Overview

overview

9

Static

static

1

be6a0c38db...5b.exe

windows7-x64

8

be6a0c38db...5b.exe

windows10-2004-x64

9

Analysis

  • max time kernel
    150s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-03-2023 04:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    be6a0c38db27a1c66132519bc9f99317e50a8edc8676307e53d8827e9f6abd5b.exe

  • Size

    2.8MB

  • MD5

    3d5296fdc54537f00ad5c4d13413135f

  • SHA1

    374021fc54737ec0b3aaac03803b35511f01584c

  • SHA256

    be6a0c38db27a1c66132519bc9f99317e50a8edc8676307e53d8827e9f6abd5b

  • SHA512

    d446ea63e6d3828fb7eb71d6940b638f632e58bd8909b72ce67927735cbd0b40eb3c877a030b473237ec8700ba41e981bbff320b62bc9b8a4c37cca083e768b3

  • SSDEEP

    49152:vPgSCgaih1zKkD8zGqpZEDSF4wHF016k4xIUESmlwdib2c:vPgSCgaihRKkD8zGqpZEOF3uFJYGb2c

Score
9/10
bootkitdiscoveryevasionpersistencespywarestealertrojanupx

Malware Config

Signatures

  • Checks for common network interception software 1 TTPs

    Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

    evasion
  • Downloads MZ/PE file
  • Drops file in Drivers directory 19 IoCs
  • Sets file execution options in registry 2 TTPs 28 IoCs
    persistence
  • Sets service image path in registry 2 TTPs 10 IoCs
    persistence
  • ACProtect 1.3x - 1.4x DLL software 2 IoCs

    Detects file using ACProtect software.

  • Checks computer location settings 2 TTPs 1 IoCs

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE 23 IoCs
  • Loads dropped DLL 64 IoCs
  • Reads user/profile data of web browsers 2 TTPs

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer
  • Registers COM server for autorun 1 TTPs 3 IoCs
    persistence
  • UPX packed file 12 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Adds Run key to start application 2 TTPs 2 IoCs
    persistence
  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Checks whether UAC is enabled 1 TTPs 1 IoCs
    evasiontrojan
  • Drops desktop.ini file(s) 2 IoCs
  • Enumerates connected drives 3 TTPs 23 IoCs

    Attempts to read the root path of hard drives other than the default C: drive.

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

    bootkitpersistence
  • Drops file in System32 directory 1 IoCs
  • Checks for VirtualBox DLLs, possible anti-VM trick 1 TTPs 1 IoCs

    Certain files are specific to VirtualBox VMs and can be used to detect execution in a VM.

  • Drops file in Program Files directory 64 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

  • Checks processor information in registry 2 TTPs 3 IoCs

    Processor information is often read in order to detect sandboxing environments.

  • Enumerates system info in registry 2 TTPs 2 IoCs
  • Modifies Internet Explorer settings 1 TTPs 4 IoCs
    adwarespyware
  • Modifies data under HKEY_USERS 42 IoCs
  • Modifies registry class 57 IoCs
  • Modifies system certificate store 2 TTPs 8 IoCs
    evasionspywaretrojan
  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious behavior: LoadsDriver 5 IoCs
  • Suspicious use of AdjustPrivilegeToken 40 IoCs
  • Suspicious use of FindShellTrayWindow 64 IoCs
  • Suspicious use of SendNotifyMessage 64 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Windows\Explorer.EXE
    C:\Windows\Explorer.EXE
    1⤵
      PID:2416
      • C:\Users\Admin\AppData\Local\Temp\be6a0c38db27a1c66132519bc9f99317e50a8edc8676307e53d8827e9f6abd5b.exe
        "C:\Users\Admin\AppData\Local\Temp\be6a0c38db27a1c66132519bc9f99317e50a8edc8676307e53d8827e9f6abd5b.exe"
        2⤵
        • Drops file in Drivers directory
        • Sets file execution options in registry
        • Loads dropped DLL
        • Registers COM server for autorun
        • Adds Run key to start application
        • Checks whether UAC is enabled
        • Drops desktop.ini file(s)
        • Writes to the Master Boot Record (MBR)
        • Drops file in Program Files directory
        • Modifies registry class
        • Suspicious behavior: EnumeratesProcesses
        • Suspicious use of AdjustPrivilegeToken
        • Suspicious use of FindShellTrayWindow
        • Suspicious use of SendNotifyMessage
        • Suspicious use of WriteProcessMemory
        PID:4120
        • C:\Users\Admin\AppData\Local\Temp\KDbCIHelper.exe
          "C:\Users\Admin\AppData\Local\Temp\KDbCIHelper.exe" -release
          3⤵
          • Executes dropped EXE
          PID:1864
        • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kavlog2.exe
          "c:\program files (x86)\kingsoft\kingsoft antivirus\kavlog2.exe" -install
          3⤵
          • Executes dropped EXE
          • Loads dropped DLL
          • Drops file in System32 directory
          PID:2676
        • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\ksoftmgr.exe
          "c:\program files (x86)\kingsoft\kingsoft antivirus\ksoftmgr.exe" -preload
          3⤵
          • Executes dropped EXE
          • Loads dropped DLL
          • Modifies Internet Explorer settings
          • Suspicious use of SetWindowsHookEx
          PID:4204
        • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kxetray.exe
          "c:\program files (x86)\kingsoft\kingsoft antivirus\kxetray.exe" /autorun /hidefloatwin /silentinstrcmd
          3⤵
          • Sets service image path in registry
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          • Enumerates connected drives
          • Checks for VirtualBox DLLs, possible anti-VM trick
          • Drops file in Program Files directory
          • Checks processor information in registry
          • Enumerates system info in registry
          • Modifies registry class
          • Modifies system certificate store
          • Suspicious behavior: EnumeratesProcesses
          • Suspicious use of AdjustPrivilegeToken
          • Suspicious use of SetWindowsHookEx
          • Suspicious use of WriteProcessMemory
          PID:3924
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -updateliebaowifi
            4⤵
            • Executes dropped EXE
            PID:924
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -updatetaguser
            4⤵
            • Executes dropped EXE
            PID:4012
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -kdeskcanrcmd
            4⤵
            • Executes dropped EXE
            PID:4576
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -updateliebaowifi
            4⤵
            • Executes dropped EXE
            PID:3632
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -updatetaguser
            4⤵
            • Executes dropped EXE
            PID:2724
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -kdeskcanrcmd
            4⤵
            • Executes dropped EXE
            PID:4408
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -updateliebaowifi
            4⤵
            • Executes dropped EXE
            PID:2700
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -updatetaguser
            4⤵
            • Executes dropped EXE
            PID:968
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -kdeskcanrcmd
            4⤵
            • Executes dropped EXE
            PID:3724
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -updateliebaowifi
            4⤵
            • Executes dropped EXE
            PID:4784
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -updatetaguser
            4⤵
            • Executes dropped EXE
            PID:2020
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -kdeskcanrcmd
            4⤵
            • Executes dropped EXE
            PID:1188
          • C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe
            "C:\program files (x86)\kingsoft\kingsoft antivirus\rcmdhelper.exe" -kdeskreport
            4⤵
            • Executes dropped EXE
            • Suspicious behavior: EnumeratesProcesses
            PID:5224
          • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kwsprotect64.exe
            "kwsprotect64.exe" (null)
            4⤵
            • Executes dropped EXE
            • Suspicious use of SetWindowsHookEx
            PID:5128
        • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kislive.exe
          "c:\program files (x86)\kingsoft\kingsoft antivirus\kislive.exe" /autorun /std /skipcs3
          3⤵
          • Executes dropped EXE
          • Loads dropped DLL
          • Drops file in Program Files directory
          • Suspicious use of AdjustPrivilegeToken
          PID:224
        • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kxescore.exe
          "c:\program files (x86)\kingsoft\kingsoft antivirus\kxescore.exe" /start kxescore
          3⤵
          • Executes dropped EXE
          • Loads dropped DLL
          • Suspicious behavior: EnumeratesProcesses
          PID:208
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kxescore.exe
      "c:\program files (x86)\kingsoft\kingsoft antivirus\kxescore.exe" /service kxescore
      1⤵
      • Drops file in Drivers directory
      • Sets service image path in registry
      • Executes dropped EXE
      • Loads dropped DLL
      • Drops file in Program Files directory
      • Modifies data under HKEY_USERS
      • Modifies registry class
      • Modifies system certificate store
      • Suspicious behavior: EnumeratesProcesses
      • Suspicious use of AdjustPrivilegeToken
      PID:464

    Network

    MITRE ATT&CK Matrix ATT&CK v6

    Initial Access

    Execution

    Persistence

    Registry Run Keys / Startup Folder

    4
    T1060

    Bootkit

    1
    T1067

    Privilege Escalation

    Defense Evasion

    Modify Registry

    5
    T1112

    Install Root Certificate

    1
    T1130

    Credential Access

    Credentials in Files

    1
    T1081

    Discovery

    Software Discovery

    1
    T1518

    Query Registry

    5
    T1012

    System Information Discovery

    7
    T1082

    Peripheral Device Discovery

    1
    T1120

    Lateral Movement

    Collection

    Data from Local System

    1
    T1005

    Exfiltration

    Command and Control

    Impact

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\bdmisc.dat
      Filesize

      58B

      MD5

      c24f18806b761335f45bd4a3091b63e6

      SHA1

      56edd686af56e0c2937eab46af0beda35ff73e77

      SHA256

      74d59cd6703f2fbe43b7a8eca6d1c58e8d68647a420916bc0957285502251ecf

      SHA512

      8a502d26eec81a4c9c2d299cdcae2b2d2b013f8c81871f7dee3fffb2fb2a3c0ca7b73cc007fd3673ef27cfc9a5812c2a074503d8ab30676db6e25329e01a04f1

