Trojan.Win32.Yakes.txne_c2f1618e56

Trojan.Win32.Yakes.txne (Kaspersky), GenericEmailWorm.YR (Lavasoft MAS) Behaviour: Trojan, Worm, EmailWorm The description has been automatically generated by Lavasoft Malware Analysis System and it ...
Blog rating:2 out of5 with1 ratings

Trojan.Win32.Yakes.txne_c2f1618e56

by malwarelabrobot on August 27th, 2017 in Malware Descriptions.

Trojan.Win32.Yakes.txne (Kaspersky), GenericEmailWorm.YR (Lavasoft MAS)
Behaviour: Trojan, Worm, EmailWorm


The description has been automatically generated by Lavasoft Malware Analysis System and it may contain incomplete or inaccurate information.

Requires JavaScript enabled!

Summary
Dynamic Analysis
Static Analysis
Network Activity
Map
Strings from Dumps
Removals

MD5: c2f1618e5667dfe720e7fce490935a64
SHA1: ff379f4549778f1465eab70379af112cfa4d606a
SHA256: 63862e4cb8904def5090d499e735a5dc76bf3ccbbd628c6ff042b71742968d6d
SSDeep: 24576:ne86oFXEnhhxlOnzDqn3P2AnXspEc45Un3S0b8FDT78cRE/I ZjMJZeMky:ne0XIhSq/HXspEcPnivFDTvWfIPe
Size: 2281984 bytes
File type: EXE
Platform: WIN32
Entropy: Packed
PEID: UPolyXv05_v6
Company:
Created at: 2017-08-02 12:30:20
Analyzed on: Windows7 SP1 32-bit


Summary:

Trojan. A program that appears to do one thing but actually does another (a.k.a. Trojan Horse).

Payload

Behaviour Description
EmailWorm Worm can send e-mails.


Process activity

The Trojan creates the following process(es):
No processes have been created.
The Trojan injects its code into the following process(es):

%original file name%.exe:1912

Mutexes

The following mutexes were created/opened:
No objects were found.

File activity

No files have been created.

Registry activity

The process %original file name%.exe:1912 makes changes in the system registry.
The Trojan creates and/or sets the following values in system registry:

[HKLM\System\CurrentControlSet\services\eventlog\Application\s3svc]
"EventMessageFile" = "c:\%original file name%.exe"
"TypesSupported" = "7"

Dropped PE files

There are no dropped PE files.

HOSTS file anomalies

No changes have been detected.

Rootkit activity

No anomalies have been detected.

Propagation

VersionInfo

Company Name: IObit
Product Name: Advanced SystemCare ReProcess
Product Version: 1.0.0.0
Legal Copyright: copyright(c)2005-2014
Legal Trademarks: IObit
Original Filename:
Internal Name:
File Version: 1.0.0.2
File Description: Advanced SystemCare ReProcess
Comments:
Language: English (United States)

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Section MD5
.text 4096 202459 202752 3.70519 788a77591a60ec711511731636e49b85
.rdata 208896 102640 102912 0.666885 d4ecf4ff3365ee53e2d2df526d596445
.data 315392 1929148 1928704 5.16553 bd88e7c7240426a38c2354a82ca3df15
.rsrc 2244608 46200 46592 3.02046 6288ec3e1cfdfe110c8e060244e852f5

Dropped from:

Downloaded by:

Similar by SSDeep:

Similar by Lavasoft Polymorphic Checker:

URLs

No activity has been detected.

IDS verdicts (Suricata alerts: Emerging Threats ET ruleset)

Traffic

Web Traffic was not found.

The Trojan connects to the servers at the folowing location(s):

%original file name%.exe_1912:

