D:\Sources\VCPP\cz_1x\tmp\ComputerZal\ReleaseDemo\PDB\ComputerZal.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-02-23_740ebbf8f78f5baa649f13b92735d07c_icedid_vidar.exe
Resource
win7-20240221-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-02-23_740ebbf8f78f5baa649f13b92735d07c_icedid_vidar.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
2024-02-23_740ebbf8f78f5baa649f13b92735d07c_icedid_vidar
-
Size
8.6MB
-
MD5
740ebbf8f78f5baa649f13b92735d07c
-
SHA1
e5a6283d00bb834959f13174e2ad03e973769b26
-
SHA256
81e65f72c9089da5a7d0b6cfee280ccd8e1af1e2caf8896dac082aa1bd72ff44
-
SHA512
a9e22190381cee3847e8164fc502d0d5ace37b8c59d39b62e521f36fbfd67e049b96633b784113464eb0493ec933051be217fad3aa2afb80173a5cac153e04ce
-
SSDEEP
196608:nTiIEhFyVLjyTgLD8jvohmiyfNzvTOE8DxFLOyomFHKnP:TGFyFmgLDHyJvTOEGxF
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-02-23_740ebbf8f78f5baa649f13b92735d07c_icedid_vidar
Files
-
2024-02-23_740ebbf8f78f5baa649f13b92735d07c_icedid_vidar.exe windows:5 windows x86 arch:x86
9c33d1ad5cb5a49ce8362717c0d15fd1
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
language
?TC_PRICE_OF_1MB@@3QBDB
?TC_PRICE_TITLE@@3QBDB
?TC_RULES_EDIT@@3QBDB
?TC_RULES_EDIT_TITLE@@3QBDB
?TC_FFM_LIST@@3QBDB
?ASK_QUESTION@@3QBDB
?ASK_TO_ADD_FIRST_FREE_MB@@3QBDB
?TC_PRICE_EDIT_PRICE@@3QBDB
?TC_PRICE_ADD_TARIF@@3QBDB
?TC_PRICE_REMOVE_LAST@@3QBDB
?TC_OT_X_DO_X_MB_STOIT@@3QBDB
?TC_MEGABAIT@@3QBDB
?TC_PRICES_EDIT_TITLE@@3QBDB
?TC_RULES_DEFAULT_EDIT@@3QBDB
?TC_FILTERS_ENTER_NAME@@3QBDB
?TC_FILTERS_PRICES@@3QBDB
?TC_FILTERS_RULES@@3QBDB
?TC_FILTERS_DELETE@@3QBDB
?TC_FILTERS_RENAME@@3QBDB
?TC_FILTERS_ADD@@3QBDB
?TC_FILTERS_EDITOR_TITLE@@3QBDB
?TC_CLIENT_SETTINGS_RECV_ERROR_EQUAL@@3QBDB
?TC_CLIENT_SETTINGS_RECV_ERROR_NOT_EQUAL@@3QBDB
?TC_CLIENT_SETTINGS_RECV_ERROR_NOT_ACCEPTED@@3QBDB
?TC_CLIENT_SETTINGS_SEND_ERROR_NOT_ACCEPTED@@3QBDB
?TC_CLIENT_SETTINGS_SEND_OK@@3QBDB
?TC_CLIENT_SETTINGS_SEND@@3QBDB
?TC_CLIENT_SETTINGS_CHECK@@3QBDB
?TC_CLIENT_SETTINGS@@3QBDB
?TC_FILTER_DEFAULT@@3QBDB
?WAKEUP_COMPUTER_N_BODY@@3QBDB
?WAKEUP_COMPUTER_N_TITLE@@3QBDB
?UB_SWITCH_ON_ALL@@3QBDB
?UB_KANP_ALL@@3QBDB
?DEF_RESET_REPORT_DATA_DESCR@@3QBDB
?WWW_CLIENT@@3QBDB
?WWW_ACTPRO@@3QBDB
?WWW_META_CONTENT_TYPE_CHARSET@@3QBDB
?WWW_CONTENT_TYPE_CHARSET@@3QBDB
?WWW_CENA_ZA_NOCH_INETA@@3QBDB
?WWW_CENA_ZA_NOCH_IGR@@3QBDB
?WWW_CENA_ZA_CHAS_INETA@@3QBDB
?WWW_CENA_ZA_CHAS_IGR@@3QBDB
?WWW_NASTROIKIPROGRAMI@@3QBDB
?WWW_YES@@3QBDB
?WWW_TABLE_BESPLATNO@@3QBDB
?WWW_UDALENNOETIME@@3QBDB
?WWW_ADMINISTRATOR@@3QBDB
?WWW_TABLE_TIME@@3QBDB
?WWW_TABLE_MINUTS@@3QBDB
?WWW_TABLE_STATUS@@3QBDB
?WWW_TABLE_COMPUTER@@3QBDB
?WWW_ZAGOLOVOK@@3QBDB
?STR_ERROR_TWO_IP_SAME_NUMBER@@3QBDB
?USBPLUG_NOTIFY_REMOVED@@3QBDB
?USBPLUG_NOTIFY_ARRIVAL@@3QBDB
?LOG3_SECURITY_NOTE_OFFLINE_BUT_PINGED@@3QBDB
?PROCESS_DB_OPEN_ERROR@@3QBDB
?PRNCTRL_OPEN_ERROR@@3QBDB
?PERSONS_DB_OPEN_ERROR@@3QBDB
?T_TAKEN@@3QBDB
?PRNCTRL_SECURITY@@3QBDB
?PRNCTRL_COLOR2@@3QBDB
?LOG3_REPORT_SECU_ERROR_ID_LOST_CURRENT@@3QBDB
?LOG3_REPORT_SECU_ERROR_ID_CURRENT@@3QBDB
?LOG3_REPORT_SECU_ERROR_BADRECORDS_CURRENT@@3QBDB
?LOG3_REPORT_SECU_SPISOK_CEN_POLNOCHI_INET@@3QBDB
?LOG3_REPORT_SECU_SPISOK_CEN_POLNOCHI_IGRI@@3QBDB
?DU_LOG3_ITOGO@@3QBDB
?DU_LOG3_USLUGI@@3QBDB
?LOG3_REPORT_SECU_VSEGO_NA_NASTR@@3QBDB
?LOG3_REPORT_SECU_SPISOK_VR_NAS@@3QBDB
?LOG3_REPORT_SECU_SPISOK_SKIDOK@@3QBDB
?LOG3_REPORT_SECU_SPISOK_CEN_NOCH_INET@@3QBDB
?LOG3_REPORT_SECU_SPISOK_CEN_NOCH_IGRI@@3QBDB
?LOG3_REPORT_SECU_SPISOK_CEN_INET@@3QBDB
?LOG3_REPORT_SECU_SPISOK_CEN_IGRI@@3QBDB
?LOG3_GAMES_TO_INTERNET@@3QBDB
?LOG3_GRUB_TIMERSTART_V_TIMERMODE@@3QBDB
?LOG3_GRUB_CHANGESMADE_V_TIMERMODE@@3QBDB
?LOG3_GRUB_ANULATE_V_TIMERMODE@@3QBDB
?LOG3_GRUB_VOZVRAT_V_TIMERMODE@@3QBDB
?LOG3_GRUB_PERESADKA_V_TIMERMODE@@3QBDB
?LOG3_GRUB_RESET_V_TIMERMODE@@3QBDB
?LOG3_GRUB_PLUS_V_TIMEMODE@@3QBDB
?LOG3_GRUB_TIMERANULATE_POSLE_VOZVRATA@@3QBDB
?LOG3_GRUB_CHANGESTIMER_POSLE_VOZVRATA@@3QBDB
?LOG3_GRUB_TIMERSTOP_POSLE_VOZVRATA@@3QBDB
?LOG3_GRUB_CHANGESMADE_POSLE_VOZVRATA@@3QBDB
?LOG3_GRUB_ANULATE_POSLE_VOZVRATA@@3QBDB
?LOG3_GRUB_PERESADKA_POSLE_VOZVRATA@@3QBDB