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\calendar\kcalendarsetting.ini
      Filesize

      68B

      MD5

      f02f0697dbe4ff406396e2f8993fa238

      SHA1

      529ece07f46a23a8afca53103718239690b3aced

      SHA256

      9366579a29cb11c991a44cfc60c1fdb10af802020315a4d2f2ec9ff71e7671c7

      SHA512

      85fa218f130250df57ea8cc1edc430aa6af4a89752498116f8b8747c9946091bade9211831c4623913496bf0031e6e26a3b93e1c34c4855c89ba9e0d28b75ace

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\floatskin\user.ini
      Filesize

      87B

      MD5

      c9318f08636e02a4087b2f55f0e1001b

      SHA1

      58e41be9123f11ded38175314d8646f73db56d4a

      SHA256

      0a3846d0b8365846b1588911278b86e31f2d029a65935d712f2f61c1d2b70251

      SHA512

      764f8b97e6fc8c047490a81d573b08ec6c201ece34949ade7c95c4a4252b8e5f20bd47e46e831c3a10a905d7a4dd351f4122ecd25fc1d8edc49b8dcb22bfad70

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\floatwinsetting.ini
      Filesize

      35B

      MD5

      feeac5d6fbee0b26a583bb2e0e4df453

      SHA1

      bacdddb967627db6a37dcf13299ca36fcb7e1a61

      SHA256

      9291a221a60ecc514b128cc063612599a29b939221dc16c0641c25739c0a4c8c

      SHA512

      7fd897d734b64517c0e450f3ad659c630759797d20c425a731add8752acfa4f9315b80036d9d05319fa589aabdd978112815584ae5ab00cd4641cd276bd27266

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\kinstalledsoft.dat
      Filesize

      3KB

      MD5

      b90fa7bc91d1e16f5848e0b2f4cf2a8a

      SHA1

      68ab11aff796605048fd9210a79384927043f677

      SHA256

      0af92749663d03d91b5c09df94cf1c6dbe3ac5daf2b8d6e5ac9bdeb7082a09ca

      SHA512

      6deada2012da796fdb13b5a63acd29392d44252f37f5d750d7751cf498414f40206b0d080f68c66250ba8d1176fa604e66133211aa90d084bffb2792ddfee399

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\krcmdmon\index.dat
      Filesize

      3KB

      MD5

      bd8a5bd45acb4f4232e3024e8f6708b6

      SHA1

      f5eae1fae697923a824411ada631571c9ea5bfeb

      SHA256

      9b4d725de88c45bcc61b8061a5696319226e89edf07485b56c7a5b6d8accc605

      SHA512

      342295b4151adbb2f7bcf46913ff03a013614a1ed7bbf00caf950cfdb885961d3ea8e46bd1086829d1ba8d2d23d5a2ad7a083e9bb94b95a5655ec02db92eebb0

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\krcmdmon\pack\tip_2016_0920.dat
      Filesize

      91KB

      MD5

      e40e4575ac7d74112cbcaa931c58cc2d

      SHA1

      e711e264fdaa6e01e8447cbf49d2c76b3b466145

      SHA256

      08df25aaaa521640f6e6c678f6e991c05fef327c4e9d82fcb09c3acc2c3be0c5

      SHA512

      ae1322453dbac4f01998af6f993925a4a6799d3af34f6051d2f6ef0d776f1f91a8c14cbb4134b69419e6d8232143ce9b5b7ee6767b1a90ee11f3d5b581e85ad7

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\ksofticondownloader.dat
      Filesize

      26B

      MD5

      6565a7227042d878a6f35019de3c35c4

      SHA1

      964b048d29f09f92c5882b3194b622f6312bf672

      SHA256

      294b9aaf2e3bcd5e4694d164f30e727d5653301887f8f63de5c9e4232115a011

      SHA512

      30d143a73529099b1e76a0630ca8e2798a6379ebcfc822b31617ba03e679ce969a14ee0e58e8a16c489238f059f20217f29014a59eece45de4b9fd9f5e34b085

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\rcmdlocal.dat
      Filesize

      146B

      MD5

      adf6ce53718b3313dcfcf877e6db76f5

      SHA1

      ef6e21ecb905edff93c920096b55b09d96aad04e

      SHA256

      bc00f18c6234455df951c6cb0d19a175db5217679bafef53d29d987e46aedcf6

      SHA512

      92a55fb93f6964eed499cc0ec5aba0ee37c92329dc99eab55158c06dea9171af95c7ad573378887a4fa333d1b2603eec399e2a4787e750a28ce3f5dbc562a552

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\rcmdv2sp01\push_type_record.dat
      Filesize

      128B

      MD5

      e571e1128d9551bb0e56a984ad7dcd52

      SHA1

      402547b5b148b7701ab1380974886cf4ca48c406

      SHA256

      6b6903103bb98866f0861652578d7d3c59cf38056883382ef69a70e7c3d47b41

      SHA512

      dfdffc10af4a19bc5ccdd23d96d6733c34b7c7f49ed212ff41adfabe9626a1f9a0911b47c300da9574d7fe09cc2e9854f79281807f7e3d99940ac2018abac61d

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\data\rcmdv2sp01\push_type_record.dat
      Filesize

      270B

      MD5

      b7d740a131ae693592a5d4a152029ec6

      SHA1

      88d84b81c6206bb7773d72ae93392d630b02c28d

      SHA256

      f1d278a51be012804fe64bc1c89fff0384c45da6c42046f832a587447d50e67d

      SHA512

      7ddec82d95e15e86bcdc3f671142e7ef878d9ba1732aa071a20a2d02229bc2155c674252f38c2aa3a69a98f475dcd795c86a4488c6f253ee9dface2e463b1f5d

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kadblock\kadblockcfg.ini
      Filesize

      225B

      MD5

      df7a7f09e6efc85054458a312474d692

      SHA1

      41727cf523dd7979ff49dba2ca85c9b568ff4855

      SHA256

      fbee6526cdfc3a098c136bbe68f5b7c16142e123dba02ea66ff8063056acca09

      SHA512

      a79ff7f0264e76396eec73fd751d90f0c9a9a1ba111bb2e87a4d15057b48a0bf341bdefc4085b70ddfe4d7625ae18eddb62264b642282066f0dcd4199dd6f4be

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kavevent.dll
      Filesize

      90KB

      MD5

      80f899ca024ddcf5218a4fadeacaec54

      SHA1

      2756821bde2d8eb44b04da63afbf5496565ddf71

      SHA256

      2a0d8c0778ef91c5e9f7ffac47a0e49a4055d50556895822d84adcbce9375c17

      SHA512

      ae871718f3eb2bcdd4bc6d41a691e9684a98a022d0db9d9444470820847e648e369a5f0c7887dc31d6ffa51572634345fe2448c1defe8535eb79c30f8202f41f

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kavevent.dll
      Filesize

      90KB

      MD5

      80f899ca024ddcf5218a4fadeacaec54

      SHA1

      2756821bde2d8eb44b04da63afbf5496565ddf71

      SHA256

      2a0d8c0778ef91c5e9f7ffac47a0e49a4055d50556895822d84adcbce9375c17

      SHA512

      ae871718f3eb2bcdd4bc6d41a691e9684a98a022d0db9d9444470820847e648e369a5f0c7887dc31d6ffa51572634345fe2448c1defe8535eb79c30f8202f41f

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kavlog2.exe
      Filesize

      522KB

      MD5

      c7256e3f7702a3848f0259b3cbaf712d

      SHA1

      d268660245346fc92c2832a47e84ae03e6f9ecda

      SHA256

      009d63fbb8f3ab13c0a1a6559c83a493dffa1fbd63c1f243d0ca3f188e489bac

      SHA512

      e9a8e458c82aab1b71618d2391df7a60809d0a711f35e7b45609c3335ab39ec13ff1ec67043781210503ac0f7cd5a836c96d422405b7e3b073ec19463eb2f91f

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kavmenu.dll
      Filesize

      181KB

      MD5

      afe49a8d1f66320acd18cdf54ae11423

      SHA1

      44f2cd0a68c659f90d371b54deae0de41ddde98d

      SHA256

      54b370fc596fe4bc32d4b71d371e2c077dd040f520e13d6722a254c95ae98d1a

      SHA512

      f0a5e0f08af38d92d3adbae80c19be6e51e739f674a39d4a1aa9e460d8cfedcc9a2373575c83055b26688bf9196560d71cf9d8b5dee595a82b8f892e80a788dc

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kavmenu.dll
      Filesize

      181KB

      MD5

      afe49a8d1f66320acd18cdf54ae11423

      SHA1

      44f2cd0a68c659f90d371b54deae0de41ddde98d

      SHA256

      54b370fc596fe4bc32d4b71d371e2c077dd040f520e13d6722a254c95ae98d1a

      SHA512

      f0a5e0f08af38d92d3adbae80c19be6e51e739f674a39d4a1aa9e460d8cfedcc9a2373575c83055b26688bf9196560d71cf9d8b5dee595a82b8f892e80a788dc

