1c7f778b...93c7 | IOCs
Logo
Try VMRay Analyzer
VTI SCORE: 100/100
Dynamic Analysis Report
Classification:
Backdoor
Ransomware
Threat Names:
Ryuk
Gen:Variant.Razy.601606

aHSIi.exe

Windows Exe (x86-64)

Created at 2020-03-31T11:13:00

...

Remarks (1/1)

(0x0200000E): The overall sleep time of all monitored processes was truncated from "53 minutes, 38 seconds" to "14 minutes, 20 seconds" to reveal dormant functionality.

Indicators

File (23552)
»
Filename Hash Operations Category Severity
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK MD5: 0878cd928aa56ea39adff20dbeb0d360
SHA1: 32e36a5298bf7ecf3664c9d4c03c9bb31c640234
SHA256: e887099ee0ad74cac82f3e820642d549877a173e3ef9f511c2f8db148a313eea
SSDeep: 768:3snQfpX5aUVLiWk7ZReslQYZi/WtxdN44c6zlH:3vBv+TlQsi+NN44/
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK MD5: 41e088783e76ba43d9800094723a94a6
SHA1: bbb7fa7ee90eaada36ba26d11cee1474c76dd3ad
SHA256: 3f98de94fc81e4d0bf96eff38f7ebd9cf0d763dad46a29160b2d68dfeba2af0f
SSDeep: 3072:noZPykTipL5mLJZPBtkjGWA/pk63yVjfNCgFmhkHSF9zC:n1kTStscS/KpVjfNCgFnHSFo
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK MD5: cb4a4e58ba5553482bb7284e92ae0e0f
SHA1: db8d94f968b69ec71a497b98399e5215239900c1
SHA256: e1b6ed039024182b38ee7d0242fcd2297efe347aa5150eeba4ce922a18cb326c
SSDeep: 768:0OaFNSUmGVrDt53eJiYb5GkM+yybpkllJFRDy/DwbAJP3oHPJ1dyHcs:02vWVQJjctZfJFRDWeAuxO9
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\SharedDataEvents.RYK MD5: b6f704495efd128f0b3bf14a18374aa2
SHA1: bcdf8ce4a70eb3007f38afac4604d16b41f71aae
SHA256: 610a666e03080f361a4c4ce7bc4197dfe0288194a7b4ce9f2c054664bb6ab963
SSDeep: 96:+ieooqZ4H+wQBk7VfS7sPnaMX4WS20Vcq8do2PpBzzrwIfQhh/KK1q06gQoGYQ:+iMehwpPnpoF2uUdNR9z0IUaoGD
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Color\ACECache11.lst.RYK MD5: ce6efdb59a397cf6ff79cf5027102a14
SHA1: c7ae044c1457d5c8e84ff19c6367c5a587fe2e11
SHA256: e6fa8dca2c869ec645ad12cd21b8e54baa80cca9dd17c934a6bf7229dd01adef
SSDeep: 24:b0Gj7m9UdkrrHFdT1u8m7nu5Le/4fKrjS4ZrXV1pJqXINozbqHFwoUqXEV:bLfm9IkvHFdT1AL4LQv0eHFwovXa
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Color\Profiles\wsRGB.icc.RYK MD5: 9ad1696a7a74c3320d268f15f83bf30a
SHA1: 944ab7f13729b703bb72f0faa7cf24cca2c76830
SHA256: 3c8a86314cf8bb0ba83f5344aa728fe99aad3b68d0051cfd413df970e3ddd57b
SSDeep: 48:x8Mc2liVab+O+nmCqanOJyhoAmZlSmQ2liG9sItTDYzS8Hm9Z36fKxCo5aCajdGu:x/voVl/ZLnuKkhcG3RvUmL7CoocO2S
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Color\Profiles\wscRGB.icc.RYK MD5: d9cb1868be13290daf1fda805f3d499e
SHA1: 246f28eaac9f0e4c11d627f5d20ebb831cf6acba
SHA256: d755f01b7d59d066d6994ccc3c4f6801f2007797d3d51d2928bee7578ee7f30a
SSDeep: 1536:E+KN9dovnZ9AgmA2lZ4SWM/mpDPwBH5qhjmj1g8vp0lCWCT2W1D7Ya0/:E+y927pqeSWU6oqhjmlvWCTP1D7g
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK MD5: a32955652e3489328744329801a94b70
SHA1: be5a6148ecdd5b01a151b14235deb3ec24fbec43
SHA256: 1b7b51ddf19c2dd40627935348ef758779ad82406b3446756cbacade041c5767
SSDeep: 1536:l8L/ZtWnlx/R4K4OBRHFz7oL1XfMUgfaFu4iZpN+pqP6jlf:l2Zs/2ZOBRHFz7ohXfaicoxxf
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\GDIPFONTCACHEV1.DAT.RYK MD5: ae2a3fda4587eaf551ca19ef580999af
SHA1: 5cdb9402ebcb7504328473ef4a02dad81d0d5198
SHA256: daa74e51dbd1cec83f27105174310cecfc6fea2c4f254ef2f7adbdd1b89a7375
SSDeep: 3072:RZRh87MtOZBI9V91th5OGQRSeUXH++DQ27CZU:XRe44ZILtzb74U
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\IconCache.db.RYK MD5: ba8244746a6061b5e31bfc1ec9353aae
SHA1: 088a57c19215e0de4eaa5b2c7cb1be8c1caf8cf6
SHA256: b5463be5231251fe0702758021094a0b61bc246134b5fcd115fe4871f29fd1f3
SSDeep: 24576:yi+4pbKcsH5rIfFgVWLHIA4iKOFBBWx9R:yi+4lA8fFgVQIAMR
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\2-Mtf1dzQ.odt.RYK MD5: 92278e529a8b2132e5db90cf3c980508
SHA1: faeaf24217691541b1be004809d65cc82ceb3145
SHA256: 2c82f3d2079076200d60df444a6313cc272327ec5d39e6e9fb50894d6424d1ff
SSDeep: 1536:ELIHLaFvZqjV92nK59/oIBH6AcAf9veUes:CWQhqjVsnKv/o2H6lAlv3
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\4X03DNCarg8n aX.wav.RYK MD5: a9dec144ab162a039997ef0c677ac3b2
SHA1: db9ec2fb11a37482cedd08f2968fa3d78642f117
SHA256: aa889bb5a48ab80bd03a90f6e6257b8b46f2d85e7c1626cb9e53eb261ca732f6
SSDeep: 96:xO3gzq9BW0fLCDiJjvUBf70NnU5no3DXDXWMluSgA1ESQYfp4HDrIz+l/PUf0QB:xO3gzq7uuuFKnU5mfXtRgrYB4jk+lH6
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\58OVnGyv4Dp.png.RYK MD5: 4c6cb20a92c915100a3fe34917b1ed72
SHA1: 8a59c7d8cb6877dda35ac1eb3226759315468662
SHA256: 745e41787b6cb9ba42d72c75d2384cd180d45fa366aecb0319c410686c38cc27
SSDeep: 768:oQ9wGM9CaXGtKbNOm9I2hTZs3CzQcl2ptBe9LFFNTIraP6OHY1aq1+4yDJtE2:/9wx9jDLI2t9l2pncLFFlVY1N1uDY2
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\AdobeARM.log.RYK MD5: 2f339227a1aefde5d2c8a48c46381821
SHA1: f622119fef45e384815f6522a12e35941cf18d2f
SHA256: 58356b17b35ce3d02ccd22e40e6630d5e19c8e7ac56ce9dd16cd061e40f07be1
SSDeep: 24:OFWHujlP4sCBQi1Bw3ot2Xue5ePzMy1UMfXw88PUj7Gq3CgANV9wK9AHlKPZG/N:OFrY42sF5eQMfghULCWK9+EYF
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\E3q9rKf4kWh.ppt.RYK MD5: 5fb1424f54745869a3f9611c0665e14f
SHA1: ae46537a263b3ef0769bcedabbf7e8f6ba97a907
SHA256: 764b4a92046fc07555fc08210c13d73c01e9cb0b3fb9645c71de97d6247969a3
SSDeep: 1536:7ZKeCNwCUxtgN9xJdYSEgHYSSFh6V8jOboqVm9RAA+:sZwpg9jdYSEy6FhZzqVRA+
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\FTNd.bmp.RYK MD5: cd24e36efe4ede106cb9733032c38903
SHA1: e97b1d93a1f2b16bcb73d6de9a79526f362faa1f
SHA256: f5a581cdfa51df63660df7773e6b1c760fa5164b0a666bcedd65629eb37e719b
SSDeep: 1536:ljdzCptP3NPpUL33u37Qb7gWMAvw0u4R5:Dw3NSDy7Qfv
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\KfMN Yxrkynq8S7.gif.RYK MD5: 46d37a8b4b332ddf6c7b42e1566944e1
SHA1: bf510957edf26a44c578223804c1710ecaa05a38
SHA256: c1013c4ce8f557a84d4d9033e4084550ce3e5c511426eb438402b3eb158deb57
SSDeep: 384:2vy6J0S1I6GP5OTVj6KMrysl/K2HBO9Qw3j6HJ9Lx2rAoW:2vy6mROTVj6KMG2/fQ6p9wEoW
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\LEHCO5e8Ra.jpg.RYK MD5: 16ef81e7997edbb799cf16a36d49ed50
SHA1: cd7e8e5d38ef56c92f4927a3a273b6b24364f1c7
SHA256: c71ea28f48e4a35ffad0f99c4e0d86b65ea2a1235af228444d32d969cb0c25d0
SSDeep: 1536:3yqFwIStpUCrDjkyos1vEldabtDOvKwYQxwl3uL5ti:lFwxtpU8kVkMldeDqYMwl3uL5ti
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\T8aOHY.ods.RYK MD5: 1bdadfcd71e912591b24b76d6dd3d086
SHA1: b7aa6e57d759cc99018f407d0191807d5a165e5c
SHA256: 2b22d55e8296f777434e543ad06570454fcad599ab909e458460961c3a0075c8
SSDeep: 1536:4zCyqIjzNXVIbxb9wLLtbzhvxapJvyvqCTdgnivboi:6Nq2zVGx5wtyVyvD+nivv
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Z 7f23_.wav.RYK MD5: e8fca2f0ecec292670975b3600c4d4e5
SHA1: 95eb65e47bee451f23e751bc279553ea0d5076c8
SHA256: e38d54e02db9b136a73e8529ef618c171c851ae1d8ed646cbc22c3cdf8bb9904
SSDeep: 192:9txgsMoOJ/mdxRtamTe2VovZZh3vDUuYmxp7Vt:9txVY/mLPT3613vDRbPVt
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\_IXaQXRVfdd8.swf.RYK MD5: 66b99fb9448ef52835dcdb6aee45c6a8
SHA1: a76bc5967badcb222300345cdc81021631d744df
SHA256: 2063ecb3eebac233eaacc55b119b59f1d59b7c8fa11b963599e385198fcbe3cf
SSDeep: 384:f8xUEYYhAHDY79+zOqj9gkgVM+P4LzQao4iHHKmbk0AqWVbVEe:fGY9jYJ+zFZma+AfQnzHqUk1qPe
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\a8cUo.jpg.RYK MD5: 37cb7d942901fa9cf1af7e2f4c4dcb31
SHA1: 7fc9c656290fd3539d214c57ebd90b30a4918b87
SHA256: 7ba3f1a7374edd00e4e7ad1cdb6ab3b5f3e15e3b2ce95792abff22a7af6ba63d
SSDeep: 384:F5pL4rMxMcZJgiOVryHps4d8E6WNlZmqe8a6sDHMGGPXJ/fF03sosuS0yW1wo4NU:FrL4argiC+JsgVxlZmXD6MMGGPrh+SqX
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\a9J5SwLc8KWlfQj.png.RYK MD5: 0ad11e477ae450a6c433e6ca0bc831a7
SHA1: c1968b79de1c650e4b69e2a27a6aae0799bede4e
SHA256: 91890a9062f894040665072f9f8f379879cd9336eceadaed1f7edf7217c263cf
SSDeep: 384:UkeeXj0jO5MtCghu3Dl41i9A3dCr0wQy0XSmO7bYHdzsUhk:UpeT2zrsDm3dCjN3mhtm
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\dk2UVcjI1VSbd.m4a.RYK MD5: d5ea4bbc04a36329fb47337a10a68202
SHA1: 6b89e5606ee8bfa62b75d665b57cee8459f50646
SHA256: d9a4c164de69f45761d47796ff2a74c418b5950e49d880e16f4802f2e2eef5a8
SSDeep: 1536:LSmFpJYjUjS3DyXKX8QP4YPMpsiCD8/u5iP5HGJvoUEBA7sYPMfv9I:LSmFpOkSU3QP4YPJpIDxHG+UEabUfVI
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\lrDhEY-fqfr.png.RYK MD5: 671dbb02d132990eee5d60823ee8198c
SHA1: 779510c7f4f5c5dbb1e0ea4013eea9b316c126f3
SHA256: dcb520f9bd8c3d1555198fd0579b465f27e14996bcd7309e1bf62b39e10f1595
SSDeep: 3072:jDgrF/Jurcq2f7SGC604A+tjcQehTSbFxlIpWLWH:jDq/2nQuDZ4tyQiSbZIs6H
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\pjIjE0WYbwb.jpg.RYK MD5: d7f8ff44bd2544ae9517456328605e21
SHA1: 9f31e31be5ef5be534dcb602f413d51586755931
SHA256: c59bd4c641b1710ffd1b4a86e3f5f52c6e225982ecd03d67dae277f8a5567444
SSDeep: 96:PxdoaQTEtT8j5qCtTDgSPaBAyi8+U87GZ+/6p2v:JQQtTO8CtTDgs5U87JJv
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\xjrYNEqW6aEjt.mkv.RYK MD5: 9242108eb978c20f5da4ccf38b60bd08
SHA1: 6744ec6c6a006cb8cad52ba69b6cdaaa970aea6d
SHA256: e2327707abd2677f126a6508fadfdbe1ea9e71f4c361f8d8955ee537746eca22
SSDeep: 1536:Biid2inpPyXQ5LfdLFyg6XuHxVz0a23RIZAlP6cPqlEn3HrJ38hfCgKi:BiPFXeVxyg3RVz0a2556cilE3HrB8ht
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\Low\History.IE5\index.dat.RYK MD5: 091660aac6e6c5d520623b120f275d92
SHA1: 03f7d0f3fb4548933c3caa8753d8695916134472
