| File name: | cdbxp_setup_4.5.8.7128_minimal.exe |
| Full analysis: | https://app.any.run/tasks/74d069e3-bc3a-4d51-9d5c-93392bb894ef |
| Verdict: | Malicious activity |
| Analysis date: | February 03, 2020, 23:01:22 |
| OS: | Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) |
| Indicators: | |
| MIME: | application/x-dosexec |
| File info: | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5: | 0037C0F1B219E6C03117451CC48F55FB |
| SHA1: | 8ACA208094C5E51DF3064C273C76DDA2C31FB1EC |
| SHA256: | 04B7DE2BAD29F978F2386400DEC309FA69A3DDFBED04278D1B96D6F5FB9FE77A |
| SSDEEP: | 98304:wndr8fO7Znan7q+mvD6VatDhazCbMiOgQcCW5dL0mUjW/CAWDQQsz/7e:wyfOhdv+8tDhaObMiRQI5dwLC/EDQnzi |
MALICIOUS
Registers / Runs the DLL via REGSVR32.EXE
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
Loads dropped or rewritten executable
- regsvr32.exe (PID: 1332)
- regsvr32.exe (PID: 820)
- cdbxpp.exe (PID: 4076)
Application was dropped or rewritten from another process
- cdbxpp.exe (PID: 4076)
SUSPICIOUS
Executable content was dropped or overwritten
- cdbxp_setup_4.5.8.7128_minimal.exe (PID: 3312)
- cdbxp_setup_4.5.8.7128_minimal.exe (PID: 1872)
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
Reads Windows owner or organization settings
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
Reads the Windows organization settings
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
Modifies the open verb of a shell class
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
Uses REG.EXE to modify Windows registry
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
Creates files in the user directory
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
- cdbxpp.exe (PID: 4076)
Creates COM task schedule object
- regsvr32.exe (PID: 1332)
- regsvr32.exe (PID: 820)
Reads Environment values
- cdbxpp.exe (PID: 4076)
INFO
Application was dropped or rewritten from another process
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3452)
Creates a software uninstall entry
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
Creates files in the program directory
- cdbxp_setup_4.5.8.7128_minimal.tmp (PID: 3432)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
TRiD
| .exe | | | Win32 Executable Delphi generic (57.2) |
|---|---|---|
| .exe | | | Win32 Executable (generic) (18.2) |
| .exe | | | Win16/32 Executable Delphi generic (8.3) |
| .exe | | | Generic Win/DOS Executable (8) |
| .exe | | | DOS Executable Generic (8) |
EXIF
EXE
| MachineType: | Intel 386 or later, and compatibles |
|---|---|
| TimeStamp: | 2018:06:14 15:27:46+02:00 |
| PEType: | PE32 |
| LinkerVersion: | 2.25 |
| CodeSize: | 66560 |
| InitializedDataSize: | 436736 |
| UninitializedDataSize: | - |
| EntryPoint: | 0x1181c |
| OSVersion: | 5 |
| ImageVersion: | 6 |
| SubsystemVersion: | 5 |
| Subsystem: | Windows GUI |
| FileVersionNumber: | 4.5.8.7128 |
| ProductVersionNumber: | 4.5.8.7128 |
| FileFlagsMask: | 0x003f |
| FileFlags: | (none) |
| FileOS: | Win32 |
| ObjectFileType: | Executable application |
| FileSubtype: | - |
| LanguageCode: | Neutral |
| CharacterSet: | Unicode |
| Comments: | This installation was built with Inno Setup. |
| CompanyName: | Canneverbe Limited |
| FileDescription: | CDBurnerXP |
| FileVersion: | 4.5.8.7128 |
| LegalCopyright: | 2001-2014 Canneverbe Limited |
| ProductName: | CDBurnerXP |
| ProductVersion: | 4.5.8.7128 |
Summary
| Architecture: | IMAGE_FILE_MACHINE_I386 |
|---|---|
| Subsystem: | IMAGE_SUBSYSTEM_WINDOWS_GUI |
| Compilation Date: | 14-Jun-2018 13:27:46 |
| Detected languages: |
|
| Comments: | This installation was built with Inno Setup. |
