Click to jump to signature section
Source: CDM212364_Setup.exe | Static PE information: DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2013\FTBUSUI\x64\Release\FTBUSUI.pdb source: ftbusui.dll |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2013\FTBUSUI\x64\Release\FTBUSUI.pdb~~ source: ftbusui.dll |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2013\FTBUSUI\Release\FTBUSUI.pdb source: ftbusui.dll |
Source: | Binary string: d:\wm\minkernel\crts\crtw32\misc\nt\vc110.pdb source: ftd2xx.lib |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2015\x64\Release\FTDIBUS.pdb source: ftdibus.sys |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2015\Release\FTSER2K.pdb source: ftser2k.sys |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2013\FTLang\x64\Release\FTLang.pdb source: ftlang.dll |
Source: | Binary string: c:\jenkins2\worksp~1\j11a5a~1\pp\ftserui2\objfre_wnet_x86\i386\ftserui2.pdb source: ftserui2.dll |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2015\x64\Release\FTSER2K.pdb source: ftser2k.sys |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2015\x64\Release\FTD2XX.pdb source: ftd2xx64.dll |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2013\FTLang\Release\FTLang.pdb source: ftlang.dll |
Source: | Binary string: d:\8180\enduser\databaseaccess\src\mdac\odbc\core\cplib\vc110.pdb source: ftd2xx.lib |
Source: | Binary string: c:\jenkins2\worksp~1\j11a5a~1\coinst\ftcserco\objfre_wnet_amd64\amd64\ftcserco.pdbH source: ftcserco.dll |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2015\Release\FTD2XX.pdb source: ftd2xx.dll |
Source: | Binary string: c:\jenkins2\worksp~1\j11a5a~1\coinst\ftcserco\objfre_wnet_amd64\amd64\ftcserco.pdb source: ftcserco.dll |
Source: | Binary string: DpInst.pdbH source: dpinst-amd64.exe |
Source: | Binary string: c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2015\Release\FTDIBUS.pdb source: ftdibus.sys |
Source: | Binary string: c:\jenkins2\worksp~1\j11a5a~1\pp\ftserui2\objfre_wnet_amd64\amd64\ftserui2.pdbH source: ftserui2.dll |
Source: | Binary string: c:\jenkins2\worksp~1\j11a5a~1\coinst\ftcserco\objfre_wnet_x86\i386\ftcserco.pdb source: ftcserco.dll |
Source: | Binary string: c:\jenkins2\worksp~1\j11a5a~1\pp\ftserui2\objfre_wnet_amd64\amd64\ftserui2.pdb source: ftserui2.dll |
Source: | Binary string: DpInst.pdb source: dpinst-amd64.exe, dpinst-x86.exe |
Source: | Binary string: DpInst.pdbp source: dpinst-x86.exe |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://cacerts.digicert.com/DigiCertSHA2AssuredIDTimestampingCA.crt0 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0P |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://crl3.digicert.com/sha2-assured-ts.crl02 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://crl4.digicert.com/DigiCertAssuredIDRootCA.crl0: |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://crl4.digicert.com/sha2-assured-ts.crl0 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://ocsp.digicert.com0C |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://ocsp.digicert.com0O |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://s.symcb.com/pca3-g5.crl0 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://s.symcd.com0_ |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://sw.symcb.com/sw.crl0 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://sw.symcd.com0 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://sw1.symcb.com/sw.crt0 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: http://www.digicert.com/CPS0 |
Source: CDM212364_Setup.exe | String found in binary or memory: http://www.disoriented.com( |
Source: CDM212364_Setup.exe | String found in binary or memory: http://www.disoriented.com/ |
Source: CDM212364_Setup.exe | String found in binary or memory: http://www.disoriented.com/openConfirm |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: https://d.symcb.com/cps0% |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: https://d.symcb.com/rpa0 |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: https://d.symcb.com/rpa0) |
Source: ftbusui.dll, ftcserco.dll, ftdibus.sys, ftlang.dll, ftser2k.sys, ftserui2.dll | String found in binary or memory: https://www.digicert.com/CPS0 |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | File created: C:\Users\user\AppData\Local\Temp\{9ccd3830-e4df-4040-aee8-37c6abebc103}\SETDC5E.tmp | Jump to dropped file |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\Temp\{0bc528db-037e-be49-bed2-b1892483ab8d}\ftdibus.cat (copy) | Jump to dropped file |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | File created: C:\Users\user\AppData\Local\Temp\FTDI-Driver\ftdibus.cat | Jump to dropped file |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\Temp\{92c677e5-36e2-5340-986f-1a45f50cbde4}\SETEFB7.tmp | Jump to dropped file |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\Temp\{92c677e5-36e2-5340-986f-1a45f50cbde4}\ftdiport.cat (copy) | Jump to dropped file |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | File created: C:\Users\user\AppData\Local\Temp\FTDI-Driver\ftdiport.cat | Jump to dropped file |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\Temp\{0bc528db-037e-be49-bed2-b1892483ab8d}\SETDE72.tmp | Jump to dropped file |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | File created: C:\Users\user\AppData\Local\Temp\{af1c6af5-4edb-d54c-a197-2872bf05b59e}\ftdiport.cat (copy) | Jump to dropped file |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | File created: C:\Users\user\AppData\Local\Temp\{9ccd3830-e4df-4040-aee8-37c6abebc103}\ftdibus.cat (copy) | Jump to dropped file |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | File created: C:\Users\user\AppData\Local\Temp\{af1c6af5-4edb-d54c-a197-2872bf05b59e}\SETEBA7.tmp | Jump to dropped file |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | File created: C:\Windows\DPINST.LOG | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\FileRepository\ftdibus.inf_amd64_27ad3b85ed46c2a0 | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\FileRepository\ftdibus.inf_amd64_27ad3b85ed46c2a0\amd64 | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\FileRepository\ftdibus.inf_amd64_27ad3b85ed46c2a0\i386 | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\drvstore.tmp | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\inf\oem4.inf | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\FileRepository\ftdiport.inf_amd64_02e6e8b10f1ee812 | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\FileRepository\ftdiport.inf_amd64_02e6e8b10f1ee812\amd64 | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\System32\DriverStore\drvstore.tmp | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | File created: C:\Windows\inf\oem5.inf | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Code function: 0_2_00F611FC | 0_2_00F611FC |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Code function: 0_2_00F63F22 | 0_2_00F63F22 |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Code function: 0_2_00F61114 | 0_2_00F61114 |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Code function: 0_2_00F62A18 | 0_2_00F62A18 |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dp-chooser.exe | Code function: 1_2_00403ABC | 1_2_00403ABC |
