General

Malware Config

Signatures

Files

• 73f79de2cf4c06a5c7d6d6ac1d239a45_JaffaCakes118

  .zip
• CCleanerPro_Ver.5.57.7182_Chs/CCleaner.dat
• CCleanerPro_Ver.5.57.7182_Chs/CCleaner.exe

  .exe windows:5 windows x86 arch:x86

  3ff600853f5aaaa1ffb184e0015567b6

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  PDB Paths

  D:\BUILD\work\00\eaa9c8f89d885193\bin\CCleaner\Release\CCleaner.pdb

  Imports

  ntdll

  RtlUnwind

  VerSetConditionMask

  rpcrt4

  UuidToStringW

  UuidCreate

  UuidFromStringW

  RpcStringFreeW

  UuidFromStringA

  kernel32

  GetFullPathNameW

  WritePrivateProfileStringW

  lstrcpyW

  GetEnvironmentVariableW

  GetShortPathNameW

  FileTimeToLocalFileTime

  GetPrivateProfileIntW

  GetPrivateProfileSectionW

  GetPrivateProfileSectionNamesW

  GetUserDefaultLangID

  SetFileAttributesW

  IsBadStringPtrW

  SystemTimeToTzSpecificLocalTime

  GetTimeZoneInformation

  SetProcessWorkingSetSize

  GetFileSizeEx

  QueueUserWorkItem

  lstrcmpA

  CreateFileMappingA

  GetComputerNameW

  LocalAlloc

  LocalLock

  LocalUnlock

  GetNativeSystemInfo

  GetVolumePathNameW

  GetVolumeNameForVolumeMountPointW

  GlobalMemoryStatusEx

  GetSystemTimes

  GetUserDefaultLCID

  GetSystemDefaultUILanguage

  GetSystemDefaultLCID

  WTSGetActiveConsoleSessionId

  GetLogicalDriveStringsW

  QueryDosDeviceW

  SetConsoleTextAttribute

  BackupSeek

  BackupRead

  GetCompressedFileSizeW

  GetDriveTypeW

  RemoveDirectoryW

  SetFileTime

  FlushViewOfFile

  GetTempFileNameW

  GetTempPathW

  SetEndOfFile

  SetFilePointerEx

  GetVolumeInformationW

  GetDiskFreeSpaceW

  MoveFileW

  FindFirstFileW

  DeviceIoControl

  GetFileInformationByHandle

  UnmapViewOfFile

  MapViewOfFile

  CreateFileMappingW

  CopyFileW

  OutputDebugStringA

  GetModuleFileNameA

  GetTimeFormatW

  GetDateFormatW

  GetNumberFormatW

  GetLocaleInfoW

  VerifyVersionInfoW

  GetVersionExA

  WaitNamedPipeW

  TransactNamedPipe

  DuplicateHandle

  SetNamedPipeHandleState

  SetUnhandledExceptionFilter

  VirtualQueryEx

  CreateSemaphoreW

  CreateThread

  TerminateThread

  ReleaseSemaphore

  RtlCaptureContext

  OpenThread

  VirtualQuery

  FlushInstructionCache

  GetThreadContext

  VirtualProtectEx

  GetSystemInfo

  GetThreadPriority

  SuspendThread

  SetThreadPriority

  VirtualAlloc

  VirtualFree

  HeapCompact

  DeleteFileA

  GetFileAttributesA

  GetDiskFreeSpaceA

  HeapValidate

  LockFile

  LocalSize

  GetTempFileNameA

  GetTempPathA

  SetConsoleCursorPosition

  FillConsoleOutputAttribute

  WriteConsoleInputW

  CreateFileA

  ReadConsoleInputW

  FillConsoleOutputCharacterW

  SetConsoleCursorInfo

  GetConsoleCursorInfo

  GetConsoleScreenBufferInfo

  ConnectNamedPipe

  GetNamedPipeHandleStateA

  CreateNamedPipeW

  CreateNamedPipeA

  SetHandleInformation

  CancelIo

  PostQueuedCompletionStatus

  CreateSemaphoreA

  GetCurrencyFormatW

  CompareStringA

  GlobalSize

  AllocConsole

  InterlockedCompareExchange

  ReadDirectoryChangesW

  UnlockFileEx

  HeapCreate

  CreateHardLinkW

  LockFileEx

  UnlockFile

  DebugBreak

  SetEnvironmentVariableW

  SetEnvironmentVariableA

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetCommandLineA

  GetOEMCP

  IsValidCodePage

  SetStdHandle

  GetFullPathNameA

  EnumSystemLocalesW

  IsValidLocale

  GetConsoleCP

  ReadConsoleW

  GetLogicalDrives

  GetACP

  WriteConsoleW

  SetConsoleMode

  ReadConsoleInputA

  GetNumberOfConsoleInputEvents

  GetConsoleMode

  SetConsoleCtrlHandler

  PeekNamedPipe

  ExitProcess

  GetModuleHandleExW

  ExitThread

  UnregisterWaitEx

  QueryDepthSList

  InterlockedFlushSList

  FreeLibraryAndExitThread

  UnregisterWait

  RegisterWaitForSingleObject

  SetThreadAffinityMask

  GetProcessAffinityMask

  GetNumaHighestNodeNumber

  DeleteTimerQueueTimer

  ChangeTimerQueueTimer

  CreateTimerQueueTimer

  SwitchToThread

  SignalObjectAndWait

  CreateTimerQueue

  UnhandledExceptionFilter

  AreFileApisANSI

  CreateWaitableTimerA

  GetLogicalProcessorInformation

  SetWaitableTimer

  WaitForMultipleObjectsEx

  OpenEventA

  GetCPInfo

  LCMapStringW

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  TryEnterCriticalSection

  GetExitCodeThread

  WaitForSingleObjectEx

  GetStringTypeW

  IsProcessorFeaturePresent

  InterlockedPushEntrySList

  InterlockedPopEntrySList

  InitializeSListHead

  OutputDebugStringW

  IsDebuggerPresent

  LoadLibraryExA

  VirtualProtect

  GetThreadTimes

  GetCurrentThread

  FlushConsoleInputBuffer

  GlobalMemoryStatus

  LoadLibraryA

  GetCurrentProcessId

  GetModuleHandleA

  GetFileType

  GetStdHandle

  GetSystemTime

  ExpandEnvironmentStringsA

  GetTickCount

  InitializeCriticalSection

  SleepEx

  VerifyVersionInfoA

  FormatMessageA

  ExpandEnvironmentStringsW

  FindNextFileW

  FindFirstFileExW

  FindClose

  GetBinaryTypeW

  GetBinaryTypeA

  Process32NextW

  Process32FirstW

  CreateToolhelp32Snapshot

  SetInformationJobObject

  TerminateJobObject

  AssignProcessToJobObject

  CreateJobObjectW

  MoveFileExW

  CreateDirectoryW

  WaitForMultipleObjects

  ResumeThread

  GetQueuedCompletionStatus

  CreateIoCompletionPort

  GetExitCodeProcess

  GetWindowsDirectoryW

  GetProcessTimes

  GetCurrentProcess

  FreeResource

  FileTimeToSystemTime

  GetLongPathNameW

  SetFilePointer

  ReadFile

  GetFileSize

  CompareFileTime

  SystemTimeToFileTime

  GetLocalTime

  GetVersion

  GetPrivateProfileStringW

  DeleteFileW

  LocalFree

  FormatMessageW

  GetDiskFreeSpaceExW

  SetCurrentDirectoryW

  GetCurrentDirectoryW

  QueryPerformanceCounter

  QueryPerformanceFrequency

  GetCommandLineW

  CreateProcessW

  GetStartupInfoW

  GetSystemDirectoryW

  SetErrorMode

  LoadLibraryExW

  WriteFile

  FlushFileBuffers

  GetFileAttributesW

  CreateMutexW

  lstrcmpiW

  CompareStringW

  GetVersionExW

  lstrlenW

  LoadLibraryW

  GetProcAddress

  FreeLibrary

  lstrcmpW

  MulDiv

  InterlockedIncrement

  InterlockedDecrement

  GlobalHandle

  WideCharToMultiByte

  MultiByteToWideChar

  GetModuleFileNameW

  GetCurrentThreadId

  SetLastError

  GetModuleHandleW

  CreateEventA

  CloseHandle

  HeapAlloc

  HeapFree

  GetProcessHeap

  GetSystemTimeAsFileTime

  GlobalAlloc

  GlobalLock

  InitializeCriticalSectionAndSpinCount

  DeleteCriticalSection

  GlobalUnlock

  GlobalFree

  InterlockedExchange

  CreateFileW

  CreateEventW

  ResetEvent

  SetEvent

  Sleep

  GetLastError

  OpenProcess

  TerminateProcess

  WaitForSingleObject

  LeaveCriticalSection

  EnterCriticalSection

  RaiseException

  HeapReAlloc

  HeapSize

  HeapDestroy

  FindResourceExW

  FindResourceW

  LoadResource

  LockResource

  SizeofResource

  GetFileAttributesExW

  user32

  GetClientRect

  GetDesktopWindow

  GetWindow

  GetParent

  GetWindowLongW

  SetWindowPos

  GetWindowRect

  DefWindowProcW

  DrawTextW

  IsWindow

  SetWindowTextW

  GetWindowTextW

  ReleaseDC

  GetDC

  MoveWindow

  ScreenToClient

  GetDlgItem

  GetSysColorBrush

  MapWindowPoints

  SetWindowLongW

  SendMessageW

  UnregisterClassW

  InvalidateRect

  BeginPaint

  EndPaint

  InflateRect

  WaitMessage

  WinHelpW

  LoadStringW

  GetDialogBaseUnits

  DrawIcon

  MessageBeep

  GetLastActivePopup

  GetActiveWindow

  PostMessageW

  EndDialog

  GetDlgCtrlID

  PtInRect

  IsZoomed

  GetSystemMenu

  TrackPopupMenu

  SetForegroundWindow

  RedrawWindow

  TrackMouseEvent

  SystemParametersInfoW

  LoadImageW

  IsWindowVisible

  FillRect

  LoadCursorW

  CallWindowProcW

  DestroyWindow

  ShowWindow

  UpdateWindow

  CreateWindowExW

  IsWindowEnabled

  ChildWindowFromPoint

  IsChild

  GetSysColor

  RegisterClassExW

  GetClassInfoExW

  PostThreadMessageW

  GetQueueStatus

  SetActiveWindow

  DrawIconEx

  CreateIconIndirect

  LoadCursorFromFileA

  GetClipboardSequenceNumber

  EnumClipboardFormats

  CountClipboardFormats

  RegisterClipboardFormatW

  MapVirtualKeyW

  SetWinEventHook

  SetCaretPos

  CreateCaret

  GetKeyboardLayout

  DestroyCaret

  EnumDisplayMonitors

  EnumDisplayDevicesW

  DeferWindowPos

  NotifyWinEvent

  SetClassLongW

  BeginDeferWindowPos

  CallMsgFilterW

  GetDoubleClickTime

  GetMessageTime

  IsRectEmpty

  GetUpdateRect

  EndDeferWindowPos

  EnumThreadWindows

  CreateDialogParamW

  FrameRect

  RegisterWindowMessageW

  DialogBoxParamW

  EnableWindow

  DialogBoxIndirectParamW

  DestroyAcceleratorTable

  InvalidateRgn

  ReleaseCapture

  MonitorFromPoint

  GetIconInfo

  DestroyCursor

  SetCapture

  ClientToScreen

  CreateAcceleratorTableW

  CharNextW

  GetClassNameW

  SetFocus

  GetNextDlgGroupItem

  GetAsyncKeyState

  SendMessageTimeoutW

  GetLastInputInfo

  EnumDisplaySettingsW

  WaitForInputIdle

  ExitWindowsEx

  GetWindowThreadProcessId

  SetClipboardData

  EmptyClipboard

  GetDlgItemTextW

  CharLowerA

  CharLowerW

  GetMenuItemID

  DrawTextExW

  SystemParametersInfoA

  LoadBitmapW

  MonitorFromWindow

  GetMonitorInfoW

  GetSystemMetrics

  DrawFrameControl

  ShowScrollBar

  GetPropW

  RemovePropW

  GetScrollRange

  SetScrollRange

  EnableScrollBar

  AnimateWindow

  GetWindowPlacement

  MessageBoxA

  GetUserObjectInformationW

  GetProcessWindowStation

  wsprintfW

  GetForegroundWindow

  GetDlgItemInt

  GetNextDlgTabItem

  SetDlgItemTextW

  CloseClipboard

  GetClipboardData

  OpenClipboard

  IsClipboardFormatAvailable

  GetShellWindow

  GetWindowInfo

  SetMenuDefaultItem

  LockWindowUpdate

  PostQuitMessage

  IsDialogMessageW

  FindWindowExW

  LoadIconW

  GetComboBoxInfo

  AdjustWindowRectEx

  GetMenu

  DrawEdge

  SendDlgItemMessageW

  MapDialogRect

  DeleteMenu

  SetLayeredWindowAttributes

  SetWindowContextHelpId

  UnhookWindowsHookEx

  SetWindowsHookExW

  CallNextHookEx

  AppendMenuW

  GetScrollPos

  GetMessagePos

  InsertMenuW

  SetCursorPos

  CreatePopupMenu

  MsgWaitForMultipleObjects

  IsWindowUnicode

  GetMessageA

  DispatchMessageA

  EnableMenuItem

  BringWindowToTop

  MessageBoxW

  PeekMessageW

  GetMessageW

  TranslateMessage

  DispatchMessageW

  RegisterClassW

  GetClassInfoW

  WindowFromPoint

  SetRect

  IsIconic

  EnumWindows

  FindWindowW

  OpenIcon

  IsDlgButtonChecked

  CheckDlgButton

  GetClassLongW

  SetScrollPos

  GetScrollInfo

  GetCapture

  GetCursorPos

  ScrollWindowEx

  SetRectEmpty

  SetScrollInfo

  SetCursor

  UpdateLayeredWindow

  DestroyMenu

  DrawFocusRect

  DestroyIcon

  DrawStateW

  OffsetRect

  GetWindowDC

  SetPropW

  CopyRect

  GetKeyState

  GetFocus

  SetTimer

  KillTimer

  CreateDialogIndirectParamW

  GetWindowTextLengthW

  gdi32

  CreateCompatibleBitmap

  SetViewportOrgEx

  SelectObject

  DeleteDC

  GetObjectW

  CreateFontIndirectW

  GetDeviceCaps

  CreateSolidBrush

  SetBkColor

  ExtTextOutW

  StretchBlt

  GetDIBColorTable

  CreateDIBSection

  SetDIBColorTable

  GetStockObject

  SaveDC

  RestoreDC

  GetClipBox

  CreateRectRgnIndirect

  SetLayout

  EndPage

  StartDocW

  SetMapMode

  EndDoc

  StartPage

  AddFontMemResourceEx

  GetGlyphIndicesW

  CreateFontW

  CreateCompatibleDC

  GetFontUnicodeRanges

  DeleteObject

  BitBlt

  SelectClipRgn

  GetTextExtentPoint32W

  GetTextMetricsW

  ExcludeClipRect

  TextOutW

  PatBlt

  CreateBitmap

  CreatePatternBrush

  GetTextColor

  GetBkColor

  Rectangle

  CreatePen

  MoveToEx

  LineTo

  Ellipse

  GetCurrentObject

  PolylineTo

  GetDIBits

  GetObjectA

  UnrealizeObject

  StrokeAndFillPath

  EndPath

  BeginPath

  GetClipRgn

  CreateRectRgn

  CreateDCW

  SetBkMode

  EnumFontFamiliesExW

  SetTextColor

  CombineRgn

  comdlg32

  GetOpenFileNameW

  CommDlgExtendedError

  PrintDlgW

  GetSaveFileNameW

  advapi32

  MapGenericMask

  DuplicateToken

  RegNotifyChangeKeyValue

  OpenSCManagerW

  GetFileSecurityW

  LsaClose

  LsaFreeMemory

  LsaQueryInformationPolicy

  LsaOpenPolicy

  GetUserNameW

  LookupAccountNameW

  CopySid

  GetLengthSid

  EqualSid

  OpenThreadToken

  GetSidSubAuthority

  GetSidSubAuthorityCount

  GetSidIdentifierAuthority

  IsValidSid

  LookupAccountSidW

  SetNamedSecurityInfoW

  SetEntriesInAclW

  AllocateAndInitializeSid

  FreeSid

  AdjustTokenPrivileges

  LookupPrivilegeValueW

  RegEnumValueW

  CryptGenRandom

  CryptEnumProvidersA

  CryptSignHashA

  CryptDestroyHash

  CryptCreateHash

  CryptDecrypt

  CryptExportKey

  CryptGetUserKey

  CryptGetProvParam

  CryptSetHashParam

  CryptDestroyKey

  CryptReleaseContext

  CryptAcquireContextA

  ReportEventA

  RegisterEventSourceA

  DeregisterEventSource

  GetTokenInformation

  OpenProcessToken

  RegDeleteValueW

  RegCreateKeyExW

  RegSetValueExW

  RegEnumKeyExW

  RegQueryInfoKeyW

  RegDeleteKeyW

  RegQueryValueExW

  RegOpenKeyExW

  RegCloseKey

  OpenServiceW

  ChangeServiceConfigW

  EnumServicesStatusExW

  QueryServiceStatusEx

  StartServiceW

  QueryServiceStatus

  CryptGetHashParam

  CryptHashData

  CryptAcquireContextW

  ConvertSidToStringSidW

  CloseEventLog

  ClearEventLogW

  OpenEventLogW

  LookupPrivilegeNameW

  RegUnLoadKeyW

  RegLoadKeyW

  CloseServiceHandle

  QueryServiceConfig2W

  QueryServiceConfigW

  AccessCheck

  shell32

  SHGetFileInfoW

  SHGetSpecialFolderLocation

  Shell_NotifyIconW

  ShellExecuteExW

  DragFinish

  SHEmptyRecycleBinW

  SHBrowseForFolderW

  SHGetPathFromIDListW

  ShellExecuteW

  ord74

  ord727

  CommandLineToArgvW

  SHGetSpecialFolderPathW

  SHAddToRecentDocs

  SHGetFolderPathW

  DragQueryFileW

  ExtractIconExW

  ole32

  CoFreeUnusedLibraries

  CoCreateGuid

  StgOpenStorageEx

  StgIsStorageFile

  CoInitialize

  CoUninitialize

  CreateStreamOnHGlobal

  OleUninitialize

  CoTaskMemAlloc

  CoTaskMemFree

  StringFromGUID2

  OleLockRunning

  CoCreateInstance

  CoGetClassObject

  CLSIDFromProgID

  CLSIDFromString

  OleInitialize

  CoTaskMemRealloc

  ReleaseStgMedium

  OleDuplicateData

  RevokeDragDrop

  RegisterDragDrop

  DoDragDrop

  CoInitializeSecurity

  CoSetProxyBlanket

  CoInitializeEx

  PropVariantClear

  oleaut32

  SysStringLen

  LoadRegTypeLi

  LoadTypeLi

  SysAllocStringLen

  SysAllocString

  OleCreateFontIndirect

  VariantClear

  VariantInit

  SafeArrayPutElement

  SafeArrayCreateVector

  VarUI4FromStr

  VarBstrCmp

  DispCallFunc

  VarBstrFromR8

  VariantChangeType

  VarBstrFromI4

  VariantTimeToSystemTime

  SysFreeString

  SafeArrayDestroy

  shlwapi

  PathCompactPathW

  StrRetToStrW

  ord487

  PathIsRelativeW

  PathIsUNCW

  PathStripPathA

  PathFindFileNameW

  PathCreateFromUrlW

  PathIsURLW

  SHStrDupW

  PathRemoveArgsW

  PathUnquoteSpacesW

  PathFindExtensionW

  PathCombineW

  PathIsDirectoryEmptyW

  PathRemoveExtensionA

  PathStripPathW

  PathAddExtensionW

  PathCanonicalizeW

  PathMatchSpecW

  PathFileExistsW

  PathAppendW

  PathRemoveFileSpecW

  PathIsDirectoryW

  PathGetDriveNumberW

  PathRemoveBackslashW

  PathSkipRootW

  PathStripToRootW

  PathRemoveExtensionW

  comctl32

  _TrackMouseEvent

  ImageList_GetIconSize

  ImageList_DrawEx

  ImageList_GetIcon

  ImageList_SetIconSize

  ImageList_Duplicate

  ImageList_Draw

  ImageList_Destroy

  InitCommonControlsEx

  ImageList_LoadImageW

  ImageList_Replace

  ImageList_Add

  ImageList_Create

  ImageList_Remove

  ImageList_GetImageCount

  ImageList_ReplaceIcon

  gdiplus

  GdipAlloc

  GdipFree

  GdipDisposeImage

  GdipGetImageGraphicsContext

  GdipDeleteGraphics

  GdipCloneImage

  GdipCreateBitmapFromScan0

  GdipDrawImageI

  GdipBitmapUnlockBits

  GdipBitmapLockBits

  GdipGetImagePalette

  GdipGetImagePaletteSize

  GdipGetImageWidth

  GdipGetImageHeight

  GdipGetImagePixelFormat

  GdipCreateBitmapFromStream

  GdiplusShutdown

  GdiplusStartup

  GdipCreatePath

  GdipDeletePath

  GdipAddPathArcI

  GdipAddPathLineI

  GdipFillPath

  GdipGetClipBoundsI

  GdipCreateLineBrush

  GdipMultiplyLineTransform

  GdipCreateMatrix2

  GdipSetLinePresetBlend

  GdipSetLineWrapMode

  GdipAddPathEllipse

  GdipSetPathGradientPresetBlend

  GdipCreatePathGradientFromPath

  GdipSetPathGradientCenterPoint

  GdipSetPathGradientTransform

  GdipDrawPath

  GdipFillRectanglesI

  GdipSetClipRectI

  GdipTranslateWorldTransform

  GdipGetSmoothingMode

  GdipSaveGraphics

  GdipRestoreGraphics

  GdipBeginContainer2

  GdipGraphicsClear

  GdipGetPathWorldBounds

  GdipDeleteBrush

  GdipSetClipRect

  GdipAddPathRectangleI

  GdipEndContainer

  GdipCreateImageAttributes

  GdipDisposeImageAttributes

  GdipSetImageAttributesColorMatrix

  GdipDrawImageRectRect

  GdipTransformPoints

  GdipMultiplyWorldTransform

  GdipCreateMatrix

  GdipDeleteMatrix

  GdipTranslateMatrix

  GdipRotateMatrix

  GdipScaleMatrix

  GdipShearMatrix

  GdipCreateTexture

  GdipFillEllipse

  GdipDrawEllipse

  GdipFillPie

  GdipDrawPie

  GdipDrawArc

  GdipDrawRectangle

  GdipResetPath

  GdipIsVisiblePathPoint

  GdipStartPathFigure

  GdipAddPathLine

  GdipClosePathFigure

  GdipSetPathFillMode

  ord1

  GdipAddPathBezier

  GdipSetPageUnit

  GdipSetCompositingQuality

  GdipSetPixelOffsetMode

  GdipSetInterpolationMode

  GdipSetTextRenderingHint

  GdipCreateFromHWND

  GdipCreateStringFormat

  GdipDeleteStringFormat

  GdipSetStringFormatAlign

  GdipSetStringFormatLineAlign

  GdipSetStringFormatTrimming

  GdipGetFontHeightGivenDPI

  GdipMeasureString

  GdipDeleteFontFamily

  GdipGetFamily

  GdipGetCellAscent

  GdipGetFontSize

  GdipGetEmHeight

  GdipGetCellDescent

  GdipDrawString

  GdipAddPathString

  GdipGetFontStyle

  GdipCreatePen2

  GdipSetPenEndCap

  GdipSetPenStartCap

  GdipSetPenLineJoin

  GdipSetPenMiterLimit

  GdipSetPenDashStyle

  GdipSetPenDashArray

  GdipSetPenDashOffset

  GdipDeleteFont

  GdipCreateFontFromDC

  GdipGetLineSpacing

  GdipCreateFontFromLogfontA

  GdipCreateBitmapFromGraphics

  GdipCreateHBITMAPFromBitmap

  GdipDrawDriverString

  GdipCloneBrush

  GdipCreateSolidFill

  GdipFillRectangleI

  GdipCreateFromHDC

  GdipSetSmoothingMode

  GdipCreatePen1

  GdipDeletePen

  GdipDrawRectangleI

  GdipCreateHatchBrush

  GdipFillRectangle

  GdipDrawLine

  GdipCreateBitmapFromFile

  GdipClonePath

  GdipSetPathGradientWrapMode

  ws2_32

  WSARecvFrom

  WSASend

  listen

  WSASocketW

  WSARecv

  FreeAddrInfoW

  gethostname

  shutdown

  htons

  WSAStartup

  send

  WSACleanup

  WSAGetLastError

  getsockopt

  getaddrinfo

  freeaddrinfo

  ioctlsocket

  __WSAFDIsSet

  select

  bind

  WSAIoctl

  recv

  GetAddrInfoW

  closesocket

  WSASetLastError

  getpeername

  getsockname

  socket

  ntohs

  connect

  setsockopt

  psapi

  GetProcessImageFileNameW

  dbghelp

  MakeSureDirectoryPathExists

  urlmon

  FindMimeFromData

  winspool.drv

  ord203

  winmm

  PlaySoundW

  timeKillEvent

  timeEndPeriod

  timeGetTime

  timeSetEvent

  timeBeginPeriod

  winhttp

  WinHttpSetOption

  WinHttpOpen

  WinHttpCloseHandle

  WinHttpConnect

  WinHttpReadData

  WinHttpWriteData

  WinHttpAddRequestHeaders

  WinHttpOpenRequest

  WinHttpQueryDataAvailable

  WinHttpSetTimeouts

  WinHttpQueryHeaders

  WinHttpReceiveResponse

  WinHttpSetCredentials

  WinHttpSendRequest

  WinHttpQueryOption

  oleacc

  AccessibleObjectFromWindow

  LresultFromObject

  imm32

  ImmNotifyIME

  ImmAssociateContextEx

  ImmSetCandidateWindow

  ImmGetCompositionStringW

  ImmReleaseContext

  ImmGetContext

  ImmIsIME

  usp10

  ScriptFreeCache

  ScriptApplyDigitSubstitution

  ScriptItemize

  ScriptBreak

  ScriptShape

  ScriptPlace

  Exports

  Exports

  on_avast_dll_unload

  Sections

  .text

  Size: 8.4MB - Virtual size: 8.4MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 2.4MB - Virtual size: 2.4MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 598KB - Virtual size: 2.6MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .gfids

  Size: 204KB - Virtual size: 203KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .tls

  Size: 512B - Virtual size: 37B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 4.1MB - Virtual size: 4.1MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 597KB - Virtual size: 597KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• CCleanerPro_Ver.5.57.7182_Chs/CCleaner64.exe

  .exe windows:5 windows x64 arch:x64

  e5ae99e2706ba54b0bb6d5e63db51de1

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  PDB Paths

  D:\BUILD\work\00\eaa9c8f89d885193\bin\CCleaner\Release\CCleaner64.pdb

  Imports

  ntdll

  RtlPcToFileHeader

  RtlLookupFunctionEntry

  RtlUnwindEx

  VerSetConditionMask

  RtlVirtualUnwind

  rpcrt4

  UuidToStringW

  UuidCreate

  UuidFromStringW

  RpcStringFreeW

  UuidFromStringA

  kernel32

  GetShortPathNameW

  FileTimeToLocalFileTime

  GetPrivateProfileIntW

  GetPrivateProfileSectionW

  GetPrivateProfileSectionNamesW

  GetUserDefaultLangID

  SetFileAttributesW

  IsBadStringPtrW

  SystemTimeToTzSpecificLocalTime

  GetTimeZoneInformation

  SetProcessWorkingSetSize

  GetFileSizeEx

  GetModuleHandleA

  QueueUserWorkItem

  FlushViewOfFile

  CreateFileMappingA

  GetComputerNameW

  LocalAlloc

  LocalLock

  LocalUnlock

  GetNativeSystemInfo

  GetVolumePathNameW

  GetVolumeNameForVolumeMountPointW

  GlobalMemoryStatusEx

  GetSystemTimes

  GetUserDefaultLCID

  GetSystemDefaultUILanguage

  GetSystemDefaultLCID

  WTSGetActiveConsoleSessionId

  GetLogicalDriveStringsW

  QueryDosDeviceW

  SetConsoleTextAttribute

  GetEnvironmentVariableW

  lstrcpyW

  WritePrivateProfileStringW

  GetFullPathNameW

  lstrcmpA

  BackupSeek

  GetDriveTypeW

  RemoveDirectoryW

  SetFileTime

  GetFileAttributesExW

  GetTempFileNameW

  GetTempPathW

  SetEndOfFile

  SetFilePointerEx

  GetVolumeInformationW

  GetDiskFreeSpaceW

  MoveFileW

  DeviceIoControl

  GetFileInformationByHandle

  UnmapViewOfFile

  MapViewOfFile

  CreateFileMappingW

  CopyFileW

  OutputDebugStringA

  GetModuleFileNameA

  GetTimeFormatW

  GetDateFormatW

  GetNumberFormatW

  GetLocaleInfoW

  VerifyVersionInfoW

  GetVersionExA

  WaitNamedPipeW

  TransactNamedPipe

  DuplicateHandle

  SetNamedPipeHandleState

  SetUnhandledExceptionFilter

  VirtualQueryEx

  CreateSemaphoreW

  CreateThread

  TerminateThread

  ReleaseSemaphore

  RtlCaptureContext

  OpenThread

  VirtualQuery

  FlushInstructionCache

  GetThreadContext

  VirtualProtectEx

  GetSystemInfo

  GetThreadPriority

  SuspendThread

  SetThreadPriority

  HeapCompact

  DeleteFileA

  GetFileAttributesA

  GetDiskFreeSpaceA

  HeapValidate

  LockFile

  LocalSize

  GetTempFileNameA

  GetTempPathA

  SetConsoleCursorPosition

  FillConsoleOutputAttribute

  WriteConsoleInputW

  CreateFileA

  ReadConsoleInputW

  FillConsoleOutputCharacterW

  SetConsoleCursorInfo

  GetConsoleCursorInfo

  GetConsoleScreenBufferInfo

  ConnectNamedPipe

  GetNamedPipeHandleStateA

  CreateNamedPipeW

  CreateNamedPipeA

  SetHandleInformation

  CancelIo

  PostQueuedCompletionStatus

  CreateSemaphoreA

  GetCurrencyFormatW

  CompareStringA

  GlobalSize

  AllocConsole

  ReadDirectoryChangesW

  UnlockFileEx

  HeapCreate

  CreateHardLinkW

  LockFileEx

  UnlockFile

  DebugBreak

  SetEnvironmentVariableW

  SetEnvironmentVariableA

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetCommandLineA

  GetOEMCP

  IsValidCodePage

  SetStdHandle

  GetFullPathNameA

  EnumSystemLocalesW

  IsValidLocale

  GetConsoleCP

  ReadConsoleW

  GetLogicalDrives

  GetACP

  WriteConsoleW

  SetConsoleMode

  ReadConsoleInputA

  GetNumberOfConsoleInputEvents

  GetConsoleMode

  BackupRead

  PeekNamedPipe

  ExitProcess

  GetModuleHandleExW

  ExitThread

  UnregisterWaitEx

  QueryDepthSList

  InterlockedFlushSList

  FreeLibraryAndExitThread

  UnregisterWait

  RegisterWaitForSingleObject

  SetThreadAffinityMask

  GetProcessAffinityMask

  GetNumaHighestNodeNumber

  DeleteTimerQueueTimer

  ChangeTimerQueueTimer

  CreateTimerQueueTimer

  SwitchToThread

  SignalObjectAndWait

  CreateTimerQueue

  UnhandledExceptionFilter

  AreFileApisANSI

  CreateWaitableTimerA

  GetLogicalProcessorInformation

  SetWaitableTimer

  WaitForMultipleObjectsEx

  OpenEventA

  GetCPInfo

  LCMapStringW

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  IsProcessorFeaturePresent

  TryEnterCriticalSection

  GetExitCodeThread

  WaitForSingleObjectEx

  GetStringTypeW

  InterlockedPushEntrySList

  InterlockedPopEntrySList

  InitializeSListHead

  EncodePointer

  OutputDebugStringW

  IsDebuggerPresent

  LoadLibraryExA

  VirtualProtect

  VirtualAlloc

  VirtualFree

  GetThreadTimes

  GetCurrentThread

  LoadLibraryA

  FlushConsoleInputBuffer

  GlobalMemoryStatus

  GetCurrentProcessId

  FindFirstFileW

  GetFileType

  GetStdHandle

  GetSystemTime

  ExpandEnvironmentStringsA

  GetTickCount

  InitializeCriticalSection

  SleepEx

  VerifyVersionInfoA

  FormatMessageA

  ExpandEnvironmentStringsW

  FindNextFileW

  FindFirstFileExW

  FindClose

  GetBinaryTypeW

  GetBinaryTypeA

  Process32NextW

  Process32FirstW

  CreateToolhelp32Snapshot

  SetInformationJobObject

  TerminateJobObject

  AssignProcessToJobObject

  CreateJobObjectW

  MoveFileExW

  CreateDirectoryW

  WaitForMultipleObjects

  ResumeThread

  GetQueuedCompletionStatus

  CreateIoCompletionPort

  GetExitCodeProcess

  GetWindowsDirectoryW

  GetProcessTimes

  GetCurrentProcess

  FreeResource

  FileTimeToSystemTime

  GetLongPathNameW

  SetFilePointer

  ReadFile

  GetFileSize

  CompareFileTime

  SystemTimeToFileTime

  GetLocalTime

  GetVersion

  GetPrivateProfileStringW

  DeleteFileW

  LocalFree

  FormatMessageW

  GetDiskFreeSpaceExW

  SetCurrentDirectoryW

  GetCurrentDirectoryW

  QueryPerformanceCounter

  QueryPerformanceFrequency

  DecodePointer

  GetCommandLineW

  CreateProcessW

  GetStartupInfoW

  GetSystemDirectoryW

  SetErrorMode

  LoadLibraryExW

  WriteFile

  FlushFileBuffers

  GetFileAttributesW

  CreateMutexW

  lstrcmpiW

  CompareStringW

  GetVersionExW

  lstrlenW

  LoadLibraryW

  GetProcAddress

  FreeLibrary

  lstrcmpW

  MulDiv

  GlobalHandle

  WideCharToMultiByte

  MultiByteToWideChar

  GetModuleFileNameW

  GetCurrentThreadId

  SetLastError

  GetModuleHandleW

  CreateEventA

  CloseHandle

  HeapAlloc

  HeapFree

  GetProcessHeap

  GetSystemTimeAsFileTime

  GlobalAlloc

  GlobalLock

  InitializeCriticalSectionAndSpinCount

  DeleteCriticalSection

  GlobalUnlock

  GlobalFree

  CreateFileW

  CreateEventW

  ResetEvent

  SetEvent

  Sleep

  GetLastError

  OpenProcess

  TerminateProcess

  WaitForSingleObject

  LeaveCriticalSection

  EnterCriticalSection

  RaiseException

  HeapReAlloc

  HeapSize

  HeapDestroy

  FindResourceExW

  FindResourceW

  LoadResource

  LockResource

  SizeofResource

  SetConsoleCtrlHandler

  GetCompressedFileSizeW

  user32

  GetClientRect

  GetDesktopWindow

  GetWindow

  GetParent

  GetWindowLongW

  SetWindowPos

  GetWindowRect

  SetWindowLongPtrW

  DrawTextW

  IsWindow

  SetWindowTextW

  GetWindowTextW

  ReleaseDC

  GetDC

  MoveWindow

  ScreenToClient

  GetDlgItem

  SendMessageW

  SetTimer

  MapWindowPoints

  SetWindowLongW

  DefWindowProcW

  UnregisterClassW

  InvalidateRect

  BeginPaint

  EndPaint

  WaitMessage

  WinHelpW

  LoadStringW

  GetDialogBaseUnits

  DrawIcon

  MessageBeep

  GetLastActivePopup

  MonitorFromPoint

  InflateRect

  GetActiveWindow

  PostMessageW

  EndDialog

  GetDlgCtrlID

  PtInRect

  IsZoomed

  GetSystemMenu

  TrackPopupMenu

  SetForegroundWindow

  RedrawWindow

  TrackMouseEvent

  SystemParametersInfoW

  LoadImageW

  IsWindowVisible

  FillRect

  LoadCursorW

  GetWindowLongPtrW

  CallWindowProcW

  DestroyWindow

  ShowWindow

  UpdateWindow

  CreateWindowExW

  IsWindowEnabled

  ChildWindowFromPoint

  IsChild

  GetSysColor

  PostThreadMessageW

  GetQueueStatus

  SetActiveWindow

  DrawIconEx

  CreateIconIndirect

  LoadCursorFromFileA

  GetClipboardSequenceNumber

  EnumClipboardFormats

  CountClipboardFormats

  RegisterClipboardFormatW

  MapVirtualKeyW

  SetWinEventHook

  SetCaretPos

  CreateCaret

  GetKeyboardLayout

  DestroyCaret

  EnumDisplayMonitors

  EnumDisplayDevicesW

  DeferWindowPos

  NotifyWinEvent

  SetClassLongW

  BeginDeferWindowPos

  CallMsgFilterW

  GetDoubleClickTime

  GetMessageTime

  IsRectEmpty

  GetUpdateRect

  EndDeferWindowPos

  EnumThreadWindows

  GetClassLongW

  RegisterClassExW

  GetClassInfoExW

  CreateDialogParamW

  FrameRect

  RegisterWindowMessageW

  DialogBoxParamW

  EnableWindow

  DialogBoxIndirectParamW

  GetIconInfo

  DestroyCursor

  GetNextDlgGroupItem

  DestroyAcceleratorTable

  InvalidateRgn

  ReleaseCapture

  SetCapture

  ClientToScreen

  CreateAcceleratorTableW

  CharNextW

  GetClassNameW

  GetAsyncKeyState

  SendMessageTimeoutW

  GetLastInputInfo

  EnumDisplaySettingsW

  WaitForInputIdle

  ExitWindowsEx

  GetWindowThreadProcessId

  SetClipboardData

  EmptyClipboard

  GetDlgItemTextW

  CharLowerA

  CharLowerW

  GetMenuItemID

  DrawTextExW

  SystemParametersInfoA

  LoadBitmapW

  MonitorFromWindow

  GetMonitorInfoW

  GetSystemMetrics

  DrawFrameControl

  ShowScrollBar

  GetPropW

  RemovePropW

  GetScrollRange

  SetScrollRange

  EnableScrollBar

  AnimateWindow

  GetWindowPlacement

  GetUserObjectInformationW

  GetProcessWindowStation

  wsprintfW

  GetForegroundWindow

  GetDlgItemInt

  GetNextDlgTabItem

  SetDlgItemTextW

  CloseClipboard

  GetClipboardData

  OpenClipboard

  IsClipboardFormatAvailable

  GetShellWindow

  GetWindowInfo

  SetMenuDefaultItem

  LockWindowUpdate

  PostQuitMessage

  IsDialogMessageW

  FindWindowExW

  LoadIconW

  GetComboBoxInfo

  AdjustWindowRectEx

  GetMenu

  DrawEdge

  SendDlgItemMessageW

  MapDialogRect

  DeleteMenu

  SetLayeredWindowAttributes

  SetWindowContextHelpId

  UnhookWindowsHookEx

  SetWindowsHookExW

  CallNextHookEx

  AppendMenuW

  GetScrollPos

  GetMessagePos

  InsertMenuW

  SetCursorPos

  CreatePopupMenu

  MsgWaitForMultipleObjects

  IsWindowUnicode

  GetMessageA

  DispatchMessageA

  EnableMenuItem

  BringWindowToTop

  MessageBoxW

  PeekMessageW

  GetMessageW

  TranslateMessage

  DispatchMessageW

  RegisterClassW

  GetClassInfoW

  WindowFromPoint

  SetRect

  IsIconic

  EnumWindows

  FindWindowW

  OpenIcon

  IsDlgButtonChecked

  CheckDlgButton

  GetClassLongPtrW

  SetScrollPos

  GetScrollInfo

  GetCapture

  GetCursorPos

  ScrollWindowEx

  SetRectEmpty

  SetScrollInfo

  SetCursor

  UpdateLayeredWindow

  DestroyMenu

  DrawFocusRect

  DestroyIcon

  DrawStateW

  OffsetRect

  GetWindowDC

  SetPropW

  CopyRect

  GetKeyState

  GetSysColorBrush

  SetFocus

  KillTimer

  CreateDialogIndirectParamW

  GetWindowTextLengthW

  GetFocus

  gdi32

  SelectObject

  DeleteDC

  SetBkMode

  SetTextColor

  GetObjectW

  CreateFontIndirectW

  GetDeviceCaps

  CreateSolidBrush

  SetBkColor

  ExtTextOutW

  StretchBlt

  GetDIBColorTable

  CreateDIBSection

  SetDIBColorTable

  GetStockObject

  SaveDC

  RestoreDC

  CreateRectRgnIndirect

  SetLayout

  EndPage

  StartDocW

  SetMapMode

  EndDoc

  StartPage

  AddFontMemResourceEx

  GetGlyphIndicesW

  GetObjectA

  CreateFontW

  SetViewportOrgEx

  GetFontUnicodeRanges

  CreateCompatibleBitmap

  CreateCompatibleDC

  CombineRgn

  SelectClipRgn

  GetTextExtentPoint32W

  GetTextMetricsW

  ExcludeClipRect

  TextOutW

  PatBlt

  CreateBitmap

  CreatePatternBrush

  GetTextColor

  GetBkColor

  Rectangle

  CreatePen

  MoveToEx

  LineTo

  Ellipse

  GetCurrentObject

  PolylineTo

  GetDIBits

  UnrealizeObject

  StrokeAndFillPath

  EndPath

  BeginPath

  GetClipRgn

  CreateRectRgn

  CreateDCW

  DeleteObject

  EnumFontFamiliesExW

  BitBlt

  GetClipBox

  comdlg32

  GetOpenFileNameW

  CommDlgExtendedError

  PrintDlgW

  GetSaveFileNameW

  advapi32

  GetFileSecurityW

  LsaClose

  LsaFreeMemory

  MapGenericMask

  AccessCheck

  LsaQueryInformationPolicy

  LsaOpenPolicy

  GetUserNameW

  LookupAccountNameW

  CopySid

  GetLengthSid

  EqualSid

  OpenThreadToken

  GetSidSubAuthority

  GetSidSubAuthorityCount

  GetSidIdentifierAuthority

  IsValidSid

  LookupAccountSidW

  SetNamedSecurityInfoW

  SetEntriesInAclW

  AllocateAndInitializeSid

  FreeSid

  AdjustTokenPrivileges

  LookupPrivilegeValueW

  RegEnumValueW

  CryptGenRandom

  CryptAcquireContextA

  CryptEnumProvidersW

  CryptSignHashW

  CryptDestroyHash

