Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] 'VIDC.FFDS' = 'ff_vfw.dll'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] 'wextract_cleanup0' = 'rundll32.exe <SYSTEM32>\advpack.dll,DelNodeRunDLL32 "%TEMP%\IXP000.TMP\"'
- '%TEMP%\is-N2PFO.tmp\FFDSHO~1.tmp' /SL5="$40092,4279150,140800,%TEMP%\IXP000.TMP\FFDSHO~1.EXE" /silent
- '%TEMP%\IXP000.TMP\FFDSHO~1.EXE' /silent
- '<SYSTEM32>\regsvr32.exe' /s "%PROGRAM_FILES%\ffdshow\ffdshow.ax"
- %PROGRAM_FILES%\ffdshow\custom matrices\is-NFJME.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-HFN2U.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-DFT5M.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-E06FJ.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-O1MKI.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-737PK.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-IJND2.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-5E5D2.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-SHC8P.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-KQBPB.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-CCNP4.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-J6HGU.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-L7M5K.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-JMRAB.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-D56SQ.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-H87NO.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-DAQRK.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-JP5Q9.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-N1BAE.tmp
- %PROGRAM_FILES%\ffdshow\is-35LBB.tmp
- %ALLUSERSPROFILE%\Start Menu\Programs\ffdshow\Audio decoder configuration.lnk
- %PROGRAM_FILES%\ffdshow\is-D6S8A.tmp
- %PROGRAM_FILES%\ffdshow\is-J4OBE.tmp
- %ALLUSERSPROFILE%\Start Menu\Programs\ffdshow\Video decoder configuration.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\ffdshow\Homepage.url
- %PROGRAM_FILES%\ffdshow\unins000.dat
- %ALLUSERSPROFILE%\Start Menu\Programs\ffdshow\VFW configuration.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\ffdshow\Uninstall ffdshow.lnk
- %PROGRAM_FILES%\ffdshow\custom matrices\is-0BC7R.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-45G3E.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-9HKAJ.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-QL4DJ.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-KUR6I.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-JQONQ.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-2HHRH.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-2GHKI.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-7E4HN.tmp
- %PROGRAM_FILES%\ffdshow\is-M5NQN.tmp
- %PROGRAM_FILES%\ffdshow\is-IMN71.tmp
- %PROGRAM_FILES%\ffdshow\is-OBF4J.tmp
- %PROGRAM_FILES%\ffdshow\is-MOE6T.tmp
- %PROGRAM_FILES%\ffdshow\is-B58IS.tmp
- <SYSTEM32>\is-FHKE2.tmp
- <SYSTEM32>\is-ROM0U.tmp
- %PROGRAM_FILES%\ffdshow\is-T4DLB.tmp
- %PROGRAM_FILES%\ffdshow\is-MVM5U.tmp
- %PROGRAM_FILES%\ffdshow\is-R937G.tmp
- %PROGRAM_FILES%\ffdshow\is-K1U7O.tmp
- %TEMP%\is-M6R4A.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-M6R4A.tmp\ffSpkCfg.dll
- %PROGRAM_FILES%\ffdshow\is-JQ9Q4.tmp
- %PROGRAM_FILES%\ffdshow\is-JURLT.tmp
- %PROGRAM_FILES%\ffdshow\is-TM1FV.tmp
- %PROGRAM_FILES%\ffdshow\is-FQ2CA.tmp
- %PROGRAM_FILES%\ffdshow\is-6KUMH.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-8GPIK.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-GJCMS.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-1JEPK.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-B662A.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-JS776.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-SD2CK.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-8VJT1.tmp
- %PROGRAM_FILES%\ffdshow\custom matrices\is-S9NSL.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-1OQ5Q.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-DG66V.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-D0CSG.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-68L3F.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-PCTB8.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-PJI7O.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-K1L2G.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-PBG0K.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-AC47C.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-THFAU.tmp
- %PROGRAM_FILES%\ffdshow\languages\is-VJUNB.tmp
- %TEMP%\is-N2PFO.tmp\FFDSHO~1.tmp
- %TEMP%\is-M6R4A.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-M6R4A.tmp\ffSpkCfg.dll
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-H87NO.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\eqm_v3ehr.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-DFT5M.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\eqm_v3hr.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-JP5Q9.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\eqm_avc_hr.cfg
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-D56SQ.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\eqm_v1.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-HFN2U.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\eqm_v3ulr_rev3.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-O1MKI.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\hvs-best-picture.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-E06FJ.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\eqm_v3lr.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-NFJME.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\eqm_v3uhr_rev2.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-J6HGU.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\andreas_doppelte_99er.matrix.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-L7M5K.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\andreas_einfache_99er.matrix.xcm
- from %PROGRAM_FILES%\ffdshow\languages\is-8VJT1.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.2052.sc
