File name: | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe |
Full analysis: | https://app.any.run/tasks/84c3616b-5e50-40ae-ab0a-ef21cf109168 |
Verdict: | Malicious activity |
Threats: | Adware is a form of malware that targets users with unwanted advertisements, often disrupting their browsing experience. It typically infiltrates systems through software bundling, malicious websites, or deceptive downloads. Once installed, it may track user activity, collect sensitive data, and display intrusive ads, including pop-ups or banners. Some advanced adware variants can bypass security measures and establish persistence on devices, making removal challenging. Additionally, adware can create vulnerabilities that other malware can exploit, posing a significant risk to user privacy and system security. |
Analysis date: | January 13, 2020 at 03:19:08 |
OS: | Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) |
Tags: | |
Indicators: | |
MIME: | application/x-dosexec |
File info: | PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed |
MD5: | 7D153606F4220AD10FB33407A6A1E8FB |
SHA1: | BA3C6FA16A4CA0238A5373C281504C685BF32A07 |
SHA256: | E0FA7A19E42E0D78DCA623AFEC928CAE53A40704886BF38326DD22CBA92DB9D8 |
SSDEEP: | 24576:QBkX8AWseDUm5jYPkPct++SzE5dq8emKPRXgetWpl/7QPTQV2/K0TZ1ededj:FX8jDUfPsc4+Szg75g2/yQVoVEdedj |
.exe | | | UPX compressed Win32 Executable (43.5) |
---|---|---|
.exe | | | Win32 EXE Yoda's Crypter (42.7) |
.exe | | | Win32 Executable (generic) (7.2) |
.exe | | | Generic Win/DOS Executable (3.2) |
.exe | | | DOS Executable Generic (3.2) |
Subsystem: | Windows GUI |
---|---|
SubsystemVersion: | 5.1 |
ImageVersion: | - |
OSVersion: | 5.1 |
EntryPoint: | 0x82ca10 |
UninitializedDataSize: | 6914048 |
InitializedDataSize: | 118784 |
CodeSize: | 1654784 |
LinkerVersion: | 14 |
PEType: | PE32 |
TimeStamp: | 2019:11:26 05:52:49+01:00 |
MachineType: | Intel 386 or later, and compatibles |
Architecture: | IMAGE_FILE_MACHINE_I386 |
---|---|
Subsystem: | IMAGE_SUBSYSTEM_WINDOWS_GUI |
Compilation Date: | 26-Nov-2019 04:52:49 |
Detected languages: |
|
Magic number: | MZ |
---|---|
Bytes on last page of file: | 0x0090 |
Pages in file: | 0x0003 |
Relocations: | 0x0000 |
Size of header: | 0x0004 |
Min extra paragraphs: | 0x0000 |
Max extra paragraphs: | 0xFFFF |
Initial SS value: | 0x0000 |
Initial SP value: | 0x00B8 |
Checksum: | 0x0000 |
Initial IP value: | 0x0000 |
Initial CS value: | 0x0000 |
Overlay number: | 0x0000 |
OEM identifier: | 0x0000 |
OEM information: | 0x0000 |
Address of NE header: | 0x00000140 |
Signature: | PE |
---|---|
Machine: | IMAGE_FILE_MACHINE_I386 |
Number of sections: | 3 |
Time date stamp: | 26-Nov-2019 04:52:49 |
Pointer to Symbol Table: | 0x00000000 |
Number of symbols: | 0 |
Size of Optional Header: | 0x00E0 |
Characteristics: |
|
Name | Virtual Address | Virtual Size | Raw Size | Charateristics | Entropy |
---|---|---|---|---|---|
UPX0 | 0x00001000 | 0x00698000 | 0x00000000 | IMAGE_SCN_CNT_UNINITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE | 0 |
UPX1 | 0x00699000 | 0x00194000 | 0x00194000 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE | 7.94442 |
.rsrc | 0x0082D000 | 0x0001D000 | 0x0001D000 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE | 6.82874 |
Title | Entropy | Size | Codepage | Language | Type |
---|---|---|---|---|---|
1 | 5.06216 | 651 | UNKNOWN | English - United States | RT_MANIFEST |
2 | 3.25755 | 296 | UNKNOWN | Chinese - PRC | RT_ICON |
3 | 3.2736 | 3752 | UNKNOWN | Chinese - PRC | RT_ICON |
4 | 3.91716 | 2216 | UNKNOWN | Chinese - PRC | RT_ICON |
5 | 3.48177 | 1384 | UNKNOWN | Chinese - PRC | RT_ICON |
6 | 3.02843 | 9640 | UNKNOWN | Chinese - PRC | RT_ICON |
7 | 2.29446 | 88 | UNKNOWN | Chinese - PRC | RT_STRING |
8 | 2.44525 | 1128 | UNKNOWN | Chinese - PRC | RT_ICON |
9 | 3.90783 | 744 | UNKNOWN | Chinese - PRC | RT_ICON |
10 | 3.25755 | 296 | UNKNOWN | Chinese - PRC | RT_ICON |
ADVAPI32.dll |
COMCTL32.dll |
GDI32.dll |
IMM32.dll |
KERNEL32.DLL |
OLEAUT32.dll |
SHELL32.dll |
SHLWAPI.dll |
USER32.dll |
VERSION.dll |
PID | CMD | Path | Indicators | Parent process | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
2660 | "C:\Users\admin\AppData\Local\Temp\《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe" | C:\Users\admin\AppData\Local\Temp\《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | — | explorer.exe | |||||||||||
User: admin Integrity Level: MEDIUM Exit code: 3221226540 Modules
| |||||||||||||||
1756 | "C:\Users\admin\AppData\Local\Temp\《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe" | C:\Users\admin\AppData\Local\Temp\《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | explorer.exe | ||||||||||||
User: admin Integrity Level: HIGH Modules
| |||||||||||||||
2004 | "C:\Users\admin\AppData\Local\Temp\LDSGameMasterInstRoad_213701.exe" | C:\Users\admin\AppData\Local\Temp\LDSGameMasterInstRoad_213701.exe | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | ||||||||||||
User: admin Integrity Level: HIGH Description: 手机模拟大师 Exit code: 0 Version: 5, 2, 0, 1030 Modules
| |||||||||||||||
3952 | "C:\Users\admin\AppData\Local\Temp\ldsgamemaster.exe" /PID="213701" /S /FROM=inst | C:\Users\admin\AppData\Local\Temp\ldsgamemaster.exe | LDSGameMasterInstRoad_213701.exe | ||||||||||||
User: admin Integrity Level: HIGH Description: 手机模拟大师 Exit code: 3221225547 Version: 5.1.2052.2115 Modules
| |||||||||||||||
1316 | "C:\LDSGameMaster\SoftMgr\SoftMgrInst.exe" --hwnd=196954 --from=LDSGameMaster --new=true --log | C:\LDSGameMaster\SoftMgr\SoftMgrInst.exe | ldsgamemaster.exe | ||||||||||||
User: admin Integrity Level: HIGH Description: SoftMgrInst Module Exit code: 0 Version: 1, 0, 0, 1070 Modules
| |||||||||||||||
3356 | C:\Users\admin\AppData\Local\Temp\《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe {commondesktop}\ÊÖ»úÄ£Äâ´óʦ.lnk,{userdesktop}\ÊÖ»úÄ£Äâ´óʦ.lnk | C:\Users\admin\AppData\Local\Temp\《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | — | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | |||||||||||
User: admin Integrity Level: HIGH Exit code: 0 Modules
| |||||||||||||||
1904 | "C:\Windows\explorer.exe" | C:\Windows\explorer.exe | — | explorer.exe | |||||||||||
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Windows Explorer Exit code: 1 Version: 6.1.7600.16385 (win7_rtm.090713-1255) Modules
| |||||||||||||||
3896 | C:\LDSGameMaster\Utils\GameMasterHelper.exe | C:\LDSGameMaster\Utils\GameMasterHelper.exe | ldsgamemaster.exe | ||||||||||||
User: admin Integrity Level: HIGH Version: 6.0.0.1001 Modules
| |||||||||||||||
516 | "C:\Windows\System32\RegSvr32.exe" /s /i "C:\LDSGameMaster\GameMemoryOpt.dll" | C:\Windows\System32\RegSvr32.exe | — | ldsgamemaster.exe | |||||||||||
User: admin Company: Microsoft Corporation Integrity Level: HIGH Description: Microsoft(C) Register Server Exit code: 4 Version: 6.1.7600.16385 (win7_rtm.090713-1255) Modules
| |||||||||||||||
2384 | "C:\Windows\System32\RegSvr32.exe" /s /i "C:\LDSGameMaster\Plugin\ShellExt_x86.dll" | C:\Windows\System32\RegSvr32.exe | — | ldsgamemaster.exe | |||||||||||
User: admin Company: Microsoft Corporation Integrity Level: HIGH Description: Microsoft(C) Register Server Exit code: 0 Version: 6.1.7600.16385 (win7_rtm.090713-1255) Modules
|
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASAPI32 |
Operation: | write | Name: | EnableFileTracing |
Value: 0 | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASAPI32 |
Operation: | write | Name: | EnableConsoleTracing |
Value: 0 | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASAPI32 |
Operation: | write | Name: | FileTracingMask |
Value: 4294901760 | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASAPI32 |
Operation: | write | Name: | ConsoleTracingMask |
Value: 4294901760 | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASAPI32 |
Operation: | write | Name: | MaxFileSize |
