Windows Analysis Report
dupeGuru_win64_4.3.1.exe

Overview

General Information

Sample name:	dupeGuru_win64_4.3.1.exe
Analysis ID:	1430639
MD5:	d82ff512b88c1adc706abbb7bba938f2
SHA1:	335ed3692ebe699ed907f8c96728f259652e37bb
SHA256:	28293dada3c88336b2b53aca00adf59f85cabf1362f8386a8ffc6be5e1742836
Infos:

Detection

Score:	2
Range:	0 - 100
Whitelisted:	false
Confidence:	40%

Signatures

Binary contains a suspicious time stamp

Drops PE files

Found dropped PE file which has not been started or loaded

PE file contains executable resources (Code or Archives)

PE file contains sections with non-standard names

PE file does not import any functions

Queries the volume information (name, serial number etc) of a device

Sample file is different than original file name gathered from version info

Stores files to the Windows start menu directory

Uses 32bit PE files

Classification

Signatures

Uses 32bit PE files

Source: dupeGuru_win64_4.3.1.exe

Static PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe

Window detected: < &BackI &AgreeCancelNullsoft Install System v3.06.1 Nullsoft Install System v3.06.1License AgreementPlease review the license terms before installing dupeGuru.Press Page Down to see the rest of the agreement. GNU GENERAL PUBLIC LICENSE Version 3 29 June 2007 Copyright (C) 2007 Free Software Foundation Inc. <http://fsf.org/> Everyone is permitted to copy and distribute verbatim copies of this license document but changing it is not allowed. Preamble The GNU General Public License is a free copyleft license forsoftware and other kinds of works. The licenses for most software and other practical works are designedto take away your freedom to share and change the works. By contrastthe GNU General Public License is intended to guarantee your freedom toshare and change all versions of a program--to make sure it remains freesoftware for all its users. We the Free Software Foundation use theGNU General Public License for most of our software; it applies also toany other work released this way by its authors. You can apply it toyour programs too. When we speak of free software we are referring to freedom notprice. Our General Public Licenses are designed to make sure that youhave the freedom to distribute copies of free software (and charge forthem if you wish) that you receive source code or can get it if youwant it that you can change the software or use pieces of it in newfree programs and that you know you can do these things. To protect your rights we need to prevent others from denying youthese rights or asking you to surrender the rights. Therefore you havecertain responsibilities if you distribute copies of the software or ifyou modify it: responsibilities to respect the freedom of others. For example if you distribute copies of such a program whethergratis or for a fee you must pass on to the recipients the samefreedoms that you received. You must make sure that they too receiveor can get the source code. And you must show them these terms so theyknow their rights. Developers that use the GNU GPL protect your rights with two steps:(1) assert copyright on the software and (2) offer you this Licensegiving you legal permission to copy distribute and/or modify it. For the developers' and authors' protection the GPL clearly explainsthat there is no warranty for this free software. For both users' andauthors' sake the GPL requires that modified versions be marked aschanged so that their problems will not be attributed erroneously toauthors of previous versions. Some devices are designed to deny users access to install or runmodified versions of the software inside them although the manufacturercan do so. This is fundamentally incompatible with the aim ofprotecting users' freedom to change the software. The systematicpattern of such abuse occurs in the area of products for individuals touse which is precisely where it is most unacceptable. Therefore wehave designed t