Source: SETEF17.tmp.6.dr | Static PE information: Number of sections : 11 > 10 |
Source: SETEAF8.tmp.2.dr | Static PE information: Number of sections : 11 > 10 |
Source: ftser2k.sys.0.dr | Static PE information: Number of sections : 11 > 10 |
Source: CDM212364_Setup.exe, 00000000.00000003.1700729113.00000000047F0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTD2XX.LIBJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1696693669.0000000003260000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTSER2KJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1696158135.0000000003170000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTD2XX.DLLJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1698869220.00000000033C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTBUSUI.dllJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1696837565.0000000003280000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameftserui2.dllJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1700041483.0000000004790000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameftserui2.dllJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1696320711.0000000003220000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTDIBUSJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1699545583.0000000004730000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTDIBUSJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1699028202.00000000033E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameftcserco.dllJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1694918684.0000000002FC0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTBUSUI.dllJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1699279944.0000000003400000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTD2XX.DLLJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1699909868.0000000004770000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTSER2KJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exed" vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exe vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exe|. vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exex, vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exep( vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exev+ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exel& vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exef# vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697567118.00000000032C0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exe~/ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1695214815.0000000003130000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameftcserco.dllJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exed" vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exe vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exe|. vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exex, vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exep( vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exev+ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exel& vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exef# vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1697975109.00000000032E0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameDPInst.exe~/ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1694953296.0000000003170000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTBUSUI.dllJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1700454135.00000000047D0000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameFTD2XX.LIBJ vs CDM212364_Setup.exe |
Source: CDM212364_Setup.exe, 00000000.00000003.1695357362.0000000003220000.00000004.00001000.00020000.00000000.sdmp | Binary or memory string: OriginalFilenameftcserco.dllJ vs CDM212364_Setup.exe |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: uxtheme.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: kernel.appcore.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: textinputframework.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: coreuicomponents.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: coremessaging.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: ntmarta.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: coremessaging.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: wintypes.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: wintypes.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: wintypes.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: textshaping.dll | Jump to behavior |
Source: C:\Users\user\Desktop\CDM212364_Setup.exe | Section loaded: apphelp.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dp-chooser.exe | Section loaded: apphelp.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: apphelp.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: version.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: msasn1.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: kernel.appcore.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: uxtheme.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: msxml3.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: textshaping.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: textinputframework.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: coreuicomponents.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: coremessaging.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: ntmarta.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: wintypes.