Technical Information
- [<HKLM>\SOFTWARE\Classes\Ares.Playlist\Shell\Open\Command] '' = '"%TEMP%\RarSFX0\Ares.exe" "%1"'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'ares' = '"%TEMP%\RarSFX0\Ares.exe" -h'
- [<HKLM>\SOFTWARE\Classes\magnet\shell\open\command] '' = '"%TEMP%\RarSFX0\Ares.exe" "%L"'
- [<HKLM>\SOFTWARE\Classes\Ares.Torrent\shell\open\command] '' = '"%TEMP%\RarSFX0\Ares.exe" "%1"'
- [<HKLM>\SOFTWARE\Classes\Ares.Arlnk\shell\open\command] '' = '"%TEMP%\RarSFX0\Ares.exe" "%L"'
- [<HKLM>\SOFTWARE\Classes\Arlnk\shell\open\command] '' = '"%TEMP%\RarSFX0\Ares.exe" "%L"'
- [<HKLM>\SOFTWARE\Classes\Ares.CollectionList\shell\open\command] '' = '"%TEMP%\RarSFX0\Ares.exe" "%1"'
- '%TEMP%\RarSFX0\Ares.exe'
- %TEMP%\RarSFX0\data\GUI\Borravino\searchpnl.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\searchpnl.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\searchpnl.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\searchpnl.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\searchpnl.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\searchpnl.bmp
- %TEMP%\RarSFX0\data\no-avatar.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\searchpnl.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\searchpnl.bmp
- %TEMP%\RarSFX0\data\GUI\General\searchpnl.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\General\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\General\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\searchstars.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\mplayer.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\mimesmall.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\mimesmall.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\mplayer.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\mplayer.bmp
- %TEMP%\RarSFX0\data\GUI\General\mplayer.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\mimesmall.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\mimesmall.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\mimesmall.bmp
- %TEMP%\RarSFX0\data\GUI\General\mimesmall.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\mimesmall.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\mimesmall.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\mplayer.bmp
- %TEMP%\RarSFX0\data\GUI\General\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\mplayer.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\mplayer.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\mplayer.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\mshareset.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\transfer.bmp
- %TEMP%\RarSFX0\data\GUI\General\transfer.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\transfer.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\transfer.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\transfer.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\transfer.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\trackbar.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\trackbar.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\trackbar.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\transfer.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\trackbar.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\trackbar.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\transfer.bmp
- %TEMP%\RarSFX0\data\Homepage.url
- %TEMP%\RarSFX0\data\flvplayer.swf
- %TEMP%\RarSFX0\data\Blocked.txt.sample
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\lucianoaibar[1]
- <LS_APPDATA>\Ares\Data\ShareH.dat
- <LS_APPDATA>\Ares\Data\ShareL.dat
- %TEMP%\RarSFX0\MP3Source.ax
- %TEMP%\RarSFX0\AsyncEx.ax
- %TEMP%\RarSFX0\data\GUI\Esmeralda\transfer.bmp
- %TEMP%\RarSFX0\unins000.dat
- %TEMP%\RarSFX0\data\HomePage.dat
- %TEMP%\RarSFX0\data\ChatroomIPs.dat
- %TEMP%\RarSFX0\data\GUI\Skin Red\tabsBitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\tabsBitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\tabsBitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\tabsBitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\tabsBitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\tabsBitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\smalltabsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\General\tabsBitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\tabsBitmap.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\tabsbig.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\testa.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\trackbar.bmp
- %TEMP%\RarSFX0\data\GUI\General\trackbar.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\trackbar.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\General\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\tabssmall.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\mimesmall.bmp
- %TEMP%\RarSFX0\Ares.exe
- %TEMP%\RarSFX0\lang\Turkish.txt
- %TEMP%\RarSFX0\lang\Swedish.txt
- %TEMP%\RarSFX0\unins000.exe
- %TEMP%\RarSFX0\chatServer.exe
- %TEMP%\RarSFX0\Ares_crack.exe
- %TEMP%\RarSFX0\data\GUI\Win7\prefs.txt
- %TEMP%\RarSFX0\data\GUI\Esmeralda\prefs.txt
- %TEMP%\RarSFX0\data\GUI\OsThemes\prefs.txt
- %TEMP%\RarSFX0\lang\Spanish.txt
- %TEMP%\RarSFX0\lang\Slovak.txt
- %TEMP%\RarSFX0\lang\Russian.txt
- %TEMP%\RarSFX0\bass.dll
- %TEMP%\RarSFX0\data\GUI\Borravino\buttonsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\buttonsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\buttonsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\chat.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\chat.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\buttonsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\buttonsbitmap.bmp
- %TEMP%\RarSFX0\libfaad2.dll
- %TEMP%\RarSFX0\ISTask.dll
- %TEMP%\RarSFX0\data\GUI\Skin Blue\buttonsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\buttonsbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\General\buttonsbitmap.bmp
- %TEMP%\RarSFX0\lang\Dutch.txt
- %TEMP%\RarSFX0\lang\Danish.txt
- %TEMP%\RarSFX0\lang\Czech.txt
- %TEMP%\RarSFX0\lang\German.txt
- %TEMP%\RarSFX0\lang\French.txt
- %TEMP%\RarSFX0\lang\Finnish.txt
- %TEMP%\RarSFX0\data\ChanListFilter.txt
- %TEMP%\RarSFX0\data\Blocked_Keywords.txt
- %TEMP%\RarSFX0\lang\Arabic.txt
- %TEMP%\RarSFX0\lang\Chinese.txt
- %TEMP%\RarSFX0\data\ChatLang_es.txt
- %TEMP%\RarSFX0\data\ChatLang_en.txt
- %TEMP%\RarSFX0\lang\Italian.txt
- %TEMP%\RarSFX0\data\GUI\Mac\prefs.txt
- %TEMP%\RarSFX0\data\GUI\Skin Blue\prefs.txt
- %TEMP%\RarSFX0\data\GUI\Skin Red\prefs.txt
- %TEMP%\RarSFX0\data\GUI\Borravino\prefs.txt
- %TEMP%\RarSFX0\data\GUI\General\prefs.txt
- %TEMP%\RarSFX0\data\GUI\Bloody\prefs.txt
- %TEMP%\RarSFX0\data\motd.txt
- %TEMP%\RarSFX0\lang\Kirghiz.txt
- %TEMP%\RarSFX0\lang\Japanese.txt
- %TEMP%\RarSFX0\lang\Portuguese.txt
- %TEMP%\RarSFX0\lang\Polish.txt
- %TEMP%\RarSFX0\data\P2PFilter.txt
- %TEMP%\RarSFX0\data\GUI\Bloody\logo.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\listviewbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\listviewbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\logo.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\logo.bmp
- %TEMP%\RarSFX0\data\GUI\General\logo.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\listviewbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\General\listviewbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\listviewbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\listviewbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\listviewbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\listviewbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\logo.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\mainbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\mainbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\mainbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\mainbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\mainbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\mainbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\logo.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\logo.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\logo.bmp
- %TEMP%\RarSFX0\data\GUI\General\mainbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\mainbitmap.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\logo.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\chat.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\General\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\chat.bmp
- %TEMP%\RarSFX0\data\GUI\General\chat.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\chat.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\chat.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\chat.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\chat.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\Esmeralda\libbig.bmp
- %TEMP%\RarSFX0\data\GUI\Borravino\libbig.bmp
- %TEMP%\RarSFX0\data\GUI\Bloody\libbig.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\libbig.bmp
- %TEMP%\RarSFX0\data\GUI\OsThemes\libbig.bmp
- %TEMP%\RarSFX0\data\GUI\General\libbig.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Red\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\emotic.bmp
- %TEMP%\RarSFX0\data\GUI\Win7\libbig.bmp
- %TEMP%\RarSFX0\data\GUI\Skin Blue\libbig.bmp
- %TEMP%\RarSFX0\data\GUI\Mac\libbig.bmp
- '74.##5.232.51':80
- 'localhost':1035
- 74.##5.232.51/site/lucianoaibar/
- DNS ASK si###.google.com
- '71.#0.85.53':1000
- '94.##1.167.182':37529
- '21#.#38.55.210':36080
- '20#.#.192.130':50011
- '19#.#17.221.46':31045
- '19#.#85.61.34':33465
- '19#.#1.53.145':27307
- '75.##.151.141':17115
- '69.##.208.135':13699
- '69.##6.71.73':24120
- '67.##5.30.181':42628
- '18#.#5.137.173':30416
- '18#.#9.103.226':48647
- '18#.#8.150.50':5000
- '79.#7.185.3':47777
- '20#.#31.168.71':52280
- '88.#.210.17':27493
- '18#.#53.28.247':50500
- '18#.#4.94.109':41865
- '83.##1.7.211':5000
- '67.##4.145.149':31027
- '24.#3.26.18':4935
- '20#.#6.229.197':20251
- '83.##.66.135':52000
- '71.#.196.140':32143
- '68.#.83.82':5000
- '20#.#3.26.103':51000
- '19#.#54.115.202':54157
- '18#.#3.80.219':56403
- '18#.#5.112.236':2009
- '71.#.119.33':54321
- '19#.#2.93.172':59738
- '80.##.246.37':50000
- '19#.#06.58.162':64501
- '77.##0.72.193':30802
- '19#.#8.80.141':22222
- '20#.#70.237.116':5000
- '79.##9.134.179':26666
- '89.##.151.109':53115
- '20#.#72.169.150':49741
- '82.##.131.228':14692
- '60.##2.211.117':47844
- '88.#.179.63':12500
- '19#.#40.17.6':43009
- '20#.#27.65.134':5517
- '85.#9.5.47':5000
- '21#.#45.112.18':61138
- '89.##1.50.230':8000
- '24.##4.226.114':23847
- '95.#7.24.16':3000
- '78.##5.198.173':23483
- '97.#0.98.41':18053
- '19#.#46.204.194':5000
- '21#.#14.176.95':33733
- '19#.#89.223.104':5000
- '98.##4.93.92':46104
- '20#.#61.55.68':2677
- '19#.#27.119.23':15367
- '19#.#9.63.44':5000
- '87.##1.157.71':56688
- '19#.#00.113.185':5000
- '82.##8.45.69':3694
- '85.##9.205.80':40971
- '94.##3.155.162':11520
- '18#.#75.45.20':5000
- '83.#4.236.5':19282
- '18#.#8.193.125':65081
- '98.##.13.144':5300
- '19#.#6.7.173':5000
- '19#.#93.140.176':11310
- '94.##.101.131':44507
- '19#.#9.38.159':37610
- '17#.#.64.147':44676
- '18#.#20.42.44':5000
- '79.##.170.63':45694
- '19#.#0.230.113':57069
- '86.#.2.192':14693
- '92.#7.38.43':18863
- '18#.#49.67.108':16
- '19#.#40.253.155':53636
- '19#.#03.250.199':48067
- '18#.#7.124.191':11725
- '18#.#9.23.146':53073
- '18#.#40.80.191':5000
- '20#.#9.101.21':5000
- '85.##.97.240':38366
- ClassName: 'TAppBuilder' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'Indicator' WindowName: '(null)'