FOR CUSTOMERS

Close

Library
My library

+ Add to library

Search
Search

Contact us
24/7 Tech support | Rules regarding submitting

Send a message

A query form

Call us

+7 (495) 789-45-86

Forum

Your tickets

New ticket

Call us

+7 (495) 789-45-86

Profile

EN

RU CN DE EN ES FR IT JP KZ UZ PL BY
Close
Support services
Scanners
Dr.Web vxCube
Trial
VCI investigations
Virus library
Knowledge base

Technologies

Terminology

Training and education

Myths

News

Trojan.Siggen9.10745

Added to the Dr.Web virus database: 2020-02-11

Virus description added:

Technical Information

To ensure autorun and distribution
Creates the following services
  • [<HKLM>\System\CurrentControlSet\Services\Start10] 'Start' = '00000002'
  • [<HKLM>\System\CurrentControlSet\Services\Start10] 'ImagePath' = '"%ProgramFiles(x86)%\Stardock\Start10\Start10Srv.exe"'
Modifies file system
Creates the following files
  • %TEMP%\autce5e.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ff17q.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-m0k7n.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-l77ig.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-t4m0o.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-a6b16.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-0ns1i.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-640qo.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-36fd0.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ebhdg.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-pe1a6.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-lalsr.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-jluad.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-vinvh.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-e6ng0.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-gi31s.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-3vv3b.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-pkvu0.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-h102n.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-31ulg.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-s2krl.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-t1u3m.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-cqnq4.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-fqphi.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-vugav.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-cegva.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ef5fa.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-9naie.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-dk52e.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ggmjl.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-kidva.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-bbb0n.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-qheek.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ctgdg.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-4p5d0.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-fomuo.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-lafiu.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-m0a55.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-ijk2f.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-at70a.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-jdkdm.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-k299t.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-4nil6.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-uee4u.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-mtv7r.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-8q2rj.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-us3om.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-9jqdc.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-992gk.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-be62s.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-9ho2k.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-7d8ed.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-nc8d9.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-8sd4r.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-us5cv.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-s09gp.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-jisc3.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-hlptt.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-dji58.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ba9h7.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-jktha.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-7j56u.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-bl5ta.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-a7l0g.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-mpe54.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-138am.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-2bt6o.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-27hsu.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-45c9n.tmp
  • C:\users\public\documents\stardock\start10\round7\is-ami6n.tmp
  • C:\users\public\documents\stardock\start10\round7\is-8o1da.tmp
  • C:\users\public\documents\stardock\start10\round7\is-r035e.tmp
  • C:\users\public\documents\stardock\start10\round7\is-3b0ic.tmp
  • C:\users\public\documents\stardock\start10\round7\is-rb2o9.tmp
  • C:\users\public\documents\stardock\start10\round7\is-381g5.tmp
  • C:\users\public\documents\stardock\start10\round7\is-ca6ap.tmp
  • C:\users\public\documents\stardock\start10\round7\is-3mu01.tmp
  • C:\users\public\documents\stardock\start10\round7\is-uopri.tmp
  • C:\users\public\documents\stardock\start10\round7\is-f68ri.tmp
  • C:\users\public\documents\stardock\start10\round7\is-cseam.tmp
  • C:\users\public\documents\stardock\start10\round7\is-p0m2i.tmp
  • C:\users\public\documents\stardock\start10\round7\is-8l2na.tmp
  • C:\users\public\documents\stardock\start10\round7\is-pj15u.tmp
  • C:\users\public\documents\stardock\start10\round7\is-mojhr.tmp
  • C:\users\public\documents\stardock\start10\round7\is-cs7h6.tmp
  • C:\users\public\documents\stardock\start10\round7\is-c03dt.tmp
  • %WINDIR%\is-bikto.tmp
  • %WINDIR%\is-tsd4l.tmp
  • %APPDATA%\stardock\s10\windows.immersivecontrolpanel_cw5n1h2txyewy\is-3d7f3.tmp
  • C:\users\public\documents\stardock\start10\round7\is-oi3t7.tmp
  • C:\users\public\documents\stardock\start10\round7\is-7s2cn.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-4at1e.tmp
  • C:\users\public\documents\stardock\start10\round7\is-tnjh2.tmp
  • C:\users\public\documents\stardock\start10\round7\is-aj3m9.tmp
  • C:\users\public\documents\stardock\start10\round7\is-eden4.tmp
  • C:\users\public\documents\stardock\start10\round7\is-s7gpb.tmp
  • C:\users\public\documents\stardock\start10\round7\is-t6oh7.tmp
  • C:\users\public\documents\stardock\start10\round7\is-s7fmr.tmp
  • C:\users\public\documents\stardock\start10\round7\is-hes67.tmp
  • C:\users\public\documents\stardock\start10\round7\is-cna5o.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-vo2nf.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-dgbpq.tmp
  • C:\users\public\documents\stardock\start10\round7\is-rc5qn.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-n5ccq.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-fjkle.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-u3cuu.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-t2p5j.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-6hrr6.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-skdcd.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-a21sm.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-3d0ha.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-0gq8n.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ut5f2.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-6iq4u.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-ikp1j.tmp
  • C:\users\public\documents\stardock\start10\round7\is-etqk3.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-iu8dv.tmp
  • C:\users\public\documents\stardock\start10\round7\is-tocl6.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-62gt5.tmp
  • C:\users\public\documents\stardock\start10\round7\is-tug47.tmp
  • C:\users\public\documents\stardock\start10\round7\is-j3g6f.tmp
  • C:\users\public\documents\stardock\start10\round7\is-sa300.tmp
  • C:\users\public\documents\stardock\start10\round7\is-c556t.tmp
  • C:\users\public\documents\stardock\start10\round7\is-3uddl.tmp
  • C:\users\public\documents\stardock\start10\round7\is-b2g4n.tmp
  • C:\users\public\documents\stardock\start10\round7\is-2h629.tmp
  • C:\users\public\documents\stardock\start10\round7\is-hg59d.tmp
  • C:\users\public\documents\stardock\start10\round7\is-li1d8.tmp
  • C:\users\public\documents\stardock\start10\round7\is-c6m1m.tmp
  • C:\users\public\documents\stardock\start10\round7\is-6fde4.tmp
  • C:\users\public\documents\stardock\start10\round7\is-hgrbg.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-8f345.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-6qcpf.tmp
  • C:\users\public\documents\stardock\start10\shadow\is-vbdv7.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-8btnr.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-rpojh.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-7rbca.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-h494j.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-ec87b.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-ng1vb.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-412al.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-47a3d.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-n4n0h.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-antod.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-676f0.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-96ss5.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-3abb7.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-t9joo.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-qm67l.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-upkah.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-932rp.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-gm8qj.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-9k48q.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-8p0e9.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-h2fjt.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-i45a7.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-laat0.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-b9cb6.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-gtn3e.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-cq6ir.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-aosf5.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-8qs90.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-b3v7d.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-7i9ho.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-sof0l.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-ajbje.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-gvbm3.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-n1ri3.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-3v01d.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-dkafu.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-071eq.tmp
  • %TEMP%\is-s9beo.tmp\~vfabhyj.tmp
  • %TEMP%\is-383ib.tmp\_isetup\_setup64.tmp
  • %TEMP%\is-383ib.tmp\vclstylesinno.dll
  • %TEMP%\is-383ib.tmp\windows10dark.vsf
  • %TEMP%\is-383ib.tmp\logo.bmp
  • %ProgramFiles(x86)%\stardock\start10\is-3gihm.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-9h4ek.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-ab90h.tmp
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\is-sbv09.tmp
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\is-5jgud.tmp
  • %ProgramFiles(x86)%\stardock\is-ml6h7.tmp
  • %ProgramFiles(x86)%\stardock\is-md5si.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-u8bng.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-ub67s.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-v4acl.tmp
  • %CommonProgramFiles(x86)%\~vfabhyj.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-d18dn.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-uobvj.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-rf9d4.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-3eum0.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-0rrsn.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-g7k1h.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-85j9t.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-i3o4t.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-ct327.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-d6v42.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-r7epi.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-j9m28.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-fov00.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-rgdrf.tmp
  • %ProgramFiles(x86)%\stardock\start10\links\is-2au9f.tmp
  • %ProgramFiles(x86)%\stardock\start10\menutextures\is-4fe1s.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-ou7e7.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-77qo1.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-vm0rl.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-90df5.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-12ld0.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-hphfg.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-krbu7.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-5ruj3.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-h7bjk.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-5b3fk.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-mkkpr.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-8sl43.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-3tfbl.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-qplmm.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-pm9bi.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-fsnt4.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-l7dnj.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-ocd86.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-sjd73.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-oal4b.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-d6d2r.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-9auon.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-480o7.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-hj2h2.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-tealh.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-hqnl4.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-mum1c.tmp
  • %ProgramFiles(x86)%\stardock\start10\grouppolicy\is-s695s.tmp
  • %ProgramFiles(x86)%\stardock\start10\grouppolicy\en-us\is-6up0k.tmp
  • %ProgramFiles(x86)%\stardock\start10\lang\is-820rh.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-q922u.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-vudoq.tmp
  • %ProgramFiles(x86)%\stardock\start10\is-101nf.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-19psa.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-696ou.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-2haq8.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-6oldb.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-hlr8j.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-unth7.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-pr9ti.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-oil1h.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-tlmkj.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-djog3.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-7ob6s.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-9bvr0.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-982as.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-q8vij.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-kkdib.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-rh6ff.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-2p9o8.tmp
  • %ProgramFiles(x86)%\stardock\start10\startbuttons\is-nkubn.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-gq3of.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-qhcfi.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-9jtuq.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-kf1on.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-jr0tf.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-1o15g.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-l70uv.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-010kf.tmp
  • C:\users\public\documents\stardock\start10\round7\is-b9h5c.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-0caf8.tmp
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\start10.lnk
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-lgm4g.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-dmtmc.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-v43o0.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-ssb9c.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-pm7eh.tmp
  • %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-km8pi.tmp
  • %ProgramFiles(x86)%\stardock\start10\unins000.dat
Sets the 'hidden' attribute to the following files
  • %CommonProgramFiles(x86)%\~vfabhyj.tmp
  • %ProgramFiles(x86)%\stardock\start10\desktop.ini
  • %ProgramFiles(x86)%\stardock\start10\start10.ico
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\desktop.ini
  • %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\stardock.ico
  • %ProgramFiles(x86)%\stardock\desktop.ini
  • %ProgramFiles(x86)%\stardock\stardock.ico
Deletes the following files
  • %TEMP%\autce5e.tmp
  • %TEMP%\is-383ib.tmp\logo.bmp
  • %TEMP%\is-383ib.tmp\vclstylesinno.dll
  • %TEMP%\is-383ib.tmp\windows10dark.vsf
  • %TEMP%\is-383ib.tmp\_isetup\_setup64.tmp
  • %TEMP%\is-s9beo.tmp\~vfabhyj.tmp
  • %CommonProgramFiles(x86)%\~vfabhyj.tmp
Moves the following files
  • from %ProgramFiles(x86)%\stardock\start10\is-3gihm.tmp to %ProgramFiles(x86)%\stardock\start10\unins000.exe
  • from C:\users\public\documents\stardock\start10\shadow\is-ff17q.tmp to C:\users\public\documents\stardock\start10\shadow\search_cancel_hover.png
  • from C:\users\public\documents\stardock\start10\shadow\is-m0k7n.tmp to C:\users\public\documents\stardock\start10\shadow\search_cancel_normal.png
  • from C:\users\public\documents\stardock\start10\shadow\is-l77ig.tmp to C:\users\public\documents\stardock\start10\shadow\search_cancel_pressed.png
  • from C:\users\public\documents\stardock\start10\shadow\is-t4m0o.tmp to C:\users\public\documents\stardock\start10\shadow\search_icon.png
  • from C:\users\public\documents\stardock\start10\shadow\is-a6b16.tmp to C:\users\public\documents\stardock\start10\shadow\search_top.png
  • from C:\users\public\documents\stardock\start10\shadow\is-0ns1i.tmp to C:\users\public\documents\stardock\start10\shadow\search_top_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-640qo.tmp to C:\users\public\documents\stardock\start10\shadow\selection_all_programs.png
  • from C:\users\public\documents\stardock\start10\shadow\is-36fd0.tmp to C:\users\public\documents\stardock\start10\shadow\selection_all_progs.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ebhdg.tmp to C:\users\public\documents\stardock\start10\shadow\selection_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-pe1a6.tmp to C:\users\public\documents\stardock\start10\shadow\selection_left_split_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-lalsr.tmp to C:\users\public\documents\stardock\start10\shadow\selection_left_split_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-jluad.tmp to C:\users\public\documents\stardock\start10\shadow\selection_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-vinvh.tmp to C:\users\public\documents\stardock\start10\shadow\selection_right_exapnded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-kidva.tmp to C:\users\public\documents\stardock\start10\shadow\selection_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ctgdg.tmp to C:\users\public\documents\stardock\start10\shadow\separator_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-bbb0n.tmp to C:\users\public\documents\stardock\start10\shadow\separator_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-pkvu0.tmp to C:\users\public\documents\stardock\start10\shadow\shadow.start8theme
  • from C:\users\public\documents\stardock\start10\shadow\is-h102n.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-31ulg.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_left_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-s2krl.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-t1u3m.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-cqnq4.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_right_glyph.png
  • from C:\users\public\documents\stardock\start10\shadow\is-fqphi.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_button_right_glyph_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-vugav.tmp to C:\users\public\documents\stardock\start10\shadow\shutdown_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-cegva.tmp to C:\users\public\documents\stardock\start10\shadow\sp_all_progs.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ef5fa.tmp to C:\users\public\documents\stardock\start10\shadow\sp_all_progs_arrow.png
  • from C:\users\public\documents\stardock\start10\shadow\is-9naie.tmp to C:\users\public\documents\stardock\start10\shadow\sp_all_progs_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-dk52e.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ggmjl.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_left_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-gi31s.tmp to C:\users\public\documents\stardock\start10\shadow\search_box.png