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kavmenu.dll
      Filesize

      181KB

      MD5

      afe49a8d1f66320acd18cdf54ae11423

      SHA1

      44f2cd0a68c659f90d371b54deae0de41ddde98d

      SHA256

      54b370fc596fe4bc32d4b71d371e2c077dd040f520e13d6722a254c95ae98d1a

      SHA512

      f0a5e0f08af38d92d3adbae80c19be6e51e739f674a39d4a1aa9e460d8cfedcc9a2373575c83055b26688bf9196560d71cf9d8b5dee595a82b8f892e80a788dc

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kcmppinvoker.dll
      Filesize

      180KB

      MD5

      9f70191eae1688db0d18f8d956a88383

      SHA1

      46c96305f5f33c1162609dc82f383db538cf428b

      SHA256

      1f39d69c8efb14b77795c139ee76ecc5cb3d2bd16ef587efd996814c9151b664

      SHA512

      017fb06d89268b5c6abb67890497e7edda46077da3dc3cfff322eb5e0ea475ca5796eea287e81fa3b01aa730dda8e705c8cb0e9a198ad419ac48287d29888f4f

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kcmppinvoker.dll
      Filesize

      180KB

      MD5

      9f70191eae1688db0d18f8d956a88383

      SHA1

      46c96305f5f33c1162609dc82f383db538cf428b

      SHA256

      1f39d69c8efb14b77795c139ee76ecc5cb3d2bd16ef587efd996814c9151b664

      SHA512

      017fb06d89268b5c6abb67890497e7edda46077da3dc3cfff322eb5e0ea475ca5796eea287e81fa3b01aa730dda8e705c8cb0e9a198ad419ac48287d29888f4f

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\keasyipcn.dll
      Filesize

      103KB

      MD5

      93743861a54413c1454845b3b6f50f4d

      SHA1

      b0be47cde5aa95b5d911107bf1af98109a7bef74

      SHA256

      63e3807a73157f64db94e975569597665ece35f7234137adc21fa62a85eaa5a0

      SHA512

      a02707c680ddb5c1645fde212fc75e11b687d8dafddc83f7ae7824f8c425d2c13b1af0e3adb079de904e46d6f9477a6fc09fd6662643c1bc139cb496e873e83b

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\keasyipcn.dll
      Filesize

      103KB

      MD5

      93743861a54413c1454845b3b6f50f4d

      SHA1

      b0be47cde5aa95b5d911107bf1af98109a7bef74

      SHA256

      63e3807a73157f64db94e975569597665ece35f7234137adc21fa62a85eaa5a0

      SHA512

      a02707c680ddb5c1645fde212fc75e11b687d8dafddc83f7ae7824f8c425d2c13b1af0e3adb079de904e46d6f9477a6fc09fd6662643c1bc139cb496e873e83b

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kislive.exe
      Filesize

      1.2MB

      MD5

      6a001678ac0bee54a27191a7c72b0f56

      SHA1

      55bf2ad857a80ca60782c0c524e25c0963747788

      SHA256

      7bad0cbcf9679723fdc5663ea20ff4d0c37a1bd292177ab40329ebcb0163dfcd

      SHA512

      7873a235125288d83a617bc05b77d807e03558fba1f10d6efd5c02e10c256d2d6e7b56b40adadf50879ee40847454edf59afbdb9e640a52c6112d0abf6367a3b

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kislive.exe
      Filesize

      1.2MB

      MD5

      6a001678ac0bee54a27191a7c72b0f56

      SHA1

      55bf2ad857a80ca60782c0c524e25c0963747788

      SHA256

      7bad0cbcf9679723fdc5663ea20ff4d0c37a1bd292177ab40329ebcb0163dfcd

      SHA512

      7873a235125288d83a617bc05b77d807e03558fba1f10d6efd5c02e10c256d2d6e7b56b40adadf50879ee40847454edf59afbdb9e640a52c6112d0abf6367a3b

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kislive.log
      Filesize

      1KB

      MD5

      44296db606de2936b73f7bc6d1062ce0

      SHA1

      46b1d4f2b71230cb20128bcf655053fa3ee1bfc4

      SHA256

      a249b751585dc539b9bf428403cd7d51f578de2432e0284602ea2c9166aa174e

      SHA512

      eb85c71b016084836689770c58217b0243075fcf2b949b83112dadcdb5603280296398bb3274599b83921f9d55137b0993d6ff02469f448794a990838628c94b

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kislive.log
      Filesize

      8KB

      MD5

      5867c4f5f7d4f927a82eede0998a32cb

      SHA1

      168ec87f8927ca0d1d90a1e41c27bef8f20d6a49

      SHA256

      b8e79dab25329d7446ab290ce5a330e2551c6094bf4dc9c333dddba437b589df

      SHA512

      546197bd3c3b4d68008989e8c9b8fc234e83231fa07125b2d1d7e8dca690c41a142818f6579a1c8d8f70964612e818cdc053ec3de9f67a2f4ffb01fbb48e8eff

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kpopclt.dll
      Filesize

      213KB

      MD5

      1dd2c3ecae68a35cde2d586aa24e0f25

      SHA1

      600f6a6af5b43a00c5ddd040a79afbeadba053cf

      SHA256

      905fbcb0f93015941e884bd37b5d196788bc4422919fead4be12fbfd42fb5440

      SHA512

      237f5623042dfab544458847cebe1a5f95bf83165d6155086378976b1082d7709b0fe8379ba15fff8ea39664ffe67546719983d27ce3e82cec6ac667e0f78145

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\krcmddown.dll
      Filesize

      839KB

      MD5

      63360a028bf1d86ea9d2c1672ac589b8

      SHA1

      16f65a3584994c3cc6a090c19730f48867a199a2

      SHA256

      6e6dc5e7f22804c4b08c02ba3ed11f1e4e948180728340a2e89e16743d01aafc

      SHA512

      bb2fad365e7e66cbaab18f5d26a2cacf5043f68d32787037756bf5d01de0e689afd66b132784ba453c323729eecdca679e7c9885b02968a1000a089c72dd7bea

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\krcmdmon.dll
      Filesize

      3.0MB

      MD5

      24f59f1f237405e05379d3a78495d0ab

      SHA1

      3120ba8fea94473abb7fd0b53b81089cb03d5e6b

      SHA256

      4285af9a3b8473071dc6718678f2c4b1d2af447001b0bcb1b1395310c6d3718b

      SHA512

      eb8261336a72caf5d794b4e13062c8b71bfcb0fdd326581667cb285608983849cb52f551340e9bc2202ced5a6f016adc8e4729d4449e62bf439b5845dca65594

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ksapi.dll
      Filesize

      225KB

      MD5

      53d5bd1f2c298d0cb238a7704abe92c4

      SHA1

      0dca1f642ba188724d29f434ce305c07ca776747

      SHA256

      ee25855e8b89b7ae673f29bac9fd864615d769776393ba890cbb9549614be6bb

      SHA512

      da70ab26e77a1f8b28ea8bdbc242fd9bbdd1aed6f058b9f4a83f58df57f292fafc35a469bfe1eda700767694dcffa577262aa033da439482aaa412de9033fc3d

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ksapi.dll
      Filesize

      225KB

      MD5

      53d5bd1f2c298d0cb238a7704abe92c4

      SHA1

      0dca1f642ba188724d29f434ce305c07ca776747

      SHA256

      ee25855e8b89b7ae673f29bac9fd864615d769776393ba890cbb9549614be6bb

      SHA512

      da70ab26e77a1f8b28ea8bdbc242fd9bbdd1aed6f058b9f4a83f58df57f292fafc35a469bfe1eda700767694dcffa577262aa033da439482aaa412de9033fc3d

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ksapi.dll
      Filesize

      225KB

      MD5

      53d5bd1f2c298d0cb238a7704abe92c4

      SHA1

      0dca1f642ba188724d29f434ce305c07ca776747

      SHA256

      ee25855e8b89b7ae673f29bac9fd864615d769776393ba890cbb9549614be6bb

      SHA512

      da70ab26e77a1f8b28ea8bdbc242fd9bbdd1aed6f058b9f4a83f58df57f292fafc35a469bfe1eda700767694dcffa577262aa033da439482aaa412de9033fc3d

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ksapi.dll
      Filesize

      225KB

      MD5

      53d5bd1f2c298d0cb238a7704abe92c4

      SHA1

      0dca1f642ba188724d29f434ce305c07ca776747

      SHA256

      ee25855e8b89b7ae673f29bac9fd864615d769776393ba890cbb9549614be6bb

      SHA512

      da70ab26e77a1f8b28ea8bdbc242fd9bbdd1aed6f058b9f4a83f58df57f292fafc35a469bfe1eda700767694dcffa577262aa033da439482aaa412de9033fc3d

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ksapi64.dll
      Filesize

      193KB

      MD5

      2e67447a0b7f3192d09290503b96b738

      SHA1

      fccdb3ed95f71304e40b54c38c0d1a44b083c2e3

      SHA256

      7441b31adbe9c1cdb5af51569b7b32218def2d691f7fad07d1e6be60a3a48041

      SHA512

      1381828c17b1448b8321c2be0509e90742a9235063183bea850bbf940c133eda1b4e67a382750de44dc5a8afe28de05e2047c13ba21c286f9c29e184b2b58b9e

