API tools faq
paste
opexxx

pwstealer2.reg

opexxx
Mar 15th, 2017
161
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 41.89 KB | None | 0 0
raw download clone embed print report
  1. SetValue [1]
  2. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Windows\CurrentVersion\Run
  3. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  4. valueType REG_SZ
  5. value lgiwj.exe
  6. valueDataSize 82
  7. data
  8. C:\Users\Admin\AppData\Roaming\Sound.exe
  9.  
  10. CreateKey [2]
  11. key \REGISTRY\\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters
  12. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  13. key \REGISTRY\MACHINE\?????????????????????????????????????????
  14. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  15.  
  16. OpenKey [194]
  17. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
  18. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  19. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
  20. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  21. key \REGISTRY\MACHINE\SOFTWARE\ComodoGroup\IceDragon\Setup
  22. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  23. key \REGISTRY\MACHINE\SOFTWARE\K-Meleon
  24. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  25. key \REGISTRY\MACHINE\SOFTWARE\mozilla.org\SeaMonkey
  26. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  27. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
  28. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  29. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\QtWeb.NET\QtWeb Internet Browser\AutoComplete
  30. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  31. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Internet Explorer\IntelliForms\Storage2
  32. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  33. key \REGISTRY\MACHINE\SOFTWARE\8pecxstudios\Cyberfox86
  34. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  35. key \REGISTRY\MACHINE\SOFTWARE\8pecxstudios\Cyberfox
  36. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  37. key \REGISTRY\MACHINE\SOFTWARE\Mozilla\Pale Moon
  38. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  39. key \REGISTRY\MACHINE\SOFTWARE\Mozilla\Waterfox
  40. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  41. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
  42. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  43. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  44. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  45. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\LinasFTP\Site Manager
  46. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  47. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\FlashPeak\BlazeFtp\Settings
  48. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  49. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Ghisler\Total Commander
  50. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  51. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList
  52. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  53. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Ghisler\Total Commander
  54. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  55. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Far\Plugins\FTP\Hosts
  56. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  57. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Far2\Plugins\FTP\Hosts
  58. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  59. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
  60. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  61. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\VanDyke\SecureFX
  62. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  63. key \REGISTRY\MACHINE\Software\NCH Software\Fling\Accounts
  64. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  65. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\NCH Software\Fling\Accounts
  66. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  67. key \REGISTRY\MACHINE\Software\NCH Software\ClassicFTP\FTPAccounts
  68. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  69. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\NCH Software\ClassicFTP\FTPAccounts
  70. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  71. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\9bis.com\KiTTY\Sessions
  72. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  73. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\SimonTatham\PuTTY\Sessions
  74. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  75. key \REGISTRY\MACHINE\Software\SimonTatham\PuTTY\Sessions
  76. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  77. key \REGISTRY\MACHINE\Software\9bis.com\KiTTY\Sessions
  78. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  79. key \REGISTRY\MACHINE\SOFTWARE\Mozilla\Mozilla Thunderbird
  80. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  81. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\IncrediMail\Identities
  82. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  83. key \REGISTRY\MACHINE\Software\IncrediMail\Identities
  84. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  85. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Martin Prikryl
  86. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  87. key \REGISTRY\MACHINE\Software\Martin Prikryl
  88. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  89. key \REGISTRY\MACHINE\SOFTWARE\Postbox\Postbox
  90. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  91. key \REGISTRY\MACHINE\SOFTWARE\Mozilla\FossaMail
  92. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  93. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Windows NT\CurrentVersion\Windows Messaging Subsystem\Profiles\Outlook
  94. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  95. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Office\15.0\Outlook\Profiles\Outlook
  96. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  97. key \REGISTRY\USER\S-1-5-21-3558273304-2305715256-1486658336-1000\Software\Microsoft\Office\16.0\Outlook\Profiles\Outlook
  98. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  99. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  100. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  101. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  102. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  103. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  104. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  105. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  106. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  107. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  108. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  109. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  110. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  111. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  112. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  113. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  114. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  115. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  116. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  117. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  118. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  119. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  120. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  121. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  122. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  123. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  124. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  125. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  126. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  127. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  128. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  129. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  130. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  131. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  132. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  133. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  134. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  135. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  136. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  137. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  138. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  139. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  140. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  141. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  142. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  143. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  144. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  145. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  146. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  147. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  148. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  149. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  150. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  151. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  152. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  153. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  154. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  155. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  156. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  157. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  158. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  159. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  160. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  161. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  162. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  163. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  164. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  165. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  166. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  167. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  168. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  169. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  170. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  171. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  172. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  173. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  174. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  175. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  176. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  177. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  178. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  179. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  180. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  181. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  182. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  183. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  184. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  185. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  186. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  187. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  188. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  189. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  190. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  191. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  192. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  193. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  194. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  195. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  196. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  197. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  198. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  199. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  200. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  201. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  202. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  203. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  204. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  205. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  206. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  207. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  208. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  209. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  210. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  211. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  212. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  213. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  214. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  215. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  216. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  217. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  218. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  219. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  220. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  221. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  222. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  223. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  224. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  225. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  226. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  227. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  228. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  229. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  230. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  231. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  232. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  233. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  234. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  235. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  236. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  237. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  238. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  239. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  240. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  241. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  242. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  243. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  244. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  245. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  246. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  247. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  248. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  249. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  250. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  251. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  252. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  253. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  254. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  255. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  256. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  257. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  258. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  259. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  260. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  261. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  262. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  263. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  264. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  265. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  266. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  267. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  268. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  269. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  270. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  271. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  272. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  273. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  274. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  275. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  276. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  277. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  278. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  279. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  280. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  281. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  282. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  283. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  284. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  285. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  286. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  287. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  288. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  289. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  290. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  291. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  292. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  293. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  294. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  295. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  296. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  297. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  298. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  299. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  300. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  301. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  302. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  303. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  304. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  305. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  306. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  307. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  308. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  309. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  310. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  311. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  312. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  313. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  314. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  315. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  316. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  317. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  318. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  319. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  320. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  321. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  322. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  323. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  324. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  325. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  326. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  327. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  328. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  329. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  330. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  331. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  332. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  333. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  334. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  335. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  336. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  337. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  338. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  339. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  340. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  341. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  342. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  343. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  344. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  345. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  346. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  347. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  348. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  349. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  350. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  351. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  352. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  353. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  354. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  355. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  356. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  357. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  358. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  359. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  360. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  361. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  362. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  363. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  364. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  365. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  366. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  367. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  368. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  369. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  370. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  371. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  372. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  373. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  374. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  375. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  376. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  377. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  378. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  379. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  380. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  381. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  382. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  383. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  384. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  385. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  386. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  387. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  388. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  389. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  390. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  391. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  392. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  393. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  394. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  395. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  396. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  397. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  398. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  399. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  400. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  401. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000\Preference
  402. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  403. key \REGISTRY\MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-3558273304-2305715256-1486658336-1000
  404. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  405.  
  406. QueryValue [52]
  407. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  408. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  409. value MachineGuid
  410. valueType REG_SZ
  411. data
  412. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  413. valueDataSize 74
  414. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  415. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  416. value MachineGuid
  417. valueType REG_SZ
  418. data
  419. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  420. valueDataSize 74
  421. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  422. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  423. value MachineGuid
  424. valueType REG_SZ
  425. data
  426. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  427. valueDataSize 74
  428. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  429. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  430. value MachineGuid
  431. valueType REG_SZ
  432. data
  433. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  434. valueDataSize 74
  435. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  436. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  437. value MachineGuid
  438. valueType REG_SZ
  439. data
  440. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  441. valueDataSize 74
  442. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  443. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  444. value MachineGuid
  445. valueType REG_SZ
  446. data
  447. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  448. valueDataSize 74
  449. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  450. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  451. value MachineGuid
  452. valueType REG_SZ
  453. data
  454. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  455. valueDataSize 74
  456. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  457. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  458. value MachineGuid
  459. valueType REG_SZ
  460. data
  461. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  462. valueDataSize 74
  463. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  464. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  465. value MachineGuid
  466. valueType REG_SZ
  467. data
  468. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  469. valueDataSize 74
  470. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  471. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  472. value MachineGuid
  473. valueType REG_SZ
  474. data
  475. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  476. valueDataSize 74
  477. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  478. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  479. value MachineGuid
  480. valueType REG_SZ
  481. data
  482. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  483. valueDataSize 74
  484. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  485. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  486. value MachineGuid
  487. valueType REG_SZ
  488. data
  489. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  490. valueDataSize 74
  491. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  492. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  493. value MachineGuid
  494. valueType REG_SZ
  495. data
  496. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  497. valueDataSize 74
  498. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  499. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  500. value MachineGuid
  501. valueType REG_SZ
  502. data
  503. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  504. valueDataSize 74
  505. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  506. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  507. value MachineGuid
  508. valueType REG_SZ
  509. data
  510. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  511. valueDataSize 74
  512. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  513. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  514. value MachineGuid
  515. valueType REG_SZ
  516. data
  517. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  518. valueDataSize 74
  519. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  520. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  521. value MachineGuid
  522. valueType REG_SZ
  523. data
  524. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  525. valueDataSize 74
  526. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  527. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  528. value MachineGuid
  529. valueType REG_SZ
  530. data
  531. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  532. valueDataSize 74
  533. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  534. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  535. value MachineGuid
  536. valueType REG_SZ
  537. data
  538. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  539. valueDataSize 74
  540. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  541. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  542. value MachineGuid
  543. valueType REG_SZ
  544. data
  545. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  546. valueDataSize 74
  547. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  548. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  549. value MachineGuid
  550. valueType REG_SZ
  551. data
  552. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  553. valueDataSize 74
  554. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  555. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  556. value MachineGuid
  557. valueType REG_SZ
  558. data
  559. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  560. valueDataSize 74
  561. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  562. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  563. value MachineGuid
  564. valueType REG_SZ
  565. data
  566. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  567. valueDataSize 74
  568. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  569. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  570. value MachineGuid
  571. valueType REG_SZ
  572. data
  573. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  574. valueDataSize 74
  575. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  576. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  577. value MachineGuid
  578. valueType REG_SZ
  579. data
  580. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  581. valueDataSize 74
  582. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  583. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  584. value MachineGuid
  585. valueType REG_SZ
  586. data
  587. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  588. valueDataSize 74
  589. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  590. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  591. value MachineGuid
  592. valueType REG_SZ
  593. data
  594. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  595. valueDataSize 74
  596. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  597. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  598. value MachineGuid
  599. valueType REG_SZ
  600. data
  601. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  602. valueDataSize 74
  603. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  604. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  605. value MachineGuid
  606. valueType REG_SZ
  607. data
  608. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  609. valueDataSize 74
  610. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  611. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  612. value MachineGuid
  613. valueType REG_SZ
  614. data
  615. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  616. valueDataSize 74
  617. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  618. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  619. value MachineGuid
  620. valueType REG_SZ
  621. data
  622. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  623. valueDataSize 74
  624. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  625. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  626. value MachineGuid
  627. valueType REG_SZ
  628. data
  629. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  630. valueDataSize 74
  631. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  632. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  633. value MachineGuid
  634. valueType REG_SZ
  635. data
  636. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  637. valueDataSize 74
  638. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  639. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  640. value MachineGuid
  641. valueType REG_SZ
  642. data
  643. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  644. valueDataSize 74
  645. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  646. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  647. value MachineGuid
  648. valueType REG_SZ
  649. data
  650. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  651. valueDataSize 74
  652. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  653. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  654. value MachineGuid
  655. valueType REG_SZ
  656. data
  657. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  658. valueDataSize 74
  659. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  660. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  661. value MachineGuid
  662. valueType REG_SZ
  663. data
  664. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  665. valueDataSize 74
  666. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  667. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  668. value MachineGuid
  669. valueType REG_SZ
  670. data
  671. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  672. valueDataSize 74
  673. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  674. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  675. value MachineGuid
  676. valueType REG_SZ
  677. data
  678. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  679. valueDataSize 74
  680. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  681. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  682. value MachineGuid
  683. valueType REG_SZ
  684. data
  685. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  686. valueDataSize 74
  687. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  688. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  689. value MachineGuid
  690. valueType REG_SZ
  691. data
  692. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  693. valueDataSize 74
  694. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  695. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  696. value MachineGuid
  697. valueType REG_SZ
  698. data
  699. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  700. valueDataSize 74
  701. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  702. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  703. value MachineGuid
  704. valueType REG_SZ
  705. data
  706. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  707. valueDataSize 74
  708. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  709. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  710. value MachineGuid
  711. valueType REG_SZ
  712. data
  713. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  714. valueDataSize 74
  715. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  716. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  717. value MachineGuid
  718. valueType REG_SZ
  719. data
  720. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  721. valueDataSize 74
  722. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  723. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  724. value MachineGuid
  725. valueType REG_SZ
  726. data
  727. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  728. valueDataSize 74
  729. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  730. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  731. value MachineGuid
  732. valueType REG_SZ
  733. data
  734. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  735. valueDataSize 74
  736. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  737. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  738. value MachineGuid
  739. valueType REG_SZ
  740. data
  741. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  742. valueDataSize 74
  743. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  744. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  745. value MachineGuid
  746. valueType REG_SZ
  747. data
  748. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  749. valueDataSize 74
  750. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  751. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  752. value MachineGuid
  753. valueType REG_SZ
  754. data
  755. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  756. valueDataSize 74
  757. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  758. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  759. value MachineGuid
  760. valueType REG_SZ
  761. data
  762. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  763. valueDataSize 74
  764. key \REGISTRY\MACHINE\SOFTWARE\Microsoft\Cryptography
  765. process C:\gfidja\lgiwj.exe (v. 7.15.0.0)
  766. value MachineGuid
  767. valueType REG_SZ
  768. data
  769. qszzabpjjijlkinripuhwzmgjcmvxyozmira
  770. valueDataSize 74
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!