  • from C:\users\public\documents\stardock\start10\shadow\is-e6ng0.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-3vv3b.tmp to C:\users\public\documents\stardock\start10\shadow\search_bottom_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-9ho2k.tmp to C:\users\public\documents\stardock\start10\shadow\icon_search.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-lafiu.tmp to %ProgramFiles(x86)%\stardock\start10\lang\fr.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-m0a55.tmp to %ProgramFiles(x86)%\stardock\start10\lang\he.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-ijk2f.tmp to %ProgramFiles(x86)%\stardock\start10\lang\hu.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-at70a.tmp to %ProgramFiles(x86)%\stardock\start10\lang\hy.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-jdkdm.tmp to %ProgramFiles(x86)%\stardock\start10\lang\id.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-k299t.tmp to %ProgramFiles(x86)%\stardock\start10\lang\it.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-4nil6.tmp to %ProgramFiles(x86)%\stardock\start10\lang\ja.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-uee4u.tmp to %ProgramFiles(x86)%\stardock\start10\lang\ko.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-mtv7r.tmp to %ProgramFiles(x86)%\stardock\start10\lang\lt.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-8q2rj.tmp to %ProgramFiles(x86)%\stardock\start10\lang\nl.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-us3om.tmp to %ProgramFiles(x86)%\stardock\start10\lang\pl.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-9jqdc.tmp to %ProgramFiles(x86)%\stardock\start10\lang\pt-br.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-mpe54.tmp to %ProgramFiles(x86)%\stardock\start10\lang\ru.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-4p5d0.tmp to %ProgramFiles(x86)%\stardock\start10\lang\sv.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-138am.tmp to %ProgramFiles(x86)%\stardock\start10\lang\tr.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-7d8ed.tmp to %ProgramFiles(x86)%\stardock\start10\lang\tw.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-nc8d9.tmp to %ProgramFiles(x86)%\stardock\start10\lang\zh-tw.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-8sd4r.tmp to %ProgramFiles(x86)%\stardock\start10\lang\zh.lng
  • from C:\users\public\documents\stardock\start10\shadow\is-us5cv.tmp to C:\users\public\documents\stardock\start10\shadow\all_programs.png
  • from C:\users\public\documents\stardock\start10\shadow\is-s09gp.tmp to C:\users\public\documents\stardock\start10\shadow\all_programs_arrow.png
  • from C:\users\public\documents\stardock\start10\shadow\is-jisc3.tmp to C:\users\public\documents\stardock\start10\shadow\all_programs_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-hlptt.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-dji58.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_left_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ba9h7.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-jktha.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_right_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-7j56u.tmp to C:\users\public\documents\stardock\start10\shadow\bottom_right_layer_01_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-bl5ta.tmp to C:\users\public\documents\stardock\start10\shadow\icon_cancel_hover.png
  • from C:\users\public\documents\stardock\start10\shadow\is-a7l0g.tmp to C:\users\public\documents\stardock\start10\shadow\icon_cancel_normal.png
  • from C:\users\public\documents\stardock\start10\shadow\is-992gk.tmp to C:\users\public\documents\stardock\start10\shadow\icon_cancel_pressed.png
  • from C:\users\public\documents\stardock\start10\shadow\is-be62s.tmp to C:\users\public\documents\stardock\start10\shadow\search_bottom.png
  • from C:\users\public\documents\stardock\start10\round7\is-rc5qn.tmp to C:\users\public\documents\stardock\start10\round7\mprogs.png
  • from %WINDIR%\is-tsd4l.tmp to %WINDIR%\womtrust.dll
  • from C:\users\public\documents\stardock\start10\shadow\is-vo2nf.tmp to C:\users\public\documents\stardock\start10\shadow\sp_search_bottom.png
  • from C:\users\public\documents\stardock\start10\round7\is-pj15u.tmp to C:\users\public\documents\stardock\start10\round7\paddleft.png
  • from C:\users\public\documents\stardock\start10\round7\is-mojhr.tmp to C:\users\public\documents\stardock\start10\round7\paddleftover.png
  • from C:\users\public\documents\stardock\start10\round7\is-ami6n.tmp to C:\users\public\documents\stardock\start10\round7\paddmiddle.png
  • from C:\users\public\documents\stardock\start10\round7\is-8o1da.tmp to C:\users\public\documents\stardock\start10\round7\paddmiddleover.png
  • from C:\users\public\documents\stardock\start10\round7\is-r035e.tmp to C:\users\public\documents\stardock\start10\round7\paddright.png
  • from C:\users\public\documents\stardock\start10\round7\is-3b0ic.tmp to C:\users\public\documents\stardock\start10\round7\paddrightover.png
  • from C:\users\public\documents\stardock\start10\round7\is-rb2o9.tmp to C:\users\public\documents\stardock\start10\round7\rightsept.png
  • from C:\users\public\documents\stardock\start10\round7\is-381g5.tmp to C:\users\public\documents\stardock\start10\round7\round7.start8theme
  • from C:\users\public\documents\stardock\start10\round7\is-ca6ap.tmp to C:\users\public\documents\stardock\start10\round7\search.png
  • from C:\users\public\documents\stardock\start10\round7\is-3mu01.tmp to C:\users\public\documents\stardock\start10\round7\searchfield.png
  • from C:\users\public\documents\stardock\start10\round7\is-uopri.tmp to C:\users\public\documents\stardock\start10\round7\searchover.png
  • from C:\users\public\documents\stardock\start10\round7\is-f68ri.tmp to C:\users\public\documents\stardock\start10\round7\selection_all_programs.png
  • from C:\users\public\documents\stardock\start10\round7\is-cseam.tmp to C:\users\public\documents\stardock\start10\round7\selection_left.png
  • from C:\users\public\documents\stardock\start10\round7\is-p0m2i.tmp to C:\users\public\documents\stardock\start10\round7\selection_left_split_left.png
  • from C:\users\public\documents\stardock\start10\round7\is-8l2na.tmp to C:\users\public\documents\stardock\start10\round7\selection_left_split_right.png
  • from C:\users\public\documents\stardock\start10\round7\is-cs7h6.tmp to C:\users\public\documents\stardock\start10\round7\selection_right.png
  • from C:\users\public\documents\stardock\start10\round7\is-c03dt.tmp to C:\users\public\documents\stardock\start10\round7\shutdown_button_left.png
  • from C:\users\public\documents\stardock\start10\round7\is-cna5o.tmp to C:\users\public\documents\stardock\start10\round7\shutdown_button_right.png
  • from C:\users\public\documents\stardock\start10\round7\is-hes67.tmp to C:\users\public\documents\stardock\start10\round7\topinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-s7fmr.tmp to C:\users\public\documents\stardock\start10\round7\topinner2.png
  • from C:\users\public\documents\stardock\start10\round7\is-t6oh7.tmp to C:\users\public\documents\stardock\start10\round7\topleft.png
  • from C:\users\public\documents\stardock\start10\round7\is-s7gpb.tmp to C:\users\public\documents\stardock\start10\round7\topleftinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-eden4.tmp to C:\users\public\documents\stardock\start10\round7\topleftover.png
  • from C:\users\public\documents\stardock\start10\round7\is-aj3m9.tmp to C:\users\public\documents\stardock\start10\round7\topright.png