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\MSVCP140.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\MSVCP140_1.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Core.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5DBus.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Gui.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Network.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Qml.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5QmlModels.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Quick.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Svg.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5WebSockets.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Widgets.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\VCRUNTIME140.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\VCRUNTIME140_1.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_asyncio.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_bz2.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_ctypes.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_decimal.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_elementtree.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_hashlib.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_lzma.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_multiprocessing.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_overlapped.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_queue.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_socket.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_sqlite3.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_ssl.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\_win32sysloader.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-console-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-datetime-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-debug-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-errorhandling-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-file-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-file-l1-2-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-file-l2-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-handle-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-heap-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-interlocked-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-libraryloader-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-localization-l1-2-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-memory-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-namedpipe-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-processenvironment-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-processthreads-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-processthreads-l1-1-1.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-profile-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-rtlsupport-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-string-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-synch-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-synch-l1-2-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-sysinfo-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-timezone-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-util-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-conio-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-convert-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-environment-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-filesystem-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-heap-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-locale-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-math-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-multibyte-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-process-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-runtime-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-stdio-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-string-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-time-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-utility-l1-1-0.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\base_library.zip	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\d3dcompiler_47.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\dupeguru-win64.exe	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\libEGL.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\libGLESv2.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\libcrypto-1_1.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\libffi-7.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\libssl-1_1.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\mfc140u.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\opengl32sw.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\pyexpat.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\python3.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\python38.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\pythoncom38.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\pywintypes38.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\select.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\sqlite3.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\ucrtbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\unicodedata.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\win32api.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\win32trace.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\win32ui.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\win32wnet.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\QtCore.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\QtGui.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\QtWidgets.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\sip.cp38-win_amd64.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\iconusers	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\iconusers\qsvgicon.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qgif.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qicns.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qico.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qjpeg.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qsvg.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qtga.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qtiff.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qwbmp.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qwebp.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms\qminimal.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms\qoffscreen.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms\qwebgl.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms\qwindows.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platformthemes	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platformthemes\qxdgdesktopportal.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\styles	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\styles\qwindowsvistastyle.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_ar.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_bg.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_ca.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_cs.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_da.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_de.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_en.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_es.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_fi.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_fr.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_gd.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_he.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_hu.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_it.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_ja.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_ko.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_lv.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_pl.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_ru.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_sk.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_tr.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_uk.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\translations\qtbase_zh_TW.qm	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\core	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\core\pe	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\core\pe\_block.cp38-win_amd64.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\core\pe\_cache.cp38-win_amd64.pyd	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.buildinfo	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\changelog.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\faq.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\folders.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\genindex.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\objects.inv	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\preferences.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\quick_start.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\reprioritize.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\results.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\search.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\searchindex.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\changelog.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\environment.pickle	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\faq.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\folders.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\preferences.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\quick_start.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\reprioritize.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\.doctrees\results.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources\changelog.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources\faq.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources\folders.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources\index.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources\preferences.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources\quick_start.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources\reprioritize.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_sources\results.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\_sphinx_javascript_frameworks_compat.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\alert_info_32.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\alert_warning_32.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\base-stemmer.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\basic.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\bg-page.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\bullet_orange.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\doctools.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\documentation_options.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\file.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\german-stemmer.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\haiku.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\jquery-3.5.1.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\jquery-3.6.0.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\jquery.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\language_data.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\minus.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\plus.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\pygments.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\searchtools.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\translations.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\underscore-1.13.1.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\de\_static\underscore.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.buildinfo	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\changelog.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\contribute.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\faq.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\folders.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\genindex.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\objects.inv	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\preferences.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\py-modindex.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\quick_start.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\reprioritize.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\results.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\scan.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\search.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\searchindex.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\changelog.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\contribute.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\environment.pickle	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\faq.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\folders.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\preferences.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\quick_start.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\reprioritize.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\results.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\scan.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\app.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\directories.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\user.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\fs.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\results.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\gui	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\gui\deletion_options.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\core\gui\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\build.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\conflict.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\desktop.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\notify.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\path.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\util.