1:   b29a18b6d889d547950d9812421f416cc29313d1
SHA256:   a00779e50d0af017fce73fd28c7e237216859d84d5b39de626015ac020c52720

Overview

antilogger.exe executes as a process with the local user's privileges typically within the context of its parent dragon.exe (Comodo Dragon by Comodo Security Solutions). It is set to be start when the PC boots and any user logs into Windows (added to the Run registry key for the all users under the local machine). This is typically installed with the program AntiLogger published by Zemana Ltd.. The file is digitally signed by Zemana Ltd. which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:antilogger.exe
Publisher:Zemana Ltd.
Product name:Zemana AntiLogger
Description:Zemana AntiLogger User Interface
Typical file path:C:\Program Files\antilogger\antilogger.exe
File version:1.9.3.448
Size:15.28 MB (16,023,976 bytes)
Certificate
Issued to:Zemana Ltd.
Authority (CA):VeriSign
Effective date:Thursday, December 6, 2012
Expiration date:Monday, January 6, 2014
Digital DNA
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
AntiLogger
 Zemana Ltd.
9% remove
Zemana AntiLogger is a powerful, efficient, and lightweight app that blocks hackers. It detects any attempts to modify your computer’s settings, record your activities, hook to your PC’s sensitive processes, or inject malicious code in your system. The AntiLogger is designed to work with your anti-virus. While an anti-virus application will protect you against a wide range of known forms of malware, the AntiLogger is able to stop advanc...

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'AntiLogger' → "C:\Program Files\AntiLogger\AntiLogger.exe" /minimized

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00028930%
0.028634%
Kernel CPU:0.00013841%
0.013761%
User CPU:0.00015089%
0.014873%
Kernel CPU time:22,780 ms/min
100,923,805ms/min
CPU cycles:17,557,510/sec
17,470,203/sec
Memory
Private memory:33.59 MB
21.59 MB
Private (maximum):47.83 MB
Private (minimum):26.19 MB
Non-paged memory:33.59 MB
21.59 MB
Virtual memory:223.85 MB
140.96 MB
Virtual memory (peak):237.43 MB
169.69 MB
Working set:32.4 MB
18.61 MB
Working set (peak):55.58 MB
37.95 MB
Page faults:192,592/min
2,039/min
I/O
I/O read transfer:114.02 KB/sec
1.02 MB/min
I/O read operations:2/sec
343/min
I/O write transfer:15.76 KB/sec
274.99 KB/min
I/O write operations:1/sec
227/min
I/O other transfer:470 Bytes/sec
448.09 KB/min
I/O other operations:89/sec
1,671/min
Resource allocations
Threads:15
12
Handles:13010
600
GUI GDI count:354
103
GUI GDI peak:358
142
GUI USER count:128
49
GUI USER peak:130
71

BehaviorsProcess properties

Integrety level:Medium
Platform:64-bit
Command line:"C:\Program Files\antilogger\antilogger.exe" /minimized
Owner:User
Parent process:dragon.exe (Comodo Dragon by Comodo Security Solutions)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 66.67%
Microsoft Windows XP 16.67%
Windows 8 Pro 16.67%

Distribution by countryDistribution by country

United States installs about 66.67% of Zemana AntiLogger.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Toshiba 60.00%
ASUS 20.00%
Intel 20.00%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE