Source: | Binary string: C:\projects\raven-csharp\build\obj\Release\net35\SharpRaven.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.Engine\obj\Release\Avira.Spotlight.Bootstrapper.Engine.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.Presetup\bin\Release\Avira.Spotlight.Bootstrapper.Presetup.pdbK source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.Reactive\obj\Release\Avira.Spotlight.Bootstrapper.Reactive.pdb> source: 6uxhmwu2e4.exe |
Source: | Binary string: /_/Src/Newtonsoft.Json/obj/Release/net35/Newtonsoft.Json.pdbSHA256 source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\ProductLabel\ProductLabel.Common\obj\Release\ProductLabel.Common.pdbkw source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\Users\dahall\Documents\GitHubRepos\TaskScheduler\TaskService\obj\Release\net35\Microsoft.Win32.TaskScheduler.pdbSHA256 source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\dd\WPFOOB_1\src\WindowChrome\Microsoft.Windows.Shell\obj\Release\Microsoft.Windows.Shell.pdb(j source: 6uxhmwu2e4.exe |
Source: | Binary string: DryIoc.MefAttributedModel.pdbSHA256 source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-CSC-JOB1\csharp.common\Source\Mixpanel\Avira.Common.Mixpanel\obj\Release\net35\Avira.Common.Mixpanel.pdbSHA256 source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\ProductLabel\ProductLabel.Common\obj\Release\ProductLabel.Common.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: DryIocAttributes.pdbSHA256C source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-CSC-JOB1\csharp.common\Source\Avira.Common.Guards\obj\Release\net35\Avira.Common.Guards.pdbSHA256 source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-CSC-JOB1\csharp.common\Source\Avira.FileDownloader\obj\Release\net35\Avira.FileDownloader.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: /_/Src/Newtonsoft.Json/obj/Release/net35/Newtonsoft.Json.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\SRC\endpoint-protection-sdk1\BuildOutput\Bin\Win32\Release\ACSSigned.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: DryIocAttributes.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-CSC-JOB1\csharp.common\Source\Avira.FileDownloader\obj\Release\net35\Avira.FileDownloader.pdbSHA2562 source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.Logging\obj\Release\Avira.Spotlight.Bootstrapper.Logging.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-CSC-JOB1\csharp.common\Source\Avira.Common.Guards\obj\Release\net35\Avira.Common.Guards.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-CSC-JOB1\csharp.common\Source\Mixpanel\Avira.Common.Mixpanel\obj\Release\net35\Avira.Common.Mixpanel.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\ProductLabel\ProductLabel.Avira\obj\Release\ProductLabel.pdbG source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.ReportingTool\obj\Release\Avira.Spotlight.Bootstrapper.ReportingTool.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\ProductLabel\ProductLabel.Avira\obj\Release\ProductLabel.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper\obj\Release\Avira.Spotlight.Bootstrapper.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.Core\obj\Release\Avira.Spotlight.Bootstrapper.Core.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.Presetup\bin\Release\Avira.Spotlight.Bootstrapper.Presetup.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: DryIoc.MefAttributedModel.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.Reactive\obj\Release\Avira.Spotlight.Bootstrapper.Reactive.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: DryIoc.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: DryIoc.pdbSHA256 source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\Users\dahall\Documents\GitHubRepos\TaskScheduler\TaskService\obj\Release\net35\Microsoft.Win32.TaskScheduler.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\bamboo-build\SPL-SBFW320-JOB1\Bootstrapper\Bootstrapper.Runner\obj\Release\Avira.Spotlight.Bootstrapper.Runner.pdb source: 6uxhmwu2e4.exe |
Source: | Binary string: C:\dd\WPFOOB_1\src\WindowChrome\Microsoft.Windows.Shell\obj\Release\Microsoft.Windows.Shell.pdb source: 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://aia.entrust.net/ts1-chain256.cer01 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0E |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crt0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crt0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedRootG4.crt0C |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl.entrust.net/2048ca.crl0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl.entrust.net/ts1ca.crl0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl.globalsign.com/ca/gstsacasha384g4.crl0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl.globalsign.com/root-r3.crl0G |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl.globalsign.com/root-r6.crl0G |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl.sectigo.com/SectigoRSATimeStampingCA.crl0t |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl.thawte.com/ThawteTimestampingCA.crl0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl3.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0S |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl3.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crl0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl3.digicert.com/DigiCertTrustedRootG4.crl0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crl4.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0= |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://crt.sectigo.com/SectigoRSATimeStampingCA.crt0# |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://james.newtonking.com/projects/json |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.digicert.com0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.digicert.com0A |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.digicert.com0C |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.digicert.com0X |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.entrust.net02 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.entrust.net03 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.globalsign.com/ca/gstsacasha384g40C |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.sectigo.com0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp.thawte.com0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp2.globalsign.com/rootr306 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ocsp2.globalsign.com/rootr606 