  CryptCreateHash

  CryptDecrypt

  CryptExportKey

  CryptGetUserKey

  CryptGetProvParam

  CryptSetHashParam

  CryptDestroyKey

  CryptReleaseContext

  CryptAcquireContextW

  ReportEventW

  RegisterEventSourceW

  DeregisterEventSource

  GetTokenInformation

  OpenProcessToken

  RegDeleteValueW

  RegCreateKeyExW

  RegSetValueExW

  RegEnumKeyExW

  RegQueryInfoKeyW

  RegDeleteKeyW

  RegQueryValueExW

  RegOpenKeyExW

  RegCloseKey

  RegNotifyChangeKeyValue

  OpenSCManagerW

  OpenServiceW

  ChangeServiceConfigW

  StartServiceW

  QueryServiceStatus

  CryptGetHashParam

  CryptHashData

  ConvertSidToStringSidW

  CloseEventLog

  ClearEventLogW

  OpenEventLogW

  LookupPrivilegeNameW

  RegUnLoadKeyW

  RegLoadKeyW

  CloseServiceHandle

  QueryServiceConfig2W

  QueryServiceConfigW

  QueryServiceStatusEx

  EnumServicesStatusExW

  DuplicateToken

  shell32

  SHGetFileInfoW

  ExtractIconExW

  Shell_NotifyIconW

  ShellExecuteExW

  DragFinish

  SHEmptyRecycleBinW

  SHBrowseForFolderW

  SHGetPathFromIDListW

  ShellExecuteW

  ord74

  ord727

  CommandLineToArgvW

  SHGetSpecialFolderPathW

  SHAddToRecentDocs

  SHGetFolderPathW

  DragQueryFileW

  SHGetSpecialFolderLocation

  ole32

  CoFreeUnusedLibraries

  CoCreateGuid

  StgOpenStorageEx

  StgIsStorageFile

  CoInitialize

  CoUninitialize

  CreateStreamOnHGlobal

  OleUninitialize

  CoTaskMemAlloc

  CoTaskMemFree

  StringFromGUID2

  OleLockRunning

  CoCreateInstance

  CoGetClassObject

  CLSIDFromProgID

  CLSIDFromString

  OleInitialize

  CoTaskMemRealloc

  ReleaseStgMedium

  OleDuplicateData

  RevokeDragDrop

  RegisterDragDrop

  DoDragDrop

  CoInitializeSecurity

  CoSetProxyBlanket

  CoInitializeEx

  PropVariantClear

  oleaut32

  SysStringLen

  LoadRegTypeLi

  LoadTypeLi

  SysAllocStringLen

  SysAllocString

  OleCreateFontIndirect

  VariantClear

  VariantInit

  SafeArrayCreateVector

  SafeArrayPutElement

  VarUI4FromStr

  VarBstrCmp

  DispCallFunc

  VarBstrFromR8

  VariantChangeType

  VarBstrFromI4

  VariantTimeToSystemTime

  SysFreeString

  SafeArrayDestroy

  shlwapi

  PathIsDirectoryW

  StrRetToStrW

  ord487

  PathIsRelativeW

  PathIsUNCW

  PathStripPathA

  PathFindFileNameW

  PathCreateFromUrlW

  PathIsURLW

  SHStrDupW

  PathRemoveArgsW

  PathUnquoteSpacesW

  PathFindExtensionW

  PathCombineW

  PathIsDirectoryEmptyW

  PathRemoveExtensionA

  PathStripPathW

  PathAddExtensionW

  PathRemoveExtensionW

  PathCanonicalizeW

  PathMatchSpecW

  PathFileExistsW

  PathAppendW

  PathRemoveFileSpecW

  PathCompactPathW

  PathGetDriveNumberW

  PathRemoveBackslashW

  PathSkipRootW

  PathStripToRootW

  comctl32

  ImageList_DrawEx

  ImageList_GetIconSize

  ImageList_GetIcon

  ImageList_SetIconSize

  ImageList_Duplicate

  ImageList_Draw

  ImageList_Destroy

  _TrackMouseEvent

  ImageList_LoadImageW

  ImageList_Replace

  ImageList_Add

  ImageList_Create

  ImageList_Remove

  ImageList_GetImageCount

  ImageList_ReplaceIcon

  InitCommonControlsEx

  gdiplus

  GdipCreateBitmapFromScan0

  GdipCloneImage

  GdipAlloc

  GdipFree

  GdipDisposeImage

  GdipGetImageGraphicsContext

  GdipDeleteGraphics

  GdipDrawImageI

  GdipBitmapUnlockBits

  GdipBitmapLockBits

  GdipGetImagePalette

  GdipGetImagePaletteSize

  GdipGetImageWidth

  GdipGetImageHeight

  GdipGetImagePixelFormat

  GdipCreateBitmapFromStream

  GdiplusShutdown

  GdiplusStartup

  GdipCreatePath

  GdipDeletePath

  GdipCreatePathGradientFromPath

  GdipDeleteBrush

  GdipCloneBrush

  GdipAddPathArcI

  GdipAddPathLineI

  GdipFillPath

  GdipGetClipBoundsI

  GdipCreateLineBrush

  GdipMultiplyLineTransform

  GdipCreateMatrix2

  GdipSetLinePresetBlend

  GdipAddPathEllipse

  GdipSetPathGradientPresetBlend

  GdipSetPathGradientWrapMode

  GdipSetPathGradientCenterPoint

  GdipSetPathGradientTransform

  GdipDrawPath

  GdipFillRectanglesI

  GdipSetClipRectI

  GdipTranslateWorldTransform

  GdipGetSmoothingMode

  GdipSaveGraphics

  GdipRestoreGraphics

  GdipGraphicsClear

  GdipGetPathWorldBounds

  GdipClonePath

  GdipSetClipRect

  GdipAddPathRectangleI

  GdipEndContainer

  GdipCreateImageAttributes

  GdipDisposeImageAttributes

  GdipSetImageAttributesColorMatrix

  GdipDrawImageRectRect

  GdipTransformPoints

  GdipMultiplyWorldTransform

  GdipCreateMatrix

  GdipDeleteMatrix

  GdipTranslateMatrix

  GdipRotateMatrix

  GdipScaleMatrix

  GdipShearMatrix

  GdipCreateTexture

  GdipFillEllipse

  GdipDrawEllipse

  GdipFillPie

  GdipDrawPie

  GdipDrawArc

  GdipDrawRectangle

  GdipResetPath

  GdipIsVisiblePathPoint

  GdipStartPathFigure

  GdipAddPathLine

  GdipClosePathFigure

  GdipSetPathFillMode

  ord1

  GdipAddPathBezier

  GdipSetPageUnit

  GdipSetCompositingQuality

  GdipSetPixelOffsetMode

  GdipSetInterpolationMode

  GdipSetTextRenderingHint

  GdipCreateFromHWND

  GdipCreateStringFormat

  GdipDeleteStringFormat

  GdipSetStringFormatAlign

  GdipSetStringFormatLineAlign

  GdipSetStringFormatTrimming

  GdipGetFontHeightGivenDPI

  GdipMeasureString

  GdipDeleteFontFamily

  GdipGetFamily

  GdipGetCellAscent

  GdipGetFontSize

  GdipGetEmHeight

  GdipGetCellDescent

  GdipDrawString

  GdipAddPathString

  GdipGetFontStyle

  GdipCreatePen2

  GdipSetPenEndCap

  GdipSetPenStartCap

  GdipSetPenLineJoin

  GdipSetPenMiterLimit

  GdipSetPenDashStyle

  GdipSetPenDashArray

  GdipSetPenDashOffset

  GdipDeleteFont

  GdipCreateFontFromDC

  GdipGetLineSpacing

  GdipCreateFontFromLogfontA

  GdipCreateBitmapFromGraphics

  GdipCreateHBITMAPFromBitmap

  GdipDrawDriverString

  GdipCreateSolidFill

  GdipFillRectangleI

  GdipCreateFromHDC

  GdipSetSmoothingMode

  GdipCreatePen1

  GdipDeletePen

  GdipDrawRectangleI

  GdipCreateHatchBrush

  GdipFillRectangle

  GdipDrawLine

  GdipCreateBitmapFromFile

  GdipBeginContainer2

  GdipSetLineWrapMode

  ws2_32

  WSARecvFrom

  WSASend

  listen

  WSASocketW

  WSARecv

  FreeAddrInfoW

  GetAddrInfoW

  WSAStartup

  WSACleanup

  WSAGetLastError

  recv

  htons

  setsockopt

  ntohs

  shutdown

  gethostname

