用户服务中心

Close

Library
My library

+ Add to library

Search
Search

Contact us
24/7 Tech support | Rules regarding submitting

Send a message

A query form

Call us

+7 (495) 789-45-86

Forum

Your tickets

New ticket

Call us

+7 (495) 789-45-86

Profile

CN

RU CN DE EN ES FR IT JP KZ UZ PL BY
Close
服务
扫描仪
Dr.Web vxCube
试用
计算机病毒事件调查
病毒知识库
知识库

技术

术语

教育培训

误区

新闻

Trojan.MulDrop9.33373

Added to the Dr.Web virus database: 2019-07-20

Virus description added:

Technical Information

To ensure autorun and distribution
Creates the following services
  • [<HKLM>\System\CurrentControlSet\Services\Start10] 'Start' = '00000002'
  • [<HKLM>\System\CurrentControlSet\Services\Start10] 'ImagePath' = '"%ProgramFiles(x86)%\Stardock\Start10\Start10Srv.exe"'
Modifies file system
Creates the following files
  • %TEMP%\auta14.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-67t7l.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-rfi5g.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-at6vv.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-njjug.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-o0kqc.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-lu1m1.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-jmkhk.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-96nho.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-mv61l.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-9ojtf.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-37s5n.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-09s19.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-iqk69.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-11615.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-4h25o.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-4ela0.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-9gt4v.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-dp73v.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-h8qk9.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-kicg3.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-stvef.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-uu66i.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-e6o08.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-q096u.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ko07i.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-de071.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-kt8hl.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-05490.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-e0h90.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-tjh7h.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-rt2iq.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-e505i.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-apvn1.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-0994i.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-q15to.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-gckgc.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-8kl4q.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-f5mva.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-94192.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-3m2k0.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-gmmdt.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-v52vn.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-7tpa3.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-j66k4.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-0f5li.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-bdn91.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-jj77i.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-fvn9p.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-k4444.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-t2gkp.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-33ns8.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-6eaku.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-ahhnk.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-4ob99.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-2o1ms.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-v8b54.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-m50vg.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-07n3o.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ltqq7.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-t0ugq.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-15f10.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-abve4.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-t0et1.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-sjmih.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-oob6v.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-mej02.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-kqoj9.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-st63r.tmp
  • C:\users\public\documents\stardock\start10\round7\is-dnf29.tmp
  • C:\users\public\documents\stardock\start10\round7\is-3didl.tmp
  • C:\users\public\documents\stardock\start10\round7\is-p7bnl.tmp
  • C:\users\public\documents\stardock\start10\round7\is-2psvv.tmp
  • C:\users\public\documents\stardock\start10\round7\is-ecooq.tmp
  • C:\users\public\documents\stardock\start10\round7\is-rh71a.tmp
  • C:\users\public\documents\stardock\start10\round7\is-gq790.tmp
  • C:\users\public\documents\stardock\start10\round7\is-7ad1o.tmp
  • C:\users\public\documents\stardock\start10\round7\is-f58om.tmp
  • C:\users\public\documents\stardock\start10\round7\is-p0ljk.tmp
  • C:\users\public\documents\stardock\start10\round7\is-6393i.tmp
  • C:\users\public\documents\stardock\start10\round7\is-31j1h.tmp
  • C:\users\public\documents\stardock\start10\round7\is-o5muk.tmp
  • C:\users\public\documents\stardock\start10\round7\is-paako.tmp
  • C:\users\public\documents\stardock\start10\round7\is-4rfmf.tmp
  • C:\users\public\documents\stardock\start10\round7\is-58dkb.tmp
  • C:\users\public\documents\stardock\start10\round7\is-38mm3.tmp
  • %WINDIR%\is-64fe5.tmp
  • %WINDIR%\is-jagbr.tmp
  • %APPDATA%\stardock\s10\windows.immersivecontrolpanel_cw5n1h2txyewy\is-9gasr.tmp
  • C:\users\public\documents\stardock\start10\round7\is-c5c69.tmp
  • C:\users\public\documents\stardock\start10\round7\is-prj0d.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-qqfc6.tmp
  • C:\users\public\documents\stardock\start10\round7\is-hruag.tmp
  • C:\users\public\documents\stardock\start10\round7\is-i55jt.tmp
  • C:\users\public\documents\stardock\start10\round7\is-7qmjo.tmp
  • C:\users\public\documents\stardock\start10\round7\is-9ds65.tmp
  • C:\users\public\documents\stardock\start10\round7\is-4a539.tmp
  • C:\users\public\documents\stardock\start10\round7\is-i61n5.tmp
  • C:\users\public\documents\stardock\start10\round7\is-2brrd.tmp
  • C:\users\public\documents\stardock\start10\round7\is-95293.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-1qmvg.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-nbjc4.tmp
