Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

1.9.3.525 16.67%
1.9.3.502 16.67%
1.9.3.454 16.67%
1.9.3.448 50.00%

Relationships


PE structurePE file structure

Show functions
Import table
advapi32.dll
AdjustTokenPrivileges, AllocateAndInitializeSid, ChangeServiceConfigW, CheckTokenMembership, CloseServiceHandle, ControlService, ConvertStringSecurityDescriptorToSecurityDescriptorW, CreateServiceW, CryptAcquireContextW, CryptCreateHash, CryptDestroyHash, CryptGetHashParam, CryptHashData, CryptReleaseContext, FreeSid, GetSecurityDescriptorSacl, GetUserNameA, GetUserNameW, InitializeSecurityDescriptor, InitiateSystemShutdownW, LookupPrivilegeValueW, OpenProcessToken, OpenSCManagerW, OpenServiceW, QueryServiceStatus, RegCloseKey, RegConnectRegistryW, RegCreateKeyExA, RegCreateKeyExW, RegDeleteKeyW, RegDeleteValueA, RegDeleteValueW, RegEnumKeyA, RegEnumKeyExW, RegEnumValueW, RegFlushKey, RegLoadKeyW, RegOpenKeyExA, RegOpenKeyExW, RegOpenKeyW, RegQueryInfoKeyA, RegQueryInfoKeyW, RegQueryValueExA, RegQueryValueExW, RegReplaceKeyW, RegRestoreKeyW, RegSaveKeyW, RegSetValueExA, RegSetValueExW, RegUnLoadKeyW, SetNamedSecurityInfoW, SetSecurityDescriptorDacl, StartServiceW
comctl32.dll
FlatSB_GetScrollInfo, FlatSB_GetScrollPos, FlatSB_SetScrollInfo, FlatSB_SetScrollPos, FlatSB_SetScrollProp, ImageList_Add, ImageList_BeginDrag, ImageList_Copy, ImageList_Create, ImageList_Destroy, ImageList_DragEnter, ImageList_DragLeave, ImageList_DragMove, ImageList_DragShowNolock, ImageList_Draw, ImageList_DrawEx, ImageList_EndDrag, ImageList_GetBkColor, ImageList_GetDragImage, ImageList_GetIcon, ImageList_GetIconSize, ImageList_GetImageCount, ImageList_GetImageInfo, ImageList_LoadImageW, ImageList_Read, ImageList_Remove, ImageList_Replace, ImageList_ReplaceIcon, ImageList_SetBkColor, ImageList_SetIconSize, ImageList_SetImageCount, ImageList_SetOverlayImage, ImageList_Write, InitializeFlatSB, _TrackMouseEvent
comdlg32.dll
ChooseColorW, GetSaveFileNameA, GetSaveFileNameW, PrintDlgW, GetOpenFileNameW
crypt32.dll
CertCloseStore, CertFindCertificateInStore, CertFreeCertificateContext, CertGetNameStringW, CryptMsgClose, CryptMsgGetParam, CryptQueryObject
gdi32.dll
AbortDoc, AngleArc, Arc, ArcTo, BitBlt, Chord, CloseEnhMetaFile, CombineRgn, CopyEnhMetaFileW, CreateBitmap, CreateBrushIndirect, CreateCompatibleBitmap, CreateCompatibleDC, CreateDCW, CreateDIBSection, CreateDIBitmap, CreateEnhMetaFileW, CreateFontA, CreateFontIndirectW, CreateFontW, CreateHalftonePalette, CreateICW, CreatePalette, CreatePen, CreatePenIndirect, CreateRectRgn, CreateRectRgnIndirect, CreateRoundRectRgn, CreateSolidBrush, DeleteDC, DeleteEnhMetaFile, DeleteObject, Ellipse, EndDoc, EndPage, EnumFontFamiliesExW, EnumFontsW, ExcludeClipRect, ExtCreatePen, ExtCreateRegion, ExtFloodFill, ExtTextOutW, FrameRgn, GdiFlush, GetBitmapBits, GetBrushOrgEx, GetClipBox, GetCurrentObject, GetCurrentPositionEx, GetDIBColorTable, GetDIBits, GetDeviceCaps, GetEnhMetaFileBits, GetEnhMetaFileDescriptionW, GetEnhMetaFileHeader, GetEnhMetaFilePaletteEntries, GetNearestPaletteIndex, GetObjectW, GetPaletteEntries, GetPixel, GetRgnBox, GetStockObject, GetSystemPaletteEntries, GetTextColor, GetTextExtentPoint32A, GetTextExtentPoint32W, GetTextExtentPointW, GetTextFaceA, GetTextMetricsW, GetViewportOrgEx, GetWinMetaFileBits, GetWindowOrgEx, IntersectClipRect, LPtoDP, LineTo, MaskBlt, MoveToEx, PatBlt, Pie, PlayEnhMetaFile, PolyBezier, PolyBezierTo, PolyPolyline, Polygon, Polyline, RealizePalette, RectVisible, Rectangle, ResizePalette, RestoreDC, RoundRect, SaveDC, SelectClipRgn, SelectObject, SelectPalette, SetAbortProc, SetBkColor, SetBkMode, SetBrushOrgEx, SetDIBColorTable, SetDIBits, SetEnhMetaFileBits, SetMapMode, SetPixel, SetROP2, SetStretchBltMode, SetTextColor, SetViewportExtEx, SetViewportOrgEx, SetWinMetaFileBits, SetWindowExtEx, SetWindowOrgEx, StartDocA, StartDocW, StartPage, StretchBlt, StretchDIBits, TextOutA, TextOutW, UnrealizeObject
imagehlp.dll
MapFileAndCheckSumW
iphlpapi.dll
GetAdaptersInfo, SendARP
kernel32.dll
DllMain
ole32.dll