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\gui	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\gui\base.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\gui\column.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\gui\progress_window.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\gui\selectable_list.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\gui\table.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\gui\text_field.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\gui\tree.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\jobprogress	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\jobprogress\job.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\.doctrees\developer\hscommon\jobprogress\performer.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\changelog.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\contribute.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\faq.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\folders.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\index.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\preferences.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\quick_start.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\reprioritize.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\results.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\scan.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\index.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\app.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\directories.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\user.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\fs.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\index.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\results.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\gui	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\gui\deletion_options.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\core\gui\index.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\build.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\conflict.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\desktop.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\index.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\notify.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\path.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\util.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\gui	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\gui\base.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\gui\column.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\gui\progress_window.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\gui\selectable_list.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\gui\table.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\gui\text_field.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\gui\tree.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\jobprogress	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\jobprogress\job.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_sources\developer\hscommon\jobprogress\performer.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\_sphinx_javascript_frameworks_compat.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\alert_info_32.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\alert_warning_32.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\basic.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\bg-page.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\bullet_orange.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\doctools.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\documentation_options.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\file.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\haiku.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\jquery-3.5.1.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\jquery-3.6.0.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\jquery.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\language_data.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\minus.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\plus.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\pygments.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\searchtools.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\underscore-1.13.1.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\_static\underscore.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\app.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\directories.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\user.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\fs.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\results.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\gui	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\gui\deletion_options.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\core\gui\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\build.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\conflict.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\desktop.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\notify.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\path.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\util.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\gui	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\gui\base.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\gui\column.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\gui\progress_window.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\gui\selectable_list.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\gui\table.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\gui\text_field.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\gui\tree.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\jobprogress	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\jobprogress\job.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\en\developer\hscommon\jobprogress\performer.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.buildinfo	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\changelog.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\faq.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\folders.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\genindex.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\objects.inv	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\preferences.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\quick_start.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\reprioritize.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\results.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\search.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\searchindex.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\changelog.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\environment.pickle	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\faq.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\folders.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\preferences.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\quick_start.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\reprioritize.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\.doctrees\results.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources\changelog.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources\faq.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources\folders.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources\index.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources\preferences.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources\quick_start.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources\reprioritize.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_sources\results.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\_sphinx_javascript_frameworks_compat.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\alert_info_32.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\alert_warning_32.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\base-stemmer.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\basic.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\bg-page.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\bullet_orange.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\doctools.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\documentation_options.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\file.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\french-stemmer.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\haiku.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\jquery-3.5.1.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\jquery-3.6.0.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\jquery.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\language_data.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\minus.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\plus.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\pygments.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\searchtools.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\translations.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\underscore-1.13.1.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\fr\_static\underscore.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.buildinfo	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\changelog.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\faq.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\folders.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\genindex.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\objects.inv	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\preferences.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\quick_start.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\reprioritize.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\results.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\search.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\searchindex.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\changelog.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\environment.pickle	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\faq.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\folders.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\preferences.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\quick_start.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\reprioritize.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\.doctrees\results.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources\changelog.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources\faq.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources\folders.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources\index.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources\preferences.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources\quick_start.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources\reprioritize.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_sources\results.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\_sphinx_javascript_frameworks_compat.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\alert_info_32.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\alert_warning_32.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\basic.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\bg-page.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\bullet_orange.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\doctools.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\documentation_options.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\file.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\haiku.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\jquery-3.5.1.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\jquery-3.6.0.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\jquery.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\language_data.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\minus.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\plus.png	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\pygments.css	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\searchtools.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\underscore-1.13.1.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\hy\_static\underscore.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.buildinfo	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\changelog.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\faq.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\folders.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\genindex.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\index.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\objects.inv	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\preferences.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\quick_start.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\reprioritize.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\results.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\search.html	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\searchindex.js	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\changelog.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\environment.pickle	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\faq.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\folders.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\index.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\preferences.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\quick_start.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\reprioritize.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\.doctrees\results.doctree	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\_sources	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\_sources\changelog.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\_sources\faq.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\_sources\folders.rst.txt	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Directory created: C:\Program Files\Hardcoded Software\dupeGuru\help\ru\_sources\index.rst.txt	Jump to behavior