  • C:\users\public\documents\stardock\start10\round7\is-pa43f.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-j049v.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-kmebr.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-7n85b.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-n9mm4.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-a7b0c.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-80j2o.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-uffqs.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-r1dgs.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-65fh0.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-f85cv.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-f0m12.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-p31ep.tmp
  • C:\users\public\documents\stardock\start10\round7\is-9iecb.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-kc5km.tmp
  • C:\users\public\documents\stardock\start10\round7\is-cmdcs.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-p6s1l.tmp
  • C:\users\public\documents\stardock\start10\round7\is-2pas3.tmp
  • C:\users\public\documents\stardock\start10\round7\is-e8f2e.tmp
  • C:\users\public\documents\stardock\start10\round7\is-ohb2c.tmp
  • C:\users\public\documents\stardock\start10\round7\is-bo239.tmp
  • C:\users\public\documents\stardock\start10\round7\is-b6ke1.tmp
  • C:\users\public\documents\stardock\start10\round7\is-euk35.tmp
  • C:\users\public\documents\stardock\start10\round7\is-p9e8v.tmp
  • C:\users\public\documents\stardock\start10\round7\is-v24ja.tmp
  • C:\users\public\documents\stardock\start10\round7\is-avt98.tmp
  • C:\users\public\documents\stardock\start10\round7\is-1ae27.tmp
  • C:\users\public\documents\stardock\start10\round7\is-aukn7.tmp
  • C:\users\public\documents\stardock\start10\round7\is-c1rpi.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-i8g79.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-k897l.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-i9ium.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-pjqbh.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-cpblc.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-0cfu6.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-ck92b.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-3okol.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-f8h4d.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-1ugce.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-g2bmq.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-fdnlu.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-aic9t.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-v4n6t.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-n98m9.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-3ieqa.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-srv2p.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-ghgic.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-m8gqh.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-gr4ih.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-49kgk.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-7d2ll.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-l2b19.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-dpofa.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-mg51o.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-sqqr4.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-ar2ca.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-9ckte.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-oppra.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-bm3pu.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-lpk1b.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-jf5dk.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-qu5f8.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-h5rcm.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-jota4.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-jatiq.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-am66h.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-bsp1h.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-85839.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-51se2.tmp
  • %TEMP%\is-dosgm.tmp\~dfgpatv.tmp
  • %TEMP%\is-6eeof.tmp\_isetup\_setup64.tmp
  • %TEMP%\is-6eeof.tmp\vclstylesinno.dll
  • %TEMP%\is-6eeof.tmp\windows10dark.vsf
  • %TEMP%\is-6eeof.tmp\logo.bmp
  • %ProgramFiles(x86)%\stardock\start10\is-8meop.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-25msi.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-n0fqn.tmp
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\is-q269r.tmp
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\is-5lvel.tmp
  • %ProgramFiles(x86)%\stardock\is-3ih4t.tmp
  • %ProgramFiles(x86)%\stardock\is-27lbf.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-0gd0j.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-jjo35.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-tfkhb.tmp
  • %CommonProgramFiles(x86)%\~dfgpatv.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-di60g.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-091e0.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-nfc7l.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-7hin7.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-o0dha.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-lhvgv.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-ujt1i.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-gaafn.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-7tmuo.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-evbj5.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-qsa7f.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-bb0k9.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-upaoi.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-k83k1.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-bjoff.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-hmn44.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-chom5.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-slhe9.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-6nml0.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-j5uef.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-30ec0.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-lbin0.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-13o25.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-jr8v5.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-onkag.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-a976e.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-gvg2e.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-ruovi.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-43s7g.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-k75uf.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-05iqn.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-274iq.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-3cjrc.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-5vttj.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-0u7vd.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-8btuf.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-cko82.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-sd1v9.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-gipnk.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-vos6g.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-k3ar4.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-k67li.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-jp1pu.tmp