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ksapi64.dll
      Filesize

      193KB

      MD5

      2e67447a0b7f3192d09290503b96b738

      SHA1

      fccdb3ed95f71304e40b54c38c0d1a44b083c2e3

      SHA256

      7441b31adbe9c1cdb5af51569b7b32218def2d691f7fad07d1e6be60a3a48041

      SHA512

      1381828c17b1448b8321c2be0509e90742a9235063183bea850bbf940c133eda1b4e67a382750de44dc5a8afe28de05e2047c13ba21c286f9c29e184b2b58b9e

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ksapi64.dll
      Filesize

      193KB

      MD5

      2e67447a0b7f3192d09290503b96b738

      SHA1

      fccdb3ed95f71304e40b54c38c0d1a44b083c2e3

      SHA256

      7441b31adbe9c1cdb5af51569b7b32218def2d691f7fad07d1e6be60a3a48041

      SHA512

      1381828c17b1448b8321c2be0509e90742a9235063183bea850bbf940c133eda1b4e67a382750de44dc5a8afe28de05e2047c13ba21c286f9c29e184b2b58b9e

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kskinmgr.dll
      Filesize

      975KB

      MD5

      9152c4b02a92bdc24dc63efc86fcbc4e

      SHA1

      3e0c9f8406e4ae94b10eab6ce0e66a46bd6e380a

      SHA256

      aaa1aeab64e409bedc751009a8a55d9a081dfade787c6dc9d7272ac2a7489093

      SHA512

      c42cd9deeaafbedd8782f870ece90fcfb8b84bc06e04be4c615d622533b7ec809b93029985f703dfe1c196bd4f8054b9b79180ccf59f7039f2834bcf84bf8de4

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kskinmgr.dll
      Filesize

      975KB

      MD5

      9152c4b02a92bdc24dc63efc86fcbc4e

      SHA1

      3e0c9f8406e4ae94b10eab6ce0e66a46bd6e380a

      SHA256

      aaa1aeab64e409bedc751009a8a55d9a081dfade787c6dc9d7272ac2a7489093

      SHA512

      c42cd9deeaafbedd8782f870ece90fcfb8b84bc06e04be4c615d622533b7ec809b93029985f703dfe1c196bd4f8054b9b79180ccf59f7039f2834bcf84bf8de4

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ksoftmgr.exe
      Filesize

      3.6MB

      MD5

      ec97eb619fd07ba0aee6783eac3bcb47

      SHA1

      7f5788269192c59ad8cda179cbf3e5a4cc490972

      SHA256

      699605488bf15f37a167d105f8550c43225ac309bc1b4321e42172e32f70fb42

      SHA512

      e4f923235474b8df81ad407bc9a4e21e6ac6aaa0ae8f3fb3de13f4eb080d60d566035b52175214d416001caf7cf5c1484111799c43dea900aea9df3a87d4f272

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ktool_update\kdownload\indexkav.txt
      Filesize

      286B

      MD5

      79e551281a25eab54d3ca4db9b9fc4bb

      SHA1

      4203fb44067678ee9cde0c075ee623cc2fff8156

      SHA256

      1ac0d7af1391c35e97f9034277d3ad51bc59a015c93767d3660506eedde212fc

      SHA512

      4a00c46f16d3ff45fb582ca1da81b216f309ae851fa7b070734d27769cf225b7b3bf81a93d882597ca2e1836398822c14f3ed8c69d8e377ece64209479e4ece3

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ktool_update\kdownload\kav\index.dat
      Filesize

      80KB

      MD5

      155d5b2cc479531b451a3cd8257b26a2

      SHA1

      b925730f446359016a387e134b22bc5ded1e63d7

      SHA256

      ba39e3c3aab95dec44c266f05979ddaec128a5d03422a03ff296d37459c56f12

      SHA512

      7a2730ddbd42219dd33bf1e9f0671cc375fc42cb02897aab4d89ac23525fbcbb2bde243626ceb90c781342e39c9d37a7d71194232b9f58354034fecd66c9e922

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ktool_update\kdownload\kav\index.txt
      Filesize

      253KB

      MD5

      eb6e86f61097a1599ad0954597f8efbf

      SHA1

      ec56cf68b2718e494794489472693df7ece064db

      SHA256

      c77dbab36ec7b62dcb5f4c67d58a200842eebce60ee88c4e72e21990ef1aa881

      SHA512

      a745758abc01b2a4cd1d86f8b59b158fc905ac0299c969e62cb63e0b53234ba9f80c8a7e3a999c55b6514f04c3d0c72fa9c25631a7d988c7ba40238ff720879a

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kuidsrv.dll
      Filesize

      461KB

      MD5

      665ba4f0adcec026db80a191cbb92618

      SHA1

      7162645603079e9a1a2b77b7c48daec8ae180299

      SHA256

      bf088cc30af2d93728726f668511cfcb38c609b8b4771f599a4ad747ae61e7e8

      SHA512

      fb4a924dc2b4bd145e364a024c47bbbbab188d4a9b2c0d630894b971fa556d5fc600b1482ab95be1f7e8be2715ad4528602a5c020c355f755362f09eefba146b

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kuidsrv.dll
      Filesize

      461KB

      MD5

      665ba4f0adcec026db80a191cbb92618

      SHA1

      7162645603079e9a1a2b77b7c48daec8ae180299

      SHA256

      bf088cc30af2d93728726f668511cfcb38c609b8b4771f599a4ad747ae61e7e8

      SHA512

      fb4a924dc2b4bd145e364a024c47bbbbab188d4a9b2c0d630894b971fa556d5fc600b1482ab95be1f7e8be2715ad4528602a5c020c355f755362f09eefba146b

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kwhrequestor.dll
      Filesize

      617KB

      MD5

      a7405a1e67e65e1fc8b6bff36d9626ab

      SHA1

      22284f802c417afd111e54d33dc1b738a3fd767c

      SHA256

      e4484073cc318675a35b21f84ded98ce96a9bec1b084ea207fe31c531bf8d162

      SHA512

      ad8136ac4d395967d7b8d9f0fbd5222e1bf3c815d6a0c9f7541a59e5b29ed4120d6831d381fff020d6862a72547e78a355d830f251360aa267b89f9f54a17254

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kwhrequestor.dll
      Filesize

      617KB

      MD5

      a7405a1e67e65e1fc8b6bff36d9626ab

      SHA1

      22284f802c417afd111e54d33dc1b738a3fd767c

      SHA256

      e4484073cc318675a35b21f84ded98ce96a9bec1b084ea207fe31c531bf8d162

      SHA512

      ad8136ac4d395967d7b8d9f0fbd5222e1bf3c815d6a0c9f7541a59e5b29ed4120d6831d381fff020d6862a72547e78a355d830f251360aa267b89f9f54a17254

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kwsprotect64.exe
      Filesize

      516KB

      MD5

      cf2e53f8dbaa17134f2e7845bf832cb2

      SHA1

      cbcdbc2b9885538306cd1bbf0e286d0e25ee232b

      SHA256

      0e537552420beca4c120cabd4ac63ef28b41d292441c40485b43bb35b407f94f

      SHA512

      82ff9fb649734f0fd071aa3208caeb2977dc5cb8f9548f2fa71aecbce74124707bbe6f866eab61a89d15b9358c184f8618b9d431cf3011cdb036757c3ea99e5c

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kwsprotect64.log
      Filesize

      2B

      MD5

      f3b25701fe362ec84616a93a45ce9998

      SHA1

      d62636d8caec13f04e28442a0a6fa1afeb024bbb

      SHA256

      b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

      SHA512

      98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kxescore.exe
      Filesize

      318KB

      MD5

      7dacf31d3906c42de3529bba7f4f43cb

      SHA1

      6dccd65e7a19d5896fb33c12cbf3e54f01e992c3

      SHA256

      ae516a5ec2e01334edb329c4268186a8810f31cbdcb8eda9b8f4a3a393816bb9

      SHA512

      f05525c372a18fdca8439f79920ce1701d60862b576efd138f0427c7b32ae48aa466cceccc17d0f445ece1e50fc75a5848ad46795370d3bcfc7242d56c9c8da4

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kxescore.exe
      Filesize

      318KB

      MD5

      7dacf31d3906c42de3529bba7f4f43cb

      SHA1

      6dccd65e7a19d5896fb33c12cbf3e54f01e992c3

      SHA256

      ae516a5ec2e01334edb329c4268186a8810f31cbdcb8eda9b8f4a3a393816bb9

      SHA512

      f05525c372a18fdca8439f79920ce1701d60862b576efd138f0427c7b32ae48aa466cceccc17d0f445ece1e50fc75a5848ad46795370d3bcfc7242d56c9c8da4

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kxescore.exe
      Filesize

      318KB

      MD5

      7dacf31d3906c42de3529bba7f4f43cb

      SHA1

      6dccd65e7a19d5896fb33c12cbf3e54f01e992c3

      SHA256

      ae516a5ec2e01334edb329c4268186a8810f31cbdcb8eda9b8f4a3a393816bb9

      SHA512

      f05525c372a18fdca8439f79920ce1701d60862b576efd138f0427c7b32ae48aa466cceccc17d0f445ece1e50fc75a5848ad46795370d3bcfc7242d56c9c8da4