Value: 1048576 | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASAPI32 |
Operation: | write | Name: | FileDirectory |
Value: %windir%\tracing | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASMANCS |
Operation: | write | Name: | EnableFileTracing |
Value: 0 | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASMANCS |
Operation: | write | Name: | EnableConsoleTracing |
Value: 0 | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASMANCS |
Operation: | write | Name: | FileTracingMask |
Value: 4294901760 | |||
(PID) Process: | (1756) 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | Key: | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\«????»????????????v3_RASMANCS |
Operation: | write | Name: | ConsoleTracingMask |
Value: 4294901760 |
PID | Process | Filename | Type | |
---|---|---|---|---|
864 | svchost.exe | C:\Windows\appcompat\programs\RecentFileCache.bcf | txt | |
MD5:74DC25C12CA59FB0F9AF8FC1CA3A1318 | SHA256:3FCC863F670408EA1D3D7A80421994FF39F92FBC25FF1586523ECB2B4DE05206 | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JGRR2OYX\248[1].png | image | |
MD5:73166BE9A956583B94F78148A98EA708 | SHA256:24D085D9A54020F929015A1A7EF3D2E7C4345E813CCC7BC8708A97B93CE59937 | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0488CJO\136[1].png | image | |
MD5:55B93011368E255A671217D5FB3CE4A6 | SHA256:2AB0A11E06D0B55D75276D65EEC70190236319BFE8502276B16642D9E1D7B265 | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JGRR2OYX\239[1].png | image | |
MD5:29FCE83812C4387470E544EF90F95BE3 | SHA256:3908ABF21F8F51B5B4CA6F307857A739E6ADFFC228755B775BCD67722CF0FA3A | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LH043OAM\123bu[1].png | image | |
MD5:ACBF56366AD549305DCBB49A87CE12A3 | SHA256:F17D35BEFFC1B9827ADC9C403AAF3CC009E8E9AE6E074E4531F28EB2BB77F874 | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Temp\136.png | image | |
MD5:55B93011368E255A671217D5FB3CE4A6 | SHA256:2AB0A11E06D0B55D75276D65EEC70190236319BFE8502276B16642D9E1D7B265 | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Temp\239.png | image | |
MD5:29FCE83812C4387470E544EF90F95BE3 | SHA256:3908ABF21F8F51B5B4CA6F307857A739E6ADFFC228755B775BCD67722CF0FA3A | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LH043OAM\90bu[1].png | image | |
MD5:58D9C27C5A98C8B5ECC81F91F7D9FC10 | SHA256:FA82CBF85D554939AF580376F4DAD2D267D9BFBFA5472DCDFEB811E8DA275721 | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Temp\197.png | image | |
MD5:235DF1E34C13C08802EFD1C57B5E341D | SHA256:0E36D38C9EC0B7A216BB0EEB4003823229004DDC2EB7628A5962CF86BB339141 | |||
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | C:\Users\admin\AppData\Local\Temp\90bu.png | image | |
MD5:58D9C27C5A98C8B5ECC81F91F7D9FC10 | SHA256:FA82CBF85D554939AF580376F4DAD2D267D9BFBFA5472DCDFEB811E8DA275721 |
PID | Process | Method | HTTP Code | IP | URL | CN | Type | Size | Reputation |
---|---|---|---|---|---|---|---|---|---|
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/243.png | CN | image | 805 b | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/123bu.png | CN | image | 1.96 Kb | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/240.png | CN | image | 1.14 Kb | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/197.png | CN | image | 2.25 Kb | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/248.png | CN | image | 2.48 Kb | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/247bu.png | CN | image | 1.54 Kb | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 104.26.10.70:80 | http://myip.ipip.net/ | US | text | 56 b | suspicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/235bu.png | CN | image | 1.94 Kb | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/136.png | CN | image | 1.61 Kb | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | GET | 200 | 1.31.173.91:80 | http://dl.ttp1.cn/tubiao/90bu.png | CN | image | 2.45 Kb | malicious |
PID | Process | IP | Domain | ASN | CN | Reputation |
---|---|---|---|---|---|---|