SHA256: 4ce57a8d2c9e05baffab56fda380032cc7ebac5f2c1b04629c62caf9a8ae835e
SSDeep: 768:TLVm0Ixhpzd2Gx+IRmTTjxYINwqPWj3CJGrxEC:TBm0Ahdd2j1TTjxY8sCkxD
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\FORMS\FRMCACHE.DAT.RYK MD5: 05d39088638cc3ccb6b7c7d5acd95894
SHA1: 2555b9607b9867028fb79b7e010a48cebf7b0586
SHA256: f3ffed5f71fd405b3c2bc84bf65d8c75938c13af6c028ebe3ec18425beac66d2
SSDeep: 6144:BXaUrbDijNaiFR+/ttvZRdDdGtbpf+pTPnSFSsF:sUrycm8nvddGBpmpfSF9F
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds Cache\index.dat.RYK MD5: b885839f54c79b9451431705fb4ec41f
SHA1: addf379fdc90010fd7caa0ddf59e7d10fa561c05
SHA256: 1f084c4a32e51de41831632f4400fb20640a04b1e31f5c72e7d8cc270a9910e6
SSDeep: 768:iKaw0hP/VExlKg7p80gOI4Hl2MmfQ+Ce96Ny:iRw0h//ul2MR++y
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\FeedsStore.feedsdb-ms.RYK MD5: f7c9ff81b1cb78296896eae08f7cf3cb
SHA1: 6ccefb130181bd8570a19510840535c5c404d88a
SHA256: 0cacb5afdd00136433e22fbd13a0afdee71d2da5f93f8baf33e946afeb385007
SSDeep: 192:yu0C+EXl0bcI91ZEk4n+nKpVKuTVo15Ny0sc:C2l8rZSn+nKpVjTkz
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Internet Explorer\MSIMGSIZ.DAT.RYK MD5: 38a858657cfa5f32072b861c3a7fcda2
SHA1: 0b57d42edf52ac09d2b4ae0a1d807469dc55e5ca
SHA256: 0105db8299976d2749ca93acd43c1b8eb38653bfab56fe5fc6b271ee405ba774
SSDeep: 384:Z+yQbhXP4EF8oeoc6cCUB8EiVkTFbEE+0WunO:ZDQNXPfSo6CUB8R6QhOO
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Internet Explorer\brndlog.bak.RYK MD5: 002bb5ff1964f93b1c1ee44a501227c7
SHA1: 7ae8f7d70653f98df45e1e6975ebd7050f0b4b89
SHA256: d3c875443c4c3088f544e2959566ba41ba4390a638cdafb790689af5dc5df68f
SSDeep: 384:NMmVxgsn+ipurEjxAI1YeZ6kabPnXIkxL:NvRn+i2mXueZ6RbPXIM
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Internet Explorer\brndlog.txt.RYK MD5: cb57579c8bf72ae6545c86052c9783f0
SHA1: 54ddaf2ea8288dcbb9178641c373e455b819d548
SHA256: c8a8a61158895311352a23fbf4f2a22df20325926f079e78ac8d4214912cea5d
SSDeep: 384:sEIZHSG4hI/IjH++ctrioXcE/f8siIQcgeAns:pwSG8I/Ije+oDiIQcgFs
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\LocalMLS_3.wmdb.RYK MD5: b04dca19e564781bda5ef95e22a40773
SHA1: ac055542f873c2c35c03d73d27a635237f6b7e0c
SHA256: dd000c8cf437a5e466acdf870aa5c69794899aff3270a70f36614d6a28619a55
SSDeep: 1536:vkZ+JhzGhdBzbFUO2h7RgsPIXjWGyX08HZHPMt2aVOR1y73/IQo:v0chz2dBzOOERxPtGyX08HZvMtxV+YTg
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Outlook\Outlook.sharing.xml.obi.RYK MD5: 4556d7b45727e4b57c5ab27b1bfd35e3
SHA1: 18a67c3f94095df31335219036c900c3590dbd96
SHA256: 7656c158906ca02806ef50137324fa30a367ff2387849bca28fd5f9f362e5644
SSDeep: 12:CTxE8CvsiFuC2z7ni4Sg8LuoVs3hmZY63uxKi6SgCOa711CIl8tfmEkHNs7:CVnC3FuCUzLloVm23uxbx1B8wHW7
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Outlook\mapisvc.inf.RYK MD5: 722e9cdcb89f0800e9b50d72493da94c
SHA1: b116b3df04dd20eedc1202ce18054ed168a58d14
SHA256: ba5da08b4bf39b3e77ea1fbbdea60ca6d29050efb9cb36b2dddc3b9094300e95
SSDeep: 24:3Ns+Vej+XCTEB63oQR/3ZECSZ6PJz9sPoCUXP1Rvo0X7jKjvHaZw+a:ZVvTqivOJz9qoCU7o0X7VZw
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Outlook\~last~.sharing.xml.obi.RYK MD5: 2a7c39d2b9b2fc070edc7c0a8ea43460
SHA1: 4dc9d25c03e2be36209c18199456a6297cae444b
SHA256: ad4368765576dc8417ee5e211f5c31e644b1aba5480d87fdc221d1e182e2a737
SSDeep: 6:y7Y9+8N66tP8pETYi6/1fjiVpAJQ95BCvrJqHGrSz3hdAA9stYh9XSdlvv/xK:yq+Y6tpEt6/17iVpsW52rJyGWQ+Y/c
ImpHash: - 		Access, Create, Delete, Write Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Visio\content14.dat.RYK MD5: affce3007a81025537e4c54397feb81a
SHA1: 4cae74390d567345275146dfea70f05aa4b75fb7
SHA256: edfd7d2d4f13d7e9a0b09d5ac02b22db7c8d3fce0828138d95b2c566b33d2aa8
SSDeep: 3072:Lscl2fFBoOvuDlFx3cxT+MC8Iwozx82rDD5zV6jXBAQ:TSLHuxF1GT+gIRiw6jXBZ
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Visio\thumbs.dat.RYK MD5: 8a0d6875716f1cadca676e4535e23b17
SHA1: 1f69b0871c94691bd2cb4b404fac5959b8537628
SHA256: a237d2c6a941e3b833217306f25107f87c5cae45c22b4e488e949532be001807
SSDeep: 3072:iVDDS4IbW3Mx/AAk9tShoH3BQhHt6BYAfps2yL5tgKg:qDrMZQSCHxQhNOlzyL0Kg
ImpHash: - 		Access, Create, Delete, Write Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\edb.chk.RYK MD5: 31e3559c620bbd5beeb05731f95d7cc5
SHA1: 9ded6c4ce4367440395cda4828f5b1a1dbfd2cf1
SHA256: dcbbf6b4f5a99274cfe0c9bc3b1ea6cb029f63309a431c15588415780157ab9a
SSDeep: 192:ttSiJLo2D5Cmmzz9u+91bBOH/4bCDDO3jjB6o07l2ypgD:bSiJLoKE/ff91bK4e3qfBe78yM
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\edb.log.RYK MD5: 4e13ba5adafc0e08e9865603a02fcd09
SHA1: 1a681d7b0f0024f31420a96b50b1c206513b36de
SHA256: f9035e73ab25fda9b938d42082a585cceb12e2a83aba0d0ddb05265d6ae72813
SSDeep: 49152:xUF20il+E2cfkgd2btPFaVjfOhLFYyv8lQV+S28XopzOemdsx:upiwKtdmgjfOhxreQsf8X4Usx
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\edb00001.log.RYK MD5: 3e08b666f4565392154a3e83e6e93be2
SHA1: 877a7008867095a399a0f09a991087388aadeb47
SHA256: e67123a7577aaed3a33a5d2e22e1b9cbea79347cedbe7cc29352368bb43e476b
SSDeep: 49152:k/rMb87tjMOS451Zlsx1O/Xs5VFbCS+pW/LURgP9:k/rMb8B9R51Zmx8/wV4DpcLYgP9
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\edbres00001.jrs.RYK MD5: 8b7316b3f7024d4097dc8baac8756130
SHA1: ef888bff89da5d53b395622f7567853e20964604
SHA256: 663bacfdc581ca46048c7d48dd6c3afe0db0112fbd9f0728d80d71bd2dfb02c4
SSDeep: 49152:3LuI7PQaP2SaPe5FvB0IbW4OBmyVG0n6fWIhN:3N7PJTaPWFvflUobF
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\edbres00002.jrs.RYK MD5: bdcc7aad6b617e001d42a57973759ad2
SHA1: c307a244094ec6d24cc40fadd551afeda93905c3
SHA256: 760fb73c348856535c38c7b81ef81738005a156567134060c9ce415382d31671
SSDeep: 49152:yDTEe32WcjQDTdqX2Nt/R7gMvIguHXIIKp31ti:eXmfqTj/RMMvpuHXIRp3q
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\oeold.xml.RYK MD5: b5ccf6b84b3e21ab2710493348e49a42
SHA1: a783c836dcaa35643a1d31f8d57981c7dd4be1a2
SHA256: 43f93e052920bdd034cc2dd3214256f83efd1db0488ea387984340f62b5ec17e
SSDeep: 12:z1juKW6DVs9/4lAJRbHHatLSYJ1O2ESp0QA3KHO7ch:zpZW6Zs+aJH9+ZE/uach
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Media\12.0\WMSDKNS.DTD.RYK MD5: 5d4698c2e471e8310a34341b9a143948
SHA1: ab928a1c112f4d0ab802ba3a0bcc6e20d5b2c613
SHA256: de1ee1c6a02f698ce93f4bfa988a57cf402abeb5bed89cb8f277ff65e6e013bb
SSDeep: 12:nWULLw6Fzy7Wr4i99uZfHZ5t/dkYoFCM3FSvojCA4qc6fnD6za9uEYW1bfo:WuLFzKOTw3i3FSv2f4qTD6O99bbA
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Media\12.0\WMSDKNS.XML.RYK MD5: ff7ca92d7e631ce1809b088638dda805
SHA1: 71c63dfda367d2addf5c20a55ba53a90b4d246a0
SHA256: fa9d5790950c19b496a97e654193556d9b84815be12ce5ca80ebf38894274b28
SSDeep: 192:okVjNHDpcUDWY7bpmz4Vo6i61hGI88N1Hzox0z4paieRYJIVMQYNUvFmoo:ouDKQbsF6i6nDN1HzkpmYJIVMlNko
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\8_eu8MYJPRm-KsBZ.mp3.RYK MD5: ab25b9672ae5984969ab88c961eabab8
SHA1: 2c3082a93b6b222485df8047d748c0240b5b6c00
SHA256: eb7fd11d341c99a9fc02df15eab836ec2f6be6c6766fc5aee6d53331d329415e
SSDeep: 384:7sM7m02oeiPKBMfxv6ejju4x8Kb+YZmfR4vsdJR76PNDMEFPSOj9ZhNqUwc6amI4:7vy024KB0FjS4xwQsdJR76PND5XjVwcQ
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\GX1ZA-KtqkzFTRyMz.m4a.RYK MD5: 7e5a4e1bca2369372a5f208fa70cec7a
SHA1: 15033c68baf278fb0cbcc113c5c387dfd05d2e31
SHA256: af82fe855437a7917ebdb50a2fece44d4adafa18878621c929705f2dc028e92c
SSDeep: 1536:ocFlwmw8toTY1/EdDGUmjmsFnxJ249x0cIv:BF1w8QY1/MKfhFnj99xWv
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\GxeeszKzakHo-77x9W.ods.RYK MD5: b3cb997f3c00232ac1ca6846b0e8268a
SHA1: 5744f0506afa8597ac2cf36a6fe2fdfb1ec0ca35
SHA256: a809df52fee648dea22ba357b13e913870795921dde7d1297326dc8f4b032b2f
SSDeep: 768:SmWEzO1tVEzcaob7YYKfIq3/JIiwyNQo4zoiPjBuEyaH4OzwFe/tO9e:sEzONGoHYRXPaiwPaaHDwFeI9e
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\HXn8MZ-Lbtm0XHteYnU.jpg.RYK MD5: 80b61038e2d54399882aae64cc4dc4e8
SHA1: e6a30166e928d8e1fa69fab0f1d8afe867b9175d
SHA256: 9c88bd2c03e860e887d44bae08b36fedc152c64e42e9913ab5f03ce704b96b8e
SSDeep: 1536:/MCc+Ajod1rY2h+4oIQyMCYkt49OhAzyBSrFqQdRLY:nc+/1zRoRfrzzsSrFNk
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\History\History.IE5\index.dat.RYK MD5: 921ef725f1bbad57fb2fb95c76eaf306
SHA1: 1d3d4daa5f5eed12c744c8db2233fd3a134a1787
SHA256: f876bc1e3b4394d35cf6493363f3316644994ef027d146da265599702665817a
SSDeep: 192:pVhgSsZY32pUppe8Z1wHzygJeAsmxfO2DDdNGVXgHAvVkLB/rEJ6l/Kvq6pBnA3u:pVim2poe8ybBOk4WEgJKvqwKvEgdE
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Nj7Z21L017yPrTqpYI.png.RYK MD5: 8ae6a469b6defa082c4c4715a5247db1
SHA1: 30fa5745201efef94215cd13d2705c64684d9e90
SHA256: 37c9b4183b0a384b3a90cb44fa5c68b36d33a42ebed5fa68d617ad09347b3694
SSDeep: 1536:xd8ZkX145UL/2gAGcx9Wl5M74u1KaK9kMUIk4axBcnHErzsnFmMUoik98hXP4:AkX1He3ElG1rPuG+nHWYFwe9w4
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\T0nA_Yo8wvD9P5Ld9kME.ppt.RYK MD5: e7c5ca347183c56f8c9c23fd382ba0cb
SHA1: e4847954677acc01138a7d837b8fd2ea884b56a7
SHA256: d2f955b881c41523faa25b02bc36b351ed92b19538e1d5eb2c10d968f025b299
SSDeep: 1536:+1FOvvWI0ipId5Q7AJv7gTrqig97kpjlpuIq:+i+tipWSMBg/bYQ3q
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\U-R OAJvY-_UEBHz.doc.RYK MD5: b6a018124f4e6b289271bba2d4a696fb
SHA1: 7bbea8e20f56ebf4d15ab2ef75840a48bff1c2d4
SHA256: 6aa0d2090b1cc35fc409f026c62814c3ae04abf97656cc4c464ce65519366f8d
SSDeep: 1536:WYePFNgP2FcZLG2e947pWl+NpQCTNgDIDQtS1dUQrcP:nePF4xVe947pHNTmEQeeQrcP