h.Toh/T
.text
`.rdata
@.data
.rsrc
@.reloc
RC4 for x86, CRYPTOGAMS by <appro@openssl.org>
6-9'6-9'
$6.:$6.:
*?#1*?#1
>8$4,8$4,
AES for x86, CRYPTOGAMS by <appro@openssl.org>
AES for Intel AES-NI, CRYPTOGAMS by <appro@openssl.org>
Camellia for x86 by <appro@openssl.org>
SHA1 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
SHA256 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
SHA512 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
GHASH for x86, CRYPTOGAMS by <appro@openssl.org>
Montgomery Multiplication for x86, CRYPTOGAMS by <appro@openssl.org>
GF(2^m) Multiplication for x86, CRYPTOGAMS by <appro@openssl.org>
8DKEYt
DKEY
8DKEYu
vhVj%Sj
//!"#$%&'()/*/// ,-/.
x@j%Sj
)<,u%S
9|$,v%U
FtPWW
FtPU
j.Yf;
_tcPVj@
.PjRW
Cv.SCv
%s/%s
Blacklisted by rule: %s:%s
:\output\out-blfromcfg.txt
\output\out-blcfg.txt
%sd:d:d %s
\blfromcfg.txt
\blcfg.txt
\output\out-blfromcfg.txt
%s-%ld
\output\log.txt
\output\msgids.txt
ip.txt
Mozilla
2,5,0,854
Linux\dkimsign.cpp
-----BEGIN RSA PRIVATE KEY-----
-----END RSA PRIVATE KEY-----
DomainKey-Signature: a=rsa-sha1; q=dns; c=%s;
s=%s; d=%s;
h=%s;
b=%s;
DomainKey-Trace:
%d.%d.%d.%d
dev.null
Linux\domainkeys.cpp
_domainkey.
_domainkey.%s
DomainKey-Signature:
._domainkey.
%s._domainkey.%s
DK_STAT_BADSIG: Signature was available but failed to verify against domain specified key
DK_STAT_NOKEY: No public key available (permanent failure)
DK_STAT_BADKEY: Unusable key, public if verifying, private if signing.
DK_STAT_CANTVRFY: Cannot get domain key to verify signature (temporary failure)
DK_STAT_REVOKED: Key has been revoked.
<td style="padding:0;margin:0" height=%d>
<a href="%s">
<img src="<%d,%d,%d,%d,%d>%s" border=0 vspace=0 hspace=0 width=%d height=%d>
Successfully sent using SMTP account %s (%d of %ld messages to %s)
Successfully sent %d of %ld messages to %s
Sending to %s in the same connection
New connection required, will send to %s
Mail transaction for %s is over.
Domain %s is bad (found in cache)
Domain %s found in cache
Domain %s isn't found in cache, resolving it
All tries to resolve %s failed.
Resolving %s using DNS server
Failed to receive response for %s from DNS server
Got DNS server response: domain %s is bad
Got error %d in response for %s from DNS server
MX's IP for domain %s found in cache:
Timeout waiting for domain %s to be resolved
No valid MXes for domain %s. Marking it as bad
Resolving MX %s using existing connection to DNS server
All tries to resolve MX for %s are failed
Resolving MX %s using DNS server
Failed to receive response for MX %s from DNS server
127.0.0.1
0.0.0.0
Got DNS server response: MX's address %s is bad. Trying another MX
Got error in response for MX %s from DNS server
Got some crap in response for MX %s from DNS server
MX %s successfully resolved to
All tries to resolve proxylock for %s failed.
Resolving proxylock for %s using DNS server
%d.%d.%d.%d.in-addr.arpa
Failed to receive response for proxylock %s from DNS server
Got DNS server response: no proxylock for %s
Got error in response for proxylock %s from DNS server
.com.net.org.gov.edu.biz.info
Proxy %s resolved to domain %s
Using inner proxy [%c]:
Using proxy [%c]:
Failed to connect to proxy %s
Successfully connected to proxy %s
Trying to establish SOCKS4 tunnel to %s via %s
SOCKS4 tunnel to %s via %s is established
SOCKS4 connection to %s via %s failed.
Trying HTTPS
Trying to establish HTTPS tunnel to %s via %s
HTTPS tunnel to %s via %s is established
HTTPS connection to %s via %s failed.
Trying to establish SOCKS5 tunnel to %s via %s
SOCKS5 tunnel to %s via %s is established
Bad SOCKS5 proxy %s, disabled
Failed to establish SOCKS5 tunnel to %s via %s
Empty HTTPS response from proxy
HTTP/1.0 407
HTTP/1.0 403
HTTP/1.0 50
HTTPS error (403 or 50) from proxy
Bad HTTPS response (No success code or HTML) from proxy
%s:%s
Proxy-Authorization: Basic %s
CONNECT %d.%d.%d.%d:%d HTTP/1.0
Connecting to %s (MX=%s) directly
Successfully connected to %s (MX=%s)
Failed to receive greeting from %s
Negative POP3 greeting from %s:
IP %s is blacklisted for the domain %s:
Negative greeting from %s:
Got greeting from %s
%s %s
Sending '%s %s' to %s
Failed to receive response for HELO from %s
Got error or empty response for HELO from %s
Negative response for HELO from %s:
Got positive response for HELO from %s
LOGIN
MAIL FROM: <%s>
Sending 'MAIL FROM: <%s>' to %s
Failed to receive response for MAIL FROM from %s
Negative response for MAIL FROM from %s:
Got positive response for MAIL FROM from %s
RCPT TO: <%s>
Sending 'RCPT TO: <%s>' to %s
Failed to receive response for RCPT TO from %s
Negative response for 'RCPT TO: <%s>' from %s:
Positive response for 'RCPT TO: <%s>' from %s
No valid emails in the transaction for %s
Transaction for %s is over, %d emails of %ld are valid
Sending DATA to %s
Failed to receive response for DATA from %s
Negative response for DATA from %s:
IP %s is throttled out for the domain %s
Got positive response for DATA from %s
Error sending the next portion of message to %s
Sending the next portion of message (bytes %ld to %ld) to %s
Failed to receive response for '.' from %s
Negative response for '.' from %s:
This user doesn't have a yahoo.com
The message to %s is sent successfully.
Sending 'RSET' to %s
RSET failed for %s, opening new connection
Sending STARTTLS to %s
Failed to receive response for STARTTLS from %s
Negative response for STARTTLS from %s:
Trying to establish TLS with %s
TLS handshake with %s failed
TLS channel to %s is established, sending EHLO once again
Sending AUTH PLAIN to %s
Failed to receive response for AUTH PLAIN from %s
Negative response for AUTH PLAIN from %s:
Got positive response for AUTH PLAIN from %s
Sending login/password to %s
Invalid format of SMTP account %s
Failed to receive response for login/password from %s
Negative response for login/password from %s:
Got positive response for login/password from %s
AUTH LOGIN
Sending AUTH LOGIN to %s
Failed to receive response for AUTH LOGIN from %s
Negative response for AUTH LOGIN from %s:
Got positive response for AUTH LOGIN from %s
Sending login to %s
Failed to receive response for login from %s
Negative response for login from %s:
Got positive response for login from %s
Sending password to %s
Failed to receive response for password from %s
Negative response for password from %s:
Got positive response for password from %s
Sending AUTH CRAM-MD5 to %s
Failed to receive response for AUTH CRAM-MD5 from %s
Negative response for AUTH CRAM-MD5 from %s:
Got positive response for AUTH CRAM-MD5 from %s
All local IPs are blacklisted in the domain %s
Sending CRAM-MD5 response to %s
Waiting %ld sec for greylisted IP %s to be expired in %s
Failed to receive response for CRAM-MD5 response from %s
Negative response for CRAM-MD5 response from %s:
Got positive response for CRAM-MD5 response from %s
USER %s
Sending USER to %s
Failed to receive response for USER from %s
All tries to send the message to %s failed
Negative response for USER from %s:
Got positive response for USER from %s
Failed to resolve MX for %s
PASS %s
Sending PASS to %s
Failed to receive response for PASS from %s
Negative response for PASS from %s:
Got positive response for PASS from %s
Sending STAT to %s
All tries to connect to %s via proxies failed
Failed to receive response for STAT from %s
Negative response for STAT from %s:
Got positive response for STAT from %s
Sending QUIT to %s
Received a part of response: %s
Failed to send a message to %s, retrying (%d tries left)
Failed to send a message to %s.
SMTP
ESMTP
ASMTP
group21.345mail.com
relay.2yahoo.com
smtp.endend.nl
mail.webhostings4u.com
rsmail.alkoholic.net
mx.reskind.net
public.micromail.com.au
smtp4.cyberemailings.com
mailout.endmonthnow.com
webmail.halftomorrow.com
rly04.hottestmile.com
smtp18.yenddx.com
smtp-server1.cfdenselr.com
relay37.vosimerkam.net
mmx09.tilkbans.com
mtu23.bigping.com
mtu67.syds.piswix.net
asx121.turbo-inline.com
qrx.quickslick.com
mail.gimmicc.net
qnx.mdrost.com
mxs.perenter.com
relay-x.misswldrs.com
smtp.doneohx.com
{%DOMAIN%}
smtp.mixedthings.net
nntp.pinxodet.net
snmp.otwaloow.com
external.newsubdomain.com
m1.gns.snv.thisdomainl.com
mail.naihautsui.co.kr
mts.locks.grgtween.net
mx03.listsystemsf.net
Received: from unknown (%s)
Received: from %s ([%s])
Received: from [%s]
Received: from %s [%s]
Received: from %s ([%s])
Received: from unknown (HELO %s) (%s)
%sby %s with %s; %s
%s"%s" <%s>
%s<%s>
{%%MAILLISTCOLUMN%d%%}
\synonyms.txt
{%CHR:
{%%ROTF$:%s%%}
{%%CHR:%s%%}
name="%s"
filename="%s"
{%RANDOMLY%}Reply-To: {%FROM%}
From: {%FROM%}
{%%INCLUDE_BASE64:%s%%}
Message-ID: {%MSGID%}
{%NOT_OUTLOOK%}Date: {ÚTE%}
{%%RANDOMLY%%}Reply-To: "=?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%FROMNAME%%}{%%END_BASE64%%}?=" <{%%FROMEMAIL%%}>
From: "=?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%FROMNAME%%}{%%END_BASE64%%}?=" <{%%FROMEMAIL%%}>
{%NOT_OUTLOOK%}{%USERAGENT_HEADER%}
Subject: =?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%SUBJECT%%}{%%END_BASE64%%}?=
{%%OUTLOOK%%}Date: {%ÚTE%%}
Subject: {%SUBJECT%}
{%OUTLOOK%}Date: {ÚTE%}
charset="{%CHARSET%}"
{%OUTLOOK%}{%XMAILER_HEADER%}
{%OUTLOOK%}{%PLAINTEXT_MSG%}
charset="{%CHARSET%}"{%OUTLOOK%}
{%%NOT_OUTLOOK%%}Content-Transfer-Encoding: %s
{%OUTLOOK%}<META http-equiv=Content-Type content="text/html; charset={%CHARSET%}">
{%CHARSET%}
{%%RND$:%s%%}
{%MSGID%}
{%MSGIDPART%}
{%SS%}
{%%EMBIMG%d%%}
ROTURL:
X-Mailer: %s
{%XMAILER_HEADER%}
User-Agent: %s
{%USERAGENT_HEADER%}
%%%2x
HEXURL:
cid:{%%EMBIMG%d%%}
{%SUBJECT%}
&#x%%0%dx;
To: "%s" <%s>
To: <%s>
--{%%BOUNDARY%d%%}
Content-Type: audio/%s;
name="{%%RND:<l15>%%}.%s"
Content-ID: <{%%EMBIMG%d%%}>
%s{%%INCLUDE_BASE64:%s%%}%s
{ÚTE%}
Content-Type: image/%s;
{ÚTEBEFORE%}
{Ý%}
{%%%s%%}
"%s" <%s>
{%FROM%}
{%FROMEMAIL%}
{%FROMNAME%}
%s\%s.mac
{%FROMACCOUNT%}
{%FROMDOMAIN%}
{%PLAINTEXT_MSG%}
<SPAN STYLE="display:none">%s</SPAN>
----=_NextPart_000_00X_lX.lX
<FFFFFFFF.FFFFFFFF
FFFFFFFF.FFFFFFFF
@{%FROMDOMAIN%}
%a, %d %b %Y %H:%M:%S
%s % .2d00
<FONT color=#%2x%2x%2x>
{%ROTURL:
0123456789ABCDEF-d-d-d%s
d:d:d %s
hXXp://
TypesSupported
Failed to download settings: InternetConnect failed (%d)
%s/%d
Failed to download settings: HttpOpenRequest failed (%d)
Failed to download settings: HttpSendRequest failed (%d)
Failed to download settings: InternetReadFile failed (%d)
Advapi32.dll
RegOpenKeyTransactedA
RegCreateKeyTransactedA
RegDeleteKeyTransactedA
FRegDeleteKeyExA
HKEY_CLASSES_ROOT
HKEY_CURRENT_USER
HKEY_LOCAL_MACHINE
HKEY_USERS
HKEY_PERFORMANCE_DATA
HKEY_DYN_DATA
HKEY_CURRENT_CONFIG
[GetDataBlock returning %d
[GetCode(,%d,%d) returning %d]
[LWZReadByte(,%d,%d) returning %d]
gd-jpeg: JPEG library reports unrecoverable error:
CREATOR: gd-jpeg v%s (using IJG JPEG v%d),
quality = %d
gd_jpeg: warning: jpeg_write_scanlines returns %u -- expected 1
gd-jpeg: warning: jpeg_read_header returns %d, expected %d
gd-jpeg: warning: JPEG image height (%u) is greater than INT_MAX (%d) (and thus greater than gd can handle)
gd-jpeg: warning: JPEG image width (%u) is greater than INT_MAX (%d) (and thus greater than gd can handle)
gd-jpeg: warning: jpeg_start_decompress reports suspended data source
gd-jpeg: error: JPEG color quantization request resulted in output_components == %d (expected 3 for RGB)
gd-jpeg: error: JPEG color quantization request resulted in output_components == %d (expected 4 for CMYK)
gd-jpeg: error: jpeg_read_scanlines returns %u, expected 1
gd-jpeg: warning: jpeg_finish_decompress reports suspended data source
gd warning: one parameter to a memory allocation multiplication is negative, failing operation gracefully
gd warning: product of memory allocation multiplication would exceed INT_MAX, failing operation gracefully
Bogus message code %d
Invalid component ID %d in SOS
IDCT output block size %d not supported
Wrong JPEG library version: library is %d, caller expects %d
Invalid memory pool code %d
Unsupported JPEG data precision %d
Invalid progressive parameters Ss=%d Se=%d Ah=%d Al=%d
Invalid progressive parameters at scan script entry %d
Invalid scan script at entry %d
Improper call to JPEG library in state %d
JPEG parameter struct mismatch: library thinks size is %u, caller expects %u
Buffer passed to JPEG library is too small
Too many color components: %d, max %d
Unsupported color conversion request
Bogus DAC index %d
Bogus DAC value 0x%x
Bogus DHT index %d
Bogus DQT index %d
Empty JPEG image (DNL not supported)
Maximum supported image dimension is %u pixels
Cannot transcode due to multiple use of quantization table %d
Backing store not supported
Huffman table 0xx was not defined
Quantization table 0xx was not defined
Not a JPEG file: starts with 0xx 0xx
Insufficient memory (case %d)
Cannot quantize more than %d color components
Cannot quantize to fewer than %d colors
Cannot quantize to more than %d colors
Unsupported JPEG process: SOF type 0xx
Failed to create temporary file %s
Unsupported marker type 0xx
Unknown APP0 marker (not JFIF), length %u
Adobe APP14 marker: version %d, flags 0xx 0xx, transform %d
Unknown APP14 marker (not Adobe), length %u
Define Arithmetic Table 0xx: 0xx
Define Huffman Table 0xx
Define Quantization Table %d precision %d
Define Restart Interval %u
Freed EMS handle %u
Obtained EMS handle %u
= = = = = = = =
JFIF APP0 marker: version %d.d, density %dx%d %d
Warning: thumbnail image size does not match data length %u
JFIF extension marker: type 0xx, length %u
with %d x %d thumbnail image
Miscellaneous marker 0xx, length %u
Unexpected marker 0xx
%4u %4u %4u %4u %4u %4u %4u %4u
Quantizing to %d = %d*%d*%d colors
Quantizing to %d colors
Selected %d colors for quantization
At marker 0xx, recovery action %d
RST%d
Smoothing not supported with nonstandard sampling ratios
Start Of Frame 0xx: width=%u, height=%u, components=%d
Component %d: %dhx%dv q=%d
Start Of Scan: %d components
Component %d: dc=%d ac=%d
Ss=%d, Se=%d, Ah=%d, Al=%d
Closed temporary file %s
Opened temporary file %s
JFIF extension marker: palette thumbnail image, length %u
JFIF extension marker: JPEG-compressed thumbnail image, length %u
JFIF extension marker: RGB thumbnail image, length %u
Unrecognized component IDs %d %d %d, assuming YCbCr
Freed XMS handle %u
Obtained XMS handle %u
Unknown Adobe color transform code %d
Corrupt JPEG data: %u extraneous bytes before marker 0xx
Inconsistent progression sequence for component %d coefficient %d
Warning: unknown JFIF revision number %d.d
Corrupt JPEG data: found marker 0xx instead of RST%d
%ld%c
OpenSSL 1.0.2g 1 Mar 2016
ALL:!EXPORT:!aNULL:!eNULL:!SSLv2
.\ssl\ssl_cert.c
%-23s %s Kx=%-8s Au=%-4s Enc=%-9s Mac=%-4s%s
EXPORT
EXPORT40
EXPORT56
TLSv1 part of OpenSSL 1.0.2g 1 Mar 2016
SSLv3 part of OpenSSL 1.0.2g 1 Mar 2016
os.length <= (int)sizeof(ret->session_id)
key expansion
client write key
server write key
%s:%d: rec->data != rec->input
s->init_num == (int)s->d1->w_msg_hdr.msg_len   DTLS1_HM_HEADER_LENGTH
((long)msg_hdr->msg_len) > 0
invalid state reached %s:%d
s->d1->w_msg_hdr.msg_len   ((s->version==DTLS1_BAD_VER)?3:DTLS1_CCS_HEADER_LENGTH) == (unsigned int)s->init_num
s->d1->w_msg_hdr.msg_len   DTLS1_HM_HEADER_LENGTH == (unsigned int)s->init_num
retransmit: message %d non-existant
GOST signature length is %d
DTLSv1 part of OpenSSL 1.0.2g 1 Mar 2016
ANY PRIVATE KEY
PRIVATE KEY
ENCRYPTED PRIVATE KEY
.\crypto\pem\pem_pkey.c
x509 certificate routines
DSO support routines
passed a null parameter
error:lX:%s:%s:%s
Stack part of OpenSSL 1.0.2g 1 Mar 2016
x509_pkey
evp_pkey
ssl_cert
ssl_sess_cert
%s(%d): OpenSSL internal error, assertion failed: %s
Diffie-Hellman part of OpenSSL 1.0.2g 1 Mar 2016
lhash part of OpenSSL 1.0.2g 1 Mar 2016
setct-PCertResTBS
setct-CertReqData
setct-CertReqTBS
setct-CertResData
setct-CertInqReqTBS
setct-AcqCardCodeMsgTBE
setct-CertReqTBE
setct-CertReqTBEX
setct-CertResTBE
setCext-certType
setCext-cCertRequired
setAttr-Cert
set-rootKeyThumb
JOINT-ISO-ITU-T
joint-iso-itu-t
msSmartcardLogin
Microsoft Smartcardlogin
proxyCertInfo
Proxy Certificate Information
certicom-arc
certificateIssuer
X509v3 Certificate Issuer
id-PasswordBasedMAC
password based MAC
dhKeyAgreement
id-Gost28147-89-CryptoPro-KeyMeshing
id-Gost28147-89-None-KeyMeshing
challengePassword
extendedCertificateAttributes
nsCertExt
Netscape Certificate Extension
LocalKeySet
Microsoft Local Key set
nsCertType
Netscape Cert Type
nsBaseUrl
Netscape Base Url
nsRevocationUrl
Netscape Revocation Url
nsCaRevocationUrl
Netscape CA Revocation Url
nsRenewalUrl
Netscape Renewal Url
nsCaPolicyUrl
Netscape CA Policy Url
nsCertSequence
supportedApplicationContext
Netscape Certificate Sequence
subjectKeyIdentifier
userPassword
X509v3 Subject Key Identifier
userCertificate
keyUsage
cACertificate
X509v3 Key Usage
privateKeyUsagePeriod
certificateRevocationList
X509v3 Private Key Usage Period
crossCertificatePair
supportedAlgorithms
certificatePolicies
X509v3 Certificate Policies
authorityKeyIdentifier
X509v3 Authority Key Identifier
anyExtendedKeyUsage
Any Extended Key Usage
extendedKeyUsage
dhSinglePass-stdDH-sha1kdf-scheme
X509v3 Extended Key Usage
dhSinglePass-stdDH-sha224kdf-scheme
dhSinglePass-stdDH-sha256kdf-scheme
dhSinglePass-stdDH-sha384kdf-scheme
dhSinglePass-stdDH-sha512kdf-scheme
TLS Web Server Authentication
dhSinglePass-cofactorDH-sha1kdf-scheme
dhSinglePass-cofactorDH-sha224kdf-scheme
TLS Web Client Authentication
dhSinglePass-cofactorDH-sha256kdf-scheme
dhSinglePass-cofactorDH-sha384kdf-scheme
dhSinglePass-cofactorDH-sha512kdf-scheme
ct_precert_scts
CT Precertificate SCTs
ct_precert_poison
CT Precertificate Poison
ct_precert_signer
CT Precertificate Signer
ct_cert_scts
CT Certificate SCTs
pbeWithSHA1And3-KeyTripleDES-CBC
pbeWithSHA1And2-KeyTripleDES-CBC
keyBag
pkcs8ShroudedKeyBag
certBag
localKeyID
x509Certificate
sdsiCertificate
id-smime-mod-msg-v3
id-smime-ct-publishCert
id-smime-aa-msgSigDigest
id-smime-aa-encrypKeyPref
id-smime-aa-signingCertificate
id-smime-aa-smimeEncryptCerts
id-smime-aa-ets-otherSigCert
id-smime-aa-ets-CertificateRefs
id-smime-aa-ets-certValues
id-smime-aa-ets-certCRLTimestamp
id-mod-qualified-cert-88
id-mod-qualified-cert-93
id-mod-attribute-cert
id-it-caProtEncCert
id-it-signKeyPairTypes
id-it-encKeyPairTypes
id-it-caKeyUpdateInfo
id-it-unsupportedOIDs
id-it-keyPairParamReq
id-it-keyPairParamRep
id-it-revPassphrase
id-regCtrl-oldCertID
id-regCtrl-protocolEncrKey
id-regInfo-certReq
id-cmc-getCert
id-cmc-confirmCertAcceptance
id-ecPublicKey
set-msgExt
set-certExt
certificate extensions
setct-AcqCardCodeMsg
setct-PCertReqData
EVP part of OpenSSL 1.0.2g 1 Mar 2016
cert_info
crlUrl
certs
issuerKeyHash
OCSP_CERTID
reqCert
value.byName
value.byKey
value.good
value.revoked
value.unknown
OCSP_CERTSTATUS
certId
certStatus
Big Number part of OpenSSL 1.0.2g 1 Mar 2016
.\crypto\engine\eng_pkey.c
PEM part of OpenSSL 1.0.2g 1 Mar 2016
Enter PEM pass phrase:
phrase is too short, needs to be at least %d chars
X509 CERTIFICATE
CERTIFICATE
NEW CERTIFICATE REQUEST
CERTIFICATE REQUEST
TRUSTED CERTIFICATE
0123456789
.\crypto\ec\ec_key.c
RSA part of OpenSSL 1.0.2g 1 Mar 2016
DH Private-Key
DH Public-Key
%s: (%d bit)
private-key:
public-key:
x%s
recommended-private-length: %d bits
X.509 part of OpenSSL 1.0.2g 1 Mar 2016
OPENSSL_ALLOW_PROXY_CERTS
unable to get issuer certificate
unable to get certificate CRL
unable to decrypt certificate's signature
unable to decode issuer public key
certificate signature failure
certificate is not yet valid
certificate has expired
format error in certificate's notBefore field
format error in certificate's notAfter field
self signed certificate
self signed certificate in certificate chain
unable to get local issuer certificate
unable to verify the first certificate
certificate chain too long
certificate revoked
invalid CA certificate
invalid non-CA certificate (has CA markings)
proxy certificates not allowed, please set the appropriate flag
unsupported certificate purpose
certificate not trusted
certificate rejected
authority and subject key identifier mismatch
key usage does not include certificate signing
unable to get CRL issuer certificate
key usage does not include CRL signing
key usage does not include digital signature
invalid or inconsistent certificate extension
invalid or inconsistent certificate policy extension
Unsupported extension feature
name constraints minimum and maximum not supported
unsupported name constraint type
unsupported or invalid name constraint syntax
unsupported or invalid name syntax
Suite B: certificate version invalid
Suite B: invalid public key algorithm
j <= (int)sizeof(ctx->key)
EC part of OpenSSL 1.0.2g 1 Mar 2016
ASN.1 part of OpenSSL 1.0.2g 1 Mar 2016
SHA1 part of OpenSSL 1.0.2g 1 Mar 2016
SHA-256 part of OpenSSL 1.0.2g 1 Mar 2016
SHA-512 part of OpenSSL 1.0.2g 1 Mar 2016
MD5 part of OpenSSL 1.0.2g 1 Mar 2016
.\crypto\dh\dh_key.c
pub_key
priv_key
RSA PRIVATE KEY
DSA PRIVATE KEY
EC PRIVATE KEY
?456789:;<=
!"#$%&'()* ,-./0123
DSA part of OpenSSL 1.0.2g 1 Mar 2016
value.set
value.single
pkeyalg
pkey
PKCS8_PRIV_KEY_INFO
.\crypto\evp\evp_pkey.c
value.named_curve
value.parameters
value.implicitlyCA
privateKey
publicKey
EC_PRIVATEKEY
p.other
p.onBasis
p.tpBasis
p.ppBasis
p.prime
p.char_two
d.other
d.data
d.sign
d.enveloped
d.signed_and_enveloped
d.digest
d.encrypted
cert
key_enc_algor
enc_key
public_key
X509_PUBKEY
.\crypto\asn1\x_pubkey.c
pubkey
Content-Length: %d
%s %s HTTP/1.0
Load certs from files in a directory
%s%clx.%s%d
\X
keyid
X509_CERT_AUX
X509_CERT_PAIR
AUTHORITY_KEYID
d.otherName
d.rfc822Name
d.dNSName
d.directoryName
d.ediPartyName
d.uniformResourceIdentifier
d.iPAddress
d.registeredID
Key Compromise
keyCompromise
Cessation Of Operation
cessationOfOperation
Certificate Hold
certificateHold
name.fullname
name.relativename
%*s%s:
%*sOnly User Certificates
%*sOnly CA Certificates
%*sOnly Attribute Certificates
%d.%d.%d.%d/%d.%d.%d.%d
PROXY_CERT_INFO_EXTENSION
RAND part of OpenSSL 1.0.2g 1 Mar 2016
You need to read the OpenSSL FAQ, hXXp://VVV.openssl.org/support/faq.html
DES part of OpenSSL 1.0.2g 1 Mar 2016
libdes part of OpenSSL 1.0.2g 1 Mar 2016
IDEA part of OpenSSL 1.0.2g 1 Mar 2016
RC2 part of OpenSSL 1.0.2g 1 Mar 2016
AES part of OpenSSL 1.0.2g 1 Mar 2016
.pp@0
aEÐ
 (#EÚ
ÚE<<0
TXT_DB part of OpenSSL 1.0.2g 1 Mar 2016
nkey <= EVP_MAX_KEY_LENGTH
.\crypto\evp\evp_key.c
%s %s%lu (%s0x%lx)
ddddddZ
ddddddZ
Private-Key: (%d bit)
Public-Key: (%d bit)
Private-Key
Public-Key
CONF part of OpenSSL 1.0.2g 1 Mar 2016
/usr/local/ssl/certs
/usr/local/ssl/cert.pem
SSL_CERT_DIR
SSL_CERT_FILE
rsa_keygen_bits
rsa_keygen_pubexp
hexkey
ECDSA part of OpenSSL 1.0.2g 1 Mar 2016
ECDH part of OpenSSL 1.0.2g 1 Mar 2016
NETSCAPE_CERT_SEQUENCE
keylen <= sizeof key
EVP_CIPHER_key_length(cipher) <= (int)sizeof(md_tmp)
'() ,-./:=?
%s - d:d:d%.*s %d%s
<unsupported>
othername:<unsupported>
X400Name:<unsupported>
EdiPartyName:<unsupported>
email:%s
DNS:%s
URI:%s
IP Address:%d.%d.%d.%d
CERTIFICATEPOLICIES
d.cpsuri
d.usernotice
%*sCPS: %s
%*sOrganization: %s
%*sNumber%s:
%*sExplicit Text: %s
ADVAPI32.DLL
KERNEL32.DLL
NETAPI32.DLL
USER32.DLL
CMS_CertificateChoices
d.issuerAndSerialNumber
d.subjectKeyIdentifier
d.crl
certificates
keyEncryptionAlgorithm
encryptedKey
CMS_KeyTransRecipientInfo
keyAttrId
keyAttr
CMS_OtherKeyAttribute
CMS_RecipientKeyIdentifier
d.rKeyId
CMS_KeyAgreeRecipientIdentifier
CMS_RecipientEncryptedKey
CMS_OriginatorPublicKey
d.originatorKey
CMS_OriginatorIdentifierOrKey
recipientEncryptedKeys
CMS_KeyAgreeRecipientInfo
keyIdentifier
keyDerivationAlgorithm
CMS_PasswordRecipientInfo
d.ktri
d.kari
d.kekri
d.pwri
d.ori
d.signedData
d.envelopedData
d.digestedData
d.encryptedData
d.authenticatedData
d.compressedData
d.allOrFirstTier
d.receiptList
keyInfo
otherCertFormat
otherCert
CMS_OtherCertificateFormat
d.certificate
d.extendedCertificate
d.v1AttrCert
d.v2AttrCert
ASN1 OID: %s
NIST CURVE: %s
Field Type: %s
Basis Type: %s
CONF_def part of OpenSSL 1.0.2g 1 Mar 2016
[%s] %s=%s
[[%s]]
%'%1$=%C%K%O%s%
.%.-.3.7.9.?.W.[.o.y.
C%C'C3C7C9COCWCiC
keyfunc
keylength
X:
.\crypto\pkcs12\p12_key.c
.\crypto\asn1\x_pkey.c
Key Encipherment
keyEncipherment
Key Agreement
keyAgreement
Certificate Sign
keyCertSign
EXTENDED_KEY_USAGE
PKEY_USAGE_PERIOD
%*sZone: %s, User:
.\crypto\x509v3\v3_skey.c
.\crypto\x509v3\v3_akey.c
%*scrlUrl:
%*sPolicy Text: %s
XX
%.14s.dZ
%*sSigned Certificate Timestamp:
%lu:%s:%s:%d:%s
Verifying - %s
%s.dll
value.other
value.x509cert
value.sdsicert
value.keybag
value.shkeybag
value.safes
value.bag
function not supported
operation canceled
address_family_not_supported
operation_in_progress
operation_not_supported
protocol_not_supported
operation_would_block
address family not supported
broken pipe
inappropriate io control operation
not supported
operation in progress
operation not permitted
operation not supported
operation would block
protocol not supported
Operation not permitted
Inappropriate I/O control operation
Broken pipe
GetProcessWindowStation
operator
WS2_32.dll
InternetOpenUrlA
HttpOpenRequestA
HttpSendRequestA
WININET.dll
IPHLPAPI.DLL
RPCRT4.dll
DNSAPI.dll
GetProcessHeap
CreateIoCompletionPort
KERNEL32.dll
USER32.dll
ReportEventA
RegCreateKeyA
RegOpenKeyA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyW
ADVAPI32.dll
ole32.dll
OLEAUT32.dll
GetCPInfo
PeekNamedPipe
l}C.we
zcÁ
c:\%original file name%.exe
version="1.0.0.0"
name="Microsoft.Windows.Common-Controls"
version="6.0.0.0"
publicKeyToken="6595b64144ccf1df"
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"><assemblyIdentity version="1.0.0.0" processorArchitecture="x86" name="sse" type="win32"></assemblyIdentity><description>sse</description><dependency><dependentAssembly><assemblyIdentity type="win32" name="Microsoft.Windows.Common-Controls" version="6.0.0.0" processorArchitecture="X86" publicKeyToken="6595b64144ccf1df" language="*"></assemblyIdentity></dependentAssembly></dependency><trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"><security><requestedPrivileges><requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel></requestedPrivileges></security></trustInfo></assembly>PPADDINGXXPADDING
7(8,8084888
< <$<(<,<
6l6
6 6$6(6,60646~6
004080<0@0
= =$=(=,=0=4=8=<=
0-040C0Q0g0n0}0
9 9$9(959
3%4U4
9%9-949[9
> >$>(>,>0>4>8>`?
3 3C6k6y6Œ8\8c8k8p8t8x8
2 2&202;2~2
> >$>(>,>0>4>8>
0(1,1\1`1
7(8,8\8`8
1 1$1,101
7 7$70787@7
;(;,;0;8;@;
? ?$?0?@?
; ;$;(;,;
Tmscoree.dll
kernel32.dll
portuguese-brazilian
- floating point support not loaded
- CRT not initialized
- Attempt to initialize the CRT more than once.
sse.exe