?LOG3_GRUB_RESET_POSLE_VOZVRATA@@3QBDB
?LOG3_GRUB_TIMERSTART_POSLE_PERESADKI@@3QBDB
?LOG3_GRUB_TIMERANULATE_POSLE_PERESADKI@@3QBDB
?LOG3_GRUB_CHANGESTIMER_POSLE_PERESADKI@@3QBDB
?LOG3_GRUB_TIMERSTOP_POSLE_PERESADKI@@3QBDB
?LOG3_GRUB_CHANGESMADE_POSLE_PERESADKI@@3QBDB
?LOG3_GRUB_ANULATE_POSLE_PERESADKI@@3QBDB
?LOG3_GRUB_VOZVRAT_POSLE_PERESADKI@@3QBDB
?LOG3_GRUB_SBROS_POSLE_PERESADKI@@3QBDB
?LOG3_GRUB_TIMERANULATE_NA_FREE@@3QBDB
?LOG3_GRUB_CHANGESTIMER_NA_FREE@@3QBDB
?LOG3_GRUB_TIMERSTOP_NA_FREE@@3QBDB
?LOG3_GRUB_CHANGESMADE_NA_FREE@@3QBDB
?LOG3_GRUB_ANULATE_NA_FREE@@3QBDB
?LOG3_GRUB_VOZVRATOSTATKA_S_FREE@@3QBDB
?LOG3_GRUB_PERESADKA_S_FREE@@3QBDB
?LOG3_GRUB_RESET_NA_FREE@@3QBDB
?LOG3_GRUB_TIMERANULATE_NA_ZANYATOM@@3QBDB
?LOG3_GRUB_TIMERCHANGE_NA_ZANYATOM@@3QBDB
?LOG3_GRUB_TIMERSTOP_NA_ZANYATOM@@3QBDB
?LOG3_GRUB_TIMERMODE_NA_ZANYATOM@@3QBDB
?LOG3_GRUB_ERROR_PERESADKA_NA_ZANYATIY@@3QBDB
?LOG3_REPORT_SECU_ERROR_GRUB@@3QBDB
?LOG3_REPORT_SECU_ERROR_TIMEBACK_HIDDEN@@3QBDB
?LOG3_REPORT_SECU_ERROR_TIMEBACK@@3QBDB
?LOG3_REPORT_SECU_ERROR_5MIN@@3QBDB
?LOG3_REPORT_SECU_Z_DESCR@@3QBDB
?LOG3_REPORT_SECU_Z_PARAM@@3QBDB
?LOG3_REPORT_MAIN_L_PUSTO@@3QBDB
?LOG3_REPORT_MAIN_Z2_NIGHT@@3QBDB
?LOG3_REPORT_MAIN_Z2_MONEY@@3QBDB
?LOG3_REPORT_MAIN_Z2_TIME@@3QBDB
?LOG3_REPORT_MAIN_Z2_PUSTO@@3QBDB
?LOG3_REPORT_MAIN_Z_FREE@@3QBDB
?LOG3_REPORT_MAIN_Z_NOCONN@@3QBDB
?LOG3_REPORT_MAIN_Z_TOTAL@@3QBDB
?LOG3_REPORT_MAIN_Z_INET_NIGHT@@3QBDB
?LOG3_REPORT_MAIN_Z_INET_MONEY@@3QBDB
?LOG3_REPORT_MAIN_Z_INET_TIME@@3QBDB
?LOG3_REPORT_MAIN_Z_GAME_NIGHT@@3QBDB
?LOG3_REPORT_MAIN_Z_GAME_MONEY@@3QBDB
?LOG3_REPORT_MAIN_Z_GAME_TIME@@3QBDB
?LOG3_REPORT_MAIN_Z_N@@3QBDB
?LOG3_REPORT_STAT_T_ZAPIS_ISPORCHENA@@3QBDB
?LOG3_REPORT_STAT_Z_DESCRIPTION@@3QBDB
?LOG3_REPORT_STAT_Z_DATETIME@@3QBDB
?LOG3_REPORT_STAT_Z_ID@@3QBDB
?LOG3_COMBO_COMPUTER_ALL@@3QBDB
?LOG3_COMBO_TIMEMODE_SELTIME@@3QBDB
?LOG3_COMBO_TIMEMODE_ALLTIME@@3QBDB
?LOG3_COMBO_TIMEMODE_ZA_DEN@@3QBDB
?LOG3_COMBO_TIMEMODE_VIBSMENA@@3QBDB
?LOG3_COMBO_TIMEMODE_TEKSMENA@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TAKE_CASH@@3QBDB
?LOG3_OPERATION_DESCRIPTION_MOVEMINUTES_TO@@3QBDB
?LOG3_OPERATION_DESCRIPTION_MOVEMINUTES_FROM@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PAUSE_RESET@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PAUSE_SET@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PLUS_OBICHNO_BALANCE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TIMERSTOP_OBICHNO_BALANCE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TIMERSTART_OBICHNO_BALANCE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_USLUGA_0_COMPUTER@@3QBDB
?PRNCTRL_FORMAT_UNKNOWN@@3QBDB
?PRNCTRL_COLOR@@3QBDB
?PRNCTRL_BW@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PRNCTRL_PRINT@@3QBDB
?LOG3_OPERATION_DESCRIPTION_SECURITY_NOTE_ALL@@3QBDB
?LOG3_OPERATION_DESCRIPTION_SECURITY_NOTE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TRAFCTRL_PAY@@3QBDB
?DESCR_SECURITY_PROBLEM_ID_QUERY_ERROR_MAYBE_USER_ABSENT@@3QBDB
?DESCR_PDB_DELETE_USER@@3QBDB
?DESCR_PDB_CHANGE_INFO@@3QBDB
?DESCR_PDB_ADD_USER@@3QBDB
?DESCR_SECURITY_PROBLEM_PDB_CORRUPTED_RECORD@@3QBDB
?DESCR_SECURITY_PROBLEM_PDB_LENGTH_CHANGED@@3QBDB
?PERSONS_DB_LOG3_PERSON_ID@@3QBDB
?LOG3_OPERATION_DESCRIPTION_SESSION_CLOSED@@3QBDB
?LOG3_OPERATION_DESCRIPTION_SESSION_CREATED@@3QBDB
?LOG3_OPERATION_DESCRIPTION_FINE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PERESADKA_TRANSFER_TO@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PERESADKA_SWAP_SEATS@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PERESADKA_S_TO_FREE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_VOZVRATOSTATKA_TRANSFER_TO@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PLUS_NIGHT_HALFNIGHT@@3QBDB
?LOG3_OPERATION_DESCRIPTION_IPF_INFO_NOTUSING@@3QBDB
?LOG3_OPERATION_DESCRIPTION_IPF_INFO_USING@@3QBDB
?LOG3_OPERATION_DESCRIPTION_USLUGA@@3QBDB
?LOG3_OPERATION_DESCRIPTION_MESS@@3QBDB
?LOG3_OPERATION_DESCRIPTION_KAP@@3QBDB
?LOG3_OPERATION_DESCRIPTION_SHUTDOWN_ONE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_RESTART_ONE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_COMPUTERZAL_EXIT@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TIMERANULATE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_CHANGESMADE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_ANULATE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PRICHINA@@3QBDB
?LOG3_OPERATION_DESCRIPTION_VOZVRATOSTATKA@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TIMERSTOP_OBICHNO@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TIMERSTOP_FREE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PERESADKA_NA@@3QBDB
?LOG3_OPERATION_DESCRIPTION_ZAMETKA@@3QBDB
?LOG3_OPERATION_DESCRIPTION_RESET@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PLUS_TARIF@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TIMERSTART_OBICHNO@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PLUS_OBICHNO@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PLUS_NACHALO_OP@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PLUS_SO_SKIDKOY@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TIMERSTART_FREE_PO_PRICHINE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_PLUS_FREE_PO_PRICHINE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_CON_NO@@3QBDB
?LOG3_OPERATION_DESCRIPTION_CON_YES@@3QBDB
?LOG3_OPERATION_DESCRIPTION_LTO@@3QBDB
?LOG3_OPERATION_DESCRIPTION_TIMEBACK@@3QBDB
?LOG3_OPERATION_DESCRIPTION_5MIN_METKA@@3QBDB
?LOG3_OPERATION_DESCRIPTION_COMPUTERZAL_RUN@@3QBDB
?LOG3_T_INET@@3QBDB
?LOG3_T_IGRI@@3QBDB
?WORK_MONITOR_SAVE_JPEG@@3QBDB
?WORK_MONITOR_REFRESH_SPEED@@3QBDB
?WORK_MONITOR_QUALITY@@3QBDB
?WORK_MONITOR_TITLE_OF_COMPUTER@@3QBDB
?V_MINUTAH@@3QBDB
?T_VOZ_F_PRESENT_BALANCE_MIN@@3QBDB
?VOICE_SETTINGS_CLIENT@@3QBDB
?VOICE_SETTINGS_ADMIN@@3QBDB
?VOICE_SETTINGS_ABOUT_TIMEOUT@@3QBDB
?VOICE_SETTINGS_ABOUT_5MIN_LEFT@@3QBDB
?T_USLUGI_CENA@@3QBDB
?T_USLUGI_NAZV@@3QBDB
?TITLE_USLUGI_ADD_EDIT@@3QBDB
?UBP_ICON_SELECTION_CHOOSE_ONE@@3QBDB
?UBP_ICON_SELECTION@@3QBDB
?INFOPORT_T_ERROR_TRANSFER_MODULES@@3QBDB
?PROCESSVIEW_MODULES@@3QBDB
?INFOPORT_T_DESTROY@@3QBDB
?INFOPORT_T_ERROR_TRANSFER@@3QBDB
?INFOPORT_T_REFRESH@@3QBDB
?INFOPORT_T_COMPNSPISOKPROCESSOV@@3QBDB
?SZP_PROCESS@@3QBDB
?SZP_N@@3QBDB
?UBP_TITLE@@3QBDB
?VOICE_SETTINGS_TITLE@@3QBDB
?WARNING_VOICE_VERSION_ONLY@@3QBDB
?MAIN_SETTING_TITLE@@3QBDB
?PARAMBEZ_SWITCH_REZHIM_TO_ADMIN@@3QBDB
?PARAMBEZ_SWITCH_REZHIM_TO_BOSS@@3QBDB
?PARAMBEZ_TITLE@@3QBDB
?SPPR_REMINDERLIST@@3QBDB
?SPPR_BLACKLIST@@3QBDB
?SPPR_TITLE@@3QBDB
?DF_OKRUGLENIEOPLATI@@3QBDB
?DF_B_VRNANASTR@@3QBDB
?RRV_FULL_DESCR@@3QBDB
?RRV_TOTAL_SUM@@3QBDB
?RRV_TITLE@@3QBDB
?BUT_CLIENT_SOUND_VOLUME@@3QBDB
?WORK_MONITOR_TITLE@@3QBDB
?INFOPORT_T_SPISOKPROCESSOV@@3QBDB
?KILL_ACTIVE_PROCESS@@3QBDB
?SHUTDOWN_COMPUTER@@3QBDB
?RESTART_COMPUTER@@3QBDB
?IB_SETUP_BN_VNIZ@@3QBDB
?IB_SETUP_BN_VVERH@@3QBDB
?PARAMBEZ_HWCTRL_TITLE@@3QBDB
?PARAMBEZ_INTERFACE_TITLE@@3QBDB
?PARAMBEZ_OTHER_TITLE@@3QBDB
?TC_TRAFFIC_CONTROL@@3QBDB
?PARAMBEZ_CDB_TITLE@@3QBDB
?PARAMBEZ_REPORTS_TITLE@@3QBDB
?PARAMBEZ_PASSWORDS_TITLE@@3QBDB
?PARAMBEZ_PRICES_TITLE@@3QBDB
?TC_SHOW_INET_PAYMENT_ALWAYS@@3QBDB
?T_INET_PAYMENT_STRATEGY_INCOMING@@3QBDB
?T_INET_PAYMENT_STRATEGY_SUM_OF_TWO@@3QBDB
?T_INET_PAYMENT_STRATEGY_MAX_OF_TWO@@3QBDB
?STR_TIP_DENY_TRAFCTRL_IN_GAMES_MODE@@3QBDB
?SECSET_TC_DONT_USE_FOR_GAMES@@3QBDB
?TC_DONT_USE_ON_FOLLOWING_PCS@@3QBDB
?RP_TC_DENY_EDIT_TRAFCTRL_SETTINGS@@3QBDB
?RP_TC_USE_TRAFCTRL@@3QBDB
?TREE_REPORT_FOR_ADMIN@@3QBDB
?TREE_REPORT_FOR_BOSS@@3QBDB
?LOG3_STAT_TYPE_SPECIAL_CLIENTS@@3QBDB
?LOG3_PROCUSED_TYPE_POPULARITY_RATING@@3QBDB
?LOG3_PROCUSED_TYPE_ALL@@3QBDB
?LOG3_COMBO_REPORT_TYPE_PROC@@3QBDB
?LOG3_STAT_TYPE_SECURITY_NOTE@@3QBDB
?LOG3_STAT_TYPE_ZAMETKI@@3QBDB
?LOG3_STAT_TYPE_CONNECTIONS@@3QBDB
?LOG3_STAT_TYPE_FREE_TIME@@3QBDB
?LOG3_STAT_TYPE_TECHNICAL@@3QBDB
?LOG3_STAT_TYPE_FINANCE@@3QBDB
?LOG3_STAT_TYPE_FULL@@3QBDB
?LOG3_COMBO_REPORT_TYPE_LIFL@@3QBDB
?RBACKUP_DENY_RESTORE@@3QBDB
?RBACKUP_DENY_SAVE@@3QBDB
?LOG3_COMBO_REPORT_TYPE_USLU@@3QBDB
?RP_POLICY_DENY_CURRENT@@3QBDB
?RP_POLICY_DENY_TRUNCATE@@3QBDB
?RP_POLICY_DENY_ANY@@3QBDB
?RP_ACTIVATE@@3QBDB