  • from C:\users\public\documents\stardock\start10\round7\is-b9h5c.tmp to C:\users\public\documents\stardock\start10\round7\toprightexpandedinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-tnjh2.tmp to C:\users\public\documents\stardock\start10\round7\toprightinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-7s2cn.tmp to C:\users\public\documents\stardock\start10\round7\toprightover.png
  • from C:\users\public\documents\stardock\start10\round7\is-oi3t7.tmp to C:\users\public\documents\stardock\start10\round7\user_picture.png
  • from %APPDATA%\stardock\s10\windows.immersivecontrolpanel_cw5n1h2txyewy\is-3d7f3.tmp to %APPDATA%\stardock\s10\windows.immersivecontrolpanel_cw5n1h2txyewy\microsoft.windows.immersivecontrolpanel.lnk
  • from C:\users\public\documents\stardock\start10\round7\is-tocl6.tmp to C:\users\public\documents\stardock\start10\round7\newtopleftinnerexpanded.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-fomuo.tmp to %ProgramFiles(x86)%\stardock\start10\lang\fi.lng
  • from C:\users\public\documents\stardock\start10\round7\is-etqk3.tmp to C:\users\public\documents\stardock\start10\round7\newtopleftinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-hgrbg.tmp to C:\users\public\documents\stardock\start10\round7\moreprogsinner.png
  • from C:\users\public\documents\stardock\start10\shadow\is-iu8dv.tmp to C:\users\public\documents\stardock\start10\shadow\sp_search_bottom_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-45c9n.tmp to C:\users\public\documents\stardock\start10\shadow\sp_search_top.png
  • from C:\users\public\documents\stardock\start10\shadow\is-n5ccq.tmp to C:\users\public\documents\stardock\start10\shadow\sp_search_top_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-fjkle.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-u3cuu.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_left_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-t2p5j.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-6hrr6.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_right_.png
  • from C:\users\public\documents\stardock\start10\shadow\is-skdcd.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-a21sm.tmp to C:\users\public\documents\stardock\start10\shadow\sp_top_right_expanded_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-3d0ha.tmp to C:\users\public\documents\stardock\start10\shadow\sp_user_picture_frame.png
  • from C:\users\public\documents\stardock\start10\shadow\is-0gq8n.tmp to C:\users\public\documents\stardock\start10\shadow\sp_user_picture_frame_l1.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ut5f2.tmp to C:\users\public\documents\stardock\start10\shadow\top_left.png
  • from C:\users\public\documents\stardock\start10\shadow\is-6iq4u.tmp to C:\users\public\documents\stardock\start10\shadow\top_left_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-ikp1j.tmp to C:\users\public\documents\stardock\start10\shadow\top_right.png
  • from C:\users\public\documents\stardock\start10\shadow\is-62gt5.tmp to C:\users\public\documents\stardock\start10\shadow\top_right_layer_01.png
  • from C:\users\public\documents\stardock\start10\shadow\is-8f345.tmp to C:\users\public\documents\stardock\start10\shadow\top_right_layer_01_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-6qcpf.tmp to C:\users\public\documents\stardock\start10\shadow\user_picture.png
  • from C:\users\public\documents\stardock\start10\shadow\is-vbdv7.tmp to C:\users\public\documents\stardock\start10\shadow\user_picture_layer_01.png
  • from C:\users\public\documents\stardock\start10\round7\is-tug47.tmp to C:\users\public\documents\stardock\start10\round7\bottomleft.png
  • from C:\users\public\documents\stardock\start10\round7\is-j3g6f.tmp to C:\users\public\documents\stardock\start10\round7\bottomleftinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-sa300.tmp to C:\users\public\documents\stardock\start10\round7\bottomleftinnerexpanded.png
  • from C:\users\public\documents\stardock\start10\round7\is-c556t.tmp to C:\users\public\documents\stardock\start10\round7\bottomleftover.png
  • from C:\users\public\documents\stardock\start10\round7\is-3uddl.tmp to C:\users\public\documents\stardock\start10\round7\bottomright.png
  • from C:\users\public\documents\stardock\start10\round7\is-b2g4n.tmp to C:\users\public\documents\stardock\start10\round7\bottomrightexpandedinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-2h629.tmp to C:\users\public\documents\stardock\start10\round7\bottomrightinner.png
  • from C:\users\public\documents\stardock\start10\round7\is-hg59d.tmp to C:\users\public\documents\stardock\start10\round7\bottomrightover.png
  • from C:\users\public\documents\stardock\start10\round7\is-li1d8.tmp to C:\users\public\documents\stardock\start10\round7\grad1.png
  • from C:\users\public\documents\stardock\start10\round7\is-c6m1m.tmp to C:\users\public\documents\stardock\start10\round7\leftsept.png
  • from C:\users\public\documents\stardock\start10\round7\is-6fde4.tmp to C:\users\public\documents\stardock\start10\round7\midinner2.png
  • from C:\users\public\documents\stardock\start10\shadow\is-27hsu.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_right_expanded.png
  • from C:\users\public\documents\stardock\start10\shadow\is-dgbpq.tmp to C:\users\public\documents\stardock\start10\shadow\sp_bottom_right_expanded_l1.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-2bt6o.tmp to %ProgramFiles(x86)%\stardock\start10\lang\es.lng
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-unth7.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start19.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-n4n0h.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\jeans_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-antod.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\large angle stripes_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-676f0.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\leather_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-96ss5.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\marble_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-3abb7.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\metal 2_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-t9joo.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\metal grid_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-qm67l.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\metallic_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-upkah.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\metal_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-n1ri3.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\old wood_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-gvbm3.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\rock_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-3v01d.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\rusty metal grid_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-8p0e9.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\small angle stripes_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-h2fjt.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\wood_x1.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-i45a7.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\default.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-laat0.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start2.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-b9cb6.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start3.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-gtn3e.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start4.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-cq6ir.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start5.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-aosf5.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start6.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-8qs90.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start7.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-b3v7d.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start8.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-7i9ho.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start9.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-sof0l.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start10.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-ajbje.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start11.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-gm8qj.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start12.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-v4acl.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start13.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-ou7e7.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start14.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-2haq8.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start15.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-nkubn.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start16.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-47a3d.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\flame grid 04.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-6oldb.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start17.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-412al.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\flame grid 01.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-ec87b.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\dark wood_x1.png
  • from %ProgramFiles(x86)%\stardock\start10\is-9h4ek.tmp to %ProgramFiles(x86)%\stardock\start10\desktop.ini
  • from %ProgramFiles(x86)%\stardock\start10\is-ab90h.tmp to %ProgramFiles(x86)%\stardock\start10\start10.ico
  • from %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\is-sbv09.tmp to %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\desktop.ini
  • from %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\is-5jgud.tmp to %PROGRAMDATA%\microsoft\windows\start menu\programs\stardock\stardock.ico
  • from %ProgramFiles(x86)%\stardock\is-ml6h7.tmp to %ProgramFiles(x86)%\stardock\desktop.ini
  • from %ProgramFiles(x86)%\stardock\is-md5si.tmp to %ProgramFiles(x86)%\stardock\stardock.ico
  • from %ProgramFiles(x86)%\stardock\start10\links\is-u8bng.tmp to %ProgramFiles(x86)%\stardock\start10\links\1.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-2au9f.tmp to %ProgramFiles(x86)%\stardock\start10\links\10.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-rgdrf.tmp to %ProgramFiles(x86)%\stardock\start10\links\11.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-071eq.tmp to %ProgramFiles(x86)%\stardock\start10\links\2.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-d18dn.tmp to %ProgramFiles(x86)%\stardock\start10\links\20.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-uobvj.tmp to %ProgramFiles(x86)%\stardock\start10\links\21.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-rf9d4.tmp to %ProgramFiles(x86)%\stardock\start10\links\22.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-3eum0.tmp to %ProgramFiles(x86)%\stardock\start10\links\23.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-0rrsn.tmp to %ProgramFiles(x86)%\stardock\start10\links\24.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-g7k1h.tmp to %ProgramFiles(x86)%\stardock\start10\links\25.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-85j9t.tmp to %ProgramFiles(x86)%\stardock\start10\links\26.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-i3o4t.tmp to %ProgramFiles(x86)%\stardock\start10\links\3.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-ct327.tmp to %ProgramFiles(x86)%\stardock\start10\links\30.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-d6v42.tmp to %ProgramFiles(x86)%\stardock\start10\links\31.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-r7epi.tmp to %ProgramFiles(x86)%\stardock\start10\links\4.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-j9m28.tmp to %ProgramFiles(x86)%\stardock\start10\links\5.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-fov00.tmp to %ProgramFiles(x86)%\stardock\start10\links\6.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-dkafu.tmp to %ProgramFiles(x86)%\stardock\start10\links\7.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-ub67s.tmp to %ProgramFiles(x86)%\stardock\start10\links\8.lnk
  • from %ProgramFiles(x86)%\stardock\start10\links\is-9k48q.tmp to %ProgramFiles(x86)%\stardock\start10\links\9.lnk
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-932rp.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\abstract one.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-4fe1s.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\carbon fibre_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-h494j.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\corroded_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\menutextures\is-ng1vb.tmp to %ProgramFiles(x86)%\stardock\start10\menutextures\fabric_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-77qo1.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 02.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-8btnr.tmp to %ProgramFiles(x86)%\stardock\start10\lang\en-us.lng
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-pr9ti.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start20.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-90df5.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 04 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-12ld0.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 04.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-hphfg.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 05 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-krbu7.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 05.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-5ruj3.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\wood_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\is-h7bjk.tmp to %ProgramFiles(x86)%\stardock\start10\deelevate64.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-5b3fk.tmp to %ProgramFiles(x86)%\stardock\start10\deelevator64.dll
  • from %ProgramFiles(x86)%\stardock\start10\is-mkkpr.tmp to %ProgramFiles(x86)%\stardock\start10\default.spak
  • from %ProgramFiles(x86)%\stardock\start10\is-8sl43.tmp to %ProgramFiles(x86)%\stardock\start10\defs.ini
  • from %ProgramFiles(x86)%\stardock\start10\is-3tfbl.tmp to %ProgramFiles(x86)%\stardock\start10\defs2.ini
  • from %ProgramFiles(x86)%\stardock\start10\is-qplmm.tmp to %ProgramFiles(x86)%\stardock\start10\extracts8theme.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-ocd86.tmp to %ProgramFiles(x86)%\stardock\start10\immersive control panel.lnk
  • from %ProgramFiles(x86)%\stardock\start10\is-q922u.tmp to %ProgramFiles(x86)%\stardock\start10\launch.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-vudoq.tmp to %ProgramFiles(x86)%\stardock\start10\sdappservices.dll
  • from %ProgramFiles(x86)%\stardock\start10\is-101nf.tmp to %ProgramFiles(x86)%\stardock\start10\start10.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-sjd73.tmp to %ProgramFiles(x86)%\stardock\start10\start10_64.dll
  • from %ProgramFiles(x86)%\stardock\start10\is-oal4b.tmp to %ProgramFiles(x86)%\stardock\start10\start10_64.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-d6d2r.tmp to %ProgramFiles(x86)%\stardock\start10\start10config.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-9auon.tmp to %ProgramFiles(x86)%\stardock\start10\start10shell64.dll
  • from %ProgramFiles(x86)%\stardock\start10\is-480o7.tmp to %ProgramFiles(x86)%\stardock\start10\start10srv.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-hj2h2.tmp to %ProgramFiles(x86)%\stardock\start10\start10themeedit.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-tealh.tmp to %ProgramFiles(x86)%\stardock\start10\start10tweak.exe
  • from %ProgramFiles(x86)%\stardock\start10\is-hqnl4.tmp to %ProgramFiles(x86)%\stardock\start10\themehelp.txt
  • from %ProgramFiles(x86)%\stardock\start10\is-mum1c.tmp to %ProgramFiles(x86)%\stardock\start10\zip.exe
  • from %ProgramFiles(x86)%\stardock\start10\grouppolicy\is-s695s.tmp to %ProgramFiles(x86)%\stardock\start10\grouppolicy\start8_gp.admx
  • from %ProgramFiles(x86)%\stardock\start10\grouppolicy\en-us\is-6up0k.tmp to %ProgramFiles(x86)%\stardock\start10\grouppolicy\en-us\start8_gp.adml
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-820rh.tmp to %ProgramFiles(x86)%\stardock\start10\lang\ar.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-7rbca.tmp to %ProgramFiles(x86)%\stardock\start10\lang\cs.lng
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-rpojh.tmp to %ProgramFiles(x86)%\stardock\start10\lang\de.lng
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-vm0rl.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 03.png
  • from %ProgramFiles(x86)%\stardock\start10\lang\is-qheek.tmp to %ProgramFiles(x86)%\stardock\start10\lang\en.lng
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-l7dnj.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 03 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-pm9bi.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 02 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-oil1h.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start21.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-tlmkj.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start22.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-djog3.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start23.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-7ob6s.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start24.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-9bvr0.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start25.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-982as.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\carbon fibre_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-q8vij.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\corroded_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-kkdib.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\dark wood_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-rh6ff.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\fabric_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-2p9o8.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\grunge stone 01_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-gq3of.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\grunge stone 02_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-9jtuq.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\horz gradient two_x1.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-kf1on.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\horz gradient_x1.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-jr0tf.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\jeans_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-1o15g.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\large angle stripes_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-l70uv.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\leather_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-010kf.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\marble_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-0caf8.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\metal 2_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-4at1e.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\metal grid_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-km8pi.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\metallic_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-lgm4g.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\metal_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-dmtmc.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\old wood_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-v43o0.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\rock_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-ssb9c.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\rusty metal grid_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-pm7eh.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\rust_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-qhcfi.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\sand_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-696ou.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\small angle stripes_x2.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-fsnt4.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 01 mono.png
  • from %ProgramFiles(x86)%\stardock\start10\taskbartextures\is-19psa.tmp to %ProgramFiles(x86)%\stardock\start10\taskbartextures\taskbar grid 01.png
  • from %ProgramFiles(x86)%\stardock\start10\startbuttons\is-hlr8j.tmp to %ProgramFiles(x86)%\stardock\start10\startbuttons\start18.png
  • from %WINDIR%\is-bikto.tmp to %WINDIR%\wontrust.dll
Miscellaneous
Searches for the following windows
  • ClassName: 'START8' WindowName: ''
Creates and executes the following
  • '%CommonProgramFiles(x86)%\~vfabhyj.tmp' /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /SP-
  • '%TEMP%\is-s9beo.tmp\~vfabhyj.tmp' /SL5="$110228,22126937,210432,%CommonProgramFiles(x86)%\~vfabhyj.tmp" /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /SP-
  • '%ProgramFiles(x86)%\stardock\start10\start10srv.exe' -install
  • '%ProgramFiles(x86)%\stardock\start10\start10srv.exe'
  • '%ProgramFiles(x86)%\stardock\start10\start10_64.exe'
  • '%ProgramFiles(x86)%\stardock\start10\start10.exe' START
  • '%ProgramFiles(x86)%\stardock\start10\start10_64.exe' START
  • '%ProgramFiles(x86)%\stardock\start10\start10srv.exe' -install' (with hidden window)
  • '%ProgramFiles(x86)%\stardock\start10\start10.exe' START' (with hidden window)

Curing recommendations

  1. If the operating system (OS) can be loaded (either normally or in safe mode), download Dr.Web Security Space and run a full scan of your computer and removable media you use. More about Dr.Web Security Space.
  2. If you cannot boot the OS, change the BIOS settings to boot your system from a CD or USB drive. Download the image of the emergency system repair disk Dr.Web® LiveDisk , mount it on a USB drive or burn it to a CD/DVD. After booting up with this media, run a full scan and cure all the detected threats.
Free trial

 

Download Dr.Web

Download by serial number

Use Dr.Web Anti-virus for macOS to run a full scan of your Mac.

Free trial

 

Download Dr.Web

Download by serial number

Download on App Store

After booting up, run a full scan of all disk partitions with Dr.Web Anti-virus for Linux.

Free trial

 

Download Dr.Web

Download by serial number

  1. If the mobile device is operating normally, download and install Dr.Web for Android. Run a full system scan and follow recommendations to neutralize the detected threats.
  2. If the mobile device has been locked by Android.Locker ransomware (the message on the screen tells you that you have broken some law or demands a set ransom amount; or you will see some other announcement that prevents you from using the handheld normally), do the following:
    • Load your smartphone or tablet in the safe mode (depending on the operating system version and specifications of the particular mobile device involved, this procedure can be performed in various ways; seek clarification from the user guide that was shipped with the device, or contact its manufacturer);
    • Once you have activated safe mode, install the Dr.Web for Android onto the infected handheld and run a full scan of the system; follow the steps recommended for neutralizing the threats that have been detected;
    • Switch off your device and turn it on as normal.

Find out more about Dr.Web for Android

Free trial

14 days

Download now
Get it on Google Play