CoCreateGuid, CoCreateInstance, CoGetClassObject, CoInitialize, CoTaskMemAlloc, CoTaskMemFree, CoUninitialize, CreateStreamOnHGlobal, IsAccelerator, IsEqualGUID, OleDraw, OleInitialize, OleRegEnumVerbs, OleSetMenuDescriptor, OleUninitialize, ProgIDFromCLSID, StringFromCLSID
psapi.dll
EnumProcessModules, EnumProcesses, GetModuleFileNameExA, GetModuleFileNameExW, GetProcessImageFileNameA, GetProcessImageFileNameW
sfc.dll
SfcIsFileProtected
shell32.dll
ExtractIconA, ExtractIconW, SHGetFileInfoW, SHGetMalloc, SHGetPathFromIDListW, SHGetSpecialFolderLocation, ShellExecuteA, ShellExecuteExA, ShellExecuteExW, ShellExecuteW, Shell_NotifyIconW, SHGetPathFromIDListA
urlmon.dll
ObtainUserAgentString
user32.dll
DllMain
version.dll
GetFileVersionInfoA, GetFileVersionInfoSizeA, GetFileVersionInfoSizeW, GetFileVersionInfoW, VerQueryValueA, VerQueryValueW
winhttp.dll
WinHttpCloseHandle, WinHttpGetIEProxyConfigForCurrentUser, WinHttpGetProxyForUrl, WinHttpOpen
wininet.dll
InternetQueryOptionA, InternetSetCookieExW
winmm.dll
timeGetTime
winspool.drv
ClosePrinter, DocumentPropertiesW, EnumPrintersW, OpenPrinterW
wintrust.dll
CryptCATAdminAcquireContext, CryptCATAdminCalcHashFromFileHandle, CryptCATAdminEnumCatalogFromHash, CryptCATAdminReleaseCatalogContext, CryptCATAdminReleaseContext, CryptCATCatalogInfoFromContext, WTHelperGetProvCertFromChain, WTHelperGetProvSignerFromChain, WTHelperProvDataFromStateData, WinVerifyTrust
wtsapi32.dll
WTSQuerySessionInformationW
Export table
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$35Shdocvw_tlb@TInternetExplorerMedium
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$ynpqqrp14System@TObject$v
@@Antilogger@Finalize
@@Antilogger@Initialize
@@Antissllogger@Finalize
@@Antissllogger@Initialize
@@Autodetect@Finalize
@@Autodetect@Initialize
@@Blockhooks@Finalize
@@Blockhooks@Initialize
@@Captionpanel@Finalize
@@Captionpanel@Initialize
@@Chromeuseragent@Finalize
@@Chromeuseragent@Initialize
@@Clouddecision@Finalize
@@Clouddecision@Initialize
@@Compression@Finalize
@@Compression@Initialize
@@Driverhelper@Finalize
@@Driverhelper@Initialize
@@Encryption@Finalize
@@Encryption@Initialize
@@Enumfolders@Finalize
@@Enumfolders@Initialize
@@Enumprocessesandmodules@Finalize
@@Enumprocessesandmodules@Initialize
@@Errorreportform@Finalize
@@Errorreportform@Initialize
@@Filenameparser@Finalize
@@Filenameparser@Initialize
@@Fileversioninfo@Finalize
@@Fileversioninfo@Initialize
@@Firefoxuseragent@Finalize
@@Firefoxuseragent@Initialize
@@Formactivationok@Finalize
@@Formactivationok@Initialize
@@Formalert@Finalize
@@Formalert@Initialize
@@Formcaptcha@Finalize
@@Formcaptcha@Initialize
@@Formconnection@Finalize
@@Formconnection@Initialize
@@Formconnectionerror@Finalize
@@Formconnectionerror@Initialize
@@Formdata@Finalize
@@Formdata@Initialize
@@Forminfo@Finalize
@@Forminfo@Initialize
@@Formmain@Finalize
@@Formmain@Initialize
@@Formpasswordsetup@Finalize
@@Formpasswordsetup@Initialize
@@Formreminder@Finalize
@@Formreminder@Initialize
@@Formsettings@Finalize
@@Formsettings@Initialize
@@Formstartprogress@Finalize
@@Formstartprogress@Initialize
@@Glassbutton@Finalize
@@Glassbutton@Initialize
@@Helperfunctions@Finalize
@@Helperfunctions@Initialize
@@Httpmanager@Finalize
@@Httpmanager@Initialize
@@Ieproxydetect@Finalize
@@Ieproxydetect@Initialize
@@Initdatamodule@Finalize
@@Initdatamodule@Initialize
@@Intelliguardlibrary@Finalize
@@Intelliguardlibrary@Initialize
@@Keycrypthelper@Finalize
@@Keycrypthelper@Initialize
@@Keycryptsdk@Finalize
@@Keycryptsdk@Initialize
@@Localhelper@Finalize
@@Localhelper@Initialize
@@Md5@Finalize
@@Md5@Initialize
@@Notificationform@Finalize
@@Notificationform@Initialize
@@Partnersessions@Finalize
@@Partnersessions@Initialize
@@Plimuscookie@Finalize
@@Plimuscookie@Initialize
@@Productinfo@Finalize
@@Productinfo@Initialize
@@Protectiongroup@Finalize
@@Protectiongroup@Initialize
@@Servicemanager@Finalize
@@Servicemanager@Initialize
@@Shdocvw_ocx@Finalize
@@Shdocvw_ocx@Initialize
@@Shdocvw_tlb@Finalize
@@Shdocvw_tlb@Initialize
@@Specialpanel@Finalize
@@Specialpanel@Initialize
@@Tappdatabase@Finalize
@@Tappdatabase@Initialize
@@Tencryptedinifile@Finalize
@@Tencryptedinifile@Initialize
@@Threatdb@Finalize
@@Threatdb@Initialize
@@Tinjector@Finalize
@@Tinjector@Initialize
@@Tkeycrypt@Finalize
@@Tkeycrypt@Initialize
@@Tlock@Finalize
@@Tlock@Initialize
@@Tracer@Finalize
@@Tracer@Initialize
@@Trules@Finalize
@@Trules@Initialize
@@Tstopwatch@Finalize
@@Tstopwatch@Initialize
@@Ttoolhelpsnapshot32@Finalize
@@Ttoolhelpsnapshot32@Initialize
@@Verifysignature@Finalize
@@Verifysignature@Initialize
@@Zalsdkcore@Finalize
@@Zalsdkcore@Initialize
@Shdocvw_ocx@Register$qqrv
@Shdocvw_tlb@CLSID_CppCScriptErrorList
@Shdocvw_tlb@CLSID_CppInternetExplorer
@Shdocvw_tlb@CLSID_CppShellBrowserWindow
@Shdocvw_tlb@CLSID_CppShellUIHelper
@Shdocvw_tlb@CLSID_CppShellWindows
@Shdocvw_tlb@CLSID_CppWebBrowser
@Shdocvw_tlb@CLSID_CppWebBrowser_V1
@Shdocvw_tlb@CLSID_InternetExplorerMedium
@Shdocvw_tlb@CLSID_ShellFavoritesNameSpace
@Shdocvw_tlb@DIID_DShellNameSpaceEvents
@Shdocvw_tlb@DIID_DShellWindowsEvents
@Shdocvw_tlb@DIID_DWebBrowserEvents
@Shdocvw_tlb@DIID_DWebBrowserEvents2
@Shdocvw_tlb@IID_IScriptErrorList
@Shdocvw_tlb@IID_IShellFavoritesNameSpace
@Shdocvw_tlb@IID_IShellNameSpace
@Shdocvw_tlb@IID_IShellUIHelper
@Shdocvw_tlb@IID_IShellUIHelper2
@Shdocvw_tlb@IID_IShellUIHelper3
@Shdocvw_tlb@IID_IShellWindows
@Shdocvw_tlb@IID_IWebBrowser
@Shdocvw_tlb@IID_IWebBrowser2
@Shdocvw_tlb@IID_IWebBrowserApp
@Shdocvw_tlb@LIBID_SHDocVw
@Shdocvw_tlb@TCppInternetExplorer@
@Shdocvw_tlb@TCppInternetExplorer@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TCppInternetExplorer@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppInternetExplorer@ClientToWindow$qqrpit1
@Shdocvw_tlb@TCppInternetExplorer@Connect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@ConnectTo$qqr69%TComInterface$24Shdocvw_tlb@IWebBrowser2px5_GUID$gIID_IWebBrowser2$%
@Shdocvw_tlb@TCppInternetExplorer@Disconnect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@ExecWB$qqr20Shdocvw_tlb@OLECMDID25Shdocvw_tlb@OLECMDEXECOPTp10tagVARIANTt3
@Shdocvw_tlb@TCppInternetExplorer@get_AddressBar$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Application$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Busy$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Container$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Document$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_FullName$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_FullScreen$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Height$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_HWND$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Left$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_LocationName$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_LocationURL$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_MenuBar$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Name$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Offline$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Parent$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Path$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_ReadyState$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_RegisterAsBrowser$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_RegisterAsDropTarget$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Resizable$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Silent$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_StatusBar$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_StatusText$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_TheaterMode$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_ToolBar$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Top$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_TopLevelContainer$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Type$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Visible$qqrv
@Shdocvw_tlb@TCppInternetExplorer@get_Width$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GetDefaultInterface$qv
@Shdocvw_tlb@TCppInternetExplorer@GetDunk$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GetProperty$qqrpb