%original file name%.exe_1912_rwx_00400000_001C9000:

h.Toh/T
.text
`.rdata
@.data
.rsrc
@.reloc
RC4 for x86, CRYPTOGAMS by <appro@openssl.org>
6-9'6-9'
$6.:$6.:
*?#1*?#1
>8$4,8$4,
AES for x86, CRYPTOGAMS by <appro@openssl.org>
AES for Intel AES-NI, CRYPTOGAMS by <appro@openssl.org>
Camellia for x86 by <appro@openssl.org>
SHA1 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
SHA256 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
SHA512 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
GHASH for x86, CRYPTOGAMS by <appro@openssl.org>
Montgomery Multiplication for x86, CRYPTOGAMS by <appro@openssl.org>
GF(2^m) Multiplication for x86, CRYPTOGAMS by <appro@openssl.org>
8DKEYt
DKEY
8DKEYu
vhVj%Sj
//!"#$%&'()/*/// ,-/.
x@j%Sj
)<,u%S
9|$,v%U
FtPWW
FtPU
j.Yf;
_tcPVj@
.PjRW
Cv.SCv
%s/%s
Blacklisted by rule: %s:%s
:\output\out-blfromcfg.txt
\output\out-blcfg.txt
%sd:d:d %s
\blfromcfg.txt
\blcfg.txt
\output\out-blfromcfg.txt
%s-%ld
\output\log.txt
\output\msgids.txt
ip.txt
Mozilla
2,5,0,854
Linux\dkimsign.cpp
-----BEGIN RSA PRIVATE KEY-----
-----END RSA PRIVATE KEY-----
DomainKey-Signature: a=rsa-sha1; q=dns; c=%s;
s=%s; d=%s;
h=%s;
b=%s;
DomainKey-Trace:
%d.%d.%d.%d
dev.null
Linux\domainkeys.cpp
_domainkey.
_domainkey.%s
DomainKey-Signature:
._domainkey.
%s._domainkey.%s
DK_STAT_BADSIG: Signature was available but failed to verify against domain specified key
DK_STAT_NOKEY: No public key available (permanent failure)
DK_STAT_BADKEY: Unusable key, public if verifying, private if signing.
DK_STAT_CANTVRFY: Cannot get domain key to verify signature (temporary failure)
DK_STAT_REVOKED: Key has been revoked.
<td style="padding:0;margin:0" height=%d>
<a href="%s">
<img src="<%d,%d,%d,%d,%d>%s" border=0 vspace=0 hspace=0 width=%d height=%d>
Successfully sent using SMTP account %s (%d of %ld messages to %s)
Successfully sent %d of %ld messages to %s
Sending to %s in the same connection
New connection required, will send to %s
Mail transaction for %s is over.
Domain %s is bad (found in cache)
Domain %s found in cache
Domain %s isn't found in cache, resolving it
All tries to resolve %s failed.
Resolving %s using DNS server
Failed to receive response for %s from DNS server
Got DNS server response: domain %s is bad
Got error %d in response for %s from DNS server
MX's IP for domain %s found in cache:
Timeout waiting for domain %s to be resolved
No valid MXes for domain %s. Marking it as bad
Resolving MX %s using existing connection to DNS server
All tries to resolve MX for %s are failed
Resolving MX %s using DNS server
Failed to receive response for MX %s from DNS server
127.0.0.1
0.0.0.0
Got DNS server response: MX's address %s is bad. Trying another MX
Got error in response for MX %s from DNS server
Got some crap in response for MX %s from DNS server
MX %s successfully resolved to
All tries to resolve proxylock for %s failed.
Resolving proxylock for %s using DNS server
%d.%d.%d.%d.in-addr.arpa
Failed to receive response for proxylock %s from DNS server
Got DNS server response: no proxylock for %s
Got error in response for proxylock %s from DNS server
.com.net.org.gov.edu.biz.info
Proxy %s resolved to domain %s
Using inner proxy [%c]:
Using proxy [%c]:
Failed to connect to proxy %s
Successfully connected to proxy %s
Trying to establish SOCKS4 tunnel to %s via %s
SOCKS4 tunnel to %s via %s is established
SOCKS4 connection to %s via %s failed.
Trying HTTPS
Trying to establish HTTPS tunnel to %s via %s
HTTPS tunnel to %s via %s is established
HTTPS connection to %s via %s failed.
Trying to establish SOCKS5 tunnel to %s via %s
SOCKS5 tunnel to %s via %s is established
Bad SOCKS5 proxy %s, disabled
Failed to establish SOCKS5 tunnel to %s via %s
Empty HTTPS response from proxy
HTTP/1.0 407
HTTP/1.0 403
HTTP/1.0 50
HTTPS error (403 or 50) from proxy
Bad HTTPS response (No success code or HTML) from proxy
%s:%s
Proxy-Authorization: Basic %s
CONNECT %d.%d.%d.%d:%d HTTP/1.0
Connecting to %s (MX=%s) directly
Successfully connected to %s (MX=%s)
Failed to receive greeting from %s
Negative POP3 greeting from %s:
IP %s is blacklisted for the domain %s:
Negative greeting from %s:
Got greeting from %s
%s %s
Sending '%s %s' to %s
Failed to receive response for HELO from %s
Got error or empty response for HELO from %s
Negative response for HELO from %s:
Got positive response for HELO from %s
LOGIN
MAIL FROM: <%s>
Sending 'MAIL FROM: <%s>' to %s
Failed to receive response for MAIL FROM from %s
Negative response for MAIL FROM from %s:
Got positive response for MAIL FROM from %s
RCPT TO: <%s>
Sending 'RCPT TO: <%s>' to %s
Failed to receive response for RCPT TO from %s
Negative response for 'RCPT TO: <%s>' from %s:
Positive response for 'RCPT TO: <%s>' from %s
No valid emails in the transaction for %s
Transaction for %s is over, %d emails of %ld are valid
Sending DATA to %s
Failed to receive response for DATA from %s
Negative response for DATA from %s:
IP %s is throttled out for the domain %s
Got positive response for DATA from %s
Error sending the next portion of message to %s
Sending the next portion of message (bytes %ld to %ld) to %s
Failed to receive response for '.' from %s
Negative response for '.' from %s:
This user doesn't have a yahoo.com
The message to %s is sent successfully.
Sending 'RSET' to %s
RSET failed for %s, opening new connection
Sending STARTTLS to %s
Failed to receive response for STARTTLS from %s
Negative response for STARTTLS from %s:
Trying to establish TLS with %s
TLS handshake with %s failed
TLS channel to %s is established, sending EHLO once again
Sending AUTH PLAIN to %s
Failed to receive response for AUTH PLAIN from %s
Negative response for AUTH PLAIN from %s:
Got positive response for AUTH PLAIN from %s
Sending login/password to %s
Invalid format of SMTP account %s
Failed to receive response for login/password from %s
Negative response for login/password from %s:
Got positive response for login/password from %s
AUTH LOGIN
Sending AUTH LOGIN to %s
Failed to receive response for AUTH LOGIN from %s
Negative response for AUTH LOGIN from %s:
Got positive response for AUTH LOGIN from %s
Sending login to %s
Failed to receive response for login from %s
Negative response for login from %s:
Got positive response for login from %s
Sending password to %s
Failed to receive response for password from %s
Negative response for password from %s:
Got positive response for password from %s
Sending AUTH CRAM-MD5 to %s
Failed to receive response for AUTH CRAM-MD5 from %s
Negative response for AUTH CRAM-MD5 from %s:
Got positive response for AUTH CRAM-MD5 from %s
All local IPs are blacklisted in the domain %s
Sending CRAM-MD5 response to %s
Waiting %ld sec for greylisted IP %s to be expired in %s
Failed to receive response for CRAM-MD5 response from %s
Negative response for CRAM-MD5 response from %s:
Got positive response for CRAM-MD5 response from %s
USER %s
Sending USER to %s
Failed to receive response for USER from %s
All tries to send the message to %s failed
Negative response for USER from %s:
Got positive response for USER from %s
Failed to resolve MX for %s
PASS %s
Sending PASS to %s
Failed to receive response for PASS from %s
Negative response for PASS from %s:
Got positive response for PASS from %s
Sending STAT to %s
All tries to connect to %s via proxies failed
Failed to receive response for STAT from %s
Negative response for STAT from %s:
Got positive response for STAT from %s
Sending QUIT to %s
Received a part of response: %s
Failed to send a message to %s, retrying (%d tries left)
Failed to send a message to %s.
SMTP
ESMTP
ASMTP
group21.345mail.com
relay.2yahoo.com
smtp.endend.nl
mail.webhostings4u.com
rsmail.alkoholic.net
mx.reskind.net
public.micromail.com.au
smtp4.cyberemailings.com
mailout.endmonthnow.com
webmail.halftomorrow.com
rly04.hottestmile.com
smtp18.yenddx.com
smtp-server1.cfdenselr.com
relay37.vosimerkam.net
mmx09.tilkbans.com
mtu23.bigping.com
mtu67.syds.piswix.net
asx121.turbo-inline.com
qrx.quickslick.com
mail.gimmicc.net
qnx.mdrost.com
mxs.perenter.com
relay-x.misswldrs.com
smtp.doneohx.com
{%DOMAIN%}
smtp.mixedthings.net
nntp.pinxodet.net
snmp.otwaloow.com
external.newsubdomain.com
m1.gns.snv.thisdomainl.com
mail.naihautsui.co.kr
mts.locks.grgtween.net
mx03.listsystemsf.net
Received: from unknown (%s)
Received: from %s ([%s])
Received: from [%s]
Received: from %s [%s]
Received: from %s ([%s])
Received: from unknown (HELO %s) (%s)
%sby %s with %s; %s
%s"%s" <%s>
%s<%s>
{%%MAILLISTCOLUMN%d%%}
\synonyms.txt
{%CHR:
{%%ROTF$:%s%%}
{%%CHR:%s%%}
name="%s"
filename="%s"
{%RANDOMLY%}Reply-To: {%FROM%}
From: {%FROM%}
{%%INCLUDE_BASE64:%s%%}
Message-ID: {%MSGID%}
{%NOT_OUTLOOK%}Date: {ÚTE%}
{%%RANDOMLY%%}Reply-To: "=?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%FROMNAME%%}{%%END_BASE64%%}?=" <{%%FROMEMAIL%%}>
From: "=?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%FROMNAME%%}{%%END_BASE64%%}?=" <{%%FROMEMAIL%%}>
{%NOT_OUTLOOK%}{%USERAGENT_HEADER%}
Subject: =?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%SUBJECT%%}{%%END_BASE64%%}?=
{%%OUTLOOK%%}Date: {%ÚTE%%}
Subject: {%SUBJECT%}
{%OUTLOOK%}Date: {ÚTE%}
charset="{%CHARSET%}"
{%OUTLOOK%}{%XMAILER_HEADER%}
{%OUTLOOK%}{%PLAINTEXT_MSG%}
charset="{%CHARSET%}"{%OUTLOOK%}
{%%NOT_OUTLOOK%%}Content-Transfer-Encoding: %s
{%OUTLOOK%}<META http-equiv=Content-Type content="text/html; charset={%CHARSET%}">
{%CHARSET%}
{%%RND$:%s%%}
{%MSGID%}
{%MSGIDPART%}
{%SS%}
{%%EMBIMG%d%%}
ROTURL:
X-Mailer: %s
{%XMAILER_HEADER%}
User-Agent: %s
{%USERAGENT_HEADER%}
%%%2x
HEXURL:
cid:{%%EMBIMG%d%%}
{%SUBJECT%}
&#x%%0%dx;
To: "%s" <%s>
To: <%s>
--{%%BOUNDARY%d%%}
Content-Type: audio/%s;
name="{%%RND:<l15>%%}.%s"
Content-ID: <{%%EMBIMG%d%%}>
%s{%%INCLUDE_BASE64:%s%%}%s
{ÚTE%}
Content-Type: image/%s;
{ÚTEBEFORE%}
{Ý%}
{%%%s%%}
"%s" <%s>
{%FROM%}
{%FROMEMAIL%}
{%FROMNAME%}
%s\%s.mac
{%FROMACCOUNT%}
{%FROMDOMAIN%}
{%PLAINTEXT_MSG%}
<SPAN STYLE="display:none">%s</SPAN>
----=_NextPart_000_00X_lX.lX
<FFFFFFFF.FFFFFFFF
FFFFFFFF.FFFFFFFF
@{%FROMDOMAIN%}
%a, %d %b %Y %H:%M:%S
%s % .2d00
<FONT color=#%2x%2x%2x>
{%ROTURL:
0123456789ABCDEF-d-d-d%s
d:d:d %s
hXXp://
TypesSupported
Failed to download settings: InternetConnect failed (%d)
%s/%d
Failed to download settings: HttpOpenRequest failed (%d)
Failed to download settings: HttpSendRequest failed (%d)
Failed to download settings: InternetReadFile failed (%d)
Advapi32.dll
RegOpenKeyTransactedA
RegCreateKeyTransactedA
RegDeleteKeyTransactedA
FRegDeleteKeyExA
HKEY_CLASSES_ROOT
HKEY_CURRENT_USER
HKEY_LOCAL_MACHINE
HKEY_USERS
HKEY_PERFORMANCE_DATA
HKEY_DYN_DATA
HKEY_CURRENT_CONFIG
[GetDataBlock returning %d
[GetCode(,%d,%d) returning %d]
[LWZReadByte(,%d,%d) returning %d]
gd-jpeg: JPEG library reports unrecoverable error:
CREATOR: gd-jpeg v%s (using IJG JPEG v%d),
quality = %d
gd_jpeg: warning: jpeg_write_scanlines returns %u -- expected 1
gd-jpeg: warning: jpeg_read_header returns %d, expected %d
gd-jpeg: warning: JPEG image height (%u) is greater than INT_MAX (%d) (and thus greater than gd can handle)
gd-jpeg: warning: JPEG image width (%u) is greater than INT_MAX (%d) (and thus greater than gd can handle)
gd-jpeg: warning: jpeg_start_decompress reports suspended data source
gd-jpeg: error: JPEG color quantization request resulted in output_components == %d (expected 3 for RGB)
gd-jpeg: error: JPEG color quantization request resulted in output_components == %d (expected 4 for CMYK)
gd-jpeg: error: jpeg_read_scanlines returns %u, expected 1
gd-jpeg: warning: jpeg_finish_decompress reports suspended data source
gd warning: one parameter to a memory allocation multiplication is negative, failing operation gracefully
gd warning: product of memory allocation multiplication would exceed INT_MAX, failing operation gracefully
Bogus message code %d
Invalid component ID %d in SOS
IDCT output block size %d not supported
Wrong JPEG library version: library is %d, caller expects %d
Invalid memory pool code %d
Unsupported JPEG data precision %d
Invalid progressive parameters Ss=%d Se=%d Ah=%d Al=%d
Invalid progressive parameters at scan script entry %d
Invalid scan script at entry %d
Improper call to JPEG library in state %d
JPEG parameter struct mismatch: library thinks size is %u, caller expects %u
Buffer passed to JPEG library is too small
Too many color components: %d, max %d
Unsupported color conversion request
Bogus DAC index %d
Bogus DAC value 0x%x
Bogus DHT index %d
Bogus DQT index %d
Empty JPEG image (DNL not supported)
Maximum supported image dimension is %u pixels
Cannot transcode due to multiple use of quantization table %d
Backing store not supported
Huffman table 0xx was not defined
Quantization table 0xx was not defined
Not a JPEG file: starts with 0xx 0xx
Insufficient memory (case %d)
Cannot quantize more than %d color components
Cannot quantize to fewer than %d colors
Cannot quantize to more than %d colors
Unsupported JPEG process: SOF type 0xx
Failed to create temporary file %s
Unsupported marker type 0xx
Unknown APP0 marker (not JFIF), length %u
Adobe APP14 marker: version %d, flags 0xx 0xx, transform %d
Unknown APP14 marker (not Adobe), length %u
Define Arithmetic Table 0xx: 0xx
Define Huffman Table 0xx
Define Quantization Table %d precision %d
Define Restart Interval %u
Freed EMS handle %u
Obtained EMS handle %u
= = = = = = = =
JFIF APP0 marker: version %d.d, density %dx%d %d
Warning: thumbnail image size does not match data length %u
JFIF extension marker: type 0xx, length %u
with %d x %d thumbnail image
Miscellaneous marker 0xx, length %u
Unexpected marker 0xx
%4u %4u %4u %4u %4u %4u %4u %4u
Quantizing to %d = %d*%d*%d colors
Quantizing to %d colors
Selected %d colors for quantization
At marker 0xx, recovery action %d
RST%d
Smoothing not supported with nonstandard sampling ratios
Start Of Frame 0xx: width=%u, height=%u, components=%d
Component %d: %dhx%dv q=%d
Start Of Scan: %d components
Component %d: dc=%d ac=%d
Ss=%d, Se=%d, Ah=%d, Al=%d
Closed temporary file %s
Opened temporary file %s
JFIF extension marker: palette thumbnail image, length %u
JFIF extension marker: JPEG-compressed thumbnail image, length %u
JFIF extension marker: RGB thumbnail image, length %u
Unrecognized component IDs %d %d %d, assuming YCbCr
Freed XMS handle %u
Obtained XMS handle %u
Unknown Adobe color transform code %d
Corrupt JPEG data: %u extraneous bytes before marker 0xx
Inconsistent progression sequence for component %d coefficient %d
Warning: unknown JFIF revision number %d.d
Corrupt JPEG data: found marker 0xx instead of RST%d
%ld%c
OpenSSL 1.0.2g 1 Mar 2016
ALL:!EXPORT:!aNULL:!eNULL:!SSLv2
.\ssl\ssl_cert.c
%-23s %s Kx=%-8s Au=%-4s Enc=%-9s Mac=%-4s%s
EXPORT
EXPORT40
EXPORT56
TLSv1 part of OpenSSL 1.0.2g 1 Mar 2016
SSLv3 part of OpenSSL 1.0.2g 1 Mar 2016
os.length <= (int)sizeof(ret->session_id)
key expansion
client write key
server write key
%s:%d: rec->data != rec->input
s->init_num == (int)s->d1->w_msg_hdr.msg_len   DTLS1_HM_HEADER_LENGTH
((long)msg_hdr->msg_len) > 0
invalid state reached %s:%d
s->d1->w_msg_hdr.msg_len   ((s->version==DTLS1_BAD_VER)?3:DTLS1_CCS_HEADER_LENGTH) == (unsigned int)s->init_num
s->d1->w_msg_hdr.msg_len   DTLS1_HM_HEADER_LENGTH == (unsigned int)s->init_num
retransmit: message %d non-existant
GOST signature length is %d
DTLSv1 part of OpenSSL 1.0.2g 1 Mar 2016
ANY PRIVATE KEY
PRIVATE KEY
ENCRYPTED PRIVATE KEY
.\crypto\pem\pem_pkey.c
x509 certificate routines
DSO support routines
passed a null parameter
error:lX:%s:%s:%s
Stack part of OpenSSL 1.0.2g 1 Mar 2016
x509_pkey
evp_pkey
ssl_cert
ssl_sess_cert
%s(%d): OpenSSL internal error, assertion failed: %s
Diffie-Hellman part of OpenSSL 1.0.2g 1 Mar 2016
lhash part of OpenSSL 1.0.2g 1 Mar 2016
setct-PCertResTBS
setct-CertReqData
setct-CertReqTBS
setct-CertResData
setct-CertInqReqTBS
setct-AcqCardCodeMsgTBE
setct-CertReqTBE
setct-CertReqTBEX
setct-CertResTBE
setCext-certType
setCext-cCertRequired
setAttr-Cert
set-rootKeyThumb
JOINT-ISO-ITU-T
joint-iso-itu-t
msSmartcardLogin
Microsoft Smartcardlogin
proxyCertInfo
Proxy Certificate Information
certicom-arc
certificateIssuer
X509v3 Certificate Issuer
id-PasswordBasedMAC
password based MAC
dhKeyAgreement
id-Gost28147-89-CryptoPro-KeyMeshing
id-Gost28147-89-None-KeyMeshing
challengePassword
extendedCertificateAttributes
nsCertExt
Netscape Certificate Extension
LocalKeySet
Microsoft Local Key set
nsCertType
Netscape Cert Type
nsBaseUrl
Netscape Base Url
nsRevocationUrl
Netscape Revocation Url
nsCaRevocationUrl
Netscape CA Revocation Url
nsRenewalUrl
Netscape Renewal Url
nsCaPolicyUrl
Netscape CA Policy Url
nsCertSequence
supportedApplicationContext
Netscape Certificate Sequence
subjectKeyIdentifier
userPassword
X509v3 Subject Key Identifier
userCertificate
keyUsage
cACertificate
X509v3 Key Usage
privateKeyUsagePeriod
certificateRevocationList
X509v3 Private Key Usage Period
crossCertificatePair
supportedAlgorithms
certificatePolicies
X509v3 Certificate Policies
authorityKeyIdentifier
X509v3 Authority Key Identifier
anyExtendedKeyUsage
Any Extended Key Usage
extendedKeyUsage
dhSinglePass-stdDH-sha1kdf-scheme
X509v3 Extended Key Usage
dhSinglePass-stdDH-sha224kdf-scheme
dhSinglePass-stdDH-sha256kdf-scheme
dhSinglePass-stdDH-sha384kdf-scheme
dhSinglePass-stdDH-sha512kdf-scheme
TLS Web Server Authentication
dhSinglePass-cofactorDH-sha1kdf-scheme
dhSinglePass-cofactorDH-sha224kdf-scheme
TLS Web Client Authentication
dhSinglePass-cofactorDH-sha256kdf-scheme
dhSinglePass-cofactorDH-sha384kdf-scheme
dhSinglePass-cofactorDH-sha512kdf-scheme
ct_precert_scts
CT Precertificate SCTs
ct_precert_poison
CT Precertificate Poison
ct_precert_signer
CT Precertificate Signer
ct_cert_scts
CT Certificate SCTs
pbeWithSHA1And3-KeyTripleDES-CBC
pbeWithSHA1And2-KeyTripleDES-CBC
keyBag
pkcs8ShroudedKeyBag
certBag
localKeyID
x509Certificate
sdsiCertificate
id-smime-mod-msg-v3
id-smime-ct-publishCert
id-smime-aa-msgSigDigest
id-smime-aa-encrypKeyPref
id-smime-aa-signingCertificate
id-smime-aa-smimeEncryptCerts
id-smime-aa-ets-otherSigCert
id-smime-aa-ets-CertificateRefs
id-smime-aa-ets-certValues
id-smime-aa-ets-certCRLTimestamp
id-mod-qualified-cert-88
id-mod-qualified-cert-93
id-mod-attribute-cert
id-it-caProtEncCert
id-it-signKeyPairTypes
id-it-encKeyPairTypes
id-it-caKeyUpdateInfo
id-it-unsupportedOIDs
id-it-keyPairParamReq
id-it-keyPairParamRep
id-it-revPassphrase
id-regCtrl-oldCertID
id-regCtrl-protocolEncrKey
id-regInfo-certReq
id-cmc-getCert
id-cmc-confirmCertAcceptance
id-ecPublicKey
set-msgExt
set-certExt
certificate extensions
setct-AcqCardCodeMsg
setct-PCertReqData
EVP part of OpenSSL 1.0.2g 1 Mar 2016
cert_info
crlUrl
certs
issuerKeyHash
OCSP_CERTID
reqCert
value.byName
value.byKey
value.good
value.revoked
value.unknown
OCSP_CERTSTATUS
certId
certStatus
Big Number part of OpenSSL 1.0.2g 1 Mar 2016
.\crypto\engine\eng_pkey.c
PEM part of OpenSSL 1.0.2g 1 Mar 2016
Enter PEM pass phrase:
phrase is too short, needs to be at least %d chars
X509 CERTIFICATE
CERTIFICATE
NEW CERTIFICATE REQUEST
CERTIFICATE REQUEST
TRUSTED CERTIFICATE
0123456789
.\crypto\ec\ec_key.c
RSA part of OpenSSL 1.0.2g 1 Mar 2016
DH Private-Key
DH Public-Key
%s: (%d bit)
private-key:
public-key:
x%s
recommended-private-length: %d bits
X.509 part of OpenSSL 1.0.2g 1 Mar 2016
OPENSSL_ALLOW_PROXY_CERTS
unable to get issuer certificate
unable to get certificate CRL
unable to decrypt certificate's signature
unable to decode issuer public key
certificate signature failure
certificate is not yet valid
certificate has expired
format error in certificate's notBefore field
format error in certificate's notAfter field
self signed certificate
self signed certificate in certificate chain
unable to get local issuer certificate
unable to verify the first certificate
certificate chain too long
certificate revoked
invalid CA certificate
invalid non-CA certificate (has CA markings)
proxy certificates not allowed, please set the appropriate flag
unsupported certificate purpose
certificate not trusted
certificate rejected
authority and subject key identifier mismatch
key usage does not include certificate signing
unable to get CRL issuer certificate
key usage does not include CRL signing
key usage does not include digital signature
invalid or inconsistent certificate extension
invalid or inconsistent certificate policy extension
Unsupported extension feature
name constraints minimum and maximum not supported
unsupported name constraint type
unsupported or invalid name constraint syntax
unsupported or invalid name syntax
Suite B: certificate version invalid
Suite B: invalid public key algorithm
j <= (int)sizeof(ctx->key)
EC part of OpenSSL 1.0.2g 1 Mar 2016
ASN.1 part of OpenSSL 1.0.2g 1 Mar 2016
SHA1 part of OpenSSL 1.0.2g 1 Mar 2016
SHA-256 part of OpenSSL 1.0.2g 1 Mar 2016
SHA-512 part of OpenSSL 1.0.2g 1 Mar 2016
MD5 part of OpenSSL 1.0.2g 1 Mar 2016
.\crypto\dh\dh_key.c
pub_key
priv_key
RSA PRIVATE KEY
DSA PRIVATE KEY
EC PRIVATE KEY
?456789:;<=
!"#$%&'()* ,-./0123
DSA part of OpenSSL 1.0.2g 1 Mar 2016
value.set
value.single
pkeyalg
pkey
PKCS8_PRIV_KEY_INFO
.\crypto\evp\evp_pkey.c
value.named_curve
value.parameters
value.implicitlyCA
privateKey
publicKey
EC_PRIVATEKEY
p.other
p.onBasis
p.tpBasis
p.ppBasis
p.prime
p.char_two
d.other
d.data
d.sign
d.enveloped
d.signed_and_enveloped
d.digest
d.encrypted
cert
key_enc_algor
enc_key
public_key
X509_PUBKEY
.\crypto\asn1\x_pubkey.c
pubkey
Content-Length: %d
%s %s HTTP/1.0
Load certs from files in a directory
%s%clx.%s%d
\X
keyid
X509_CERT_AUX
X509_CERT_PAIR
AUTHORITY_KEYID
d.otherName
d.rfc822Name
d.dNSName
d.directoryName
d.ediPartyName
d.uniformResourceIdentifier
d.iPAddress
d.registeredID
Key Compromise
keyCompromise
Cessation Of Operation
cessationOfOperation
Certificate Hold
certificateHold
name.fullname
name.relativename
%*s%s:
%*sOnly User Certificates
%*sOnly CA Certificates
%*sOnly Attribute Certificates
%d.%d.%d.%d/%d.%d.%d.%d
PROXY_CERT_INFO_EXTENSION
RAND part of OpenSSL 1.0.2g 1 Mar 2016
You need to read the OpenSSL FAQ, hXXp://VVV.openssl.org/support/faq.html
DES part of OpenSSL 1.0.2g 1 Mar 2016
libdes part of OpenSSL 1.0.2g 1 Mar 2016
IDEA part of OpenSSL 1.0.2g 1 Mar 2016
RC2 part of OpenSSL 1.0.2g 1 Mar 2016
AES part of OpenSSL 1.0.2g 1 Mar 2016
.pp@0
aEÐ
 (#EÚ
ÚE<<0
TXT_DB part of OpenSSL 1.0.2g 1 Mar 2016
nkey <= EVP_MAX_KEY_LENGTH
.\crypto\evp\evp_key.c
%s %s%lu (%s0x%lx)
ddddddZ
ddddddZ
Private-Key: (%d bit)
Public-Key: (%d bit)
Private-Key
Public-Key
CONF part of OpenSSL 1.0.2g 1 Mar 2016
/usr/local/ssl/certs
/usr/local/ssl/cert.pem
SSL_CERT_DIR
SSL_CERT_FILE
rsa_keygen_bits
rsa_keygen_pubexp
hexkey
ECDSA part of OpenSSL 1.0.2g 1 Mar 2016
ECDH part of OpenSSL 1.0.2g 1 Mar 2016
NETSCAPE_CERT_SEQUENCE
keylen <= sizeof key
EVP_CIPHER_key_length(cipher) <= (int)sizeof(md_tmp)
'() ,-./:=?
%s - d:d:d%.*s %d%s
<unsupported>
othername:<unsupported>
X400Name:<unsupported>
EdiPartyName:<unsupported>
email:%s
DNS:%s
URI:%s
IP Address:%d.%d.%d.%d
CERTIFICATEPOLICIES
d.cpsuri
d.usernotice
%*sCPS: %s
%*sOrganization: %s
%*sNumber%s:
%*sExplicit Text: %s
ADVAPI32.DLL
KERNEL32.DLL
NETAPI32.DLL
USER32.DLL
CMS_CertificateChoices
d.issuerAndSerialNumber
d.subjectKeyIdentifier
d.crl
certificates
keyEncryptionAlgorithm
encryptedKey
CMS_KeyTransRecipientInfo
keyAttrId
keyAttr
CMS_OtherKeyAttribute
CMS_RecipientKeyIdentifier
d.rKeyId
CMS_KeyAgreeRecipientIdentifier
CMS_RecipientEncryptedKey
CMS_OriginatorPublicKey
d.originatorKey
CMS_OriginatorIdentifierOrKey
recipientEncryptedKeys
CMS_KeyAgreeRecipientInfo
keyIdentifier
keyDerivationAlgorithm
CMS_PasswordRecipientInfo
d.ktri
d.kari
d.kekri
d.pwri
d.ori
d.signedData
d.envelopedData
d.digestedData
d.encryptedData
d.authenticatedData
d.compressedData
d.allOrFirstTier
d.receiptList
keyInfo
otherCertFormat
otherCert
CMS_OtherCertificateFormat
d.certificate
d.extendedCertificate
d.v1AttrCert
d.v2AttrCert
ASN1 OID: %s
NIST CURVE: %s
Field Type: %s
Basis Type: %s
CONF_def part of OpenSSL 1.0.2g 1 Mar 2016
[%s] %s=%s
[[%s]]
%'%1$=%C%K%O%s%
.%.-.3.7.9.?.W.[.o.y.
C%C'C3C7C9COCWCiC
keyfunc
keylength
X:
.\crypto\pkcs12\p12_key.c
.\crypto\asn1\x_pkey.c
Key Encipherment
keyEncipherment
Key Agreement
keyAgreement
Certificate Sign
keyCertSign
EXTENDED_KEY_USAGE
PKEY_USAGE_PERIOD
%*sZone: %s, User:
.\crypto\x509v3\v3_skey.c
.\crypto\x509v3\v3_akey.c
%*scrlUrl:
%*sPolicy Text: %s
XX
%.14s.dZ
%*sSigned Certificate Timestamp:
%lu:%s:%s:%d:%s
Verifying - %s
%s.dll
value.other
value.x509cert
value.sdsicert
value.keybag
value.shkeybag
value.safes
value.bag
function not supported
operation canceled
address_family_not_supported
operation_in_progress
operation_not_supported
protocol_not_supported
operation_would_block
address family not supported
broken pipe
inappropriate io control operation
not supported
operation in progress
operation not permitted
operation not supported
operation would block
protocol not supported
Operation not permitted
Inappropriate I/O control operation
Broken pipe
GetProcessWindowStation
operator
WS2_32.dll
InternetOpenUrlA
HttpOpenRequestA
HttpSendRequestA
WININET.dll
IPHLPAPI.DLL
RPCRT4.dll
DNSAPI.dll
GetProcessHeap
CreateIoCompletionPort
KERNEL32.dll
USER32.dll
ReportEventA
RegCreateKeyA
RegOpenKeyA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyW
ADVAPI32.dll
ole32.dll
OLEAUT32.dll
GetCPInfo
PeekNamedPipe
l}C.we
zcÁ
c:\%original file name%.exe
version="1.0.0.0"
name="Microsoft.Windows.Common-Controls"
version="6.0.0.0"
publicKeyToken="6595b64144ccf1df"
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"><assemblyIdentity version="1.0.0.0" processorArchitecture="x86" name="sse" type="win32"></assemblyIdentity><description>sse</description><dependency><dependentAssembly><assemblyIdentity type="win32" name="Microsoft.Windows.Common-Controls" version="6.0.0.0" processorArchitecture="X86" publicKeyToken="6595b64144ccf1df" language="*"></assemblyIdentity></dependentAssembly></dependency><trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"><security><requestedPrivileges><requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel></requestedPrivileges></security></trustInfo></assembly>PPADDINGXXPADDING
7(8,8084888
< <$<(<,<
6l6
6 6$6(6,60646~6
004080<0@0
= =$=(=,=0=4=8=<=
0-040C0Q0g0n0}0
9 9$9(959
3%4U4
9%9-949[9
> >$>(>,>0>4>8>`?
3 3C6k6y6Œ8\8c8k8p8t8x8
2 2&202;2~2
> >$>(>,>0>4>8>
0(1,1\1`1
7(8,8\8`8
1 1$1,101
7 7$70787@7
;(;,;0;8;@;
? ?$?0?@?
; ;$;(;,;
Tmscoree.dll
kernel32.dll
portuguese-brazilian
- floating point support not loaded
- CRT not initialized
- Attempt to initialize the CRT more than once.
sse.exe