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\g2IgkvfS6zcmNM-It.xlsx.RYK MD5: f89bcf3d295551f9cea6fc771f3b7901
SHA1: dc3100a2911e6826d95ff41ced83b65f4fa6b64d
SHA256: 824af7ee539a540f56ed29de4f3ac195a99815ead09d14a4ed39e4c2cf6197ca
SSDeep: 1536:xfx5fPJuqbj+U7hOz2f68UWoDD+DuqDQR3tBlzF1TUUloc:xfxVQ2C0dfN8/HqDUdzplR
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\g9bRk4M4XBqM-0Uss.jpg.RYK MD5: d83c3d233f9c5c7828faf7e301a5c34f
SHA1: 68e480ffa5616511ab321212a41d960eb89a58ba
SHA256: 70b9b87999d7286a430398d740b977404abc213260faa0e2451733d9e16cf867
SSDeep: 384:s5aN2Ju8AwSReaSPOc/8CVNFwyLRAGPxWorx+1F1V5VsH7e1+IqtyXxke3Jhz:Z27pxE0wQiGPm1FJ+eoIqtyXxfhz
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\ndVzmDBhKXTBbrxznC.rtf.RYK MD5: f4571aeee733759d27562cd85f6877b5
SHA1: 615fcfc6de09cb50dc25e93fd4fd9c3c683ec2a1
SHA256: 4b2e05863cd8a69daf8513a71e169840d84f427070fb1ddd50a8a355adcc7cdc
SSDeep: 1536:4U3TwKEH77MN5T+O83iZb7bkDPN4SKG/ujwwJEM0qWqE52/q+MD2eH6u/wMQ:4lHcfZZb7b2N4TPww1wqE52NMDt7s
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\t-JhaVvQOoAbaSm2.swf.RYK MD5: 5073ba8fd9be1a32820eca8681abdb57
SHA1: 05a00808692eeaaecb2b8c1f368c564d634bb63d
SHA256: a8af19f5283aedbc09108ab133cc4ef75e85ea3b8e3faef9fb26729f09316b19
SSDeep: 192:c5iulDxKYgVDMH6vxbIbSLSRIOIzRjQ7CNWC2O2kPn4vz1w:yiODm42x5LlOgITOFPs1w
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\u6qO_KQ4I_qet4NpYXnR.m4a.RYK MD5: 880f53840875e1357decb1da39ae020c
SHA1: f606dc82bfaedaef7c982e46d9fed0efcb320fec
SHA256: da05f841f4968ee92f3fabe16a0c5d26cb0c24ac27d36229105249e14f275f45
SSDeep: 1536:YFkfkcfSgb/oG6qgnbLtLzfY42+xLbugFpNiFqNMa//oatdkf7z9:EGagbw6usAxNiFqXpkf/9
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\wPn6scJ-zJjFb8PT.bmp.RYK MD5: 57f6a2a2a78916462be09c48e9f1a56c
SHA1: 1340231a1409d54daeba1b5ffce29ecdbf2b66e6
SHA256: e8a16f26ac6144960fc4b7e3e76a55c263209d3e0015971daa0fdfa83183983a
SSDeep: 768:sm5UQO4t9mIhz3bXMUKm60yYISAu0pVaiBNeXtDO9vUKI9:56BYPMU7iYhQVHNGteE
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\MSIMGSIZ.DAT.RYK MD5: 4da8630cd40d5252a2dec8c8d1b39afc
SHA1: 39dbb9b9873d4cee28d7318a1fb09b8ec8b6d64c
SHA256: bf557a03866ec6865eb237ee61c0fda5448e7e828c927ab649471b06732857bf
SSDeep: 384:Ck47oPEbfEtB2bFV05TG7+3cgpuuWRzwJ70YA6jzolV:Lcos2BoX05TxcgpuuWRzw50Yxjzc
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\Low\History.IE5\MSHist012017071220170713\index.dat.RYK MD5: 9270221cc381be851fdc42c0995779b7
SHA1: 8029d23027d8584e558a829ce4baade7b476c57f
SHA256: cb92536b2fe2a09de047c15bb9e4f8c8118acdc82281a0b14b0d688a4cd3a5e8
SSDeep: 768:GG9YK52+dewWCCFKIyoK/opKfp3sbymD+acuu4qFMSilI0G:x9YYecXohpcp3sHrcuJavk2
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\Microsoft Feeds~\MSNBC News~.feed-ms.RYK MD5: 196450ac9a6d0f7e65b674e4ce0b9b59
SHA1: 851880d1d3471921b1fa831402d0383e9870d163
SHA256: bba0a083bf8262093ef008b88bb43d9a006e3a070ba8db280d07796dc03a927f
SSDeep: 768:3IH1ScNqL/17mmJv14cPHLtp7+so6k+uEqoexn2Zy:3I2r17mmJd4cRpytmy
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Internet Explorer\DOMStore\index.dat.RYK MD5: 16faf740adc0caafff29ebf7a080b427
SHA1: 5948aa8f771018d676d8cbb84e340fdd8f6a1e19
SHA256: 0c586772ce6a18736d02efe01aa956abe5fc8ea6fc82db5e84a216a7b05987bc
SSDeep: 768:lb9ZNjikzlQc7sQ3KALCa7wHYTJnESLWnIdxxoH:lb9SAJQQ3KKwYPZNe
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Internet Explorer\frameiconcache.dat.RYK MD5: 8033a85b2d7a019f49922cd4bfaa3ffd
SHA1: f6344b2777f117370a32b937b4b88e85a4a26516
SHA256: e93a23fe1c24eded42636afd10e1fd8d09b2dc6e1cea79983c71a196f61f36be
SSDeep: 192:c6ssoCoc4Ch/ayo2hzyoJ22bX1Cxqg1QABwSxmcbypYLMgyJqsVk:c6s7CocAgh9AxZ1QED97LRsVk
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\CurrentDatabase_372.wmdb.RYK MD5: c8c423cb1837da1e2686d97a031609cb
SHA1: 6201eba0b66cc2c83c733843e0888776e6be4c8e
SHA256: 76df5789c6252b7cc6f6db6245b93eacd5ab6971aec563e83b594f2e9e0813e5
SSDeep: 24576:3yoyXNBfxgzEe53AUyi/b9sJxUQbrLot2jkH3nM+eRYuM+lP:3yHg95p5YvoD3M+eSXOP
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Office\14.0\OfficeFileCache\FSD-CNRY.FSD.RYK MD5: d2db53172213cf8ffd75a2c9e4a97e46
SHA1: 5d7a0f75d65fc0c589ef6adf97b5b3928b2e1dc5
SHA256: 63c7420937f9767cba28c0464b1795513615d8b277483ca946d446f32f141975
SSDeep: 3072:ULeE6a4Xz9PC/auyBYON1jtZHqMwH4II4J8SlvQ6:oPkh3beON1jzHqMwH48mevQ6
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Office\14.0\OfficeFileCache\FSF-CTBL.FSF.RYK MD5: b2f03fe4a7bed5cdba58ec2d7f43f0f2
SHA1: 2b2c79096a40b3ff9e8f47ec21ee7d745af7bde2
SHA256: 7a809dab904a049d66fae85fbce3ba1ff4c6d73610a482079fd93efe4ae282b2
SSDeep: 12:rkHJI3i3dvIUHdccPKCFF5oAQZIUtfs4YpZ6a:rKC3i3dvJHdGMENI0f/YJ
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Backup\old\WindowsMail.pat.RYK MD5: 2987148358d248d6715a443cd999e896
SHA1: 2ce412abab7863939320ad499df50f16b38e86ad
SHA256: dfec2eff99edb663f83c2a63cee0b01cd622334476e4ec905f28fa191c11f860
SSDeep: 384:l2Bl0s4NJTRDsxYxCm9qQeG4STwBeR670:lU4NRRDsxGws4SEBZo
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Backup\old\edb00001.log.RYK MD5: 4e64a2f47e0cfc038411499a045c632d
SHA1: 35713677211a16dbed75b341cb7ff7411c00cc50
SHA256: 6e3dc3367bc1e403958e108d570dcd730b97e2710bc18312b5323a1a1442415f
SSDeep: 49152:gI1xrzC2cp12oodDXM6sSJ/foeNvBBIBp3AbOKryWU4B:7rzFI12o8nlfoeNvBmP6ZXB
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Bears.jpg.RYK MD5: 8f49d62c6c13c44a111dce5aa2d6c84c
SHA1: 8ecabe46ff6dd17eaf4ad0816e23a2834cccd938
SHA256: 080e59e746f871fdbe97867693eae5da0555bb28f5d64e8bb3e66a917149e451
SSDeep: 24:xOrSm25+AUZ9AIIZmkK0VPuQy4e6tCaMKU9ejOIx/j6aSznGEPH4WTw3Qq:xOOA9A/ZmkKKPkNJT8yOexLGOuQq
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Garden.htm.RYK MD5: 69f8062547851d015aa7655f48b58597
SHA1: 0f118283a4c7e9a552934f17811b2aa5e8482c33
SHA256: 1ea0d31795414a44f79506ca93025da692c54ee0c0c0c2b09e7bf57cd512a562
SSDeep: 12:fXt3fOFYwxQwBWWDMHefKE1P7pGWW/kyo/5dQAJXEfLJB:fRUYvMWWDMHeRP93W9oxnJXGz
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Garden.jpg.RYK MD5: 8f36f61030e4cbb082af5fde54b41b53
SHA1: 2cd763e956869a80d36579ae44fce0f623e78a3c
SHA256: 63c916aee327f6d8e9261e7d07e12b2938afbc6d474b1474a997ce32adabb1b0
SSDeep: 384:YRZLJaEIrgEUJ4QMCp0WJJCXIaOUZl0R833kOuMQM7OgVb/3vqAl7SAK0kt:YPIx0EG4Q30WaYMl0w0FMpi0r3v37TKt
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Green Bubbles.htm.RYK MD5: 3d3822b98d8219ce66ba6b92831a0520
SHA1: f63e514a76081be525dd6091d3f61fd975a1a6c7
SHA256: c3c024ef2f95ae705e5b9915edad547adeb29f202f888408f90a79ec791d3c50
SSDeep: 12:0GCusLme4sDGNu3JvQ7ul4Mk7N2eH2lPcUq5:yulsDGE3JEulP8NLHIP8
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\GreenBubbles.jpg.RYK MD5: 7c2e540aa09d2c17139eb8aa603fa6d9
SHA1: 9c8bebc7387a03106b07e8e665be755f7b9d2720
SHA256: 52b774f93706d492156843c1ad5ed71dc904d53a1962fcf5be49ffda3f1d8820
SSDeep: 192:sktcAmKtAyraCFY2wCUzg1tXLdASO++L4EiByZn:sLKtALC3cs7XLC++LXcyZn
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Hand Prints.htm.RYK MD5: c9cb13fe94a45cbe1e89a13c07ab4042
SHA1: 9dfd5146d3601712db5bcf5c45c2521e223ddbce
SHA256: fccbaf73c50a1728a83e30fe6c803eb83f55343fd7efce1b4a6265db6597f0f4
SSDeep: 12:88dGPzTp8bM4SXvIdqK2QjIe5YFy5Xy3Z8s8K1JIhh8F:Li/p4MkkQMPwGZ8WHIhha
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\HandPrints.jpg.RYK MD5: 3793d6d7c71efa9ff317178c43bdd224
SHA1: 41cce41ca3ee0209de45e0cd019f944e6a4d23b9
SHA256: c603490adb2751d3d4b57ad068a8b7ab916e4f65f2d415134fe14c9e0521084d
SSDeep: 96:WOogX2fBieokjQV/zbBcqm5FPVeax++FrnZd6cCCr/e7Prkn:WOvCtQhbjmRs+FDecVrgDkn
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Orange Circles.htm.RYK MD5: 2522f29073e67aaeeb66bb18ddadeeac
SHA1: 56efeea2c863483e7e847a18843807afad812de0
SHA256: f7b6626d97e1da0024cdd5fccad8f5626bbf6c0f400f8eae005a52d694a0c93f
SSDeep: 12:fSNlTTeQmNaSV3sCg9PlEiR8OXz3a3h9oAY5:KTwNLJi9N7qOXm3h9+5
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\OrangeCircles.jpg.RYK MD5: 173ca8857207aea64f42f7171237f630
SHA1: dcf97bb081c1f67e49a206633abace7adc49ed52
SHA256: b3cd7f0dbe062cb972cf1f257a2f98c377406b9b285ba3ad9646938d2b5f3f0d
SSDeep: 192:Rvf3QUJi1rNOkW/ZbGi4Dy8gqQRv48oFQRD8lrxG:xvBidIJVGi4Dy8eKZFKIs
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Peacock.htm.RYK MD5: 7fefa26afdb7a0bea0d523c6c691c6db
SHA1: 488aa71043ba4246563731e64f841be0aedc96e4
SHA256: a53f34c0c3616d6432765dd8d20baf46f44e3fcf9defe42cba644db557738056
SSDeep: 12:HA4SzpjlLQYkcbsMMXQRAk9wzqDxLazV2MaDoZNRQVxWpJan:HR2QY3IMMX49osxs2MaDolM
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Peacock.jpg.RYK MD5: 83f0d1dd585cc22dfed50fdd2bff8ae1
SHA1: 2fbe2e2ff876cf17d05c79e9c5fd806c58e39ee6
SHA256: 51149ff481e4e4b9d1cc9053d719cceabbb13847ea3043798032ee934d1cd1b3
SSDeep: 96:vqFq//Rpey/59pb5I6OOILxYMHoohaV3mU51dFIndNgbwY6wvyL/U6iWY:vv//ScZbDOfhhG3mU5Pi3ZOawqY
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Shades of Blue.htm.RYK MD5: d7886a7164efbd440b08d2f476a4a71c
SHA1: a29090eedb87c96e8a262e036f8c8e5e140e5efd
SHA256: 94990cf64d7b46ffc9875a80d871b972c881613cac1dc34981f22e199c67465b
SSDeep: 12:sv8+Vq2w2AqI0JgYSE8Vjrr1HBbRLpr/FHxOuWw1VX:Ofq5jzzTJB9BNHxOuWYF
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\ShadesOfBlue.jpg.RYK MD5: 0bb6a36dab5cdecf0858a3929db245c1
SHA1: c7516c6cef7783a1d860a5b0e2b288f491dfff0c
SHA256: dab730d185b03bd8c05a1b231bc372a25fef1a2fd56cca055029320194193bfd