  • %ProgramFiles(x86)%\stardock\start10\grouppolicy\is-rkuh6.tmp
  • %ProgramFiles(x86)%\stardock\start10\grouppolicy\en-us\is-3uobm.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-6lkfd.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-sp2md.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-2f34p.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-0go7r.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-k8ln8.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-6vqni.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-6q9kf.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-v9kpa.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-piod2.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-p90i1.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-1dvm5.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-g6j2u.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-c0is6.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-sujol.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-j79u5.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-7epdv.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-tsi28.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-8od20.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-2or40.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-lgcu4.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-697i1.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-r8jb7.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-0dsbt.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-6jn56.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-cdqsd.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-ggbr5.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-lv2i9.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-po5o1.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-utlg4.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-34bgr.tmp
  • C:\users\public\documents\stardock\start10\round7\is-chf1v.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-ve5tm.tmp
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\start10.lnk
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-d5meu.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-nsu33.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-krfi4.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-3q7gj.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-dda95.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-0m1ru.tmp
  • %ProgramFiles(x86)%\stardock\start10\unins000.dat
Sets the 'hidden' attribute to the following files
  • %CommonProgramFiles(x86)%\~dfgpatv.tmp
  • %ProgramFiles(x86)%\stardock\start10\desktop.ini
  • %ProgramFiles(x86)%\stardock\start10\start10.ico
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\desktop.ini
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\stardock.ico
  • %ProgramFiles(x86)%\stardock\desktop.ini
  • %ProgramFiles(x86)%\stardock\stardock.ico
Deletes the following files
  • %TEMP%\auta14.tmp
  • %TEMP%\is-6eeof.tmp\logo.bmp
  • %TEMP%\is-6eeof.tmp\vclstylesinno.dll
  • %TEMP%\is-6eeof.tmp\windows10dark.vsf
  • %TEMP%\is-6eeof.tmp\_isetup\_setup64.tmp
  • %TEMP%\is-dosgm.tmp\~dfgpatv.tmp
  • %CommonProgramFiles(x86)%\~dfgpatv.tmp
Moves the following files
  • from %ProgramFiles(x86)%\stardock\start10\is-8meop.tmp to %ProgramFiles(x86)%\stardock\start10\unins000.exe
  • from C:\users\public\documents\stardock\start10\shadow\is-67t7l.tmp to C:\users\public\documents\stardock\start10\shadow\search_cancel_hover.png
  • from C:\users\public\documents\stardock\start10\shadow\is-rfi5g.tmp to C:\users\public\documents\stardock\start10\shadow\search_cancel_normal.png
  • from C:\users\public\documents\stardock\start10\shadow\is-at6vv.tmp to C:\users\public\documents\stardock\start10\shadow\search_cancel_pressed.png
  • from C:\users\public\documents\stardock\start10\shadow\is-njjug.tmp to C:\users\public\documents\stardock\start10\shadow\search_icon.png
  • from C:\users\public\documents\stardock\start10\shadow\is-o0kqc.tmp to C:\users\public\documents\stardock\start10\shadow\search_top.png
  • from C:\users\public\documents\stardock\start10\shadow\is-lu1m1.tmp to C:\users\public\documents\stardock\start10\shadow\search_top_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-jmkhk.tmp to C:\users\public\documents\stardock\start10\shadow\selection_all_programs.png
  • from C:\users\public\documents\stardock\start10\shadow\is-96nho.tmp to C:\users\public\documents\stardock\start10\shadow\selection_all_progs.png
  • from C:\users\public\documents\stardock\start10\shadow\is-mv61l.tmp to C:\users\public\documents\stardock\start10\shadow\selection_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-9ojtf.tmp to C:\users\public\documents\stardock\start10\shadow\selection_left_split_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-37s5n.tmp to C:\users\public\documents\stardock\start10\shadow\selection_left_split_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-09s19.tmp to C:\users\public\documents\stardock\start10\shadow\selection_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-iqk69.tmp to C:\users\public\documents\stardock\start10\shadow\selection_right_exapnded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-tjh7h.tmp to C:\users\public\documents\stardock\start10\shadow\selection_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-apvn1.tmp to C:\users\public\documents\stardock\start10\shadow\separator_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-rt2iq.tmp to C:\users\public\documents\stardock\start10\shadow\separator_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-9gt4v.tmp to C:\users\public\documents\stardock\start10\shadow\shadow.start8theme
  • from C:\users\public\documents\stardock\start10\shadow\is-dp73v.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-h8qk9.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_left_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-kicg3.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-stvef.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-uu66i.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_right_glyph.png
  • from C:\users\public\documents\stardock\start10\shadow\is-e6o08.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_right_glyph_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-q096u.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ko07i.tmp to C:\users\public\documents\stardock\start10\shadow\sp_all_progs.png
  • from C:\users\public\documents\stardock\start10\shadow\is-de071.tmp to C:\users\public\documents\stardock\start10\shadow\sp_all_progs_arrow.png
  • from C:\users\public\documents\stardock\start10\shadow\is-kt8hl.tmp to C:\users\public\documents\stardock\start10\shadow\sp_all_progs_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-05490.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-e0h90.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_left_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-4h25o.tmp to C:\users\public\documents\stardock\start10\shadow\search_box.png
  • from C:\users\public\documents\stardock\start10\shadow\is-11615.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-4ela0.tmp to C:\users\public\documents\stardock\start10\shadow\search_bottom_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-t2gkp.tmp to C:\users\public\documents\stardock\start10\shadow\icon_search.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-gckgc.tmp to %ProgramFiles(x86)%\stardock\start10\lang\fr.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-8kl4q.tmp to %ProgramFiles(x86)%\stardock\start10\lang\he.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-f5mva.tmp to %ProgramFiles(x86)%\stardock\start10\lang\hu.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-94192.tmp to %ProgramFiles(x86)%\stardock\start10\lang\hy.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-3m2k0.tmp to %ProgramFiles(x86)%\stardock\start10\lang\id.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-gmmdt.tmp to %ProgramFiles(x86)%\stardock\start10\lang\it.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-v52vn.tmp to %ProgramFiles(x86)%\stardock\start10\lang\ja.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-7tpa3.tmp to %ProgramFiles(x86)%\stardock\start10\lang\ko.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-j66k4.tmp to %ProgramFiles(x86)%\stardock\start10\lang\lt.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-0f5li.tmp to %ProgramFiles(x86)%\stardock\start10\lang\nl.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-bdn91.tmp to %ProgramFiles(x86)%\stardock\start10\lang\pl.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-jj77i.tmp to %ProgramFiles(x86)%\stardock\start10\lang\pt-br.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-sjmih.tmp to %ProgramFiles(x86)%\stardock\start10\lang\ru.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-0994i.tmp to %ProgramFiles(x86)%\stardock\start10\lang\sv.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-oob6v.tmp to %ProgramFiles(x86)%\stardock\start10\lang\tr.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-33ns8.tmp to %ProgramFiles(x86)%\stardock\start10\lang\tw.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-6eaku.tmp to %ProgramFiles(x86)%\stardock\start10\lang\zh-tw.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-ahhnk.tmp to %ProgramFiles(x86)%\stardock\start10\lang\zh.lng
  • from C:\users\public\documents\stardock\start10\shadow\is-4ob99.tmp to C:\users\public\documents\stardock\start10\shadow\all_programs.png
  • from C:\users\public\documents\stardock\start10\shadow\is-2o1ms.tmp to C:\users\public\documents\stardock\start10\shadow\all_programs_arrow.png
  • from C:\users\public\documents\stardock\start10\shadow\is-v8b54.tmp to C:\users\public\documents\stardock\start10\shadow\all_programs_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-m50vg.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-07n3o.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_left_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ltqq7.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-t0ugq.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_right_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-15f10.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_right_layer_01_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-abve4.tmp to C:\users\public\documents\stardock\start10\shadow\icon_cancel_hover.png
  • from C:\users\public\documents\stardock\start10\shadow\is-t0et1.tmp to C:\users\public\documents\stardock\start10\shadow\icon_cancel_normal.png
  • from C:\users\public\documents\stardock\start10\shadow\is-fvn9p.tmp to C:\users\public\documents\stardock\start10\shadow\icon_cancel_pressed.png
  • from C:\users\public\documents\stardock\start10\shadow\is-k4444.tmp to C:\users\public\documents\stardock\start10\shadow\search_bottom.png
  • from C:\users\public\documents\stardock\start10\round7\is-pa43f.tmp to C:\users\public\documents\stardock\start10\round7\mprogs.png
  • from %WINDIR%\is-jagbr.tmp to %WINDIR%\womtrust.dll
  • from C:\users\public\documents\stardock\start10\shadow\is-1qmvg.tmp to C:\users\public\documents\stardock\start10\shadow\sp_search_bottom.png
  • from C:\users\public\documents\stardock\start10\round7\is-paako.tmp to C:\users\public\documents\stardock\start10\round7\paddleft.png
  • from C:\users\public\documents\stardock\start10\round7\is-4rfmf.tmp to C:\users\public\documents\stardock\start10\round7\paddleftover.png
  • from C:\users\public\documents\stardock\start10\round7\is-dnf29.tmp to C:\users\public\documents\stardock\start10\round7\paddmiddle.png
  • from C:\users\public\documents\stardock\start10\round7\is-3didl.tmp to C:\users\public\documents\stardock\start10\round7\paddmiddleover.png
  • from C:\users\public\documents\stardock\start10\round7\is-p7bnl.tmp to C:\users\public\documents\stardock\start10\round7\paddright.png
  • from C:\users\public\documents\stardock\start10\round7\is-2psvv.tmp to C:\users\public\documents\stardock\start10\round7\paddrightover.png
  • from C:\users\public\documents\stardock\start10\round7\is-ecooq.tmp to C:\users\public\documents\stardock\start10\round7\rightsept.png
  • from C:\users\public\documents\stardock\start10\round7\is-rh71a.tmp to C:\users\public\documents\stardock\start10\round7\round7.start8theme
  • from C:\users\public\documents\stardock\start10\round7\is-gq790.tmp to C:\users\public\documents\stardock\start10\round7\search.png
  • from C:\users\public\documents\stardock\start10\round7\is-7ad1o.tmp to C:\users\public\documents\stardock\start10\round7\searchfield.png
  • from C:\users\public\documents\stardock\start10\round7\is-f58om.tmp to C:\users\public\documents\stardock\start10\round7\searchover.png
  • from C:\users\public\documents\stardock\start10\round7\is-p0ljk.tmp to C:\users\public\documents\stardock\start10\round7\selection_all_programs.png
  • from C:\users\public\documents\stardock\start10\round7\is-6393i.tmp to C:\users\public\documents\stardock\start10\round7\selection_left.png
  • from C:\users\public\documents\stardock\start10\round7\is-31j1h.tmp to C:\users\public\documents\stardock\start10\round7\selection_left_split_left.png
  • from C:\users\public\documents\stardock\start10\round7\is-o5muk.tmp to C:\users\public\documents\stardock\start10\round7\selection_left_split_right.png
  • from C:\users\public\documents\stardock\start10\round7\is-58dkb.tmp to C:\users\public\documents\stardock\start10\round7\selection_right.png
  • from C:\users\public\documents\stardock\start10\round7\is-38mm3.tmp to C:\users\public\documents\stardock\start10\round7\shutdown_button_left.png
  • from C:\users\public\documents\stardock\start10\round7\is-95293.tmp to C:\users\public\documents\stardock\start10\round7\shutdown_button_right.png
  • from C:\users\public\documents\stardock\start10\round7\is-2brrd.tmp to C:\users\public\documents\stardock\start10\round7\topinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-i61n5.tmp to C:\users\public\documents\stardock\start10\round7\topinner2.png
  • from C:\users\public\documents\stardock\start10\round7\is-4a539.tmp to C:\users\public\documents\stardock\start10\round7\topleft.png
  • from C:\users\public\documents\stardock\start10\round7\is-9ds65.tmp to C:\users\public\documents\stardock\start10\round7\topleftinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-7qmjo.tmp to C:\users\public\documents\stardock\start10\round7\topleftover.png
  • from C:\users\public\documents\stardock\start10\round7\is-i55jt.tmp to C:\users\public\documents\stardock\start10\round7\topright.png
  • from C:\users\public\documents\stardock\start10\round7\is-chf1v.tmp to C:\users\public\documents\stardock\start10\round7\toprightexpandedinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-hruag.tmp to C:\users\public\documents\stardock\start10\round7\toprightinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-prj0d.tmp to C:\users\public\documents\stardock\start10\round7\toprightover.png
  • from C:\users\public\documents\stardock\start10\round7\is-c5c69.tmp to C:\users\public\documents\stardock\start10\round7\user_picture.png
  • from %APPDATA%\stardock\s10\windows.immersivecontrolpanel_cw5n1h2txyewy\is-9gasr.tmp to %APPDATA%\stardock\s10\windows.immersivecontrolpanel_cw5n1h2txyewy\microsoft.windows.immersivecontrolpanel.lnk
  • from C:\users\public\documents\stardock\start10\round7\is-cmdcs.tmp to C:\users\public\documents\stardock\start10\round7\newtopleftinnerexpanded.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-q15to.tmp to %ProgramFiles(x86)%\stardock\start10\lang\fi.lng
  • from C:\users\public\documents\stardock\start10\round7\is-9iecb.tmp to C:\users\public\documents\stardock\start10\round7\newtopleftinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-c1rpi.tmp to C:\users\public\documents\stardock\start10\round7\moreprogsinner.png
  • from C:\users\public\documents\stardock\start10\shadow\is-kc5km.tmp to C:\users\public\documents\stardock\start10\shadow\sp_search_bottom_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-st63r.tmp to C:\users\public\documents\stardock\start10\shadow\sp_search_top.png
  • from C:\users\public\documents\stardock\start10\shadow\is-j049v.tmp to C:\users\public\documents\stardock\start10\shadow\sp_search_top_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-kmebr.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-7n85b.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_left_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-n9mm4.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-a7b0c.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_right_.png
  • from C:\users\public\documents\stardock\start10\shadow\is-80j2o.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-uffqs.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_right_expanded_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-r1dgs.tmp to C:\users\public\documents\stardock\start10\shadow\sp_user_picture_frame.png
  • from C:\users\public\documents\stardock\start10\shadow\is-65fh0.tmp to C:\users\public\documents\stardock\start10\shadow\sp_user_picture_frame_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-f85cv.tmp to C:\users\public\documents\stardock\start10\shadow\top_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-f0m12.tmp to C:\users\public\documents\stardock\start10\shadow\top_left_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-p31ep.tmp to C:\users\public\documents\stardock\start10\shadow\top_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-p6s1l.tmp to C:\users\public\documents\stardock\start10\shadow\top_right_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-i8g79.tmp to C:\users\public\documents\stardock\start10\shadow\top_right_layer_01_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-k897l.tmp to C:\users\public\documents\stardock\start10\shadow\user_picture.png
  • from C:\users\public\documents\stardock\start10\shadow\is-i9ium.tmp to C:\users\public\documents\stardock\start10\shadow\user_picture_layer_01.png
  • from C:\users\public\documents\stardock\start10\round7\is-2pas3.tmp to C:\users\public\documents\stardock\start10\round7\bottomleft.png
  • from C:\users\public\documents\stardock\start10\round7\is-e8f2e.tmp to C:\users\public\documents\stardock\start10\round7\bottomleftinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-ohb2c.tmp to C:\users\public\documents\stardock\start10\round7\bottomleftinnerexpanded.png
  • from C:\users\public\documents\stardock\start10\round7\is-bo239.tmp to C:\users\public\documents\stardock\start10\round7\bottomleftover.png
  • from C:\users\public\documents\stardock\start10\round7\is-b6ke1.tmp to C:\users\public\documents\stardock\start10\round7\bottomright.png
  • from C:\users\public\documents\stardock\start10\round7\is-euk35.tmp to C:\users\public\documents\stardock\start10\round7\bottomrightexpandedinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-p9e8v.tmp to C:\users\public\documents\stardock\start10\round7\bottomrightinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-v24ja.tmp to C:\users\public\documents\stardock\start10\round7\bottomrightover.png
  • from C:\users\public\documents\stardock\start10\round7\is-avt98.tmp to C:\users\public\documents\stardock\start10\round7\grad1.png
  • from C:\users\public\documents\stardock\start10\round7\is-1ae27.tmp to C:\users\public\documents\stardock\start10\round7\leftsept.png
  • from C:\users\public\documents\stardock\start10\round7\is-aukn7.tmp to C:\users\public\documents\stardock\start10\round7\midinner2.png
  • from C:\users\public\documents\stardock\start10\shadow\is-kqoj9.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-nbjc4.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_right_expanded_l1.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-mej02.tmp to %ProgramFiles(x86)%\stardock\start10\lang\es.lng
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-p90i1.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start19.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-fdnlu.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\jeans_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-aic9t.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\large angle stripes_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-v4n6t.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\leather_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-n98m9.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\marble_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-3ieqa.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\metal 2_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-srv2p.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\metal grid_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-ghgic.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\metallic_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-m8gqh.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\metal_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-am66h.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\old wood_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-jatiq.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\rock_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-bsp1h.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\rusty metal grid_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-l2b19.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\small angle stripes_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-dpofa.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\wood_x1.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-mg51o.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\default.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-sqqr4.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start2.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-ar2ca.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start3.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-9ckte.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start4.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-oppra.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start5.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-bm3pu.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start6.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-lpk1b.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start7.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-jf5dk.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start8.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-qu5f8.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start9.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-h5rcm.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start10.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-jota4.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start11.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-49kgk.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start12.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-tfkhb.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start13.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-chom5.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start14.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-6q9kf.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start15.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-r8jb7.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start16.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-g2bmq.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\flame grid 04.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-v9kpa.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start17.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-1ugce.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\flame grid 01.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-3okol.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\dark wood_x1.png
  • from %ProgramFiles(x86)%\stardock\start10\is-25msi.tmp to %ProgramFiles(x86)%\stardock\start10\desktop.ini
  • from %ProgramFiles(x86)%\stardock\start10\is-n0fqn.tmp to %ProgramFiles(x86)%\stardock\start10\start10.ico
  • from %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\is-q269r.tmp to %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\desktop.ini
  • from %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\is-5lvel.tmp to %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\stardock.ico
  • from %ProgramFiles(x86)%\stardock\is-3ih4t.tmp to %ProgramFiles(x86)%\stardock\desktop.ini
  • from %ProgramFiles(x86)%\stardock\is-27lbf.tmp to %ProgramFiles(x86)%\stardock\stardock.ico
  • from %ProgramFiles(x86)%\stardock\start10\links\is-0gd0j.tmp to %ProgramFiles(x86)%\stardock\start10\links\1.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-bjoff.tmp to %ProgramFiles(x86)%\stardock\start10\links\10.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-k83k1.tmp to %ProgramFiles(x86)%\stardock\start10\links\11.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-51se2.tmp to %ProgramFiles(x86)%\stardock\start10\links\2.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-di60g.tmp to %ProgramFiles(x86)%\stardock\start10\links\20.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-091e0.tmp to %ProgramFiles(x86)%\stardock\start10\links\21.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-nfc7l.tmp to %ProgramFiles(x86)%\stardock\start10\links\22.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-7hin7.tmp to %ProgramFiles(x86)%\stardock\start10\links\23.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-o0dha.tmp to %ProgramFiles(x86)%\stardock\start10\links\24.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-lhvgv.tmp to %ProgramFiles(x86)%\stardock\start10\links\25.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-ujt1i.tmp to %ProgramFiles(x86)%\stardock\start10\links\26.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-gaafn.tmp to %ProgramFiles(x86)%\stardock\start10\links\3.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-7tmuo.tmp to %ProgramFiles(x86)%\stardock\start10\links\30.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-evbj5.tmp to %ProgramFiles(x86)%\stardock\start10\links\31.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-qsa7f.tmp to %ProgramFiles(x86)%\stardock\start10\links\4.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-bb0k9.tmp to %ProgramFiles(x86)%\stardock\start10\links\5.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-upaoi.tmp to %ProgramFiles(x86)%\stardock\start10\links\6.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-85839.tmp to %ProgramFiles(x86)%\stardock\start10\links\7.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-jjo35.tmp to %ProgramFiles(x86)%\stardock\start10\links\8.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-7d2ll.tmp to %ProgramFiles(x86)%\stardock\start10\links\9.lnk
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-gr4ih.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\abstract one.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-hmn44.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\carbon fibre_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-ck92b.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\corroded_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-f8h4d.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\fabric_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-slhe9.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 02.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-pjqbh.tmp to %ProgramFiles(x86)%\stardock\start10\lang\en-us.lng
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-1dvm5.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start20.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-j5uef.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 04 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-30ec0.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 04.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-lbin0.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 05 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-13o25.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 05.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-jr8v5.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\wood_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\is-onkag.tmp to %ProgramFiles(x86)%\stardock\start10\deelevate64.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-a976e.tmp to %ProgramFiles(x86)%\stardock\start10\deelevator64.dll
  • from %ProgramFiles(x86)%\stardock\start10\is-gvg2e.tmp to %ProgramFiles(x86)%\stardock\start10\default.spak
  • from %ProgramFiles(x86)%\stardock\start10\is-ruovi.tmp to %ProgramFiles(x86)%\stardock\start10\defs.ini
  • from %ProgramFiles(x86)%\stardock\start10\is-43s7g.tmp to %ProgramFiles(x86)%\stardock\start10\defs2.ini
  • from %ProgramFiles(x86)%\stardock\start10\is-k75uf.tmp to %ProgramFiles(x86)%\stardock\start10\extracts8theme.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-5vttj.tmp to %ProgramFiles(x86)%\stardock\start10\immersive control panel.lnk
  • from %ProgramFiles(x86)%\stardock\start10\is-sp2md.tmp to %ProgramFiles(x86)%\stardock\start10\launch.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-2f34p.tmp to %ProgramFiles(x86)%\stardock\start10\sdappservices.dll
  • from %ProgramFiles(x86)%\stardock\start10\is-0go7r.tmp to %ProgramFiles(x86)%\stardock\start10\start10.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-0u7vd.tmp to %ProgramFiles(x86)%\stardock\start10\start10_64.dll
  • from %ProgramFiles(x86)%\stardock\start10\is-8btuf.tmp to %ProgramFiles(x86)%\stardock\start10\start10_64.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-cko82.tmp to %ProgramFiles(x86)%\stardock\start10\start10config.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-sd1v9.tmp to %ProgramFiles(x86)%\stardock\start10\start10shell64.dll
  • from %ProgramFiles(x86)%\stardock\start10\is-gipnk.tmp to %ProgramFiles(x86)%\stardock\start10\start10srv.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-vos6g.tmp to %ProgramFiles(x86)%\stardock\start10\start10themeedit.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-k3ar4.tmp to %ProgramFiles(x86)%\stardock\start10\start10tweak.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-k67li.tmp to %ProgramFiles(x86)%\stardock\start10\themehelp.txt
  • from %ProgramFiles(x86)%\stardock\start10\is-jp1pu.tmp to %ProgramFiles(x86)%\stardock\start10\zip.exe
  • from %ProgramFiles(x86)%\stardock\start10\grouppolicy\is-rkuh6.tmp to %ProgramFiles(x86)%\stardock\start10\grouppolicy\start8_gp.admx
  • from %ProgramFiles(x86)%\stardock\start10\grouppolicy\en-us\is-3uobm.tmp to %ProgramFiles(x86)%\stardock\start10\grouppolicy\en-us\start8_gp.adml
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-6lkfd.tmp to %ProgramFiles(x86)%\stardock\start10\lang\ar.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-0cfu6.tmp to %ProgramFiles(x86)%\stardock\start10\lang\cs.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-cpblc.tmp to %ProgramFiles(x86)%\stardock\start10\lang\de.lng
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-6nml0.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 03.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-e505i.tmp to %ProgramFiles(x86)%\stardock\start10\lang\en.lng
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-3cjrc.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 03 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-05iqn.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 02 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-g6j2u.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start21.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-c0is6.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start22.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-sujol.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start23.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-j79u5.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start24.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-7epdv.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start25.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-tsi28.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\carbon fibre_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-8od20.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\corroded_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-2or40.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\dark wood_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-lgcu4.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\fabric_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-697i1.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\grunge stone 01_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-0dsbt.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\grunge stone 02_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-cdqsd.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\horz gradient two_x1.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-ggbr5.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\horz gradient_x1.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-lv2i9.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\jeans_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-po5o1.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\large angle stripes_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-utlg4.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\leather_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-34bgr.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\marble_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-ve5tm.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\metal 2_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-qqfc6.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\metal grid_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-0m1ru.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\metallic_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-d5meu.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\metal_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-nsu33.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\old wood_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-krfi4.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\rock_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-3q7gj.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\rusty metal grid_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-dda95.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\rust_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-6jn56.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\sand_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-6vqni.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\small angle stripes_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-274iq.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 01 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-k8ln8.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 01.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-piod2.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start18.png
  • from %WINDIR%\is-64fe5.tmp to %WINDIR%\wontrust.dll
Miscellaneous
Searches for the following windows
  • ClassName: 'START8' WindowName: ''
Creates and executes the following
  • '%CommonProgramFiles(x86)%\~dfgpatv.tmp' /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /SP-
  • '%TEMP%\is-dosgm.tmp\~dfgpatv.tmp' /SL5="$8021E,22328208,210432,%CommonProgramFiles(x86)%\~dfgpatv.tmp" /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /SP-
  • '%ProgramFiles(x86)%\stardock\start10\start10srv.exe' -install
  • '%ProgramFiles(x86)%\stardock\start10\start10srv.exe'
  • '%ProgramFiles(x86)%\stardock\start10\start10_64.exe'
  • '%ProgramFiles(x86)%\stardock\start10\start10.exe' START
  • '%ProgramFiles(x86)%\stardock\start10\start10_64.exe' START
  • '%ProgramFiles(x86)%\stardock\start10\start10srv.exe' -install' (with hidden window)
  • '%ProgramFiles(x86)%\stardock\start10\start10.exe' START' (with hidden window)