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kxetray.exe
      Filesize

      1.8MB

      MD5

      da752173d2f6e37fc7826144e12383da

      SHA1

      92c4b3f3ec780bd8651886623373ccc3b31c4b05

      SHA256

      8a0f744e1702d7e0867d0fbf2242a88aa686d8987af3fe67c62bdb97d6dd6234

      SHA512

      fe3dd83732c598d513bd2d5dde118f19111a3fa290591708057d9dbbde75d62460975e0016cf91da2199c71b00145d535bc3046118ca4b56d2cd89f73ef1c0b3

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\kxetray.exe
      Filesize

      1.8MB

      MD5

      da752173d2f6e37fc7826144e12383da

      SHA1

      92c4b3f3ec780bd8651886623373ccc3b31c4b05

      SHA256

      8a0f744e1702d7e0867d0fbf2242a88aa686d8987af3fe67c62bdb97d6dd6234

      SHA512

      fe3dd83732c598d513bd2d5dde118f19111a3fa290591708057d9dbbde75d62460975e0016cf91da2199c71b00145d535bc3046118ca4b56d2cd89f73ef1c0b3

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcp80.dll
      Filesize

      536KB

      MD5

      4c8a880eabc0b4d462cc4b2472116ea1

      SHA1

      d0a27f553c0fe0e507c7df079485b601d5b592e6

      SHA256

      2026f3c4f830dff6883b88e2647272a52a132f25eb42c0d423e36b3f65a94d08

      SHA512

      6a6cce8c232f46dab9b02d29be5e0675cc1e968e9c2d64d0abc008d20c0a7baeb103a5b1d9b348fa1c4b3af9797dbcb6e168b14b545fb15c2ccd926c3098c31c

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcp80.dll
      Filesize

      536KB

      MD5

      4c8a880eabc0b4d462cc4b2472116ea1

      SHA1

      d0a27f553c0fe0e507c7df079485b601d5b592e6

      SHA256

      2026f3c4f830dff6883b88e2647272a52a132f25eb42c0d423e36b3f65a94d08

      SHA512

      6a6cce8c232f46dab9b02d29be5e0675cc1e968e9c2d64d0abc008d20c0a7baeb103a5b1d9b348fa1c4b3af9797dbcb6e168b14b545fb15c2ccd926c3098c31c

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcp80.dll
      Filesize

      536KB

      MD5

      4c8a880eabc0b4d462cc4b2472116ea1

      SHA1

      d0a27f553c0fe0e507c7df079485b601d5b592e6

      SHA256

      2026f3c4f830dff6883b88e2647272a52a132f25eb42c0d423e36b3f65a94d08

      SHA512

      6a6cce8c232f46dab9b02d29be5e0675cc1e968e9c2d64d0abc008d20c0a7baeb103a5b1d9b348fa1c4b3af9797dbcb6e168b14b545fb15c2ccd926c3098c31c

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcp80.dll
      Filesize

      536KB

      MD5

      4c8a880eabc0b4d462cc4b2472116ea1

      SHA1

      d0a27f553c0fe0e507c7df079485b601d5b592e6

      SHA256

      2026f3c4f830dff6883b88e2647272a52a132f25eb42c0d423e36b3f65a94d08

      SHA512

      6a6cce8c232f46dab9b02d29be5e0675cc1e968e9c2d64d0abc008d20c0a7baeb103a5b1d9b348fa1c4b3af9797dbcb6e168b14b545fb15c2ccd926c3098c31c

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcp80.dll
      Filesize

      536KB

      MD5

      4c8a880eabc0b4d462cc4b2472116ea1

      SHA1

      d0a27f553c0fe0e507c7df079485b601d5b592e6

      SHA256

      2026f3c4f830dff6883b88e2647272a52a132f25eb42c0d423e36b3f65a94d08

      SHA512

      6a6cce8c232f46dab9b02d29be5e0675cc1e968e9c2d64d0abc008d20c0a7baeb103a5b1d9b348fa1c4b3af9797dbcb6e168b14b545fb15c2ccd926c3098c31c

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcr80.dll
      Filesize

      612KB

      MD5

      e4fece18310e23b1d8fee993e35e7a6f

      SHA1

      9fd3a7f0522d36c2bf0e64fc510c6eea3603b564

      SHA256

      02bdde38e4c6bd795a092d496b8d6060cdbe71e22ef4d7a204e3050c1be44fa9

      SHA512

      2fb5f8d63a39ba5e93505df3a643d14e286fe34b11984cbed4b88e8a07517c03efb3a7bf9d61cf1ec73b0a20d83f9e6068e61950a61d649b8d36082bb034ddfc

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcr80.dll
      Filesize

      612KB

      MD5

      e4fece18310e23b1d8fee993e35e7a6f

      SHA1

      9fd3a7f0522d36c2bf0e64fc510c6eea3603b564

      SHA256

      02bdde38e4c6bd795a092d496b8d6060cdbe71e22ef4d7a204e3050c1be44fa9

      SHA512

      2fb5f8d63a39ba5e93505df3a643d14e286fe34b11984cbed4b88e8a07517c03efb3a7bf9d61cf1ec73b0a20d83f9e6068e61950a61d649b8d36082bb034ddfc

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcr80.dll
      Filesize

      612KB

      MD5

      e4fece18310e23b1d8fee993e35e7a6f

      SHA1

      9fd3a7f0522d36c2bf0e64fc510c6eea3603b564

      SHA256

      02bdde38e4c6bd795a092d496b8d6060cdbe71e22ef4d7a204e3050c1be44fa9

      SHA512

      2fb5f8d63a39ba5e93505df3a643d14e286fe34b11984cbed4b88e8a07517c03efb3a7bf9d61cf1ec73b0a20d83f9e6068e61950a61d649b8d36082bb034ddfc

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcr80.dll
      Filesize

      612KB

      MD5

      e4fece18310e23b1d8fee993e35e7a6f

      SHA1

      9fd3a7f0522d36c2bf0e64fc510c6eea3603b564

      SHA256

      02bdde38e4c6bd795a092d496b8d6060cdbe71e22ef4d7a204e3050c1be44fa9

      SHA512

      2fb5f8d63a39ba5e93505df3a643d14e286fe34b11984cbed4b88e8a07517c03efb3a7bf9d61cf1ec73b0a20d83f9e6068e61950a61d649b8d36082bb034ddfc

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\msvcr80.dll
      Filesize

      612KB

      MD5

      e4fece18310e23b1d8fee993e35e7a6f

      SHA1

      9fd3a7f0522d36c2bf0e64fc510c6eea3603b564

      SHA256

      02bdde38e4c6bd795a092d496b8d6060cdbe71e22ef4d7a204e3050c1be44fa9

      SHA512

      2fb5f8d63a39ba5e93505df3a643d14e286fe34b11984cbed4b88e8a07517c03efb3a7bf9d61cf1ec73b0a20d83f9e6068e61950a61d649b8d36082bb034ddfc

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\operation\cas\kinfoc.dll
      Filesize

      181KB

      MD5

      0f3a1b91f220cd35ca291575d155ae18

      SHA1

      621febf42c26d8976c2a75bc9e1e3895fe49fcce

      SHA256

      067659e0a2123b7e28faa1be70c4f2a93f21e38877d4ede61edd56a9bf61d103

      SHA512

      07ae5032bf51f7d1db27e1aca8f468906c614d62b18598a68d54eea633d4410003db2ab976d8248dd5061b081d28082abd8774388f80944baf1c1c90cfb1fb8e

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\ressrc\chs\ktoolcommon.ini
      Filesize

      472B

      MD5

      163e003ead1f9d508ba1402084d5de6e

      SHA1

      00ae221a72f2a9c5e2397224eb10ffbc23e4248f

      SHA256

      df1b25321ddc912500243100a9fd0abaab58a38cd619f3855debbfe8942de409

      SHA512

      517ce862b732a5dbc936a7ebb24465a2102783cded3a2f465e70e01157405b01571cc6a52f97bd66484c06be21b08788dc3e4f58163354964ae3ad5195d9b5aa

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\security\ksde\kisknl.sys
      Filesize

      307KB

      MD5

      614b51a2e2558f62222f36f378ee4773

      SHA1

      d6ed7e99e034c63e4b5226d64fdf387299d16919

      SHA256

      aa1daa14ae9a90c5dc1a1ce00ae844c4e02980a5d451295941eb4d075f6dda2d

      SHA512

      7af759f6569cc87c01fc1f4ce3982be94a08b8354066602046cf14b5f857a7afd0edc3b5010826391c61ec62aff2cb721b9450fc001a8d0cfc48db7c3fabf63d

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\update\kav\data\index.txt
      Filesize

      1KB

      MD5

      a4185a63fe9960a3a1542f1a6e6a7c30

      SHA1

      4c5c9cec2f061b345556be4c2a8c6aa134fce64b

      SHA256

      047859dbd189f567d4f0f790f4d8f00503a01cadd65a5b3fc1c76ddf6556580c

      SHA512

      0108dfa18c3761541760cd7a8dba081e5c439f6786cbc71664d98f974723a029079813341a287c3af74c5d4516b33ca12f74d39fa0d488c2ffce53b00b9428e5