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe

Registry value created: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\dupeGuru

Source:	Binary string: C:\Users\qt\work\qt\qtwebglplugin\plugins\platforms\qwebgl.pdb source: qwebgl.dll.0.dr
Source:	Binary string: api-ms-win-core-util-l1-1-0.pdb source: api-ms-win-core-util-l1-1-0.dll.0.dr
Source:	Binary string: C:\src\pywin32\build\temp.win-amd64-3.8\Release\shell.pdb source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Users\qt\work\qt\qtbase\plugins\styles\qwindowsvistastyle.pdb%% source: qwindowsvistastyle.dll.0.dr
Source:	Binary string: C:\Users\qt\work\qt\qtbase\plugins\styles\qwindowsvistastyle.pdb source: qwindowsvistastyle.dll.0.dr
Source:	Binary string: C:\Users\qt\work\qt\qtimageformats\plugins\imageformats\qwebp.pdb source: qwebp.dll.0.dr
Source:	Binary string: d:\agent\_work\1\s\\binaries\amd64ret\bin\amd64\\msvcp140_1.amd64.pdb source: nsq2C95.tmp.0.dr
Source:	Binary string: C:\Users\arsen\github\cpython\PCbuild\amd64\python38.pdb source: python38.dll.0.dr
Source:	Binary string: d:\agent\_work\1\s\\binaries\amd64ret\bin\amd64\\msvcp140.amd64.pdb source: nsq2C95.tmp.0.dr
Source:	Binary string: C:\Users\qt\work\qt\qtbase\lib\Qt5Core.pdb source: nsq2C95.tmp.0.dr
Source:	Binary string: C:\Users\qt\work\qt\qtwebglplugin\plugins\platforms\qwebgl.pdb11 source: qwebgl.dll.0.dr
Source:	Binary string: api-ms-win-core-sysinfo-l1-1-0.pdb source: api-ms-win-core-sysinfo-l1-1-0.dll.0.dr
Source:	Binary string: C:\Users\qt\work\qt\qtbase\lib\Qt5Core.pdbT source: nsq2C95.tmp.0.dr
Source:	Binary string: api-ms-win-crt-filesystem-l1-1-0.pdb source: api-ms-win-crt-filesystem-l1-1-0.dll.0.dr
Source:	Binary string: api-ms-win-crt-conio-l1-1-0.pdb source: api-ms-win-crt-conio-l1-1-0.dll.0.dr
Source:	Binary string: api-ms-win-core-interlocked-l1-1-0.pdb source: api-ms-win-core-interlocked-l1-1-0.dll.0.dr
Source:	Binary string: api-ms-win-core-localization-l1-2-0.pdb source: api-ms-win-core-localization-l1-2-0.dll.0.dr
Source:	Binary string: api-ms-win-crt-math-l1-1-0.pdb source: api-ms-win-crt-math-l1-1-0.dll.0.dr
Source:	Binary string: C:\Users\qt\work\qt\qtbase\lib\libGLESv2.pdb source: libGLESv2.dll.0.dr
Source:	Binary string: api-ms-win-core-heap-l1-1-0.pdb source: api-ms-win-core-heap-l1-1-0.dll.0.dr
Source:	Binary string: api-ms-win-core-processthreads-l1-1-1.pdb source: api-ms-win-core-processthreads-l1-1-1.dll.0.dr
Source:	Binary string: C:\src\pywin32\build\temp.win-amd64-3.8\Release\shell.pdbkk%GCTL source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Users\qt\work\qt\qtbase\lib\libGLESv2.pdb2 source: libGLESv2.dll.0.dr

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File opened: C:\Users\user\AppData	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File opened: C:\Users\user	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File opened: C:\Users\user\AppData\Roaming\Microsoft\Windows	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File opened: C:\Users\user\AppData\Roaming	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File opened: C:\Users\user\AppData\Roaming\Microsoft	Jump to behavior

Source: _overlapped.pyd.0.dr	Static PE information: Resource name: RT_VERSION type: COM executable for DOS
Source: unicodedata.pyd.0.dr	Static PE information: Resource name: RT_VERSION type: COM executable for DOS