@Shdocvw_tlb@TCppInternetExplorer@GoBack$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GoForward$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GoHome$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GoSearch$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InitServerData$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppInternetExplorer@Navigate$qqrpbp10tagVARIANTt2t2t2
@Shdocvw_tlb@TCppInternetExplorer@Navigate2$qqrp10tagVARIANTt1t1t1t1
@Shdocvw_tlb@TCppInternetExplorer@PutProperty$qqrpb10tagVARIANT
@Shdocvw_tlb@TCppInternetExplorer@QueryStatusWB$qqr20Shdocvw_tlb@OLECMDID
@Shdocvw_tlb@TCppInternetExplorer@Quit$qqrv
@Shdocvw_tlb@TCppInternetExplorer@Refresh$qqrv
@Shdocvw_tlb@TCppInternetExplorer@Refresh2$qqrp10tagVARIANT
@Shdocvw_tlb@TCppInternetExplorer@set_AddressBar$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_FullScreen$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Height$qqrl
@Shdocvw_tlb@TCppInternetExplorer@set_Left$qqrl
@Shdocvw_tlb@TCppInternetExplorer@set_MenuBar$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Offline$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_RegisterAsBrowser$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_RegisterAsDropTarget$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Resizable$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Silent$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_StatusBar$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_StatusText$qqrpb
@Shdocvw_tlb@TCppInternetExplorer@set_TheaterMode$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_ToolBar$qqri
@Shdocvw_tlb@TCppInternetExplorer@set_Top$qqrl
@Shdocvw_tlb@TCppInternetExplorer@set_Visible$qqrs
@Shdocvw_tlb@TCppInternetExplorer@set_Width$qqrl
@Shdocvw_tlb@TCppInternetExplorer@ShowBrowserBar$qqrp10tagVARIANTt1t1
@Shdocvw_tlb@TCppInternetExplorer@Stop$qqrv
@Shdocvw_tlb@TCppShellUIHelper@
@Shdocvw_tlb@TCppShellUIHelper@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TCppShellUIHelper@AddChannel$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@AddDesktopComponent$qqrpbt1p10tagVARIANTt3t3t3
@Shdocvw_tlb@TCppShellUIHelper@AddFavorite$qqrpbp10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@AddSearchProvider$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@AddService$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@AddToFavoritesBar$qqrpbt1p10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@AutoCompleteAttach$qqrp10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@AutoCompleteSaveForm$qqrp10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@AutoScan$qqrpbt1p10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellUIHelper@BrandImageUri$qqrv
@Shdocvw_tlb@TCppShellUIHelper@BuildNewTabPage$qqrv
@Shdocvw_tlb@TCppShellUIHelper@Connect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ConnectTo$qqr75%TComInterface$27Shdocvw_tlb@IShellUIHelper3px5_GUID$gIID_IShellUIHelper3$%
@Shdocvw_tlb@TCppShellUIHelper@ContentDiscoveryReset$qqrv
@Shdocvw_tlb@TCppShellUIHelper@CustomizeClearType$qqrs
@Shdocvw_tlb@TCppShellUIHelper@CustomizeSettings$qqrsspb
@Shdocvw_tlb@TCppShellUIHelper@DefaultSearchProvider$qqrv
@Shdocvw_tlb@TCppShellUIHelper@DiagnoseConnection$qqrv
@Shdocvw_tlb@TCppShellUIHelper@Disconnect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@EnableSuggestedSites$qqrs
@Shdocvw_tlb@TCppShellUIHelper@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellUIHelper@GetDunk$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ImportExportFavorites$qqrspb
@Shdocvw_tlb@TCppShellUIHelper@InitServerData$qqrv
@Shdocvw_tlb@TCppShellUIHelper@InPrivateFilteringEnabled$qqrv
@Shdocvw_tlb@TCppShellUIHelper@IsSearchMigrated$qqrv
@Shdocvw_tlb@TCppShellUIHelper@IsSearchProviderInstalled$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@IsServiceInstalled$qqrpbt1
@Shdocvw_tlb@TCppShellUIHelper@IsSubscribed$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@IsSuggestedSitesEnabled$qqrv
@Shdocvw_tlb@TCppShellUIHelper@NavigateAndFind$qqrpbt1p10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@NavigateToSuggestedSites$qqrpb
@Shdocvw_tlb@TCppShellUIHelper@PhishingEnabled$qqrv
@Shdocvw_tlb@TCppShellUIHelper@RefreshOfflineDesktop$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ResetFirstBootMode$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ResetSafeMode$qqrv