SSDeep: 96:6KIgL7EVZSUDN4yvoBlMQEDvO8sdMWUCU39k3d6miu915oxYVoY1ORhGM6bGJP9Q:6K/uDZMMQEDjsd+Ftkd315orQmeCfC
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\Soft Blue.htm.RYK MD5: b7a690f2ef9f06fba6c9fe7ef3cf7704
SHA1: f6da4f87ab962b64e94f6b6a71c6cf5da91ab343
SHA256: 1ae284e9263e08b7016fe1db4908cc639d8ae159867056828c704039ef673a1c
SSDeep: 12:arR4XuS5piRrKTCkTAe1f0wXOkR+DYuSbtc:uHtKWkEe1f/GY9c
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Stationery\SoftBlue.jpg.RYK MD5: 4aa10124b5e49780f2cff5ebe4a65ab2
SHA1: 68f2951b0151a56f9b7283074e90a46df568ff09
SHA256: 40cd2eebefc348843fa21bfc3bfa9bbf00902aaf7afd1ca5b1390ba64e66a1be
SSDeep: 192:JE/gVBaEwG6QNu/CLMxFShZoNzlkPEJ+uboRMGhGv9GASH96wBaX45y1fk:G4VpmIurU6NzKPEJZboRZ0v9GAeJ2k
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\WindowsMail.MSMessageStore.RYK MD5: 3eeb43664f608da04cd17a220b96de98
SHA1: 9eb5abbe07ec48699b946ce4f189fcac9bc1a4d2
SHA256: b708ea4becbaba6d42db59734ea55b6c357eecc0e7085850a150dd215db00869
SSDeep: 49152:QcKKvQBrX/7Xx1+A2yZdWFFYc+BazEJiU/F:QcBvc79DPBDBapU9
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temporary Internet Files\Content.IE5\index.dat.RYK MD5: 37e0f97d1d29e3fcd821a99c8d5167a9
SHA1: 48e03bdea9169fcf4691ec63e7ecde2ce69ff4b6
SHA256: 95efa953ac72ef12e89977e96cab20a39e5e038e909b5857beeb407d00d8f78c
SSDeep: 768:PahsTh4gjcG4idzbNZYiXh72hzPOZPCwkLtlBUBuoWC:U+3CitJZYwl2ljP7+BuXC
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\js[1].RYK MD5: 9e163876d6660ea8883639fc02043983
SHA1: f949eb2c2818a4a2a24fa16660f53ee09582d05b
SHA256: 05fe12f10a1e2a08c611b2108637e4965c54804a9db98116bbb15e95f5cefe52
SSDeep: 24:MPArL+StEcBamYes+GQC/GCJAd7jvGk8sA46mKkBFQ7JGW:yQTGQC/GIg7jOt46Xkg7sW
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\f[1].txt.RYK MD5: 91bbb31aef248aef1a1957bd6ff62e6a
SHA1: 4ff8e6c602deecf8d1645db54a0806209fca0a1c
SHA256: 57aa155b4b9bd82b100c0a89a1015c059ecae25b145272ee6a0b50b21eaf0e5b
SSDeep: 384:Z+fEcyev4pXz579QKtiZesoA7HNda/1dmRx:cUpXzEwibomNUW
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\v2[1].RYK MD5: 41c4ae1bba6273a3825ac58717cf10be
SHA1: db41fc2b3536fb2ba7b3eef2c93e78e47a5c00ea
SHA256: ce7352d54db3d7a2374631c7418de9b3f493695edca576c4206c84155b590c5e
SSDeep: 192:eOJelLDqZjUDBVliyjuH/4LbD+elxwf/tN/gNEGU9JubU6fbAd+1hJgUTGX8/E6P:felfqZUJOgLbD+elx4xgaGYc7sd0hyaD
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\v2[2].RYK MD5: 0a256cdcdd3e5762ab527c4968a48d9b
SHA1: b1bb8191c213158908d2267439d2a49833e8efbc
SHA256: 3484b8443aaabfb128baed36fd1aaa76a1d8cf7ebbd65f583b079cae5eade113
SSDeep: 192:cOARo+EDzUL3TUOsaYGkka09tG91xXl4zc6g2TGak/rnDF+DVE/B6ZwJOvTEVO/D:cOAmV8sOsSXa0STiztniaUES/B7Ov4VC
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\v2[3].RYK MD5: e34f474ed09944d5469deed54265487a
SHA1: 6b0433cdbe3b0251002375fc4416400745289736
SHA256: 06d3e0a0f4a3c7daf43fc6ed81733ae7e58482ed360a77be633555fbe6178724
SSDeep: 384:VP4hVQddPFISScf5fnnT0FH7IxPntqjjz:V6VIPFISScf5fnT0FH72ntqjjz
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\v2[4].RYK MD5: 25d714c00a9a4d72317d89833e731202
SHA1: 42c763fd7bc65772f04142d6f54b7f792595ef54
SHA256: 4747bcdfd43b26a78c39b7604a63227f87b82fe1ed034c0d65e80dcb99ef7655
SSDeep: 192:AA/acePyCnlgagoo7EOoFz23FSaAFxeiCJ/ziJ3SXF6VMSPH+c3O67xzBPHPyjhH:AWanTyBtYSwPxh+riAgz5FtIEi9d
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\IKQEEPZR\ga[1].js.RYK MD5: 52c1139c9728bff4ca54e3263d5de8a9
SHA1: 7a66b4284cec82b5aa73ef789136bce8d1db8081
SHA256: f41f860bf897a4d54729364b2138d9c57e31a7a6af534d44cb718750bd21f7b0
SSDeep: 768:km0hWQxLZF9A/yBFVDp/z+xyny/31mH9lLxrm9R4N+XIoZVK:kVWQ5ZDAyBFFayy/lA9lNFNslZI
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\IKQEEPZR\js[1].RYK MD5: b483615c052afb57871b7b9192eb8f55
SHA1: 804350287577cc03e0583c003998b9da549a3a0a
SHA256: b22e4f3cb2e49275f5da08e05eee82ab3be3e4df48f7e013db5a2283fcd35322
SSDeep: 24:s5OzcLpfkEpOZQfDCSmIVVKJxxP7CK1RBxfjLmEoj9hMR:Mf6se0VI3CofmEGhMR
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\IKQEEPZR\js[2].RYK MD5: bb63265af193f0411d13eaa58110786d
SHA1: 2c0c91be0eac4c5283e6b0c099079f99a665ca91
SHA256: dc51057e8d06d327c9fae5465c6c2c10cb005f0a3b62a69a37b2e95cc2e59c6a
SSDeep: 48:TwbH5qRu4ceX0tZkM3Z1gUADpGU2yHJkUbWQd:VRu4iSuZbIpGOJdWQd
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\js[1].RYK MD5: fc8574827890e75d5c8a3c15a1011d15
SHA1: 80c964d930946a54f652bf05c5ff1343e5901a69
SHA256: db4edf2b4867dcc576b5b73c7385842a18caa1f2480af395741a899f6ebd6e56
SSDeep: 24:5H6yrOCiU8fQ/77orZ2oSlPIwQhCcMsKueTNUmmbu+6qG9NIp0BAuet2/a9hN71:l6uO9U84/77orZ2o6PSt46u+6RK0OueT
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\js[2].RYK MD5: a67cdfa421818e854a198480c74e2680
SHA1: 752c4825da13183da659ae369e38bbfc1636a4da
SHA256: d157aed58392b3dc4f1f278da6d16572cac25a2adeb910e2296b76a8891b69c4
SSDeep: 24:bgnrGMN4rLRjlWz8Dh/ZoucgyXh20FIsR65WwxrYOVGaVHLNDG9DN:snrkRjcw/Zoucu5TYOVbVH5KN
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\v2[1].RYK MD5: 4c93dadb88874636b04588749cbfdb07
SHA1: 0474d000d1d374e858d15c940f51966dcc9d855e
SHA256: 136a0dfe79672121cdeb3eca5fd3caf4a6704e48e348b3406119632e1753e361
SSDeep: 192:SKFQQt8xcRM5uvq4hqkooTewsE7b0vJpLAhEEK0WOGUE2q4gVvTBpQAc:SKhCxPmNhqWl7b0vJpLyEVAVBgVLBaAc
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\index.dat.RYK MD5: 1d2462f45595d7fcc7d2bc448e33ba01
SHA1: 1c1adf0a52b0ee404562c9608a0e91fc60868465
SHA256: 3df758416509c674fb33a0c89a9e872caf9277b8352ee74b3a00f254766a7732
SSDeep: 6144:e7hpO+Kl6REbTzTWTbpuFHCvX3Bizp7+wjVkvT2VDHpJBnef10:e7a1TCvX3BGp7gYDnMu
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\Microsoft Feeds~\Microsoft at Home~.feed-ms.RYK MD5: 842319850f32e5f4b39eac7021e9ff55
SHA1: 03413a902fb5ddf5b3142ac7955481665025cb50
SHA256: d58972ad3805245dc142a686e8fe3acbaad56de5cb8d5ed518126193e4f8a878
SSDeep: 768:fW60MsN/N0Qj2KJq7Ea1cRIzQscDhKcCDCcVr:fWE+/N0QjtrRlDIBr
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\Microsoft Feeds~\Microsoft at Work~.feed-ms.RYK MD5: faab40e6252e02885432e2d5a3911fe2
SHA1: 1204972426381924b5074a2dec37c9a31c44f5e7
SHA256: b0ca39c27974178102f37a91253f82747df0fb6d3f9d43bc77dee4f057ce9d76
SSDeep: 768:6hWCJgOKyfj4pGUTwqOk3LMMczHOkY0q2Ob3djWJ/YFTIrThmT:6hWtByb4Q0P7c70WONzTIrT8T
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\Sync Playlists\en-US\0000E713\10_All_Music.wpl.RYK MD5: 03ab15f88a24c04c47335557857e7908
SHA1: 1b7b35eb89b57213f25af7faebd7a772b840e80a
SHA256: ac37605bc6556682f7f397953d7e7ade1c555f0ef077f9aea53021744197c9d3
SSDeep: 24:WEZyy3ErNe3HjRTAtgO7ltRZD4eGT+EdLe7IGVDMreND4wgQ2vrv5av:8y0rU3lU7lhi+EUxswgQov5av
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\Sync Playlists\en-US\0000E713\11_All_Pictures.wpl.RYK MD5: 128aba48c64f9c43c257c03d996096de
SHA1: 11951044e47630adf7c27d58dd90fcd80d1183c8
SHA256: b42d7eabe5b939746ab050e8081d690804e18b50eacee63848817abfe18ca3a8
SSDeep: 24:qTj6uK8EHHWZP3GvNIpgWZVnH/SXWe+0McKE:qTmunEH2Zf0Bw6GHGP
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\Sync Playlists\en-US\0000E713\12_All_Video.wpl.RYK MD5: 68692e4daff3cec5b0b039b1d91cf6a3
SHA1: 2a4d0b77df94fdd0a5b50da47cd1e737a164770c
SHA256: dc77e02707c4d70ac1d5c79d8f627b4b71eb93e2ff24bf9dad79b5cfbe6c8589
SSDeep: 24:QCuRUEoIoJNHOdMQZ1e14ibBcZQAqEDJBIb41DKY0MmQyrjh3B7BFo:QdHINHO73e1PlEDJab41DKY0hjhR7Ho
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\Sync Playlists\en-US\00010C6E\10_All_Music.wpl.RYK MD5: f7926ea682eaf23c43abff476165dd80
SHA1: c757d81387211c87886cf3fcbffc90d58589514b
SHA256: 8c517d866e8b6c011854e19f4c4a56d2bf502b7a4e5921f5eb152da3337e19bf
SSDeep: 24:gVCQEzLAceU2oCeDJCI+t50aSm79Sintg9PXSuD5e/0mHW/xmOw:gMQEvAcefODsI+txb79SO2fnDw/I/An
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\Sync Playlists\en-US\00010C6E\11_All_Pictures.wpl.RYK MD5: f46a178a9d5d5e4a4501218f9c9ef914
SHA1: 418d56e7b52ebc2516377b8692900fd15405cf6e
SHA256: dfa528783f86dadfa31048517cbb884c814eb2d7d4a4528facd0af3230d50a52
SSDeep: 12:RZAs5Kilu4zFpCIwe2FEdIxfB/K+TyhCUVON1MfzvXVucds404PKD8UdbzIMP2i:RZAs5Huu3BS0IrKwyhC1Qjs4FpUdoMOi
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\Sync Playlists\en-US\00010C6E\12_All_Video.wpl.RYK MD5: 100000f84b68e888a365a50464fbb5be
SHA1: f08d9469eba2a753ea383640bbe50a5ffad76e75
SHA256: 467c812228487614478f3a190b671fa639429651606cd3569f5cdc6966d7fa6e
SSDeep: 24:EuxCxE/yMYzrGe9+Eg9NO7d1Pmd9gt/Tf5wm0P7ZgfooYhkQ5el+B9TnB1+j/Uvx:EuxqE/oGegi7d1Pm0xyTZr5kQ5el+B95
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Office\ONetConfig\350db95df4cbd94b2a1c300510e12e11.sig.RYK MD5: d5aefea724d2a2e5d519e5dda0d49f41
SHA1: 097aa298201c3d8638e4173f0ce310e317c6f1f0
SHA256: 9b13ccf31edd7809289c1b69657d221b3ccf9df4c5c097d089b43aa5f2a86235
SSDeep: 6:JxDtFqEN+DihQGBgobdyVArgqzSfg8eyt7TzGIlMPQjLYgZaFNT6nKLY3kQtv9Yn:GENhBQVJz7TzGQMPYL3gFF6Qx4FYn
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Office\ONetConfig\350db95df4cbd94b2a1c300510e12e11.xml.RYK MD5: e27f13ee54c6594a58d6b8d9cc0f3883
SHA1: 4050494df0c3552d3fd52debf8b7522a423184b6
SHA256: adb58a7fa00617e80010f21c8f3f0e8446364e8edffda3b7377b795c7eabc6e4
SSDeep: 48:2RB0Kk8CuCBjMg1yRlAMbad7KscS++5F9ejVrAvA9Gd+lxjjnFf2N:YNCuCBjd8lLS+WF9ejVrQiBlFn12N
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\Backup\old\WindowsMail.MSMessageStore.RYK MD5: c4113dd8a605e4bc8a05f34f143c6e74
SHA1: 3cddb1ebc6bc481547ba6ea21d310e0f93079df0