Source: api-ms-win-core-interlocked-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-processenvironment-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-util-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-console-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-process-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-synch-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-timezone-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-file-l2-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-debug-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-string-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-localization-l1-2-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-profile-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-datetime-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-math-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-time-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-locale-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-namedpipe-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-file-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-file-l1-2-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-sysinfo-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-libraryloader-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: python3.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-heap-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-environment-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-stdio-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-processthreads-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-errorhandling-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-handle-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-synch-l1-2-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-processthreads-l1-1-1.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-utility-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-filesystem-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-multibyte-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-rtlsupport-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-conio-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-heap-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-convert-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-runtime-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-string-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-memory-l1-1-0.dll.0.dr	Static PE information: No import functions for PE file found

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: propsys.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: dwmapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: oleacc.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: shfolder.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: textinputframework.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: coreuicomponents.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: textshaping.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: riched20.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: usp10.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: msls31.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: linkinfo.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: ntshrui.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: srvcli.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: cscapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Section loaded: netutils.dll	Jump to behavior

Source: dupeGuru.lnk.0.dr	LNK file: ..\..\..\..\..\..\Program Files\Hardcoded Software\dupeGuru\dupeguru-win64.exe
Source: Uninstall.lnk.0.dr	LNK file: ..\..\..\..\..\..\Program Files\Hardcoded Software\dupeGuru\Uninstall.exe

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Automated click: Next >
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Automated click: I Agree
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Automated click: Next >
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Automated click: Next >
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Automated click: Install

Source: MSVCP140.dll.0.dr	Static PE information: section name: .didat
Source: qsvgicon.dll.0.dr	Static PE information: section name: .qtmetad
Source: qgif.dll.0.dr	Static PE information: section name: .qtmetad
Source: qicns.dll.0.dr	Static PE information: section name: .qtmetad
Source: qico.dll.0.dr	Static PE information: section name: .qtmetad
Source: qjpeg.dll.0.dr	Static PE information: section name: .qtmetad
Source: qsvg.dll.0.dr	Static PE information: section name: .qtmetad
Source: qtga.dll.0.dr	Static PE information: section name: .qtmetad
Source: qtiff.dll.0.dr	Static PE information: section name: .qtmetad
Source: qwbmp.dll.0.dr	Static PE information: section name: .qtmetad
Source: qwebp.dll.0.dr	Static PE information: section name: .qtmetad
Source: qminimal.dll.0.dr	Static PE information: section name: .qtmetad
Source: qoffscreen.dll.0.dr	Static PE information: section name: .qtmetad
Source: qwebgl.dll.0.dr	Static PE information: section name: .qtmetad
Source: qwindows.dll.0.dr	Static PE information: section name: .qtmetad
Source: qxdgdesktopportal.dll.0.dr	Static PE information: section name: .qtmetad
Source: qwindowsvistastyle.dll.0.dr	Static PE information: section name: .qtmetad
Source: Qt5Core.dll.0.dr	Static PE information: section name: .qtmimed
Source: VCRUNTIME140.dll.0.dr	Static PE information: section name: _RDATA
Source: dupeguru-win64.exe.0.dr	Static PE information: section name: _RDATA
Source: libcrypto-1_1.dll.0.dr	Static PE information: section name: .00cfg
Source: libssl-1_1.dll.0.dr	Static PE information: section name: .00cfg
Source: mfc140u.dll.0.dr	Static PE information: section name: .didat
Source: opengl32sw.dll.0.dr	Static PE information: section name: _RDATA