@Shdocvw_tlb@TCppShellUIHelper@RunOnceHasShown$qqrv
@Shdocvw_tlb@TCppShellUIHelper@RunOnceRequiredSettingsComplete$qqrs
@Shdocvw_tlb@TCppShellUIHelper@RunOnceShown$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SearchGuideUrl$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SetActivitiesVisible$qqrs
@Shdocvw_tlb@TCppShellUIHelper@SetRecentlyClosedVisible$qqrs
@Shdocvw_tlb@TCppShellUIHelper@ShowBrowserUI$qqrpbp10tagVARIANT
@Shdocvw_tlb@TCppShellUIHelper@ShowInPrivateHelp$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ShowTabsHelp$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SkipRunOnce$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SkipTabsWelcome$qqrv
@Shdocvw_tlb@TCppShellUIHelper@SqmEnabled$qqrv
@Shdocvw_tlb@TCppShellWindows@
@Shdocvw_tlb@TCppShellWindows@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TCppShellWindows@_NewEnum$qqrv
@Shdocvw_tlb@TCppShellWindows@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellWindows@Connect$qqrv
@Shdocvw_tlb@TCppShellWindows@ConnectTo$qqr71%TComInterface$25Shdocvw_tlb@IShellWindowspx5_GUID$gIID_IShellWindows$%
@Shdocvw_tlb@TCppShellWindows@Disconnect$qqrv
@Shdocvw_tlb@TCppShellWindows@FindWindowSW$qqrp10tagVARIANTt1ipli
@Shdocvw_tlb@TCppShellWindows@get_Count$qqrv
@Shdocvw_tlb@TCppShellWindows@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellWindows@GetDunk$qqrv
@Shdocvw_tlb@TCppShellWindows@InitServerData$qqrv
@Shdocvw_tlb@TCppShellWindows@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppShellWindows@Item$qqr10tagVARIANT
@Shdocvw_tlb@TCppShellWindows@OnActivated$qqrls
@Shdocvw_tlb@TCppShellWindows@OnCreated$qqrlp8IUnknown
@Shdocvw_tlb@TCppShellWindows@OnNavigate$qqrlp10tagVARIANT
@Shdocvw_tlb@TCppShellWindows@ProcessAttachDetach$qqrs
@Shdocvw_tlb@TCppShellWindows@Register$qqrp9IDispatchlipl
@Shdocvw_tlb@TCppShellWindows@RegisterPending$qqrlp10tagVARIANTt2ipl
@Shdocvw_tlb@TCppShellWindows@Revoke$qqrl
@Shdocvw_tlb@TCppWebBrowser@
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp6HWND__
@Shdocvw_tlb@TCppWebBrowser@CControlData
@Shdocvw_tlb@TCppWebBrowser@ClientToWindow$qqrpit1
@Shdocvw_tlb@TCppWebBrowser@CreateControl$qqrv
@Shdocvw_tlb@TCppWebBrowser@DEF_CTL_INTF
@Shdocvw_tlb@TCppWebBrowser@EventDispIDs
@Shdocvw_tlb@TCppWebBrowser@ExecWB$qqr20Shdocvw_tlb@OLECMDID25Shdocvw_tlb@OLECMDEXECOPTp10tagVARIANTt3
@Shdocvw_tlb@TCppWebBrowser@get_Application$qqrv
@Shdocvw_tlb@TCppWebBrowser@get_Container$qqrv
@Shdocvw_tlb@TCppWebBrowser@get_Document$qqrv
@Shdocvw_tlb@TCppWebBrowser@get_HWND$qqrv
@Shdocvw_tlb@TCppWebBrowser@get_Parent$qqrv
@Shdocvw_tlb@TCppWebBrowser@GetDefaultInterface$qqrv
@Shdocvw_tlb@TCppWebBrowser@GetProperty$qqrpb
@Shdocvw_tlb@TCppWebBrowser@GetWordBoolProp$qqri
@Shdocvw_tlb@TCppWebBrowser@GoBack$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoForward$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoHome$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoSearch$qqrv
@Shdocvw_tlb@TCppWebBrowser@InitControlData$qqrv
@Shdocvw_tlb@TCppWebBrowser@Navigate$qqrpbp10tagVARIANTt2t2t2
@Shdocvw_tlb@TCppWebBrowser@Navigate2$qqrp10tagVARIANTt1t1t1t1
@Shdocvw_tlb@TCppWebBrowser@OptParam
@Shdocvw_tlb@TCppWebBrowser@PutProperty$qqrpb10tagVARIANT
@Shdocvw_tlb@TCppWebBrowser@QueryStatusWB$qqr20Shdocvw_tlb@OLECMDID
@Shdocvw_tlb@TCppWebBrowser@Quit$qqrv
@Shdocvw_tlb@TCppWebBrowser@Refresh$qqrv
@Shdocvw_tlb@TCppWebBrowser@Refresh2$qqrp10tagVARIANT
@Shdocvw_tlb@TCppWebBrowser@SetWordBoolProp$qqrio
@Shdocvw_tlb@TCppWebBrowser@ShowBrowserBar$qqrp10tagVARIANTt1t1
@Shdocvw_tlb@TCppWebBrowser@Stop$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@
@Shdocvw_tlb@TInternetExplorerMedium@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TInternetExplorerMedium@BeforeDestruction$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@ClientToWindow$qqrpit1
@Shdocvw_tlb@TInternetExplorerMedium@Connect$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@ConnectTo$qqr69%TComInterface$24Shdocvw_tlb@IWebBrowser2px5_GUID$gIID_IWebBrowser2$%