Curing recommendations

  1. If the operating system (OS) can be loaded (either normally or in safe mode), download Dr.Web Security Space and run a full scan of your computer and removable media you use. More about Dr.Web Security Space.
  2. If you cannot boot the OS, change the BIOS settings to boot your system from a CD or USB drive. Download the image of the emergency system repair disk Dr.Web® LiveDisk , mount it on a USB drive or burn it to a CD/DVD. After booting up with this media, run a full scan and cure all the detected threats.
Free trial

 

Download Dr.Web

Download by serial number

Use Dr.Web Anti-virus for macOS to run a full scan of your Mac.

Free trial

 

Download Dr.Web

Download by serial number

Download on App Store

After booting up, run a full scan of all disk partitions with Dr.Web Anti-virus for Linux.

Free trial

 

Download Dr.Web

Download by serial number

  1. If the mobile device is operating normally, download and install Dr.Web for Android. Run a full system scan and follow recommendations to neutralize the detected threats.
  2. If the mobile device has been locked by Android.Locker ransomware (the message on the screen tells you that you have broken some law or demands a set ransom amount; or you will see some other announcement that prevents you from using the handheld normally), do the following:
    • Load your smartphone or tablet in the safe mode (depending on the operating system version and specifications of the particular mobile device involved, this procedure can be performed in various ways; seek clarification from the user guide that was shipped with the device, or contact its manufacturer);
    • Once you have activated safe mode, install the Dr.Web for Android onto the infected handheld and run a full scan of the system; follow the steps recommended for neutralizing the threats that have been detected;
    • Switch off your device and turn it on as normal.

Find out more about Dr.Web for Android

Free trial

14 days

Download now
Get it on Google Play
Wechat