  getaddrinfo

  freeaddrinfo

  ioctlsocket

  __WSAFDIsSet

  select

  bind

  WSAIoctl

  closesocket

  send

  connect

  WSASetLastError

  getpeername

  getsockname

  socket

  getsockopt

  psapi

  GetProcessImageFileNameW

  dbghelp

  MakeSureDirectoryPathExists

  urlmon

  FindMimeFromData

  winspool.drv

  ord203

  winmm

  timeKillEvent

  PlaySoundW

  timeBeginPeriod

  timeEndPeriod

  timeGetTime

  timeSetEvent

  winhttp

  WinHttpSetOption

  WinHttpSetTimeouts

  WinHttpReadData

  WinHttpWriteData

  WinHttpOpen

  WinHttpOpenRequest

  WinHttpAddRequestHeaders

  WinHttpQueryDataAvailable

  WinHttpCloseHandle

  WinHttpConnect

  WinHttpQueryHeaders

  WinHttpReceiveResponse

  WinHttpSetCredentials

  WinHttpSendRequest

  WinHttpQueryOption

  oleacc

  LresultFromObject

  AccessibleObjectFromWindow

  imm32

  ImmGetContext

  ImmIsIME

  ImmNotifyIME

  ImmAssociateContextEx

  ImmSetCandidateWindow

  ImmGetCompositionStringW

  ImmReleaseContext

  usp10

  ScriptApplyDigitSubstitution

  ScriptItemize

  ScriptBreak

  ScriptShape

  ScriptPlace

  ScriptFreeCache

  Exports

  Exports

  on_avast_dll_unload

  Sections

  .text

  Size: 11.7MB - Virtual size: 11.7MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 4.4MB - Virtual size: 4.4MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 955KB - Virtual size: 3.0MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 528KB - Virtual size: 528KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .gfids

  Size: 202KB - Virtual size: 201KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .tls

  Size: 512B - Virtual size: 37B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 4.1MB - Virtual size: 4.1MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 160KB - Virtual size: 160KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• CCleanerPro_Ver.5.57.7182_Chs/CCleanerReadme.txt
• CCleanerPro_Ver.5.57.7182_Chs/branding.dll

  .dll windows:6 windows x86 arch:x86

  
  

  Code Sign

  7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b

  Certificate

  Issuer

  CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

  Not Before

  21-12-2012 00:00

  Not After

  30-12-2020 23:59

  Subject

  CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50

  Certificate

  Issuer

  CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

  Not Before

  18-10-2012 00:00

  Not After

  29-12-2020 23:59

  Subject

  CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd

  Certificate

  Issuer

  OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

  Not Before

  08-11-2006 00:00

  Not After

  07-11-2021 23:59

  Subject

  CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageServerAuth

  ExtKeyUsageClientAuth

  ExtKeyUsageCodeSigning

  ExtKeyUsageNetscapeServerGatedCrypto

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  61:0c:12:06:00:00:00:00:00:1b

  Certificate

  Issuer

  CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Not Before

  23-05-2006 17:01

  Not After

  23-05-2016 17:11

  Subject

  OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  3d:3c:45:5a:5c:7b:7b:26:66:91:5e:b2:18:57:d7:ea

  Certificate

  Issuer

  CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

  Not Before

  20-09-2017 00:00

  Not After

  11-10-2018 23:59

  Subject

  CN=Piriform Ltd,O=Piriform Ltd,L=London,C=GB

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7

  Certificate

  Issuer

  CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

  Not Before

  08-02-2010 00:00

  Not After

  07-02-2020 23:59

  Subject

  CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageClientAuth

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd

  Certificate

  Issuer

  OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

  Not Before

  08-11-2006 00:00

  Not After

  07-11-2021 23:59

  Subject

  CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageServerAuth

  ExtKeyUsageClientAuth

  ExtKeyUsageCodeSigning

  ExtKeyUsageNetscapeServerGatedCrypto

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  61:0c:12:06:00:00:00:00:00:1b

  Certificate

  Issuer

  CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Not Before

  23-05-2006 17:01

  Not After

  23-05-2016 17:11

  Subject

  OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a

  Certificate

  Issuer

  CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

  Not Before

  10-12-2013 00:00

  Not After

  09-12-2023 23:59

  Subject

  CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageClientAuth

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  52:b6:a8:14:74:e8:04:89:20:f1:90:9e:45:4d:7f:c0

  Certificate

  Issuer

  CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

  Not Before

  20-09-2017 00:00

  Not After

  11-10-2018 23:59

  Subject

  CN=Piriform Ltd,O=Piriform Ltd,L=London,C=GB

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41

  Certificate

  Issuer

  CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  04-01-2017 00:00

  Not After

  18-01-2028 00:00

  Subject

  CN=DigiCert SHA2 Timestamp Responder,O=DigiCert,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15

  Certificate

  Issuer

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  07-01-2016 12:00

  Not After

  07-01-2031 12:00

  Subject

  CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  49:88:be:dc:df:60:f7:0c:7c:b6:8a:3d:ee:f7:59:66:29:90:0b:40:fc:51:3e:75:a0:c0:07:17:f2:6c:60:e1

  Signer

  Actual PE Digest

  49:88:be:dc:df:60:f7:0c:7c:b6:8a:3d:ee:f7:59:66:29:90:0b:40:fc:51:3e:75:a0:c0:07:17:f2:6c:60:e1

  Digest Algorithm

  sha256

  PE Digest Matches

  true

  ea:59:a4:f9:99:0a:4b:a2:15:cc:38:09:0a:ca:3f:67:a8:71:67:6d

  Signer

  Actual PE Digest

  ea:59:a4:f9:99:0a:4b:a2:15:cc:38:09:0a:ca:3f:67:a8:71:67:6d

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DLL

  Sections

  .rdata

  Size: 512B - Virtual size: 112B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 39KB - Virtual size: 38KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

• CCleanerPro_Ver.5.57.7182_Chs/ccleaner.ini
• ͼ۸.url