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://secure.globalsign.com/cacert/gstsacasha384g4.crt0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://sentry-dsn.invalid |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ts-aia.ws.symantec.com/tss-ca-g2.cer0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ts-crl.ws.symantec.com/tss-ca-g2.crl0( |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://ts-ocsp.ws.symantec.com07 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://www.digicert.com/CPS0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://www.entrust.net/rpa0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://www.entrust.net/rpa03 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://www.fontfont.comhttp://www.fontfont.com/licensing-web |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://www.fontfont.comhttp://www.fontfont.com/licensing-web2009 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://www.fontfont.comhttp://www.fontfont.comhttp://www.fontfont.com/eula/license.html |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://www.fontfont.comhttp://www.fontfont.comhttp://www.fontfont.com/eula/license.html2009 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: http://www.fontfont.comhttp://www.fontfont.comhttp://www.fontfont.com/eula/license.htmlKievit |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://api.mixpanel.com/ |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://api.my.avira.com7https://api.oeacc.avira.com |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://beta.avira.com/download/Ohttp://download-acc.avira.org/download/ |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://cdn-download.securebrowser.com/avira/avira_secure_browser_setup.exe |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://clients2.google.com/service/update2/crx |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://clients2.google.com/service/update2/crxmHKEY_LOCAL_MACHINE |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://dispatch.avira-update.com/ |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://download.avira.com/download/IEndpointProtectionConfiguration.json5Creating |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://sectigo.com/CPS0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/de/articles/360003162153-Deinstallation-von-Avira-f |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/de/articles/360003958298-Issues-with-the-installation- |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/de/sections/360003574777-Installation-Konfiguration-Windows |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/en-us |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/en-us/articles/360003077114-How-do-I-remove-an-Avira-browser-extension- |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/en-us/articles/360003162153-Uninstallation-of-Avira-for-Windows |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/en-us/articles/360003958298-Issues-with-the-installation- |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/en-us/sections/360003574777-Installation-Configuration-Windows |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/fr/articles/360003162153-D |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/fr/sections/360003574777-Installation-et-configuration-Windows |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/it/articles/360003162153-Disinstallazione-di-Avira-per-Windows |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://support.avira.com/hc/it/sections/360003574777-Installazione-e-configurazione-Windows |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://testing.update-bridge.avira.net |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/de/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/de/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/de/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/de/support-for-home-knowledgebase-detail/kbid/1766 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/en/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/en/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/en/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/es/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/es/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/es/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/fr/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/fr/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/fr/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/it/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/it/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/it/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/ja/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/ja/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/ja/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/nl/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/nl/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/nl/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/pt-br/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/pt-br/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/pt-br/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/ru/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/ru/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/ru/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/tr/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/tr/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/tr/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/zh-cn/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/zh-cn/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/zh-cn/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/zh-tw/end-user-license-agreement-terms-of-use |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/zh-tw/general-privacy |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.avira.com/zh-tw/legal-terms |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.entrust.net/rpa0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.getsentry.com |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.getsentry.com. |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.globalsign.com/repository/0 |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.google-analytics.com/ |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.google-analytics.com/collect |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.google-analytics.com/mp/collect?api_secret=MZl7w2XLQ4W8j2oFw1wZwA&measurement_id=G-LKJ0G |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.newtonsoft.com/jsonschema |