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms\qwebgl.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-time-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-multibyte-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\core\pe\_cache.cp38-win_amd64.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-errorhandling-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Quick.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\mfc140u.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\unicodedata.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-profile-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\python38.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-util-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-convert-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Qml.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-processthreads-l1-1-1.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms\qwindows.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qsvg.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Users\user\AppData\Local\Temp\nsw2CB6.tmp\StartMenu.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-namedpipe-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-processenvironment-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_ctypes.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\select.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\QtGui.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Users\user\AppData\Local\Temp\nsw2CB6.tmp\System.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5QmlModels.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qwebp.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-heap-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_asyncio.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\MSVCP140.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_bz2.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-stdio-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\win32ui.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5WebSockets.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\pythoncom38.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-timezone-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-locale-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-console-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-filesystem-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\libffi-7.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\qt\pe\_block_qt.cp38-win_amd64.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Users\user\AppData\Local\Temp\nsw2CB6.tmp\nsDialogs.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qtga.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-debug-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qwbmp.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-file-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-string-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\QtWidgets.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-math-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-memory-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Users\user\AppData\Local\Temp\nsw2CB6.tmp\LangDLL.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-interlocked-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\d3dcompiler_47.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\libGLESv2.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_sqlite3.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-file-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\opengl32sw.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-environment-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\win32api.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\xxhash\_xxhash.cp38-win_amd64.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_hashlib.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-sysinfo-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Widgets.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\libssl-1_1.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_ssl.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\core\pe\_block.cp38-win_amd64.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-conio-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\libEGL.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qjpeg.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\VCRUNTIME140.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms\qminimal.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qicns.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\sip.cp38-win_amd64.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\win32trace.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\QtCore.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-synch-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-processthreads-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-datetime-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-handle-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-utility-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\markupsafe\_speedups.cp38-win_amd64.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qtiff.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Uninstall.exe	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qico.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\pyexpat.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Network.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-rtlsupport-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_overlapped.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-file-l2-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\win32wnet.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Svg.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\libcrypto-1_1.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Gui.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_multiprocessing.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\pywintypes38.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_socket.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\styles\qwindowsvistastyle.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-string-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-localization-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5Core.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\ucrtbase.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_elementtree.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platforms\qoffscreen.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_win32sysloader.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\Qt5DBus.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\MSVCP140_1.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-libraryloader-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\VCRUNTIME140_1.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-runtime-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_lzma.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_queue.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\iconusers\qsvgicon.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-process-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-core-synch-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\sqlite3.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\dupeguru-win64.exe	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\win32com\shell\shell.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\python3.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Users\user\AppData\Local\Temp\nsw2CB6.tmp\UserInfo.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\platformthemes\qxdgdesktopportal.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\_decimal.pyd	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\api-ms-win-crt-heap-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\Program Files\Hardcoded Software\dupeGuru\PyQt5\Qt5\plugins\imageformats\qgif.dll	Jump to dropped file

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dupeGuru	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dupeGuru\dupeGuru.lnk	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File created: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dupeGuru\Uninstall.lnk	Jump to behavior

Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://cacerts.digicert.com/DigiCertSHA2AssuredIDCodeSigningCA.crt0
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://cacerts.digicert.com/DigiCertSHA2AssuredIDTimestampingCA.crt0
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0O
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0P
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://crl3.digicert.com/sha2-assured-cs-g1.crl05
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://crl3.digicert.com/sha2-assured-ts.crl02
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://crl4.digicert.com/DigiCertAssuredIDRootCA.crl0:
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://crl4.digicert.com/sha2-assured-cs-g1.crl0L
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://crl4.digicert.com/sha2-assured-ts.crl0
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://docs.python.org/3/library/difflib.html#difflib.get_close_matches
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp, quick_start.html0.0.dr, faq.html1.0.dr, preferences.html1.0.dr, quick_start.html.0.dr, deletion_options.html.0.dr, build.html.0.dr, fs.html.0.dr, results.html2.0.dr	String found in binary or memory: http://docutils.sourceforge.net/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp, index.doctree0.0.dr	String found in binary or memory: http://dupeguru.voltaicideas.net
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp, index.rst.txt2.0.dr, index.doctree0.0.dr, index.rst.txt.0.dr	String found in binary or memory: http://dupeguru.voltaicideas.net.
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://dupeguru.voltaicideas.net/help/de
Source: index.doctree0.0.dr, index.rst.txt.0.dr	String found in binary or memory: http://dupeguru.voltaicideas.net/help/de/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp, index.rst.txt2.0.dr	String found in binary or memory: http://dupeguru.voltaicideas.net/help/en/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://dupeguru.voltaicideas.net/help/fr
Source: index.doctree0.0.dr, index.rst.txt.0.dr	String found in binary or memory: http://dupeguru.voltaicideas.net/help/fr/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://dupeguru.voltaicideas.net/help/hy
Source: index.doctree0.0.dr, index.rst.txt.0.dr	String found in binary or memory: http://dupeguru.voltaicideas.net/help/hy/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://dupeguru.voltaicideas.net/help/ru
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://dupeguru.voltaicideas.net/help/uk
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://dupeguru.voltaicideas.net:
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517128441.00000000006BF000.00000004.00000020.00020000.00000000.sdmp, dupeGuru_win64_4.3.1.exe, 00000000.00000003.2516305664.00000000006BD000.00000004.00000020.00020000.00000000.sdmp, nsq2C95.tmp.0.dr	String found in binary or memory: http://fsf.org/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://github.com/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://github.com/rbarrois/python-semanticversion/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://haiku-os.org/docs/Haiku-doc.css.
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp, faq.rst.txt1.0.dr	String found in binary or memory: http://macchampion.com/arbysoft/BatchMod
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://macchampion.com/arbysoft/BatchMod>
Source: dupeGuru_win64_4.3.1.exe	String found in binary or memory: http://nsis.sf.net/NSIS_ErrorError
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://ocsp.digicert.com0C
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://ocsp.digicert.com0N
Source: qwebp.dll.0.dr, qwebgl.dll.0.dr, qwindowsvistastyle.dll.0.dr, libGLESv2.dll.0.dr	String found in binary or memory: http://ocsp.digicert.com0O
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp, faq.html1.0.dr, faq.rst.txt1.0.dr	String found in binary or memory: http://open.hardcoded.net/about/
Source: dupeGuru_win64_4.3.1.exe, 00000000.00000002.2517602770.0000000002765000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://pypi.python.org/
Source: python38.dll.0.dr	String found in binary or memory: http://python.org/dev/peps/pep-0263/
Source: qtbase_cs.qm.0.dr	String found in binary or memory: http://qt-project.org/
Source: qtbase_cs.qm.0.dr	String found in binary or memory: http://qt.io/
Source: qtbase_cs.qm.0.dr	String found in binary or memory: http://qt.io/licensing/

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior

Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File Volume queried: C:\Program Files FullSizeInformation			Jump to behavior
Source: C:\Users\user\Desktop\dupeGuru_win64_4.3.1.exe	File Volume queried: C:\Program Files FullSizeInformation			Jump to behavior

ID:	1430639
Product:	CloudBasic
Start time:	01:25:04
Start date:	24.04.2024
Sample:	dupeGuru_win64_4.3.1.exe
Cookbook:	default.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS
MD5:	d82ff512b88c1adc706abbb7bba938f2
SHA1:	335ed3692ebe699ed907f8c96728f259652e37bb
SHA256:	28293dada3c88336b2b53aca00adf59f85cabf1362f8386a8ffc6be5e1742836
Filetype:	Win32 Executable (generic) a (10002005/4) 99.96%

Windows Analysis Report dupeGuru_win64_4.3.1.exe

Overview

General Information

Detection

Signatures

Classification

Signatures

Compliance

Spreading

Networking

System Summary

Data Obfuscation

Persistence and Installation Behavior

Boot Survival

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Language, Device and Operating System Detection

Screenshots

Behavior Graph

Network Map

Windows Analysis Report
dupeGuru_win64_4.3.1.exe