?LOG3_COMBO_REPORT_TYPE_PRIC@@3QBDB
?LOG3_COMBO_REPORT_TYPE_IZOP@@3QBDB
?LOG3_COMBO_REPORT_TYPE_5MIN@@3QBDB
?LOG3_COMBO_REPORT_TYPE_GRUB@@3QBDB
?LOG3_COMBO_REPORT_TYPE_SECU@@3QBDB
?LOG3_COMBO_REPORT_TYPE_MAIN@@3QBDB
?LOG3_COMBO_REPORT_TYPE_STAT@@3QBDB
?DENY_RETURN_REST_FOR_PACKET@@3QBDB
?PARAMBEZ_DISCOUNT_MODE_PRICE__SPECIAL_APPLIED_TO_TIME_LENGTH@@3QBDB
?PARAMBEZ_DISCOUNT_MODE_PRICE__NORMAL_CHEAPER_HOUR@@3QBDB
?SECSET_DISABLE_EDIT_SERVICES@@3QBDB
?T_MIN_SUM_VOZVRAT@@3QBDB
?T_HALFNIGHT_FINISH_AT_GIVEN_HOUR@@3QBDB
?T_HALFNIGHT_FINISH_AFTER_INTERVAL_HALFNIGHT@@3QBDB
?T_HALFNIGHT_FINISH_AT_HALFNIGHT@@3QBDB
?PARAMBEZ_PRICES_DIAPAZON_ERROR@@3QBDB
?PARAMBEZ_PRICES_MIN_MINUT_TIMER@@3QBDB
?PARAMBEZ_PRICES_DENY_SWITCHING_GAMES_INET@@3QBDB
?PARAMBEZ_PRICES_DENY_CHANGE_TIME_USING_DISCOUNT@@3QBDB
?PARAMBEZ_PRICES_FREE_LIMIT@@3QBDB
?PARAMBEZ_PRICES_ANULATE_TIME@@3QBDB
?PARAMBEZ_PRICES_NO_EDIT_NASTR_TIME@@3QBDB
?PARAMBEZ_PRICES_NO_EDIT_DISCOUNTS@@3QBDB
?PARAMBEZ_PRICES_NO_EDIT_PRICES@@3QBDB
?PARAMBEZ_PASSWORDS_INTERNETCONTROL@@3QBDB
?PARAMBEZ_PASSWORDS_ENTERPROGRAM@@3QBDB
?RP_PASS_ADMIN@@3QBDB
?RP_PASS_BOSS@@3QBDB
?REMOTE_CONTROL_ACCESS_PASSWORD@@3QBDB
?REMOTE_CONTROL_ALLOW@@3QBDB
?REMOTE_CONTROL_GROUP_TITLE@@3QBDB
?AUTO_SHUTDOWN_TITLE_EXCEPTION@@3QBDB
?AUTO_SHUTDOWN_EXCEPTION@@3QBDB
?SW_OFF_AFTER_MINUTES@@3QBDB
?STR_MIN_SHOW_PAY_SUM@@3QBDB
?T_PROC_DONT_WRITE_CLIENT2@@3QBDB
?T_PROC_HIDE_CLIENT2@@3QBDB
?T_ST_GRP_PROC_STAT@@3QBDB
?REFERRER_TITLE_PERCENT@@3QBDB
?PARAMBEZ_CDB_CLIENT_TYPES_PASSWORD@@3QBDB
?PARAMBEZ_CDB_DENY_EDIT_BALANCE_SETTINGS@@3QBDB
?PARAMBEZ_CDB_DENY_ADD_EDIT_GROUPS@@3QBDB
?PARAMBEZ_CDB_DENY_CLIENT_INFO@@3QBDB
?PARAMBEZ_CDB_DENY_DELETE_CLIENT@@3QBDB
?PARAMBEZ_CDB_DENY_CHANGE_INFO@@3QBDB
?PARAMBEZ_CDB_DENY_ALL@@3QBDB
?LIST_OF_MODULES_OF_PROCESS@@3QBDB
?PS_SENDMESSAGE@@3QBDB
?NO_CONNECTION_WITH_REMOTE@@3QBDB
?REMOTE_USER_TYPED_WRONG_PASS_OR_NOT_TYPED@@3QBDB
?SPECIAL_CLIENT_AUTHORIZATION@@3QBDB
?REMOTE_CHECK_PASS_USER_TYPES@@3QBDB
?STR_USERID_ALREADY_BUSY@@3QBDB
?PERSONS_SEL_PASSWORD_INVALID@@3QBDB
?PERSONS_SEL_PASSWORD_CORRECT@@3QBDB
?PERSONS_SEL_CHECK_PASSWORD@@3QBDB
?PERSONS_SEL_OK@@3QBDB
?PERSONS_SEL_TITLE@@3QBDB
?GS_FREE_WORK@@3QBDB
?PERSONS_OP_TITLE@@3QBDB
?STR_GROUP@@3QBDB
?PERSONS_INFORMATION_FREE_TIME_INTERNET@@3QBDB
?PERSONS_INFORMATION_FREE_TIME_GAMES@@3QBDB
?PERSONS_INFORMATION_TIME_INTERNET@@3QBDB
?PERSONS_INFORMATION_TIME_GAMES@@3QBDB
?PERSONS_INFORMATION_SUM_INTERNET@@3QBDB
?PERSONS_INFORMATION_SUM_GAMES@@3QBDB
?PERSONS_INFORMATION_STATISTICS@@3QBDB
?PERSONS_INFORMATION_LAST_OPERATION@@3QBDB
?PERSONS_INFORMATION_FIRST_OPERATION@@3QBDB
?PERSONS_INFORMATION_TITLE@@3QBDB
?LOG3_OPERATION_DESCRIPTION_USLUGA_CARD_INET@@3QBDB
?LOG3_OPERATION_DESCRIPTION_USLUGA_CARD_GAMES@@3QBDB
?STR_CARDS_SELL_INET_QUESTION@@3QBDB
?STR_CARDS_SELL_GAME_QUESTION@@3QBDB
?STR_CARDS_SELL@@3QBDB
?STR_CARDS_AE_PRICE@@3QBDB
?STR_CARDS_AE_MINUT@@3QBDB
?STR_CARDS_INET_EDIT@@3QBDB
?STR_CARDS_INET_ADD@@3QBDB
?STR_CARDS_ERR_EDIT@@3QBDB
?STR_CARDS_GAME_EDIT@@3QBDB
?STR_CARDS_ERR_ADD@@3QBDB
?STR_CARDS_GAME_ADD@@3QBDB
?STR_CARDS_INET@@3QBDB
?STR_CARDS_GAME@@3QBDB
?IB_SETUP_BN_EDITRULE@@3QBDB
?IB_SETUP_BN_REMOVERULE@@3QBDB
?IB_SETUP_BN_ADDRULE@@3QBDB
?VALUTA@@3QBDB
?MINUT_T@@3QBDB
?STR_BALANCE_INET_MINUTES@@3QBDB
?STR_BALANCE_GAME_MINUTES@@3QBDB
?STR_BALANCE_NOT_CHOOSEN@@3QBDB
?STR_BALANCE_EDIT@@3QBDB
?STR_BALANCE_FILL@@3QBDB
?STR_BALANCE_CURRENT_BALANCE@@3QBDB
?PERSONS_DB_ADMIN_HEADER_BALANCE_GAMES_INET@@3QBDB
?STR_CDB_BALANCE@@3QBDB
?STR_CDB_GROUPS@@3QBDB
?PERSONS_DB_SURE_WANT_TO_KILL_PERSON@@3QBDB
?PERSONS_DB_ADMIN_LASTDATE_NONE@@3QBDB
?PERSONS_DB_ADMIN_HEADER_DATE@@3QBDB
?PERSONS_DB_ADMIN_HEADER_SUM@@3QBDB
?PERSONS_DB_ADMIN_HEADER_L_F_NAME@@3QBDB
?PERSONS_DB_ADMIN_HEADER_NICKNAME@@3QBDB
?PERSONS_DB_ADMIN_HEADER_ID@@3QBDB
?PERSONS_DB_INFO@@3QBDB
?PERSONS_DB_DELETE@@3QBDB
?REFERRER_ID@@3QBDB
?STR_GROUP2@@3QBDB
?PERSONS_DB_ADDEDIT_BUT_PICTURE_INFO_NO2@@3QBDB
?PERSONS_DB_ADDEDIT_BUT_BROWSE2@@3QBDB
?STR_NO_GROUP@@3QBDB
?PERSONS_DB_ADDEDIT_BUT_PICTURE_INFO_KB@@3QBDB
?PERSONS_DB_ADDEDIT_TITLE_EDIT@@3QBDB
?PERSONS_DB_ADDEDIT_TITLE_ADD@@3QBDB
?PERSONS_DB_ADDEDIT_BUT_SEX_FEMALE@@3QBDB
?TC_PRI_NARABOTKE_OT@@3QBDB
?PERSONS_DB_ADDEDIT_ST_PASSWORD@@3QBDB
?PERSONS_DB_ADDEDIT_ST_PHONES@@3QBDB
?PERSONS_DB_ADDEDIT_ST_ADDRESS@@3QBDB
?PERSONS_DB_ADDEDIT_ST_COMMENT@@3QBDB
?PERSONS_DB_ADDEDIT_ST_BIRTH_DATE@@3QBDB
?PERSONS_DB_ADDEDIT_ST_SEX@@3QBDB
?PERSONS_DB_ADDEDIT_ST_LAST_NAME@@3QBDB
?PERSONS_DB_ADDEDIT_ST_FIRST_NAME@@3QBDB
?PERSONS_DB_ADDEDIT_ST_NICKNAME@@3QBDB
?T_PAYMENT_ADJ_STR@@3QBDB
?T_PAYMENT_ADJ_TITLE@@3QBDB
?WND_PATH_TITLE@@3QBDB
?IS_ROUNDOFF_ADD_SERVICES@@3QBDB
?T_ROUNDOFF_DONT@@3QBDB
?OKR_OKRUGLYAT_OPLATU_DO@@3QBDB
?NAPOMINAT_ZA5@@3QBDB
?CLBAN_SERVER_SKOROST_OBNOV@@3QBDB
?CLBAN_SERVER_ACT_NAPOM@@3QBDB
?CLBAN_SERVER@@3QBDB
?L3_SMENA_SURECLOSE@@3QBDB
?L3_CHOICE_SMENA_RUN@@3QBDB
?L3_CHOICE_SMENA_BUT_CLOSE@@3QBDB
?L3_CHOICE_SMENA_SOZDANA@@3QBDB
?L3_CHOICE_SMENA_EXIT@@3QBDB
?L3_CHOICE_SMENA_BUT_CREATE@@3QBDB
?L3_CHOICE_SMENA_STATUS_PRESSCREATE@@3QBDB
?L3_CHOICE_SMENA_STATUS_ENTERNAME@@3QBDB
?T_IF_CHANGE_SEAT_TO_ANOTHER_COMPUTER_MOVEMINUTES@@3QBDB
?WOL_SWITCH_ON@@3QBDB
?PERSONS_DB_IF_BUTTON@@3QBDB
?T_FINE@@3QBDB
?DU_POGASHENIE_DOLGA@@3QBDB
?T_IB5@@3QBDB
?T_IB4@@3QBDB
?T_IB3@@3QBDB
?T_IB1@@3QBDB
?T_WORKWITH@@3QBDB
?GS_FREE_WORK_BY_REASON@@3QBDB
?STR_GROUPS_DELETE_WARNING@@3QBDB
?STR_GROUPS_EDIT_NAME@@3QBDB
?STR_GROUPS_ADD_NAME@@3QBDB
?STR_CDB_GROUPS_DISCOUNT_INTERNET@@3QBDB
?STR_CDB_GROUPS_DISCOUNT_GAMES@@3QBDB
?STR_CDB_GROUPS_SETTINGS@@3QBDB
?STR_CDB_GROUPS_TITLE@@3QBDB
?STR_CDB_GROUPS_BUTTON_DELETE@@3QBDB
?STR_CDB_GROUPS_BUTTON_EDIT@@3QBDB
?STR_CDB_GROUPS_BUTTON_ADD@@3QBDB
?TITLE_TIMER_FREE@@3QBDB
?PRICHINA_1@@3QBDB
?PRICHINA_DEF@@3QBDB
?TITLE_FREEPRICHINA@@3QBDB
?T_FINE_DLG_MIN_PO_PRICHINE@@3QBDB
?T_FINE_DLG_TITLE@@3QBDB
?SECNOTE_SERVICE_PRICES_CHANGED@@3QBDB
?DU_ZERO_KOLVO@@3QBDB
?DU_K_OPLATE@@3QBDB
?DU_KOLICHESTVO@@3QBDB
?DU_BLANK_VIBERITE_USLUGU@@3QBDB
?DU_REDAKTOR_USLUG@@3QBDB
?DU_OPLATIT@@3QBDB
?DU_DOPOLNITELNIE_USLUGI@@3QBDB
?T4COMPUTER@@3QBDB
?COMPUTER_RELEASE_LIST_RELEASE_AT@@3QBDB
?COMPUTER_RELEASE_LIST_COMPUTER@@3QBDB
?T_PECHAT@@3QBDB
?LOG3_COMBO_COMPUTER_N@@3QBDB
?CLVINFO_OFFLINE_851@@3QBDB
?CLVUPD_UPDATE_START@@3QBDB
?CLVUPD_SEND_FILE_ERROR@@3QBDB
?CLVUPD_SEND_FILE@@3QBDB
?CLVUPD_ERROR_SSA_OF_WRONG_VER@@3QBDB
?CLVUPD_ERROR_SSA_ERROR@@3QBDB
?CLVINFO_ERRFILE_WRONG_MD5@@3QBDB
?CLVINFO_ERRFILE_CANT_CALCULATE@@3QBDB
?CLVINFO_SSA_FILE_WRONG_VERSION@@3QBDB
?CLVINFO_SSA_FILE_ERROR@@3QBDB
?CLVINFO_VERSION@@3QBDB
?CLVINFO_UPDATE@@3QBDB
?CLVINFO_CHECK@@3QBDB
?T_DEFAULT@@3QBDB
?CTRL_CLIENT_SOUND_UNMUTE_ON_TIME_OPEN@@3QBDB
?CTRL_CLIENT_SOUND_MUTE_ON_RESET@@3QBDB
?CTRL_CLIENT_SOUND_SET_ON_TIME_OPEN@@3QBDB
?CTRL_CLIENT_SOUND_STD_SOUND_SETTINGS@@3QBDB
?CTRL_CLIENT_SOUND_UPR_TITLE@@3QBDB
?INFOPORT_T_ERROR_CONNECT@@3QBDB
?CTRL_CLIENT_SOUND_GET_ERROR@@3QBDB
?CTRL_CLIENT_SOUND_VOLUME_SET_DEFAULT@@3QBDB
kernel32
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetProfileIntA
GetLocaleInfoW
ReplaceFileA
GetUserDefaultLCID
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemInfo
VirtualAlloc
VirtualQuery
RtlUnwind
GetSystemTimeAsFileTime
GetFullPathNameW
SystemTimeToTzSpecificLocalTime
ExitProcess
GetModuleHandleExW
CompareStringW
GetACP
GlobalFlags
GetAtomNameA
VerifyVersionInfoA
VerSetConditionMask
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LocalAlloc
CreateSemaphoreA
ReleaseMutex
ReleaseSemaphore
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
lstrcmpA
VirtualProtect
FileTimeToSystemTime
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
AreFileApisANSI
GetCommandLineA
ExitThread
SetStdHandle
GetFileType
HeapQueryInformation
UnhandledExceptionFilter
SetUnhandledExceptionFilter
CreateEventW
TerminateProcess
GetStartupInfoW
CreateSemaphoreW
SetErrorMode
GetStdHandle
GetTimeZoneInformation
FileTimeToLocalFileTime
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFileSize
FlushFileBuffers
CreateFileA
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
LoadLibraryW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
LocalUnlock
GetSystemDirectoryW
EncodePointer
OutputDebugStringA
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalSize
lstrcpynA
GetVolumeInformationA
GetCPInfo
GetVersion
GetCurrentThreadId
GetFullPathNameA
SuspendThread
SetThreadPriority
GetVersionExA
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
SetLastError
GetCurrentProcessId
MoveFileA
GetFileAttributesA
SetFileAttributesA
FindNextFileA
FindFirstFileA
FindClose
ResumeThread
GetWindowsDirectoryA
lstrlenA
lstrcatA
lstrcpyA
FindResourceExW
IsValidCodePage
LocalLock
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
CreateDirectoryA
GetModuleHandleW
CreateEventA
CreateMutexA
GetLocalTime
Sleep
DecodePointer
DeleteFileA
GetCurrentDirectoryA
GetComputerNameW
CancelWaitableTimer
SetWaitableTimer
CreateWaitableTimerA
SystemTimeToFileTime
WaitForMultipleObjects
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
ResetEvent
LoadLibraryA
Beep
SetEvent
WinExec
WaitForSingleObject
CreateThread
FindResourceW
InitializeCriticalSection
LockResource
CloseHandle
OpenProcess
WideCharToMultiByte
MultiByteToWideChar
IsDBCSLeadByte
FindResourceA
GetModuleHandleA
GetModuleFileNameA
LoadLibraryExA
lstrcmpiA
SizeofResource
InterlockedIncrement
InterlockedDecrement
FreeLibrary
GetProcAddress
RaiseException
GetLastError
GetTempPathA
GetTempFileNameA
GetModuleFileNameW
SearchPathA
lstrlenW
ExpandEnvironmentStringsA
GetFileAttributesExW
CreateFileMappingW
GetDiskFreeSpaceW
LockFileEx
GetTempPathW
GetFileAttributesW
HeapValidate
HeapCreate
FormatMessageW
UnlockFileEx
UnmapViewOfFile
MapViewOfFile
CreateMutexW
InterlockedCompareExchange
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
TerminateThread
SleepEx
SetCurrentDirectoryA
GetFileInformationByHandle
PeekNamedPipe
GetDiskFreeSpaceA
GetSystemTime
GetConsoleCP
GetConsoleMode
FatalAppExitA
GetStringTypeW
GetDriveTypeW
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
FindFirstFileExW
FindNextFileW
DeleteFileW
ReadConsoleW
SetFilePointerEx
SetConsoleCtrlHandler
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
OutputDebugStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
LoadResource
user32
SetScrollPos
ScrollWindow
ValidateRect
GetForegroundWindow
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
GetClassInfoExA
GetClassInfoA
RegisterClassA
DefWindowProcA
GetMessageTime
GetMessagePos
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
SendDlgItemMessageA
EndPaint
BeginPaint
GetClassNameA
UnhookWindowsHookEx
GetMenuStringA
IsRectEmpty
RegisterWindowMessageA
WindowFromDC
IsWindowVisible
DrawFrameControl
SetWindowRgn
ScreenToClient
GetWindowDC
GetMenuItemRect
GetMenu
SetWindowPos
CreateWindowExA
CallWindowProcA
GetIconInfo
CreateIconIndirect
DestroyCursor
OffsetRect
DrawFocusRect
WindowFromPoint
ClientToScreen
DrawStateA
GetActiveWindow
GetNextDlgTabItem
IsMenu
DrawIconEx
LoadBitmapW
CopyRect
SetRect
GetSysColorBrush
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetMenuItemInfoA
DeleteMenu
RemoveMenu
ModifyMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
CreateMenu
GetMenuState
DrawEdge
PeekMessageA
FillRect
PostThreadMessageA
keybd_event
CheckDlgButton
GetKeyState
DispatchMessageA
TranslateMessage
CopyIcon
LoadCursorA
GetScrollPos
InflateRect
SetCursor
MessageBeep
ReleaseDC
GetDC
ReleaseCapture
SetCapture
IsWindow
GetWindowLongA
PtInRect
GetFocus
DestroyAcceleratorTable
GetWindow
LoadIconA
UnregisterClassA
SystemParametersInfoA
FindWindowA
SetClassLongA
UpdateWindow
GetSystemMetrics
CreateAcceleratorTableA
CharNextW
ShowWindow
GetWindowRect
GetClientRect
MessageBoxW
LoadImageA
DestroyIcon
LoadBitmapA
GetDesktopWindow
FrameRect
GetCursorPos
SetForegroundWindow
SetMenuDefaultItem
TranslateAcceleratorA
PostMessageA
GetParent
GetSysColor
RedrawWindow
EnumWindows
GetWindowTextA
InvalidateRect
GetAsyncKeyState
MessageBoxA
AppendMenuA
CreatePopupMenu
KillTimer
SetTimer
EnableWindow
SendMessageA
CharNextA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CopyAcceleratorTableA
EnumChildWindows
RegisterClipboardFormatA
LockWindowUpdate
SetCursorPos
HideCaret
InvertRect
CharUpperBuffA
GetDCEx
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
GetUpdateRect
SendNotifyMessageA
InSendMessage
GetDoubleClickTime
GetComboBoxInfo
DrawIcon
GetWindowRgn
GetTabbedTextExtentW
CheckRadioButton
IsDlgButtonChecked
IsWindowEnabled
ScrollWindowEx
SetWindowTextA
IsDialogMessageA
ClipCursor
CreateDialogIndirectParamA
EndDialog
GetWindowThreadProcessId
DestroyMenu
SetScrollRange
GetScrollRange
GetMessageA
WaitMessage
ShowScrollBar
SetPropA
GetPropA
RemovePropA
GetWindowTextLengthA
AdjustWindowRectEx
MapWindowPoints
EqualRect
GetClassLongA
GetTopWindow
GetLastActivePopup
SetWindowsHookExA
CallNextHookEx
SetScrollInfo
GetScrollInfo
WinHelpA
MonitorFromWindow
GetMonitorInfoA
MoveWindow
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
SetWindowLongA
GetDlgItemTextA
IntersectRect
IsIconic
BringWindowToTop
LoadAcceleratorsA
LoadMenuA
InsertMenuItemA
SetRectEmpty
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
GetKeyNameTextA
MapVirtualKeyA
CharUpperA
MapDialogRect
PostQuitMessage
ShowOwnedPopups
IsZoomed
NotifyWinEvent
MsgWaitForMultipleObjectsEx
SetLayeredWindowAttributes
LoadCursorW
EnumDisplayMonitors
RealChildWindowFromPoint
CopyImage
GetDialogBaseUnits
TrackMouseEvent
LoadMenuW
GetSystemMenu
GetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
SetParent
GetNextDlgGroupItem
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
IsClipboardFormatAvailable
LoadImageW
OpenClipboard
CloseClipboard
SetClipboardData
LoadIconW
EmptyClipboard
GetTabbedTextExtentA
gdi32
GetCurrentObject
CopyMetaFileA
CreateDCA
CreateDIBPatternBrushPt
CreatePatternBrush
ExcludeClipRect
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
GetClipBox
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
CreatePolygonRgn
FrameRgn
RestoreDC
FillRgn
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocA
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
PolyBezierTo
PolylineTo
SetViewportExtEx
CreateRoundRectRgn
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetMapMode
SetRectRgn
DPtoLP
GetBkColor
GetCharWidthA
StretchDIBits
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
EnumFontFamiliesExA
GetDIBits
RealizePalette
StretchBlt
SetDIBColorTable
OffsetRgn
GetTextColor
CreateEllipticRgn
Polygon
Polyline
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
RoundRect
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
GetBoundsRect
GetROP2
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextExtentPointA
GetTextFaceA
SetPixelV
CloseMetaFile
CreateMetaFileA
DeleteMetaFile
CreateRectRgn
CombineRgn
SetBkMode
PtInRegion
GetRgnBox
CreateRectRgnIndirect
SetTextColor
SetBkColor
CreateBitmap
ExtTextOutA
TextOutA
CreateDIBSection
SetPixel
RectVisible
PtVisible
PatBlt
GetTextExtentPoint32W
GetPixel
GetDeviceCaps
GetBkMode
Escape
Ellipse
CreatePen
CreateHatchBrush
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetTextMetricsA
CreateFontA
SetDIBitsToDevice
DeleteObject
GetTextExtentPoint32A
CreateFontIndirectA
DeleteDC
GetObjectA
Rectangle
GetStockObject
CreateBrushIndirect
SetViewportOrgEx
CreateSolidBrush
msimg32
AlphaBlend
TransparentBlt
winspool.drv
FindFirstPrinterChangeNotification
FindNextPrinterChangeNotification
FindClosePrinterChangeNotification
ClosePrinter
OpenPrinterA
DocumentPropertiesA
EnumPrintersW
OpenPrinterW
EnumJobsW
ReadPrinter
GetJobA
advapi32
CryptCreateHash
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyW
RegSetValueExA
RegQueryInfoKeyA
RegQueryValueA
GetFileSecurityA
SetFileSecurityA
RegEnumValueA
RegEnumKeyA
RegOpenKeyExW
RegSetValueA
CryptDestroyHash
CryptHashData
RegCloseKey
CryptDecrypt
CryptEncrypt
CryptGetHashParam
CryptDestroyKey
CryptDeriveKey
RegQueryValueExA
CryptGenRandom
CryptReleaseContext
CryptAcquireContextA
shell32
Shell_NotifyIconA
ShellExecuteA
ShellExecuteExA
DragQueryFileA
DragFinish
SHGetFileInfoA
SHGetDesktopFolder
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
SHAppBarMessage
ExtractIconA
SHAddToRecentDocs
comctl32
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_Draw
ImageList_AddMasked
ImageList_GetIcon
ImageList_GetIconSize
_TrackMouseEvent
ord17
ImageList_GetImageInfo
shlwapi
PathStripToRootA
PathFindExtensionA
PathFindFileNameA
PathRemoveExtensionA
PathRemoveFileSpecW
UrlUnescapeA
PathIsUNCA
StrFormatKBSizeA
uxtheme
GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
GetThemeColor
DrawThemeText
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
DrawThemeBackground
CloseThemeData
OpenThemeData
IsAppThemed
ole32
CoTaskMemAlloc
CLSIDFromProgID
CoTaskMemRealloc
CoTaskMemFree
CreateStreamOnHGlobal
CoInitialize
CoUninitialize
CoRegisterClassObject
CoRevokeClassObject
CoCreateInstance
StringFromGUID2
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
StringFromCLSID
CoTreatAsClass
CreateBindCtx
ReadClassStg
CoRegisterMessageFilter
CoGetClassObject
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateOleAdviseHolder
CreateDataAdviseHolder
GetRunningObjectTable
CoGetMalloc
OleIsRunning
OleQueryCreateFromData
OleQueryLinkFromData
OleRegEnumVerbs
OleRegGetMiscStatus
OleRun
GetHGlobalFromILockBytes
OleGetIconOfClass
OleSetContainedObject
OleSaveToStream
OleSave
OleLoad
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleCreate
WriteClassStm
CreateItemMoniker
CreateGenericComposite
StgCreateDocfileOnILockBytes
PropVariantCopy
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateILockBytesOnHGlobal
CreateFileMoniker
StgIsStorageFile
StgOpenStorageOnILockBytes
StgOpenStorage
StgCreateDocfile
OleLockRunning
OleSetMenuDescriptor
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
CLSIDFromString
CoDisconnectObject
CoCreateGuid
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
oleaut32
SafeArrayAllocData
SafeArrayAllocDescriptor
SysReAllocStringLen
VarDateFromStr
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
VariantCopy
VariantClear
VariantInit
VarUdateFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
UnRegisterTypeLi
RegisterTypeLi
SysAllocStringLen
OleLoadPicture
OleCreatePictureIndirect
LoadRegTypeLi
SafeArrayCreate
SafeArrayRedim
SysStringLen
SysFreeString
SysAllocString
SafeArrayGetLBound
SafeArrayLock
SafeArrayUnlock
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
SafeArrayDestroyDescriptor
SafeArrayDestroyData
LoadTypeLi
SafeArrayDestroy
GetErrorInfo
SetErrorInfo
CreateErrorInfo
SafeArrayGetDim
VarUI4FromStr
SafeArrayGetUBound
SafeArrayGetElemsize
ws2_32
recv
htons
htonl
getsockname
getpeername
__WSAFDIsSet
connect
bind
send
ntohl
WSAGetLastError
WSASocketA
sendto
select
recvfrom
closesocket
inet_ntoa
inet_addr
WSACleanup
setsockopt
listen
WSAStartup
gethostbyname
ntohs
socket
WSASetLastError
WSAAsyncSelect
accept
oledlg
ord8
gdiplus
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI
iphlpapi
GetExtendedUdpTable
GetAdaptersInfo
psapi
GetModuleFileNameExA
winmm
mmioDescend
mmioRead
mmioClose
PlaySoundA
mmioOpenA
mmioAscend
wsnmp32
ord903
ord602
ord600
ord500
ord402
ord400
ord900
ord300
ord220
ord204
ord203
ord201
ord200
ord101
ord302
crashrpt1402
ord8
ord24
ord9
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
wininet
InternetCanonicalizeUrlA
InternetErrorDlg
InternetGetCookieA
InternetSetCookieA
HttpQueryInfoA
HttpEndRequestA
HttpSendRequestExA
HttpSendRequestA
HttpAddRequestHeadersA
HttpOpenRequestA
GopherGetAttributeA
GopherOpenFileA
GopherFindFirstFileA
GopherCreateLocatorA
FtpCommandA
FtpGetCurrentDirectoryA
FtpSetCurrentDirectoryA
FtpRemoveDirectoryA
FtpCreateDirectoryA
FtpOpenFileA
FtpRenameFileA
FtpDeleteFileA
FtpPutFileA
FtpGetFileA
FtpFindFirstFileA
InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetSetOptionExA
InternetQueryOptionA
InternetFindNextFileA
InternetQueryDataAvailable
InternetOpenA
InternetCrackUrlA
InternetConnectA
InternetOpenUrlA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetCloseHandle
imm32
ImmReleaseContext
ImmGetContext
ImmGetOpenStatus
Sections
.text Size: 3.9MB - Virtual size: 3.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 855KB - Virtual size: 855KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 50KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3.8MB - Virtual size: 3.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