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: wintypes.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: wintypes.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: drvstore.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: devrtl.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: spinf.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: cabinet.dll | Jump to behavior |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Section loaded: devobj.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: ntmarta.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: devrtl.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: drvstore.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: cabinet.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: msasn1.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: cryptsp.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: rsaenh.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: cryptbase.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: gpapi.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: ntmarta.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: devrtl.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: drvstore.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: cabinet.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: msasn1.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: cryptsp.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: rsaenh.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: cryptbase.dll | Jump to behavior |
Source: C:\Windows\System32\drvinst.exe | Section loaded: gpapi.dll | Jump to behavior |
Source: ftdibus.sys | Binary string: \Device\USBFDO-USB#ROOT_HUB20#\DosDevices\ |
Source: ftdibus.sys | Binary string: CompositeDriverFTDIBUS\VID_PID_FTDIBUS\COMPORT&VID_&PID_&MI_\Device\Ftdiport_Com_0\DosDevices\Ftdiport_Com_0FTDIBUS\0000\REGISTRY\Machine\System\CurrentControlSet\SERVICES\FTDIBUS\ParametersRetryResetCountMaxDevsLocIdsNULLConfigDataSSIdleTimeoutIN |
Source: ftser2k.sys | Binary string: \Device\VCP |
Source: ftdibus.sys | Binary string: \Device\Ftdiport_Com_0 |
Source: ftdibus.sys | Binary string: \REGISTRY\Machine\System\CurrentControlSet\Control\usbflagsIgnoreHWSerNum\COMDeviceDescPortName ()FriendlyNameENUMEnum\\0000ConfigFlags\REGISTRY\Machine\System\CurrentControlSet\Enum\\Control\REGISTRY\Machine\System\CurrentControlSet\Hardware Profiles\Current\System\CurrentControlSet\Enum\\Device ParametersActiveServiceCSConfigFlags\Device\USBFDO-USB#ROOT_HUB20#\DosDevices\SymbolicNameIRP_MN_CHANGE_SINGLE_INSTANCEIRP_MN_CHANGE_SINGLE_ITEMIRP_MN_DISABLE_COLLECTIONIRP_MN_DISABLE_EVENTSIRP_MN_ENABLE_COLLECTION |
Source: ftser2k.sys | Binary string: \Device\VCPIRP_MN_????UnknownRelations |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Mutant created: \Sessions\1\BaseNamedObjects\Global\DPINST_LOG_SCROLLER_MUTEX |
Source: C:\Users\user\AppData\Local\Temp\FTDI-Driver\dpinst-amd64.exe | Mutant created: NULL |
Source: dpinst-amd64.exe | String found in binary or memory: Some post-install cleanup tasks failed. Error code is 0x%X |
Source: dpinst-amd64.exe | String found in binary or memory: Successfully re-added '%s' to reference list of driver store entry '%s' |
Source: dpinst-amd64.exe | String found in binary or memory: Could not re-add '%s' to reference list of driver store entry '%s' |
Source: dpinst-amd64.exe | String found in binary or memory: Install option set: Suppress pre-install of Plug and Play drivers if no matching devices are present. |
Source: dpinst-amd64.exe | String found in binary or memory: During undo of install, we failed to re-install the driver. Error code 0x%X |
Source: dpinst-amd64.exe | String found in binary or memory: Error 0x%X - Could not delete service info key for '%ws', even though there are no more DIFx-installed driver stores using this se |
Source: dpinst-amd64.exe | String found in binary or memory: ,Software\Policies\Microsoft\Windows\DriverInstall\RestrictionsAllowUserDeviceClasses DummyWindowWindow_CaptionRunAs****************************************Failed to get command line.Command Line: '%s'DPInst is a multi-lingual binary.DPInst is not multi-lingual.The module name was too long.There was an error getting the module name.Failed to initialize MUI or Multi-Lingual language support.Title: %s.Option to dump log info on console not available under Windows 2000. Ignoring the option.Option set: dumping log info to console.Failed to set option to dump log info to console.Failed to set the current working directory to: '%ws'Current working directory: '%ws'Returning with code 0x%XRunning on path '%ws'Invalid path '%ws'No valid '%s' file provided.Install option refused: will not force install if driver is not better because of command to prompt if driver is not better.Install option refused: Can't run in Quiet mode, command to prompt user in case driver is not better is set!Install option refused: Can't run in Quiet mode, UI will be shown because a EULA is required and not suppressed!Install option refused: 'Scan Hardware Display' will be ignored because not running in 'Scan Hardware Mode'.Install option refused: can't test wizard because quiet mode enabled.Install option set: Suppressing Wizard but no OS popups.Install option set: Running in quiet mode. Suppressing Wizard and OS popups.Install option set: legacy mode on.Install option set: Suppressing EULA.Install option set: create user uninstall script file '%s'.Install option set: Prompt if driver is not better.Install option set: Force install if driver is not better.Install option set: Suppress pre-install of Plug and Play drivers if no matching devices are present.Install option set: Suppress Add or Remove Programs entries.Install option set: Install all driver packages or none.Install option set: uninstall will be set to delete driver binaries.Install option set: test wizard cycling through all finish pages.Install option set: using scan hardware display mode. Will only display successfull installs or failures.Uninstall option set: Suppressing Wizard but no OS popups.Uninstall option set: Running in quiet mode. Suppressing Wizard and OS popups.Uninstall command: uninstall Inf '%ws'Uninstall command: uninstall script '%ws'Uninstall option set: if driver was installed, will make best effort to delete driver binaries.User cancelled uninstall.Starting uninstall of '%ws'Sta |