SHA256: a7bfa42ca182fde575521e08a519b661bd7cf4f8666bba4feb2d8f7639868585
SSDeep: 49152:xhTckx2+76qB6nPUYMGThftlQykxRC4aKgFl4aDSj0Z:zTpn2q21TtlQyTPKwbZ
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\28-8f3193-f30905ea[1].RYK MD5: 506ccbc2ea8c4e464d643f197b4fc4a6
SHA1: c6b6c3ae48d891975427832cc7e14f6e4db89b9b
SHA256: a1ad893834855411e10f0f870d5fa1086d3ead01e4672bc3d29b882ec7c2cb2c
SSDeep: 6144:UyaRKS4Gr0otlz4L492xHLkA+6HX/g4fiQk20YE1:Uy/700sz8UCHYD6HX/nZkVf1
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\528d82a2[1].js.RYK MD5: 76ac6e648d908674d65ea1e3c5caa0d1
SHA1: d4dc3fdfece993b8489c8a4b72ba034ac51de6ec
SHA256: 3621a14fc2042b668d510bc6fb39c42fa018242d75c6bb1a562ba0065ae75062
SSDeep: 192:nYdv5lk1jh0xZlNDuy6tbYgQIdY/atLzzeCgnAUPw1Eu+QeE9KXpojrje38htZdf:YBk1j6DMtbbLmnArkZSjXuzyn
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\AA3e3XC[2].png.RYK MD5: c94c508178a78c0df56559a5c06da33d
SHA1: 2ba84a140a634967155143859491dcb9e754fd8d
SHA256: 4e0654e48722ef799f310cb4e95f6af397f8406ce7b423dc94284f71d2e1a5ea
SSDeep: 12:vzW1fSf5dDCmyucLUL+Ga29nm0jiJUNzYjrG7IsMyHnBIeultI2P:7YfSBdempcLUaGakm4pEj6coUl/P
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\AA3vOVA[1].png.RYK MD5: 27f6cf3d3902579e12ecc61740d54522
SHA1: 5bc3935570c6f402f69b1a888b2f2aceb53cf4b3
SHA256: 72543ba21ddfeeaa6fe42e8af99796a3b2615de8789eef3b8ff34079fd866852
SSDeep: 24:pICw+9EZgpwdwaWGzDS67D4VFcNeOZdwa3n:Gl+9Ey6H5bBn
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\AA42EP9[1].png.RYK MD5: ca567b97da7ed12f564b91b17a274caf
SHA1: 63c71f7c5d660edea185cbbb64abcaba09a6688a
SHA256: 17322680efa3ed3668c72c68b8e2fcad323d2795119cd90ecf34fd161e1f7f10
SSDeep: 12:BEmmVuamgc7weKFor5D5cppZEELSI/WGNWWr4qxYilC9XEzetkDv:ssLKeRrdq/LS8WHWYicEzetkDv
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\AA61yi9[1].png.RYK MD5: 31391857d38667e792003f742d72095e
SHA1: cedfcb7f3a2211668b2a5e4dc0732ce07d74840e
SHA256: 559943517aff493e1efde3ddfdcab750de02652a6a483d155ef0ff314be0f140
SSDeep: 12:Kjni15T7+8B+RupqJuoWmWqQGAGAsBo8loqYZpIDai766ACVK9zw3v:KziLT7+iYsqJ92qQGR1loqoi+6HVI0
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\AA8uCo4[1].png.RYK MD5: 52b9018e467a8e179fb48a472375fef1
SHA1: 4b88f6c2a9b76f298552914138d2fac1a14fd80a
SHA256: 09abfdf107013dc3e25ae2a894dfaadfff7f32d44fef23eec4bfaac7332237ea
SSDeep: 24:xx3OcVxZ1sw8GkWlTshWtAHnWva2tD0xHuGbVpdm/:xVO+sMKWtA2vaiD0xOMc
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\AAdAVrM[1].png.RYK MD5: 8df8269658123604b1df123296c40686
SHA1: 52db0e764d271c4bc9f1ee2c29862d0cd8ce854d
SHA256: 8c41a2ddfb1d80f4891496d029a6383dea7ae049426c25bf4d3e444e4e989baa
SSDeep: 24:un2baFpNtSn/W3x9h89SNXVtXBgyCVKesYa05wmDGE33bANaXtG4:3oK/wTESNCB5bbANa44
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BB1CcOi[1].png.RYK MD5: f353f00167ef9f968dfbc6fe86206c7f
SHA1: f26fcb796028ac65ad62e04d62ed1ff5733d3842
SHA256: 0cd1f0d7a09ed2e637e4a9b6c2045b43558fb92011ac1b73a2259106b931f81a
SSDeep: 12:wGyS3KQtoK+QGwjhQd/JLnmglmh5/KXKU29rBrOk27Q7kcF/i0EElHYKbh5Ke:wlSaQtyQGww7mhh/VHn/iYH9hUe
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BB46JmN[1].png.RYK MD5: e2a07462cb232e5e7bc3caa94b10cb46
SHA1: 8af8ec90b3e864ef52fc2715166733f862063cc7
SHA256: a12970e3bcc29397e1890c6672089d21ffa8238cd56ec20914aa1d23c670111b
SSDeep: 24:r/eDa9IZRZ23l/KgNWXza+GroCdsF9D5MJQe5TBk3:rGDayZ23lygUzbGoCd5QeR0
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BB5kJAC[1].png.RYK MD5: 64e2bb2e2b87c3614e452b8d853e82e2
SHA1: 0223aa8f85d5a55223df668ad11b997fe8dabc0c
SHA256: 3505752f9ed8e571f4f9e55ad071036b30b20e42cafd55bbbe792023383971d6
SSDeep: 12:IHSoYp6HzKzUdq/sA+PI86eI0eRAGdrmeKjCha1nA/rvfDmgGBCt3I:xoYp6HoUdq/sS86eI0eRAGNm3jCoKbmV
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BB5kTiV[1].png.RYK MD5: 58b17109f4052a12a61020a2134bab3f
SHA1: 17ce6c2e8bd605997a2ccce2bec973c0febe6924
SHA256: 3e481096408c9ce0a6c782fcf19f261d6fa7bee4ec633ed5efd8539b07e65327
SSDeep: 12:YFDKodJl9svcLtePsNgDrpyG8KfR66zopCya2/kUVwWwkWa3mud7:YNfdP91AfZ8KfRVUBadU6WVWHud7
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBBIqq8[1].jpg.RYK MD5: b400c6634acd7638926e561f085d3dcb
SHA1: 6cbca9b4aeca5f6ede32ecd0370aa8e452ff6d9c
SHA256: d29541af31f92f195ebef997f13924e7c2c3aed3aff4ff3dc95f9fab2f652fd3
SSDeep: 384:A0pgdKMs+tljbY48+N4wNAoPAFnwS3XC8D9:FpkLs+t648+qFoPAySC8D9
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBBLhZX[1].jpg.RYK MD5: 28f36767d7c6121bc5218da2559064c0
SHA1: dbcebf7fd078ee64870d1ccad5cc756e5a15c1ad
SHA256: 7d0b40573f123bd59734e52db62d1b39624738d2540e8bfe424b141f3b76c025
SSDeep: 48:fU3MlSWKkFOx5u7r8yV5PpYRdTnGXGPg4rkAOPvxZ15jM6QLHI7yljBUAc8z6Isf:M3Ml5ObqIyVFpY/TGXGPVmf15SLo7+c3
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBBQxzx[1].jpg.RYK MD5: b0de417b976b869f2e2174b15d0978d3
SHA1: 8bf66c67fb714c042113adcd0c6ff4bfce3cdea9
SHA256: 5f494df6f2266c219a8ce08e858efe4fde88ee369d68108fbd9549d41d705de8
SSDeep: 48:IKvtV0UOAOZEvssL/sG9DFeFdSsX/0qRMXGWu6+BQl+ZuhFzL:LlV46v///+892WXl+ZIFzL
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBBTpvW[1].jpg.RYK MD5: 080e756d512101715369b677e07051b5
SHA1: 7b104ce8d60aebeff140d5f6fe742f611d5db546
SHA256: 3d79b31fd82f89c740ce7aaea28bca8bfc2c0aeb7a0067ca5f1bc3cc714d5673
SSDeep: 48:HFr7jbPY+qjlY5zUZabVmiIKYv+RPvYjcTAwW9Sx7eEXlVL2F:RvPPqjlCnHYjcUwWc5lVL2F
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBBVxM8[1].jpg.RYK MD5: 302cd6b413bbbd2d3f0c3e56557d78ce
SHA1: db75abb55ebeb4f993cc71fd75ec26ee7a4206af
SHA256: dc319b67afea22bc9cfa0ea689b5771979faee7962bc8b4bae5e1df9a366f62e
SSDeep: 48:wDcHTPYxy/eoJ/cta5fFSjb1QNb/ue3qE6dRn+LUXiy:NLGE/pCkjqEOh+Lc
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBBsqNL[1].jpg.RYK MD5: d4ab529d167342d72d8c6736714fd9e0
SHA1: da000447d858e0ec18933bffb0637e697326768a
SHA256: 4b41725ee1b2bcdba023f6c121985204be9a8d87801987b113a3681c0bb200ed
SSDeep: 96:N9r9hO9ddrONUkKRVHGOIJ6irhsj5BMHex3XIGKiRll5Iz2w:NZ9hO7ZOSPtj5qMXIFiRT5Iz2w
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBBz9wz[1].jpg.RYK MD5: 9e305fab86e65310f2c15240584999ee
SHA1: 23ed397f8380aa759f145d9e8e4f8ff6be152544
SHA256: b0097f8f2b562658933ddead357c80bb8d4dcdb7f93273eb2c47c6f162b7c6b3
SSDeep: 48:784QbTwYPMV0DIASfNodDWzuqbAVTJifFrPJCpVAcnmsLFwRMqukatTs:7tQfBMBASfNWDWA1QPJSXLxiatA
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBC0ALC[1].jpg.RYK MD5: b5e4db087006b3134ad896d90e0ca774
SHA1: cce3fe3c61cec507e78adc2a2a362fc8fd3bce3a
SHA256: d4c754bc50dfbc4ee61c2387590462815da6367ebd884c099f8e760aa0febbf4
SSDeep: 192:MYdVXGLmXXhxA+P7Vnf3XJgHXw6Upa4bYDp:MYXXvXhq+P7VfHqw6ULbM
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBC0rDa[1].jpg.RYK MD5: 4a91a4e280de22306cea688fb06f6360
SHA1: 24a54e4d5cffe6e45975334c6c047ed4cb5185ff
SHA256: 37d2c3a1465c400776b03d4bfe624f2dee9f37910de8e5552ff3a671fafb0cdb
SSDeep: 192:urHq8ODcrqwhmF7tpWrEvdNTQxJJC3UBzk/Cdx:uDMALmF56zaUBY/Cj
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBC0rDa[2].jpg.RYK MD5: 51d194eec4b3ddcef9f54d782101826e
SHA1: b8dae8d1915a0e5832c23d4d7c1c5d2690b3275b
SHA256: 5e617239bd38727ab6bcf984e5e77ca8870c7343280b10dceed5d3958de59759
SSDeep: 48:QS/c/7BTM038p/O4Bc9h/oyo+yn/cxRwAV7r068VWIwVVwDz:QS0/7BTMHA4B0tvo+2/QBVh8VWdnwDz
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBDRbsH[1].jpg.RYK MD5: 13c7bc56d12ae895121240aa9636358e
SHA1: 0f2aa9b4ea5724a3f4d5307fd4e2f8abef7df68e
SHA256: b949ca69796fed9ecc7bb992c5d964fd16baf636f3adbbe6ab788938f5142f87
SSDeep: 48:0MyMktrWvlCqcRxAdqHG7OEcRjCKia8hgqtGByL9sd:iMLSWdqm7dcR1it6qtZa
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEdE0f[1].jpg.RYK MD5: cec1f259c6ef65fedb1d51320dff7735
SHA1: f0fb767919253d07bd9f324112808c60a66b5b39
SHA256: 1edd9154cf887233712178fb9562bdd9e79f569874e725d7e9b7599fc674ba7b
SSDeep: 192:gldGhfK3zpthnGEjbMMtM9RF7vXnIz+9A1J:gjGlKzprpluLJXbA1J
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEdXJj[1].jpg.RYK MD5: 69765bf9a2813db4f02e7a3983f70853
SHA1: 71577f78e52acc618348f53d717456e8b8973f01
SHA256: 1e9b89e5590152388e1582cb067ab2b43d208f2d28f7905bf6c2ad5d3cc408c9
SSDeep: 48:FxzbyMTjxERUvuGBOsfyrCmYBCMI5wCt9G1U:FxzbyMTjx1B7M99mCtJ
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEdtWw[1].jpg.RYK MD5: 2bd5d1a1be790befddda3260ade6f2f6
SHA1: a2306cd68ea7d9e031123abc335c6f5733730d13
SHA256: 47bb801e1ca166acad6ae8e6e22c091587a883c863a40b652022c97251ada2ad
SSDeep: 48:V/XWSM5Us4HACcX6Ttxf9hY6TU5ORzp1Rt84idziFc+pK:Bk5Us4HBcYhYZORzp1Rt84idzSc+pK
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEeP0k[1].jpg.RYK MD5: 87180a7ec69efd175a94450436203224
SHA1: 17d9220b16e373c571a0d6cd4d4e5f1efa37ab94
SHA256: 68270ce53082efd9c99f647b76e5e59652afc12ee01c3da6b2d999e29ade2681
SSDeep: 192:PUXrIbrCNvnzuKFgBPerWMOcqucwX/ltcLQ3Xy/KMTDmGvM0ipenM7BCuPji2OKf:PUXrQrEy9BPcTOlwTl3ATi8rxnJuPeyh
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEeTuf[1].jpg.RYK MD5: a91b9d371550c332b68ec0439ff8090c
SHA1: b9746280fd8fc753d93682422c1d05572d86dbd4
SHA256: 26331f18ed60606cf2a3c72fda93f16c36378158fc2fc54c027d0892264ceaba
SSDeep: 384:WFpj6QG+ZpO+u9m3eNSynIfnfRdcYrZIwlbUgY+p:WFQTm3+MeNaoYrDJdr
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEfE6e[1].jpg.RYK MD5: dab3f62511859dc7b5c4e1207288af46
SHA1: 394126830f8f4ef705a337c10bd1140ec96c63e8
SHA256: f5bc2733cd0d3266cd970328d5b904c887abf7cf6dc9df6d0c2cec222c132ed4
SSDeep: 96:JkyojfKhR0uj9yO9EfRlzaVglLyN1qJUZZYAN493x7:Jkybt9yZbaVwm1qJUZZYu4lJ