2004 | LDSGameMasterInstRoad_213701.exe | 104.192.108.21:80 | dl.ludashi.com | Beijing Qihu Technology Company Limited | US | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | 123.206.4.86:80 | time.bskrt.com | Shenzhen Tencent Computer Systems Company Limited | CN | malicious |
2004 | LDSGameMasterInstRoad_213701.exe | 114.115.214.33:80 | s.ludashi.com | China Unicom Beijing Province Network | CN | suspicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | 104.192.108.21:80 | dl.ludashi.com | Beijing Qihu Technology Company Limited | US | malicious |
3952 | ldsgamemaster.exe | 114.115.214.33:80 | s.ludashi.com | China Unicom Beijing Province Network | CN | suspicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | 140.143.170.124:80 | i.bskrt.com | Shenzhen Tencent Computer Systems Company Limited | CN | malicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | 1.31.173.91:80 | dl.ttp1.cn | CHINA UNICOM China169 Backbone | CN | unknown |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | 104.26.10.70:80 | myip.ipip.net | Cloudflare Inc | US | suspicious |
1756 | 《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | 211.159.170.45:80 | update1.bskrt.com | Shenzhen Tencent Computer Systems Company Limited | CN | unknown |
— | — | 185.217.117.6:20725 | — | — | GB | unknown |
Domain | IP | Reputation |
---|---|---|
update1.bskrt.com |
| unknown |
myip.ipip.net |
| suspicious |
time.bskrt.com |
| malicious |
dl.ttp1.cn |
| malicious |
i.bskrt.com |
| malicious |
xzqlog.bskrt.com |
| malicious |
bd2.pcgamepatch.com.cn |
| unknown |
dl.ludashi.com |
| whitelisted |
s.ludashi.com |
| suspicious |
www.download.windowsupdate.com |
| whitelisted |
PID | Process | Class | Message |
---|---|---|---|
— | — | A Network Trojan was detected | AV TROJAN Yantai File Infector CnC Checkin |
— | — | A Network Trojan was detected | AV TROJAN Yantai File Infector CnC Checkin |
— | — | A Network Trojan was detected | AV TROJAN Yantai File Infector CnC Checkin |
— | — | Potential Corporate Privacy Violation | ET POLICY PE EXE or DLL Windows file download HTTP |
— | — | Potential Corporate Privacy Violation | ET POLICY PE EXE or DLL Windows file download HTTP |
— | — | Generic Protocol Command Decode | ET INFO Session Traversal Utilities for NAT (STUN Binding Request obsolete rfc 3489 CHANGE-REQUEST attribute change IP flag false change port flag false) |
— | — | Generic Protocol Command Decode | ET INFO Session Traversal Utilities for NAT (STUN Binding Request obsolete rfc 3489 CHANGE-REQUEST attribute change IP flag true change port flag false) |
— | — | Generic Protocol Command Decode | ET INFO Session Traversal Utilities for NAT (STUN Binding Request obsolete rfc 3489 CHANGE-REQUEST attribute change IP flag false change port flag true) |
— | — | Generic Protocol Command Decode | ET INFO Session Traversal Utilities for NAT (STUN Binding Request obsolete rfc 3489 CHANGE-REQUEST attribute change IP flag false change port flag false) |
— | — | Generic Protocol Command Decode | ET INFO Session Traversal Utilities for NAT (STUN Binding Request obsolete rfc 3489 CHANGE-REQUEST attribute change IP flag false change port flag false) |
Process | Message |
---|---|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::GetContainer
|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::CanInPlaceActivate
|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::OnInPlaceActivate
|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::GetContainer
|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::OnInPlaceActivateEx
|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::ShowObject
|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::CanInPlaceActivate
|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::GetWindow
|
《绝地求生》西瓜透视自瞄辅助过检测版v3.1_id14@14_115258.exe | AX: CActiveXCtrl::GetWindowContext
|
LDSGameHall.exe | ==============FindEmulatorToHallBridgeWindow Error:0.
|