General Info

URL

http://download.glarysoft.com/gu5setup.exe

Full analysis
https://app.any.run/tasks/ab532fde-ab56-4f71-a5b5-d38564e2ab36
Verdict
Malicious activity
Analysis date
5/15/2019, 08:40:16
OS:
Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Tags:

loader

opendir

Indicators:

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distored by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

Software environment set and analysis options

Launch configuration

Task duration
120 seconds
Additional time used
60 seconds
Fakenet option
off
Heavy Evaision option
off
MITM proxy
off
Route via Tor
off
Network geolocation
off
Privacy
Public submission
Autoconfirmation of UAC
on

Software preset

  • Internet Explorer 8.0.7601.17514
  • Adobe Acrobat Reader DC MUI (15.023.20070)
  • Adobe Flash Player 26 ActiveX (26.0.0.131)
  • Adobe Flash Player 26 NPAPI (26.0.0.131)
  • Adobe Flash Player 26 PPAPI (26.0.0.131)
  • Adobe Refresh Manager (1.8.0)
  • CCleaner (5.35)
  • FileZilla Client 3.36.0 (3.36.0)
  • Google Chrome (73.0.3683.75)
  • Google Update Helper (1.3.33.23)
  • Java 8 Update 92 (8.0.920.14)
  • Java Auto Updater (2.8.92.14)
  • Microsoft .NET Framework 4.6.1 (4.6.01055)
  • Microsoft Office Access MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Access Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office OneNote MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Outlook MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office PowerPoint MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Professional 2010 (14.0.6029.1000)
  • Microsoft Office Proof (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (French) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Spanish) 2010 (14.0.6029.1000)
  • Microsoft Office Proofing (English) 2010 (14.0.6029.1000)
  • Microsoft Office Publisher MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Single Image 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (9.0.30729.6161)
  • Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (10.0.40219)
  • Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (12.0.30501.0)
  • Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (14.15.26706.0)
  • Microsoft Visual C++ 2017 x86 Additional Runtime - 14.15.26706 (14.15.26706)
  • Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.15.26706 (14.15.26706)
  • Mozilla Firefox 65.0.2 (x86 en-US) (65.0.2)
  • Notepad++ (32-bit x86) (7.5.1)
  • Opera 12.15 (12.15.1748)
  • Skype version 8.29 (8.29)
  • VLC media player (2.2.6)
  • WinRAR 5.60 (32-bit) (5.60.0)

Hotfixes

  • Client LanguagePack Package
  • Client Refresh LanguagePack Package
  • CodecPack Basic Package
  • Foundation Package
  • IE Troubleshooters Package
  • InternetExplorer Optional Package
  • KB2534111
  • KB2999226
  • KB976902
  • LocalPack AU Package
  • LocalPack CA Package
  • LocalPack GB Package
  • LocalPack US Package
  • LocalPack ZA Package
  • ProfessionalEdition
  • UltimateEdition

Behavior activities

MALICIOUS SUSPICIOUS INFO
Application was dropped or rewritten from another process
  • upgrade.exe (PID: 3640)
  • autoupdate.exe (PID: 772)
  • Initialize.exe (PID: 1288)
  • StartupManager.exe (PID: 2628)
  • Integrator.exe (PID: 3044)
  • DiskDefrag.exe (PID: 3472)
  • DiskDefrag.exe (PID: 2416)
  • gu5setup.exe (PID: 1824)
  • gu5setup.exe (PID: 3688)
  • sendinfo.exe (PID: 2452)
Loads dropped or rewritten executable
  • upgrade.exe (PID: 3640)
  • autoupdate.exe (PID: 772)
  • Integrator.exe (PID: 3044)
  • StartupManager.exe (PID: 2628)
  • sendinfo.exe (PID: 2452)
  • Initialize.exe (PID: 1288)
  • gu5setup.exe (PID: 3688)
  • DiskDefrag.exe (PID: 2416)
  • DiskDefrag.exe (PID: 3472)
Loads the Task Scheduler COM API
  • Integrator.exe (PID: 3044)
  • Initialize.exe (PID: 1288)
Changes the autorun value in the registry
  • StartupManager.exe (PID: 2628)
Actions looks like stealing of personal data
  • Initialize.exe (PID: 1288)
  • Integrator.exe (PID: 3044)
Loads the Task Scheduler DLL interface
  • Initialize.exe (PID: 1288)
Downloads executable files from the Internet
  • chrome.exe (PID: 1892)
Creates files in the program directory
  • Initialize.exe (PID: 1288)
  • StartupManager.exe (PID: 2628)
  • Integrator.exe (PID: 3044)
  • gu5setup.exe (PID: 3688)
Modifies the open verb of a shell class
  • gu5setup.exe (PID: 3688)
Creates files in the user directory
  • Initialize.exe (PID: 1288)
  • Integrator.exe (PID: 3044)
  • gu5setup.exe (PID: 3688)
  • DiskDefrag.exe (PID: 3472)
Low-level read access rights to disk partition
  • DiskDefrag.exe (PID: 2416)
Creates files in the Windows directory
  • StartupManager.exe (PID: 2628)
  • DiskDefrag.exe (PID: 3472)
Creates or modifies windows services
  • DiskDefrag.exe (PID: 2416)
Executable content was dropped or overwritten
  • StartupManager.exe (PID: 2628)
  • chrome.exe (PID: 1892)
  • sendinfo.exe (PID: 2452)
  • DiskDefrag.exe (PID: 3472)
  • gu5setup.exe (PID: 3688)
Removes files from Windows directory
  • DiskDefrag.exe (PID: 2416)
Creates files in the driver directory
  • StartupManager.exe (PID: 2628)
  • DiskDefrag.exe (PID: 3472)
Starts Internet Explorer
  • gu5setup.exe (PID: 3688)
Creates a software uninstall entry
  • gu5setup.exe (PID: 3688)
  • sendinfo.exe (PID: 2452)
Creates COM task schedule object
  • gu5setup.exe (PID: 3688)
Changes settings of System certificates
  • iexplore.exe (PID: 1352)
Reads settings of System Certificates
  • iexplore.exe (PID: 1352)
Adds / modifies Windows certificates
  • iexplore.exe (PID: 1352)
Creates files in the user directory
  • iexplore.exe (PID: 1352)
Changes internet zones settings
  • iexplore.exe (PID: 3976)
Reads Internet Cache Settings
  • iexplore.exe (PID: 1352)
  • chrome.exe (PID: 1892)
Application launched itself
  • iexplore.exe (PID: 3976)
  • chrome.exe (PID: 1892)
Reads internet explorer settings
  • iexplore.exe (PID: 1352)
Dropped object may contain Bitcoin addresses
  • gu5setup.exe (PID: 3688)

Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report

Screenshots

Processes

Total processes
55
Monitored processes
20
Malicious processes
8
Suspicious processes
2

Behavior graph

+
drop and start drop and start start drop and start drop and start drop and start drop and start drop and start drop and start chrome.exe chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs gu5setup.exe no specs gu5setup.exe chrome.exe no specs sendinfo.exe diskdefrag.exe diskdefrag.exe no specs startupmanager.exe initialize.exe iexplore.exe iexplore.exe integrator.exe autoupdate.exe upgrade.exe
Specs description
Program did not start
Integrity level elevation
Task сontains an error or was rebooted
Process has crashed
Task contains several apps running
Executable file was dropped
Debug information is available
Process was injected
Network attacks were detected
Application downloaded the executable file
Actions similar to stealing personal data
Behavior similar to exploiting the vulnerability
Inspected object has sucpicious PE structure
File is detected by antivirus software
CPU overrun
RAM overrun
Process starts the services
Process was added to the startup
Behavior similar to spam
Low-level access to the HDD
Probably Tor was used
System was rebooted
Connects to the network
Known threat

Process information

Click at the process to see the details.

PID
1892
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" http://download.glarysoft.com/gu5setup.exe
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Exit code
3221225547
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\ole32.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\netutils.dll
c:\windows\system32\srvcli.dll
c:\windows\system32\wkscli.dll
c:\windows\system32\samcli.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\oleacc.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\hid.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\winusb.dll
c:\windows\system32\msi.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\gpapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\dhcpcsvc6.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\mscms.dll
c:\windows\system32\winsta.dll
c:\windows\system32\wlanapi.dll
c:\windows\system32\wlanutil.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wpc.dll
c:\windows\system32\samlib.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\firewallapi.dll
c:\windows\system32\kbdus.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wship6.dll
c:\windows\system32\windowscodecs.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\ehstorshell.dll
c:\windows\system32\linkinfo.dll
c:\windows\system32\cscui.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\cscapi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\ntshrui.dll
c:\windows\system32\slc.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\imageres.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\cryptnet.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\mssprxy.dll
c:\windows\system32\imagehlp.dll
c:\windows\system32\shdocvw.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\users\admin\downloads\gu5setup.exe
c:\windows\system32\mpr.dll
c:\windows\system32\sfc.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\devrtl.dll

PID
2776
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=73.0.3683.75 --initial-client-data=0x7c,0x80,0x84,0x78,0x88,0x6e870f18,0x6e870f28,0x6e870f34
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\cryptbase.dll

PID
2556
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=252 --on-initialized-event-handle=308 --parent-handle=312 /prefetch:6
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ole32.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_watcher.dll

PID
592
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=940,15379422907693368005,9165559896744267503,131072 --enable-features=PasswordImport --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=66203899630775436 --mojo-platform-channel-handle=956 --ignored=" --type=renderer " /prefetch:2
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\msmpeg2vdec.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\slc.dll
c:\windows\system32\sqmapi.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\dxva2.dll
c:\program files\google\chrome\application\73.0.3683.75\d3dcompiler_47.dll
c:\windows\system32\ddraw.dll
c:\windows\system32\dciman32.dll
c:\program files\google\chrome\application\73.0.3683.75\swiftshader\libglesv2.dll
c:\program files\google\chrome\application\73.0.3683.75\swiftshader\libegl.dll

PID
2552
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=940,15379422907693368005,9165559896744267503,131072 --enable-features=PasswordImport --service-pipe-token=15907371985053690175 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=15907371985053690175 --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2008 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
2476
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=940,15379422907693368005,9165559896744267503,131072 --enable-features=PasswordImport --service-pipe-token=11167921306620372008 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=11167921306620372008 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2020 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
3416
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=940,15379422907693368005,9165559896744267503,131072 --enable-features=PasswordImport --service-pipe-token=10391253757976413120 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=10391253757976413120 --renderer-client-id=3 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2232 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll

PID
1824
CMD
"C:\Users\admin\Downloads\gu5setup.exe"
Path
C:\Users\admin\Downloads\gu5setup.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
3221226540
Version:
Company
Glarysoft Ltd
Description
Glary Utilities Installer
Version
Modules
Image
c:\users\admin\downloads\gu5setup.exe
c:\systemroot\system32\ntdll.dll

PID
3688
CMD
"C:\Users\admin\Downloads\gu5setup.exe"
Path
C:\Users\admin\Downloads\gu5setup.exe
Indicators
Parent process
chrome.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Glarysoft Ltd
Description
Glary Utilities Installer
Version
Modules
Image
c:\users\admin\downloads\gu5setup.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\version.dll
c:\windows\system32\shfolder.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\users\admin\appdata\local\temp\nss766d.tmp\system.dll
c:\windows\system32\riched20.dll
c:\users\admin\appdata\local\temp\nss766d.tmp\nsdialogs.dll
c:\windows\system32\comdlg32.dll
c:\program files\common files\microsoft shared\ink\tiptsf.dll
c:\users\admin\appdata\local\temp\nss766d.tmp\killprocdll.dll
c:\windows\system32\psapi.dll
c:\program files\glary utilities 5\gridmap.ocx
c:\windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\windows\system32\msimg32.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
c:\windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\mfc90enu.dll
c:\program files\glary utilities 5\contexthandler.dll
c:\users\admin\appdata\local\temp\nss766d.tmp\machinecode.dll
c:\windows\system32\winspool.drv
c:\windows\system32\iphlpapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\dhcpcsvc.dll
c:\users\admin\appdata\local\temp\nss766d.tmp\sendinfo.exe
c:\program files\glary utilities 5\diskdefrag.exe
c:\program files\glary utilities 5\startupmanager.exe
c:\program files\glary utilities 5\initialize.exe
c:\windows\system32\linkinfo.dll
c:\windows\system32\ntshrui.dll
c:\windows\system32\srvcli.dll
c:\windows\system32\cscapi.dll
c:\windows\system32\slc.dll
c:\program files\glary utilities 5\integrator.exe
c:\program files\glary utilities 5\uninst.exe
c:\windows\system32\ieframe.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\program files\internet explorer\iexplore.exe
c:\windows\system32\netutils.dll

PID
3148
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=940,15379422907693368005,9165559896744267503,131072 --enable-features=PasswordImport --disable-gpu-sandbox --use-gl=disabled --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=17928454504747871700 --mojo-platform-channel-handle=4068 /prefetch:2
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google Inc.
Description
Google Chrome
Version
73.0.3683.75
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\winmm.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\73.0.3683.75\chrome_child.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\msmpeg2vdec.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\slc.dll
c:\windows\system32\sqmapi.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\dxva2.dll

PID
2452
CMD
"C:\Users\admin\AppData\Local\Temp\nss766D.tmp\sendinfo.exe" /install /GU5
Path
C:\Users\admin\AppData\Local\Temp\nss766D.tmp\sendinfo.exe
Indicators
Parent process
gu5setup.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Description
Version
Modules
Image
c:\users\admin\appdata\local\temp\nss766d.tmp\sendinfo.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\version.dll
c:\windows\system32\shfolder.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\shdocvw.dll
c:\users\admin\appdata\local\temp\nspbc7e.tmp\xtinfoplugin.dll
c:\windows\system32\winspool.drv
c:\users\admin\appdata\local\temp\nspbc7e.tmp\inetc.dll
c:\windows\system32\wininet.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll

PID
3472
CMD
"C:\Program Files\Glary Utilities 5\DiskDefrag.exe" -NewInstallNative
Path
C:\Program Files\Glary Utilities 5\DiskDefrag.exe
Indicators
Parent process
gu5setup.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Glarysoft Ltd
Description
Glary Utilities Defragmenter
Version
5.0.0.63
Modules
Image
c:\program files\glary utilities 5\diskdefrag.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shlwapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\windows\system32\uxtheme.dll
c:\program files\glary utilities 5\config.dll
c:\program files\glary utilities 5\crashreport.dll
c:\windows\system32\winspool.drv
c:\program files\glary utilities 5\dbghelp.dll
c:\windows\system32\version.dll
c:\windows\system32\psapi.dll
c:\program files\glary utilities 5\languages.dll
c:\program files\glary utilities 5\lockdll.dll
c:\program files\glary utilities 5\zlib1.dll
c:\program files\glary utilities 5\appmetrics.dll
c:\program files\glary utilities 5\machinecode.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ws2_32.dll
c:\program files\glary utilities 5\bottdefrag.dll
c:\program files\glary utilities 5\checkupdate.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\oledlg.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\dwmapi.dll
c:\windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\mfc90enu.dll
c:\program files\glary utilities 5\integrator.exe
c:\windows\system32\cryptbase.dll

PID
2416
CMD
"C:\Program Files\Glary Utilities 5\DiskDefrag.exe" -InstallNative
Path
C:\Program Files\Glary Utilities 5\DiskDefrag.exe
Indicators
No indicators
Parent process
gu5setup.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Glarysoft Ltd
Description
Glary Utilities Defragmenter
Version
5.0.0.63
Modules
Image
c:\program files\glary utilities 5\diskdefrag.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shlwapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\windows\system32\uxtheme.dll
c:\program files\glary utilities 5\config.dll
c:\program files\glary utilities 5\crashreport.dll
c:\windows\system32\winspool.drv
c:\program files\glary utilities 5\dbghelp.dll
c:\windows\system32\version.dll
c:\windows\system32\psapi.dll
c:\program files\glary utilities 5\languages.dll
c:\program files\glary utilities 5\lockdll.dll
c:\program files\glary utilities 5\zlib1.dll
c:\program files\glary utilities 5\appmetrics.dll
c:\program files\glary utilities 5\machinecode.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ws2_32.dll
c:\program files\glary utilities 5\bottdefrag.dll
c:\program files\glary utilities 5\checkupdate.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\oledlg.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\wininet.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\dwmapi.dll
c:\windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\mfc90enu.dll
c:\program files\glary utilities 5\integrator.exe
c:\windows\system32\cryptbase.dll
c:\windows\system32\profapi.dll

PID
2628
CMD
"C:\Program Files\Glary Utilities 5\StartupManager.exe" -install
Path
C:\Program Files\Glary Utilities 5\StartupManager.exe
Indicators
Parent process
gu5setup.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Glarysoft Ltd
Description
Glary Utilities StartupManager
Version
5.10.0.142
Modules
Image
c:\program files\glary utilities 5\startupmanager.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shlwapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\msimg32.dll
c:\program files\glary utilities 5\startupmanager.dll
c:\program files\glary utilities 5\log.dll
c:\program files\glary utilities 5\objectadmin.dll
c:\windows\system32\version.dll
c:\program files\glary utilities 5\restorecenter.dll
c:\program files\glary utilities 5\backup.dll
c:\program files\glary utilities 5\languages.dll
c:\program files\glary utilities 5\config.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\program files\glary utilities 5\zlib1.dll
c:\program files\glary utilities 5\shortcutfixer.dll
c:\windows\system32\mpr.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\winspool.drv
c:\program files\glary utilities 5\lockdll.dll
c:\program files\glary utilities 5\appmetrics.dll
c:\program files\glary utilities 5\machinecode.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\uxtheme.dll
c:\program files\glary utilities 5\boottime.dll
c:\windows\system32\psapi.dll
c:\program files\glary utilities 5\checkupdate.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\oledlg.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\program files\glary utilities 5\crashreport.dll
c:\program files\glary utilities 5\dbghelp.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\dwmapi.dll
c:\windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\mfc90enu.dll
c:\windows\system32\cryptbase.dll
c:\program files\glary utilities 5\integrator.exe

PID
1288
CMD
"C:\Program Files\Glary Utilities 5\Initialize.exe" /setupschedule /installinit
Path
C:\Program Files\Glary Utilities 5\Initialize.exe
Indicators
Parent process
gu5setup.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Glarysoft Ltd
Description
Glary Utilities Initialize
Version
5, 0, 0, 43
Modules
Image
c:\program files\glary utilities 5\initialize.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shlwapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
c:\program files\glary utilities 5\crashreport.dll
c:\windows\system32\winspool.drv
c:\program files\glary utilities 5\dbghelp.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\windows\system32\version.dll
c:\windows\system32\psapi.dll
c:\program files\glary utilities 5\startupmanager.dll
c:\program files\glary utilities 5\log.dll
c:\program files\glary utilities 5\objectadmin.dll
c:\program files\glary utilities 5\restorecenter.dll
c:\program files\glary utilities 5\backup.dll
c:\program files\glary utilities 5\languages.dll
c:\program files\glary utilities 5\config.dll
c:\program files\glary utilities 5\zlib1.dll
c:\program files\glary utilities 5\shortcutfixer.dll
c:\windows\system32\mpr.dll
c:\windows\system32\oleacc.dll
c:\program files\glary utilities 5\lockdll.dll
c:\program files\glary utilities 5\appmetrics.dll
c:\program files\glary utilities 5\machinecode.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\uxtheme.dll
c:\program files\glary utilities 5\boottime.dll
c:\program files\glary utilities 5\checkupdate.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\oledlg.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\program files\glary utilities 5\trackseraser.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\dwmapi.dll
c:\windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\mfc90enu.dll
c:\windows\system32\cryptbase.dll
c:\program files\glary utilities 5\integrator.exe
c:\windows\system32\profapi.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\taskschd.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\mstask.dll
c:\windows\system32\xmllite.dll

PID
3976
CMD
"C:\Program Files\Internet Explorer\iexplore.exe" -nohome
Path
C:\Program Files\Internet Explorer\iexplore.exe
Indicators
Parent process
gu5setup.exe
User
admin
Integrity Level
HIGH
Exit code
1
Version:
Company
Microsoft Corporation
Description
Internet Explorer
Version
8.00.7600.16385 (win7_rtm.090713-1255)
Modules
Image
c:\program files\internet explorer\iexplore.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\psapi.dll
c:\windows\system32\oleacc.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\profapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\cryptbase.dll
c:\program files\internet explorer\sqmapi.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\ieui.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\clbcatq.dll
c:\program files\internet explorer\ieproxy.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\url.dll
c:\windows\system32\version.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\xmllite.dll
c:\windows\system32\propsys.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\msfeeds.dll
c:\windows\system32\sxs.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\mlang.dll
c:\windows\system32\userenv.dll
c:\windows\system32\linkinfo.dll

PID
1352
CMD
"C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:3976 CREDAT:79873
Path
C:\Program Files\Internet Explorer\iexplore.exe
Indicators
Parent process
iexplore.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Microsoft Corporation
Description
Internet Explorer
Version
8.00.7600.16385 (win7_rtm.090713-1255)
Modules
Image
c:\program files\internet explorer\iexplore.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\psapi.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\oleacc.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\comdlg32.dll
c:\program files\internet explorer\ieshims.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\rpcrtremote.dll
c:\program files\internet explorer\sqmapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\propsys.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\profapi.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\rsaenh.dll
c:\program files\internet explorer\ieproxy.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\mlang.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\apphelp.dll
c:\program files\java\jre1.8.0_92\bin\ssv.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
c:\windows\system32\version.dll
c:\progra~1\micros~1\office14\urlredir.dll
c:\windows\system32\secur32.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\progra~1\micros~1\office14\msohev.dll
c:\program files\java\jre1.8.0_92\bin\jp2ssv.dll
c:\program files\java\jre1.8.0_92\bin\msvcr100.dll
c:\program files\java\jre1.8.0_92\bin\deploy.dll
c:\windows\system32\imagehlp.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\sxs.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\mshtml.dll
c:\windows\system32\msls31.dll
c:\windows\system32\msimtf.dll
c:\windows\system32\userenv.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\schannel.dll
c:\windows\system32\credssp.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\gpapi.dll
c:\windows\system32\cryptnet.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\dhcpcsvc6.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\cabinet.dll
c:\windows\system32\devrtl.dll
c:\windows\system32\iepeers.dll
c:\windows\system32\winspool.drv
c:\windows\system32\t2embed.dll
c:\windows\system32\jscript.dll
c:\windows\system32\macromed\flash\flash32_26_0_0_131.ocx
c:\windows\system32\winmm.dll
c:\windows\system32\dsound.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\mscms.dll
c:\windows\system32\dinput8.dll
c:\windows\system32\imgutil.dll
c:\windows\system32\pngfilt.dll

PID
3044
CMD
"C:\Program Files\Glary Utilities 5\Integrator.exe"
Path
C:\Program Files\Glary Utilities 5\Integrator.exe
Indicators
Parent process
gu5setup.exe
User
admin
Integrity Level
HIGH
Version:
Company
Glarysoft Ltd
Description
Glary Utilities 5
Version
5, 119, 0, 144
Modules
Image
c:\program files\glary utilities 5\integrator.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shlwapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
c:\program files\glary utilities 5\languages.dll
c:\program files\glary utilities 5\config.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\glary utilities 5\boottime.dll
c:\program files\glary utilities 5\lockdll.dll
c:\windows\system32\version.dll
c:\program files\glary utilities 5\zlib1.dll
c:\program files\glary utilities 5\appmetrics.dll
c:\program files\glary utilities 5\machinecode.dll
c:\windows\system32\winspool.drv
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\program files\glary utilities 5\crashreport.dll
c:\program files\glary utilities 5\dbghelp.dll
c:\windows\system32\psapi.dll
c:\program files\glary utilities 5\checkupdate.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\oledlg.dll
c:\program files\glary utilities 5\restorecenter.dll
c:\program files\glary utilities 5\backup.dll
c:\program files\glary utilities 5\log.dll
c:\program files\glary utilities 5\objectadmin.dll
c:\program files\glary utilities 5\settings.dll
c:\windows\system32\uxtheme.dll
c:\program files\glary utilities 5\trackseraser.dll
c:\windows\system32\msctf.dll
c:\windows\system32\imm32.dll
c:\windows\system32\dwmapi.dll
c:\windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\mfc90enu.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\profapi.dll
c:\windows\system32\windowscodecs.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\asycfilt.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\msxml3.dll
c:\windows\system32\taskschd.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\propsys.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\program files\glary utilities 5\autoupdate.exe
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\program files\glary utilities 5\upgrade.exe
c:\windows\system32\dnsapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\schannel.dll
c:\windows\system32\credssp.dll
c:\windows\system32\secur32.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\gpapi.dll
c:\windows\system32\dhcpcsvc.dll

PID
772
CMD
"C:\Program Files\Glary Utilities 5\autoupdate.exe"
Path
C:\Program Files\Glary Utilities 5\autoupdate.exe
Indicators
Parent process
Integrator.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Glarysoft Ltd
Description
Glary Utilities AutoUpdate
Version
5, 0, 0, 8
Modules
Image
c:\program files\glary utilities 5\autoupdate.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\shlwapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\shell32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\oledlg.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\program files\glary utilities 5\crashreport.dll
c:\program files\glary utilities 5\dbghelp.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\windows\system32\version.dll
c:\windows\system32\psapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\glary utilities 5\integrator.exe
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\profapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\program files\glary utilities 5\config.dll
c:\windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\windows\system32\msimg32.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\dwmapi.dll
c:\windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\mfc90enu.dll

PID
3640
CMD
"C:\Program Files\Glary Utilities 5\upgrade.exe"
Path
C:\Program Files\Glary Utilities 5\upgrade.exe
Indicators
Parent process
Integrator.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Glarysoft Ltd
Description
Glary Utilities Upgrade
Version
5.0.0.9
Modules
Image
c:\program files\glary utilities 5\upgrade.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shlwapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\rpcrt4.dll
c:\program files\glary utilities 5\crashreport.dll
c:\windows\system32\winspool.drv
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\shell32.dll
c:\program files\glary utilities 5\dbghelp.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\windows\system32\version.dll
c:\windows\system32\psapi.dll
c:\program files\glary utilities 5\config.dll
c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
c:\program files\glary utilities 5\lockdll.dll
c:\program files\glary utilities 5\languages.dll
c:\program files\glary utilities 5\zlib1.dll
c:\program files\glary utilities 5\appmetrics.dll
c:\program files\glary utilities 5\machinecode.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\dwmapi.dll
c:\windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\mfc90enu.dll
c:\program files\glary utilities 5\integrator.exe
c:\windows\system32\wininet.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\profapi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll

Registry activity

Total events
1969
Read events
1606
Write events
362
Delete events
1

Modification events

PID
Process
Operation
Key
Name
Value
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASAPI32
EnableFileTracing
0
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASAPI32
EnableConsoleTracing
0
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASAPI32
FileTracingMask
4294901760
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASAPI32
ConsoleTracingMask
4294901760
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASAPI32
MaxFileSize
1048576
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASAPI32
FileDirectory
%windir%\tracing
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASMANCS
EnableFileTracing
0
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASMANCS
EnableConsoleTracing
0
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASMANCS
FileTracingMask
4294901760
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASMANCS
ConsoleTracingMask
4294901760
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASMANCS
MaxFileSize
1048576
3640
upgrade.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\upgrade_RASMANCS
FileDirectory
%windir%\tracing
3640
upgrade.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
3640
upgrade.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
3640
upgrade.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
3640
upgrade.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
Systemversion
6.1.7601.2
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
Syslanguage
English
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASAPI32
EnableFileTracing
0
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASAPI32
EnableConsoleTracing
0
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASAPI32
FileTracingMask
4294901760
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASAPI32
ConsoleTracingMask
4294901760
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASAPI32
MaxFileSize
1048576
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASAPI32
FileDirectory
%windir%\tracing
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASMANCS
EnableFileTracing
0
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASMANCS
EnableConsoleTracing
0
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASMANCS
FileTracingMask
4294901760
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASMANCS
ConsoleTracingMask
4294901760
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASMANCS
MaxFileSize
1048576
2452
sendinfo.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\sendinfo_RASMANCS
FileDirectory
%windir%\tracing
2452
sendinfo.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
2452
sendinfo.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
2452
sendinfo.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
2452
sendinfo.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
2556
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BrowserExitCodes
1892-13202376030680500
259
2556
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BrowserExitCodes
1892-13202376030680500
0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{35AE4004-4194-4243-92AA-351BB7239539}\1.0
GridMap ActiveX ¿Ø¼þÄ£¿é
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{35AE4004-4194-4243-92AA-351BB7239539}\1.0\FLAGS
2
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{35AE4004-4194-4243-92AA-351BB7239539}\1.0\0\win32
C:\Program Files\Glary Utilities 5\GridMap.ocx
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{35AE4004-4194-4243-92AA-351BB7239539}\1.0\HELPDIR
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{28C97FA4-8378-42BF-A6F9-D615EB1272D7}
_DGridMap_Ctrl
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{28C97FA4-8378-42BF-A6F9-D615EB1272D7}\ProxyStubClsid
{00020420-0000-0000-C000-000000000046}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{28C97FA4-8378-42BF-A6F9-D615EB1272D7}\ProxyStubClsid32
{00020420-0000-0000-C000-000000000046}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{28C97FA4-8378-42BF-A6F9-D615EB1272D7}\TypeLib
{35AE4004-4194-4243-92AA-351BB7239539}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{28C97FA4-8378-42BF-A6F9-D615EB1272D7}\TypeLib
Version
1.0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{31FB3410-EA8B-4931-91C5-ADA7B91D953B}
_DGridMap_CtrlEvents
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{31FB3410-EA8B-4931-91C5-ADA7B91D953B}\ProxyStubClsid
{00020420-0000-0000-C000-000000000046}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{31FB3410-EA8B-4931-91C5-ADA7B91D953B}\ProxyStubClsid32
{00020420-0000-0000-C000-000000000046}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{31FB3410-EA8B-4931-91C5-ADA7B91D953B}\TypeLib
{35AE4004-4194-4243-92AA-351BB7239539}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{31FB3410-EA8B-4931-91C5-ADA7B91D953B}\TypeLib
Version
1.0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7A1C7081-0275-49FB-B76F-B9A66767BB56}
GridMap 属性页
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7A1C7081-0275-49FB-B76F-B9A66767BB56}\InprocServer32
C:\PROGRA~1\GLARYU~1\GridMap.ocx
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GRIDMAP_CTRL.GridMapCtrl.1
GridMap 控件
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GRIDMAP_CTRL.GridMapCtrl.1\CLSID
{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}
GridMap 控件
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\ProgID
GRIDMAP_CTRL.GridMapCtrl.1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\InprocServer32
C:\PROGRA~1\GLARYU~1\GridMap.ocx
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\ToolboxBitmap32
C:\PROGRA~1\GLARYU~1\GridMap.ocx, 1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\MiscStatus
0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\MiscStatus\1
131473
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\Control
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\TypeLib
{35AE4004-4194-4243-92AA-351BB7239539}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\Version
1.0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58B505BE-F589-4E8E-8BF2-B78E078CA8F7}\InprocServer32
ThreadingModel
Apartment
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{A805009D-B902-439A-8E64-26EE3507A12E}
ContextHandler
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\ContextHandler.DLL
AppID
{A805009D-B902-439A-8E64-26EE3507A12E}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ContextHandler.CContextMenu.1
CContextMenu Class
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ContextHandler.CContextMenu.1\CLSID
{B3C418F8-922B-4faf-915E-59BC14448CF7}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ContextHandler.CContextMenu
CContextMenu Class
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ContextHandler.CContextMenu\CLSID
{B3C418F8-922B-4faf-915E-59BC14448CF7}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ContextHandler.CContextMenu\CurVer
ContextHandler.CContextMenu.1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7}
CContextMenu Class
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7}\ProgID
ContextHandler.CContextMenu.1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7}\VersionIndependentProgID
ContextHandler.CContextMenu
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7}\InprocServer32
C:\Program Files\Glary Utilities 5\ContextHandler.dll
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7}\InprocServer32
ThreadingModel
Apartment
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7}\TypeLib
{B52C0F28-8D4C-4886-965C-0A772490064E}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B52C0F28-8D4C-4886-965C-0A772490064E}\1.0
ContextHandler 1.0 ÀàÐÍ¿â
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B52C0F28-8D4C-4886-965C-0A772490064E}\1.0\FLAGS
0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B52C0F28-8D4C-4886-965C-0A772490064E}\1.0\0\win32
C:\Program Files\Glary Utilities 5\ContextHandler.dll
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B52C0F28-8D4C-4886-965C-0A772490064E}\1.0\HELPDIR
C:\Program Files\Glary Utilities 5
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{FD50332F-185B-4D3C-B921-E0B65E547F28}
ICContextMenu
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{FD50332F-185B-4D3C-B921-E0B65E547F28}\ProxyStubClsid
{00020424-0000-0000-C000-000000000046}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{FD50332F-185B-4D3C-B921-E0B65E547F28}\ProxyStubClsid32
{00020424-0000-0000-C000-000000000046}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{FD50332F-185B-4D3C-B921-E0B65E547F28}\TypeLib
{B52C0F28-8D4C-4886-965C-0A772490064E}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{FD50332F-185B-4D3C-B921-E0B65E547F28}\TypeLib
Version
1.0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Glary Utilities
{B3C418F8-922B-4faf-915E-59BC14448CF7}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\ShellEx
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\Glary Utilities
{B3C418F8-922B-4faf-915E-59BC14448CF7}
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Glary Utilities
{B3C418F8-922B-4faf-915E-59BC14448CF7}
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
Language
english.lng
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
Macaddress
5619F625B43C5E8E3BC899B0ED05C376
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
Channel
10000
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
ProductID
51190144037000
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
DesktopShortcutFlag
1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
QuickLaunchFlag
1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
QuickLaunch
true
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
GlobalAssocChangedCounter
57
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Integrator5.exe
C:\Program Files\Glary Utilities 5\Integrator.exe
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
DisplayName
Glary Utilities 5.119
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
UninstallString
C:\Program Files\Glary Utilities 5\uninst.exe
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
DisplayIcon
C:\Program Files\Glary Utilities 5\Integrator.exe
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
DisplayVersion
5.119.0.144
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
URLInfoAbout
http://www.glarysoft.com/
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
Publisher
Glarysoft Ltd
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings\ContextMenu
Analyze Diskspace
1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings\ContextMenu
Decrypt
1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings\ContextMenu
Disk Defrag
1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings\ContextMenu
EmptyFolder
1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings\ContextMenu
Encrypt
1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings\ContextMenu
Join
1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings\ContextMenu
Split
1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings\ContextMenu
Wipe
1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
UpgradeTags
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
UpdateFile
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
RefVersion
2019-05-13
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
UpdateDate
2019-05-13
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
LngVersion
2019-05-13
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
ChannelNumber
10000
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
ProductID
1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
ImprovementFlag
1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings
HelpPlan
1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
Date
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
RootDir
C:\Program Files\Glary Utilities 5
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.gfe
GU.Encrypted
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GU.Encrypted
Glary Utilities Encrypted File
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GU.Encrypted\DefaultIcon
C:\Program Files\Glary Utilities 5\fileencrypt.exe,0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GU.Encrypted\Shell\Open\Command
C:\Program Files\Glary Utilities 5\fileencrypt.exe -d %1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.gfs
GU.Splitted
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GU.Splitted
Glary Utilities Splitted File
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GU.Splitted\DefaultIcon
C:\Program Files\Glary Utilities 5\filesplitter.exe,0
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GU.Splitted\Shell\Open\Command
C:\Program Files\Glary Utilities 5\filesplitter.exe -j %1
3688
gu5setup.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings
AutoLoad
1
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Glary Utilities 5
NSIS:Language
1033
3688
gu5setup.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager
PendingFileRenameOperations
\??\C:\Users\admin\AppData\Local\Temp\nss766D.tmp\MachineCode.dll
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
failed_count
0
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
2
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
01000000
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
1
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
dr
1
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome
UsageStatsInSample
0
1892
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}
usagestats
0
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid
1892
chrome.exe
delete key
HKEY_CURRENT_USER\Software\Google\Chrome\BrowserExitCodes
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid_installdate
0
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid_enableddate
0
1892
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\_NumAccounts
aggregate
sum()
1892
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\_NumAccounts
S-1-5-21-1302019708-1500728564-335382590-1000
1
1892
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\_NumSignedIn
aggregate
sum()
1892
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\_NumSignedIn
S-1-5-21-1302019708-1500728564-335382590-1000
0
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
0
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
13202376031883625
1892
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\62\52C64B7E
LanguageList
en-US
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Discardable\PostSetup\Component Categories\{56FFCC30-D398-11D0-B2AE-00A0C908FA49}\Enum
Implementing
1C00000001000000E307050003000F00060028002A000B0300000000
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Discardable\PostSetup\Component Categories\{56FFCC30-D398-11D0-B2AE-00A0C908FA49}\Enum
Implementing
1C00000001000000E307050003000F00060028002A000D0300000000
1892
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
1
3472
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
Date
43600.3201736111
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag
TimeIntervalType
3
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag
TimeInterval
7
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag
LogNumber
5
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag
LogPath
C:\Users\admin\AppData\Roaming\DiskDefrag
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag
DefragModel
2
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag\C
C
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag\C
MFT
1
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag\C
PageFile
1
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag\C
HivernationFile
1
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag\C
SystemFile
1
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag
DefragVolumeList
C
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag
Status
0
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager
BootExecute
autocheck autochk *
2416
DiskDefrag.exe
write
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\BootDefrag
RunCHK
0
2628
StartupManager.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings
BackupsMax
60
2628
StartupManager.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
GUDelayStartup
"C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun
1288
Initialize.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings
BackupsMax
60
1288
Initialize.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings
SaveLog
1
1288
Initialize.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
AURunType
1
1288
Initialize.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
AUTimeSpan
1
1288
Initialize.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
ProductStatue
1
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
CompatibilityFlags
0
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones
SecuritySafe
1
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Recovery\AdminActive
{6D918510-76DC-11E9-A370-5254004A04AF}
0
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Type
4
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Count
1
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2670000A-7350-4F3C-8081-5663EE0C6C49}\iexplore
Time
E307050003000F00060029000D007B00
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Type
4
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Count
1
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}\iexplore
Time
E307050003000F00060029000D008B00
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
FullScreen
no
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
Window_Placement
2C0000000000000001000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF20000000200000004003000078020000
3976
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Favorites\Links
Order
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
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Type
3
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Count
1
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
Time
E307050003000F00060029000D00D801
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
LoadTime
22
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Type
3
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Count
1
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
Time
E307050003000F00060029000D00F701
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
LoadTime
72
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Type
3
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Count
1
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
Time
E307050003000F00060029000D003602
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
LoadTime
54
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
4600000074000000010000000000000000000000000000000000000000000000C0E333BBEAB1D301000000000000000000000000020000001700000000000000FE800000000000007D6CB050D9C573F70B000000000000006D00330032005C004D00530049004D004700330032002E0064006C000100000004AA400014AA4000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000C0A8016400000000000000000000000000000000000000000800000000000000805D3F00983740000008000002000000000000600000002060040000B8A94000020000008802000060040000B8A9400004000000F8010000B284000088B64000B84B400043003A000000000000000000000000000000000000000000
1352
iexplore.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\62\52C64B7E
LanguageList
en-US
1352
iexplore.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\91C6D6EE3E8AC86384E548C299295C756C817B81
Blob
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
1352
iexplore.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\91C6D6EE3E8AC86384E548C299295C756C817B81
Blob
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
1352
iexplore.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\AD7E1C28B064EF8F6003402014C3D0E3370EB58A
Blob
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
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Type
1
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Count
1
1352
iexplore.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore
Time
E307050003000F00060029001000E703
1352
iexplore.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\75E0ABB6138512271C04F85FDDDE38E4B7242EFE
Blob
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
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
Date
43600.3202893519
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings
BackupsMax
60
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\OneClick\Selected
OC_CLEANREG
1
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\OneClick\Selected
OC_REMOVEBS
1
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\OneClick\Selected
OC_MALWARER
1
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\OneClick\Selected
OC_DISKR
0
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\OneClick\Selected
OC_ERASEPT
0
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\OneClick\Selected
OC_REMOVETF
1
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\OneClick\Selected
OC_OPTIMIZESA
1
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_SC_STARTUPI
0
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_WR_REPAIR
1
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_DS_CLEANUP
2
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_SC_CONTEXTM
3
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_DS_EXPLORERD
4
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_SC_PROCESSES
5
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_PROGRAMS_UNINSTALL
6
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_PROGRAMS_CHECKFU
7
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_ST_BROWSERS
8
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Advanced Tools
ADT_PRIVACY_ERASEH
9
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
Transparen
0
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
CurSkin
C:\Program Files\Glary Utilities 5\skins\default\skin.ini
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings
ShowQuicklaunchTips
1
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
Version
5.119.0.144
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
RootDir
C:\Program Files\Glary Utilities 5\
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
Current View
0
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5\Settings
AutoSoftupdate
1
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
BootTime
7067
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
Update
1557902474
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASAPI32
EnableFileTracing
0
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASAPI32
EnableConsoleTracing
0
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASAPI32
FileTracingMask
4294901760
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASAPI32
ConsoleTracingMask
4294901760
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASAPI32
MaxFileSize
1048576
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASAPI32
FileDirectory
%windir%\tracing
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASMANCS
EnableFileTracing
0
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASMANCS
EnableConsoleTracing
0
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASMANCS
FileTracingMask
4294901760
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASMANCS
ConsoleTracingMask
4294901760
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASMANCS
MaxFileSize
1048576
3044
Integrator.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Integrator_RASMANCS
FileDirectory
%windir%\tracing
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
4600000077000000010000000000000000000000000000000000000000000000C0E333BBEAB1D301000000000000000000000000020000001700000000000000FE800000000000007D6CB050D9C573F70B000000000000006D00330032005C004D00530049004D004700330032002E0064006C000100000004AA400014AA4000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000C0A8016400000000000000000000000000000000000000000800000000000000805D3F00983740000008000002000000000000600000002060040000B8A94000020000008802000060040000B8A9400004000000F8010000B284000088B64000B84B400043003A000000000000000000000000000000000000000000
3044
Integrator.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\62\52C64B7E
LanguageList
en-US
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
Current View
1
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
Current View
2
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
ATCPageIndex
0
3044
Integrator.exe
write
HKEY_CURRENT_USER\Software\Glarysoft\Glary Utilities 5
ATPageIndex
0
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASAPI32
EnableFileTracing
0
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASAPI32
EnableConsoleTracing
0
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASAPI32
FileTracingMask
4294901760
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASAPI32
ConsoleTracingMask
4294901760
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASAPI32
MaxFileSize
1048576
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASAPI32
FileDirectory
%windir%\tracing
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASMANCS
EnableFileTracing
0
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASMANCS
EnableConsoleTracing
0
772
autoupdate.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASMANCS
FileTracingMask
4294901760
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASMANCS
ConsoleTracingMask
4294901760
772
autoupdate.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASMANCS
MaxFileSize
1048576
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\autoupdate_RASMANCS
FileDirectory
%windir%\tracing
772
autoupdate.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
772
autoupdate.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
772
autoupdate.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\GlarySoft\Glary Utilities 5
AULastRunDate
43600.320313

Files activity

Executable files
116
Suspicious files
58
Text files
554
Unknown types
22

Dropped files

PID
Process
Filename
Type
1892
chrome.exe
C:\Users\admin\Downloads\Unconfirmed 257196.crdownload
executable
MD5: 73eac438a1a7df61d3d6550806db7b03
SHA256: 6bece8c495266c00fc149c3a0f83a31758f7da46bafa10b55fea6ef05e25f534
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\DPInst32.exe
executable
MD5: 3f442906b29b552f1c9fec1e221d90b7
SHA256: e12bf594f98a878da912d7a70743cc486238eac645a4b8e603cae8feecbde549
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\mfc90u.dll
executable
MD5: b9030d821e099c79de1c9125b790e2da
SHA256: e30aabb518361fbeaf8068ffc786845ee84abbf1f71ae7d2733a11286531595a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\DiskDefrag.exe
executable
MD5: f378d1846e714f0cf046b7f8cda27883
SHA256: c233d936b95b8b0df5d3c803dc7e7da61e7c9850a6fcd84a983df815072ce5a0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\msvcm90.dll
executable
MD5: 4a8bc195abdc93f0db5dab7f5093c52f
SHA256: b371af3ce6cb5d0b411919a188d5274df74d5ee49f6dd7b1ccb5a31466121a18
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\mfc90.dll
executable
MD5: 462ddcc5eb88f34aed991416f8e354b2
SHA256: 287bd98054c5d2c4126298ee50a2633edc745bc76a1ce04e980f3ecc577ce943
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\msvcp90.dll
executable
MD5: 6de5c66e434a9c1729575763d891c6c2
SHA256: 4f7ed27b532888ce72b96e52952073eab2354160d1156924489054b7fa9b0b1a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\DiskCleaner.dll
executable
MD5: bd359d0b566a43bf721ff0911243f138
SHA256: 2394933394766181eabed51e8055991fd2ce3797078827eff9b11e8781143d2d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\msvcr90.dll
executable
MD5: e7d91d008fe76423962b91c43c88e4eb
SHA256: ed0170d3de86da33e02bfa1605eec8ff6010583481b1c530843867c1939d2185
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\DiskAnalysis.exe
executable
MD5: a5dda1641ffecda175146bf35d64114a
SHA256: 4852c541976e4e7836f32740311789999f7da593bcce8fa2d86a226a35e1f653
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\win7_x64\BootDefragDriver.sys
executable
MD5: 11ebe32fa11b3ea4a43d836ac4e44071
SHA256: 2069ee206e1ed95c98b94c7ffdfed0f0d5428b8804313dcc2570367970b23c3d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\DPInst64.exe
executable
MD5: c3ac43b2018114a617e946aa8fdf3cac
SHA256: ef6c5fe9f08be67f24c7dfa5c7bc3d69ab4e387e6065602d45ba358289f05117
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\dbghelp.dll
executable
MD5: 58656139cb78469adbaffd953f480026
SHA256: 9d81e67fa233f02c1c5604464667b25aa3042d6fff2cb5c448d117d7846c372f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\uninst.exe
executable
MD5: 2904b321218ac5a0fa983f727f971cdf
SHA256: ca9915f0bf623be7129922b3087011ec28ecc1f10b4ce874ad6f7ea25593256f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\win7_x64\BootDefrag.exe
executable
MD5: aa0d6054b0a8c359bdb67ec7f235c72e
SHA256: 174efb7f61b503fb7c0440ab53373d1fee1b5ae968491499633d1a05eec3b20c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\DriverBackup.exe
executable
MD5: 333a2d424c0386cf0371b3bb87aec1a5
SHA256: ce0522bf47fdb1534414636e267b1c58f953e32e4bc44630a4821e377d036e40
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\CrashReport.exe
executable
MD5: 80b0c45183185585a23ba2bd45dca0ec
SHA256: b3a18f05cc1267282335cba31e3105afc22640902193c342cec7b10bad220547
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\zlib1.dll
executable
MD5: 53694b9ee596d666cfc968f458138d28
SHA256: 4088e68ab4184ba134cb89c049820e8d9d7278ff18dcdb049e5ee743d35cd6b0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\win7_x86\BootDefragDriver.sys
executable
MD5: 186f339021d282f1657f5fd3b3c1d3ca
SHA256: a7ec3a0c2d107e1232c3f3e9308ce56cea78a39d3420aa13abae901c1c16366f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\dupefinder.exe
executable
MD5: d0df8b26102974099d4742af4e31def9
SHA256: 88a9eda5f43c9a8f20909e24bff4468e74a9a5c5e9f8832c77ed472489d76a90
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\CrashReport.dll
executable
MD5: 4abefecfc977936ae3955b06ec8f807c
SHA256: d04f1a19db380abd18b3ae072aa4a7299bbc7672ba80c5fd9e7cba3a08bfa9c8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\x64ProcessAssist.dll
executable
MD5: 89726bf18a6c9e83b86f3047c39053f9
SHA256: 470b08aa19fdd7f0bd84c27eae6fca8fdded953b446fcabb0e63658451f8187e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\win7_x86\BootDefrag.exe
executable
MD5: bdc51545b714e3bcef7c86f004918627
SHA256: 0953d787626d50c49788534dcb6357d8c2f177847da75a0522a6ffd41132e326
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\EmptyFolderFinder.exe
executable
MD5: 0fda3f8159b58c7041ac7ba9226b8efe
SHA256: 9d0ec6e7d550d8bdabb6d7294ed690a556e12d8acb5f89daac9b8aeaba14ef58
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Config_Portable.dll
executable
MD5: 620bb79a449c8d8887d91495e96e0e23
SHA256: 56e75e793bd725eb06617809a42b25fec2228d2226a9f439ba763784da88488f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\upgrade.exe
executable
MD5: 163b9494b827c7066c7267f7570ec1ec
SHA256: 905afb64d63d143fa5c5e0d0e674b54cc5177e012f4f7b1eb1b89ac9a868a5f9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wlh_x64\BootDefrag.exe
executable
MD5: 612ea20ecbd309dd79444486c931d4d9
SHA256: fe25eed1a329ccfa60f431cc034244acc9088b73d9bd66b80b3e7408d8817dfd
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\EncryptExe.exe
executable
MD5: ff176fb9c76fc23803a37fdac1c29718
SHA256: 39ea59adf356dd33a5140ff8ebaf99ef26810f33f41f3e60e7718744c7cd5641
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Config.dll
executable
MD5: aef92cf53801e634ecb78a0638c87581
SHA256: d78c1ea3f80b3a2ce1abc45716f3008383a1722c43090fea7e371a52974831f7
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Uninstaller.exe
executable
MD5: e52537f1f5676f3b9608d3a488dff565
SHA256: 3318b262e2989959433b47e17151db0891e15780b27827cb22337fb05e619a69
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wlh_x64\BootDefragDriver.sys
executable
MD5: ff40e3822cfc0d1a5ee0cb0339a3594e
SHA256: d17308c304361b48f374ed066e2d72e194126eda5fd53f1e2a899413b8097dc0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\fileencrypt.exe
executable
MD5: 4b4977880883fdacf471930c5634e061
SHA256: 96b4997f7c24a119a44b917fa2da06f9cc87b0f63d329934081b4983dfb26e62
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\cmm.exe
executable
MD5: 66c04a58240f6c1c8558e47c14ea8a0b
SHA256: f131e78739eca93bc0b78538448789ba23017336c226262386b075944476b875
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\TracksEraser.exe
executable
MD5: 4d694461176b9e9713ea88ccc2bd30a7
SHA256: 17a8a53003ca83c5d2a9d288ea18dbcab86caa5ae6114d6379776e1c22582f17
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wlh_x86\BootDefrag.exe
executable
MD5: 7950cbd3d056ecf75492f49d565d9fa9
SHA256: da6c40b6fb8f7847eb9bb2427923de4999a027c417a640a8b5e7b5ca7490a67a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\FileScanFilter.dll
executable
MD5: 8db017bd529ec4fe17f94418a37d9116
SHA256: 5b142e33203f131e5dd6628a182ede3881fef65f812e22a0d3804d809689b41c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\CheckUpdate.exe
executable
MD5: 0a9b511da02f05efd7641735ebb69d47
SHA256: 3297ce96d1641aaaf94a7eb62418c5940012a06b9a1a9e3ccc85d405c3240843
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Undelete.dll
executable
MD5: 77852c543cb2f01ed4e25d38991c2b31
SHA256: a24cdda1245a0e8f115d55307e8c7a424be75695ab17377a6a0e3db593f0f53c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wlh_x86\BootDefragDriver.sys
executable
MD5: 62a55b8127e8f22ac3955474205ed2ce
SHA256: dc820f35fee74279d3ce8e115624365366c9f3a0b0d8543192c8b9a68da8cd82
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\filesplitter.exe
executable
MD5: c7fde8699023563633593d9bda604b72
SHA256: 3ce4f99e81265b7657ca5ff1228fff4f2b80a11618d59cffc9a5ea9fb8f1fa1a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\CheckUpdate.dll
executable
MD5: 1dcfbb60b0e19acdd8a564c5f034a172
SHA256: 61a3e9fc219278b6cb506ff2b6487ca7a3be39f39725c6f4fafc109fd3b559fa
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\TracksEraser.dll
executable
MD5: 99a2bd5ca29baf8e1489eed783ae6466
SHA256: ded864348bd6398840d2ee2f05460244c1ddf388d5a9ccec325d226531f21379
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wnet_x64\BootDefrag.exe
executable
MD5: 8232cd757486fe8335eb863bb8c8d77e
SHA256: fd0b02dde56338ef005ba31ae386ea019f110aa484950f08d2c5944e11e1f93b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\FileUndelete.exe
executable
MD5: 6e2ca7355b790340eb22b3f1e2a185cb
SHA256: 818dd9368af26f4b55da35d566dd523d8a0d55d5f3cda126111d60aba99f8725
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\CheckDiskProgress.exe
executable
MD5: 3c23f6eb2db935207e7135219b1a1dd0
SHA256: b154b9e5c12432c34e4105252b41826919f19e20547e22dda7a71ff747ca89cc
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\sysinfo.exe
executable
MD5: 2907f9df66444ce68dd074ff03d3437c
SHA256: 03b9c50bf7e3ba4ac176960f1221de370fb911ef33de073d3e4bb01c4d575324
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wnet_x64\BootDefragDriver.sys
executable
MD5: a4145ccefe4f94a8d731bcda20f34e47
SHA256: 48a5db27a004e5c412ba389ea4a7eb492d7149a0d8e516d6da623c5db14e2ae8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\gsd.exe
executable
MD5: 3bbdb0f383162d324220cd20bc2b8843
SHA256: 2319edadffdef054f2b75b4069eb00e4215fa4f1c43d110a3bbe96ce9f4e5e44
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\CheckDisk.dll
executable
MD5: eb8db43ca1168e54286459e8dfa8419b
SHA256: d5335332b4fb6974134e73cab81bd0059979ba3c977944345fe607cfb4061120
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\StartupManager.exe
executable
MD5: f82a1d229dcbb749a2761cd3562c0468
SHA256: 255f6e5e71d5dffab1fbbab06440e1818ad9b680f65176c1f426675e68483f73
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wnet_x86\BootDefrag.exe
executable
MD5: 11ddd487ee06b01fc996e3ae45769fa3
SHA256: 9fb0c59c56e1dedc2a25cc8e5482157724652417dd02de1dd4368ae6366379a3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\iehelper.exe
executable
MD5: 4694155ff95db9c9cde69f1e428f41db
SHA256: a08b4fdad2cfe8c1362c4d6bbebead34b9146ff506c87e25a77e1b5d85af5510
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\CheckDisk.exe
executable
MD5: 695f895940be775657e4cd828a8a4c23
SHA256: a52a3d334104f4bf6a723c3b072377fecdae3cae5728ddc56d137332b8a093c2
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\StartupManager.dll
executable
MD5: 4cb3d22c0df5e6a174084c855cdfb22f
SHA256: b9107cc16453698e6d9e3fb1bed505a4d87694ed94e2a7c0a0d3c42c71180e9d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wnet_x86\BootDefragDriver.sys
executable
MD5: 4c59f6d55b750f148c8ee52613a4002b
SHA256: 42d8065c74683eba5f43f5e948f9d6b5eea8c71adf30c831052808188047615e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\InfoCollect.dll
executable
MD5: c90ee3aaaec6eff1e7f2ed96a5d01c7b
SHA256: bc9d3d0ee8933db9701dabe98352458098834f883f843bc5763ac0266faf8e8e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\BootTime.dll
executable
MD5: 3c2a90fa7bbc450b5f7b7ff6f01d9337
SHA256: ec6da8bf9df2c28c8861e9cffc0e593db6361dcd7d35e3da042abd0d4b2d023c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\SpyRemover.exe
executable
MD5: bffaeab5d15865b8946280dbfad8919c
SHA256: 52832074398994199dd0163deaca2e1b0cbd7387d1ccc6a19943639aa2dcb214
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wxp_x64\BootDefrag.exe
executable
MD5: dc16e26514c65978a13bede665dcbe97
SHA256: 6a01bab5cff6f5183fd398fe7af0921ca21c99bc4ea27e20814f8ddd3a74016d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\InfoCollectFile.dll
executable
MD5: 839f07a202f8548853532324c8ada717
SHA256: 2635425ba82181955dabfbb880d7357ccee71d194efdd563ed8ff79e6e4b84dc
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\BottDefrag.dll
executable
MD5: 1d5182d727b8d7c0c1bbd639ebc17380
SHA256: 82fba62ae3df2e416d69dd9a3a6826215a5602ab08ca66cbbe5787e4dbe7bd59
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\SpyRemover.dll
executable
MD5: 0aee3b0dea0c41478738efa9a5d21c31
SHA256: 2f5ce5613b9f200c839dd719eb294bcfa5a95e338ad2818c36bfaa5b2ceca3b1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wxp_x64\BootDefragDriver.sys
executable
MD5: 058ca1a1002f612010a867cccfb656d7
SHA256: a3ff6979e565c0a1c4e162f5668942aac04fac3a8b3a4ffb4e75c5597fd65b80
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Initialize.exe
executable
MD5: 427d6ed744012f9507c0a4c8354946c5
SHA256: 29005e0302b854bc88c23b4a2ba2eb6a56685826bf7b47ae89e907d16254f7f1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Backup.dll
executable
MD5: 6ad4aab1e2c2dc4bc4ae3050eed0fbe6
SHA256: 82665b305a9d490d8ab6e7950a415b4fe0bd00f36d63918a4640752dd0ee4733
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\SoftwareUpdate.exe
executable
MD5: 5aded769a7a04bcf223a631baf6e7fc8
SHA256: 19d49a169d04b54804c73adbc198f4355c2e9d153f38f7543832594c2a11fc97
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wxp_x64\RegBootDefrag.exe
executable
MD5: 9b3b6205d822a13a58cb20e6c878bc26
SHA256: dedcf13079dcb734a28396e16e34d383e4e41a7ef9f394addb012d471a96979b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Integrator.exe
executable
MD5: a8455931a0de13480993335f1cde9051
SHA256: 7a984ab9ca37ebc9c8f2b7832ab0980f0989497ac5aca282c3660035c8d9ad54
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\AutoUpdate.exe
executable
MD5: f71a733c8ada9390ae7fdd2c6153b3a6
SHA256: a9ec86e06d27ad0aa1cbbabc47ee12be5c320ca7fd232df5317caed16fef10eb
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\shredder.exe
executable
MD5: a1a73a64b65712c3caca2676f20907e2
SHA256: ea525cc4c20b8e55f7fed56b800351e0370425d91b2c9c9a3646b8c1c2cc23d7
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wxp_x86\BootDefrag.exe
executable
MD5: 6340d7d67b2438f0c7404cb4326a8d5f
SHA256: baf8a74515dd743bcdf534af026cc11acd7b1d577586fecdc3420ac2551c6a87
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\joinExe.exe
executable
MD5: 16290e3193106523f137e4b87ded75e0
SHA256: f1fc77e2ea95670212c07fff341c36d75f53b5eebf99128c0473fcf55c076d8b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\autodll.dll
executable
MD5: 08ac8117ed3132898448e161572ea04a
SHA256: f5f5d939a4fa28bf4e85e9c09ceb38636977953182a8ca6bec695206e7e1b3c0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\ShortcutFixer.dll
executable
MD5: b43bb2b23b8aa9ad223d7c452c106074
SHA256: 4746528849985d7c0b9a6eba487481ebd47beafca9cfa016ea7351e8fa9ea3af
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wxp_x86\BootDefragDriver.sys
executable
MD5: f3cd06daebccd4a0e1f0dc5605d0f0dc
SHA256: 40b30f6c668ebc205217a287d759b19440b062f741cc7a8d4a060f77cf6a56da
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Integrator_Portable.exe
executable
MD5: d383c13d700936e819fba94578358031
SHA256: 2e057b4198bac5ecc99cdd2c89cd00ebc0b18f87ae4d208c6c1d650eba5b8588
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\AppMetrics.dll
executable
MD5: 918188349a565243eb433c46ba70f9ec
SHA256: 610550fa0da7d5a6384597ea0026e84ac02abbf935cbf0980aefa3b70dc6aed4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\ShortcutFixer.exe
executable
MD5: a6959bb172059813ea1ac74906c17cab
SHA256: b87e98fe5b5416b1147aa0390ae699d5857e29a95e0c6bf9527408a6c5a87a59
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Native\wxp_x86\RegBootDefrag.exe
executable
MD5: 53d641d0e8bb727d67109199170ae864
SHA256: 92e59558ae78e10fbb1b560bc43f386da5aa46caddff6445412c4c8e176ac451
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\languages.dll
executable
MD5: 997ad5f01d3b795addf32a55940b2312
SHA256: a9a8fc57ddb5a0113fe57d74b98ebed3cb30d9cbf22983e95b91b0385229ac10
3688
gu5setup.exe
C:\Users\admin\AppData\Local\Temp\nss766D.tmp\KillProcDLL.dll
executable
MD5: ea24ecffe6e21bafe9fda39126b99802
SHA256: 36ac911047461d239937510f179466ae9739bafd2f3cdf54175d1d809b9af929
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\settings.dll
executable
MD5: a1f75e719838b155d0b031fd1914880e
SHA256: a3391cd32362f9b62de26e57ad182566a8bec089491f0d16e3e1a57101f82fe7
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\GridMap.ocx
executable
MD5: 0ac55e0d792e46c7d8638ffb001a4474
SHA256: 65293604b2f7d9b9a9946724a1e0769ac4454453dfdb4ff491db1710e778159f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\LockDll.dll
executable
MD5: 0ac8b6317eeee2dfaa5f868380dd3c80
SHA256: 99397c33cf1e0d5fb6dc1db754c720155cbcfe1cc112ed531d52951ba17d0d0a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\KillProcPath.dll
executable
MD5: 07d55b2f45c8b800c9a2a58ce922f294
SHA256: 79ed23eab2bf875b86cc5e7cfcb27b92456eb1ea5de36889c1feab2480291133
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\RestoreCenter.exe
executable
MD5: 81f866d41ae520ff240f30992f010b77
SHA256: 4a5fcfbef98169e5453f9d5dd1f56bfe45fad0c082ac1808d0586d38c8f3bd0a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\ContextHandler.dll
executable
MD5: 58ffb7b935e4d80d0a5a376c2327214e
SHA256: 289d88cc05a2efe48c38fac91b4179cb243e6fab0878650ceaa2606ff2d5dc18
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Log.dll
executable
MD5: aed83502d8abea3cae8364347334224b
SHA256: 4b4ca163f25368981707b059cee1e9ddabf13d942824773fc5dacb56433ec49a
3688
gu5setup.exe
C:\Users\admin\AppData\Local\Temp\nss766D.tmp\MachineCode.dll
executable
MD5: dab953834b48bb5659792565356044f1
SHA256: 15be148ee236e9428f5089148cf7fe6e67f8c54c601e55b1cc8ccef37807d4a1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\ScanFile.dll
executable
MD5: 8b3858fb9aa3d4d71e4b59e24191c702
SHA256: 290e614bd9ee43ffcba2558a04983a3503f2d867a58791f10f11d665d504b43a
3688
gu5setup.exe
C:\Users\admin\AppData\Local\Temp\nss766D.tmp\sendinfo.exe
executable
MD5: 0bf944247ecfad3483017741ec9ba627
SHA256: 55250bf152274ca2d2cc436c2910328eb51e041d3e535924d0b4e9560545a824
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\MachineCode.dll
executable
MD5: dab953834b48bb5659792565356044f1
SHA256: 15be148ee236e9428f5089148cf7fe6e67f8c54c601e55b1cc8ccef37807d4a1
3688
gu5setup.exe
C:\Users\admin\AppData\Local\Temp\nss766D.tmp\KillProcPath.dll
executable
MD5: 07d55b2f45c8b800c9a2a58ce922f294
SHA256: 79ed23eab2bf875b86cc5e7cfcb27b92456eb1ea5de36889c1feab2480291133
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\RestoreCenter.dll
executable
MD5: 4811fad3d92835e9eb7903464fa14801
SHA256: 0bb14f1b1fe4503f7befe1ab7193c93b96d51808107162d5fd1676926b67b927
2452
sendinfo.exe
C:\Users\admin\AppData\Local\Temp\nspBC7E.tmp\XtInfoPlugin.dll
executable
MD5: 037afe1d12d04ce4b41e4e17d0fa9ad5
SHA256: 996463e60e60514e18f6d8b761db9eec87d1fd686c5292c88b6efab3f66c21d0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\memdefrag.exe
executable
MD5: 19534499f5cdb7e2bf6aa0f13a75fe9d
SHA256: 71636d76cfa5f680b2e11f597c1065fa5c37700e860b1390afb852517d08e35c
3688
gu5setup.exe
C:\Users\admin\AppData\Local\Temp\nss766D.tmp\nsDialogs.dll
executable
MD5: 4c63f158631765ab7e6c99c8c0831099
SHA256: 95cb210f4eeeb142f02e01ef3e0a7c4ab7e68836397a782ebb0022e68f8f5c28
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\RemoveDriver.dll
executable
MD5: 1a7a4add2883cd413fa837ffa16a14f8
SHA256: c4c0e77c9bb39e3fff59770b8bb93cac5f6d0d5b75b5cefddfb956d849c5c16b
2452
sendinfo.exe
C:\Users\admin\AppData\Local\Temp\nspBC7E.tmp\Inetc.dll
executable
MD5: d53084d0cf8313a08aedc5e4ae2d9e90
SHA256: 5613e4e0878108159eb7085446f8e4613cef786f0b2d70a45b19c83ea038c221
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Memfiles.dll
executable
MD5: caadbe41702b26930ea0de47d9482983
SHA256: 2d136aa68d6fda64649afbe443b2af0892ec9173c0119a055f0b154804f3d481
3688
gu5setup.exe
C:\Users\admin\AppData\Local\Temp\nss766D.tmp\System.dll
executable
MD5: 601f7a96e4e72c92fa7e83e6744ebe51
SHA256: e2c8ee93e8857947550cc653cf76fb94c9059c4b99aabf025a553f82dbc2fb0a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\MemfilesService.exe
executable
MD5: 76e2ced781633148239822832d9febb3
SHA256: c19da4aa630811438602a424e4a99356f3b26be2943976cd0968179f676978e9
3472
DiskDefrag.exe
C:\Windows\System32\drivers\BootDefragDriver.sys
executable
MD5: 186f339021d282f1657f5fd3b3c1d3ca
SHA256: a7ec3a0c2d107e1232c3f3e9308ce56cea78a39d3420aa13abae901c1c16366f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\ObjectAdmin.dll
executable
MD5: 8052944cdee6f32ba7cedba180b23351
SHA256: 00eee4057646cba8fc2bae6581f483b638014415c32f8ca2639d7b2c55601902
1892
chrome.exe
C:\Users\admin\Downloads\gu5setup.exe
executable
MD5: 15f626565e6b4eba20cedd92da6a2abb
SHA256: d696c9fb14970e1f885c0f061a40e9cdd527d634a6c464e8e12482294b379324
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\OneClickMaintenance.exe
executable
MD5: bd50a0d26a78eb5edc215b913ae6d618
SHA256: 598ac79781f94d457f104420a04f5c5afb618b061f489f1a81a1e6465739ff12
3472
DiskDefrag.exe
C:\Windows\System32\BootDefrag.exe
executable
MD5: bdc51545b714e3bcef7c86f004918627
SHA256: 0953d787626d50c49788534dcb6357d8c2f177847da75a0522a6ffd41132e326
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\PortableMaker.exe
executable
MD5: aadf69e2a50375393c2f2b5705749580
SHA256: 2024052b84a9ff1fc4d5a6933bfa7a4626671512badc4eeb7e0dee92a61c3df4
1892
chrome.exe
C:\Users\admin\Downloads\Unconfirmed 257196.crdownload
executable
MD5: 15f626565e6b4eba20cedd92da6a2abb
SHA256: d696c9fb14970e1f885c0f061a40e9cdd527d634a6c464e8e12482294b379324
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\RegistryCleaner.exe
executable
MD5: ad2c9a8e9c6c67194bef0fce3a1f95a2
SHA256: 53e65e188894ecf811f0d7eb9f764d878bcdd6fb4bbe5fd4214af2a225369ca9
2628
StartupManager.exe
C:\Windows\System32\drivers\GUBootStartup.sys
executable
MD5: 502acbc4ca63c9e10da4ae3ca2b40d3d
SHA256: eafb298a2028bfcce2c1f1372bb2354a9cbe0fd7794bc4fb2f9a8ba161480587
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\QuickSearch.exe
executable
MD5: fe6187c4ebac50a10091835eae08857a
SHA256: 7dee210da2ff2f8d1866ffc3aa2c54a031a08c8aed8a85faa12782b2f0afb268
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\procmgr.exe
executable
MD5: 2b2641ecfba029b7b22ddee01761fdc3
SHA256: 04c3709a55630783a3fb05dcca44a8b30528ec87afcb7e4d3ebdae871281f6c5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\regdefrag.exe
executable
MD5: dc2e3833e572163e7f70ff30f93f5f3b
SHA256: 2408efe343f09b156c006a6201fd757822dac3391aeefc0a4777797b841319f3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\RegistryCleaner.dll
executable
MD5: 992e0f8d7dc75b978b3758cbc1abe345
SHA256: 59ed4ee34df66ddf14a114c8b1083ef22caba2c04a134addc21bb5fe7fe579ad
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\DiskCleaner.exe
executable
MD5: e67c63e7c549f0800f456da55a37ee28
SHA256: 7b75df8b3c613c6904de4296dcf210cee7c905dc882345a5ab9b89dd2cb6e0a9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\OpenFile.png
image
MD5: ed2652389efc43ea94a848d5539957e3
SHA256: 69cf6972ab9a5634548b7e9f5177f7aa2a0a82a897d121352d78f0d71cd3c53f
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\TarEA7E.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\CabEA7F.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\CabEA82.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\CabEA6A.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\TarEA6D.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\CabEA69.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\CabEA6B.tmp
––
MD5:  ––
SHA256:  ––
3640
upgrade.exe
C:\Users\admin\AppData\Roaming\GlarySoft\Glary Utilities 5\AppMetris\ModuleMetris-51190144037000-20190515.ini
text
MD5: 718ef40cd3227a8309bee5106a1d32d4
SHA256: 5985c92a6299523b35fd79c7c92bb823f30d23bce016850ff1e1d90dfe6b8044
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\TarEA35.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\TarEA58.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\CabEA57.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\TarEA56.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\CabEA55.tmp
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\CabEA34.tmp
compressed
MD5: 767760b1b3b838b2de0599d0e76d1c76
SHA256: c0f37380971fb93ecb0cfa3c2bd6d91cc77f254f0a6ca41edeff47fda0e409cc
1352
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JGRR2OYX\addthis_widget[1].js
text
MD5: 8f83032d445f46b8e678c483f9c28f62
SHA256: 3a5bcf2ee6518b4887d7907e840dbbf8cc3c4f3a213d3719f567974ed01cab68
1352
iexplore.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\PrivacIE\index.dat
dat
MD5: 10f9db17e33a60e041e7eea1a0ca8da7
SHA256: 52ef8a489717bb77f02c02e1bd7e25d03581c8973a37e9c081a21f3a7d10481c
1352
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0488CJO\5.119.0[1].144
––
MD5:  ––
SHA256:  ––
1352
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0488CJO\5.119.0[1].htm
html
MD5: d46b5a24d29f99950c47a8337ef06d18
SHA256: a598f7eca11173a6a093753aed0ca410fa5f506f7ed5db0eea046b8cf3511d8a
3976
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H6QNMHE9\favicon[1].png
image
MD5: 9fb559a691078558e77d6848202f6541
SHA256: 6d8a01dc7647bc218d003b58fe04049e24a9359900b7e0cebae76edf85b8b914
3976
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H6QNMHE9\favicon[1].ico
––
MD5:  ––
SHA256:  ––
3976
iexplore.exe
C:\Users\admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
––
MD5:  ––
SHA256:  ––
3044
Integrator.exe
C:\Program Files\Glary Utilities 5\data\AppSetting.ini
text
MD5: 3bc052c422c365919e677f6c743fd87d
SHA256: 80d5804d0c74b509846300c304acfa9040102592ff141b9f8c6b8b7e63d34935
3044
Integrator.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Templates\GUTracksIni.tmp
text
MD5: 3745c0eaea0b1e666ad5979fbf8dfa26
SHA256: fd01cff100370c95765b561543ffd5df252528cc3192675a1c612143544cd862
3044
Integrator.exe
C:\Program Files\Glary Utilities 5\data\backup.ini
––
MD5:  ––
SHA256:  ––
3044
Integrator.exe
C:\Users\admin\AppData\Roaming\GlarySoft\Glary Utilities 5\AppMetris\ModuleMetris-51190144037000-20190515.ini
text
MD5: 00a01daa168e0be8b6db3836e20fd033
SHA256: 939f81cca5bd8678fcbc67e2985a741396a0503fac34d62232301c88d34d9847
3976
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Feeds Cache\desktop.ini
ini
MD5: 4a3deb274bb5f0212c2419d3d8d08612
SHA256: 2842973d15a14323e08598be1dfb87e54bf88a76be8c7bc94c56b079446edf38
1892
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
text
MD5: 0b6e8fdc5a9836abd26a581d5124a91e
SHA256: 17aa0817410b896f964aff886584d26683561916591bed5d79dc25a4be1fa259
1892
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13dcb7.TMP
text
MD5: 0b6e8fdc5a9836abd26a581d5124a91e
SHA256: 17aa0817410b896f964aff886584d26683561916591bed5d79dc25a4be1fa259
1892
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\22d75370-6948-4de3-927f-59658444025e.tmp
––
MD5:  ––
SHA256:  ––
3688
gu5setup.exe
C:\Users\Public\Desktop\Glary Utilities 5.lnk
lnk
MD5: 5147a14c6dcbea539361b11ad967175f
SHA256: 99431fb4e5a616b3be518c43d76a6e90d02e871e766dc2dddddf864f994aa876
3688
gu5setup.exe
C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Glary Utilities 5.lnk
lnk
MD5: 6df5b01522b0491ce02467324460ef29
SHA256: cce94374ab31f8874260d9c035d215e2eac89f7b4cc802ddb06bca9bbbc8a1fc
3688
gu5setup.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5\Uninstall.lnk
lnk
MD5: 2ffe7603c70255884478dd2eb453afb4
SHA256: 7ccb375b76b75ebcb9d2a81824655b18b67dd765d01e0f56d92625204c930faf
3688
gu5setup.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
lnk
MD5: 9f1086cd67c033147be1347ac8fe28dd
SHA256: 441acc956cda8d71f096944c1a5529c76b2823b64521b00c7f3c7cce930a86bc
3688
gu5setup.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5\Glary Utilities 5.lnk
lnk
MD5: f46c6b82b165ce79022dc2671f1a9772
SHA256: 7226d6445a66ca74f6fd8e393cbae959431ef8f239cd9c53b489a82b811ce771
3688
gu5setup.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5\Website.lnk
lnk
MD5: ed4044cd88a2ef956d4527a1d54a2fff
SHA256: a2135327b4a58da544f4ae86bfd6df753e36ef97edff8fcf6f5051f75bcaae07
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Website.url
text
MD5: 2eb0abe25aeda9eea84f9df8f3a36830
SHA256: f21af6c9fd426018766ab2621f31cb40ab7d73aef9bb51d50fb873f8d8f2d374
1288
Initialize.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Templates\GUTracksIni.tmp
––
MD5:  ––
SHA256:  ––
1288
Initialize.exe
C:\Users\admin\AppData\Roaming\GlarySoft\Glary Utilities 5\AppMetris\ModuleMetris-51190144037000-20190515.ini
text
MD5: e28e944a71b481948c235e3ef4722d5b
SHA256: 239b2531d291900aa0472dd762862f5f898037ac4239e926733a8c58385f18d2
1288
Initialize.exe
C:\Program Files\Glary Utilities 5\data\backup.ini
––
MD5:  ––
SHA256:  ––
3976
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{6D918510-76DC-11E9-A370-5254004A04AF}.dat
––
MD5:  ––
SHA256:  ––
2628
StartupManager.exe
C:\Users\admin\AppData\Roaming\GlarySoft\Glary Utilities 5\AppMetris\ModuleMetris-51190144037000-20190515.ini
text
MD5: a87330c497bf19590f2e3a97b246d821
SHA256: fa68f219592ffa46cde2c2543800acb6a0e2e04574091c4d75b14df168b81ffe
2628
StartupManager.exe
C:\Program Files\Glary Utilities 5\data\backup.ini
––
MD5:  ––
SHA256:  ––
1892
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity~RF13bf1d.TMP
text
MD5: b7ec7bb087025bb05f6de4b1215cb82d
SHA256: fd22b00677582496bb21c57a4e92fce4d31741a0d053f3ad9c7aefa535d9bf0b
1892
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity
text
MD5: b7ec7bb087025bb05f6de4b1215cb82d
SHA256: fd22b00677582496bb21c57a4e92fce4d31741a0d053f3ad9c7aefa535d9bf0b
1892
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\f0ad79fb-f99b-4143-a5b5-e9e649b7bec7.tmp
––
MD5:  ––
SHA256:  ––
2416
DiskDefrag.exe
C:\Users\admin\AppData\Roaming\GlarySoft\Glary Utilities 5\AppMetris\ModuleMetris-51190144037000-20190515.ini
text
MD5: bc541f760c9c9155f54234dc981a7b3e
SHA256: 742b797a341ece413ba03cf3920f6de3878d8a5c237f1593581fab0330f55f35
1352
iexplore.exe
C:\Users\admin\AppData\Local\Temp\JavaDeployReg.log
text
MD5: c8d8508e4d975131ddbfe9e7244770ad
SHA256: 9d6eddafc256945e44ca8374ccbe96bbe919bd4e3627107de228888dcd676675
3976
iexplore.exe
C:\Users\admin\AppData\Local\Temp\~DF853372D4560F5403.TMP
––
MD5:  ––
SHA256:  ––
3976
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{6D918511-76DC-11E9-A370-5254004A04AF}.dat
––
MD5:  ––
SHA256:  ––
3976
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Last Active\RecoveryStore.{6D918512-76DC-11E9-A370-5254004A04AF}.dat
binary
MD5: 6bbfd396b2169411604dcee96220d7ac
SHA256: b08550e89264c7d613eafbb240ef0cdcbc1d55cce10404af56e2b9d37ec7749c
3472
DiskDefrag.exe
C:\Users\admin\AppData\Roaming\GlarySoft\Glary Utilities 5\AppMetris\ModuleMetris-51190144037000-20190515.ini
text
MD5: 7588dc71548c3ee596d554415fac9cd0
SHA256: 49f89084d3818f539de882061422fd645afb344f83716730472d11f9280ab08a
3976
iexplore.exe
C:\Users\admin\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Last Active\{6D918513-76DC-11E9-A370-5254004A04AF}.dat
binary
MD5: 64de373d2be1bdebab09ebce4df6d92a
SHA256: 68aae7e65dbedb3df0fd792f5a28eaf9eba61b0f1c24acd1fe254f1dec3aa278
3976
iexplore.exe
C:\Users\admin\AppData\Local\Temp\~DFB11415F1A03BC398.TMP
––
MD5:  ––
SHA256:  ––
3976
iexplore.exe
C:\Users\admin\AppData\Local\Temp\~DF64FC863C5FBDDDF4.TMP
––
MD5:  ––
SHA256:  ––
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\top.png
image
MD5: b8b7b97d8425e640cf31448310cd0b2c
SHA256: ef2021c0267cb53ea8225bb343806ba98e8cb054745608b20b94877536ab4056
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\others.png
image
MD5: c66b565292f1dbdac3a9982dfcc4b9a4
SHA256: 5b2c578bb714b7c0973c6f8ead9c3c9f98586e1e4ab9671a1e6a118e0692d4b3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\windows.png
image
MD5: b738923984c267c61d0b86545e5b96a2
SHA256: 3832fa5a977510dfc7bd7544d24fce81f21c8f0f395caa7b0e606d5462eeeb58
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\normalhot.png
image
MD5: 06b5eafd30771bad83ce43d6896fc0db
SHA256: e7741eca3da7ee2f2684e03f5a3c36111fe896a37249ae981071a943ffc93b06
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\topdown.png
image
MD5: 8cd80d1507ab73f1c41cf16685d5bc9b
SHA256: df2befae857e415f8cc14cdc8cc87f74bb04a43f0cde8b348b885bb5e25dfed5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\cpu.png
image
MD5: 55828cf6c89a16062b3a3363800e0224
SHA256: 152a83617e0dc663b93487fdb8535fcd3416871a64347453f3d06a4aa6825681
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\network.png
image
MD5: 867b614d9e32fa8e7522a77999283b79
SHA256: 0e4c1f9650339e8d0ba3fd80eff89288cf327cfc20dc6aa05a83b94fbcb5297e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\display.png
image
MD5: 0558ad052bdf187d6cc1160de0a0aaf8
SHA256: 04d494075e98c0b4829e4c7dc1a5ac353d3038c445017cf27b3e7aeb9d92ead9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\normaldown.png
image
MD5: 3c55380dae19f6a203caa204097c05f0
SHA256: 9790bd3c75e2934771d3dc742a1e0171395240b93f7a4c426fe019acea0d4c61
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\computer.png
image
MD5: f9329a9e710a5603c9b9352ecaf1bd7b
SHA256: 6d4eda54ba7019c7291c34f18fb0c4e52aeebea4d1f61e2b29f1d36fdf499aa0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\memory.png
image
MD5: bf3c49b60cdefcbd67700e516b895f68
SHA256: 4a7bf83aa808d1ab12af93c04a6b7da8e427ac7de44205b9bd3c680817e49924
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\system information\drives.png
image
MD5: 1849150f971b03004e8724c23578cfbd
SHA256: cbca617f71f0a2df260f6930c800dd021ce87ad44e8ad39098785f58f4291421
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\systemrestore.png
image
MD5: cb12a4924f456015b52b294e81e6db76
SHA256: 03639fd8970b59c084cb8e54671a01c0d0015a70459231632ed9d479c8ac17c0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\systemrestorehover.png
image
MD5: cf889cc3a90bc7408885e81cf0d5ceb3
SHA256: 642fb5fa070ab691c54675fe273e8b31249bf880e2bc101cc9c2c43d9be5d9cf
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\trackseraserhover.png
image
MD5: 70b3767f5ad9b77ba081cad29b611782
SHA256: 81c23b7e7590fe73c3bef4ade864b637d136fbd607c1654975a5ae5819c3897a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\trackseraser.png
image
MD5: 050fa21977481f53c443a17c78137811
SHA256: cc0e281a180bbd66e7299d5d543daa6be949d76cb7f940d5a8a7a2ddd129ccc5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\sysinfohover.png
image
MD5: 5d8b92c4443e743c5abe1750cba16971
SHA256: 61349f0fc8e3e8a3724afaf2a3b1a5139b8e69860ae6bfc2f6f21cee60680644
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\sysinfo.png
image
MD5: f964a0163879aaeeb2d89aab6ec11602
SHA256: 42ba6ee4d7f0c6dbacca4fbd89446522d58d4b32f7eaa18232db37d7aeaea2e1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\spyremoverhover.png
image
MD5: 3de3bc62d28d96045b81553e793fd1d1
SHA256: f2acd4bf7c4f33848390651f47546701ef52dbef8694d7dbd1a28a8fce6ddea4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\startupmanager.png
image
MD5: 94df79cc9b5673c87f72d3bdcc7ee32f
SHA256: 0c7942e5ea691747a9697f1a376e3b4fac0180eded2b0fbea1fe7053c38a28ca
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\startupmanagerhover.png
image
MD5: bfe3b8cb89037eb10f3d196a807d9a36
SHA256: 994594c4452000869a7ffdf2631f51dd177cf92798bda66e8bf5c2727f832a5c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\shortcutfixerhover.png
image
MD5: bc57f69eba5e6404a9d9f7009574ffbb
SHA256: e3e144b0d91416bbb9d2dba9f75416b35e37e1bce23f750b23c416617c596710
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\shredder.png
image
MD5: e01acb25f8477fe93bb91e206c1fef2c
SHA256: 4b1571a8e022509afb5ca613a06364345f0e7313164633a64dc967d011f67294
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\shredderhover.png
image
MD5: 06adf6163fb90e3dcad1f0e08c1e481a
SHA256: 2ba50d609ca91c1af880598a9fe5124ab4056a6159279618c95f139c957157d3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\spyremover.png
image
MD5: 22a1fe179ef330eca7f26fb54a5db259
SHA256: a7bb643bcd3dcd544ab410be8b28c87e03fa01e40cac00a47022cdc515fc8cd6
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\repairsystem.png
image
MD5: bc11b4d2e5cd790fcd2bfe06e0298f8d
SHA256: 8dafb6685676defe4aab0572b0c952b5b4bff365949178bceff9ba9ee2560600
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\repairsystemhover.png
image
MD5: 5a8d0af937b62622a8605351a734fbba
SHA256: 0e8a43d25d899cb5089ccf18f672e6d92a3cb6f4f1ceb9ee95206f86fd252ee3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\restorecenter.png
image
MD5: cd7ea5a0f135a1405e72f4bef741ea06
SHA256: 1b96d4b87ee038ab8336427809bfa55ea7d6d25cefe813fdff88e1cd77869f3c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\shortcutfixer.png
image
MD5: 30408efe373b5955af76839be821961f
SHA256: 26aa86fee7c1c16676f8d39d477e193913fda4672306fce976bc0927824ee923
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\restorecenterhover.png
image
MD5: a85420696a2198dcc69fed607c83941a
SHA256: a6cabb604b370897f1a39c0529727686be4731389c73dea18fce3d862db67a4d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\registryrestorehover.png
image
MD5: b2e298618e559af84ab439dd8329e64a
SHA256: 0615ae63d99eead09bfb87c5cd8a655c2fc1e642c1f3ca581f6797c6d546605a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\registrycleanerhover.png
image
MD5: c0cefe52fc6e4f2cf2267cb5047ccfae
SHA256: 7e4522841e7f1747d22dcd7ce5477ad8b444d97b85adf6c3f0136433d4fb5b26
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\registryrestore.png
image
MD5: 6374a156c7a52f37c8b7b56f6706250d
SHA256: 9c7c2d80894aa4d0ad92a62a38f83735022a1ad42d964d283dc7c94389fff04c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\registrybackuphover.png
image
MD5: 8b3e5055ea1ff4dc84ee3d69c25d7075
SHA256: 9c82ed52259367eb30461d7b1a4914fea67622711656f49500ce846db678d1f5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\registrycleaner.png
image
MD5: 0630d6ee7db172d75f2b855cd5089b54
SHA256: 4ac0e26b7354604e28c1ae5303df4fa1cdcff302adbdd37f66423617141e66c5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\registrybackup.png
image
MD5: 0c44b39bef9a35c0cdfeb743889bbee3
SHA256: 5b7081943a60afc88b869e2528ba3fedd2ef775bbd52a6dda70a37959aaa8200
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\regdefraghover.png
image
MD5: 8009945e5228455f33acb8de42bc46c2
SHA256: 90dcb0749d647b1b886b1f9118b48970f52f4d068f49bd814296d30f6e69af94
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\regdefrag.png
image
MD5: 54657bfeba737bc5b7cc403e0c3e2d0b
SHA256: 13b4cf5198abe866504596ade100dc7fbde51b94c411140d4cd6f777c0d6810d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\quicksearchhover.png
image
MD5: ec9fdc0372a57e5a5c24e2a249cbab95
SHA256: 804e377c1e4156e20cc7ab3a56418b3e115a8b60fe865426e2e4d518eabaab36
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\quicksearch.png
image
MD5: aa3fd06532fb909fe344c96091c39348
SHA256: 07163185d1bed39af91f11cc6a00938a99102b1c18003fd218e7b8fed1520cc3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\memdefrag.png
image
MD5: 3e2ebf102b99709355cda624f18e11de
SHA256: 2cded741dcd0a78894d867b8c530cf3c4299eff0abc522f59b04e8a06c3805b0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\procmgr.png
image
MD5: 026a1a534e6d8bd61ceabba80e30060e
SHA256: b9dcb6f5b39e44b82b662cba8b909a4fae0dc8cac58b573f76601110afa987e8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\memdefraghover.png
image
MD5: 3c67ce42cd8ec9dd4d140a77c8ba2f40
SHA256: 229f602b698bf80daf43193eb4acc2fb80fc4ec660b67f8aad7d9ed392da4c2c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\procmgrhover.png
image
MD5: f72d9eeb69fb9996247aca50fc97b324
SHA256: 0b418d648f6fd85cbad7d837e892ac92407e4b4eeab7aa6c8c2eb75574c4ab30
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\fileundeletehover.png
image
MD5: 8b06df5f67b8b6f07462b3211fc8b358
SHA256: 27145b80e58d480a4dd8eda4eca59d825d3086d021643f8e6f8a30bd49995b4d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\fileundelete.png
image
MD5: af322df39c8d0c3f62b09f3241eaaf30
SHA256: d442ca8c9ec455fc4b407d08c0503996ef69ac4183d56de37a5c027da0399c1f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\filesplitter.png
image
MD5: 5fbb8af89a841a9aa9661349d361c85c
SHA256: 0f119b293b036cf23413cab6dae583f26d1d36f5972ea2b4a812d62a7f2cdd53
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\fileencrypthover.png
image
MD5: e685fb58c11147a54ae92515d053f75b
SHA256: 65086dd4bd9b53f956725e0494160f96ef85dfac93440adb1dd21bad523bfc8c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\filesplitterhover.png
image
MD5: 09d9407bc08133157a7f0b3a1542ddb9
SHA256: 549215e47ff27481f707fbedef05caf44c796b1973d38297360a074027236007
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\dupefinderhover.png
image
MD5: 5b622820ed5931aad0dc7f346986bc06
SHA256: af14bdbb43dd427157877ef00c8813d72175bec06d9eee44933e1aad2187acbc
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\fileencrypt.png
image
MD5: 37323235631b769e262b6c6b9bc90165
SHA256: 33446c819ab44c8c907cf0828194647d199b65eaf2dfc75e448d430af88156cd
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\emptyfolderfinder.png
image
MD5: b1d58678f1c80a16064f70f359ceb644
SHA256: f4afd2312b96ab6e28b04224d095381e51a34586fd01288d21cd672fd78ab346
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\dupefinder.png
image
MD5: 04d481f875fd0f3369a9ee3ec33ae7cd
SHA256: 683798538973fdcddc43b2c7a117bb6926c83ebaf36e70860f799d1f34f9acd0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\emptyfolderfinderhover.png
image
MD5: 4f456c0628708955913237c837ce40ed
SHA256: 0af08b2bc982329d9c151b961b63e1496fa7e31cc418c98d979ac1f7086d5e3d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\diskcleanerhover.png
image
MD5: 877aad6a5731e9ca12c570117ac6199b
SHA256: e3a49d0881c5156d21b9a869705aacb5732056fc410e626b8f0e04108c18562e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\driverbackup.png
image
MD5: 212cd433e4f71b0f673fd2a226eaa38b
SHA256: ef1c2cf20bbf35b6891c899844c229573986fce015c19c4aa79807dd9b764f66
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\driverbackuphover.png
image
MD5: 7fd8674c0eb8a2ab8dbc1e5c02cec24f
SHA256: 26b1fe8d277db6088bd4c189f04dc8b7419b69de97ce7ff7c0eb1338afa048bc
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\diskdefrag.png
image
MD5: e76586903e2984b60e8fc89aa05e36df
SHA256: 3419d7a4ab14d934e299906f39d9f022f1099dd70c79bb7c8d2f5fbb3484c1a0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\diskdefraghover.png
image
MD5: b518e33087ad9f76a972657ddb092b1a
SHA256: c15d72cb9434e65b7a4de6ef4fb4bd69f400129f21bbe0e15491d7d7ca92421d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\diskcleaner.png
image
MD5: b2ab921172067aa385a93e863c6a57fe
SHA256: d26ccabc808cbffebea0d60a954bfd2f57bf5a97b8ad58c9ecbecae56ad69d8a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\diskanalysis.png
image
MD5: 0135cf1430e1177c1df4aac6635edd01
SHA256: b868a7d138e33fcff03a4ee805ec54d20af6cf781f45ca0df99c78532cfd43d9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\cmmhover.png
image
MD5: ec5aea0d4e5d2bfc5446c7481e6985fa
SHA256: b59966ff1ef275d8047c4d7b5c2a298d944be058f4f0c2df7917d8385021b5af
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\diskanalysishover.png
image
MD5: d626e296cb1bde13cb7527a8b9171d4d
SHA256: 57a18cf2c1f568a94e6feacc1c7edf1e5f77e15e06e395752da2e7c2e1e9fc05
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\backuppchover.png
image
MD5: 6fdb6717d845a7bea2f6301a7276011d
SHA256: bb94f63921217385e5fcd01f0608c4f6b3543dd7db2814e093f7b573822803eb
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\checkdiskhover.png
image
MD5: 1ae45bde95c951da7b190f2b1e4c4af3
SHA256: 7eab175c300fc564a074d3e5b181a799cefdf0356986ea5149666ab6f06e9481
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\Uninstaller.png
image
MD5: da9613ccac9e83eb7b5bb461f85d46e2
SHA256: 57410f3190f7b184988420533deaf268b743d1535da7f02e181c2ba6be994ced
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\cmm.png
image
MD5: 5321f85978d3eb2b9cd51fc1891645d6
SHA256: ddd6871421746f3c45ae7ca184fc2c549cb0e37767f3f858f63a71193282d97b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\checkdisk.png
image
MD5: a450d8eeee757887f9c7c58199ae47b5
SHA256: d8f3d3ce83b1f1bcc46cdf56f39367f75a9287525204451059fc0ddab666bd2f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\Uninstallerhover.png
image
MD5: c3f0cbb05de84bed9cc2598d2f4efd4a
SHA256: 649baad105393227a82ceed166069e9cecf36694241c54aecbe432728ecf57c4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\backuppc.png
image
MD5: e703157e1c92b3c79907adcdeb831077
SHA256: ad6c8e6fa4ca5ee07ed314f67a02fdca615018da85273fa1a5fa6c6f98ce090d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\SoftwareUpdate.png
image
MD5: 2dde86916ab2505d320f7be1fe157d0b
SHA256: d51790eec3f70c0e86bd820294d729f96fc2e8b8c99fe9595a98544fb74a7ef8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\SoftwareUpdatehover.png
image
MD5: 5ae657c0658a355d4edc914c4bddd9a5
SHA256: 4cca7c4b13ee3179c29743e5b9bc7f0ec45caa1e5580b1a4dbe9729c453f17ac
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\CheckUpdatehover.png
image
MD5: cd4bea5c38a30007606a03aedb9f2e4c
SHA256: 37df76d14cc73eca6eacdaa39d5c08c10f1652a809253f87e6aee7c87dfa045d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\CheckUpdate.png
image
MD5: 9b22ae980ea1ed16d3595a420c36364c
SHA256: 7a99df38b61ec08a15411b216a3a8eaac2263895082e0bf805023829e31d664b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\BrowserAssistant.png
image
MD5: 91ee8a866b3a1732b243fc6705debe2a
SHA256: 781d586b9f9930e6f2af1efb160856b5dfc76830d19d91efd1ed90b86482bba1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\icons\BrowserAssistanthover.png
image
MD5: c2bc810448952678f162d181b6f4c4f3
SHA256: 9f5916d9844062ad7a44d76092a9e00780c319d72785f501dcc280f992cb50c3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\skin.ini
text
MD5: 50f2ebe96b5a06d042725bd5756a9be5
SHA256: 15bc1ff22a8d2423a042603b076daaa88de4759dc84191a4e0c423f4419e6694
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\usertype_btn.png
image
MD5: 9c7c2dbe0a9b26aa503dc2669c470b2d
SHA256: 3aa933e626cbfeaf07ba682c72f99b82dbe2fc0f45743b70ce189ed6e7606b45
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_ov_blue.png
image
MD5: a145f54d8ba99bf298c46147db7d42e7
SHA256: fce0bcbc0a89a3a0b4684c3042a7570cf5f8bb6c55d2f29156f639a024e39835
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_oc_blue.png
image
MD5: 9b7180e5c252dcea5ab866d619555857
SHA256: afa25b29646b90d3e492444d5be160c045437911775605946e05b7f19f62124f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\toolbar.png
image
MD5: 9e78af340d094b25886c816c078ec268
SHA256: c6c4f0e3c6d9ccb359f7e9d7b02e56ac17d989e951856144de4c5f5c2723b409
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_btn_normal_6.png
image
MD5: 31e5727de821adb099175bd185cefc45
SHA256: cc4503b7031bfe876cc7118d34525c3432496204e40364cee47d105f2ea5a6cc
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_oc.png
image
MD5: 67a822b0fdd8f2bf802c69c6478b3fc7
SHA256: cab05e61a613653c5b294372265864a7fdc79d279a51335b13a2f42c7a6685a0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_ov.png
image
MD5: 3cbb154eff8b808b1427f9865e96326f
SHA256: 648d7f395395df2abdca6e8426518d8d28158a5aad2c5122165f3232ac296ea3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_btn_click_6.png
image
MD5: 2f99d7b75deba72df740deae59e1d19f
SHA256: 3e87f7f845faa6c1d103ec7e6b71480199d9ce2eca46ec9db2a0668023798be5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_btn_hover_6.png
image
MD5: 64def4006a63de26006222214a7411db
SHA256: bb86e3189697162f3e84d7d4efcf90756ca1a77ccf62b02eac3f4dac50af68c5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_btn_hover.png
image
MD5: 84d8ab72794f78f4625d9d9d8d6b8dd6
SHA256: 385d3577840c7892778963124be263630bf70cd948169b2fe1f1a173140faabe
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_btn_click.png
image
MD5: 15a99d77b50fabc4bde7671737a3a8a1
SHA256: a50e940845730c3152bda3471dc0c57484acbb08999fc434d0ef0e722cf32aa5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_btn_normal.png
image
MD5: 4a457e8d9ece46baa6c10a7d2bbf023f
SHA256: d803f4b1cc52411c2e47c51c411d68e164b206c558fe5f629be2c63462a1fbab
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\systemtweaks.png
image
MD5: 1336ea25a7a523cfa8718b14404119ea
SHA256: 1b969af54fefc4d2dd57f7f596863f89f3df3fd5c60c097692ef63649a683d3e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_ad.png
image
MD5: 24b07ea4d3ee23a0a3d9a42737091ce7
SHA256: c0b202a3fdb2cb65eaedf576d24274e7e86cdce3aecf4e1bbe4248168dd73b95
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\systemstatus.png
image
MD5: 8aa28441404aa6e6ae0b50981602fe03
SHA256: 47c4146b56901a4a08cf922d7337770b8b14e38cdd7184c675b2f209e2d1afb7
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_ad_blue.png
image
MD5: 00889aa7a103da38ba90405bc405c29a
SHA256: 313635b18d58bf1e562af60dea808f02a4d9c26ee232430211b161a4a999e60a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\tab_am.png
image
MD5: c0e6b7808a6bafdfbd143f68513fe23c
SHA256: bbb15408dcce5480e2d8d57fd7f91d517a184b7a0a707e5a861a0f80742966e5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\skin_pic_normal.png
image
MD5: 44b6f07773b5e7e24f93686523a15603
SHA256: 8c5b51dc8ebbb54b85bca5d6ed16c71477aaf3268df24815bc9e9453b4f2eeb7
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\skinsbg.png
image
MD5: e420977b79c0cf86daa926433c29ffa8
SHA256: 56b8f4e0c96681efbe5cc3ded1fa6181e45ecc938399e5511a55e5a24495eed8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\systemcontrol.png
image
MD5: 90513504d02ee107c461abfdb69bc6da
SHA256: b2ada533f64d8e56d24188df9152f0031e3e20de0cbb3b73016a583f94a98406
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\skin_custom.png
image
MD5: 59c9171480eadf4415b24e2c6778d5fc
SHA256: 63b0c6134542d62a61e163c3ff48285a3907686d7e4515f6c7d52122aaaaa529
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\skintransparentmark.png
image
MD5: 133bbb9b01d9b3efd7bd6fe0130c0686
SHA256: 7326c3e53c346a16a8801b3e4629e19cddb6616beee2c3641d8b0bf9d683800e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\registry.png
image
MD5: eaf14dce2019d3a02f483e7b53341ae7
SHA256: d0acd37641c62c35776711123903dd144feb983f315ed6d877b5cc2d122203eb
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\skin_col_normal.png
image
MD5: 2462fc7614ca487f1af806e10f1b5d44
SHA256: a48b385524937a514d94d3978539968b4fbd096840771bc3da152394feb12212
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\search_mark.png
image
MD5: 1849db734f141071e92c6081ff74684a
SHA256: 6bfe740aeb614603d57ed38eb4781a8defa80cd96526bae1c4496b8088622474
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\programs.png
image
MD5: 84c2e4507faf9e0ac68753425cf8c491
SHA256: 526189c6e8b7262437f55f1119961c764e6e4f0471ab59af10ac8f4b209df9b0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\progress.png
image
MD5: 680ab435855e592da46c8509c78e0755
SHA256: f1856b1dea10d4cc6bfdfa65b1b925aa90a8222622c9d70592cbe7571c4bf6f3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\progress_bg.png
image
MD5: e5c43bec0d350dd9b6ca912306474d61
SHA256: 71a8f0fc7de3796ee4543d621fbdd9f79a491b0da17f8771a5f6af5a8a03a157
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ov_boottimebg_6.png
image
MD5: 43a6a4a5dc8c7bd413b4e0f20bdd92d3
SHA256: adeb138f10233b15f5144b53e447fd4a8d3bc9a35fa6f914bdf015b1ebd23fa1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\pop_btn_click.png
image
MD5: 5d942d816ff03c5bd5d40fbf853a9f73
SHA256: 01048387cd4581136946e827b04213fccc1cbcc956e6644f8790f5f54d70e9f5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\pop_btn_hover.png
image
MD5: c4e6be20a92d33230004b5535e0ef8e3
SHA256: 9fe9812cdbf42fc7b953630f217fc8314b7a63cb50104a90b969affbce12eef4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\privacy.png
image
MD5: a7a422e5d4584c330cf1575c49823abf
SHA256: 05ed6f5ada8bf7be547b8b196c9a2a764a9b17271ec0deb4e38c1ebb4815de7e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\pop_btn_normal.png
image
MD5: 5d942d816ff03c5bd5d40fbf853a9f73
SHA256: 01048387cd4581136946e827b04213fccc1cbcc956e6644f8790f5f54d70e9f5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oneclickmaintenance_needclear_bg.png
image
MD5: a4004a6d0cd3edf407f0ba55af3472f5
SHA256: 3ce52404dfc27e18b599c9ee830b001aff000405751cff985683fdd74974e784
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ov_boottimebg.png
image
MD5: 47af3bbe52c374a432f451ff3a4158d3
SHA256: 22d664d143a5fc6a331aaaad45a3b72fc8c9bf1dce3d392c248e12a460325aee
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oneclick_bg.png
image
MD5: 604cb2473f63bed193de76fb822e9d59
SHA256: 09e2f6792d096205e07b59e2332957e89d117e6ab3728b2f0c7e891186f13e2f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_shut.png
image
MD5: ccb4d239c5f53721ee581861597c06e5
SHA256: 96e324d24a1db8a74c0ee0d670f7e7a18f12857bcf39f3260199ba2f7f5879a4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oneclick_progress.png
image
MD5: 3ac1108e8d876c6163fe51cc2e131e62
SHA256: e6cbd64b0d6ca4a95930047d53c267a166bc992fae5545c2f244ebfb72683d6c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oneclickmaintenance_bg.png
image
MD5: 5810b24b68397091ff48bca524f37542
SHA256: f75bb21cf69dec921ce84632eb60b7d86dd1eb78b8950c6db9d1ce0ab87e45a7
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oneclickmaintenance_front.png
image
MD5: 8593eb93b9b6333017ffc0c99e943d67
SHA256: a969fa99aa9d45d5deb990d524347e585cb53f8213324c0f6e06fb3487fcbfab
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_btn_scan.png
image
MD5: 32dec19aa98ec17a092a9fdbdf40489a
SHA256: 40e2ad45fcc09c4f24357824c611119b73ba364a282fd369cd0a2d831dcebd98
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_detailbg.png
image
MD5: 033820a2d93707524d9a8b47bc52f012
SHA256: 23ef94e85affab697f141e7aeace74c8e7523b2245b4c2a72e20c45bfc8690f9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_cancel_click.png
image
MD5: 55d6fd3bd4b0512b9f1d2e2433ab4795
SHA256: 59125ddd2ac88f88a10b18911a4dda33b442b806fb5439bbfcbd662844b1e504
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_cancel_normal.png
image
MD5: 69e5302ec17956983fb74afa1808cf8c
SHA256: 148c16c950416c0679baa7765c2488e6f7d77683b252ba6d9814993724af1071
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_needclearbg.png
image
MD5: 5d9fabc19a99046f2f5a7d86bd32dde4
SHA256: 7a74cd3581f2fee17bf7b86dac0230d7a8d1623a1f90b63ef8020f04b221f216
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_cancel_hover.png
image
MD5: b9deb6354fd26af1e9b0f6ace9f30b99
SHA256: 69f50a6210d2676b8ef361a8b31d71564ff30efa4c19851adf8bfaa38b325eb2
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_btn_normal.png
image
MD5: 01a3a385ca8283a00549db43e1c133ec
SHA256: bab903dfb58a3c80a91c4f3518a0eb9c92efd39000c3eccb2fd8b1f24aeb4842
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_btn_hover.png
image
MD5: c956e83a737726e5ceb93d14b5270206
SHA256: 5f3e2832e6e064061e2ef211afdf385b6497ff40a1c2df7835a38c4eceee5c56
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\oc_btn_click.png
image
MD5: bf0416fe5e535619d43f3a01add3d19c
SHA256: 8712b50d244c652e61b58479cf5dabb83da9facdf24bf68830e7f4a199bf3716
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\menu_normal.png
image
MD5: b2589e8f60ad095d93e493fc934b4cdc
SHA256: 145487aba091e98e1cdf874498f2898d36e33e68c0530b66b0811d180c51985c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\menu_click.png
image
MD5: a046712ccf8fefd16987cc1cbb69b7e1
SHA256: 79b53ebe47807c8c237934c2289ab710c4252cc47f424e3fc5c47848941fbfb1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_skin_6.png
image
MD5: 16371b6f310395b3fc2827a032857139
SHA256: d3e10f89233a2667d41f076dd682e5c9b6bfe3868257d888121fb6ee98a2e193
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\menu_hover.png
image
MD5: 125081a5be255a471bfcc622e6eff0c7
SHA256: 96220381c8e96036c2660f066a36067de358edb9cbf12a7fe32e75dccc6a24db
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_skin.png
image
MD5: 954c54770e9cd9b9833d3c69452e75a3
SHA256: 7672141aae30c72f55c860ce9ef048e3f8a18d874bcb764f07988deca8b4b261
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_right_top_min_hover_bg_6.png
image
MD5: c37f60719331a086d7a8cbc950086b00
SHA256: bb2b2fbf0484d4bc8fc17e1c9cfd29ba0d61d345c926ef0c07c66e188104dc89
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_setting_6.png
image
MD5: bfd3db82b449165f293a58f303b7c3b9
SHA256: a66c67f38b64b90619b8f3ef1a1954b904302c7ce0f53396e9595ea84def39aa
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_right_top_mark_sep.png
image
MD5: acec3b679972bef439314f7bc59a2afd
SHA256: 1dbbf01f252a21a023b2b7a42cbd65470d49f6e74ffac60573d96335037c1ee1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_right_top_min_click_bg_6.png
image
MD5: c21bf4cf7d2ab1686fceb9474445dda5
SHA256: fe3623de0ec88455eee76eeeaea20b2c6021ebecea30bef21258589afd6bc6bc
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_right_top_mark_hover_bg_6.png
image
MD5: 622ac138476ec5e216121ad7202554f9
SHA256: e042316ee6fe8d06ccca0d33d7aa044176856747b161fb56274ffd98474a2f1a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_right_top_mark_click_bg.png
image
MD5: ce69cf77e7eecd8d2b83275526d7ba12
SHA256: 7ff3a57033d5da295b361cb536816651971fd6eba38b98fcf296623eb54c69aa
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_min_6.png
image
MD5: b7341cb5286a2d492968fabd7fd0cce1
SHA256: 9122898789329f247fbc054c62c3ed88b89186a867f08c06d914f84aa8a48b76
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_right_top_mark_click_bg_6.png
image
MD5: a87879843e5d9a64ca712eb7d4b88e3d
SHA256: 468e650981d99b5ecfdb485dde9b828c6af0a124808e6ecfefa13bf5cbdf6e9c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_restore.png
image
MD5: a996b3dec4481022c49fa3b8f6581fdc
SHA256: aa3f03eff24a06aa9f141bb6e073889b4b256245dbc3a75d1478db2e9e2277d3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_right_top_mark_hover_bg.png
image
MD5: 376b8a1da0cd309f9163f3941a75a7a2
SHA256: f1b5e52167374230288c654e87e246ca3eba37a4a705a5db233d9b6ff9fb7b38
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_min.png
image
MD5: 06a01de08ef957bef64780e6e36df56e
SHA256: 8d8a7841e52a94540703293403dc49feea30a9d94b52c9bbe413c1cd2aeab065
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_close_click_6.png
image
MD5: 31ba602a68de9812171a6947f77aeb48
SHA256: 9700f4cd432c8319ac9eab115118694c7e84e8b7b1f301177282d91fa458b29e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_like.png
image
MD5: 4222b43a686e539d47926c7760325b20
SHA256: ae7fe46c113d41144f61c2dada733e7b28e25c3db90473975662e6cffdd2c3b6
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_close_hover.png
image
MD5: 9f5396971661351a8209fee64382588b
SHA256: 4b4f7d846d41301bd529a2c43c82ad58cb0b8b909bec815b298faa924d83897a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_close_hover_6.png
image
MD5: b229b0b361971aa2d659c480fea9ad55
SHA256: 77eb42378e18acc7469804f8226f1ecd0c9c884df229955612c54a27c6aff2f5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_feedback.png
image
MD5: cd84bd19e88bcd01ce7b4f26e05d0243
SHA256: 35c47468daf1f819fae79581c544135c4a84f1086dcd86e3a4218f39fbaf7764
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_like_6.png
image
MD5: c3bfb12a77cdadfa6a7fe913b097ca8e
SHA256: 24b2fd7ca766c40284f4fa370270af3c6fd82116646d31e03508099581cfac27
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_feedback_6.png
image
MD5: fa648d281aebd087dec0967d52230999
SHA256: 8e32fc4adfe229e559d691715598d2510cfa6f09a1152f0748e66088e223813b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\harddisk.png
image
MD5: a33a7d04fc853af65a0e76efdc5c7b9c
SHA256: 4c32bb1a21f28edf03dafd9133aa9f98da6d94babecd9f377e6bc45dd13bd520
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\filemanagement.png
image
MD5: be0273bf5eca186b4dbe04a695589449
SHA256: 4eb1f2c1d9c998e436ac8e714ee7a11a95e97d48bb5f3a8489f31b5cb9a7af9a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_close.png
image
MD5: 37ba3dea3deaa4c7ee595932ba13f2f8
SHA256: ad3eb792b3a2d0aaf3e896eed6882811310a10dbccf2e6ad5ad75f784889138b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\logo.png
image
MD5: 33e761a5ebe391d108b71316daae3c04
SHA256: 843fb39bf62081f56f43c66465e7b3c718915a42c176e741b7c15a090fc7b69c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\foot_transbg.png
image
MD5: b52fbef5c56730a19b13e6ac77c5ac67
SHA256: 538636a0c1092c75034d56ecc5916557c63345178deb6e58bccf241acf679279
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_close_6.png
image
MD5: c224c2d4eadcc9c304476cc3b00cf5b0
SHA256: ebf6f81fa062414920a4bb67d08462218685255e0db44147089f4064cddb46f0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\main_close_click.png
image
MD5: b8eb89eb9a004047443adb22df5f801a
SHA256: f90336b3cde41026905d3ecbe8e57bc4145eddf60a5126c6b4d09ae9f1fa359e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\logo_6.png
image
MD5: cc82c28926cd6b784da152c0a252fbea
SHA256: c95909b8fe1928d3fbdfaa5fa49a861a7726d953768fe691bd8afdafcb473c43
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockpopturnleftgray.png
image
MD5: c15c14070c0264548be10662b53353ee
SHA256: ed8e74e9339c68cef992d7bbbada4c9e2b5dd475c4706f80efc0b93fcbeda42d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockpopturnleft.png
image
MD5: 2dac7d5f426727ee31ab2cb059bda462
SHA256: 17f2671ae4882c4587e679f129eb9a73026f6aabb13ad4a78ae121c736b3533f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockpopturnrightgray.png
image
MD5: 0edd5b4f5c0f7033d0f308bd4e939c54
SHA256: 3a59cc6168630d4469aaaa0a5f9933d69d69005ff7254860b829f75332c6c558
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\drivers.png
image
MD5: 870e5197c100b11efc137b65c4a6747d
SHA256: 387c6b86bddfbfaf02be1bf142634d8d21c133e7edb19fe6673d3f885145ce0f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockpopturnright.png
image
MD5: faa415c77023f8d6bf19e33f47c0f1c5
SHA256: a52cd88138dbcf3c07a42a5f64d76233e01557999fbf024ef0109b83413193d0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockpopdarkbg.png
image
MD5: 8f98c7ae8f098c536b59a647381a9b04
SHA256: 5f33031c48390c9078dbc204c0e8a20ee879db3bb91e4f2a4675f11c8458c0cf
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockpopbg.png
image
MD5: 3e4d547f22c1511374e41167e55ebea4
SHA256: ea93cba35fc2a72c9a8182e187e81d304a12c1d00560795510064cdbbb4266fb
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockhide_normal.png
image
MD5: 659d23020f8d008e0d7175ceedd91f7a
SHA256: 5dcdc359b01baff4f78c91310e346c9d8c2a510e26fa27f5a409520ba1e37804
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockpopcurpagegray.png
image
MD5: b5b27f1343262b39f3c9922646701e41
SHA256: b8ece777073be111c08932f1e4ceb9c61f2ff2f8e92991a8cd71d084d3fa715c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockpopcurpage.png
image
MD5: 8164a572504ba6f3dcfd7df983f055a3
SHA256: f2e83ab2042cd885260478792421f55b64fa2225b2b2cb7c930cd26acdf65f16
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\clear_tips.png
image
MD5: 75173dae91436917f40ced286046a034
SHA256: 365945b7985c29e075edcd08825ce5bd6ef8d95974aded1a9e05406b98b97fd4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\checkbox_uncheck.png
image
MD5: 2aea8190f1cbea0c782161346979032a
SHA256: e17c1d45665d71356583b7a3d49fabf091565af1cb349d574859970e0763c766
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\checkbox_checked.png
image
MD5: 397d5d2b79a18b3c17d8f8270c8a9066
SHA256: e164807ae8e82039dfd4df72040a026d9eaa3d5fb0bb444ab024f3425044a7e6
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockhide_click.png
image
MD5: 3ed3117147546082751329d300b087dc
SHA256: c580ad919f20297eb004a61243c4cac30f432350e02c9a37ae846e3d4eb96f42
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\dockhide_hover.png
image
MD5: 2a846860416c3652f3214af6e7e2a852
SHA256: e7413f3e006179aa11ae1faa082fc9d8747bd5d5afcea46cc85da76b9c28c703
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\diskspace.png
image
MD5: 2feea9432dc42887383e51b5b550702a
SHA256: 9ec68d577ce80f7363854e98d46e83fe8c182d1a742ffd2e9ff8c20c17c9a788
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\body_transbg.png
image
MD5: 73557bd51753c0478cd12483c08d6853
SHA256: 74e2e3ecec66438759a2dba7f81d56e4127ee3549e6cf0521cf50c5830dcb45b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\btn_hover.png
image
MD5: d87b001ee2d9471a51d77c21f1650160
SHA256: 490012d50858fa802a8ef6af074cf78b2f1a5215c5dbe9f04f2bd486aa4d4939
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\btn_normal.png
image
MD5: 7d7afdb8c4fa99e9c3bd560f03405dc5
SHA256: f8484e5d642538e6eea379a3c1f5f65d75573c9f8b4422f667212cbc03e207e9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_system_hover.png
image
MD5: 552f52601d6573cc9f06cecb6121789d
SHA256: c88102b720f8dbd47be5f7e2976dba4931fd91de55bd747fbb62e5e4306950c8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_system_normal.png
image
MD5: 01ac8d00a9bf9abc9556ba39bd42f2bb
SHA256: 66326c03e2d586e6a2acce84c345dae8a3a061df6770a73bf0ce24d91d0297f9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\antimalware.png
image
MD5: bc6cde19b8550fd2a426134db42ea97e
SHA256: 1c74ec7bc74a91cc21f4c2ed9f69f1be30e1e60b830c24e8861f759eda5f744c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\btn_click.png
image
MD5: af75935389dbbb3bd391ede6f4f2bbb6
SHA256: 5e4b709953fceaaf4d98aa6de38cd80ab51c1a7b4d1ee4c8d8ab486f6a4a5d0e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_privacy_normal.png
image
MD5: c250fa18017a7634ce46232ad83916a1
SHA256: 88e467f539895ea9526e0e8e813179e0a02202caf28bc453647d9d8fae0937c0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_system_click.png
image
MD5: 01ac8d00a9bf9abc9556ba39bd42f2bb
SHA256: 66326c03e2d586e6a2acce84c345dae8a3a061df6770a73bf0ce24d91d0297f9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_optimize_hover.png
image
MD5: a6d1ef6e785f31950386da429da9952c
SHA256: 66e38c93b32781109ff45b461a85181446583f946cd737258eb59fa7e91ea30b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_privacy_click.png
image
MD5: c250fa18017a7634ce46232ad83916a1
SHA256: 88e467f539895ea9526e0e8e813179e0a02202caf28bc453647d9d8fae0937c0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_optimize_normal.png
image
MD5: e16ce89ab2642b272dfe70b69f16fc1f
SHA256: 93027732eebd95e1d98f9749453253bf38341a8a87e392987ccd97f4abbaea7c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_privacy_hover.png
image
MD5: 06c899ce2a049492cfb6f32bab64bef0
SHA256: 1829757fa34dc14e297ed318928bb2d55f34fe73ddb9f68f5de9567c5f81a0fc
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_optimize_click.png
image
MD5: e16ce89ab2642b272dfe70b69f16fc1f
SHA256: 93027732eebd95e1d98f9749453253bf38341a8a87e392987ccd97f4abbaea7c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\activenow_hover.png
image
MD5: ef8604615959b0d116244ba7b7759f52
SHA256: 5480feaa04c8580c6c3de9ffa11249f80625ce7aaedf635dc1244254cdc35ba0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_files_click.png
image
MD5: 62543f2294de23a67808bf4ef28d814c
SHA256: 526f84a0945fb8096bb0b09415d24a2921dc0d078b60f3c82373f77a7751872f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_files_normal.png
image
MD5: 62543f2294de23a67808bf4ef28d814c
SHA256: 526f84a0945fb8096bb0b09415d24a2921dc0d078b60f3c82373f77a7751872f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_clean_hover.png
image
MD5: 6f6b538728866d02b52324b48098018b
SHA256: 83bebfeccf44d754a580368831c8c1eb64de0d22784c683f3c1d783b03553334
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\activenow_normal.png
image
MD5: 19792d59472d85af52bbf21ec20260cf
SHA256: 9344c4a21814b627a92e76272a2dd80f075303a93a290a5e02f1e34949af7b1e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_clean_click.png
image
MD5: a05cf93b6cd3c32584fdbc94fe684b42
SHA256: 3702fffa67bf3ba394c500c98364032c4e69b26a853d3f502c6609a24a03ccdb
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_files_hover.png
image
MD5: 2e8778e32b2588a145569de98a0c1f24
SHA256: 671c7bbc737ef534e4bff99989b39398f3b6c01eca363a158a7eb6169442c335
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\ad_ca_clean_normal.png
image
MD5: a05cf93b6cd3c32584fdbc94fe684b42
SHA256: 3702fffa67bf3ba394c500c98364032c4e69b26a853d3f502c6609a24a03ccdb
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg7.jpg
image
MD5: 8dbc9b3c815dbeac9a21c342403cdfd6
SHA256: eb909beb386ab6f70a11af12cac4704767710b780a781ab57d2f407e6655a20d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg8.jpg
image
MD5: c007d15e963ca97dbed6ce8b07411719
SHA256: 9811b458f09ba9f3ad0576ca87cb75b93c3c0fb29a542cb2e4a3f6734ca5428f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\DockButton_Tip.png
image
MD5: 84b14bf25b659aff2fc6f9e91f4cfa04
SHA256: 6d2c391e3e3ec669a8f9912d02a8be237192c737c795f25b81b4f6a4e6fbc3d9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\images\activenow_click.png
image
MD5: 19792d59472d85af52bbf21ec20260cf
SHA256: 9344c4a21814b627a92e76272a2dd80f075303a93a290a5e02f1e34949af7b1e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg9.jpg
image
MD5: f135b4a593b82458925ac72b68cd7b9c
SHA256: 3a905bebb235439a45a5e1fb341256c6bf68f945450983d558b76c7356720e98
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg5.jpg
image
MD5: 5f623d0294c610ac899c7ecb00fed9a3
SHA256: 9e0b5ca7ee417b141a18b22322d726c5b2ba7b703215f12f3f54e77947158573
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg6.jpg
image
MD5: f09cdf210a083145cc9127cb87c00007
SHA256: e6c84a1a65a52c876fcd1174ba043e2edf8fbf56e05f4053f6ca8cf1218bf147
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg4.jpg
image
MD5: ef46212a9d8bfa2dae1fafdaac2b3a52
SHA256: 98b49907b2cd4a14cec5d625913426e309b64b0e0362cfb1b9f46810a60a3ede
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg3.jpg
image
MD5: 5e09a1540a62b57175034e4fcf1cebc1
SHA256: 1831499025e3d4d6b157f0e1e40298952591edd433fd6eb20bca81a65dcb64e1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg1.jpg
image
MD5: 3ac59b3a60079732532effd3ff532fff
SHA256: b2e81b44a7d1c4645d32bccdc08b538be23453ded6a72c1a0c6465b57a317544
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\skins\default\backimages\bg2.jpg
image
MD5: af2bf174fa1ae14769122b1e2ed86a62
SHA256: ca5e986d5ee7fe04dfa27425afc006ebe94ca17f215aaa78f1bf692b9944fa0f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TurboMode\BackGround.jpg
image
MD5: 46226e385fd1acb0b0582454666b5ba1
SHA256: 1bbb2c7e82364f2f2e86f78e32b5de0fe4239610858f30b2dd57807a16c39ac4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\Uninstaller\View.png
image
MD5: a856ebadb7bc51b06220a0faf1d3782e
SHA256: ba391d7d09388dfdb3db3d5603a8d039f1aaa6d33304f184d21ea615152d4ac1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\Uninstaller\AllPrograms.png
image
MD5: 3218802d4a020317006b046023aa878b
SHA256: bb480a0535ec5d529605b3dd132c8445dd1714735c5746b32168222d623a2934
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\Uninstaller\Recently.png
image
MD5: 445b6fc79bf5530b24bde46c6b1b6dc4
SHA256: 1ecf0f13fc303fe26247beb595c86b14ce24214baac87d8a2745e357bee477e0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\Uninstaller\RarelyUsed.png
image
MD5: 0d3611f3ad20a042eabeca32eabba931
SHA256: b66160ca3a504933beb83401a061ec67da4a21c3a7fa041597dcdb8ce6145259
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\Uninstaller\WindowsUpdates.png
image
MD5: 0b87d8e18c54aa879ed6865fc51560ad
SHA256: 83e6d23375deebd2817ee5e86f25a7e0235cdca6e2bd6ccc41f395345f0b520c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\Uninstaller\Large.png
image
MD5: bf3d540158affc6eb0ff7a7ba16ebd74
SHA256: 48a58c060751228ddbd56f19c1e44f02764ca295a51ce34ac8104d9b34f709fe
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\tab_btn_click.png
image
MD5: f003bdfcd0bcad4c5c1fa5284019530f
SHA256: ec19a4a75d386e66786e09a6b2e2dae353342654b6817934a32c427acf699e92
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\tab_btn_hover.png
image
MD5: 84d8ab72794f78f4625d9d9d8d6b8dd6
SHA256: 385d3577840c7892778963124be263630bf70cd948169b2fe1f1a173140faabe