@Shdocvw_tlb@TInternetExplorerMedium@Disconnect$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@ExecWB$qqr20Shdocvw_tlb@OLECMDID25Shdocvw_tlb@OLECMDEXECOPTp10tagVARIANTt3
@Shdocvw_tlb@TInternetExplorerMedium@get_AddressBar$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Application$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Busy$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Container$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Document$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_FullName$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_FullScreen$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Height$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_HWND$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Left$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_LocationName$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_LocationURL$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_MenuBar$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Name$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Offline$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Parent$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Path$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_ReadyState$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_RegisterAsBrowser$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_RegisterAsDropTarget$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Resizable$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Silent$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_StatusBar$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_StatusText$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_TheaterMode$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_ToolBar$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Top$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_TopLevelContainer$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Type$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Visible$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@get_Width$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GetDefaultInterface$qv
@Shdocvw_tlb@TInternetExplorerMedium@GetDunk$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GetProperty$qqrpb
@Shdocvw_tlb@TInternetExplorerMedium@GoBack$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GoForward$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GoHome$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@GoSearch$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@InitServerData$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TInternetExplorerMedium@Navigate$qqrpbp10tagVARIANTt2t2t2
@Shdocvw_tlb@TInternetExplorerMedium@Navigate2$qqrp10tagVARIANTt1t1t1t1
@Shdocvw_tlb@TInternetExplorerMedium@PutProperty$qqrpb10tagVARIANT
@Shdocvw_tlb@TInternetExplorerMedium@QueryStatusWB$qqr20Shdocvw_tlb@OLECMDID
@Shdocvw_tlb@TInternetExplorerMedium@Quit$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@Refresh$qqrv
@Shdocvw_tlb@TInternetExplorerMedium@Refresh2$qqrp10tagVARIANT
@Shdocvw_tlb@TInternetExplorerMedium@set_AddressBar$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_FullScreen$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Height$qqrl
@Shdocvw_tlb@TInternetExplorerMedium@set_Left$qqrl
@Shdocvw_tlb@TInternetExplorerMedium@set_MenuBar$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Offline$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_RegisterAsBrowser$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_RegisterAsDropTarget$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Resizable$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Silent$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_StatusBar$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_StatusText$qqrpb
@Shdocvw_tlb@TInternetExplorerMedium@set_TheaterMode$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_ToolBar$qqri
@Shdocvw_tlb@TInternetExplorerMedium@set_Top$qqrl
@Shdocvw_tlb@TInternetExplorerMedium@set_Visible$qqrs
@Shdocvw_tlb@TInternetExplorerMedium@set_Width$qqrl
@Shdocvw_tlb@TInternetExplorerMedium@ShowBrowserBar$qqrp10tagVARIANTt1t1