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEgiYw[1].jpg.RYK MD5: 2a613742d859c3f2c2c11079efc52512
SHA1: 0635de644a91afcf59a8aa438cad0834438ef5f0
SHA256: 341dc8f0d7ab40b30a13d8ef27297db9d74c4ab36cba1470f29700f46bbaa4d0
SSDeep: 192:ocfCGXzML7af6FuVeavJZroQw3VqCj39z/+4frSnmRbsIj5jc92oSGs0r:oYXYL7aygVeULk3VR3ffrSmRxIYG3
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEgsz3[1].jpg.RYK MD5: 2c0bc589abde8648dd7a1231cf484344
SHA1: 70b9a1ad5a925e715005624a0886fcd853f7d08b
SHA256: 5f63e8126cc5e93a9b5e573cd732a324198e7fab7887185032408641748d0c2d
SSDeep: 384:WTIV0Fx5pYH4QC0ITBsoIxdeK/UajDQLGwpLnDXxNv0C:pH9LhxdeKMaYLGwFDXx50C
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEgtcS[2].jpg.RYK MD5: 9b512067736f770184101266630c143b
SHA1: b20c184a4c824ffde8eb4ff0d2046a035d059cf3
SHA256: 019db12a8ebe3746e925f54ecfe7710744b2531593bd64dca76e8de91d1b9175
SSDeep: 192:c6GLoGNO3FlI8gxulC8R2jaHtFYC1mR5jyfdWARk:c6PeU78jMtuC1mR9yfMN
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEgx5f[2].jpg.RYK MD5: 91b0d24703259bc26987e784d2e01671
SHA1: 5cac82efaa8c2e7bcf0d0895b14c93e569b24d45
SHA256: 6107e86fa23e0e111eb704cb4ae2826fef13755b126e1b577e26baa45d067af3
SSDeep: 48:71sPFRirs8CRSUl//Q8zxvuOMhWBs/PogfWRqHm:71qpNA8V0KsnojR
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBEgyIm[1].jpg.RYK MD5: e16f168454b227389fcdab454805bae0
SHA1: b577786e649921458d016be9cb07c37be5659eb7
SHA256: 15bb644bf82f48f611aa81921f118602c963d67060ae6467af92edb8d87a6090
SSDeep: 384:mW37Pld72RgzSH9ZVAvl/IxjsHnY6KY+2:fzld72OY9ZV89tY6KY+2
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBnMKeN[1].png.RYK MD5: 7321d167a3294cb6767c9759837aa0a9
SHA1: ec7b5312c48d89c75c5c2e910e08d02b134fbe99
SHA256: 16fa2e315f221a24a8402304f827615a7442132b900b70b5c2f1a3bbf0a04395
SSDeep: 24:ik7ElNO1cidLBtp1GoiQR2xgrlUefhtT1n:iaciHtp1fignHB
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBwGan9[1].jpg.RYK MD5: 33491a552a18be7f5305a1e3d522d31a
SHA1: 85406a85e74ac733e1a907d54fb9ae02dbf7e3b8
SHA256: 363cdc5029cb5c331e606c33b0dda925747a50d0acbcc7157ced32639cfa2a0a
SSDeep: 192:jJbGwJUSd7ahOfOzdCqaxisVrwhXpxnzcvbmNKb2HMEoSMu58zpmSl0+r9gfGEfi:9LUIOh++uxNVETxgDmNfsEoro8PSW9Fn
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\BBz3ebk[1].png.RYK MD5: 0ec306cc86267cbc54e65697359b6eb7
SHA1: 1af6fbfcba75e06d283cf48a37a981f7152e5dc9
SHA256: ec3eab30fcb934f2ce2955a019e8d6676ba1a5e7c686efe64fb18d84c3f3d091
SSDeep: 24:ezR59d3imlUyY6UOp9ukIjIzFzoOrtLPExbtby9MlnujIlmc:ezRfxlblp9uk4IiOmx9yulujIgc
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\ContainerTag[1].js.RYK MD5: 5072e185a05a9fbc04be5740fad304a8
SHA1: 20cf5dc0044dd35d5fdec3941f3bec8960a9bb49
SHA256: b543c3ec1d6082c4262c5d28db0e71b85b2619ed35054aa3a43045ec340e3052
SSDeep: 48:4zGC34gmhXYdagmOgSjhHFUE7PAe1cbeKo5EhwSz6Yy:4FZQKagmbSjhHFUE7PAe1oKqB6N
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\ContainerTag[2].js.RYK MD5: 72757e55b16346213cbe44220d2cbeeb
SHA1: d0cdc36a83e0b0fbcd942070a14c28c77cfbde00
SHA256: 1a6f949d0f9d9a03f1ec17dd5d9cd9578f0263b9e6ef6427c15916b175316c10
SSDeep: 48:vFoC+7Nr3U5bTjqgPNeX41eIJRWkwLCwvqxuWngpzlnbXF:vFwEZTttnRz+vVWKzRF
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\adServer[1].htm.RYK MD5: 9711675aa0fa61863b83d9b531134336
SHA1: 8d83c3fdb5dab0ad7bfae45a090de94db66d8fce
SHA256: 0f0b1917953c2755e1e90311f2977ab6234a78937cc51040ca2068decfd452a2
SSDeep: 192:WsnON6AZUBYaedn+dixAE0DiUfN8GMx1F97jPThdDrLrOeyri:WGBYejFuUfyGMTj7ZdDrLeO
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\advertisement.ad[1].js.RYK MD5: b41dd6b823b03415a8d1bae42ba03046
SHA1: ae82cbeb876dcdf2ce3c6171d9e00d3618b0c4e0
SHA256: c8fb82ff5273b1ea428cbd5c781a3c9a3b33333bca54a07b9ed71ed09d1b7047
SSDeep: 6:6C3M8RlgxBd9UChcL7gFPMjL5HO1jnQ3sW1oXFKqlKDtfORPFQYwn:pNnIBsChoMFWLodQVO022temYwn
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\async_usersync[1].RYK MD5: 0f1c6c17963ce25f7d445713e7db4db7
SHA1: d0e9c5f0cde1f7692fe0b4b6e5e516273e7864aa
SHA256: 0ca72d01e6a1fec1dea1077555dcec08f50be13786bb205681cb75d529993edf
SSDeep: 24:0hi/FnioXGZEcpmlcqv+hXhgxC2uUlE9UsGibsK8pJ7DBJPD34r:0SiEGOcpmaaKQCTUlSjGibsVv9M
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\async_usersync[2].RYK MD5: aede48dd6a3243a79c7411211da33da7
SHA1: 9db2dfe7fc2f9acbd913c003c62926f35f4e00b6
SHA256: 0f978d1a3da2ea15e92734b22b001b0ab460b7a866ff77dbe332b2fd60502e4a
SSDeep: 24:HOYVqoQzmpkSAJEbxdSSy0R5WVQ64gBAsSXkyyucRvE36fNVTvycHr2DK:ZqnzmpzCEbxdS+OQhgNKkyyucRvwCoK
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\async_usersync[3].RYK MD5: bbb7dcb402990c793e533c4355fb96cc
SHA1: 044a0a744804a0c0af156b95a32257bb63b75ffe
SHA256: 6744161459ddf19d1450e2c2e12184aa839c91125729e706c7c2c3daabf9291d
SSDeep: 48:f/Wczv8pQ191NK4WZUkmqViEKiUqCqz1xGj:m8v8y19fKlZZPi8U+mj
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\benefits-5-mobile[1].png.RYK MD5: 8229b335554263cc50f33a37ee156537
SHA1: f4fe8f8c0350d48141193cbbdb455d5942206690
SHA256: 8d8f7774ec5969b4f0fa9306c68ba6ba92668556ce2217f42dccccc75475a958
SSDeep: 192:3N9NxV14uyOlADru3QRgNegRwQ54r9xuth0+z8jzFnUvpp9rMOrs4n4T2:3NbH1Zm6Q2NpB54Puth0C8jzFna/s4nL
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\css[2].txt.RYK MD5: 393f2cede0c3bb7a339f31a88b07a64b
SHA1: ca3fea1047bf6ab68deae8243085106110337fae
SHA256: d1c6d2f5b3e0580118c0e8434cdfa4abb6a5bbc37518117cad99190c0d2efba4
SSDeep: 6:rSP0kclDIYAFNqFNw8n+ku3yRGCGTsEcptEygI8T/b6MPjongdwi7SyV0CwXHiWL:m0kcKtF4Fa8nvWyYxup+T/+NiwSWk2Z
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\f8-028d9f-f30905ea[1].RYK MD5: 32820a1897acf3db511510817662d52d
SHA1: d2f96e505084d3253f229f174043ae0249178699
SHA256: 19dbc05eda8fbb1d474ecc209df32e6d055fec78332b957c72bff009d0b79c8e
SSDeep: 6144:siLg3hwQzq7g8NE17Hk9qiO261Hl3slQyxtUVXp+kL4e/:sicCa+fNE1sb6KQyxtyX/L4m
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\ie8[1].txt.RYK MD5: b2264084df5c1f53d81e342575f480ad
SHA1: 7b7801a5fba64103afba77613a2fc263733471a9
SHA256: 2df463c5cad138cc1d4c682123035e9b4fa951f627d4c56a2e921de4fc00c812
SSDeep: 6:SmXPtE2q0Go0iF//3YGwGO1uBFOvJG2xxOEKK2opFq7uF+1om20Fz4o3xUdIlPyP:SyC2/BxIgFOvsoNK06voJ0FbS5
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\9QH4S0GZ\meversion[1].RYK MD5: 22885c07f087b3f4bdb998e5cf932586
SHA1: 18af0ca79dc9543893bf99b70ebad4d93e195399
SHA256: 66f02a88fa61706ff6eceaaee5b449e9f4d7b62ded5c8637da04fea8fd3127f4
SSDeep: 96:5I0XrE5UgYVZ6whc6T1JXJAU1zOnrCESxKU5LT77osNupXqvmfmvEc7k+W7Xl:e0XrE5UgYVZby2JHzOEKAsCuhqvSmscW
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\Standard[1].RYK MD5: 94388cb625adcd3bf800bc7f9a2d2ef1
SHA1: 62c11a59b14c93a0c8c13c5aaa209753a091a8c4
SHA256: d4fb2ad0ab42629815158e8bb10b73473ab04b746f1fa9604c6b0c1a0ad6312e
SSDeep: 1536:RwqoIaiZPUBjZwR8lakpk6QazQrr/fI8iymtG7Zktsd4eBu3mHZmv+X+eRMWtF/R:boFLBjJHyPfuymt0dlmVv+uePt2euC
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\core[1].css.RYK MD5: a1bcccbc88fa3c916aeb70ed3e959643
SHA1: a0ec42e7770ede4040d07472d81e2aef0618e044
SHA256: cbe8f3bcb67a9f9ef17171b61bf92a627311e4408da5bede627490306eb9f0ce
SSDeep: 3072:dlvVSa7vs2qZOS2cIz3C+EeY7q1xYRTol/qsX6i8Mzi2xXh37c5dWL8Ri0Xo:dl9J7yscSxA0Y8/IShrcmYg04
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\index[1].htm.RYK MD5: 5bc06d2db8d8ea30d7a553b3c9d88afb
SHA1: 1b96e6aaf27b5cfa41c40e10053231901a6cefc4
SHA256: 4db65783661eb6d43bacb50c38a1d89fddad53d1699b663337b517d246577abe
SSDeep: 768:2xSfZfn0h1WvBADVEeJZoesIHF5VMGPd+165BHQDmDP46s9E6EBkudnWpqZ0Hx/z:2x/uBADV8mMGP3b8MRV6UkUWYITi6yvg
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\ABV8L7MY\print[1].txt.RYK MD5: 70e3b2df492e96957311468014fb9278
SHA1: c8ff265c63e6a347b59da3d1cc0d02f067e31f51
SHA256: 432e594b6a18ebb92fc878034cd5f625afa50749af0c8d312890de3839b5ad0b
SSDeep: 12:CXnPdtxqH40DO8ilvKZxUU5itWr4TiaYvzleeDeochh9:snP5qH40pilvYxU3tWrqUlXDy
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\IKQEEPZR\adfscript[1].RYK MD5: fbb6100132fb8c58d8456008f91f217b
SHA1: 31fae75291f599dfcfbc206653e06ce608776f5c
SHA256: 17cec8cba3ec8a8b4a874a8abb33e5b111057f8651bc81f42a31a2a653d30ed7
SSDeep: 192:4mwoNDIrzKqdav5y0UOxajvJGyCRpxy9ERH3z6zii7bKYm:jc/Kq0TUydrI9ERHDRi7u
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\IKQEEPZR\adfserve[1].RYK MD5: 3c85e7a0d9a6fe78c5101ac5a5093470
SHA1: 945cdf7795724f0792075234570d9905ada4c362
SHA256: ac95bd0af071db72a02e85d338947ff24b3f4435a975f913c5da5825bd221505
SSDeep: 48:szWyQkwvZlnuxghSHk/wL4mn12aDwTkIZIXdvRcqmi2s2HKtAKno7ny9lWdR9imE:Sm+HGSwT3WPmhr8LGdH0U3AX9D
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\IKQEEPZR\ast[2].js.RYK MD5: f2f37fa4505ad18dd49b33fb89de30ee
SHA1: 659b03d1c558c1d96e646ff8c3a65f4a918e9996
SHA256: d3682bbe16761be9de1d21d86ed9c88a9bad4732e6709cb3ff8bf365bc7021db
SSDeep: 1536:Xqhe7NXzUzCbjGwGhZuZKSeZhAj8OxIAOnf430SIZUt3:aw71ozsGwGRZ+3IA10SIs
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\adex[1].js.RYK MD5: 997c026719af1bf126f4f79f3a40d91e
SHA1: 276be2c234ddcbf6ae4bf1584f56d79e080bb71b
SHA256: 85c00e82575a2ec29fae441018307d0e8576062930820f013f50cc1a98036b85
SSDeep: 768:/iOEz6dz70nSwHIdzd9cHOdIfvjaCZCVC9u:/iOE2dz7LNdzd9pdQjnt9u
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\adfscript[1].RYK MD5: 839fd09f89d003206d366caea575b204
SHA1: 5e67b5cf2e692ef98d3d99afc8e07f570121a571