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\tab_btn_normal.png
image
MD5: f003bdfcd0bcad4c5c1fa5284019530f
SHA256: ec19a4a75d386e66786e09a6b2e2dae353342654b6817934a32c427acf699e92
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\toolbar.png
image
MD5: 976d87407f9edc3039f9ff39dfd561d2
SHA256: e529e60827a95c21b9b45cae0f1b4f2ca6877e676cad0014e7d70cdd6800421b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\oc_btn_hover.png
image
MD5: f5e1cdb5dbf95959b0a96de17172c2e3
SHA256: b6fff8e5f625690dd506d04325aea740722e07bd791a3eb564aa47f7fb497815
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\oc_btn_normal.png
image
MD5: 7df8eb79b3a6ba441f7b540a041143b5
SHA256: ff5c7b8aaea7e51d0254491948150008f8adaad7078476b21b69c3fe0b291539
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\registry.png
image
MD5: 4f8721cc54352c105f9ee1cde2d5718a
SHA256: 65bf5463041d613d1160a5293ea6aa76a39237e9483b4cd35357e82d753a81ed
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\main_like.png
image
MD5: 4222b43a686e539d47926c7760325b20
SHA256: ae7fe46c113d41144f61c2dada733e7b28e25c3db90473975662e6cffdd2c3b6
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\oc_btn_click.png
image
MD5: 64abd3c6b8a2a3cca8ec90f0c5c34ff6
SHA256: a11edde4d7257919c4f401593ef5d99dd6e2914e431bb05932ada9bb71752675
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\activenow_normal.png
image
MD5: 19792d59472d85af52bbf21ec20260cf
SHA256: 9344c4a21814b627a92e76272a2dd80f075303a93a290a5e02f1e34949af7b1e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\activenow_click.png
image
MD5: 19792d59472d85af52bbf21ec20260cf
SHA256: 9344c4a21814b627a92e76272a2dd80f075303a93a290a5e02f1e34949af7b1e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\activenow_hover.png
image
MD5: ef8604615959b0d116244ba7b7759f52
SHA256: 5480feaa04c8580c6c3de9ffa11249f80625ce7aaedf635dc1244254cdc35ba0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\Line.png
image
MD5: 931697ec16e89b30665d18fc47c935e6
SHA256: 50ab0f67d0474b103f56be703f5293e71c2a700edd9acfb9eecd0d2db8151325
2776
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\CrashpadMetrics.pma
binary
MD5: b59113c2dcd2d346f31a64f231162ada
SHA256: 1d97c69aea85d3b06787458ea47576b192ce5c5db9940e5eaa514ff977ce2dc2
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\SystemDevicesNode.png
image
MD5: d1fe1c5be12d0706a69d35a9c3f3d824
SHA256: d13b8d9a31529a1ab2e532871d3b3fba00bcf9c8b5ee6f90e58dc945902bbf8c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\System Information.png
image
MD5: 752c24cda867013dd0b6f05fc93b0874
SHA256: 54c94750ebaf324e94e4c02966653632a2a16a1fcd091a31a6d7930f98a37e02
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\TracksEraser\Property.png
image
MD5: e4240d267005b00c31f1dca79f146d3e
SHA256: 5eb304fbe567baaac5863ebfb21cc59346aab5fe2ca9c3b2bb27bb4970b514ce
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\Picture.png
image
MD5: 2ce3ffb44d172765428ed448cbe1f130
SHA256: 4f6b5e451155f2458005b40aa2a931209de972b9c4027dc88281569e6901baf4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\OverViewNode.png
image
MD5: aab2590fe99d9d625e6918cce3b04a02
SHA256: f27bfe0bca01205e445daedf76adce21218b2bf240b126a2f3b7e21bdba1c020
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\OtherDevicesNode.png
image
MD5: ee94a02f922b51ad60e89d8d2fcf1b75
SHA256: 3adaa79a686dcf788fe9f42cb0eeeb59606a51499aed43fa5f277c91c8924438
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\DisplayNode.png
image
MD5: 239821187d024d7a7712c03a40049484
SHA256: ac90e86a7168d820b52bff96620b699906bd6cce49988381b3bc793e34dc4605
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\DrivesNode.png
image
MD5: 6bf9e6da3b5c391f5d8a39c363940444
SHA256: 100eafe68fef0dd91ebd54830ea357f21a6e2f9a4f2694a16680965e18380fd1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\NetworkNode.png
image
MD5: d053f5fc48140f3bd8006d3c5dd107db
SHA256: df92aba20b531130276f59c639d099b18504f47b74a9e7d08c580436c6b74b3c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SysInfo\OperSysNode.png
image
MD5: dc47e3c215089e8952831027306df093
SHA256: 11c3f090f1a65b387a1a140bd8243e4cac6690f40c8aa71f82feebda8d5fa528
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\StartupManager\search_icon.png
image
MD5: 63a414ae1cc13b31a90448c2325817ce
SHA256: f87d0a43ef2dd47ba67c0d48313327baef55acde63938bdc5f298a06efb308bb
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\StartupManager\toolbar.png
image
MD5: 8635c5755298c805910b70dbb3e9c226
SHA256: fedffeb8e1f3df1bd1bc295ed7087da0bfebf53158aa7bc53c142fb20d97a5b4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\StartupManager\close_min2.png
image
MD5: d3a80a0b9f55d8f843ee0b18a4889fb7
SHA256: b106d5ff3457f98ba7b193238c15633aff8cd8cf3c25df1504b9dc71795eef4a
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\StartupManager\close_min1.png
image
MD5: 0fbd6667dc54a1ab2fc08486d4cb9df1
SHA256: 0c45293e25e4622e7c24ae75b9ecdb7130d4c45e8b494364ee70b9b8707415af
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\StartupManager\close.png
image
MD5: 165f9021c06b58c4e8cbde26f8471491
SHA256: 8e272ebc35cd3b2dae56df4dfdf602118c2663257d820abf9e681c673566478d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\StartupManager\close2.png
image
MD5: 7f68efbd97eac566af646f7695b6b47d
SHA256: 77db8a4cc353c43156e2a5208392300cf1b14679010bc135503623718a20d1ab
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\StartupManager\close_min.png
image
MD5: fba452c1529557a912dd043366e054c2
SHA256: 9af4fabd3440eb27bd7ca134c34d934b9a7375223a4776a28b7c66af4ba5ed37
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\StartupManager\close1.png
image
MD5: b1e125eab612d14f320d101075817080
SHA256: 9e56ae5a7c54458f5925c45617409c465dcf5d581b013d61269c94cb60353cff
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\SpyRemover\BKPic.png
image
MD5: 70d34d950f62de02c5fe9c0c20a734ef
SHA256: 0324be2cbbd7790790557c21d40fb7272a35eeedf6e2eb26b6ec20fbe81c09cf
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\ShortuctFixer\toolbar.png
image
MD5: 83fd5f84acac199a0a5085b078c6b2ab
SHA256: 5be9b98f009d555f7536cc991810d72cd01b70cf2c6c9893a46b847a2b6b2cc0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\settings\DiskCleanerImageList.bmp
image
MD5: daa0e5e61a642314a31fdc510128352f
SHA256: e5b97f875eb3c0a4b61f3c67c097a71e30e5049b7b2ad7b9505e8ea7ed749a5b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\settings\TracksEraseImageList.bmp
image
MD5: bacf8220ada88aa7381dd384af645873
SHA256: cc058005545e561d54ee85c1c2f92108e1290311cd0f375b513cf70c9df4323d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\settings\CleanRegistryImageList.bmp
image
MD5: 50c07221224e9f185f56613c4d315369
SHA256: b7198625081b26161d91727b38a30c5a489f9f3f7920949945fce1db9843ebea
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\tab_btn_normal.png
image
MD5: f003bdfcd0bcad4c5c1fa5284019530f
SHA256: ec19a4a75d386e66786e09a6b2e2dae353342654b6817934a32c427acf699e92
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryDefrag\regdefrag.png
image
MD5: e69ac1a7ca76bf65ce4be2081608b582
SHA256: 0291c7e6e04617ef1867a3bb2b6a002c5096843db6eb9161cd218ad20841c8b7
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\tab_btn_hover.png
image
MD5: 84d8ab72794f78f4625d9d9d8d6b8dd6
SHA256: 385d3577840c7892778963124be263630bf70cd948169b2fe1f1a173140faabe
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\oc_btn_hover.png
image
MD5: f5e1cdb5dbf95959b0a96de17172c2e3
SHA256: b6fff8e5f625690dd506d04325aea740722e07bd791a3eb564aa47f7fb497815
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\tab_btn_click.png
image
MD5: f003bdfcd0bcad4c5c1fa5284019530f
SHA256: ec19a4a75d386e66786e09a6b2e2dae353342654b6817934a32c427acf699e92
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\oc_btn_normal.png
image
MD5: 7df8eb79b3a6ba441f7b540a041143b5
SHA256: ff5c7b8aaea7e51d0254491948150008f8adaad7078476b21b69c3fe0b291539
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\main_like.png
image
MD5: 4222b43a686e539d47926c7760325b20
SHA256: ae7fe46c113d41144f61c2dada733e7b28e25c3db90473975662e6cffdd2c3b6
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\activenow_hover.png
image
MD5: ef8604615959b0d116244ba7b7759f52
SHA256: 5480feaa04c8580c6c3de9ffa11249f80625ce7aaedf635dc1244254cdc35ba0
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\Toolbar Default.png
image
MD5: b544b2830c92bf2bb8b13a198b2cea18
SHA256: 3729e9c651384ebd6ecac8f16ed3af197ad9d5f0f65487fa0d144d60257730b6
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\activenow_click.png
image
MD5: 19792d59472d85af52bbf21ec20260cf
SHA256: 9344c4a21814b627a92e76272a2dd80f075303a93a290a5e02f1e34949af7b1e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\activenow_normal.png
image
MD5: 19792d59472d85af52bbf21ec20260cf
SHA256: 9344c4a21814b627a92e76272a2dd80f075303a93a290a5e02f1e34949af7b1e
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\oc_btn_click.png
image
MD5: 64abd3c6b8a2a3cca8ec90f0c5c34ff6
SHA256: a11edde4d7257919c4f401593ef5d99dd6e2914e431bb05932ada9bb71752675
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\quick_search_dir_add.png
image
MD5: 17b3664503f80093326642a873bb3e43
SHA256: 905a67eb3b9e82491c5ce7fb27c27eb39fa6bbadd4e773f7bdaa1b417b8b4804
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\quick_search_logo.png
image
MD5: 3ed225509f1e4caa513f15cf5880d130
SHA256: 05fcd034c46ff592790ed4142afc3abb96df50cc691856611bf5031c1672f9f8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\scrollbar.png
image
MD5: e30b6255abf99b878dc9ad4259622368
SHA256: e1535bc8010a6e63eddb70d7cfeece85d6626477a2d82ee7cfd426e4f290ef9c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\RegistryCleaner\Line.png
image
MD5: 931697ec16e89b30665d18fc47c935e6
SHA256: 50ab0f67d0474b103f56be703f5293e71c2a700edd9acfb9eecd0d2db8151325
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\quick_search_dir_delete.png
image
MD5: bae4cd25aa9a0e1890f6f0293f733f06
SHA256: 87e66693b4eb19c7c7bac869459d408f86f90378143e17b7144f2ba176442774
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\quick_search_clear_keyword2.png
image
MD5: 52e11fb46d61b897a47168799da7047a
SHA256: 5a50c4d73cf6b829161ec246b6ea6768c94332b1b9d3a773c41c64c0a8d3d2b4
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\quick_search_clear_keyword3.png
image
MD5: 174c5922088cc8d3f8f159a8070cbee8
SHA256: b888edfc3e8f5529adf3034ed6b4d1598f95e513716f6d16751f2eeab0e161e3
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\quick_search_clear_keyword.png
image
MD5: 95604b497e4e94ea7229f612f1290665
SHA256: bc658c9325f808ddc8997e8b94b63013da2c119db0f6f96e4c1511d8229546e1
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\mini_close2.png
image
MD5: 4034bc1946787a64dffa4a401e2f85cb
SHA256: 16ea22b6b71813483492a9b7256b5fc488993a03de3eef24847b02f6cd03db23
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\quick_search.png
image
MD5: 27ff1e8ffed68b88ef1ac1bda8784a23
SHA256: 570f25efcd510fea1d5f4d061e115dd7cc0d47e749c8673b99bf61a6cdca054b
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\mini_close.png
image
MD5: cbbd4b5e0f53b8c8aed45d5a44540eff
SHA256: 6fa47833bca8d1be66b89cee55c73ed98e7f4f78ce898a6b83f399c492aaa957
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\mini_back3.png
image
MD5: f3596369eaa2762acb7a72c5d7b3515d
SHA256: be4feb806e6117ce989f273985b66e183f832f1cbdfb323a9e75f707629b66a9
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\mini_close3.png
image
MD5: fc516c3af4790f4a5720685e6de0086b
SHA256: 73a57d5b5e01427203ca41ccc980dfc6978d3987631755355507c025f2bf4b3c
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\mini_back.png
image
MD5: 99dcece92f7f4c1a1f275a06c8e551d4
SHA256: f82fb7c8589edddd7bf49c2e686c13c43181b87b6050d9afa38d3cd7a5178e85
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\mini_back2.png
image
MD5: cc46ea975268c8d163f4d604c3bd268f
SHA256: 320b6881a99bb2d4861589f06941fff73fdc122f96e741d0b318514f37b62808
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\min_windows2.png
image
MD5: 4fcad6f7937eb00e26dc3b590cc50954
SHA256: cce21d0cc60b4b2186184fe48421efa805a70011ed825cb70c622d55328acebf
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\min_windows3.png
image
MD5: ef6e8fc3b148800a1a0ff2fb19508527
SHA256: 5e9c65ac901a689824b2fd4d0faa155bbcdbb34c76c7f21c5eac6e0ee4175637
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\min_windows.png
image
MD5: 65bf10bcc4bfa8e515251f5e614d170b
SHA256: da3e76474f3a233210d2bc864b52599c8a44fa8630e07b4cec6f3dab7ebce482
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\min_menu3.png
image
MD5: b89e99add875b4da782cf00281761f61
SHA256: 681352abad46e790215fee141bcc3255764636eae88dddea6f84dd887cde5120
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\menu_check.png
image
MD5: 0caf1b9abf45a79fc4e91e75cb1725d5
SHA256: 1264ea6828e3e443b581e03df4033e488e0ac353cd8f80aaecde5b02aa4c71d8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\menu.png
image
MD5: dfb05e3e5aa40a273c63fe9d64e530a1
SHA256: ce0dffc150755ddb67e6166b03a5ace09fb66cd342f491ecbc266296317f4758
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\min_menu.png
image
MD5: da517b0cda4903ef685371b5e2e1e8eb
SHA256: 817400421c4f12b9d6f585bec2574546ac02759da646a910ba9d1d8d256ad240
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\min_menu2.png
image
MD5: b824cfbf30c97af429c1bf9d93352d74
SHA256: c0663e34203e4f77711ae419c09e0daf3bb9b9b83db4e7159d9c5c990808b16f
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\main_restore3.png
image
MD5: e54e5f1bcee5c6d7a5d104b04d93d0f2
SHA256: 6a068cedb20b8cf7e6ea0b6eb148bb65302414146f51ce2f85127da270c8b0e5
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\main_restore2.png
image
MD5: 73f0903ddd478c3194b4801b74516c9c
SHA256: c3ba0ae215b5a9b525dfc1663c7e609bbd9fa9a87745a137423400c6d093338d
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\main_restore.png
image
MD5: da259af3b6892a31297d14fa3efdacb8
SHA256: efbb3e804d28359c74095225e315eb8f18dac0d1ef6886b894b30a2328ae8735
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\main_min3.png
image
MD5: 261d2ce29d4423a08bcb10f7aee2a2a4
SHA256: 007e19c803c096858ec36ac0165582923b17dc3fda226e75ab17b19356f2fcd8
3688
gu5setup.exe
C:\Program Files\Glary Utilities 5\Resources\QuickSearch\images\main_menu2.png
image
MD5: 0f953e9efd