@Shdocvw_tlb@TInternetExplorerMedium@Stop$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@
@Shdocvw_tlb@TShellFavoritesNameSpace@$bctr$qqrp25System@Classes@TComponent
@Shdocvw_tlb@TShellFavoritesNameSpace@BeforeDestruction$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Connect$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@ConnectTo$qqr75%TComInterface$27Shdocvw_tlb@IShellNameSpacepx5_GUID$gIID_IShellNameSpace$%
@Shdocvw_tlb@TShellFavoritesNameSpace@CreateSubscriptionForSelection$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@DeleteSubscriptionForSelection$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Disconnect$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Expand$qqr10tagVARIANTi
@Shdocvw_tlb@TShellFavoritesNameSpace@Export$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Columns$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_CountViewTypes$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Depth$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_EnumOptions$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Flags$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Mode$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_Root$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_SelectedItem$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_SubscriptionsEnabled$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@get_TVFlags$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@GetDefaultInterface$qv
@Shdocvw_tlb@TShellFavoritesNameSpace@GetDunk$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Import$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@InitServerData$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@InvokeContextMenuCommand$qqrpb
@Shdocvw_tlb@TShellFavoritesNameSpace@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TShellFavoritesNameSpace@MoveSelectionDown$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@MoveSelectionTo$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@MoveSelectionUp$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@NewFolder$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@ResetSort$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@SelectedItems$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Columns$qqrpb
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Depth$qqri
@Shdocvw_tlb@TShellFavoritesNameSpace@set_EnumOptions$qqrl
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Flags$qqrul
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Mode$qqrui
@Shdocvw_tlb@TShellFavoritesNameSpace@set_Root$qqr10tagVARIANT
@Shdocvw_tlb@TShellFavoritesNameSpace@set_SelectedItem$qqrp9IDispatch
@Shdocvw_tlb@TShellFavoritesNameSpace@set_TVFlags$qqrul
@Shdocvw_tlb@TShellFavoritesNameSpace@SetRoot$qqrpb
@Shdocvw_tlb@TShellFavoritesNameSpace@SetViewType$qqri
@Shdocvw_tlb@TShellFavoritesNameSpace@Synchronize$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@UnselectAll$qqrv
_DataModule1
_DataModuleInit
_frmActivationOk
_frmAlert
_frmCaptcha
_frmCaptionPanel
_frmConnection
_frmConnectionError
_frmErrorReport
_frmInfo
_frmMain
_frmNotification
_frmPasswordSetup
_frmProtectionGroup
_frmReminder
_frmSettings
_frmSpecialPanel
_frmStartProgress
_TGlassButton
DLLFireUninstallEvent
GetDriverInfoFromDevice
InitIntelliGuard
IntelliDownloadAndLoadDB
IntelliGuardAddEvent
IntelliGuardAddSample
IntelliGuardChangeSettings
IntelliGuardCompatTestRegisterCallback
IntelliGuardCompatTestStruct
IntelliGuardGetDecisionByFilePath
IntelliGuardIsMonitorProcessCreationEnabled
IntelliGuardVersion
InvokeHookChain
KCSDKCopyFiles
KCSDKEnableDisableEncryption
KCSDKInit
KCSDKInstall
KCSDKIsEncryptionEnabled
KCSDKStart
KCSDKTestMe
KCSDKUnInstall
madTraceProcess
UninitializeHooks
ZALAddRuleByMD5
ZALBlockHooks
ZALDeleteRule
ZALGetBehaviourDescription
ZALGetDecisionByMD5
ZALGetDriverVersion
ZALGetLogsCount
ZALGetRules
ZALGetRulesCount
ZALGetRulesInternal
ZALGetSettings
ZALInit
ZALInstallDriver
ZALModifyRule
ZALRegisterProtectedProcess
ZALRegisterSetupProcess
ZALSaveRulesDecrypted
ZALSetHooks
ZALSetSettings
ZALShowCaptcha
ZALUninstallDriver