      Download Submit
    • C:\Program Files (x86)\kingsoft\kingsoft antivirus\update\kav\indexdata.txt
      Filesize

      94B

      MD5

      7942118bcb07d9603fc1840f886a1322

      SHA1

      824062e6ced40abc7f22d1ec224f3d904f2db3c2

      SHA256

      95897476ffc95d483e647b955dec6d2b5ec1709216bf744fe86408f2e60651a8

      SHA512

      76bb87254ce474dccc0af72d526989d9f0f53d926d2670382a862da5f194298d91b1e6eef5eff60e29412d172740d92350ae741868b0850b475de29968893e5e

      Download Submit
    • C:\ProgramData\Kingsoft\KIS\hg.dat
      Filesize

      53B

      MD5

      5ce7034fbe012732c2fc805697e4485c

      SHA1

      fdc0dd64c166289b164483950636ca4b1660dc20

      SHA256

      dc007b95d0d63af980ed2a7e446498036278bd834228acba82f849d592a48235

      SHA512

      a84c466c0a608d0a238b171e19584acfe5ebb2f4adb3b9107181f0d565677d05a723c433509d654be1e6bb0bcafb0c19eebed7c1e83c6c975cf1e272074164eb

      Download Submit
    • C:\ProgramData\dbazdk02.dat
      Filesize

      26KB

      MD5

      f56fe50182a8ebb41a4278e251427f9a

      SHA1

      805119920a31fbbb164a2ef6e082917cec9fac75

      SHA256

      4627d340c5c5f115d9288a9c45aa8e482615214a9360c7735dd6c43fd2c3cdcd

      SHA512

      a21e92a5f3685f50b0fd04e997836267669c8b4bac465cb7ab89c0a73b73fb890ed7974b09f0b3d315838a8c0fc4347e7b72711e7f90163f12a7c212d11c0db8

      Download Submit
    • C:\ProgramData\nmlist.ini
      Filesize

      4KB

      MD5

      cc62ff21f145d667d8239adadab5de57

      SHA1

      0a6299e6c5dab347effc8ce1cbacb5447377d8fa

      SHA256

      c647c6bfd183bc5bdbb7f92639c3ef066aa227afa5fc65a23a289ee49d644ee6

      SHA512

      eea3c3678989d602515a79bccfa70c9ffd27a6491a4cf053cd737ce0415c37aa28dc9fd782792bcbbd5f703250c4ee0f17a915de4259ad34a71144265c4e6faa

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\KDbCIHelper.exe
      Filesize

      270KB

      MD5

      6a0416c9d15d5bbfa03c85a96eadad90

      SHA1

      ec383f7104112d92f95c31d0e365db6dd2cd4462

      SHA256

      72e1f20807ed445c506d264d9da2e3687a8b2f4b503f352f1d363d7a5dce73ea

      SHA512

      dfbca32f535b9a39576c653ff731ce5bff087d625dfb2e4498aade783ed1faf9784dd06266a582d4e9d8218b13cf5b9bb4057e4cc3dace05646e1a26d865f3dc

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\KDbCIHelper.exe
      Filesize

      270KB

      MD5

      6a0416c9d15d5bbfa03c85a96eadad90

      SHA1

      ec383f7104112d92f95c31d0e365db6dd2cd4462

      SHA256

      72e1f20807ed445c506d264d9da2e3687a8b2f4b503f352f1d363d7a5dce73ea

      SHA512

      dfbca32f535b9a39576c653ff731ce5bff087d625dfb2e4498aade783ed1faf9784dd06266a582d4e9d8218b13cf5b9bb4057e4cc3dace05646e1a26d865f3dc

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\kantivirus\~e56f755\install_res\1.jpg
      Filesize

      11KB

      MD5

      bce3d32bc31d8866c7ae6001a0b7f2b2

      SHA1

      4564373090ec0406346d006c7c37391c5101ddc0

      SHA256

      6e992e0c2fcb0b6def7f0c371f20837be7539db17a3aa76732b2225650c5595f

      SHA512

      cc9f4cd6fb326f1a49157b085ea9755bee05068b4c08ae61a15fb911c292cb821215aeab63e15ba66a99ea9b060957aab6c5f6e44f96be05b33522a90dc9453d

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\kantivirus\~e56f755\install_res\2.jpg
      Filesize

      24KB

      MD5

      d2fe241b32b67b67aea896867054bfa3

      SHA1

      52e69af3d5c32863442451f6476d12ca9e3f0806

      SHA256

      287187541b240f6a4a9b504d0d9fc21f49bc7c2ce6a474a5c84489984c61b147

      SHA512

      eb703838490a3902022edd9d9b1b475d47d39bb08089e4fb1e307c7ffcef53a6adad0c26b7ea07226f6396c4818a14d9baa6b94010ac8e63e1c01d26301c6788

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\kantivirus\~e56f755\install_res\3.jpg
      Filesize

      7KB

      MD5

      f3b9632b84ae1b2686aa35df23b505ef

      SHA1

      e560f43ba0c332ff9e11d8ae7ac79f6ff230d104

      SHA256

      10dbbb8367d847eb97f33e48d6227c33e6845c64d3309354f71cd55405481852

      SHA512

      ead8834ec05757670dc1e79d49c3077e6a926a504116d88c3814fdf89ddffb59f18e0162a64bab72c0cf2dad8893a573106fda537161828f8d6f019e687200a7

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\kantivirus\~e56f755\install_res\4.png
      Filesize

      246B

      MD5

      567412defa6ff8c0a22b6741903d5bd6

      SHA1

      6b01daf205a7881483b04a6717302940c03fcaea

      SHA256

      ec47be1c0109fe07fd41b5c8133ce17d3fbafd003369ff6a0adc616c9297205b

      SHA512

      fcce488e36d7707f4d3f651efb050677cc7fe681c657828643a9f1e354200a5937c908c96a8cb694028db11eb02387a7315e0bbcf8992b1f5890457206108a5b

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\kantivirus\~e56f755\install_res\5.png
      Filesize

      460B

      MD5

      a9d6e9863117c07204aca39eab5b994a

      SHA1

      d3e0633d705f878c9d67be23c1eb150ef3f33f6d

      SHA256

      908b09757f56bdcfd2bc8d53dff95e62159d2ba448fc41dbfa135db87be5e608

      SHA512

      ae0b20aa2f4729a75768ce5fa8e31f3610c16212a78027a4b05a4d96c29eb54a1560a00a309275cfb5d23c3cf86ec3808719546223890f2e453b02a224a12650

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\kdb_semrjgj.dll
      Filesize

      36.6MB

      MD5

      cf20e3f69ae844fd027ce759f0aa560c

      SHA1

      2d5079bf74c4cdc226c605a9e82bd803ff577648

      SHA256

      f9cce6e4026f7be00fbf665bdc9e433baf0932ddf8bf660bcacbc61a4b44748a

      SHA512

      49dae81fe0b2a47c548674ec2dea8c4a9a956308daf6ee6a7448ec373ca07094e0d04cd9dc88c527778d91aa8b13ecd6045eddf60d79a8c061f9530ac1b70015

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\kdb_semrjgj.dll
      Filesize

      36.6MB

      MD5

      cf20e3f69ae844fd027ce759f0aa560c

      SHA1

      2d5079bf74c4cdc226c605a9e82bd803ff577648

      SHA256

      f9cce6e4026f7be00fbf665bdc9e433baf0932ddf8bf660bcacbc61a4b44748a

      SHA512

      49dae81fe0b2a47c548674ec2dea8c4a9a956308daf6ee6a7448ec373ca07094e0d04cd9dc88c527778d91aa8b13ecd6045eddf60d79a8c061f9530ac1b70015

      Download Submit
    • C:\Windows\System32\drivers\kisknl.sys
      Filesize

      315KB

      MD5

      b8e308671eb267e42ab167711da8b04e

      SHA1

      b16ed643cca235e9ccfc2c26e3d33f2a146fbee4

      SHA256

      7afb2e070e4bea5e81b3ab2d5af5e438fa6a96f717c79fd85ff4cf3a8bf7fd03

      SHA512

      b6e6df8fc78672728bbe5580b45151bc1295e7748262562241a85aee6b5a032b9c3c22eb6bfbc6998db76b1626e0efdac1d2400175c447e2895b52a5ff9fd9e3

      Download Submit
    • C:\Windows\System32\drivers\kisknl64.sys
      Filesize

      310KB

      MD5

      61d525b60a8e63abca86872300050213

      SHA1

      a0e9ec67705c1aed2d9ed9b04c7b9645960d40a4

      SHA256

      2a0e605ee09c573a7fcc872325534efed5f5742bdb7bdf33e054b3617c8eb530

      SHA512

      049351d8c86b4c14153936d18e7f915e3fead2c480e4c238fe94145d19c5539f05f75e33f06b2759370904f46c24c9be26108561fa23dc75873b15b4b0ec5b5d

      Download Submit
    • C:\Windows\System32\drivers\ksapi.sys
      Filesize

      119KB

      MD5

      d69077366e510ceb9459290c2fba482f

      SHA1

      dcb75e9a913d9b8ac4c859134ec27dd6d2f7a3b7

      SHA256

      32e5a80115e9cde5ea0c514b81eb05fc0894ed51008bff500e4347190881e8ac

      SHA512

      ce9b7c776b00cb47ac311b8d00048d77d81c97e325761452cc7ac4064a10564562dd98d47bffd12c3ac7ae3344a6cd540451d5a168f03a3997e945a3ea6b16d4

      Download Submit
    • C:\Windows\System32\drivers\ksapi64.sys
      Filesize

      78KB

      MD5

      f1a015644e5ca4b484c15d960e9532b8

      SHA1

      6352e61f5c37a658cb38a392d159185cf41cb511

      SHA256

      f4e584f55281edbcea19dedc4e43b4ce0ef9b5d6bcfda7673c0f19601b588a8f

      SHA512

      54f7d4bf8cbbf728bd546d8aaec557c98ceae38a1929b8e00901e326470bfee55fbb5505b72850cb514e08875136466a232d6485a84230bafff0ac6f92722e1d

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\KCmppInvoker.dll
      Filesize

      180KB

      MD5

      9f70191eae1688db0d18f8d956a88383

      SHA1

      46c96305f5f33c1162609dc82f383db538cf428b

      SHA256

      1f39d69c8efb14b77795c139ee76ecc5cb3d2bd16ef587efd996814c9151b664

      SHA512

      017fb06d89268b5c6abb67890497e7edda46077da3dc3cfff322eb5e0ea475ca5796eea287e81fa3b01aa730dda8e705c8cb0e9a198ad419ac48287d29888f4f

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\MSVCP80.dll
      Filesize

      536KB

      MD5

      4c8a880eabc0b4d462cc4b2472116ea1

      SHA1

      d0a27f553c0fe0e507c7df079485b601d5b592e6

      SHA256

      2026f3c4f830dff6883b88e2647272a52a132f25eb42c0d423e36b3f65a94d08

      SHA512

      6a6cce8c232f46dab9b02d29be5e0675cc1e968e9c2d64d0abc008d20c0a7baeb103a5b1d9b348fa1c4b3af9797dbcb6e168b14b545fb15c2ccd926c3098c31c

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\MSVCR80.dll
      Filesize

      612KB

      MD5

      e4fece18310e23b1d8fee993e35e7a6f

      SHA1

      9fd3a7f0522d36c2bf0e64fc510c6eea3603b564

      SHA256

      02bdde38e4c6bd795a092d496b8d6060cdbe71e22ef4d7a204e3050c1be44fa9

      SHA512

      2fb5f8d63a39ba5e93505df3a643d14e286fe34b11984cbed4b88e8a07517c03efb3a7bf9d61cf1ec73b0a20d83f9e6068e61950a61d649b8d36082bb034ddfc

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\data\kswitch.dat
      Filesize

      10KB

      MD5

      1d88beff2208819ae7a5b3bc6256421b

      SHA1

      01fe8e493f4415fa593922aa9948afe5631b7684

      SHA256

      348e78a8005c0f4e917fbbff9be2df9eaaf2f36174a05ce4032d20b25501a4da

      SHA512

      a8ec37254eb5b70dc1efdb21fd32d7feaa7bce5400b0f61fa0c457827cf964dfc321de5072185959200d82183522adf0c859937f623bf3a43d577fc0788b87ce

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kavevent.dll
      Filesize

      90KB

      MD5

      80f899ca024ddcf5218a4fadeacaec54

      SHA1

      2756821bde2d8eb44b04da63afbf5496565ddf71

      SHA256

      2a0d8c0778ef91c5e9f7ffac47a0e49a4055d50556895822d84adcbce9375c17

      SHA512

      ae871718f3eb2bcdd4bc6d41a691e9684a98a022d0db9d9444470820847e648e369a5f0c7887dc31d6ffa51572634345fe2448c1defe8535eb79c30f8202f41f

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kavlog2.exe
      Filesize

      522KB

      MD5

      c7256e3f7702a3848f0259b3cbaf712d

      SHA1

      d268660245346fc92c2832a47e84ae03e6f9ecda

      SHA256

      009d63fbb8f3ab13c0a1a6559c83a493dffa1fbd63c1f243d0ca3f188e489bac

      SHA512

      e9a8e458c82aab1b71618d2391df7a60809d0a711f35e7b45609c3335ab39ec13ff1ec67043781210503ac0f7cd5a836c96d422405b7e3b073ec19463eb2f91f

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\keasyipcn.dll
      Filesize

      103KB

      MD5

      93743861a54413c1454845b3b6f50f4d

      SHA1

      b0be47cde5aa95b5d911107bf1af98109a7bef74

      SHA256

      63e3807a73157f64db94e975569597665ece35f7234137adc21fa62a85eaa5a0

      SHA512

      a02707c680ddb5c1645fde212fc75e11b687d8dafddc83f7ae7824f8c425d2c13b1af0e3adb079de904e46d6f9477a6fc09fd6662643c1bc139cb496e873e83b

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kislive.exe
      Filesize

      1.2MB

      MD5

      6a001678ac0bee54a27191a7c72b0f56

      SHA1

      55bf2ad857a80ca60782c0c524e25c0963747788

      SHA256

      7bad0cbcf9679723fdc5663ea20ff4d0c37a1bd292177ab40329ebcb0163dfcd

      SHA512

      7873a235125288d83a617bc05b77d807e03558fba1f10d6efd5c02e10c256d2d6e7b56b40adadf50879ee40847454edf59afbdb9e640a52c6112d0abf6367a3b

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kpopclt.dll
      Filesize

      213KB

      MD5

      1dd2c3ecae68a35cde2d586aa24e0f25

      SHA1

      600f6a6af5b43a00c5ddd040a79afbeadba053cf

      SHA256

      905fbcb0f93015941e884bd37b5d196788bc4422919fead4be12fbfd42fb5440

      SHA512

      237f5623042dfab544458847cebe1a5f95bf83165d6155086378976b1082d7709b0fe8379ba15fff8ea39664ffe67546719983d27ce3e82cec6ac667e0f78145

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\ksapi.dll
      Filesize

      225KB

      MD5

      53d5bd1f2c298d0cb238a7704abe92c4

      SHA1

      0dca1f642ba188724d29f434ce305c07ca776747

      SHA256

      ee25855e8b89b7ae673f29bac9fd864615d769776393ba890cbb9549614be6bb

      SHA512

      da70ab26e77a1f8b28ea8bdbc242fd9bbdd1aed6f058b9f4a83f58df57f292fafc35a469bfe1eda700767694dcffa577262aa033da439482aaa412de9033fc3d

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\ksapi64.dll
      Filesize

      193KB

      MD5

      2e67447a0b7f3192d09290503b96b738

      SHA1

      fccdb3ed95f71304e40b54c38c0d1a44b083c2e3

      SHA256

      7441b31adbe9c1cdb5af51569b7b32218def2d691f7fad07d1e6be60a3a48041

      SHA512

      1381828c17b1448b8321c2be0509e90742a9235063183bea850bbf940c133eda1b4e67a382750de44dc5a8afe28de05e2047c13ba21c286f9c29e184b2b58b9e

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kskinmgr.dll
      Filesize

      975KB

      MD5

      9152c4b02a92bdc24dc63efc86fcbc4e

      SHA1

      3e0c9f8406e4ae94b10eab6ce0e66a46bd6e380a

      SHA256

      aaa1aeab64e409bedc751009a8a55d9a081dfade787c6dc9d7272ac2a7489093

      SHA512

      c42cd9deeaafbedd8782f870ece90fcfb8b84bc06e04be4c615d622533b7ec809b93029985f703dfe1c196bd4f8054b9b79180ccf59f7039f2834bcf84bf8de4

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\ksoftmgr.exe
      Filesize

      3.6MB

      MD5

      ec97eb619fd07ba0aee6783eac3bcb47

      SHA1

      7f5788269192c59ad8cda179cbf3e5a4cc490972

      SHA256

      699605488bf15f37a167d105f8550c43225ac309bc1b4321e42172e32f70fb42

      SHA512

      e4f923235474b8df81ad407bc9a4e21e6ac6aaa0ae8f3fb3de13f4eb080d60d566035b52175214d416001caf7cf5c1484111799c43dea900aea9df3a87d4f272

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kuidsrv.dll
      Filesize

      461KB

      MD5

      665ba4f0adcec026db80a191cbb92618

      SHA1

      7162645603079e9a1a2b77b7c48daec8ae180299

      SHA256

      bf088cc30af2d93728726f668511cfcb38c609b8b4771f599a4ad747ae61e7e8

      SHA512

      fb4a924dc2b4bd145e364a024c47bbbbab188d4a9b2c0d630894b971fa556d5fc600b1482ab95be1f7e8be2715ad4528602a5c020c355f755362f09eefba146b

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kwhrequestor.dll
      Filesize

      617KB

      MD5

      a7405a1e67e65e1fc8b6bff36d9626ab

      SHA1

      22284f802c417afd111e54d33dc1b738a3fd767c

      SHA256

      e4484073cc318675a35b21f84ded98ce96a9bec1b084ea207fe31c531bf8d162

      SHA512

      ad8136ac4d395967d7b8d9f0fbd5222e1bf3c815d6a0c9f7541a59e5b29ed4120d6831d381fff020d6862a72547e78a355d830f251360aa267b89f9f54a17254

