d79ddad8eab98406617375520d434091

resource	yara_rule
static1/unpack002/$OUTDIR/QQDeskUpdateNew.exe	upx

resource
unpack005/out.upx
unpack002/$OUTDIR/bt/atl80.dll
unpack002/$OUTDIR/bt/msvcp80.dll
unpack002/$OUTDIR/bt/msvcr80.dll
unpack002/$OUTDIR/emule/atl80.dll
unpack002/$OUTDIR/emule/msvcp80.dll
unpack002/$OUTDIR/emule/msvcr80.dll
unpack002/$PLUGINSDIR/InstallOptions.dll
unpack002/$PLUGINSDIR/QQDownHelper.dll
unpack002/$PLUGINSDIR/System.dll
unpack002/$PLUGINSDIR/VistaHelper.dll
unpack002/QDAutoUpdate.exe
unpack002/atl80.dll
unpack002/es_ES_T.dll
unpack002/msvcp80.dll
unpack002/msvcr80.dll
unpack002/zh_CN.dll

resource	yara_rule
static1/unpack001/download1.9.231.201.exe	nsis_installer_1

.rar

download1.9.231.201.exe

.exe windows:4 windows x86 arch:x86

34070d2f388106597eee704668840d03

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7f:c8:08:71:a6:6f:e6:b0:7d:8c:fc:a5:af:93:01:4d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

18/02/2008, 00:00

Not After

17/02/2009, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=R&D,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

9b:01:43:48:26:07:4a:fc:4e:c4:c2:3f:95:e0:61:28:00:34:56:6a
Signer

Actual PE Digest

9b:01:43:48:26:07:4a:fc:4e:c4:c2:3f:95:e0:61:28:00:34:56:6a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

ImageList_Create

ImageList_AddMasked

ImageList_Destroy

kernel32

GetModuleHandleA

GetExitCodeProcess

WaitForSingleObject

ExpandEnvironmentStringsA

GetEnvironmentVariableA

FindNextFileA

DeleteFileA

FindFirstFileA

SetFileTime

LoadLibraryA

SetErrorMode

GetProcAddress

GetShortPathNameA

GetFullPathNameA

MoveFileA

lstrcatA

SetCurrentDirectoryA

CreateDirectoryA

SetFileAttributesA

CreateFileA

GetFileSize

GetFileAttributesA

FreeLibrary

SearchPathA

ExitProcess

CompareFileTime

lstrcpynA

GetWindowsDirectoryA

GetCurrentProcess

MultiByteToWideChar

GetDiskFreeSpaceA

GetVersion

GlobalUnlock

GlobalLock

GlobalAlloc

CreateProcessA

RemoveDirectoryA

CompareStringW

lstrlenW

GetTempFileNameA

SetEndOfFile

UnmapViewOfFile

MapViewOfFile

CreateFileMappingA

lstrcpyA

lstrlenA

GetSystemDirectoryA

WideCharToMultiByte

CompareStringA

ReadFile

SetFilePointer

FindClose

MulDiv

CreateThread

GlobalFree

GetCommandLineA

WritePrivateProfileStringA

CloseHandle

InitializeCriticalSection

LeaveCriticalSection

Sleep

EnterCriticalSection

GetPrivateProfileStringA

WriteFile

GetTempPathA

GetUserDefaultLangID

GetModuleFileNameA

GetTickCount

CopyFileA

user32

SetTimer

DialogBoxParamA

GetClassInfoA

CreateWindowExA

SystemParametersInfoA

RegisterClassA

EndDialog

ScreenToClient

GetWindowRect

SetClassLongA

IsWindowEnabled

SetWindowPos

GetSysColor

GetWindowLongA

LoadCursorA

SetCursor

CheckDlgButton

GetMessagePos

LoadBitmapA

CallWindowProcA

IsWindowVisible

CloseClipboard

SetClipboardData

EmptyClipboard

OpenClipboard

TrackPopupMenu

AppendMenuA

DestroyWindow

CreateDialogParamA

SetDlgItemTextA

GetDlgItemTextA

MessageBoxA

CharPrevA

CharNextW

CharPrevW

ShowWindow

CharNextA

wsprintfA

SendMessageTimeoutA

FindWindowExA

IsWindow

GetDlgItem

SetWindowLongA

LoadImageA

GetDC

EnableWindow

DispatchMessageA

ExitWindowsEx

PostQuitMessage

DefWindowProcA

BeginPaint

GetClientRect

FillRect

DrawTextA

EndPaint

SetWindowTextA

SetForegroundWindow

CreatePopupMenu

GetSystemMetrics

SendMessageA

InvalidateRect

PeekMessageA

gdi32

CreateBrushIndirect

CreateFontIndirectA

GetDeviceCaps

SetBkColor

SetBkMode

SetTextColor

CreateFontA

DeleteObject

SelectObject

advapi32

RegEnumValueA

RegEnumKeyA

RegDeleteKeyA

RegCloseKey

RegCreateKeyA

RegOpenKeyExA

RegSetValueExA

RegQueryValueExA

RegDeleteValueA

shell32

SHGetMalloc

SHGetSpecialFolderLocation

SHGetPathFromIDListA

SHBrowseForFolderA

ShellExecuteA

SHFileOperationA

ole32

OleInitialize

OleUninitialize

CoCreateInstance

version

GetFileVersionInfoSizeA

GetFileVersionInfoA

VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$OUTDIR/Browser/Firefox/IQQDownloadFFH.xpt

$OUTDIR/Browser/Firefox/QQDownloadFFH.dll

.dll windows:4 windows x86 arch:x86

c4a0e5c5c0184df369ca351cf3bd2f47

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7f:c8:08:71:a6:6f:e6:b0:7d:8c:fc:a5:af:93:01:4d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

18/02/2008, 00:00

Not After

17/02/2009, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=R&D,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

a3:12:41:c8:5f:4a:46:7f:4b:36:19:d7:3f:04:e7:05:66:64:d9:70
Signer

Actual PE Digest

a3:12:41:c8:5f:4a:46:7f:4b:36:19:d7:3f:04:e7:05:66:64:d9:70

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

lstrlenA

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

InterlockedIncrement

WideCharToMultiByte

lstrlenW

DebugBreak

OutputDebugStringA

GetPrivateProfileIntA

GetModuleFileNameA

GetPrivateProfileStringA

InterlockedDecrement

VirtualQuery

LoadLibraryA

DisableThreadLibraryCalls

WaitForSingleObject

CloseHandle

SetCurrentDirectoryA

GetEnvironmentVariableA

SetEnvironmentVariableA

GetProcAddress

FreeLibrary

Sleep

user32

PeekMessageA

FindWindowExA

ShowWindow

TranslateMessage

AttachThreadInput

GetWindowThreadProcessId

GetForegroundWindow

DispatchMessageA

RegisterWindowMessageA

SetForegroundWindow

CharLowerA

wvsprintfA

MessageBoxA

CharNextA

LoadStringA

advapi32

RegCloseKey

RegOpenKeyA

RegOpenKeyExA

RegQueryValueExA

shell32

ShellExecuteA

ws2_32

closesocket

recv

__WSAFDIsSet

select

ioctlsocket

send

connect

htons

inet_addr

socket

setsockopt

msvcp60

??0_Winit@std@@QAE@XZ

??1Init@ios_base@std@@QAE@XZ

??0Init@ios_base@std@@QAE@XZ

??0_Lockit@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

??1_Winit@std@@QAE@XZ

msvcrt

??1type_info@@UAE@XZ

_purecall

free

fopen

strncmp

fclose

_fullpath

sprintf

memset

__dllonexit

_onexit

_initterm

_adjust_fdiv

fgets

malloc

strlen

__CxxFrameHandler

memcpy

??2@YAPAXI@Z

_mbscmp

_mbsicmp

wcslen

_ismbcdigit

atoi

_mbsrchr

_mbschr

sscanf

_mbspbrk

strcpy

_stat

nspr4

PR_AtomicDecrement

PR_UnloadLibrary

PR_FindSymbol

PR_AtomicIncrement

PR_Free

PR_GetLibraryFilePathname

PR_FindSymbolAndLibrary

PR_SetEnv

PR_smprintf

PR_smprintf_free

PR_GetEnv

PR_LoadLibraryWithFlags

Exports

NSGetModule

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/Browser/Firefox/qqdownload.xpi

.zip

chrome/qqdownload.jar

.zip

content/contents.rdf

.xml

content/icon.bmp

content/qqdownloadclick.js

.js

content/qqdownloadclick.xul

.xml

content/qqdownloadcommon.js

.js

content/qqdownloadmenu.js

.js

content/qqdownloadmenu.xul

install.rdf

.xml

$OUTDIR/Browser/Maxthon/MaxthonHelper01.dll

.dll regsvr32 windows:4 windows x86 arch:x86

3412f6574b4bb673ade6f41be7f52f94

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7f:c8:08:71:a6:6f:e6:b0:7d:8c:fc:a5:af:93:01:4d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

18/02/2008, 00:00

Not After

17/02/2009, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=R&D,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

93:19:75:5a:1a:93:fe:07:b9:e0:4f:f5:8b:0d:07:db:6b:fe:86:0e
Signer

Actual PE Digest

93:19:75:5a:1a:93:fe:07:b9:e0:4f:f5:8b:0d:07:db:6b:fe:86:0e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

MapViewOfFileEx

OpenFileMappingA

CreateFileMappingA

UnmapViewOfFile

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

DisableThreadLibraryCalls

lstrlenW

GetPrivateProfileIntA

CloseHandle

VirtualQuery

WaitForSingleObject

LoadLibraryA

GetProcAddress

FreeLibrary

GetCurrentThreadId

Sleep

GetModuleFileNameA

OutputDebugStringA

DebugBreak

InterlockedIncrement

WideCharToMultiByte

InterlockedDecrement

lstrlenA

GetPrivateProfileStringA

user32

GetWindowThreadProcessId

GetForegroundWindow

AttachThreadInput

SetForegroundWindow

ShowWindow

wvsprintfA

FindWindowExA

SendMessageA

PostMessageA

RegisterWindowMessageA

LoadStringA

CharNextA

shell32

ShellExecuteA

ole32

CoUninitialize

oleaut32

VariantCopy

SysFreeString

SysStringLen

VariantClear

LoadRegTypeLi

atl

ord21

ord31

ord11

ord23

ord16

ord15

ord18

ord57

ord32

ord58

ord30

ord10

msvcp60

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??0_Lockit@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

??1_Winit@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??1Init@ios_base@std@@QAE@XZ

??0Init@ios_base@std@@QAE@XZ

msvcrt

_except_handler3

_onexit

?terminate@@YAXXZ

free

??1type_info@@UAE@XZ

_initterm

malloc

_adjust_fdiv

_mbscmp

memcpy

_mbsicmp

memcmp

sscanf

_mbspbrk

__dllonexit

_purecall

__CxxFrameHandler

??2@YAPAXI@Z

_CxxThrowException

wcslen

_ismbcdigit

atoi

_mbsrchr

strncpy

memset

_mbschr

Exports

DllCanUnloadNow

DllGetClassObject

DllRegisterServer

DllUnregisterServer

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/Browser/Maxthon/plugin.ini

$OUTDIR/MaxthonHelper02.dll

.dll regsvr32 windows:4 windows x86 arch:x86

3412f6574b4bb673ade6f41be7f52f94

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7f:c8:08:71:a6:6f:e6:b0:7d:8c:fc:a5:af:93:01:4d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

18/02/2008, 00:00

Not After

17/02/2009, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=R&D,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

93:19:75:5a:1a:93:fe:07:b9:e0:4f:f5:8b:0d:07:db:6b:fe:86:0e
Signer

Actual PE Digest

93:19:75:5a:1a:93:fe:07:b9:e0:4f:f5:8b:0d:07:db:6b:fe:86:0e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

MapViewOfFileEx

OpenFileMappingA

CreateFileMappingA

UnmapViewOfFile

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

DisableThreadLibraryCalls

lstrlenW

GetPrivateProfileIntA

CloseHandle

VirtualQuery

WaitForSingleObject

LoadLibraryA

GetProcAddress

FreeLibrary

GetCurrentThreadId

Sleep

GetModuleFileNameA

OutputDebugStringA

DebugBreak

InterlockedIncrement

WideCharToMultiByte

InterlockedDecrement

lstrlenA

GetPrivateProfileStringA

user32

GetWindowThreadProcessId

GetForegroundWindow

AttachThreadInput

SetForegroundWindow

ShowWindow

wvsprintfA

FindWindowExA

SendMessageA

PostMessageA

RegisterWindowMessageA

LoadStringA

CharNextA

shell32

ShellExecuteA

ole32

CoUninitialize

oleaut32

VariantCopy

SysFreeString

SysStringLen

VariantClear

LoadRegTypeLi

atl

ord21

ord31

ord11

ord23

ord16

ord15

ord18

ord57

ord32

ord58

ord30

ord10

msvcp60

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??0_Lockit@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

??1_Winit@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??1Init@ios_base@std@@QAE@XZ

??0Init@ios_base@std@@QAE@XZ

msvcrt

_except_handler3

_onexit

?terminate@@YAXXZ

free

??1type_info@@UAE@XZ

_initterm

malloc

_adjust_fdiv

_mbscmp

memcpy

_mbsicmp

memcmp

sscanf

_mbspbrk

__dllonexit

_purecall

__CxxFrameHandler

??2@YAPAXI@Z

_CxxThrowException

wcslen

_ismbcdigit

atoi

_mbsrchr

strncpy

memset

_mbschr

Exports

DllCanUnloadNow

DllGetClassObject

DllRegisterServer

DllUnregisterServer

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/QQDeskUpdateNew.exe

.exe windows:4 windows x86 arch:x86

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7f:c8:08:71:a6:6f:e6:b0:7d:8c:fc:a5:af:93:01:4d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

18/02/2008, 00:00

Not After

17/02/2009, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=R&D,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6b:49:f9:48:d0:0e:0f:4d:b8:03:98:2c:93:2b:ee:37:87:e6:2d:14
Signer

Actual PE Digest

6b:49:f9:48:d0:0e:0f:4d:b8:03:98:2c:93:2b:ee:37:87:e6:2d:14

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 144KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

UPX1
Size: 83KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

out.upx

.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 144KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$OUTDIR/QQDownload.dll

.dll regsvr32 windows:4 windows x86 arch:x86

0065bf5f476c53df1480dbb24db530b8

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7f:c8:08:71:a6:6f:e6:b0:7d:8c:fc:a5:af:93:01:4d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

18/02/2008, 00:00

Not After

17/02/2009, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=R&D,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

a9:ac:00:5f:16:fb:ed:15:99:dd:e9:34:c6:9f:76:16:bd:dc:ed:55
Signer

Actual PE Digest

a9:ac:00:5f:16:fb:ed:15:99:dd:e9:34:c6:9f:76:16:bd:dc:ed:55

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

f:\vcoutput\Release\VqqSpeedDl\xmain.pdb

Imports

ws2_32

WSAGetLastError

inet_addr

htons

inet_ntoa

ntohs

ntohl

htonl

shutdown

closesocket

ioctlsocket

getsockname

WSASetLastError

gethostname

WSACleanup

WSAStartup

select

__WSAFDIsSet

accept

getpeername

gethostbyname

listen

connect

recv

send

bind

sendto

socket

recvfrom

setsockopt

kernel32

InitializeCriticalSection

DeleteCriticalSection

GetTickCount

MultiByteToWideChar

RaiseException

SetEvent

ResetEvent

WaitForSingleObject

InterlockedIncrement

InterlockedExchangeAdd

InterlockedDecrement

lstrlenA

Sleep

CloseHandle

CreateEventA

GetProcAddress

LoadLibraryA

FreeLibrary

GetCurrentThreadId

GetModuleFileNameA

WideCharToMultiByte

TerminateThread

ReleaseSemaphore

CreateSemaphoreA

WaitForMultipleObjects

InterlockedExchange

CreateMutexA

ReleaseMutex

SetThreadLocale

GetThreadLocale

GetCurrentProcess

TerminateProcess

InterlockedCompareExchange

SetFileAttributesA

DeviceIoControl

SetFilePointer

ReadFile

LeaveCriticalSection

EnterCriticalSection

UnhandledExceptionFilter

SetLastError

GlobalMemoryStatus

GetStdHandle

GetFileType

GetVersion

GetLocaleInfoA

GetACP

GetSystemTimeAsFileTime

GetCurrentProcessId

QueryPerformanceCounter

IsDebuggerPresent

OutputDebugStringA

GetCurrentDirectoryA

GetTempPathA

GetVersionExA

GetLastError

GetFileSize

FlushFileBuffers

FindClose

FindFirstFileA

CreateFileA

DeleteFileA

CopyFileA

WriteFile

FlushConsoleInputBuffer

SetUnhandledExceptionFilter

user32

GetProcessWindowStation

GetUserObjectInformationW

UnregisterClassA

GetDesktopWindow

MessageBoxA

ole32

CoUninitialize

CoCreateGuid

CoInitialize

CoCreateInstance

CoFreeLibrary

CoLoadLibrary

msvcp80

??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z

?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z

?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z

?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z

??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z

?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z

?close@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ

??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z

??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ

?close@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ

?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADHD@Z

??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z

??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

?empty@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE_NXZ

?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z

?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHABV12@@Z

?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ

??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z

?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z

?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z

?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z

?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z

?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z

?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@V32@@Z

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z

??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z

?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z

?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB

??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z

?resize@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z

?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

?setbase@std@@YA?AU?$_Smanip@H@1@H@Z

??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z

?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z

?allocate@?$allocator@D@std@@QAEPADI@Z

?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ

?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z

?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z

?deallocate@?$allocator@D@std@@QAEXPADI@Z

?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@V32@D@Z

?insert@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@V32@_W@Z

??_D?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z

??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z

?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z

?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@@Z

?allocate@?$allocator@_W@std@@QAEPA_WI@Z

?deallocate@?$allocator@_W@std@@QAEXPA_WI@Z

?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@II@Z

??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?uncaught_exception@std@@YA_NXZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

?_Unlock@_Mutex@std@@QAEXXZ

?_Lock@_Mutex@std@@QAEXXZ

??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

?setw@std@@YA?AU?$_Smanip@H@1@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z

??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

msvcr80

fwrite

_snprintf

_vsnprintf

fopen

isspace

sscanf

_stricmp

tolower

_splitpath

rename

_unlink

_access

_itoa

strncmp

memcmp

strcmp

_stat32i64

_mkdir

strlen

strncat

_errno

_close

_read

_lseeki64

?_open@@YAHPBDHH@Z

malloc

strchr

fread

isprint

isalnum

swscanf

atof

_strdup

realloc

calloc

??0bad_cast@std@@QAE@PBD@Z

??1bad_cast@std@@UAE@XZ

??0bad_cast@std@@QAE@ABV01@@Z

toupper

_stat32

?terminate@@YAXXZ

_unlock

_encode_pointer

__dllonexit

_lock

_onexit

_decode_pointer

_except_handler4_common

_malloc_crt

_encoded_null

_initterm

_initterm_e

_amsg_exit

_adjust_fdiv

__CppXcptFilter

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_crt_debugger_hook

__clean_type_info_names_internal

fflush

fclose

strrchr

strstr

strncpy

atoi

_beginthreadex

srand

rand

??_V@YAXPAX@Z

_getch

memcpy

_purecall

memset

_localtime32

memmove_s

_time32

??2@YAPAXI@Z

_invalid_parameter_noinfo

??0exception@std@@QAE@ABV01@@Z

_CxxThrowException

__CxxFrameHandler3

??0exception@std@@QAE@XZ

??3@YAXPAX@Z

??1exception@std@@UAE@XZ

?what@exception@std@@UBEPBDXZ

??0exception@std@@QAE@ABQBD@Z

_stat64i32

getenv

wcsstr

vfprintf

__iob_func

abort

memchr

qsort

strerror

fprintf

_time64

isdigit

memmove

ferror

_setmode

ftell

feof

fseek

fgets

isxdigit

_gmtime64

isupper

strtoul

sprintf

_fileno

fputs

signal

free

atl80

ord15

ord61

ord32

ord18

ord22

ord64

ord23

netapi32

NetWkstaTransportEnum

NetApiBufferFree

Netbios

advapi32

RegisterEventSourceA

ReportEventA

RegQueryValueExA

RegOpenKeyA

DeregisterEventSource

IsTextUnicode

RegCreateKeyA

RegSetValueExA

RegCloseKey

shell32

SHGetSpecialFolderPathA

Exports

DllCanUnloadNow

DllGetClassObject

DllRegisterServer

DllUnregisterServer

ReleaseCommLib

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 332KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/QQIEHelper02.dll

.dll regsvr32 windows:4 windows x86 arch:x86

5a00f4880d48aa0ca9289007400bd816

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7f:c8:08:71:a6:6f:e6:b0:7d:8c:fc:a5:af:93:01:4d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

18/02/2008, 00:00

Not After

17/02/2009, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=R&D,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

f2:c5:ba:ae:85:a5:36:ea:cd:71:87:62:2d:ec:d8:0d:c2:00:14:b5
Signer

Actual PE Digest

f2:c5:ba:ae:85:a5:36:ea:cd:71:87:62:2d:ec:d8:0d:c2:00:14:b5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

FlushInstructionCache

GetCurrentProcess

GetPrivateProfileIntA

GetPrivateProfileStringA

WritePrivateProfileStringA

DebugBreak

OutputDebugStringA

GetShortPathNameA

GetModuleHandleA

SizeofResource

LoadLibraryExA

lstrcmpiA

lstrcpynA

IsDBCSLeadByte

DisableThreadLibraryCalls

HeapDestroy

lstrcmpA

lstrcatA

WaitForMultipleObjects

CloseHandle

CreateMutexA

CreateEventA

SetEvent

InterlockedExchange

VirtualQuery

OpenMutexA

TlsFree

VirtualProtect

ReleaseMutex

ReleaseSemaphore

CreateSemaphoreA

WaitForSingleObject

GlobalLock

GlobalUnlock

GlobalAlloc

FindResourceA

LoadResource

LockResource

GlobalHandle

GlobalFree

FreeResource

GetCurrentThreadId

TlsAlloc

TlsSetValue

TlsGetValue

GetVersionExA

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

InitializeCriticalSection

SetLastError

lstrlenW

GetLastError

Sleep

GetModuleFileNameA

MultiByteToWideChar

WideCharToMultiByte

InterlockedDecrement

InterlockedIncrement

LoadLibraryA

GetProcAddress

FreeLibrary

lstrlenA

lstrcpyA

user32

DefWindowProcA

GetWindow

RegisterWindowMessageA

GetClassNameA

LoadStringA

CreateDialogIndirectParamA

GetClassInfoExA

LoadCursorA

GetWindowThreadProcessId

GetForegroundWindow

CharLowerA

CharNextA

GetDesktopWindow

DestroyWindow

MsgWaitForMultipleObjects

SetWindowLongA

wsprintfA

GetWindowTextA

GetWindowTextLengthA

SetWindowsHookExA

UnhookWindowsHookEx

CallNextHookEx

ScreenToClient

GetWindowLongA

IsWindowVisible

MoveWindow

GetWindowRect

GetParent

SetParent

IsWindow

GetScrollPos

LoadBitmapA

MessageBoxA

KillTimer

SetTimer

wvsprintfA

RegisterClassExA

PeekMessageA

SetWindowTextA

SendMessageTimeoutA

AttachThreadInput

SetForegroundWindow

ShowWindow

FindWindowExA

CreateWindowExA

GetDlgItem

SendMessageA

InvalidateRgn

InvalidateRect

SetCapture

ReleaseCapture

CreateAcceleratorTableA

GetDC

ReleaseDC

RedrawWindow

SetWindowPos

BeginPaint

GetClientRect

FillRect

EndPaint

CallWindowProcA

GetFocus

SetFocus

GetSysColor

GetCursorPos

WindowFromPoint

IsChild

gdi32

GetClipBox

StretchBlt

GetStockObject

GetObjectA

GetDeviceCaps

DeleteObject

CreateCompatibleBitmap

CreateCompatibleDC

SelectObject

BitBlt

CreateSolidBrush

DeleteDC

advapi32

RegCloseKey

RegOpenKeyA

RegQueryValueExA

IsTextUnicode

RegNotifyChangeKeyValue

RegEnumValueA

RegQueryInfoKeyA

RegEnumKeyExA

RegOpenKeyExA

RegDeleteValueA

RegCreateKeyExA

RegSetValueExA

RegSetValueExW

RegDeleteKeyA

shell32

SHGetSpecialFolderPathA

ShellExecuteA

ole32

CoTaskMemRealloc

OleLockRunning

CoTaskMemAlloc

StringFromCLSID

CoTaskMemFree

CoCreateInstance

CLSIDFromString

CLSIDFromProgID

OleUninitialize

OleInitialize

CreateStreamOnHGlobal

oleaut32

VariantClear

LoadRegTypeLi

LoadTypeLi

RegisterTypeLi

VarUI4FromStr

SysFreeString

OleCreateFontIndirect

SysStringLen

SysAllocString

SysAllocStringLen

VariantCopy

wininet

InternetCombineUrlA

ReadUrlCacheEntryStream

RetrieveUrlCacheEntryStreamA

UnlockUrlCacheEntryStream

oleacc

ObjectFromLresult

rpcrt4

UuidEqual

ws2_32

inet_addr

htons

connect

send

ioctlsocket

select

__WSAFDIsSet

recv

closesocket

socket

setsockopt

WSAStartup

WSACleanup

shlwapi

PathFindFileNameA

SHSetValueA

SHSetValueW

comctl32

ImageList_Create

ImageList_LoadImageA

ImageList_AddMasked

msvcp60

??1_Lockit@std@@QAE@XZ

??0Init@ios_base@std@@QAE@XZ

??1Init@ios_base@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??1_Winit@std@@QAE@XZ

??0_Lockit@std@@QAE@XZ

msvcrt

free

malloc

??2@YAPAXI@Z

memcpy

strchr

_wcsicmp

__CxxFrameHandler

strlen

_mbsicmp

_purecall

_mbscmp

_CxxThrowException

memset

_mbsrchr

wcslen

?terminate@@YAXXZ

_ismbcspace

memmove

memcmp

realloc

sscanf

_ismbcdigit

_mbspbrk

_mbschr

atoi

_mbsnbcpy

abs

_access

_beginthreadex

_snprintf

strcat

strcpy

_except_handler3

strcmp

__dllonexit

_onexit

??1type_info@@UAE@XZ

_mbsstr

_initterm

_adjust_fdiv

Exports

DllCanUnloadNow

DllGetClassObject

DllRegisterServer

DllUnregisterServer

Sections

.text
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/TNProxy.dll

.dll regsvr32 windows:4 windows x86 arch:x86

5b6be223aae9558de13dd3a8d5d553f3

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7f:c8:08:71:a6:6f:e6:b0:7d:8c:fc:a5:af:93:01:4d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

18/02/2008, 00:00

Not After

17/02/2009, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=R&D,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

b9:30:e9:58:b6:b6:9e:50:34:77:30:46:b9:49:1a:ea:e0:66:aa:a2
Signer

Actual PE Digest

b9:30:e9:58:b6:b6:9e:50:34:77:30:46:b9:49:1a:ea:e0:66:aa:a2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection

InterlockedDecrement

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSection

LoadLibraryA

InterlockedIncrement

GetProcAddress

FreeLibrary

GetTickCount

CloseHandle

Sleep

TlsSetValue

TlsFree

TlsAlloc

TlsGetValue

ws2_32

htonl

sendto

connect

htons

ntohs

ntohl

gethostbyname

WSAStartup

WSACleanup

select

closesocket

ioctlsocket

setsockopt

socket

bind

recvfrom

recv

send

getpeername

listen

accept

inet_ntoa

__WSAFDIsSet

WSAGetLastError

gethostname

inet_addr

msvcrt

memcmp

strcmp

??1type_info@@UAE@XZ

isdigit

memchr

fgetc

malloc

_adjust_fdiv

__dllonexit

_ftol

atoi

_CxxThrowException

strncpy

strstr

memmove

free

calloc

memset

rand

srand

_beginthreadex

memcpy

strlen

_initterm

_onexit

time

strcpy

_iob

fputc

sprintf

printf

_purecall

__CxxFrameHandler

??3@YAXPAX@Z

??2@YAPAXI@Z

msvcp60

??1_Winit@std@@QAE@XZ

??1?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

?_Xran@std@@YAXXZ

??0_Lockit@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

?setw@std@@YA?AU?$_Smanip@H@1@H@Z

??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

?_Xlen@std@@YAXXZ

??1Init@ios_base@std@@QAE@XZ

??0Init@ios_base@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

iphlpapi

GetAdaptersInfo

GetIfEntry

wininet

InternetGetConnectedState

Exports

DllCanUnloadNow

DllGetClassObject

DllRegisterServer

DllUnregisterServer

Sections

.text
Size: 300KB - Virtual size: 297KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/bt/Microsoft.VC80.ATL.manifest

.xml

$OUTDIR/bt/Microsoft.VC80.CRT.manifest

.xml

$OUTDIR/bt/Microsoft.VC80.MFC.manifest

.xml

$OUTDIR/bt/atl80.dll

.dll windows:4 windows x86 arch:x86

00c6e566e88c3d07ddc376fe4ce83c5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

atl80.i386.pdb

Imports

kernel32

RaiseException

EnterCriticalSection

LeaveCriticalSection

GetCurrentThreadId

FindClose

FindFirstFileW

CompareStringW

GetSystemDirectoryW

GetLongPathNameW

GetModuleFileNameW

GetProcAddress

GetModuleHandleW

lstrlenW

InitializeCriticalSection

DeleteCriticalSection

GetLastError

DisableThreadLibraryCalls

DebugBreak

OutputDebugStringA

GetVersionExA

InterlockedIncrement

InterlockedDecrement

lstrcmpiW

FreeLibrary

MultiByteToWideChar

SizeofResource

LoadResource

FindResourceW

LoadLibraryExW

CloseHandle

ReadFile

GetFileSize

CreateFileW

WideCharToMultiByte

WaitForSingleObject

GlobalAlloc

FindResourceA

MulDiv

FlushInstructionCache

GetCurrentProcess

lstrcmpW

GlobalUnlock

GlobalLock

SetLastError

GlobalFree

GlobalHandle

LockResource

lstrcmpA

GetModuleHandleA

GetTickCount

InterlockedExchange

GetACP

GetLocaleInfoA

GetThreadLocale

InterlockedCompareExchange

HeapFree

GetProcessHeap

HeapAlloc

LoadLibraryA

IsProcessorFeaturePresent

VirtualFree

VirtualAlloc

HeapSize

HeapReAlloc

QueryPerformanceCounter

GetCurrentProcessId

GetSystemTimeAsFileTime

TerminateProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

RtlUnwind

LocalAlloc

Exports

AtlAdvise

AtlAxAttachControl

AtlAxCreateControl

AtlAxCreateControlEx

AtlAxCreateControlLic

AtlAxCreateControlLicEx

AtlAxCreateDialogA

AtlAxCreateDialogW

AtlAxDialogBoxA

AtlAxDialogBoxW

AtlAxGetControl

AtlAxGetHost

AtlAxWinInit

AtlCallTermFunc

AtlComModuleGetClassObject

AtlComModuleRegisterClassObjects

AtlComModuleRegisterServer

AtlComModuleRevokeClassObjects

AtlComModuleUnregisterServer

AtlComPtrAssign

AtlComQIPtrAssign

AtlCreateRegistrar

AtlCreateTargetDC

AtlDevModeW2A

AtlFreeMarshalStream

AtlGetObjectSourceInterface

AtlGetVersion

AtlHiMetricToPixel

AtlIPersistPropertyBag_Load

AtlIPersistPropertyBag_Save

AtlIPersistStreamInit_Load

AtlIPersistStreamInit_Save

AtlInternalQueryInterface

AtlLoadTypeLib

AtlMarshalPtrInProc

AtlModuleAddTermFunc

AtlPixelToHiMetric

AtlRegisterClassCategoriesHelper

AtlRegisterTypeLib

AtlSetErrorInfo

AtlUnRegisterTypeLib

AtlUnadvise

AtlUnmarshalPtr

AtlUpdateRegistryFromResourceD

AtlWaitWithMessageLoop

AtlWinModuleAddCreateWndData

AtlWinModuleExtractCreateWndData

AtlWinModuleInit

AtlWinModuleRegisterClassExA

AtlWinModuleRegisterClassExW

AtlWinModuleRegisterWndClassInfoA

AtlWinModuleRegisterWndClassInfoW

AtlWinModuleTerm

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/bt/msvcp80.dll

.dll windows:4 windows x86 arch:x86

9fb682fe34f5d965faf4cf424fa6c000

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

msvcp80.i386.pdb

Imports

msvcr80

setvbuf

fwrite

??0exception@std@@QAE@XZ

_Getdays

_Getmonths

fgetpos

fseek

fsetpos

fclose

??0bad_cast@std@@QAE@PBD@Z

??1bad_cast@std@@UAE@XZ

??0bad_cast@std@@QAE@ABV01@@Z

__iob_func

_invoke_watson

_fsopen

wcstombs_s

_wfsopen

_get_osplatform

mbstowcs_s

atan2

cos

exp

ldexp

log

pow

sin

sqrt

tan

fgetwc

fputwc

ungetwc

_Strftime

strcspn

_strtoi64

_strtoui64

sprintf_s

abort

??0exception@std@@QAE@ABQBDH@Z

_realloc_crt

setlocale

_malloc_crt

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

__uncaught_exception

fflush

towupper

strcmp

_create_locale

_ui64toa_s

_free_locale

__pctype_func

_errno

___mb_cur_max_l_func

___lc_codepage_func

___lc_handle_func

__crtCompareStringA

___lc_collate_cp_func

__crtLCMapStringA

memcpy

isupper

_calloc_crt

islower

__crtGetStringTypeW

__crtLCMapStringW

__crtCompareStringW

isspace

tolower

strtod

isdigit

isalnum

?terminate@@YAXXZ

_unlock

_encode_pointer

__dllonexit

_lock

_onexit

_decode_pointer

_encoded_null

_initterm

_initterm_e

_amsg_exit

_adjust_fdiv

__CppXcptFilter

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_except_handler4_common

_crt_debugger_hook

__clean_type_info_names_internal

ungetc

fputc

fgetc

__CxxFrameHandler3

??0exception@std@@QAE@ABV01@@Z

_CxxThrowException

??2@YAPAXI@Z

_invalid_parameter_noinfo

??_V@YAXPAX@Z

_Gettnames

localeconv

free

memset

memchr

strlen

memcmp

wcslen

memmove_s

memcpy_s

??3@YAXPAX@Z

??1exception@std@@UAE@XZ

?what@exception@std@@UBEPBDXZ

towlower

??0exception@std@@QAE@ABQBD@Z

kernel32

GetCurrentProcessId

GetCurrentThreadId

GetTickCount

QueryPerformanceCounter

DisableThreadLibraryCalls

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

InitializeCriticalSection

Sleep

InterlockedDecrement

InterlockedIncrement

GetLocaleInfoA

WideCharToMultiByte

MultiByteToWideChar

InterlockedExchange

InterlockedCompareExchange

GetSystemTimeAsFileTime

Exports

??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z

??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAD@Z

??$?5DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$?5GU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAG@Z