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-S9NSL.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\andreas_78er.matrix.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-JMRAB.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\CG-Animation Matrix.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-DAQRK.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\eqm_autogk_sharp.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-KQBPB.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Bulletproof's Heavy Compression Matrix.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-CCNP4.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Bulletproof's High Quality Matrix.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-5E5D2.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\hvs-better-picture.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-7E4HN.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Ultimate Matrix.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-JQONQ.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Ultra Low Bitrate Matrix.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-KUR6I.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Soulhunters V5.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-2GHKI.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Standard.xcm
- from %PROGRAM_FILES%\ffdshow\is-J4OBE.tmp to %PROGRAM_FILES%\ffdshow\gnu_license.txt
- from %PROGRAM_FILES%\ffdshow\is-35LBB.tmp to %PROGRAM_FILES%\ffdshow\Boost_Software_License_1.0.txt
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-2HHRH.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Very Low Bitrate Matrix.xcm
- from %PROGRAM_FILES%\ffdshow\is-D6S8A.tmp to %PROGRAM_FILES%\ffdshow\openIE.js
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-IJND2.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\MPEG.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-N1BAE.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\pvcd.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-SHC8P.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\hvs-good-picture.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-737PK.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Low Bitrate Matrix.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-0BC7R.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\q_matrix_def.cfg
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-45G3E.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\Soulhunters V3.xcm
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-9HKAJ.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\q_matrix.cfg
- from %PROGRAM_FILES%\ffdshow\custom matrices\is-QL4DJ.tmp to %PROGRAM_FILES%\ffdshow\custom matrices\q_matrix2.cfg
- from %PROGRAM_FILES%\ffdshow\is-IMN71.tmp to %PROGRAM_FILES%\ffdshow\libmpeg2_ff.dll
- from %PROGRAM_FILES%\ffdshow\is-B58IS.tmp to %PROGRAM_FILES%\ffdshow\ffdshow.ax
- from %PROGRAM_FILES%\ffdshow\is-MOE6T.tmp to %PROGRAM_FILES%\ffdshow\ff_kernelDeint.dll
- from %PROGRAM_FILES%\ffdshow\is-M5NQN.tmp to %PROGRAM_FILES%\ffdshow\TomsMoComp_ff.dll
- from <SYSTEM32>\is-FHKE2.tmp to <SYSTEM32>\ff_vfw.dll
- from <SYSTEM32>\is-ROM0U.tmp to <SYSTEM32>\ff_vfw.dll.manifest
- from %PROGRAM_FILES%\ffdshow\is-T4DLB.tmp to %PROGRAM_FILES%\ffdshow\ffdshow.ax.manifest
- from %PROGRAM_FILES%\ffdshow\is-MVM5U.tmp to %PROGRAM_FILES%\ffdshow\ff_wmv9.dll
- from %PROGRAM_FILES%\ffdshow\is-JQ9Q4.tmp to %PROGRAM_FILES%\ffdshow\ff_liba52.dll
- from %PROGRAM_FILES%\ffdshow\is-FQ2CA.tmp to %PROGRAM_FILES%\ffdshow\ff_libdts.dll
- from %PROGRAM_FILES%\ffdshow\is-R937G.tmp to %PROGRAM_FILES%\ffdshow\unins000.exe
- from %PROGRAM_FILES%\ffdshow\is-K1U7O.tmp to %PROGRAM_FILES%\ffdshow\ffmpeg.dll
- from %PROGRAM_FILES%\ffdshow\is-TM1FV.tmp to %PROGRAM_FILES%\ffdshow\ff_unrar.dll
- from %PROGRAM_FILES%\ffdshow\is-OBF4J.tmp to %PROGRAM_FILES%\ffdshow\ff_samplerate.dll
- from %PROGRAM_FILES%\ffdshow\is-6KUMH.tmp to %PROGRAM_FILES%\ffdshow\ff_libfaad2.dll
- from %PROGRAM_FILES%\ffdshow\is-JURLT.tmp to %PROGRAM_FILES%\ffdshow\ff_libmad.dll
- from %PROGRAM_FILES%\ffdshow\languages\is-8GPIK.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1026.bg
- from %PROGRAM_FILES%\ffdshow\languages\is-JS776.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1042.ko
- from %PROGRAM_FILES%\ffdshow\languages\is-GJCMS.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1045.pl
- from %PROGRAM_FILES%\ffdshow\languages\is-AC47C.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1040.it
- from %PROGRAM_FILES%\ffdshow\languages\is-B662A.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1041.ja
- from %PROGRAM_FILES%\ffdshow\languages\is-1OQ5Q.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1051.sk
- from %PROGRAM_FILES%\ffdshow\languages\is-DG66V.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1053.sv
- from %PROGRAM_FILES%\ffdshow\languages\is-1JEPK.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1046.br
- from %PROGRAM_FILES%\ffdshow\languages\is-SD2CK.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1049.ru
- from %PROGRAM_FILES%\ffdshow\languages\is-D0CSG.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1031.de
- from %PROGRAM_FILES%\ffdshow\languages\is-68L3F.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1033.en
- from %PROGRAM_FILES%\ffdshow\languages\is-PCTB8.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1028.tc
- from %PROGRAM_FILES%\ffdshow\languages\is-PJI7O.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1029.cs
- from %PROGRAM_FILES%\ffdshow\languages\is-VJUNB.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1036.fr
- from %PROGRAM_FILES%\ffdshow\languages\is-PBG0K.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1038.hu
- from %PROGRAM_FILES%\ffdshow\languages\is-K1L2G.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1034.es
- from %PROGRAM_FILES%\ffdshow\languages\is-THFAU.tmp to %PROGRAM_FILES%\ffdshow\languages\ffdshow.1035.fi
- ClassName: 'Shell_TrayWnd' WindowName: ''