%original file name%.exe_1912_rwx_014D0000_001B2000:

TTO.EMS
.md"&md"
2T$%U
1.zn,
TTO.EKS
@R@TTO.EKS
.Ea}E
%U=-S
%UM|J
vM%xR
.GJ[h
v.XWns
?4.St
<$%4u
.zN\jD
;$%4uD
[*.Mh
.OJWqEp
d<j%f
.bP$$q
7^.Ch`
.ET3j
)>.WF6
.hUg7
T.jL't
Of.Qp
./$(&/$4
>9.DT=\J
.VnS|
MY5.WVO
.7.hj
V.Wb8X
R.Wr0
m.WtI
W.Wrq
^%S\>
#K.jdY
Ub'.Wr
1.VrAl
w.vO)
bMtyxL\Ua[.UlL
t%%Uh
.jZl@b]
EaJ.Wqdl
.YL DVNo;$
t4.beE
t4.be
-b H.as5
-[ y$Osv.Nd
0.JaM \ O-NmH
<BT.AAX
^oM1N ]6anZ*crT
-Ja},\ :O/ Y%NaD)Le[3 fV2 sD5MeG8ia=
?B*7%S!
?B*7%S1
;1? %cLa
/a;%cSD8
%d 2!W
E MtP.YuP
-iWÞ9#Ms
-iGÞ
HK.wV
<.hA8n
V3I.FED
%M.%d
*aSsHPYoG$?f
JaSsHPYo
.iO"_.J
Hcr`4To5%Sn
"=&>.yt
::%CG
Rt{%c
*:$%d
QiF. dD.WeM
PpH%c
W! s4%X 9
&TUZ'ROK.cc]K^f>6[a= ]n
-cc}&R
.cc=%R E
-cc}$R w!_s
O=N6T1R:P5V>\)ZH&_dL"chP.WlD*[p86Ot
0855105
.<79-47!-,7
&0>=&(>=&`>
>m%x>]%p>}%h>}%
%`?M%X?=%P?
?m%x?]%p?]%h?]%
8$5%9X5=9L5U9l5M9
6)286-2(6
&@>%&8>%&0>

%original file name%.exe_1912_rwx_01690000_001B1000:

h.Toh/T
.text
`.rdata
@.data
.rsrc
@.reloc
RC4 for x86, CRYPTOGAMS by <appro@openssl.org>
6-9'6-9'
$6.:$6.:
*?#1*?#1
>8$4,8$4,
AES for x86, CRYPTOGAMS by <appro@openssl.org>
AES for Intel AES-NI, CRYPTOGAMS by <appro@openssl.org>
Camellia for x86 by <appro@openssl.org>
SHA1 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
SHA256 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
SHA512 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
GHASH for x86, CRYPTOGAMS by <appro@openssl.org>
Montgomery Multiplication for x86, CRYPTOGAMS by <appro@openssl.org>
GF(2^m) Multiplication for x86, CRYPTOGAMS by <appro@openssl.org>
8DKEYt
DKEY
8DKEYu
vhVj%Sj
//!"#$%&'()/*/// ,-/.
x@j%Sj
)<,u%S
9|$,v%U
FtPWW
FtPU
j.Yf;
_tcPVj@
.PjRW
%s/%s
Blacklisted by rule: %s:%s
:\output\out-blfromcfg.txt
\output\out-blcfg.txt
%sd:d:d %s
\blfromcfg.txt
\blcfg.txt
\output\out-blfromcfg.txt
%s-%ld
\output\log.txt
\output\msgids.txt
ip.txt
Mozilla
2,5,0,854
Linux\dkimsign.cpp
-----BEGIN RSA PRIVATE KEY-----
-----END RSA PRIVATE KEY-----
DomainKey-Signature: a=rsa-sha1; q=dns; c=%s;
s=%s; d=%s;
h=%s;
b=%s;
DomainKey-Trace:
%d.%d.%d.%d
dev.null
Linux\domainkeys.cpp
_domainkey.
_domainkey.%s
DomainKey-Signature:
._domainkey.
%s._domainkey.%s
DK_STAT_BADSIG: Signature was available but failed to verify against domain specified key
DK_STAT_NOKEY: No public key available (permanent failure)
DK_STAT_BADKEY: Unusable key, public if verifying, private if signing.
DK_STAT_CANTVRFY: Cannot get domain key to verify signature (temporary failure)
DK_STAT_REVOKED: Key has been revoked.
<td style="padding:0;margin:0" height=%d>
<a href="%s">
<img src="<%d,%d,%d,%d,%d>%s" border=0 vspace=0 hspace=0 width=%d height=%d>
Successfully sent using SMTP account %s (%d of %ld messages to %s)
Successfully sent %d of %ld messages to %s
Sending to %s in the same connection
New connection required, will send to %s
Mail transaction for %s is over.
Domain %s is bad (found in cache)
Domain %s found in cache
Domain %s isn't found in cache, resolving it
All tries to resolve %s failed.
Resolving %s using DNS server
Failed to receive response for %s from DNS server
Got DNS server response: domain %s is bad
Got error %d in response for %s from DNS server
MX's IP for domain %s found in cache:
Timeout waiting for domain %s to be resolved
No valid MXes for domain %s. Marking it as bad
Resolving MX %s using existing connection to DNS server
All tries to resolve MX for %s are failed
Resolving MX %s using DNS server
Failed to receive response for MX %s from DNS server
127.0.0.1
0.0.0.0
Got DNS server response: MX's address %s is bad. Trying another MX
Got error in response for MX %s from DNS server
Got some crap in response for MX %s from DNS server
MX %s successfully resolved to
All tries to resolve proxylock for %s failed.
Resolving proxylock for %s using DNS server
%d.%d.%d.%d.in-addr.arpa
Failed to receive response for proxylock %s from DNS server
Got DNS server response: no proxylock for %s
Got error in response for proxylock %s from DNS server
.com.net.org.gov.edu.biz.info
Proxy %s resolved to domain %s
Using inner proxy [%c]:
Using proxy [%c]:
Failed to connect to proxy %s
Successfully connected to proxy %s
Trying to establish SOCKS4 tunnel to %s via %s
SOCKS4 tunnel to %s via %s is established
SOCKS4 connection to %s via %s failed.
Trying HTTPS
Trying to establish HTTPS tunnel to %s via %s
HTTPS tunnel to %s via %s is established
HTTPS connection to %s via %s failed.
Trying to establish SOCKS5 tunnel to %s via %s
SOCKS5 tunnel to %s via %s is established
Bad SOCKS5 proxy %s, disabled
Failed to establish SOCKS5 tunnel to %s via %s
Empty HTTPS response from proxy
HTTP/1.0 407
HTTP/1.0 403
HTTP/1.0 50
HTTPS error (403 or 50) from proxy
Bad HTTPS response (No success code or HTML) from proxy
%s:%s
Proxy-Authorization: Basic %s
CONNECT %d.%d.%d.%d:%d HTTP/1.0
Connecting to %s (MX=%s) directly
Successfully connected to %s (MX=%s)
Failed to receive greeting from %s
Negative POP3 greeting from %s:
IP %s is blacklisted for the domain %s:
Negative greeting from %s:
Got greeting from %s
%s %s
Sending '%s %s' to %s
Failed to receive response for HELO from %s
Got error or empty response for HELO from %s
Negative response for HELO from %s:
Got positive response for HELO from %s
LOGIN
MAIL FROM: <%s>
Sending 'MAIL FROM: <%s>' to %s
Failed to receive response for MAIL FROM from %s
Negative response for MAIL FROM from %s:
Got positive response for MAIL FROM from %s
RCPT TO: <%s>
Sending 'RCPT TO: <%s>' to %s
Failed to receive response for RCPT TO from %s
Negative response for 'RCPT TO: <%s>' from %s:
Positive response for 'RCPT TO: <%s>' from %s
No valid emails in the transaction for %s
Transaction for %s is over, %d emails of %ld are valid
Sending DATA to %s
Failed to receive response for DATA from %s
Negative response for DATA from %s:
IP %s is throttled out for the domain %s
Got positive response for DATA from %s
Error sending the next portion of message to %s
Sending the next portion of message (bytes %ld to %ld) to %s
Failed to receive response for '.' from %s
Negative response for '.' from %s:
This user doesn't have a yahoo.com
The message to %s is sent successfully.
Sending 'RSET' to %s
RSET failed for %s, opening new connection
Sending STARTTLS to %s
Failed to receive response for STARTTLS from %s
Negative response for STARTTLS from %s:
Trying to establish TLS with %s
TLS handshake with %s failed
TLS channel to %s is established, sending EHLO once again
Sending AUTH PLAIN to %s
Failed to receive response for AUTH PLAIN from %s
Negative response for AUTH PLAIN from %s:
Got positive response for AUTH PLAIN from %s
Sending login/password to %s
Invalid format of SMTP account %s
Failed to receive response for login/password from %s
Negative response for login/password from %s:
Got positive response for login/password from %s
AUTH LOGIN
Sending AUTH LOGIN to %s
Failed to receive response for AUTH LOGIN from %s
Negative response for AUTH LOGIN from %s:
Got positive response for AUTH LOGIN from %s
Sending login to %s
Failed to receive response for login from %s
Negative response for login from %s:
Got positive response for login from %s
Sending password to %s
Failed to receive response for password from %s
Negative response for password from %s:
Got positive response for password from %s
Sending AUTH CRAM-MD5 to %s
Failed to receive response for AUTH CRAM-MD5 from %s
Negative response for AUTH CRAM-MD5 from %s:
Got positive response for AUTH CRAM-MD5 from %s
All local IPs are blacklisted in the domain %s
Sending CRAM-MD5 response to %s
Waiting %ld sec for greylisted IP %s to be expired in %s
Failed to receive response for CRAM-MD5 response from %s
Negative response for CRAM-MD5 response from %s:
Got positive response for CRAM-MD5 response from %s
USER %s
Sending USER to %s
Failed to receive response for USER from %s
All tries to send the message to %s failed
Negative response for USER from %s:
Got positive response for USER from %s
Failed to resolve MX for %s
PASS %s
Sending PASS to %s
Failed to receive response for PASS from %s
Negative response for PASS from %s:
Got positive response for PASS from %s
Sending STAT to %s
All tries to connect to %s via proxies failed
Failed to receive response for STAT from %s
Negative response for STAT from %s:
Got positive response for STAT from %s
Sending QUIT to %s
Received a part of response: %s
Failed to send a message to %s, retrying (%d tries left)
Failed to send a message to %s.
SMTP
ESMTP
ASMTP
group21.345mail.com
relay.2yahoo.com
smtp.endend.nl
mail.webhostings4u.com
rsmail.alkoholic.net
mx.reskind.net
public.micromail.com.au
smtp4.cyberemailings.com
mailout.endmonthnow.com
webmail.halftomorrow.com
rly04.hottestmile.com
smtp18.yenddx.com
smtp-server1.cfdenselr.com
relay37.vosimerkam.net
mmx09.tilkbans.com
mtu23.bigping.com
mtu67.syds.piswix.net
asx121.turbo-inline.com
qrx.quickslick.com
mail.gimmicc.net
qnx.mdrost.com
mxs.perenter.com
relay-x.misswldrs.com
smtp.doneohx.com
{%DOMAIN%}
smtp.mixedthings.net
nntp.pinxodet.net
snmp.otwaloow.com
external.newsubdomain.com
m1.gns.snv.thisdomainl.com
mail.naihautsui.co.kr
mts.locks.grgtween.net
mx03.listsystemsf.net
Received: from unknown (%s)
Received: from %s ([%s])
Received: from [%s]
Received: from %s [%s]
Received: from %s ([%s])
Received: from unknown (HELO %s) (%s)
%sby %s with %s; %s
%s"%s" <%s>
%s<%s>
{%%MAILLISTCOLUMN%d%%}
\synonyms.txt
{%CHR:
{%%ROTF$:%s%%}
{%%CHR:%s%%}
name="%s"
filename="%s"
{%RANDOMLY%}Reply-To: {%FROM%}
From: {%FROM%}
{%%INCLUDE_BASE64:%s%%}
Message-ID: {%MSGID%}
{%NOT_OUTLOOK%}Date: {ÚTE%}
{%%RANDOMLY%%}Reply-To: "=?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%FROMNAME%%}{%%END_BASE64%%}?=" <{%%FROMEMAIL%%}>
From: "=?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%FROMNAME%%}{%%END_BASE64%%}?=" <{%%FROMEMAIL%%}>
{%NOT_OUTLOOK%}{%USERAGENT_HEADER%}
Subject: =?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%SUBJECT%%}{%%END_BASE64%%}?=
{%%OUTLOOK%%}Date: {%ÚTE%%}
Subject: {%SUBJECT%}
{%OUTLOOK%}Date: {ÚTE%}
charset="{%CHARSET%}"
{%OUTLOOK%}{%XMAILER_HEADER%}
{%OUTLOOK%}{%PLAINTEXT_MSG%}
charset="{%CHARSET%}"{%OUTLOOK%}
{%%NOT_OUTLOOK%%}Content-Transfer-Encoding: %s
{%OUTLOOK%}<META http-equiv=Content-Type content="text/html; charset={%CHARSET%}">
{%CHARSET%}
{%%RND$:%s%%}
{%MSGID%}
{%MSGIDPART%}
{%SS%}
{%%EMBIMG%d%%}
ROTURL:
X-Mailer: %s
{%XMAILER_HEADER%}
User-Agent: %s
{%USERAGENT_HEADER%}
%%%2x
HEXURL:
cid:{%%EMBIMG%d%%}
{%SUBJECT%}
&#x%%0%dx;
To: "%s" <%s>
To: <%s>
--{%%BOUNDARY%d%%}
Content-Type: audio/%s;
name="{%%RND:<l15>%%}.%s"
Content-ID: <{%%EMBIMG%d%%}>
%s{%%INCLUDE_BASE64:%s%%}%s
{ÚTE%}
Content-Type: image/%s;
{ÚTEBEFORE%}
{Ý%}
{%%%s%%}
"%s" <%s>
{%FROM%}
{%FROMEMAIL%}
{%FROMNAME%}
%s\%s.mac
{%FROMACCOUNT%}
{%FROMDOMAIN%}
{%PLAINTEXT_MSG%}
<SPAN STYLE="display:none">%s</SPAN>
----=_NextPart_000_00X_lX.lX
<FFFFFFFF.FFFFFFFF
FFFFFFFF.FFFFFFFF
@{%FROMDOMAIN%}
%a, %d %b %Y %H:%M:%S
%s % .2d00
<FONT color=#%2x%2x%2x>
{%ROTURL:
0123456789ABCDEF-d-d-d%s
d:d:d %s
hXXp://
TypesSupported
Failed to download settings: InternetConnect failed (%d)
%s/%d
Failed to download settings: HttpOpenRequest failed (%d)
Failed to download settings: HttpSendRequest failed (%d)
Failed to download settings: InternetReadFile failed (%d)
Advapi32.dll
RegOpenKeyTransactedA
RegCreateKeyTransactedA
RegDeleteKeyTransactedA
FRegDeleteKeyExA
HKEY_CLASSES_ROOT
HKEY_CURRENT_USER
HKEY_LOCAL_MACHINE
HKEY_USERS
HKEY_PERFORMANCE_DATA
HKEY_DYN_DATA
HKEY_CURRENT_CONFIG
[GetDataBlock returning %d
[GetCode(,%d,%d) returning %d]
[LWZReadByte(,%d,%d) returning %d]
gd-jpeg: JPEG library reports unrecoverable error:
CREATOR: gd-jpeg v%s (using IJG JPEG v%d),
quality = %d
gd_jpeg: warning: jpeg_write_scanlines returns %u -- expected 1
gd-jpeg: warning: jpeg_read_header returns %d, expected %d
gd-jpeg: warning: JPEG image height (%u) is greater than INT_MAX (%d) (and thus greater than gd can handle)
gd-jpeg: warning: JPEG image width (%u) is greater than INT_MAX (%d) (and thus greater than gd can handle)
gd-jpeg: warning: jpeg_start_decompress reports suspended data source
gd-jpeg: error: JPEG color quantization request resulted in output_components == %d (expected 3 for RGB)
gd-jpeg: error: JPEG color quantization request resulted in output_components == %d (expected 4 for CMYK)
gd-jpeg: error: jpeg_read_scanlines returns %u, expected 1
gd-jpeg: warning: jpeg_finish_decompress reports suspended data source
gd warning: one parameter to a memory allocation multiplication is negative, failing operation gracefully
gd warning: product of memory allocation multiplication would exceed INT_MAX, failing operation gracefully
Bogus message code %d
Invalid component ID %d in SOS
IDCT output block size %d not supported
Wrong JPEG library version: library is %d, caller expects %d
Invalid memory pool code %d
Unsupported JPEG data precision %d
Invalid progressive parameters Ss=%d Se=%d Ah=%d Al=%d
Invalid progressive parameters at scan script entry %d
Invalid scan script at entry %d
Improper call to JPEG library in state %d
JPEG parameter struct mismatch: library thinks size is %u, caller expects %u
Buffer passed to JPEG library is too small
Too many color components: %d, max %d
Unsupported color conversion request
Bogus DAC index %d
Bogus DAC value 0x%x
Bogus DHT index %d
Bogus DQT index %d
Empty JPEG image (DNL not supported)
Maximum supported image dimension is %u pixels
Cannot transcode due to multiple use of quantization table %d
Backing store not supported
Huffman table 0xx was not defined
Quantization table 0xx was not defined
Not a JPEG file: starts with 0xx 0xx
Insufficient memory (case %d)
Cannot quantize more than %d color components
Cannot quantize to fewer than %d colors
Cannot quantize to more than %d colors
Unsupported JPEG process: SOF type 0xx
Failed to create temporary file %s
Unsupported marker type 0xx
Unknown APP0 marker (not JFIF), length %u
Adobe APP14 marker: version %d, flags 0xx 0xx, transform %d
Unknown APP14 marker (not Adobe), length %u
Define Arithmetic Table 0xx: 0xx
Define Huffman Table 0xx
Define Quantization Table %d precision %d
Define Restart Interval %u
Freed EMS handle %u
Obtained EMS handle %u
= = = = = = = =
JFIF APP0 marker: version %d.d, density %dx%d %d
Warning: thumbnail image size does not match data length %u
JFIF extension marker: type 0xx, length %u
with %d x %d thumbnail image
Miscellaneous marker 0xx, length %u
Unexpected marker 0xx
%4u %4u %4u %4u %4u %4u %4u %4u
Quantizing to %d = %d*%d*%d colors
Quantizing to %d colors
Selected %d colors for quantization
At marker 0xx, recovery action %d
RST%d
Smoothing not supported with nonstandard sampling ratios
Start Of Frame 0xx: width=%u, height=%u, components=%d
Component %d: %dhx%dv q=%d
Start Of Scan: %d components
Component %d: dc=%d ac=%d
Ss=%d, Se=%d, Ah=%d, Al=%d
Closed temporary file %s
Opened temporary file %s
JFIF extension marker: palette thumbnail image, length %u
JFIF extension marker: JPEG-compressed thumbnail image, length %u
JFIF extension marker: RGB thumbnail image, length %u
Unrecognized component IDs %d %d %d, assuming YCbCr
Freed XMS handle %u
Obtained XMS handle %u
Unknown Adobe color transform code %d
Corrupt JPEG data: %u extraneous bytes before marker 0xx
Inconsistent progression sequence for component %d coefficient %d
Warning: unknown JFIF revision number %d.d
Corrupt JPEG data: found marker 0xx instead of RST%d
%ld%c
OpenSSL 1.0.2g 1 Mar 2016
ALL:!EXPORT:!aNULL:!eNULL:!SSLv2
.\ssl\ssl_cert.c
%-23s %s Kx=%-8s Au=%-4s Enc=%-9s Mac=%-4s%s
EXPORT
EXPORT40
EXPORT56
TLSv1 part of OpenSSL 1.0.2g 1 Mar 2016
SSLv3 part of OpenSSL 1.0.2g 1 Mar 2016
os.length <= (int)sizeof(ret->session_id)
key expansion
client write key
server write key
%s:%d: rec->data != rec->input
s->init_num == (int)s->d1->w_msg_hdr.msg_len   DTLS1_HM_HEADER_LENGTH
((long)msg_hdr->msg_len) > 0
invalid state reached %s:%d
s->d1->w_msg_hdr.msg_len   ((s->version==DTLS1_BAD_VER)?3:DTLS1_CCS_HEADER_LENGTH) == (unsigned int)s->init_num
s->d1->w_msg_hdr.msg_len   DTLS1_HM_HEADER_LENGTH == (unsigned int)s->init_num
retransmit: message %d non-existant
GOST signature length is %d
DTLSv1 part of OpenSSL 1.0.2g 1 Mar 2016
ANY PRIVATE KEY
PRIVATE KEY
ENCRYPTED PRIVATE KEY
.\crypto\pem\pem_pkey.c
x509 certificate routines
DSO support routines
passed a null parameter
error:lX:%s:%s:%s
Stack part of OpenSSL 1.0.2g 1 Mar 2016
x509_pkey
evp_pkey
ssl_cert
ssl_sess_cert
%s(%d): OpenSSL internal error, assertion failed: %s
Diffie-Hellman part of OpenSSL 1.0.2g 1 Mar 2016
lhash part of OpenSSL 1.0.2g 1 Mar 2016
setct-PCertResTBS
setct-CertReqData
setct-CertReqTBS
setct-CertResData
setct-CertInqReqTBS
setct-AcqCardCodeMsgTBE
setct-CertReqTBE
setct-CertReqTBEX
setct-CertResTBE
setCext-certType
setCext-cCertRequired
setAttr-Cert
set-rootKeyThumb
JOINT-ISO-ITU-T
joint-iso-itu-t
msSmartcardLogin
Microsoft Smartcardlogin
proxyCertInfo
Proxy Certificate Information
certicom-arc
certificateIssuer
X509v3 Certificate Issuer
id-PasswordBasedMAC
password based MAC
dhKeyAgreement
id-Gost28147-89-CryptoPro-KeyMeshing
id-Gost28147-89-None-KeyMeshing
challengePassword
extendedCertificateAttributes
nsCertExt
Netscape Certificate Extension
LocalKeySet
Microsoft Local Key set
nsCertType
Netscape Cert Type
nsBaseUrl
Netscape Base Url
nsRevocationUrl
Netscape Revocation Url
nsCaRevocationUrl
Netscape CA Revocation Url
nsRenewalUrl
Netscape Renewal Url
nsCaPolicyUrl
Netscape CA Policy Url
nsCertSequence
supportedApplicationContext
Netscape Certificate Sequence
subjectKeyIdentifier
userPassword
X509v3 Subject Key Identifier
userCertificate
keyUsage
cACertificate
X509v3 Key Usage
privateKeyUsagePeriod
certificateRevocationList
X509v3 Private Key Usage Period
crossCertificatePair
supportedAlgorithms
certificatePolicies
X509v3 Certificate Policies
authorityKeyIdentifier
X509v3 Authority Key Identifier
anyExtendedKeyUsage
Any Extended Key Usage
extendedKeyUsage
dhSinglePass-stdDH-sha1kdf-scheme
X509v3 Extended Key Usage
dhSinglePass-stdDH-sha224kdf-scheme
dhSinglePass-stdDH-sha256kdf-scheme
dhSinglePass-stdDH-sha384kdf-scheme
dhSinglePass-stdDH-sha512kdf-scheme
TLS Web Server Authentication
dhSinglePass-cofactorDH-sha1kdf-scheme
dhSinglePass-cofactorDH-sha224kdf-scheme
TLS Web Client Authentication
dhSinglePass-cofactorDH-sha256kdf-scheme
dhSinglePass-cofactorDH-sha384kdf-scheme
dhSinglePass-cofactorDH-sha512kdf-scheme
ct_precert_scts
CT Precertificate SCTs
ct_precert_poison
CT Precertificate Poison
ct_precert_signer
CT Precertificate Signer
ct_cert_scts
CT Certificate SCTs
pbeWithSHA1And3-KeyTripleDES-CBC
pbeWithSHA1And2-KeyTripleDES-CBC
keyBag
pkcs8ShroudedKeyBag
certBag
localKeyID
x509Certificate
sdsiCertificate
id-smime-mod-msg-v3
id-smime-ct-publishCert
id-smime-aa-msgSigDigest
id-smime-aa-encrypKeyPref
id-smime-aa-signingCertificate
id-smime-aa-smimeEncryptCerts
id-smime-aa-ets-otherSigCert
id-smime-aa-ets-CertificateRefs
id-smime-aa-ets-certValues
id-smime-aa-ets-certCRLTimestamp
id-mod-qualified-cert-88
id-mod-qualified-cert-93
id-mod-attribute-cert
id-it-caProtEncCert
id-it-signKeyPairTypes
id-it-encKeyPairTypes
id-it-caKeyUpdateInfo
id-it-unsupportedOIDs
id-it-keyPairParamReq
id-it-keyPairParamRep
id-it-revPassphrase
id-regCtrl-oldCertID
id-regCtrl-protocolEncrKey
id-regInfo-certReq
id-cmc-getCert
id-cmc-confirmCertAcceptance
id-ecPublicKey
set-msgExt
set-certExt
certificate extensions
setct-AcqCardCodeMsg
setct-PCertReqData
EVP part of OpenSSL 1.0.2g 1 Mar 2016
cert_info
crlUrl
certs
issuerKeyHash
OCSP_CERTID
reqCert
value.byName
value.byKey
value.good
value.revoked
value.unknown
OCSP_CERTSTATUS
certId
certStatus
Big Number part of OpenSSL 1.0.2g 1 Mar 2016
.\crypto\engine\eng_pkey.c
PEM part of OpenSSL 1.0.2g 1 Mar 2016
Enter PEM pass phrase:
phrase is too short, needs to be at least %d chars
X509 CERTIFICATE
CERTIFICATE
NEW CERTIFICATE REQUEST
CERTIFICATE REQUEST
TRUSTED CERTIFICATE
0123456789
.\crypto\ec\ec_key.c
RSA part of OpenSSL 1.0.2g 1 Mar 2016
DH Private-Key
DH Public-Key
%s: (%d bit)
private-key:
public-key:
x%s
recommended-private-length: %d bits
X.509 part of OpenSSL 1.0.2g 1 Mar 2016
OPENSSL_ALLOW_PROXY_CERTS
unable to get issuer certificate
unable to get certificate CRL
unable to decrypt certificate's signature
unable to decode issuer public key
certificate signature failure
certificate is not yet valid
certificate has expired
format error in certificate's notBefore field
format error in certificate's notAfter field
self signed certificate
self signed certificate in certificate chain
unable to get local issuer certificate
unable to verify the first certificate
certificate chain too long
certificate revoked
invalid CA certificate
invalid non-CA certificate (has CA markings)
proxy certificates not allowed, please set the appropriate flag
unsupported certificate purpose
certificate not trusted
certificate rejected
authority and subject key identifier mismatch
key usage does not include certificate signing
unable to get CRL issuer certificate
key usage does not include CRL signing
key usage does not include digital signature
invalid or inconsistent certificate extension
invalid or inconsistent certificate policy extension
Unsupported extension feature
name constraints minimum and maximum not supported
unsupported name constraint type
unsupported or invalid name constraint syntax
unsupported or invalid name syntax
Suite B: certificate version invalid
Suite B: invalid public key algorithm
j <= (int)sizeof(ctx->key)
EC part of OpenSSL 1.0.2g 1 Mar 2016
ASN.1 part of OpenSSL 1.0.2g 1 Mar 2016
SHA1 part of OpenSSL 1.0.2g 1 Mar 2016
SHA-256 part of OpenSSL 1.0.2g 1 Mar 2016
SHA-512 part of OpenSSL 1.0.2g 1 Mar 2016
MD5 part of OpenSSL 1.0.2g 1 Mar 2016
.\crypto\dh\dh_key.c
pub_key
priv_key
RSA PRIVATE KEY
DSA PRIVATE KEY
EC PRIVATE KEY
?456789:;<=
!"#$%&'()* ,-./0123
DSA part of OpenSSL 1.0.2g 1 Mar 2016
value.set
value.single
pkeyalg
pkey
PKCS8_PRIV_KEY_INFO
.\crypto\evp\evp_pkey.c
value.named_curve
value.parameters
value.implicitlyCA
privateKey
publicKey
EC_PRIVATEKEY
p.other
p.onBasis
p.tpBasis
p.ppBasis
p.prime
p.char_two
d.other
d.data
d.sign
d.enveloped
d.signed_and_enveloped
d.digest
d.encrypted
cert
key_enc_algor
enc_key
public_key
X509_PUBKEY
.\crypto\asn1\x_pubkey.c
pubkey
Content-Length: %d
%s %s HTTP/1.0
Load certs from files in a directory
%s%clx.%s%d
\X
keyid
X509_CERT_AUX
X509_CERT_PAIR
AUTHORITY_KEYID
d.otherName
d.rfc822Name
d.dNSName
d.directoryName
d.ediPartyName
d.uniformResourceIdentifier
d.iPAddress
d.registeredID
Key Compromise
keyCompromise
Cessation Of Operation
cessationOfOperation
Certificate Hold
certificateHold
name.fullname
name.relativename
%*s%s:
%*sOnly User Certificates
%*sOnly CA Certificates
%*sOnly Attribute Certificates
%d.%d.%d.%d/%d.%d.%d.%d
PROXY_CERT_INFO_EXTENSION
RAND part of OpenSSL 1.0.2g 1 Mar 2016
You need to read the OpenSSL FAQ, hXXp://VVV.openssl.org/support/faq.html
DES part of OpenSSL 1.0.2g 1 Mar 2016
libdes part of OpenSSL 1.0.2g 1 Mar 2016
IDEA part of OpenSSL 1.0.2g 1 Mar 2016
RC2 part of OpenSSL 1.0.2g 1 Mar 2016
AES part of OpenSSL 1.0.2g 1 Mar 2016
.pp@0
aEÐ
 (#EÚ
ÚE<<0
TXT_DB part of OpenSSL 1.0.2g 1 Mar 2016
nkey <= EVP_MAX_KEY_LENGTH
.\crypto\evp\evp_key.c
%s %s%lu (%s0x%lx)
ddddddZ
ddddddZ
Private-Key: (%d bit)
Public-Key: (%d bit)
Private-Key
Public-Key
CONF part of OpenSSL 1.0.2g 1 Mar 2016
/usr/local/ssl/certs
/usr/local/ssl/cert.pem
SSL_CERT_DIR
SSL_CERT_FILE
rsa_keygen_bits
rsa_keygen_pubexp
hexkey
ECDSA part of OpenSSL 1.0.2g 1 Mar 2016
ECDH part of OpenSSL 1.0.2g 1 Mar 2016
NETSCAPE_CERT_SEQUENCE
keylen <= sizeof key
EVP_CIPHER_key_length(cipher) <= (int)sizeof(md_tmp)
'() ,-./:=?
%s - d:d:d%.*s %d%s
<unsupported>
othername:<unsupported>
X400Name:<unsupported>
EdiPartyName:<unsupported>
email:%s
DNS:%s
URI:%s
IP Address:%d.%d.%d.%d
CERTIFICATEPOLICIES
d.cpsuri
d.usernotice
%*sCPS: %s
%*sOrganization: %s
%*sNumber%s:
%*sExplicit Text: %s
ADVAPI32.DLL
KERNEL32.DLL
NETAPI32.DLL
USER32.DLL
CMS_CertificateChoices
d.issuerAndSerialNumber
d.subjectKeyIdentifier
d.crl
certificates
keyEncryptionAlgorithm
encryptedKey
CMS_KeyTransRecipientInfo
keyAttrId
keyAttr
CMS_OtherKeyAttribute
CMS_RecipientKeyIdentifier
d.rKeyId
CMS_KeyAgreeRecipientIdentifier
CMS_RecipientEncryptedKey
CMS_OriginatorPublicKey
d.originatorKey
CMS_OriginatorIdentifierOrKey
recipientEncryptedKeys
CMS_KeyAgreeRecipientInfo
keyIdentifier
keyDerivationAlgorithm
CMS_PasswordRecipientInfo
d.ktri
d.kari
d.kekri
d.pwri
d.ori
d.signedData
d.envelopedData
d.digestedData
d.encryptedData
d.authenticatedData
d.compressedData
d.allOrFirstTier
d.receiptList
keyInfo
otherCertFormat
otherCert
CMS_OtherCertificateFormat
d.certificate
d.extendedCertificate
d.v1AttrCert
d.v2AttrCert
ASN1 OID: %s
NIST CURVE: %s
Field Type: %s
Basis Type: %s
CONF_def part of OpenSSL 1.0.2g 1 Mar 2016
[%s] %s=%s
[[%s]]
%'%1$=%C%K%O%s%
.%.-.3.7.9.?.W.[.o.y.
C%C'C3C7C9COCWCiC
keyfunc
keylength
X:
.\crypto\pkcs12\p12_key.c
.\crypto\asn1\x_pkey.c
Key Encipherment
keyEncipherment
Key Agreement
keyAgreement
Certificate Sign
keyCertSign
EXTENDED_KEY_USAGE
PKEY_USAGE_PERIOD
%*sZone: %s, User:
.\crypto\x509v3\v3_skey.c
.\crypto\x509v3\v3_akey.c
%*scrlUrl:
%*sPolicy Text: %s
XX
%.14s.dZ
%*sSigned Certificate Timestamp:
%lu:%s:%s:%d:%s
Verifying - %s
%s.dll
value.other
value.x509cert
value.sdsicert
value.keybag
value.shkeybag
value.safes
value.bag
function not supported
operation canceled
address_family_not_supported
operation_in_progress
operation_not_supported
protocol_not_supported
operation_would_block
address family not supported
broken pipe
inappropriate io control operation
not supported
operation in progress
operation not permitted
operation not supported
operation would block
protocol not supported
Operation not permitted
Inappropriate I/O control operation
Broken pipe
GetProcessWindowStation
operator
WS2_32.dll
InternetOpenUrlA
HttpOpenRequestA
HttpSendRequestA
WININET.dll
IPHLPAPI.DLL
RPCRT4.dll
DNSAPI.dll
GetProcessHeap
CreateIoCompletionPort
KERNEL32.dll
USER32.dll
ReportEventA
RegCreateKeyA
RegOpenKeyA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyW
ADVAPI32.dll
ole32.dll
OLEAUT32.dll
GetCPInfo
PeekNamedPipe
l}C.we
zcÁ
version="1.0.0.0"
name="Microsoft.Windows.Common-Controls"
version="6.0.0.0"
publicKeyToken="6595b64144ccf1df"
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"><assemblyIdentity version="1.0.0.0" processorArchitecture="x86" name="sse" type="win32"></assemblyIdentity><description>sse</description><dependency><dependentAssembly><assemblyIdentity type="win32" name="Microsoft.Windows.Common-Controls" version="6.0.0.0" processorArchitecture="X86" publicKeyToken="6595b64144ccf1df" language="*"></assemblyIdentity></dependentAssembly></dependency><trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"><security><requestedPrivileges><requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel></requestedPrivileges></security></trustInfo></assembly>PPADDINGXXPADDING
7(8,8084888
< <$<(<,<
6l6
6 6$6(6,60646~6
004080<0@0
= =$=(=,=0=4=8=<=
0-040C0Q0g0n0}0
9 9$9(959
3%4U4
9%9-949[9
> >$>(>,>0>4>8>`?
3 3C6k6y6Œ8\8c8k8p8t8x8
2 2&202;2~2
> >$>(>,>0>4>8>
0(1,1\1`1
7(8,8\8`8
1 1$1,101
7 7$70787@7
;(;,;0;8;@;
? ?$?0?@?
; ;$;(;,;
Tmscoree.dll
kernel32.dll
portuguese-brazilian
- floating point support not loaded
- CRT not initialized
- Attempt to initialize the CRT more than once.
sse.exe