??$?5GU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAG@Z

??$?5GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$?5MDU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@M@0@@Z

??$?5MGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@M@0@@Z

??$?5M_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@M@0@@Z

??$?5NDU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@N@0@@Z

??$?5NGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@N@0@@Z

??$?5N_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@N@0@@Z

??$?5ODU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@O@0@@Z

??$?5OGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@O@0@@Z

??$?5O_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@O@0@@Z

??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAC@Z

??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAE@Z

??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAC@Z

??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAE@Z

??$?5_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AA_W@Z

??$?5_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@PA_W@Z

??$?5_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$?6GU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@G@Z

??$?6GU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBG@Z

??$?6GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$?6MDU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@M@0@@Z

??$?6MGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@M@0@@Z

??$?6M_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@M@0@@Z

??$?6NDU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@N@0@@Z

??$?6NGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@N@0@@Z

??$?6N_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@N@0@@Z

??$?6ODU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@O@0@@Z

??$?6OGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@O@0@@Z

??$?6O_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@O@0@@Z

??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@C@Z

??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z

??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@E@Z

??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBC@Z

??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBE@Z

??$?6_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@PB_W@Z

??$?6_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@_W@Z

??$?6_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z

??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z

??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$?8M@std@@YA_NABMABV?$complex@M@0@@Z

??$?8M@std@@YA_NABV?$complex@M@0@0@Z

??$?8M@std@@YA_NABV?$complex@M@0@ABM@Z

??$?8N@std@@YA_NABNABV?$complex@N@0@@Z

??$?8N@std@@YA_NABV?$complex@N@0@0@Z

??$?8N@std@@YA_NABV?$complex@N@0@ABN@Z

??$?8O@std@@YA_NABOABV?$complex@O@0@@Z

??$?8O@std@@YA_NABV?$complex@O@0@0@Z

??$?8O@std@@YA_NABV?$complex@O@0@ABO@Z

??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z

??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z

??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z

??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$?9M@std@@YA_NABMABV?$complex@M@0@@Z

??$?9M@std@@YA_NABV?$complex@M@0@0@Z

??$?9M@std@@YA_NABV?$complex@M@0@ABM@Z

??$?9N@std@@YA_NABNABV?$complex@N@0@@Z

??$?9N@std@@YA_NABV?$complex@N@0@0@Z

??$?9N@std@@YA_NABV?$complex@N@0@ABN@Z

??$?9O@std@@YA_NABOABV?$complex@O@0@@Z

??$?9O@std@@YA_NABV?$complex@O@0@0@Z

??$?9O@std@@YA_NABV?$complex@O@0@ABO@Z

??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z

??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$?DM@std@@YA?AV?$complex@M@0@ABMABV10@@Z

??$?DM@std@@YA?AV?$complex@M@0@ABV10@0@Z

??$?DM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z

??$?DN@std@@YA?AV?$complex@N@0@ABNABV10@@Z

??$?DN@std@@YA?AV?$complex@N@0@ABV10@0@Z

??$?DN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z

??$?DO@std@@YA?AV?$complex@O@0@ABOABV10@@Z

??$?DO@std@@YA?AV?$complex@O@0@ABV10@0@Z

??$?DO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z

??$?GM@std@@YA?AV?$complex@M@0@ABMABV10@@Z

??$?GM@std@@YA?AV?$complex@M@0@ABV10@0@Z

??$?GM@std@@YA?AV?$complex@M@0@ABV10@@Z

??$?GM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z

??$?GN@std@@YA?AV?$complex@N@0@ABNABV10@@Z

??$?GN@std@@YA?AV?$complex@N@0@ABV10@0@Z

??$?GN@std@@YA?AV?$complex@N@0@ABV10@@Z

??$?GN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z

??$?GO@std@@YA?AV?$complex@O@0@ABOABV10@@Z

??$?GO@std@@YA?AV?$complex@O@0@ABV10@0@Z

??$?GO@std@@YA?AV?$complex@O@0@ABV10@@Z

??$?GO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@DABV10@@Z

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z

??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@0@Z

??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@G@Z

??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@PBG@Z

??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@GABV10@@Z

??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBGABV10@@Z

??$?HM@std@@YA?AV?$complex@M@0@ABMABV10@@Z

??$?HM@std@@YA?AV?$complex@M@0@ABV10@0@Z

??$?HM@std@@YA?AV?$complex@M@0@ABV10@@Z

??$?HM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z

??$?HN@std@@YA?AV?$complex@N@0@ABNABV10@@Z

??$?HN@std@@YA?AV?$complex@N@0@ABV10@0@Z

??$?HN@std@@YA?AV?$complex@N@0@ABV10@@Z

??$?HN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z

??$?HO@std@@YA?AV?$complex@O@0@ABOABV10@@Z

??$?HO@std@@YA?AV?$complex@O@0@ABV10@0@Z

??$?HO@std@@YA?AV?$complex@O@0@ABV10@@Z

??$?HO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z

??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z

??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z

??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@_W@Z

??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_WABV10@@Z

??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@_WABV10@@Z

??$?KM@std@@YA?AV?$complex@M@0@ABMABV10@@Z

??$?KM@std@@YA?AV?$complex@M@0@ABV10@0@Z

??$?KM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z

??$?KN@std@@YA?AV?$complex@N@0@ABNABV10@@Z

??$?KN@std@@YA?AV?$complex@N@0@ABV10@0@Z

??$?KN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z

??$?KO@std@@YA?AV?$complex@O@0@ABOABV10@@Z

??$?KO@std@@YA?AV?$complex@O@0@ABV10@0@Z

??$?KO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z

??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z

??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z

??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z

??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z

??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z

??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z

??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z

??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z

??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z

??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z

??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z

??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z

??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$_Fabs@M@std@@YAMABV?$complex@M@0@PAH@Z

??$_Fabs@N@std@@YANABV?$complex@N@0@PAH@Z

??$_Fabs@O@std@@YAOABV?$complex@O@0@PAH@Z

??$abs@M@std@@YAMABV?$complex@M@0@@Z

??$abs@N@std@@YANABV?$complex@N@0@@Z

??$abs@O@std@@YAOABV?$complex@O@0@@Z

??$arg@M@std@@YAMABV?$complex@M@0@@Z

??$arg@N@std@@YANABV?$complex@N@0@@Z

??$arg@O@std@@YAOABV?$complex@O@0@@Z

??$conj@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$conj@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$conj@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$cos@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$cos@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$cos@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$cosh@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$cosh@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$cosh@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$exp@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$exp@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$exp@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@D@Z

??$getline@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z

??$getline@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@G@Z

??$getline@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z

??$getline@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@_W@Z

??$imag@M@std@@YAMABV?$complex@M@0@@Z

??$imag@N@std@@YANABV?$complex@N@0@@Z

??$imag@O@std@@YAOABV?$complex@O@0@@Z

??$log10@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$log10@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$log10@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$log@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$log@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$log@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$norm@M@std@@YAMABV?$complex@M@0@@Z

??$norm@N@std@@YANABV?$complex@N@0@@Z

??$norm@O@std@@YAOABV?$complex@O@0@@Z

??$polar@M@std@@YA?AV?$complex@M@0@ABM0@Z

??$polar@M@std@@YA?AV?$complex@M@0@ABM@Z

??$polar@N@std@@YA?AV?$complex@N@0@ABN0@Z

??$polar@N@std@@YA?AV?$complex@N@0@ABN@Z

??$polar@O@std@@YA?AV?$complex@O@0@ABO0@Z

??$polar@O@std@@YA?AV?$complex@O@0@ABO@Z

??$pow@M@std@@YA?AV?$complex@M@0@ABMABV10@@Z

??$pow@M@std@@YA?AV?$complex@M@0@ABV10@0@Z

??$pow@M@std@@YA?AV?$complex@M@0@ABV10@ABM@Z

??$pow@M@std@@YA?AV?$complex@M@0@ABV10@H@Z

??$pow@N@std@@YA?AV?$complex@N@0@ABNABV10@@Z

??$pow@N@std@@YA?AV?$complex@N@0@ABV10@0@Z

??$pow@N@std@@YA?AV?$complex@N@0@ABV10@ABN@Z

??$pow@N@std@@YA?AV?$complex@N@0@ABV10@H@Z

??$pow@O@std@@YA?AV?$complex@O@0@ABOABV10@@Z

??$pow@O@std@@YA?AV?$complex@O@0@ABV10@0@Z

??$pow@O@std@@YA?AV?$complex@O@0@ABV10@ABO@Z

??$pow@O@std@@YA?AV?$complex@O@0@ABV10@H@Z

??$real@M@std@@YAMABV?$complex@M@0@@Z

??$real@N@std@@YANABV?$complex@N@0@@Z

??$real@O@std@@YAOABV?$complex@O@0@@Z

??$sin@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$sin@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$sin@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$sinh@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$sinh@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$sinh@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$sqrt@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$sqrt@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$sqrt@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$tan@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$tan@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$tan@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??$tanh@M@std@@YA?AV?$complex@M@0@ABV10@@Z

??$tanh@N@std@@YA?AV?$complex@N@0@ABV10@@Z

??$tanh@O@std@@YA?AV?$complex@O@0@ABV10@@Z

??0?$_Complex_base@MU_C_float_complex@@@std@@QAE@ABM0@Z

??0?$_Complex_base@NU_C_double_complex@@@std@@QAE@ABN0@Z

??0?$_Complex_base@OU_C_ldouble_complex@@@std@@QAE@ABO0@Z

??0?$_Mpunct@D@std@@IAE@PBDI_N@Z

??0?$_Mpunct@D@std@@QAE@ABV_Locinfo@1@I_N@Z

??0?$_Mpunct@D@std@@QAE@I_N@Z

??0?$_Mpunct@G@std@@IAE@PBDI_N@Z

??0?$_Mpunct@G@std@@QAE@ABV_Locinfo@1@I_N@Z

??0?$_Mpunct@G@std@@QAE@I_N@Z

??0?$_Mpunct@_W@std@@IAE@PBDI_N@Z

??0?$_Mpunct@_W@std@@QAE@ABV_Locinfo@1@I_N@Z

??0?$_Mpunct@_W@std@@QAE@I_N@Z

??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z

??0?$_String_val@DV?$allocator@D@std@@@std@@QAE@ABV01@@Z

??0?$_String_val@GV?$allocator@G@std@@@std@@IAE@V?$allocator@G@1@@Z

??0?$_String_val@GV?$allocator@G@std@@@std@@QAE@ABV01@@Z

??0?$_String_val@_WV?$allocator@_W@std@@@std@@IAE@V?$allocator@_W@1@@Z

??0?$_String_val@_WV?$allocator@_W@std@@@std@@QAE@ABV01@@Z

??0?$allocator@D@std@@QAE@ABV01@@Z

??0?$allocator@D@std@@QAE@XZ

??0?$allocator@G@std@@QAE@ABV01@@Z

??0?$allocator@G@std@@QAE@XZ

??0?$allocator@X@std@@QAE@ABV01@@Z

??0?$allocator@X@std@@QAE@XZ

??0?$allocator@_W@std@@QAE@ABV01@@Z

??0?$allocator@_W@std@@QAE@XZ

??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_filebuf@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_filebuf@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z

??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z

??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z

??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@XZ

??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z

??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z

??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z

??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@XZ

??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z

??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z

??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z

??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ

??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z

??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z

??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z

??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ

??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z

??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z

??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z

??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@XZ

??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z

??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z

??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z

??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z

??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z

??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z

??0?$basic_istringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z

??0?$basic_istringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z

??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z

??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z

??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z

??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ

??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z

??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z

??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z

??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@XZ

??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z

??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z

??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z

??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z

??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z

??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z

??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z

??0?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z

??0?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@II@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@IDABV?$allocator@D@1@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDIABV?$allocator@D@1@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@1@0@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@II@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@IIABV?$allocator@G@1@@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$allocator@G@1@@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IG@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IGABV?$allocator@G@1@@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG0@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGI@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGIABV?$allocator@G@1@@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@V?$_String_const_iterator@GU?$char_traits@G@std@@V?$allocator@G@2@@1@0@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@II@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@IIABV?$allocator@_W@1@@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$allocator@_W@1@@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_W@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_WABV?$allocator@_W@1@@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W0@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WABV?$allocator@_W@1@@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WIABV?$allocator@_W@1@@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@V?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@0@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z

??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z

??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z

??0?$basic_stringbuf@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z

??0?$basic_stringbuf@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z

??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z

??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z

??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z

??0?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z

??0?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z

??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@DDH@std@@QAE@I@Z

??0?$codecvt@GDH@std@@IAE@PBDI@Z

??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@GDH@std@@QAE@I@Z

??0?$codecvt@_WDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

??0?$collate@D@std@@IAE@PBDI@Z

??0?$collate@D@std@@QAE@ABV_Locinfo@1@I@Z

??0?$collate@D@std@@QAE@I@Z

??0?$collate@G@std@@IAE@PBDI@Z

??0?$collate@G@std@@QAE@ABV_Locinfo@1@I@Z

??0?$collate@G@std@@QAE@I@Z

??0?$collate@_W@std@@IAE@PBDI@Z

??0?$collate@_W@std@@QAE@ABV_Locinfo@1@I@Z

??0?$collate@_W@std@@QAE@I@Z

??0?$complex@M@std@@QAE@ABM0@Z

??0?$complex@M@std@@QAE@ABU_C_float_complex@@@Z

??0?$complex@M@std@@QAE@ABV?$complex@N@1@@Z

??0?$complex@M@std@@QAE@ABV?$complex@O@1@@Z

??0?$complex@N@std@@QAE@ABN0@Z

??0?$complex@N@std@@QAE@ABU_C_double_complex@@@Z

??0?$complex@N@std@@QAE@ABV?$complex@M@1@@Z

??0?$complex@N@std@@QAE@ABV?$complex@O@1@@Z

??0?$complex@O@std@@QAE@ABO0@Z

??0?$complex@O@std@@QAE@ABU_C_ldouble_complex@@@Z

??0?$complex@O@std@@QAE@ABV?$complex@M@1@@Z

??0?$complex@O@std@@QAE@ABV?$complex@N@1@@Z

??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@D@std@@QAE@PBF_NI@Z

??0?$ctype@G@std@@IAE@PBDI@Z

??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@G@std@@QAE@I@Z

??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@_W@std@@QAE@I@Z

??0?$messages@D@std@@IAE@PBDI@Z

??0?$messages@D@std@@QAE@ABV_Locinfo@1@I@Z

??0?$messages@D@std@@QAE@I@Z

??0?$messages@G@std@@IAE@PBDI@Z

??0?$messages@G@std@@QAE@ABV_Locinfo@1@I@Z

??0?$messages@G@std@@QAE@I@Z

??0?$messages@_W@std@@IAE@PBDI@Z

??0?$messages@_W@std@@QAE@ABV_Locinfo@1@I@Z

??0?$messages@_W@std@@QAE@I@Z

??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$money_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$money_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$money_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$money_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$moneypunct@D$00@std@@IAE@PBDI@Z

??0?$moneypunct@D$00@std@@QAE@ABV_Locinfo@1@I@Z

??0?$moneypunct@D$00@std@@QAE@I@Z

??0?$moneypunct@D$0A@@std@@IAE@PBDI@Z

??0?$moneypunct@D$0A@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$moneypunct@D$0A@@std@@QAE@I@Z

??0?$moneypunct@G$00@std@@IAE@PBDI@Z

??0?$moneypunct@G$00@std@@QAE@ABV_Locinfo@1@I@Z

??0?$moneypunct@G$00@std@@QAE@I@Z

??0?$moneypunct@G$0A@@std@@IAE@PBDI@Z

??0?$moneypunct@G$0A@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$moneypunct@G$0A@@std@@QAE@I@Z

??0?$moneypunct@_W$00@std@@IAE@PBDI@Z

??0?$moneypunct@_W$00@std@@QAE@ABV_Locinfo@1@I@Z

??0?$moneypunct@_W$00@std@@QAE@I@Z

??0?$moneypunct@_W$0A@@std@@IAE@PBDI@Z

??0?$moneypunct@_W$0A@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$moneypunct@_W$0A@@std@@QAE@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

Sections

.text
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 292KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/bt/msvcr80.dll

.dll windows:4 windows x86 arch:x86

8eb98c77a1ada89df5027bd5bf01c2f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

msvcr80.i386.pdb

Imports

msvcrt

_getdrives

kernel32

LoadLibraryW

GetLocalTime

GetModuleFileNameA

GetModuleFileNameW

GetModuleHandleA

GetProcAddress

ExitProcess

WriteFile

GetStdHandle

GetSystemDirectoryW

GetLongPathNameW

GetCurrentThreadId

TlsGetValue

DebugBreak

OutputDebugStringA

GetCommandLineA

HeapFree

GetVersionExA

HeapAlloc

GetProcessHeap

DeleteCriticalSection

LeaveCriticalSection

EnterCriticalSection

ExitThread

CloseHandle

GetLastError

ResumeThread

CreateThread

TlsAlloc

TlsSetValue

TlsFree

InterlockedIncrement

SetLastError

InterlockedDecrement

GetCurrentThread

FindNextFileA

FindFirstFileA

FindClose

FindNextFileW

FindFirstFileW

FileTimeToSystemTime

FileTimeToLocalFileTime

Sleep

GetEnvironmentVariableA

HeapDestroy

HeapCreate

VirtualFree

HeapReAlloc

VirtualAlloc

SetHandleCount

GetFileType

GetStartupInfoA

GetCPInfo

GetACP

GetOEMCP

WriteConsoleW

TerminateProcess

GetCurrentProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

SetConsoleCtrlHandler

FreeLibrary

InterlockedExchange

LoadLibraryA

InitializeCriticalSection

MultiByteToWideChar

FreeEnvironmentStringsA

GetEnvironmentStrings

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetCommandLineW

WideCharToMultiByte

QueryPerformanceCounter

GetTickCount

GetCurrentProcessId

GetSystemTimeAsFileTime

LCMapStringA

LCMapStringW

GetStringTypeA

GetStringTypeW

SetLocalTime

GetLocaleInfoA

GetLocaleInfoW

SetEnvironmentVariableA

SetEnvironmentVariableW

GetUserDefaultLCID

EnumSystemLocalesA

IsValidLocale

IsValidCodePage

RtlUnwind

GetTimeFormatA

GetDateFormatA

GetTimeZoneInformation

HeapSize

GetConsoleCP

GetConsoleMode

FlushFileBuffers

SetFilePointer

WriteConsoleA

GetConsoleOutputCP

SetStdHandle

CreateFileA

CompareStringA

CompareStringW

Beep

GetDiskFreeSpaceA

GetLogicalDrives

SetErrorMode

GetFileAttributesA

GetCurrentDirectoryA

SetCurrentDirectoryA

SetFileAttributesA

GetFullPathNameA

GetDriveTypeA

CreateDirectoryA

RemoveDirectoryA

DeleteFileA

GetFileAttributesW

GetCurrentDirectoryW

SetCurrentDirectoryW

SetFileAttributesW

GetFullPathNameW

CreateDirectoryW

DeleteFileW

MoveFileW

RemoveDirectoryW

GetDriveTypeW

MoveFileA

RaiseException

GetExitCodeProcess

WaitForSingleObject

CreateProcessA

CreateProcessW

HeapValidate

HeapCompact

HeapWalk

VirtualProtect

GetSystemInfo

VirtualQuery

IsDBCSLeadByteEx

ReadConsoleA

ReadConsoleW

SetConsoleMode

SetEndOfFile

DuplicateHandle

GetFileInformationByHandle

PeekNamedPipe

ReadConsoleInputA

PeekConsoleInputA

GetNumberOfConsoleInputEvents

ReadConsoleInputW

LockFile

UnlockFile

CreatePipe

ReadFile

CreateFileW

SetFileTime

LocalFileTimeToFileTime

SystemTimeToFileTime

Exports

$I10_OUTPUT

??0__non_rtti_object@std@@QAE@ABV01@@Z

??0bad_cast@std@@QAE@ABV01@@Z

??0bad_cast@std@@QAE@PBD@Z

??0bad_typeid@std@@QAE@ABV01@@Z

??0bad_typeid@std@@QAE@PBD@Z

??0exception@std@@QAE@ABQBD@Z

??0exception@std@@QAE@ABQBDH@Z

??0exception@std@@QAE@ABV01@@Z

??0exception@std@@QAE@XZ

??1__non_rtti_object@std@@UAE@XZ

??1bad_cast@std@@UAE@XZ

??1bad_typeid@std@@UAE@XZ

??1exception@std@@UAE@XZ

??1type_info@@UAE@XZ

??2@YAPAXI@Z

??3@YAXPAX@Z

??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z

??4bad_cast@std@@QAEAAV01@ABV01@@Z

??4bad_typeid@std@@QAEAAV01@ABV01@@Z

??4exception@std@@QAEAAV01@ABV01@@Z

??8type_info@@QBE_NABV0@@Z

??9type_info@@QBE_NABV0@@Z

??_7__non_rtti_object@std@@6B@

??_7bad_cast@std@@6B@

??_7bad_typeid@std@@6B@

??_7exception@@6B@

??_7exception@std@@6B@

??_Fbad_cast@std@@QAEXXZ

??_Fbad_typeid@std@@QAEXXZ

??_U@YAPAXI@Z

??_V@YAXPAX@Z

?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z

?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z

?_Type_info_dtor@type_info@@CAXPAV1@@Z

?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z

?_ValidateExecute@@YAHP6GHXZ@Z

?_ValidateRead@@YAHPBXI@Z

?_ValidateWrite@@YAHPAXI@Z

?_inconsistency@@YAXXZ

?_invalid_parameter@@YAXPBG00II@Z

?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z

?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z

?_open@@YAHPBDHH@Z

?_query_new_handler@@YAP6AHI@ZXZ

?_query_new_mode@@YAHXZ

?_set_new_handler@@YAP6AHI@ZH@Z

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

?_set_new_mode@@YAHH@Z

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z

?_sopen@@YAHPBDHHH@Z

?_type_info_dtor_internal_method@type_info@@QAEXXZ

?_wopen@@YAHPB_WHH@Z

?_wsopen@@YAHPB_WHHH@Z

?before@type_info@@QBEHABV1@@Z

?name@type_info@@QBEPBDPAU__type_info_node@@@Z

?raw_name@type_info@@QBEPBDXZ

?set_new_handler@@YAP6AXXZP6AXXZ@Z

?set_terminate@@YAP6AXXZH@Z

?set_terminate@@YAP6AXXZP6AXXZ@Z

?set_unexpected@@YAP6AXXZH@Z

?set_unexpected@@YAP6AXXZP6AXXZ@Z

?swprintf@@YAHPAGIPBGZZ

?swprintf@@YAHPA_WIPB_WZZ

?terminate@@YAXXZ

?unexpected@@YAXXZ

?vswprintf@@YAHPA_WIPB_WPAD@Z

?what@exception@std@@UBEPBDXZ

@_calloc_crt@8

@_malloc_crt@4

@_realloc_crt@8

_CIacos

_CIasin

_CIatan

_CIatan2

_CIcos

_CIcosh

_CIexp

_CIfmod

_CIlog

_CIlog10

_CIpow

_CIsin

_CIsinh

_CIsqrt

_CItan

_CItanh

_CRT_RTC_INIT

_CRT_RTC_INITW

_CreateFrameInfo

_CxxThrowException

_EH_prolog

_FindAndUnlinkFrame

_Getdays

_Getmonths

_Gettnames

_HUGE

_IsExceptionObjectToBeDestroyed

_NLG_Dispatch2

_NLG_Return

_NLG_Return2

_Strftime

_XcptFilter

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__CppXcptFilter

__CxxCallUnwindDelDtor

__CxxCallUnwindDtor

__CxxCallUnwindStdDelDtor

__CxxCallUnwindVecDtor

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxLongjmpUnwind

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__STRINGTOLD

__STRINGTOLD_L

__TypeMatch

___fls_getvalue@4

___fls_setvalue@8

___lc_codepage_func

___lc_collate_cp_func

___lc_handle_func

___mb_cur_max_func

___mb_cur_max_l_func

___setlc_active_func

___unguarded_readlc_active_add_func

__argc

__argv

__badioinfo

__clean_type_info_names_internal

__control87_2

__create_locale

__crtCompareStringA

__crtCompareStringW

__crtGetLocaleInfoW

__crtGetStringTypeW

__crtLCMapStringA

__crtLCMapStringW

__daylight

__dllonexit

__doserrno

__dstbias

__fpecode

__free_locale

__get_app_type

__get_current_locale

__get_flsindex

__get_tlsindex

__getmainargs

__initenv

__iob_func

__isascii

__iscsym

__iscsymf

__iswcsym

__iswcsymf

__lc_clike

__lc_codepage

__lc_collate_cp

__lc_handle

__lconv

__lconv_init

__libm_sse2_acos

__libm_sse2_acosf

__libm_sse2_asin

__libm_sse2_asinf

__libm_sse2_atan

__libm_sse2_atan2

__libm_sse2_atanf

__libm_sse2_cos

__libm_sse2_cosf

__libm_sse2_exp

__libm_sse2_expf

__libm_sse2_log

__libm_sse2_log10

__libm_sse2_log10f

__libm_sse2_logf

__libm_sse2_pow

__libm_sse2_powf

__libm_sse2_sin

__libm_sse2_sinf

__libm_sse2_tan

__libm_sse2_tanf

__mb_cur_max

__p___argc

__p___argv

__p___initenv

__p___mb_cur_max

__p___wargv

__p___winitenv

__p__acmdln

__p__amblksiz

__p__commode

__p__daylight

__p__dstbias

__p__environ

__p__fmode

__p__iob

__p__mbcasemap

__p__mbctype

__p__osplatform

__p__osver

__p__pctype

__p__pgmptr

__p__pwctype

__p__timezone

__p__tzname

__p__wcmdln

__p__wenviron

__p__winmajor

__p__winminor

__p__winver

__p__wpgmptr

__pctype_func

__pioinfo

__pwctype_func

__pxcptinfoptrs

__report_gsfailure

__set_app_type

__set_flsgetvalue

__setlc_active

__setusermatherr

__strncnt

__swprintf_l

__sys_errlist

__sys_nerr

__threadhandle

__threadid

__timezone

__toascii

__tzname

__unDName

__unDNameEx

__unDNameHelper

__uncaught_exception

__unguarded_readlc_active

__vswprintf_l

__wargv

__wcserror

__wcserror_s

__wcsncnt

__wgetmainargs

__winitenv

_abnormal_termination

_abs64

_access

_access_s

_acmdln

_adj_fdiv_m16i

_adj_fdiv_m32

_adj_fdiv_m32i

_adj_fdiv_m64

_adj_fdiv_r

_adj_fdivr_m16i

_adj_fdivr_m32

_adj_fdivr_m32i

_adj_fdivr_m64

_adj_fpatan

_adj_fprem

_adj_fprem1

_adj_fptan

_adjust_fdiv

_aexit_rtn

_aligned_free

_aligned_malloc

_aligned_offset_malloc

_aligned_offset_realloc

_aligned_realloc

_amsg_exit

_assert

_atodbl

_atodbl_l

_atof_l

_atoflt

_atoflt_l

_atoi64

_atoi64_l

_atoi_l

_atol_l

_atoldbl

_atoldbl_l

_beep

_beginthread

_beginthreadex

_byteswap_uint64

_byteswap_ulong

_byteswap_ushort

_c_exit

_cabs

_callnewh

_calloc_crt

_cexit

_cgets

_cgets_s

_cgetws

_cgetws_s

_chdir

_chdrive

_chgsign

_chkesp

_chmod

_chsize

_chsize_s

_clearfp

_close

_commit

_commode

_configthreadlocale

_control87

_controlfp

_controlfp_s

_copysign

_cprintf

_cprintf_l

_cprintf_p

_cprintf_p_l

_cprintf_s

_cprintf_s_l

_cputs

_cputws

_creat

_create_locale

_crt_debugger_hook

_cscanf

_cscanf_l

_cscanf_s

_cscanf_s_l

_ctime32

_ctime32_s

_ctime64

_ctime64_s

_cwait

_cwprintf

_cwprintf_l

_cwprintf_p

_cwprintf_p_l

_cwprintf_s

_cwprintf_s_l

_cwscanf

_cwscanf_l

_cwscanf_s

_cwscanf_s_l

_daylight

_decode_pointer

_difftime32

_difftime64

_dosmaperr

_dstbias

_dup

_dup2

_dupenv_s

_ecvt

_ecvt_s

_encode_pointer

_encoded_null

_endthread

_endthreadex

_environ

_eof

_errno

_except_handler2

_except_handler3

_except_handler4_common

_execl

_execle

_execlp

_execlpe

_execv

_execve

_execvp

_execvpe

_exit

_expand

_fclose_nolock

_fcloseall

_fcvt

_fcvt_s

_fdopen

_fflush_nolock

_fgetchar

_fgetwc_nolock

_fgetwchar

_filbuf

_filelength

_filelengthi64

_fileno

_findclose

_findfirst32

_findfirst32i64

_findfirst64

_findfirst64i32

_findnext32

_findnext32i64

_findnext64

_findnext64i32

_finite

_flsbuf

_flushall

_fmode

_fpclass

_fpieee_flt

_fpreset

_fprintf_l

_fprintf_p

_fprintf_p_l

_fprintf_s_l

_fputchar

_fputwc_nolock

_fputwchar

_fread_nolock

_free_locale

_freea

_freea_s

_freefls

_fscanf_l

_fscanf_s_l

_fseek_nolock

_fseeki64

_fseeki64_nolock

_fsopen

_fstat32

_fstat32i64

_fstat64

_fstat64i32

_ftell_nolock

_ftelli64

_ftelli64_nolock

_ftime32

_ftime32_s

_ftime64

_ftime64_s

_ftol

_fullpath

_futime32

_futime64

_fwprintf_l

_fwprintf_p

_fwprintf_p_l

_fwprintf_s_l

_fwrite_nolock

_fwscanf_l

_fwscanf_s_l

_gcvt

_gcvt_s

_get_amblksiz

_get_current_locale

_get_daylight

_get_doserrno

_get_dstbias

_get_errno

_get_fmode

_get_heap_handle

_get_invalid_parameter_handler

_get_osfhandle

_get_osplatform

_get_osver

_get_output_format

_get_pgmptr

_get_printf_count_output

_get_purecall_handler

_get_sbh_threshold

_get_terminate

_get_timezone

_get_tzname

_get_unexpected

_get_winmajor

_get_winminor

_get_winver

_get_wpgmptr

_getch

_getch_nolock

_getche

_getche_nolock

_getcwd

_getdcwd

_getdcwd_nolock

_getdiskfree

_getdllprocaddr

_getdrive

_getdrives

_getmaxstdio

_getmbcp

_getpid

_getptd

_getsystime

_getw

_getwch

_getwch_nolock

Sections

.text
Size: 396KB - Virtual size: 392KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/emule/Microsoft.VC80.ATL.manifest

.xml

$OUTDIR/emule/Microsoft.VC80.CRT.manifest

.xml

$OUTDIR/emule/Microsoft.VC80.MFC.manifest

.xml

$OUTDIR/emule/atl80.dll

.dll windows:4 windows x86 arch:x86

00c6e566e88c3d07ddc376fe4ce83c5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

atl80.i386.pdb

Imports

kernel32

RaiseException

EnterCriticalSection

LeaveCriticalSection

GetCurrentThreadId

FindClose

FindFirstFileW

CompareStringW

GetSystemDirectoryW

GetLongPathNameW

GetModuleFileNameW

GetProcAddress

GetModuleHandleW

lstrlenW

InitializeCriticalSection

DeleteCriticalSection

GetLastError

DisableThreadLibraryCalls

DebugBreak

OutputDebugStringA

GetVersionExA

InterlockedIncrement

InterlockedDecrement

lstrcmpiW

FreeLibrary

MultiByteToWideChar

SizeofResource

LoadResource

FindResourceW

LoadLibraryExW

CloseHandle

ReadFile

GetFileSize

CreateFileW

WideCharToMultiByte

WaitForSingleObject

GlobalAlloc

FindResourceA

MulDiv

FlushInstructionCache

GetCurrentProcess

lstrcmpW

GlobalUnlock

GlobalLock

SetLastError

GlobalFree

GlobalHandle

LockResource

lstrcmpA

GetModuleHandleA

GetTickCount

InterlockedExchange

GetACP

GetLocaleInfoA

GetThreadLocale

InterlockedCompareExchange

HeapFree

GetProcessHeap

HeapAlloc

LoadLibraryA

IsProcessorFeaturePresent

VirtualFree

VirtualAlloc

HeapSize

HeapReAlloc

QueryPerformanceCounter

GetCurrentProcessId

GetSystemTimeAsFileTime

TerminateProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

RtlUnwind

LocalAlloc

Exports

AtlAdvise

AtlAxAttachControl

AtlAxCreateControl

AtlAxCreateControlEx

AtlAxCreateControlLic

AtlAxCreateControlLicEx

AtlAxCreateDialogA

AtlAxCreateDialogW

AtlAxDialogBoxA

AtlAxDialogBoxW

AtlAxGetControl

AtlAxGetHost

AtlAxWinInit

AtlCallTermFunc

AtlComModuleGetClassObject

AtlComModuleRegisterClassObjects

AtlComModuleRegisterServer

AtlComModuleRevokeClassObjects

AtlComModuleUnregisterServer

AtlComPtrAssign

AtlComQIPtrAssign

AtlCreateRegistrar

AtlCreateTargetDC

AtlDevModeW2A

AtlFreeMarshalStream

AtlGetObjectSourceInterface

AtlGetVersion

AtlHiMetricToPixel

AtlIPersistPropertyBag_Load

AtlIPersistPropertyBag_Save

AtlIPersistStreamInit_Load

AtlIPersistStreamInit_Save

AtlInternalQueryInterface

AtlLoadTypeLib

AtlMarshalPtrInProc

AtlModuleAddTermFunc

AtlPixelToHiMetric

AtlRegisterClassCategoriesHelper

AtlRegisterTypeLib

AtlSetErrorInfo

AtlUnRegisterTypeLib

AtlUnadvise

AtlUnmarshalPtr

AtlUpdateRegistryFromResourceD

AtlWaitWithMessageLoop

AtlWinModuleAddCreateWndData

AtlWinModuleExtractCreateWndData

AtlWinModuleInit

AtlWinModuleRegisterClassExA

AtlWinModuleRegisterClassExW

AtlWinModuleRegisterWndClassInfoA

AtlWinModuleRegisterWndClassInfoW

AtlWinModuleTerm

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$OUTDIR/emule/msvcp80.dll