SHA256: 5654615ed7d00a7593e670d5722b1aa721ac1a9c0577d9c003413315f52bb922
SSDeep: 192:uT/MhW/xb81Xd/p7qQS418KuDkphVek6uwrf0YaoMZquWB85ADpecBEwOAO:uTUa89d/pWKADkF0D1fMcK+FecuwOZ
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\ast[1].js.RYK MD5: c0d21e00bbb668dbd6daa1ca366348f9
SHA1: 42fd2fd8553df75ee0ea85a81399da208d6a8d76
SHA256: 818eda0d1a6a72ee974522abd5db5e6189f39fbcfb537727cb5330b1ac863226
SSDeep: 1536:C9anytTellp/kmjU5CbSk4NthagEDhKOBz9Vbx7aAWgFO2jJAXWJNmC:C4ycTVdgbk4NtAFnfFNaAWWHjbR
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\css[1].txt.RYK MD5: 3427561fdb4c3da5d7a8de7cc6a8215e
SHA1: 98177d6ddd569359275a1bf52ffd60a9276d7d68
SHA256: 86ef8e20270360d9730007df9768232e1f878fbaebb1a83a3824311b831116b2
SSDeep: 3072:rdxfnZgGMUdDSZvTM/eD5zRPD5hEPy8nxqXOAW/hsF+L:ZLIUdmdTf9zRNwVqZ+L
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\msn[1].htm.RYK MD5: c9f35f1c99aa72e6d4f40a53cc05637d
SHA1: 8ca86164d72363019391d5ace568be09a30f1a8a
SHA256: be0b6fbac7d5b4fb81ffa4b4a160ac3fd59c07ba3f448dccb18d076dbe333816
SSDeep: 48:UdSZOS5TuZ+AThztuZusk1tglSfv5ps3QjKw8TrqZBz1sKl+6+nWRmG:Bnpa3MZusk1mlupszw8eZB1piG
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\YG1R61Z8\uid[1].htm.RYK MD5: 5b59f8c0a10aa774d7177316986f7ffb
SHA1: 467ff456ad24fcfc59a723424db408fb48d1634d
SHA256: 32b98328d88854811d2afb73d1800a2fdcf4684489894f661567226c844ec4c7
SSDeep: 48:M/ZF8E8fRtbf4vak22ZjDE0cD2jUX2wpHqHDaPspDYBxbSI6VT4fFcT57I2Kep1Y:QQTtyjDG2j8qHOPg8bdwEfW99/p1Cz
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\account{047EF9CE-9C1F-4250-9CA7-D206DB8B643C}.oeaccount.RYK MD5: 399626177538a679052f9624665eefb3
SHA1: 4038eb160d5c96a74681a03a8a7c7e5bab6efa3f
SHA256: f813a975619dc9f6226d3a3a7f14d67cf6ce4cc9164887b4cf7b196c32249a47
SSDeep: 24:qg2YLKMpDTvbWdUC2P3mAQcPLPAwT/Gx5k2uma6Ee117qyNqImliy1WIKGM72:q+LKMpydUf3mrShiM2VEcN2dT02
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\account{1CD43F3B-668B-4CA8-B816-34F74122EC0F}.oeaccount.RYK MD5: e598bf9c81e22132c26dda3afe0d0abe
SHA1: 1286c6ee87bdf14466370dacff078b56b587c55a
SHA256: 42db7b1d93b6c02ab215f12ea61bca3093c629e2e8f512fde11946dd5687645c
SSDeep: 24:0g3ziIhjMfYFVrfoDCSiVG/YMWePn2JWdh2+9mDJ9gwYIumqfDhujn:h3ziImwYub2Fh2+9cjgwv5q1ujn
ImpHash: - 		Access, Create, Delete Dropped File
Malicious
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Mail\account{AF0DB737-2EF9-4633-BF5E-1A6761ED1577}.oeaccount.RYK MD5: 95a9db87a2a6f2d3ad4f6c65c2d46f09
SHA1: 1919b1df3e586b86e736826883075c0c3d4348c2
SHA256: 5121ec8de7b26a410935e18568804293e9df724e866f950efbc8a328168cd617
SSDeep: 48:5RCfxJi4B4nrOOJ0pzrEjz9EFc1WLcNm7fcz:LCPhB2rO3pzrEjhn1scOfE
ImpHash: - 		Access, Create, Delete Modified File
Malicious
C:\Users\5p5NrGJn0jS HALPmcxz\Desktop\aHSIi.exe MD5: c908088e542ca306759249cf4b35d25b
SHA1: 80e9d9b7fd95f6529cfd0d94a15d24a14ab0e91b
SHA256: 1c7f778b20d47a6466f4f2b49dcc0e269e62526bb325bb4173450000e21993c7
SSDeep: 3072:sHTiFn/0Me4/es3abqdQWV4ct8Yw40uU7ZXK57DaMma5FH:sTsLP/oqdj2c6lug8B
ImpHash: c77de81f016d2fafb0d7d8d02bfc4476 		Access, Create Sample File
Malicious
C:\users\Public\RyukReadMe.html MD5: 707cd0593aa6917a81cb18571d68affb
SHA1: 83e2c8cd65f1a124cd680c797b517f67f0f0519f
SHA256: 0cc351f09bf0de42a100bf4bc30cbd5e6e613055ef35354d0b8a613a748b0c8b
SSDeep: 12:kJlzqddlc1v2/8bHeIH/GJHbr+OsKXUM:kJl6dymaHzbM
ImpHash: - 		Access, Create, Write Dropped File
Unknown
C:\Boot\BCD - Access, Delete
Not Available
C:\Boot\BCD.LOG - Access, Delete
Not Available
C:\Boot\BCD.LOG.RYK - Access, Create
Not Available
C:\Boot\BCD.LOG1 - Access, Delete
Not Available
C:\Boot\BCD.LOG1.RYK - Access, Create
Not Available
C:\Boot\BCD.LOG2 - Access, Delete
Not Available
C:\Boot\BCD.LOG2.RYK - Access, Create
Not Available
C:\Boot\BCD.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\AdobeSysFnt10.lst - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\SharedDataEvents - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\UserCache.bin - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Acrobat\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Color\ACECache11.lst - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Color\Profiles\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Color\Profiles\wsRGB.icc - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Color\Profiles\wscRGB.icc - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\Color\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Adobe\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\SharedDataEvents - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\10.0\UserCache.bin - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeCMapFnt10.lst.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\AdobeSysFnt10.lst.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\AcroFnt10.lst.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\SharedDataEvents.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\10.0\UserCache.bin.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\ACECache11.lst.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wsRGB.icc.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\Profiles\wscRGB.icc.RYK - Access
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Acrobat\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\Color\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Adobe\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Deployment\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\GDIPFONTCACHEV1.DAT - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\GDIPFONTCACHEV1.DAT.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\CrashReports\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\History.IE5\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\Low\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\IconCache.db - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\IconCache.db.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft Help\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\2-Mtf1dzQ.odt - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\2-Mtf1dzQ.odt.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\4X03DNCarg8n aX.wav - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\4X03DNCarg8n aX.wav.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\58OVnGyv4Dp.png - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\58OVnGyv4Dp.png.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\8_eu8MYJPRm-KsBZ.mp3 - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\8_eu8MYJPRm-KsBZ.mp3.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\AdobeARM.log - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\AdobeARM.log.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\COn6C.swf - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\COn6C.swf.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Cookies\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\E3q9rKf4kWh.ppt - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\E3q9rKf4kWh.ppt.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\FTNd.bmp - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\FTNd.bmp.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\FXSAPIDebugLogFile.txt - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\FXSAPIDebugLogFile.txt.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\GX1ZA-KtqkzFTRyMz.m4a - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\GX1ZA-KtqkzFTRyMz.m4a.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\GxeeszKzakHo-77x9W.ods - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\GxeeszKzakHo-77x9W.ods.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\HXn8MZ-Lbtm0XHteYnU.jpg - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\HXn8MZ-Lbtm0XHteYnU.jpg.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\History\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\KfMN Yxrkynq8S7.gif - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\KfMN Yxrkynq8S7.gif.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\LEHCO5e8Ra.jpg - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\LEHCO5e8Ra.jpg.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Nj7Z21L017yPrTqpYI.png - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Nj7Z21L017yPrTqpYI.png.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\OcqbILN.ods - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\OcqbILN.ods.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Oqv-.rtf - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Oqv-.rtf.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\T0nA_Yo8wvD9P5Ld9kME.ppt - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\T0nA_Yo8wvD9P5Ld9kME.ppt.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\T8aOHY.ods - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\T8aOHY.ods.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temporary Internet Files\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\U-R OAJvY-_UEBHz.doc - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\U-R OAJvY-_UEBHz.doc.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\VKMd-owZF9rXh7RNVtlM.gif - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\VKMd-owZF9rXh7RNVtlM.gif.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\VoLxwzD_MiyqU.xlsx - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\VoLxwzD_MiyqU.xlsx.