%original file name%.exe_1912_rwx_01850000_001C9000:

h.Toh/T
.text
`.rdata
@.data
.rsrc
@.reloc
RC4 for x86, CRYPTOGAMS by <appro@openssl.org>
6-9'6-9'
$6.:$6.:
*?#1*?#1
>8$4,8$4,
AES for x86, CRYPTOGAMS by <appro@openssl.org>
AES for Intel AES-NI, CRYPTOGAMS by <appro@openssl.org>
Camellia for x86 by <appro@openssl.org>
SHA1 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
SHA256 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
SHA512 block transform for x86, CRYPTOGAMS by <appro@openssl.org>
GHASH for x86, CRYPTOGAMS by <appro@openssl.org>
Montgomery Multiplication for x86, CRYPTOGAMS by <appro@openssl.org>
GF(2^m) Multiplication for x86, CRYPTOGAMS by <appro@openssl.org>
8DKEYt
DKEY
8DKEYu
vhVj%Sj
//!"#$%&'()/*/// ,-/.
x@j%Sj
)<,u%S
9|$,v%U
FtPWW
FtPU
j.Yf;
_tcPVj@
.PjRW
Cv.SCv
%s/%s
Blacklisted by rule: %s:%s
:\output\out-blfromcfg.txt
\output\out-blcfg.txt
%sd:d:d %s
\blfromcfg.txt
\blcfg.txt
\output\out-blfromcfg.txt
%s-%ld
\output\log.txt
\output\msgids.txt
ip.txt
Mozilla
2,5,0,854
Linux\dkimsign.cpp
-----BEGIN RSA PRIVATE KEY-----
-----END RSA PRIVATE KEY-----
DomainKey-Signature: a=rsa-sha1; q=dns; c=%s;
s=%s; d=%s;
h=%s;
b=%s;
DomainKey-Trace:
%d.%d.%d.%d
dev.null
Linux\domainkeys.cpp
_domainkey.
_domainkey.%s
DomainKey-Signature:
._domainkey.
%s._domainkey.%s
DK_STAT_BADSIG: Signature was available but failed to verify against domain specified key
DK_STAT_NOKEY: No public key available (permanent failure)
DK_STAT_BADKEY: Unusable key, public if verifying, private if signing.
DK_STAT_CANTVRFY: Cannot get domain key to verify signature (temporary failure)
DK_STAT_REVOKED: Key has been revoked.
<td style="padding:0;margin:0" height=%d>
<a href="%s">
<img src="<%d,%d,%d,%d,%d>%s" border=0 vspace=0 hspace=0 width=%d height=%d>
Successfully sent using SMTP account %s (%d of %ld messages to %s)
Successfully sent %d of %ld messages to %s
Sending to %s in the same connection
New connection required, will send to %s
Mail transaction for %s is over.
Domain %s is bad (found in cache)
Domain %s found in cache
Domain %s isn't found in cache, resolving it
All tries to resolve %s failed.
Resolving %s using DNS server
Failed to receive response for %s from DNS server
Got DNS server response: domain %s is bad
Got error %d in response for %s from DNS server
MX's IP for domain %s found in cache:
Timeout waiting for domain %s to be resolved
No valid MXes for domain %s. Marking it as bad
Resolving MX %s using existing connection to DNS server
All tries to resolve MX for %s are failed
Resolving MX %s using DNS server
Failed to receive response for MX %s from DNS server
127.0.0.1
0.0.0.0
Got DNS server response: MX's address %s is bad. Trying another MX
Got error in response for MX %s from DNS server
Got some crap in response for MX %s from DNS server
MX %s successfully resolved to
All tries to resolve proxylock for %s failed.
Resolving proxylock for %s using DNS server
%d.%d.%d.%d.in-addr.arpa
Failed to receive response for proxylock %s from DNS server
Got DNS server response: no proxylock for %s
Got error in response for proxylock %s from DNS server
.com.net.org.gov.edu.biz.info
Proxy %s resolved to domain %s
Using inner proxy [%c]:
Using proxy [%c]:
Failed to connect to proxy %s
Successfully connected to proxy %s
Trying to establish SOCKS4 tunnel to %s via %s
SOCKS4 tunnel to %s via %s is established
SOCKS4 connection to %s via %s failed.
Trying HTTPS
Trying to establish HTTPS tunnel to %s via %s
HTTPS tunnel to %s via %s is established
HTTPS connection to %s via %s failed.
Trying to establish SOCKS5 tunnel to %s via %s
SOCKS5 tunnel to %s via %s is established
Bad SOCKS5 proxy %s, disabled
Failed to establish SOCKS5 tunnel to %s via %s
Empty HTTPS response from proxy
HTTP/1.0 407
HTTP/1.0 403
HTTP/1.0 50
HTTPS error (403 or 50) from proxy
Bad HTTPS response (No success code or HTML) from proxy
%s:%s
Proxy-Authorization: Basic %s
CONNECT %d.%d.%d.%d:%d HTTP/1.0
Connecting to %s (MX=%s) directly
Successfully connected to %s (MX=%s)
Failed to receive greeting from %s
Negative POP3 greeting from %s:
IP %s is blacklisted for the domain %s:
Negative greeting from %s:
Got greeting from %s
%s %s
Sending '%s %s' to %s
Failed to receive response for HELO from %s
Got error or empty response for HELO from %s
Negative response for HELO from %s:
Got positive response for HELO from %s
LOGIN
MAIL FROM: <%s>
Sending 'MAIL FROM: <%s>' to %s
Failed to receive response for MAIL FROM from %s
Negative response for MAIL FROM from %s:
Got positive response for MAIL FROM from %s
RCPT TO: <%s>
Sending 'RCPT TO: <%s>' to %s
Failed to receive response for RCPT TO from %s
Negative response for 'RCPT TO: <%s>' from %s:
Positive response for 'RCPT TO: <%s>' from %s
No valid emails in the transaction for %s
Transaction for %s is over, %d emails of %ld are valid
Sending DATA to %s
Failed to receive response for DATA from %s
Negative response for DATA from %s:
IP %s is throttled out for the domain %s
Got positive response for DATA from %s
Error sending the next portion of message to %s
Sending the next portion of message (bytes %ld to %ld) to %s
Failed to receive response for '.' from %s
Negative response for '.' from %s:
This user doesn't have a yahoo.com
The message to %s is sent successfully.
Sending 'RSET' to %s
RSET failed for %s, opening new connection
Sending STARTTLS to %s
Failed to receive response for STARTTLS from %s
Negative response for STARTTLS from %s:
Trying to establish TLS with %s
TLS handshake with %s failed
TLS channel to %s is established, sending EHLO once again
Sending AUTH PLAIN to %s
Failed to receive response for AUTH PLAIN from %s
Negative response for AUTH PLAIN from %s:
Got positive response for AUTH PLAIN from %s
Sending login/password to %s
Invalid format of SMTP account %s
Failed to receive response for login/password from %s
Negative response for login/password from %s:
Got positive response for login/password from %s
AUTH LOGIN
Sending AUTH LOGIN to %s
Failed to receive response for AUTH LOGIN from %s
Negative response for AUTH LOGIN from %s:
Got positive response for AUTH LOGIN from %s
Sending login to %s
Failed to receive response for login from %s
Negative response for login from %s:
Got positive response for login from %s
Sending password to %s
Failed to receive response for password from %s
Negative response for password from %s:
Got positive response for password from %s
Sending AUTH CRAM-MD5 to %s
Failed to receive response for AUTH CRAM-MD5 from %s
Negative response for AUTH CRAM-MD5 from %s:
Got positive response for AUTH CRAM-MD5 from %s
All local IPs are blacklisted in the domain %s
Sending CRAM-MD5 response to %s
Waiting %ld sec for greylisted IP %s to be expired in %s
Failed to receive response for CRAM-MD5 response from %s
Negative response for CRAM-MD5 response from %s:
Got positive response for CRAM-MD5 response from %s
USER %s
Sending USER to %s
Failed to receive response for USER from %s
All tries to send the message to %s failed
Negative response for USER from %s:
Got positive response for USER from %s
Failed to resolve MX for %s
PASS %s
Sending PASS to %s
Failed to receive response for PASS from %s
Negative response for PASS from %s:
Got positive response for PASS from %s
Sending STAT to %s
All tries to connect to %s via proxies failed
Failed to receive response for STAT from %s
Negative response for STAT from %s:
Got positive response for STAT from %s
Sending QUIT to %s
Received a part of response: %s
Failed to send a message to %s, retrying (%d tries left)
Failed to send a message to %s.
SMTP
ESMTP
ASMTP
group21.345mail.com
relay.2yahoo.com
smtp.endend.nl
mail.webhostings4u.com
rsmail.alkoholic.net
mx.reskind.net
public.micromail.com.au
smtp4.cyberemailings.com
mailout.endmonthnow.com
webmail.halftomorrow.com
rly04.hottestmile.com
smtp18.yenddx.com
smtp-server1.cfdenselr.com
relay37.vosimerkam.net
mmx09.tilkbans.com
mtu23.bigping.com
mtu67.syds.piswix.net
asx121.turbo-inline.com
qrx.quickslick.com
mail.gimmicc.net
qnx.mdrost.com
mxs.perenter.com
relay-x.misswldrs.com
smtp.doneohx.com
{%DOMAIN%}
smtp.mixedthings.net
nntp.pinxodet.net
snmp.otwaloow.com
external.newsubdomain.com
m1.gns.snv.thisdomainl.com
mail.naihautsui.co.kr
mts.locks.grgtween.net
mx03.listsystemsf.net
Received: from unknown (%s)
Received: from %s ([%s])
Received: from [%s]
Received: from %s [%s]
Received: from %s ([%s])
Received: from unknown (HELO %s) (%s)
%sby %s with %s; %s
%s"%s" <%s>
%s<%s>
{%%MAILLISTCOLUMN%d%%}
\synonyms.txt
{%CHR:
{%%ROTF$:%s%%}
{%%CHR:%s%%}
name="%s"
filename="%s"
{%RANDOMLY%}Reply-To: {%FROM%}
From: {%FROM%}
{%%INCLUDE_BASE64:%s%%}
Message-ID: {%MSGID%}
{%NOT_OUTLOOK%}Date: {ÚTE%}
{%%RANDOMLY%%}Reply-To: "=?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%FROMNAME%%}{%%END_BASE64%%}?=" <{%%FROMEMAIL%%}>
From: "=?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%FROMNAME%%}{%%END_BASE64%%}?=" <{%%FROMEMAIL%%}>
{%NOT_OUTLOOK%}{%USERAGENT_HEADER%}
Subject: =?{%%ROT:%s%%}?B?{%¾GIN_BASE64%%}{%%SUBJECT%%}{%%END_BASE64%%}?=
{%%OUTLOOK%%}Date: {%ÚTE%%}
Subject: {%SUBJECT%}
{%OUTLOOK%}Date: {ÚTE%}
charset="{%CHARSET%}"
{%OUTLOOK%}{%XMAILER_HEADER%}
{%OUTLOOK%}{%PLAINTEXT_MSG%}
charset="{%CHARSET%}"{%OUTLOOK%}
{%%NOT_OUTLOOK%%}Content-Transfer-Encoding: %s
{%OUTLOOK%}<META http-equiv=Content-Type content="text/html; charset={%CHARSET%}">
{%CHARSET%}
{%%RND$:%s%%}
{%MSGID%}
{%MSGIDPART%}
{%SS%}
{%%EMBIMG%d%%}
ROTURL:
X-Mailer: %s
{%XMAILER_HEADER%}
User-Agent: %s
{%USERAGENT_HEADER%}
%%%2x
HEXURL:
cid:{%%EMBIMG%d%%}
{%SUBJECT%}
&#x%%0%dx;
To: "%s" <%s>
To: <%s>
--{%%BOUNDARY%d%%}
Content-Type: audio/%s;
name="{%%RND:<l15>%%}.%s"
Content-ID: <{%%EMBIMG%d%%}>
%s{%%INCLUDE_BASE64:%s%%}%s
{ÚTE%}
Content-Type: image/%s;
{ÚTEBEFORE%}
{Ý%}
{%%%s%%}
"%s" <%s>
{%FROM%}
{%FROMEMAIL%}
{%FROMNAME%}
%s\%s.mac
{%FROMACCOUNT%}
{%FROMDOMAIN%}
{%PLAINTEXT_MSG%}
<SPAN STYLE="display:none">%s</SPAN>
----=_NextPart_000_00X_lX.lX
<FFFFFFFF.FFFFFFFF
FFFFFFFF.FFFFFFFF
@{%FROMDOMAIN%}
%a, %d %b %Y %H:%M:%S
%s % .2d00
<FONT color=#%2x%2x%2x>
{%ROTURL:
0123456789ABCDEF-d-d-d%s
d:d:d %s
hXXp://
TypesSupported
Failed to download settings: InternetConnect failed (%d)
%s/%d
Failed to download settings: HttpOpenRequest failed (%d)
Failed to download settings: HttpSendRequest failed (%d)
Failed to download settings: InternetReadFile failed (%d)
Advapi32.dll
RegOpenKeyTransactedA
RegCreateKeyTransactedA
RegDeleteKeyTransactedA
FRegDeleteKeyExA
HKEY_CLASSES_ROOT
HKEY_CURRENT_USER
HKEY_LOCAL_MACHINE
HKEY_USERS
HKEY_PERFORMANCE_DATA
HKEY_DYN_DATA
HKEY_CURRENT_CONFIG
[GetDataBlock returning %d
[GetCode(,%d,%d) returning %d]
[LWZReadByte(,%d,%d) returning %d]
gd-jpeg: JPEG library reports unrecoverable error:
CREATOR: gd-jpeg v%s (using IJG JPEG v%d),
quality = %d
gd_jpeg: warning: jpeg_write_scanlines returns %u -- expected 1
gd-jpeg: warning: jpeg_read_header returns %d, expected %d
gd-jpeg: warning: JPEG image height (%u) is greater than INT_MAX (%d) (and thus greater than gd can handle)
gd-jpeg: warning: JPEG image width (%u) is greater than INT_MAX (%d) (and thus greater than gd can handle)
gd-jpeg: warning: jpeg_start_decompress reports suspended data source
gd-jpeg: error: JPEG color quantization request resulted in output_components == %d (expected 3 for RGB)
gd-jpeg: error: JPEG color quantization request resulted in output_components == %d (expected 4 for CMYK)
gd-jpeg: error: jpeg_read_scanlines returns %u, expected 1
gd-jpeg: warning: jpeg_finish_decompress reports suspended data source
gd warning: one parameter to a memory allocation multiplication is negative, failing operation gracefully
gd warning: product of memory allocation multiplication would exceed INT_MAX, failing operation gracefully
Bogus message code %d
Invalid component ID %d in SOS
IDCT output block size %d not supported
Wrong JPEG library version: library is %d, caller expects %d
Invalid memory pool code %d
Unsupported JPEG data precision %d
Invalid progressive parameters Ss=%d Se=%d Ah=%d Al=%d
Invalid progressive parameters at scan script entry %d
Invalid scan script at entry %d
Improper call to JPEG library in state %d
JPEG parameter struct mismatch: library thinks size is %u, caller expects %u
Buffer passed to JPEG library is too small
Too many color components: %d, max %d
Unsupported color conversion request
Bogus DAC index %d
Bogus DAC value 0x%x
Bogus DHT index %d
Bogus DQT index %d
Empty JPEG image (DNL not supported)
Maximum supported image dimension is %u pixels
Cannot transcode due to multiple use of quantization table %d
Backing store not supported
Huffman table 0xx was not defined
Quantization table 0xx was not defined
Not a JPEG file: starts with 0xx 0xx
Insufficient memory (case %d)
Cannot quantize more than %d color components
Cannot quantize to fewer than %d colors
Cannot quantize to more than %d colors
Unsupported JPEG process: SOF type 0xx
Failed to create temporary file %s
Unsupported marker type 0xx
Unknown APP0 marker (not JFIF), length %u
Adobe APP14 marker: version %d, flags 0xx 0xx, transform %d
Unknown APP14 marker (not Adobe), length %u
Define Arithmetic Table 0xx: 0xx
Define Huffman Table 0xx
Define Quantization Table %d precision %d
Define Restart Interval %u
Freed EMS handle %u
Obtained EMS handle %u
= = = = = = = =
JFIF APP0 marker: version %d.d, density %dx%d %d
Warning: thumbnail image size does not match data length %u
JFIF extension marker: type 0xx, length %u
with %d x %d thumbnail image
Miscellaneous marker 0xx, length %u
Unexpected marker 0xx
%4u %4u %4u %4u %4u %4u %4u %4u
Quantizing to %d = %d*%d*%d colors
Quantizing to %d colors
Selected %d colors for quantization
At marker 0xx, recovery action %d
RST%d
Smoothing not supported with nonstandard sampling ratios
Start Of Frame 0xx: width=%u, height=%u, components=%d
Component %d: %dhx%dv q=%d
Start Of Scan: %d components
Component %d: dc=%d ac=%d
Ss=%d, Se=%d, Ah=%d, Al=%d
Closed temporary file %s
Opened temporary file %s
JFIF extension marker: palette thumbnail image, length %u
JFIF extension marker: JPEG-compressed thumbnail image, length %u
JFIF extension marker: RGB thumbnail image, length %u
Unrecognized component IDs %d %d %d, assuming YCbCr
Freed XMS handle %u
Obtained XMS handle %u
Unknown Adobe color transform code %d
Corrupt JPEG data: %u extraneous bytes before marker 0xx
Inconsistent progression sequence for component %d coefficient %d
Warning: unknown JFIF revision number %d.d
Corrupt JPEG data: found marker 0xx instead of RST%d
%ld%c
OpenSSL 1.0.2g 1 Mar 2016
ALL:!EXPORT:!aNULL:!eNULL:!SSLv2
.\ssl\ssl_cert.c
%-23s %s Kx=%-8s Au=%-4s Enc=%-9s Mac=%-4s%s
EXPORT
EXPORT40
EXPORT56
TLSv1 part of OpenSSL 1.0.2g 1 Mar 2016
SSLv3 part of OpenSSL 1.0.2g 1 Mar 2016
os.length <= (int)sizeof(ret->session_id)
key expansion
client write key
server write key
%s:%d: rec->data != rec->input
s->init_num == (int)s->d1->w_msg_hdr.msg_len   DTLS1_HM_HEADER_LENGTH
((long)msg_hdr->msg_len) > 0
invalid state reached %s:%d
s->d1->w_msg_hdr.msg_len   ((s->version==DTLS1_BAD_VER)?3:DTLS1_CCS_HEADER_LENGTH) == (unsigned int)s->init_num
s->d1->w_msg_hdr.msg_len   DTLS1_HM_HEADER_LENGTH == (unsigned int)s->init_num
retransmit: message %d non-existant
GOST signature length is %d
DTLSv1 part of OpenSSL 1.0.2g 1 Mar 2016
ANY PRIVATE KEY
PRIVATE KEY
ENCRYPTED PRIVATE KEY
.\crypto\pem\pem_pkey.c
x509 certificate routines
DSO support routines
passed a null parameter
error:lX:%s:%s:%s
Stack part of OpenSSL 1.0.2g 1 Mar 2016
x509_pkey
evp_pkey
ssl_cert
ssl_sess_cert
%s(%d): OpenSSL internal error, assertion failed: %s
Diffie-Hellman part of OpenSSL 1.0.2g 1 Mar 2016
lhash part of OpenSSL 1.0.2g 1 Mar 2016
setct-PCertResTBS
setct-CertReqData
setct-CertReqTBS
setct-CertResData
setct-CertInqReqTBS
setct-AcqCardCodeMsgTBE
setct-CertReqTBE
setct-CertReqTBEX
setct-CertResTBE
setCext-certType
setCext-cCertRequired
setAttr-Cert
set-rootKeyThumb
JOINT-ISO-ITU-T
joint-iso-itu-t
msSmartcardLogin
Microsoft Smartcardlogin
proxyCertInfo
Proxy Certificate Information
certicom-arc
certificateIssuer
X509v3 Certificate Issuer
id-PasswordBasedMAC
password based MAC
dhKeyAgreement
id-Gost28147-89-CryptoPro-KeyMeshing
id-Gost28147-89-None-KeyMeshing
challengePassword
extendedCertificateAttributes
nsCertExt
Netscape Certificate Extension
LocalKeySet
Microsoft Local Key set
nsCertType
Netscape Cert Type
nsBaseUrl
Netscape Base Url
nsRevocationUrl
Netscape Revocation Url
nsCaRevocationUrl
Netscape CA Revocation Url
nsRenewalUrl
Netscape Renewal Url
nsCaPolicyUrl
Netscape CA Policy Url
nsCertSequence
supportedApplicationContext
Netscape Certificate Sequence
subjectKeyIdentifier
userPassword
X509v3 Subject Key Identifier
userCertificate
keyUsage
cACertificate
X509v3 Key Usage
privateKeyUsagePeriod
certificateRevocationList
X509v3 Private Key Usage Period
crossCertificatePair
supportedAlgorithms
certificatePolicies
X509v3 Certificate Policies
authorityKeyIdentifier
X509v3 Authority Key Identifier
anyExtendedKeyUsage
Any Extended Key Usage
extendedKeyUsage
dhSinglePass-stdDH-sha1kdf-scheme
X509v3 Extended Key Usage
dhSinglePass-stdDH-sha224kdf-scheme
dhSinglePass-stdDH-sha256kdf-scheme
dhSinglePass-stdDH-sha384kdf-scheme
dhSinglePass-stdDH-sha512kdf-scheme
TLS Web Server Authentication
dhSinglePass-cofactorDH-sha1kdf-scheme
dhSinglePass-cofactorDH-sha224kdf-scheme
TLS Web Client Authentication
dhSinglePass-cofactorDH-sha256kdf-scheme
dhSinglePass-cofactorDH-sha384kdf-scheme
dhSinglePass-cofactorDH-sha512kdf-scheme
ct_precert_scts
CT Precertificate SCTs
ct_precert_poison
CT Precertificate Poison
ct_precert_signer
CT Precertificate Signer
ct_cert_scts
CT Certificate SCTs
pbeWithSHA1And3-KeyTripleDES-CBC
pbeWithSHA1And2-KeyTripleDES-CBC
keyBag
pkcs8ShroudedKeyBag
certBag
localKeyID
x509Certificate
sdsiCertificate
id-smime-mod-msg-v3
id-smime-ct-publishCert
id-smime-aa-msgSigDigest
id-smime-aa-encrypKeyPref
id-smime-aa-signingCertificate
id-smime-aa-smimeEncryptCerts
id-smime-aa-ets-otherSigCert
id-smime-aa-ets-CertificateRefs
id-smime-aa-ets-certValues
id-smime-aa-ets-certCRLTimestamp
id-mod-qualified-cert-88
id-mod-qualified-cert-93
id-mod-attribute-cert
id-it-caProtEncCert
id-it-signKeyPairTypes
id-it-encKeyPairTypes
id-it-caKeyUpdateInfo
id-it-unsupportedOIDs
id-it-keyPairParamReq
id-it-keyPairParamRep
id-it-revPassphrase
id-regCtrl-oldCertID
id-regCtrl-protocolEncrKey
id-regInfo-certReq
id-cmc-getCert
id-cmc-confirmCertAcceptance
id-ecPublicKey
set-msgExt
set-certExt
certificate extensions
setct-AcqCardCodeMsg
setct-PCertReqData
EVP part of OpenSSL 1.0.2g 1 Mar 2016
cert_info
crlUrl
certs
issuerKeyHash
OCSP_CERTID
reqCert
value.byName
value.byKey
value.good
value.revoked
value.unknown
OCSP_CERTSTATUS
certId
certStatus
Big Number part of OpenSSL 1.0.2g 1 Mar 2016
.\crypto\engine\eng_pkey.c
PEM part of OpenSSL 1.0.2g 1 Mar 2016
Enter PEM pass phrase:
phrase is too short, needs to be at least %d chars
X509 CERTIFICATE
CERTIFICATE
NEW CERTIFICATE REQUEST
CERTIFICATE REQUEST
TRUSTED CERTIFICATE
0123456789
.\crypto\ec\ec_key.c
RSA part of OpenSSL 1.0.2g 1 Mar 2016
DH Private-Key
DH Public-Key
%s: (%d bit)
private-key:
public-key:
x%s
recommended-private-length: %d bits
X.509 part of OpenSSL 1.0.2g 1 Mar 2016
OPENSSL_ALLOW_PROXY_CERTS
unable to get issuer certificate
unable to get certificate CRL
unable to decrypt certificate's signature
unable to decode issuer public key
certificate signature failure
certificate is not yet valid
certificate has expired
format error in certificate's notBefore field
format error in certificate's notAfter field
self signed certificate
self signed certificate in certificate chain
unable to get local issuer certificate
unable to verify the first certificate
certificate chain too long
certificate revoked
invalid CA certificate
invalid non-CA certificate (has CA markings)
proxy certificates not allowed, please set the appropriate flag
unsupported certificate purpose
certificate not trusted
certificate rejected
authority and subject key identifier mismatch
key usage does not include certificate signing
unable to get CRL issuer certificate
key usage does not include CRL signing
key usage does not include digital signature
invalid or inconsistent certificate extension
invalid or inconsistent certificate policy extension
Unsupported extension feature
name constraints minimum and maximum not supported
unsupported name constraint type
unsupported or invalid name constraint syntax
unsupported or invalid name syntax
Suite B: certificate version invalid
Suite B: invalid public key algorithm
j <= (int)sizeof(ctx->key)
EC part of OpenSSL 1.0.2g 1 Mar 2016
ASN.1 part of OpenSSL 1.0.2g 1 Mar 2016
SHA1 part of OpenSSL 1.0.2g 1 Mar 2016
SHA-256 part of OpenSSL 1.0.2g 1 Mar 2016
SHA-512 part of OpenSSL 1.0.2g 1 Mar 2016
MD5 part of OpenSSL 1.0.2g 1 Mar 2016
.\crypto\dh\dh_key.c
pub_key
priv_key
RSA PRIVATE KEY
DSA PRIVATE KEY
EC PRIVATE KEY
?456789:;<=
!"#$%&'()* ,-./0123
DSA part of OpenSSL 1.0.2g 1 Mar 2016
value.set
value.single
pkeyalg
pkey
PKCS8_PRIV_KEY_INFO
.\crypto\evp\evp_pkey.c
value.named_curve
value.parameters
value.implicitlyCA
privateKey
publicKey
EC_PRIVATEKEY
p.other
p.onBasis
p.tpBasis
p.ppBasis
p.prime
p.char_two
d.other
d.data
d.sign
d.enveloped
d.signed_and_enveloped
d.digest
d.encrypted
cert
key_enc_algor
enc_key
public_key
X509_PUBKEY
.\crypto\asn1\x_pubkey.c
pubkey
Content-Length: %d
%s %s HTTP/1.0
Load certs from files in a directory
%s%clx.%s%d
\X
keyid
X509_CERT_AUX
X509_CERT_PAIR
AUTHORITY_KEYID
d.otherName
d.rfc822Name
d.dNSName
d.directoryName
d.ediPartyName
d.uniformResourceIdentifier
d.iPAddress
d.registeredID
Key Compromise
keyCompromise
Cessation Of Operation
cessationOfOperation
Certificate Hold
certificateHold
name.fullname
name.relativename
%*s%s:
%*sOnly User Certificates
%*sOnly CA Certificates
%*sOnly Attribute Certificates
%d.%d.%d.%d/%d.%d.%d.%d
PROXY_CERT_INFO_EXTENSION
RAND part of OpenSSL 1.0.2g 1 Mar 2016
You need to read the OpenSSL FAQ, hXXp://VVV.openssl.org/support/faq.html
DES part of OpenSSL 1.0.2g 1 Mar 2016
libdes part of OpenSSL 1.0.2g 1 Mar 2016
IDEA part of OpenSSL 1.0.2g 1 Mar 2016
RC2 part of OpenSSL 1.0.2g 1 Mar 2016
AES part of OpenSSL 1.0.2g 1 Mar 2016
.pp@0
aEÐ
 (#EÚ
ÚE<<0
TXT_DB part of OpenSSL 1.0.2g 1 Mar 2016
nkey <= EVP_MAX_KEY_LENGTH
.\crypto\evp\evp_key.c
%s %s%lu (%s0x%lx)
ddddddZ
ddddddZ
Private-Key: (%d bit)
Public-Key: (%d bit)
Private-Key
Public-Key
CONF part of OpenSSL 1.0.2g 1 Mar 2016
/usr/local/ssl/certs
/usr/local/ssl/cert.pem
SSL_CERT_DIR
SSL_CERT_FILE
rsa_keygen_bits
rsa_keygen_pubexp
hexkey
ECDSA part of OpenSSL 1.0.2g 1 Mar 2016
ECDH part of OpenSSL 1.0.2g 1 Mar 2016
NETSCAPE_CERT_SEQUENCE
keylen <= sizeof key
EVP_CIPHER_key_length(cipher) <= (int)sizeof(md_tmp)
'() ,-./:=?
%s - d:d:d%.*s %d%s
<unsupported>
othername:<unsupported>
X400Name:<unsupported>
EdiPartyName:<unsupported>
email:%s
DNS:%s
URI:%s
IP Address:%d.%d.%d.%d
CERTIFICATEPOLICIES
d.cpsuri
d.usernotice
%*sCPS: %s
%*sOrganization: %s
%*sNumber%s:
%*sExplicit Text: %s
ADVAPI32.DLL
KERNEL32.DLL
NETAPI32.DLL
USER32.DLL
CMS_CertificateChoices
d.issuerAndSerialNumber
d.subjectKeyIdentifier
d.crl
certificates
keyEncryptionAlgorithm
encryptedKey
CMS_KeyTransRecipientInfo
keyAttrId
keyAttr
CMS_OtherKeyAttribute
CMS_RecipientKeyIdentifier
d.rKeyId
CMS_KeyAgreeRecipientIdentifier
CMS_RecipientEncryptedKey
CMS_OriginatorPublicKey
d.originatorKey
CMS_OriginatorIdentifierOrKey
recipientEncryptedKeys
CMS_KeyAgreeRecipientInfo
keyIdentifier
keyDerivationAlgorithm
CMS_PasswordRecipientInfo
d.ktri
d.kari
d.kekri
d.pwri
d.ori
d.signedData
d.envelopedData
d.digestedData
d.encryptedData
d.authenticatedData
d.compressedData
d.allOrFirstTier
d.receiptList
keyInfo
otherCertFormat
otherCert
CMS_OtherCertificateFormat
d.certificate
d.extendedCertificate
d.v1AttrCert
d.v2AttrCert
ASN1 OID: %s
NIST CURVE: %s
Field Type: %s
Basis Type: %s
CONF_def part of OpenSSL 1.0.2g 1 Mar 2016
[%s] %s=%s
[[%s]]
%'%1$=%C%K%O%s%
.%.-.3.7.9.?.W.[.o.y.
C%C'C3C7C9COCWCiC
keyfunc
keylength
X:
.\crypto\pkcs12\p12_key.c
.\crypto\asn1\x_pkey.c
Key Encipherment
keyEncipherment
Key Agreement
keyAgreement
Certificate Sign
keyCertSign
EXTENDED_KEY_USAGE
PKEY_USAGE_PERIOD
%*sZone: %s, User:
.\crypto\x509v3\v3_skey.c
.\crypto\x509v3\v3_akey.c
%*scrlUrl:
%*sPolicy Text: %s
XX
%.14s.dZ
%*sSigned Certificate Timestamp:
%lu:%s:%s:%d:%s
Verifying - %s
%s.dll
value.other
value.x509cert
value.sdsicert
value.keybag
value.shkeybag
value.safes
value.bag
function not supported
operation canceled
address_family_not_supported
operation_in_progress
operation_not_supported
protocol_not_supported
operation_would_block
address family not supported
broken pipe
inappropriate io control operation
not supported
operation in progress
operation not permitted
operation not supported
operation would block
protocol not supported
Operation not permitted
Inappropriate I/O control operation
Broken pipe
GetProcessWindowStation
operator
WS2_32.dll
InternetOpenUrlA
HttpOpenRequestA
HttpSendRequestA
WININET.dll
IPHLPAPI.DLL
RPCRT4.dll
DNSAPI.dll
GetProcessHeap
CreateIoCompletionPort
KERNEL32.dll
USER32.dll
ReportEventA
RegCreateKeyA
RegOpenKeyA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyW
ADVAPI32.dll
ole32.dll
OLEAUT32.dll
GetCPInfo
PeekNamedPipe
l}C.we
zcÁ
version="1.0.0.0"
name="Microsoft.Windows.Common-Controls"
version="6.0.0.0"
publicKeyToken="6595b64144ccf1df"
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"><assemblyIdentity version="1.0.0.0" processorArchitecture="x86" name="sse" type="win32"></assemblyIdentity><description>sse</description><dependency><dependentAssembly><assemblyIdentity type="win32" name="Microsoft.Windows.Common-Controls" version="6.0.0.0" processorArchitecture="X86" publicKeyToken="6595b64144ccf1df" language="*"></assemblyIdentity></dependentAssembly></dependency><trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"><security><requestedPrivileges><requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel></requestedPrivileges></security></trustInfo></assembly>PPADDINGXXPADDING
7(8,8084888
< <$<(<,<
6l6
6 6$6(6,60646~6
004080<0@0
= =$=(=,=0=4=8=<=
0-040C0Q0g0n0}0
9 9$9(959
3%4U4
9%9-949[9
> >$>(>,>0>4>8>`?
3 3C6k6y6Œ8\8c8k8p8t8x8
2 2&202;2~2
> >$>(>,>0>4>8>
0(1,1\1`1
7(8,8\8`8
1 1$1,101
7 7$70787@7
;(;,;0;8;@;
? ?$?0?@?
; ;$;(;,;
Tmscoree.dll
kernel32.dll
portuguese-brazilian
- floating point support not loaded
- CRT not initialized
- Attempt to initialize the CRT more than once.
sse.exe


Remove it with Ad-Aware

  1. Click (here) to download and install Ad-Aware Free Antivirus.
  2. Update the definition files.
  3. Run a full scan of your computer.


Manual removal*

  1. Terminate malicious process(es) (How to End a Process With the Task Manager):No processes have been created.
  2. Delete the original Trojan file.
  3. Reboot the computer.

*Manual removal may cause unexpected system behaviour and should be performed at your own risk.

Average: 2 (1 vote)


Lavasoft is the maker of Ad-Aware, the world's most popular anti-malware software with over 450 million downloads.
© 2025 Lavasoft. All rights reserved.
Terms Of Use |   Privacy Policy


x

Our best antivirus yet!

Fresh new look. Faster scanning. Better protection.

Enjoy unique new features, lightning fast scans and a simple yet beautiful new look in our best antivirus yet!

For a quicker, lighter and more secure experience, download the all new adaware antivirus 12 now!

Download adaware antivirus 12
No thanks, continue to lavasoft.com
close x

Discover the new adaware antivirus 12

Our best antivirus yet

Download Now