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kxescore.exe
      Filesize

      318KB

      MD5

      7dacf31d3906c42de3529bba7f4f43cb

      SHA1

      6dccd65e7a19d5896fb33c12cbf3e54f01e992c3

      SHA256

      ae516a5ec2e01334edb329c4268186a8810f31cbdcb8eda9b8f4a3a393816bb9

      SHA512

      f05525c372a18fdca8439f79920ce1701d60862b576efd138f0427c7b32ae48aa466cceccc17d0f445ece1e50fc75a5848ad46795370d3bcfc7242d56c9c8da4

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kxescore_sp.xcf
      Filesize

      87B

      MD5

      47f61d0f7bd830f5bfe72c3b65941fde

      SHA1

      d7f440877e23679fd2c480dff2b8f3219702d681

      SHA256

      eb09cf1094904f0d3038ce1e981fd4366eba4000c8b6f13a3dbbaefea4797e37

      SHA512

      d234f17af1440aba1a4f6c2b24d04fdeb3a685f25f391cdc1ac048dfed1b470689bed5b21d7b3db94f9186445932982f462bbee8af919c1a957ab89bd69e68f5

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\kxetray.exe
      Filesize

      1.8MB

      MD5

      da752173d2f6e37fc7826144e12383da

      SHA1

      92c4b3f3ec780bd8651886623373ccc3b31c4b05

      SHA256

      8a0f744e1702d7e0867d0fbf2242a88aa686d8987af3fe67c62bdb97d6dd6234

      SHA512

      fe3dd83732c598d513bd2d5dde118f19111a3fa290591708057d9dbbde75d62460975e0016cf91da2199c71b00145d535bc3046118ca4b56d2cd89f73ef1c0b3

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\operation\cas\kctrl.dat
      Filesize

      3KB

      MD5

      887ed679698117d421b8ac9d636db34e

      SHA1

      3d39c3f6cca90b385b05bb55e9886da4e216095d

      SHA256

      63db532c2d893da092fd4cd495c1fffda792c9034f1b5d2996116c584acd702b

      SHA512

      30aef737b4efbaa3bee0b93b693fdbdb9b4a30468ade5f050edfccb950a897e686385546cda78c3e992073fb4ca34ecfb37435ed99130c52f52035bdb1f4ee38

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\operation\cas\kfmt.datx
      Filesize

      194KB

      MD5

      3850d6e5f931b015c8cf1ada958db446

      SHA1

      c7e1059efd4360c14fe8b4ef33ebc1071fccbec3

      SHA256

      53baa280450af2d1a02fd7a484d3f06e0f46cce6794af194e10f2998fb6693e8

      SHA512

      51a28ccd6fb44fb902355ada39886a8fee9161d221e5338a063771f755d4f07c9cae954f11e5bf4bf4939a020c05b1319eb48e54f789b3ca472b3bfbb504f20f

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\operation\cas\kinfoc.dll
      Filesize

      181KB

      MD5

      0f3a1b91f220cd35ca291575d155ae18

      SHA1

      621febf42c26d8976c2a75bc9e1e3895fe49fcce

      SHA256

      067659e0a2123b7e28faa1be70c4f2a93f21e38877d4ede61edd56a9bf61d103

      SHA512

      07ae5032bf51f7d1db27e1aca8f468906c614d62b18598a68d54eea633d4410003db2ab976d8248dd5061b081d28082abd8774388f80944baf1c1c90cfb1fb8e

      Download Submit
    • \??\c:\program files (x86)\kingsoft\kingsoft antivirus\ressrc\chs\uplive.svr
      Filesize

      9KB

      MD5

      0ff4535960c3d5864b2341ae71d4e5c1

      SHA1

      8a48f6390dba08aec7879ba27e0fd11f7e215a5d

      SHA256

      2f5696ebc343b65b284a2e3d37d1bc91c12dc09d42145c86e4ec795f9972d8cf

      SHA512

      d1fcfd4cc6ff094cd0be1f7270ceb11bcd648d763504fc80c3908655fd0bad659e9082e3bd2686e3f9f983544bf0a748bd152028ee5bd31d067af7d354a7cfb0

      Download Submit
    • memory/208-1278-0x0000000002CC0000-0x0000000002CEF000-memory.dmp
      Filesize

      188KB

      Download
    • memory/208-1271-0x0000000002D00000-0x0000000002D37000-memory.dmp
      Filesize

      220KB

      Download
    • memory/208-1290-0x0000000002FA0000-0x0000000003011000-memory.dmp
      Filesize

      452KB

      Download
    • memory/208-1283-0x0000000002D40000-0x0000000002D6A000-memory.dmp
      Filesize

      168KB

      Download
    • memory/224-1246-0x0000000002850000-0x000000000286A000-memory.dmp
      Filesize

      104KB

      Download
    • memory/224-1259-0x0000000002A60000-0x0000000002B53000-memory.dmp
      Filesize

      972KB

      Download
    • memory/224-1393-0x0000000002930000-0x0000000002931000-memory.dmp
      Filesize

      4KB

      Download
    • memory/464-1307-0x0000000001200000-0x0000000001271000-memory.dmp
      Filesize

      452KB

      Download
    • memory/464-1301-0x0000000000FF0000-0x000000000101F000-memory.dmp
      Filesize

      188KB

      Download
    • memory/464-1337-0x0000000003FF0000-0x000000000401D000-memory.dmp
      Filesize

      180KB

      Download
    • memory/464-1312-0x0000000001030000-0x000000000103E000-memory.dmp
      Filesize

      56KB

      Download
    • memory/464-1340-0x0000000004260000-0x00000000042C2000-memory.dmp
      Filesize

      392KB

      Download
    • memory/464-1354-0x0000000004410000-0x0000000004424000-memory.dmp
      Filesize

      80KB

      Download
    • memory/464-1358-0x0000000004450000-0x000000000446A000-memory.dmp
      Filesize

      104KB

      Download
    • memory/464-1311-0x0000000000EE0000-0x0000000000EF0000-memory.dmp
      Filesize

      64KB

      Download
    • memory/464-1383-0x0000000007360000-0x0000000007496000-memory.dmp
      Filesize

      1.2MB

      Download
    • memory/464-1298-0x0000000001050000-0x0000000001087000-memory.dmp
      Filesize

      220KB

      Download
    • memory/464-1305-0x00000000011D0000-0x00000000011FA000-memory.dmp
      Filesize

      168KB

      Download
    • memory/464-1356-0x0000000004430000-0x0000000004442000-memory.dmp
      Filesize

      72KB

      Download
    • memory/464-1317-0x0000000003670000-0x000000000372F000-memory.dmp
      Filesize

      764KB

      Download
    • memory/464-1322-0x0000000003650000-0x0000000003668000-memory.dmp
      Filesize

      96KB

      Download
    • memory/464-1319-0x0000000003830000-0x000000000399E000-memory.dmp
      Filesize

      1.4MB

      Download
    • memory/464-1313-0x0000000001900000-0x0000000001914000-memory.dmp
      Filesize

      80KB

      Download
    • memory/464-1314-0x0000000001920000-0x0000000001932000-memory.dmp
      Filesize

      72KB

      Download
    • memory/3924-1366-0x0000000003D70000-0x0000000003E10000-memory.dmp
      Filesize

      640KB

      Download
    • memory/3924-1342-0x0000000002B90000-0x0000000003150000-memory.dmp
      Filesize

      5.8MB

      Download
    • memory/3924-1380-0x0000000003CC0000-0x0000000003CEF000-memory.dmp
      Filesize

      188KB

      Download
    • memory/3924-1375-0x0000000003F80000-0x0000000003FB7000-memory.dmp
      Filesize

      220KB

      Download
    • memory/3924-1372-0x0000000002340000-0x000000000234E000-memory.dmp
      Filesize

      56KB

      Download
    • memory/3924-1390-0x00000000043C0000-0x00000000044F6000-memory.dmp
      Filesize

      1.2MB

      Download
    • memory/3924-1355-0x0000000003150000-0x00000000033B8000-memory.dmp
      Filesize

      2.4MB

      Download
    • memory/3924-1253-0x0000000002A70000-0x0000000002A88000-memory.dmp
      Filesize

      96KB

      Download
    • memory/3924-1339-0x0000000000860000-0x0000000000861000-memory.dmp
      Filesize

      4KB

      Download
    • memory/3924-2404-0x0000000000860000-0x0000000000861000-memory.dmp
      Filesize

      4KB

      Download
    • memory/4120-866-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-1161-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-149-0x0000000002890000-0x0000000002891000-memory.dmp
      Filesize

      4KB

      Download
    • memory/4120-139-0x0000000002890000-0x0000000002891000-memory.dmp
      Filesize

      4KB

      Download
    • memory/4120-1212-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-1167-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-164-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-2688-0x0000000010000000-0x0000000010089000-memory.dmp
      Filesize

      548KB

      Download
    • memory/4120-1174-0x0000000000820000-0x000000000084C000-memory.dmp
      Filesize

      176KB

      Download
    • memory/4120-220-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-212-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-211-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-210-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4120-206-0x0000000010000000-0x0000000010328000-memory.dmp
      Filesize

      3.2MB

      Download
    • memory/4204-1203-0x0000000002280000-0x0000000002281000-memory.dmp
      Filesize

      4KB

      Download
    • memory/5128-2405-0x00000000023E0000-0x00000000023E1000-memory.dmp
      Filesize

      4KB

      Download