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\WPDNSE\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Z 7f23_.wav - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Z 7f23_.wav.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\_IXaQXRVfdd8.swf - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\_IXaQXRVfdd8.swf.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\a8cUo.jpg - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\a8cUo.jpg.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\a9J5SwLc8KWlfQj.png - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\a9J5SwLc8KWlfQj.png.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\bst449D.tmp - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\bst449D.tmp.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\dk2UVcjI1VSbd.m4a - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\dk2UVcjI1VSbd.m4a.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\g2IgkvfS6zcmNM-It.xlsx - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\g2IgkvfS6zcmNM-It.xlsx.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\g9bRk4M4XBqM-0Uss.jpg - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\g9bRk4M4XBqM-0Uss.jpg.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\lrDhEY-fqfr.png - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\lrDhEY-fqfr.png.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\ndVzmDBhKXTBbrxznC.rtf - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\ndVzmDBhKXTBbrxznC.rtf.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\pjIjE0WYbwb.jpg - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\pjIjE0WYbwb.jpg.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\sEtf5Dq-H7p.bmp - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\sEtf5Dq-H7p.bmp.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\t-JhaVvQOoAbaSm2.swf - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\t-JhaVvQOoAbaSm2.swf.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\tmNOA.flv - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\tmNOA.flv.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\u6qO_KQ4I_qet4NpYXnR.m4a - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\u6qO_KQ4I_qet4NpYXnR.m4a.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\wPn6scJ-zJjFb8PT.bmp - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\wPn6scJ-zJjFb8PT.bmp.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\xjrYNEqW6aEjt.mkv - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\xjrYNEqW6aEjt.mkv.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\VirtualStore\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\DQQ19BCJ.JAX\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\DQQ19BCJ.JAX\YVORLGOR.PNT\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\Data\CJW3O3KP.BX7\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\Data\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Deployment\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\GDIPFONTCACHEV1.DAT - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\CrashReports\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\History.IE5\MSHist012020022120200222\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\History.IE5\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\History.IE5\index.dat - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\History.IE5\index.dat.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\Low\History.IE5\MSHist012017071220170713\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\Low\History.IE5\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\Low\History.IE5\index.dat - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\Low\History.IE5\index.dat.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\Low\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\History\RyukReadMe.html - Access, Create, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\IconCache.db - Access, Read, Write
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft Help\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Credentials\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Event Viewer\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\FORMS\FRMCACHE.DAT - Access, Delete, Read
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\FORMS\FRMCACHE.DAT.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\FORMS\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds Cache\1NBUR4HR\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds Cache\6ASVN7J7\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds Cache\D68G7BIJ\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds Cache\KQMHSVKD\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds Cache\index.dat - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds Cache\index.dat.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\FeedsStore.feedsdb-ms - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\FeedsStore.feedsdb-ms.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\Microsoft Feeds~\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\IME12\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\IMJP12\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\IMJP8_1\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\IMJP9_0\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Internet Explorer\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\CurrentDatabase_372.wmdb - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\CurrentDatabase_372.wmdb.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\LocalMLS_3.wmdb - Access, Delete
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\LocalMLS_3.wmdb.RYK - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\Sync Playlists\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Media Player\Transcoded Files Cache\RyukReadMe.html - Access, Create
Not Available
C:\Documents and Settings\5p5NrGJn0jS HALPmcxz\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Office\14.0\OfficeFileCache\RyukReadMe.html - Access, Create
Not Available
For performance reasons, the remaining 23052 entries are omitted.
The remaining entries can be found in ioc_export.txt or ioc_export.json .
Registry (24)
»
Registry Key Name Operations
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Access, Create
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\EV Access, Read, Write
HKEY_CURRENT_USER\Software\Microsoft\Command Processor Access
HKEY_CURRENT_USER\Software\Microsoft\Command Processor\AutoRun Access, Read
HKEY_CURRENT_USER\Software\Microsoft\Command Processor\CompletionChar Access, Read
HKEY_CURRENT_USER\Software\Microsoft\Command Processor\DefaultColor Access, Read
HKEY_CURRENT_USER\Software\Microsoft\Command Processor\DelayedExpansion Access, Read
HKEY_CURRENT_USER\Software\Microsoft\Command Processor\DisableUNCCheck Access, Read
HKEY_CURRENT_USER\Software\Microsoft\Command Processor\EnableExtensions Access, Read
HKEY_CURRENT_USER\Software\Microsoft\Command Processor\PathCompletionChar Access, Read
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System Access
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System Access
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Wbem\CIMOM Access
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Wbem\CIMOM\Log File Max Size Access, Read
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Wbem\CIMOM\Logging Access, Read
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Wbem\CIMOM\Logging Directory Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor Access
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor\AutoRun Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor\CompletionChar Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor\DefaultColor Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor\DelayedExpansion Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor\DisableUNCCheck Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor\EnableExtensions Access, Read
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor\PathCompletionChar Access, Read
IP (1)
»
IP Protocols Sources
192.168.0.1 UDP Function Log, PCAP
Export to TXT Export to JSON
VMRay - Analyzer - www.vmray.com
Legal Note
Function Logfile
Download-Icon
Exit-Icon

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy". 


    

   

   

    Before
   

   

    

     

      
       This feature requires an online-connection to the VMRay backend.
      
      

      

      An offline version with limited functionality is also provided.
      

      The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".
     

     

    

   

   

    After
   

   

    

     

      
       This feature requires an online-connection to the VMRay backend.
      
      

      

      An offline version with limited functionality is also provided.
      

      The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".
     

     

    

   

   

    

     
      

       
       
       
       
      

     
     
     
    

   

  

  

   

    
    

     Screenshot
    

    

     Expand-Icon
    

    

     Exit-Icon
    

   

   

    

     icon_left
    

    

     icon_left
    

   

   

   

   

    image