| CompanyName: | Canneverbe Limited |
| FileDescription: | CDBurnerXP |
| FileVersion: | 4.5.8.7128 |
| LegalCopyright: | 2001-2014 Canneverbe Limited |
| ProductName: | CDBurnerXP |
| ProductVersion: | 4.5.8.7128 |
DOS Header
| Magic number: | MZ |
|---|---|
| Bytes on last page of file: | 0x0050 |
| Pages in file: | 0x0002 |
| Relocations: | 0x0000 |
| Size of header: | 0x0004 |
| Min extra paragraphs: | 0x000F |
| Max extra paragraphs: | 0xFFFF |
| Initial SS value: | 0x0000 |
| Initial SP value: | 0x00B8 |
| Checksum: | 0x0000 |
| Initial IP value: | 0x0000 |
| Initial CS value: | 0x0000 |
| Overlay number: | 0x001A |
| OEM identifier: | 0x0000 |
| OEM information: | 0x0000 |
| Address of NE header: | 0x00000100 |
PE Headers
| Signature: | PE |
|---|---|
| Machine: | IMAGE_FILE_MACHINE_I386 |
| Number of sections: | 8 |
| Time date stamp: | 14-Jun-2018 13:27:46 |
| Pointer to Symbol Table: | 0x00000000 |
| Number of symbols: | 0 |
| Size of Optional Header: | 0x00E0 |
| Characteristics: |
|
Sections
Name | Virtual Address | Virtual Size | Raw Size | Charateristics | Entropy |
|---|---|---|---|---|---|
.text | 0x00001000 | 0x0000F25C | 0x0000F400 | IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ | 6.37588 |
.itext | 0x00011000 | 0x00000FA4 | 0x00001000 | IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ | 5.77877 |
.data | 0x00012000 | 0x00000C8C | 0x00000E00 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE | 2.30283 |
.bss | 0x00013000 | 0x000056BC | 0x00000000 | IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE | 0 |
.idata | 0x00019000 | 0x00000E04 | 0x00001000 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE | 4.59781 |
.tls | 0x0001A000 | 0x00000008 | 0x00000000 | IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE | 0 |
.rdata | 0x0001B000 | 0x00000018 | 0x00000200 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ | 0.204488 |
.rsrc | 0x0001C000 | 0x0006899C | 0x00068A00 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ | 4.60267 |
Resources
Title | Entropy | Size | Codepage | Language | Type |
|---|---|---|---|---|---|
1 | 5.13965 | 1580 | Latin 1 / Western European | English - United States | RT_MANIFEST |
2 | 4.31324 | 488 | Latin 1 / Western European | English - United States | RT_ICON |
3 | 4.31051 | 744 | Latin 1 / Western European | English - United States | RT_ICON |
4 | 3.94228 | 1640 | Latin 1 / Western European | English - United States | RT_ICON |
5 | 5.27966 | 19496 | Latin 1 / Western European | English - United States | RT_ICON |
6 | 5.20258 | 1384 | Latin 1 / Western European | English - United States | RT_ICON |
7 | 5.88053 | 1736 | Latin 1 / Western European | English - United States | RT_ICON |
8 | 5.80126 | 2216 | Latin 1 / Western European | English - United States | RT_ICON |
9 | 5.65578 | 3752 | Latin 1 / Western European | English - United States | RT_ICON |
10 | 4.84627 | 2440 | Latin 1 / Western European | English - United States | RT_ICON |
Imports
advapi32.dll |
comctl32.dll |
kernel32.dll |
oleaut32.dll |
user32.dll |
Total processes
48
Monitored processes
9
Malicious processes
7
Suspicious processes
0
Behavior graph
Click at the process to see the details
Process information
PID | CMD | Path | Indicators | Parent process | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 820 | "C:\Windows\system32\regsvr32.exe" /s "C:\Program Files\CDBurnerXP\StarBurnX15.dll" | C:\Windows\system32\regsvr32.exe | cdbxp_setup_4.5.8.7128_minimal.tmp | ||||||||||||
User: admin Company: Microsoft Corporation Integrity Level: HIGH Description: Microsoft(C) Register Server Exit code: 0 Version: 6.1.7600.16385 (win7_rtm.090713-1255) Modules
| |||||||||||||||
| 1332 | "C:\Windows\system32\regsvr32.exe" /s "C:\Program Files\CDBurnerXP\StarBurnX15.dll" | C:\Windows\system32\regsvr32.exe | cdbxp_setup_4.5.8.7128_minimal.tmp | ||||||||||||
User: admin Company: Microsoft Corporation Integrity Level: HIGH Description: Microsoft(C) Register Server Exit code: 0 Version: 6.1.7600.16385 (win7_rtm.090713-1255) Modules
| |||||||||||||||
| 1696 | "Reg.exe" Delete HKCU\SOFTWARE\CDBurnerXP /f | C:\Windows\system32\Reg.exe | — | cdbxp_setup_4.5.8.7128_minimal.tmp | |||||||||||
User: admin Company: Microsoft Corporation Integrity Level: HIGH Description: Registry Console Tool Exit code: 0 Version: 6.1.7600.16385 (win7_rtm.090713-1255) Modules
| |||||||||||||||
| 1872 | "C:\Users\admin\AppData\Local\Temp\cdbxp_setup_4.5.8.7128_minimal.exe" /SPAWNWND=$601CA /NOTIFYWND=$130224 | C:\Users\admin\AppData\Local\Temp\cdbxp_setup_4.5.8.7128_minimal.exe | cdbxp_setup_4.5.8.7128_minimal.tmp | ||||||||||||
User: admin Company: Canneverbe Limited Integrity Level: HIGH Description: CDBurnerXP Exit code: 0 Version: 4.5.8.7128 Modules
| |||||||||||||||
| 3192 | "Reg.exe" Copy HKCU\SOFTWARE\CDBurnerXP "HKCU\SOFTWARE\Canneverbe Limited\CDBurnerXP" /s /f | C:\Windows\system32\Reg.exe | — | cdbxp_setup_4.5.8.7128_minimal.tmp | |||||||||||
User: admin Company: Microsoft Corporation Integrity Level: HIGH Description: Registry Console Tool Exit code: 0 Version: 6.1.7600.16385 (win7_rtm.090713-1255) Modules
| |||||||||||||||
| 3312 | "C:\Users\admin\AppData\Local\Temp\cdbxp_setup_4.5.8.7128_minimal.exe" | C:\Users\admin\AppData\Local\Temp\cdbxp_setup_4.5.8.7128_minimal.exe | explorer.exe | ||||||||||||
User: admin Company: Canneverbe Limited Integrity Level: MEDIUM Description: CDBurnerXP Exit code: 0 Version: 4.5.8.7128 Modules
| |||||||||||||||
| 3432 | "C:\Users\admin\AppData\Local\Temp\is-TJN38.tmp\cdbxp_setup_4.5.8.7128_minimal.tmp" /SL5="$A0140,4712769,504320,C:\Users\admin\AppData\Local\Temp\cdbxp_setup_4.5.8.7128_minimal.exe" /SPAWNWND=$601CA /NOTIFYWND=$130224 | C:\Users\admin\AppData\Local\Temp\is-TJN38.tmp\cdbxp_setup_4.5.8.7128_minimal.tmp | cdbxp_setup_4.5.8.7128_minimal.exe | ||||||||||||
User: admin Integrity Level: HIGH Description: Setup/Uninstall Exit code: 0 Version: 51.1052.0.0 Modules
| |||||||||||||||
| 3452 | "C:\Users\admin\AppData\Local\Temp\is-GS9A7.tmp\cdbxp_setup_4.5.8.7128_minimal.tmp" /SL5="$130224,4712769,504320,C:\Users\admin\AppData\Local\Temp\cdbxp_setup_4.5.8.7128_minimal.exe" | C:\Users\admin\AppData\Local\Temp\is-GS9A7.tmp\cdbxp_setup_4.5.8.7128_minimal.tmp | — | cdbxp_setup_4.5.8.7128_minimal.exe | |||||||||||
User: admin Integrity Level: MEDIUM Description: Setup/Uninstall Exit code: 0 Version: 51.1052.0.0 Modules
| |||||||||||||||
| 4076 | "C:\Program Files\CDBurnerXP\cdbxpp.exe" | C:\Program Files\CDBurnerXP\cdbxpp.exe | cdbxp_setup_4.5.8.7128_minimal.tmp | ||||||||||||
User: admin Company: Canneverbe Limited Integrity Level: MEDIUM Description: CDBurnerXP Exit code: 0 Version: 4.5.8.7128 Modules
| |||||||||||||||
Total events
2 371
Read events
1 234
Write events
953
Delete events
184
Modification events
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_CURRENT_USER\Software\CDBurnerXP |
| Operation: | write | Name: | AppPath |
Value: C:\Program Files\CDBurnerXP | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPOpen |
| Operation: | write | Name: | |
Value: CDBurnerXP Data Compilation | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPOpen\DefaultIcon |
| Operation: | write | Name: | |
Value: C:\Program Files\CDBurnerXP\data.ico | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPOpen\shell\open\command |
| Operation: | write | Name: | |
Value: "C:\Program Files\CDBurnerXP\cdbxpp.exe" /od "%1" | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPAudio |
| Operation: | write | Name: | |
Value: CDBurnerXP Audio Compilation | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPAudio\DefaultIcon |
| Operation: | write | Name: | |
Value: C:\Program Files\CDBurnerXP\audio.ico | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPAudio\shell\open\command |
| Operation: | write | Name: | |
Value: "C:\Program Files\CDBurnerXP\cdbxpp.exe" /oa "%1" | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPOpenIso |
| Operation: | write | Name: | |
Value: ISO Image | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPOpenIso\DefaultIcon |
| Operation: | write | Name: | |
Value: C:\Program Files\CDBurnerXP\iso.ico | |||
| (PID) Process: | (3432) cdbxp_setup_4.5.8.7128_minimal.tmp | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CDBurnerXPOpenIso\shell\open\command |
| Operation: | write | Name: | |
Value: "C:\Program Files\CDBurnerXP\cdbxpp.exe" /oi "%1" | |||
Executable files
69
Suspicious files
11
Text files
20
Unknown types
3
Dropped files
PID | Process | Filename | Type | |
|---|---|---|---|---|
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-EJ4TC.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-CTUTP.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-MNUK4.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-O9P93.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-7VJC4.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-GU5UG.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-9PRAL.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-FA8OO.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-0K0LC.tmp | — | |
MD5:— | SHA256:— | |||
| 3432 | cdbxp_setup_4.5.8.7128_minimal.tmp | C:\Program Files\CDBurnerXP\is-IP7JP.tmp | — | |
MD5:— | SHA256:— | |||
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
1
TCP/UDP connections
3
DNS requests
2
Threats
0
HTTP requests
PID | Process | Method | HTTP Code | IP | URL | CN | Type | Size | Reputation |
|---|---|---|---|---|---|---|---|---|---|
4076 | cdbxpp.exe | GET | 301 | 136.243.175.196:80 | http://update.cdburnerxp.se/ | DE | html | 237 b | unknown |
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
Connections
PID | Process | IP | Domain | ASN | CN | Reputation |
|---|---|---|---|---|---|---|
4076 | cdbxpp.exe | 136.243.175.196:443 | update.cdburnerxp.se | Hetzner Online GmbH | DE | unknown |
4076 | cdbxpp.exe | 136.243.175.196:80 | update.cdburnerxp.se | Hetzner Online GmbH | DE | unknown |
DNS requests
Domain | IP | Reputation |
|---|---|---|
update.cdburnerxp.se |
| unknown |
update.cdburnerxp.org |
| unknown |
Threats
Process | Message |
|---|---|
regsvr32.exe | HKCR
{
NoRemove AppID
{
'{3DD7EA49-B5E1-4493-895D-C73562138FC0}' = s 'StarBurnXLib'
'StarBurnX12.DLL'
{
val AppID = s '{3DD7EA49-B5E1-4493-895D-C73562138FC0}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.DriveSpeed.15 = s 'DriveSpeed Class'
{
CLSID = s '{E0EEE430-80D8-42D7-8D83-F046AECD7536}'
}
StarBurnX.DriveSpeed = s 'DriveSpeed Class'
{
CLSID = s '{E0EEE430-80D8-42D7-8D83-F046AECD7536}'
CurVer = s 'StarBurnX.DriveSpeed.15'
}
NoRemove CLSID
{
ForceRemove {E0EEE430-80D8-42D7-8D83-F046AECD7536} = s 'DriveSpeed Class'
{
ProgID = s 'StarBurnX.DriveSpeed.15'
VersionIndependentProgID = s 'StarBurnX.DriveSpeed'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.DriveSpeeds.15 = s 'DriveSpeeds Class'
{
CLSID = s '{7169A231-64EC-4702-98AB-05ABB6D882A9}'
}
StarBurnX.DriveSpeeds = s 'DriveSpeeds Class'
{
CLSID = s '{7169A231-64EC-4702-98AB-05ABB6D882A9}'
CurVer = s 'StarBurnX.DriveSpeeds.15'
}
NoRemove CLSID
{
ForceRemove {7169A231-64EC-4702-98AB-05ABB6D882A9} = s 'DriveSpeeds Class'
{
ProgID = s 'StarBurnX.DriveSpeeds.15'
VersionIndependentProgID = s 'StarBurnX.DriveSpeeds'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.DriveInfo.15 = s 'DriveInfo Class'
{
CLSID = s '{996C8DFD-8CE6-43B2-9414-CB6132485363}'
}
StarBurnX.DriveInfo = s 'DriveInfo Class'
{
CLSID = s '{996C8DFD-8CE6-43B2-9414-CB6132485363}'
CurVer = s 'StarBurnX.DriveInfo.15'
}
NoRemove CLSID
{
ForceRemove {996C8DFD-8CE6-43B2-9414-CB6132485363} = s 'DriveInfo Class'
{
ProgID = s 'StarBurnX.DriveInfo.15'
VersionIndependentProgID = s 'StarBurnX.DriveInfo'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.Track.15 = s 'Track Class'
{
CLSID = s '{F750BC9F-72CE-45C6-9D1F-BFEFB0765918}'
}
StarBurnX.Track = s 'Track Class'
{
CLSID = s '{F750BC9F-72CE-45C6-9D1F-BFEFB0765918}'
CurVer = s 'StarBurnX.Track.15'
}
NoRemove CLSID
{
ForceRemove {F750BC9F-72CE-45C6-9D1F-BFEFB0765918} = s 'Track Class'
{
ProgID = s 'StarBurnX.Track.15'
VersionIndependentProgID = s 'StarBurnX.Track'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.Tracks.15 = s 'Tracks Class'
{
CLSID = s '{AE860CE7-C15E-4B9C-BA5B-2EB38369E4AF}'
}
StarBurnX.Tracks = s 'Tracks Class'
{
CLSID = s '{AE860CE7-C15E-4B9C-BA5B-2EB38369E4AF}'
CurVer = s 'StarBurnX.Tracks.15'
}
NoRemove CLSID
{
ForceRemove {AE860CE7-C15E-4B9C-BA5B-2EB38369E4AF} = s 'Tracks Class'
{
ProgID = s 'StarBurnX.Tracks.15'
VersionIndependentProgID = s 'StarBurnX.Tracks'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.Session.15 = s 'Session Class'
{
CLSID = s '{80E026F0-CE90-4F15-986A-45317268AB5A}'
}
StarBurnX.Session = s 'Session Class'
{
CLSID = s '{80E026F0-CE90-4F15-986A-45317268AB5A}'
CurVer = s 'StarBurnX.Session.15'
}
NoRemove CLSID
{
ForceRemove {80E026F0-CE90-4F15-986A-45317268AB5A} = s 'Session Class'
{
ProgID = s 'StarBurnX.Session.15'
VersionIndependentProgID = s 'StarBurnX.Session'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.Sessions.15 = s 'Sessions Class'
{
CLSID = s '{4EE12AA6-A781-490F-96DA-783969C58A1A}'
}
StarBurnX.Sessions = s 'Sessions Class'
{
CLSID = s '{4EE12AA6-A781-490F-96DA-783969C58A1A}'
CurVer = s 'StarBurnX.Sessions.15'
}
NoRemove CLSID
{
ForceRemove {4EE12AA6-A781-490F-96DA-783969C58A1A} = s 'Sessions Class'
{
ProgID = s 'StarBurnX.Sessions.15'
VersionIndependentProgID = s 'StarBurnX.Sessions'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.DiscInfo.15 = s 'DiscInfo Class'
{
CLSID = s '{DE9B465F-0405-41B9-8C20-B6F0CACCC713}'
}
StarBurnX.DiscInfo = s 'DiscInfo Class'
{
CLSID = s '{DE9B465F-0405-41B9-8C20-B6F0CACCC713}'
CurVer = s 'StarBurnX.DiscInfo.15'
}
NoRemove CLSID
{
ForceRemove {DE9B465F-0405-41B9-8C20-B6F0CACCC713} = s 'DiscInfo Class'
{
ProgID = s 'StarBurnX.DiscInfo.15'
VersionIndependentProgID = s 'StarBurnX.DiscInfo'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|
regsvr32.exe | HKCR
{
StarBurnX.Drive.15 = s 'Drive Class'
{
CLSID = s '{102C6E30-5702-48C1-A492-A3F3EFB1958C}'
}
StarBurnX.Drive = s 'Drive Class'
{
CLSID = s '{102C6E30-5702-48C1-A492-A3F3EFB1958C}'
CurVer = s 'StarBurnX.Drive.15'
}
NoRemove CLSID
{
ForceRemove {102C6E30-5702-48C1-A492-A3F3EFB1958C} = s 'Drive Class'
{
ProgID = s 'StarBurnX.Drive.15'
VersionIndependentProgID = s 'StarBurnX.Drive'
ForceRemove 'Programmable'
InprocServer32 = s 'C:\Program Files\CDBurnerXP\StarBurnX15.dll'
{
val ThreadingModel = s 'Free'
}
'TypeLib' = s '{93CBA48A-1C58-4648-B22D-8F3588CB8D95}'
'Version' = s '15.7'
}
}
}
|