Source: 6uxhmwu2e4.exe | String found in binary or memory: https://www.nuget.org/packages/Newtonsoft.Json.Bson |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013E30E9 | 0_2_013E30E9 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013CC370 | 0_2_013CC370 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013D9369 | 0_2_013D9369 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013DE710 | 0_2_013DE710 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013E96B4 | 0_2_013E96B4 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013A6DB3 | 0_2_013A6DB3 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013D6F10 | 0_2_013D6F10 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013E7F10 | 0_2_013E7F10 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013CFFF9 | 0_2_013CFFF9 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013A6E42 | 0_2_013A6E42 |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013D4EDF | 0_2_013D4EDF |
Source: C:\Users\user\Desktop\6uxhmwu2e4.exe | Code function: 0_2_013D50A6 | 0_2_013D50A6 |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (GUI) Intel 80386, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe | Static PE information: Resource name: BIN type: PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.00000000019CC000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameAvira.Spotlight.Bootstrapper.resources.dll@ vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameAvira.Spotlight.Bootstrapper.Logging.dll> vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameDryIoc.dll. vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameDryIoc.MefAttributedModel.dllT vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameDryIocAttributes.dllB vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameMicrosoft.Windows.Shell.dllP vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameNewtonsoft.Json.dll2 vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameSharpRaven.dll6 vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameMicrosoft.Win32.TaskScheduler.dll\ vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameAvira.Common.Mixpanel.dllL vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameAvira.Common.Guards.dllH vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.0000000001741000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameACSSigned.exeJ vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.00000000019A1000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameAvira.Spotlight.Bootstrapper.resources.dll@ vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.0000000001614000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameAvira.Spotlight.Bootstrapper.Runner.exe> vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.0000000001614000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: GetOriginalFileNameFromDownload vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.0000000001614000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameAvira.FileDownloader.dllJ vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.0000000001614000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: <OriginalFileName>k__BackingField vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.0000000001614000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: get_OriginalFileName vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.0000000001614000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: set_OriginalFileName vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.0000000001614000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: originalFileName vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332877294.0000000001614000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFileName vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000002.342454832.00000000019FB000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: OriginalFilenameAvira.Spotlight.Bootstrapper.resources.dll@ vs 6uxhmwu2e4.exe |
Source: 6uxhmwu2e4.exe, 00000000.00000000.332871738.00000000013F3000.00000002.00000001.01000000.00000003.sdmp | Binary or memory string: FremoveSoftware\Classes\{80b8c23c-16e0-4cd8-bbc3-cecec9a78b79}bootstrapperRebootPendingBootstrapperInstallationStartDateAvira.Spotlight.Bootstrapper.RebootPendingFailed to get Windows DirectoryTempApplications\Avira.Spotlight.Bootstrapper.exeNoStartPageAviraFallbackUpdaterAvira.Spotlight.FallbackUpdater@abff403a-9b56-48e6-8753-10fb19692501Global\Avira.Security.Updater@abff403a-9b56-48e6-8753-10fb19692501Avira.Spotlight.FallbackUpdater.Avira\Security\Logs\Elevated\Fallback updater mode, running as a serviceRegistering service control handler failedStarting serviceAnother instance is already running, stoppingService startedReport service status stoppedWaiting for delay to elapseGetting updater mutex failedWaiting for updater process to elapseWait for updater process doneWait for updater process timeout exceeded, continue anywaysExtracting resourcesRunning bootstrapper in update modeAction=Update Silent=trueAvira.Spotlight.Bootstrapper.exeFailed to start bootstrapper processBootstrapper process exitedReporting service status failed: Delayed=falsevector too longcopyAviraMigrationCleanupAvira.Spotlight.MigrationCleanup@abff403a-9b56-48e6-8753-10fb19692501Avira.Spotlight.MigrationCleanup.Migration cleanup mode, running as a serviceStopEventWrapper not valid.Running bootstrapper in migration cleanup modeAction=CleanupAvirastMigration Silent=trueStopEvent not valid.Avira\Migration Cleanup\\?\\\?\UNC\\\?\GLOBALROOTcanonicalkernel32.dllSetDefaultDllDirectoriesPreparing to execute installer from temp folder to temp folder...Copying uninstaller from Marking temp folder to be deleted after reboot with parameters: Starting Bootstrapper from temp folder: Exception on starting bootstrapper from temp folderActionAction=InstallAction=UninstallAction=RepairAction=RegisterUninstallerAction=PerformMigrationAction=RegisterFallbackUpdaterAction=RemoveFallbackUpdaterAction=CleanupAvirastMigrationAction=PerformAvirastMigrationAvira_Security_Installation" Error creating scheduled taskRunMode=ResumeAvira.Spotlight.Bootstrapper.Runner.exeAvira.Spotlight.Bootstrapper.Runner.exe.configError preparing installation scheduled taskAvira.Spotlight.Bootstrapper.ReportingTool.exe" Avira_Spotlight_Bootstrapper_*.log bootstrapper " /TrackUnsentEventsAndCleanup /TrackUnsentEventsOriginalFileName= OriginalFileName=Failed to run bootstrapper appFailed to open current process' token.SeShutdownPrivilegeFailed to look up shutdown privilege.Failed to set shutdown privileg |