AntiLogger.exe

Zemana AntiLogger by Zemana Ltd. (Signed)

Remove AntiLogger.exe
Version:   1.9.3.454
MD5:   966511572eb360d49d9bd95fc0f0f35d
SHA1:   0261291a6d80ee1abe98340877fae46432589eca
SHA256:   426732af16c39339d8fe1421717be8c4d6948974002349a34dee71327c435787

Overview

antilogger.exe executes as a process with the local user's privileges. It is set to be start when the PC boots and any user logs into Windows (added to the Run registry key for the all users under the local machine). This is typically installed with the program AntiLogger published by Zemana Ltd.. The file is digitally signed by Zemana Ltd. which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:antilogger.exe
Publisher:Zemana Ltd.
Product name:Zemana AntiLogger
Description:Zemana AntiLogger User Interface
Typical file path:C:\Program Files\antilogger\antilogger.exe
File version:1.9.3.454
Size:16.09 MB (16,866,728 bytes)
Build date:5/29/2013 1:59 PM
Certificate
Issued to:Zemana Ltd.
Authority (CA):VeriSign
Effective date:Thursday, December 6, 2012
Expiration date:Monday, January 6, 2014
Digital DNA
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
Zemana Ltd.
9% remove
Zemana AntiLogger is a powerful, efficient, and lightweight app that blocks hackers. It detects any attempts to modify your computer’s settings, record your activities, hook to your PC’s sensitive processes, or inject malicious code in your system. The AntiLogger is designed to work with your anti-virus. While an anti-virus application will protect you against a wide range of known forms of malware, the AntiLogger is able to stop advanc...

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'AntiLogger' → "C:\Program Files\AntiLogger\AntiLogger.exe" /minimized

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.05542324%
0.028634%
Kernel CPU:0.02437629%
0.013761%
User CPU:0.03104695%
0.014873%
Kernel CPU time:9,703 ms/min
100,923,805ms/min
Memory
Private memory:40.07 MB
21.59 MB
Private (maximum):47.14 MB
Private (minimum):2.02 MB
Non-paged memory:40.07 MB
21.59 MB
Virtual memory:150.14 MB
140.96 MB
Virtual memory (peak):166.9 MB
169.69 MB
Working set:6.38 MB
18.61 MB
Working set (peak):62.11 MB
37.95 MB
Resource allocations
Threads:14
12
Handles:516
600
GUI GDI count:338
103
GUI USER count:128
49

BehaviorsProcess properties

Tray notification:Yes
Integrety level:Undefined
Platform:32-bit
Command line:"C:\Program Files\antilogger\antilogger.exe" /minimized
Owner:User
Parent process:Explorer.EXE (Windows Explorer by Microsoft)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 66.67%
Microsoft Windows XP 16.67%
Windows 8 Pro 16.67%

Distribution by countryDistribution by country

United States installs about 66.67% of Zemana AntiLogger.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Toshiba 60.00%
ASUS 20.00%
Intel 20.00%
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE