958b53c49483769260603cac186dcce1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

958b53c49483769260603cac186dcce1_JaffaCakes118
Size

6.6MB
MD5

958b53c49483769260603cac186dcce1
SHA1

37d3dda6c0535fda70491bbf425f2fa2e809ccf6
SHA256

1d1d05ac7e20bc213fc86ebf59393694f74efa59f7f61465db20d6c20c49c6fa
SHA512

2b76a1077b1a2fe1e8c9e67bad15f57f3365494db174129de1ff5361ebeea7199917fa5faa74704d5dcbf49a84308477a7002ef6bb366417253c9a1471fc7619
SSDEEP

196608:ogToP118Z4xo+m+b8b56PLdeiJYyCeTE1FE5j:ogToP1e1Bb5yLdf5CeTeg

Score

3^/10

Malware Config

Signatures

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
unpack001/atl71.dll
unpack001/libexpat.dll
unpack001/libpng13.dll
unpack001/minizip.dll
unpack001/zlib1.dll

Files

958b53c49483769260603cac186dcce1_JaffaCakes118
.zip
APlayer.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d0300dc02104678425edb2598cd7a8e1

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:25:07:1d:f9:af
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/11/2009, 10:00

Not After

18/03/2019, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:29:15:27:00:00:00:00:00:2a
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:55

Not After

15/04/2021, 20:05

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:1c:2a:9f:65:dc:a4:d7:d6:3c:04
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

11/07/2019, 09:26

Not After

26/08/2020, 10:11

Subject

SERIALNUMBER=91440300746612636Q,CN=深圳市迅雷网络技术有限公司,OU=Operating Dept.,O=深圳市迅雷网络技术有限公司,STREET=南山区粤海街道高新区社区科技南路18号深圳湾科技生态园12栋B座21层至23层,L=SHENZHEN,ST=GUANGDONG,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085348454e5a48454e,1.3.6.1.4.1.311.60.2.1.2=#13094755414e47444f4e47,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:25:07:1d:f9:af
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/11/2009, 10:00

Not After

18/03/2019, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:29:15:27:00:00:00:00:00:2a
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:55

Not After

15/04/2021, 20:05

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:1c:2a:9f:65:dc:a4:d7:d6:3c:04
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

11/07/2019, 09:26

Not After

26/08/2020, 10:11

Subject

SERIALNUMBER=91440300746612636Q,CN=深圳市迅雷网络技术有限公司,OU=Operating Dept.,O=深圳市迅雷网络技术有限公司,STREET=南山区粤海街道高新区社区科技南路18号深圳湾科技生态园12栋B座21层至23层,L=SHENZHEN,ST=GUANGDONG,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085348454e5a48454e,1.3.6.1.4.1.311.60.2.1.2=#13094755414e47444f4e47,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

11:21:b4:55:35:1e:bb:1a:b2:4f:97:ef:07:fe:2a:b3:0b:8a
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for Standard - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

16:a1:3c:c1:94:61:51:f7:09:c3:16:37:49:22:2d:21:dd:ce:3c:96:9c:c2:17:74:2a:b0:81:2a:b4:b1:ff:32
Signer

Actual PE Digest

16:a1:3c:c1:94:61:51:f7:09:c3:16:37:49:22:2d:21:dd:ce:3c:96:9c:c2:17:74:2a:b0:81:2a:b4:b1:ff:32

Digest Algorithm

sha256

PE Digest Matches

true

dd:eb:62:cd:61:bf:af:55:1f:89:76:78:a9:4d:62:dd:dc:48:d3:06
Signer

Actual PE Digest

dd:eb:62:cd:61:bf:af:55:1f:89:76:78:a9:4d:62:dd:dc:48:d3:06

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

g:\Git\aplayer\trunk\APlayerIII\Symbols\Release\APlayer3\APlayer3.pdb

Imports

kernel32

WaitForMultipleObjects
GetProcessId
GetEnvironmentVariableW
MoveFileW
IsBadWritePtr
IsDebuggerPresent
GetSystemTimeAsFileTime
GetSystemDirectoryA
LoadLibraryA
IsProcessorFeaturePresent
CreateFileMappingA
IsDBCSLeadByte
CreateFileA
OutputDebugStringA
GetThreadPriority
SetThreadPriority
CreateSemaphoreW
ReleaseSemaphore
LocalFree
GetLocaleInfoW
FlushFileBuffers
SetStdHandle
SetEnvironmentVariableW
SetFilePointer
IsBadCodePtr
GetOEMCP
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetCPInfo
GetStringTypeW
GetStringTypeA
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
SetUnhandledExceptionFilter
VirtualFree
HeapCreate
HeapDestroy
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThread
TlsAlloc
HeapSize
TerminateProcess
GetModuleHandleA
GetModuleFileNameA
QueryPerformanceCounter
GetVersionExA
GetCommandLineA
GetSystemInfo
VirtualAlloc
RaiseException
HeapReAlloc
RtlUnwind
ExitProcess
GetTickCount
GetSystemDirectoryW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetLocalTime
OutputDebugStringW
TryEnterCriticalSection
GetFileSize
IsBadReadPtr
VirtualQuery
FreeResource
GetTempPathW
GetTempFileNameW
GetFileAttributesW
FindResourceExW
SizeofResource
MulDiv
CreateThread
HeapAlloc
VirtualProtect
GetCurrentProcess
FlushInstructionCache
GlobalAlloc
GlobalLock
GlobalUnlock
FindResourceW
LoadResource
LockResource
SetLastError
ResetEvent
TerminateThread
CreateEventW
SetEvent
EnterCriticalSection
LeaveCriticalSection
GetProcessHeap
HeapFree
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchangeAdd
Sleep
WaitForSingleObject
UnmapViewOfFile
GetCurrentProcessId
CreateFileMappingW
LCMapStringA
GetModuleHandleW
LoadLibraryW
GetModuleFileNameW
lstrcpynW
GetCurrentDirectoryW
SetCurrentDirectoryW
lstrlenW
GetCurrentThreadId
GetVersionExW
MapViewOfFile
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
SetEndOfFile
SetFilePointerEx
CreateFileW
ReadFile
lstrcmpW
CloseHandle
WriteFile
CopyFileW
FindFirstFileW
DeleteFileW
FindNextFileW
FindClose
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
lstrcatW
CreateDirectoryW
LoadLibraryExW
GetProcAddress
FreeLibrary
GetLastError
lstrcpyW
LCMapStringW

user32

CreateWindowExW
PostMessageW
LoadImageW
FillRect
ReleaseDC
GetDC
IsRectEmpty
CopyRect
DefWindowProcW
SetFocus
GetAncestor
ReleaseCapture
SetCapture
SetCursor
EndPaint
EnumWindows
LoadCursorW
MsgWaitForMultipleObjects
DestroyWindow
PeekMessageW
DispatchMessageW
GetMessageW
SendMessageW
InvalidateRect
GetSysColor
SetWindowLongW
SendDlgItemMessageW
SystemParametersInfoW
IsChild
GetFocus
GetWindow
IsWindow
PtInRect
UnionRect
SetWindowRgn
OffsetRect
EqualRect
IntersectRect
GetParent
PostThreadMessageW
RegisterClassExW
RegisterWindowMessageW
GetQueueStatus
GetKeyState
DrawTextW
KillTimer
SetTimer
IsDialogMessageW
ShowWindow
GetClientRect
SetWindowPos
wsprintfW
BeginPaint
CallWindowProcW
ClientToScreen
MonitorFromWindow
GetWindowRect
ScreenToClient
FindWindowExW
EnableWindow
GetSystemMetrics
IsWindowVisible
SetRectEmpty
wsprintfA
CloseWindow
FindWindowW
PostQuitMessage
GetForegroundWindow
GetWindowThreadProcessId
MessageBoxW
wvsprintfW
GetClassNameW
SetRect
GetClassLongW
SetClassLongW
GetWindowLongW
LoadBitmapW
GetDialogBaseUnits
MapDialogRect
SetWindowContextHelpId
EnumChildWindows
GetDlgItem
GetNextDlgTabItem
CopyAcceleratorTableW

gdi32

ExtCreateRegion
GetRegionData
CreatePolygonRgn
GetBitmapBits
SetROP2
GetTextMetricsW
GetTextExtentPointW
CreateMetaFileW
SetWindowExtEx
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
SetBkColor
Rectangle
GetDeviceCaps
LPtoDP
SaveDC
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
RestoreDC
FrameRgn
CreatePen
MoveToEx
LineTo
CreateCompatibleBitmap
SetStretchBltMode
StretchBlt
BitBlt
CreateRectRgn
CombineRgn
FillRgn
CreateCompatibleDC
GetTextExtentPoint32W
CreateSolidBrush
GetObjectW
SetBkMode
SetTextColor
TextOutW
CreateDIBSection
CreateFontIndirectW
SelectObject
DeleteDC
DeleteObject
GetStockObject
CreateFontIndirectA
GetObjectA
GetCurrentObject
GetOutlineTextMetricsA
GetGlyphOutlineA
GetGlyphOutlineW

advapi32

RegOpenKeyExW
RegQueryValueExA
RegDeleteKeyW
RegCloseKey
RegCreateKeyW
RegQueryValueExW
RegOpenKeyW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyA

shell32

Shell_NotifyIconW
Shell_NotifyIconA
ShellExecuteW
SHGetFolderPathW
ShellExecuteExW

ole32

CreateStreamOnHGlobal
CoTaskMemFree
CoCreateInstance
CLSIDFromString
OleSetContainedObject
OleDraw
OleCreate
CoUninitialize
OleRegGetUserType
CreateOleAdviseHolder
OleRegGetMiscStatus
CoTaskMemAlloc
CoFreeUnusedLibraries
StringFromCLSID
IIDFromString
OleRegEnumVerbs
CoInitialize
CreateDataAdviseHolder

oleaut32

OleCreatePropertyFrame
OleTranslateColor
SysAllocString
BSTR_UserFree
BSTR_UserUnmarshal
BSTR_UserMarshal
BSTR_UserSize
SysStringLen
VariantInit
VariantClear
SysAllocStringLen
SysFreeString
GetErrorInfo
VariantChangeType
LoadTypeLi
LoadRegTypeLi
SysStringByteLen

atl71

ord47
ord30
ord50
ord51
ord58
ord31
ord11
ord54
ord27
ord42
ord48
ord37
ord43
ord44
ord60
ord28
ord26
ord32
ord65
ord66
ord61
ord23
ord64
ord22
ord15
ord18
ord10

shlwapi

StrStrIW
StrStrA
StrStrIA

msvfw32

ICRemove
ICInstall

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

winmm

timeBeginPeriod
timeGetTime
waveOutSetVolume
waveOutGetVolume
timeKillEvent
timeSetEvent
timeEndPeriod

ws2_32

inet_ntoa
inet_addr
gethostbyaddr
gethostbyname
getsockname
recv
send
connect
getservbyname
listen
bind
socket
WSAGetLastError
select
closesocket
WSAStartup
WSACleanup
htons
htonl
getservbyport
ntohs
__WSAFDIsSet
ioctlsocket
setsockopt
getsockopt
shutdown
accept

d3d9

Direct3DCreate9

ddraw

DirectDrawCreateEx

rpcrt4

NdrDllUnregisterProxy
NdrDllRegisterProxy
NdrCStdStubBuffer2_Release
NdrDllGetClassObject
NdrOleAllocate
NdrOleFree
IUnknown_QueryInterface_Proxy
IUnknown_AddRef_Proxy
IUnknown_Release_Proxy
NdrStubForwardingFunction
NdrStubCall2

Exports

Exports

APlayerFrames
APlayerLog
APlayerVR
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 300KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AssociateHelper.exe
.exe windows:6 windows x86 arch:x86

57de6dd620a5bdfdb6e91779dae5d252

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

19:1a:32:cb:75:9c:97:b8:cf:ac:11:8d:d5:12:7f:49
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

04/03/2014, 00:00

Not After

03/03/2024, 23:59

Subject

CN=Symantec Class 3 Extended Validation Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

48:71:dd:fd:2e:98:d4:c3:c9:fd:c2:c8:b4:52:c6:fc
Certificate

Issuer

CN=Symantec Class 3 Extended Validation Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

29/03/2018, 00:00

Not After

28/03/2020, 23:59

Subject

SERIALNUMBER=91440300746612636Q,CN=ShenZhen Thunder Networking Technologies Ltd.,OU=IT,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#13085368656e5a68656e,1.3.6.1.4.1.311.60.2.1.2=#13084775616e446f6e67,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

19:1a:32:cb:75:9c:97:b8:cf:ac:11:8d:d5:12:7f:49
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

04/03/2014, 00:00

Not After

03/03/2024, 23:59

Subject

CN=Symantec Class 3 Extended Validation Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

48:71:dd:fd:2e:98:d4:c3:c9:fd:c2:c8:b4:52:c6:fc
Certificate

Issuer

CN=Symantec Class 3 Extended Validation Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

29/03/2018, 00:00

Not After

28/03/2020, 23:59

Subject

SERIALNUMBER=91440300746612636Q,CN=ShenZhen Thunder Networking Technologies Ltd.,OU=IT,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#13085368656e5a68656e,1.3.6.1.4.1.311.60.2.1.2=#13084775616e446f6e67,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

d0:3c:99:f2:f9:01:12:11:18:a4:5f:5a:53:7a:65:9c:7c:f1:f7:86:57:85:a7:8e:53:41:16:8b:64:97:a8:f5
Signer

Actual PE Digest

d0:3c:99:f2:f9:01:12:11:18:a4:5f:5a:53:7a:65:9c:7c:f1:f7:86:57:85:a7:8e:53:41:16:8b:64:97:a8:f5

Digest Algorithm

sha256

PE Digest Matches

true

af:7d:9c:ae:4a:8d:12:bf:5d:d8:77:af:76:84:c7:cb:c1:4a:a9:88
Signer

Actual PE Digest

af:7d:9c:ae:4a:8d:12:bf:5d:d8:77:af:76:84:c7:cb:c1:4a:a9:88

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\GitDev\xmp_xdas_\pdb\Release\AssociateHelper.pdb

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

shlwapi

PathFindFileNameW
PathCombineW

kernel32

SizeofResource
FindResourceW
FindResourceExW
GetModuleHandleW
GetProcAddress
DecodePointer
GetModuleFileNameW
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
SystemTimeToTzSpecificLocalTime
LockResource
LoadLibraryW
FreeLibrary
LocalFree
GetCommandLineW
SetLastError
InitializeCriticalSection
MultiByteToWideChar
CloseHandle
SystemTimeToFileTime
GetWindowsDirectoryW
LoadResource
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionEx
GetLastError
RaiseException
SetStdHandle
GetStringTypeW
FlushFileBuffers
GetConsoleCP
CreateFileW
SetFilePointerEx
WriteConsoleW
GetSystemTime
ResetEvent
SetEnvironmentVariableA
FreeEnvironmentStringsW
IsDebuggerPresent
OutputDebugStringW
SetEvent
WaitForSingleObjectEx
CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
RtlUnwind
ExitProcess
GetModuleHandleExW
GetModuleFileNameA
WideCharToMultiByte
GetStdHandle
WriteFile
GetCommandLineA
GetACP
GetFileType
CompareStringW
LCMapStringW
GetConsoleMode
FindClose
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetCPInfo
GetEnvironmentStringsW

user32

wsprintfW

advapi32

InitializeSid
LookupAccountNameW
RevertToSelf
GetUserNameW
UnregisterTraceGuids
RegisterTraceGuidsW
GetTraceLoggerHandle
GetTraceEnableLevel
RegDeleteKeyW
TraceEvent
RegSetValueExW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
ConvertSidToStringSidW

shell32

CommandLineToArgvW

Sections

.text
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Microsoft.VC90.ATL.manifest
.xml
Microsoft.VC90.CRT.manifest
Res/3GP.ico
Res/AMR.ico
Res/ASS.ico
Res/AVI.ico
Res/Audio.ico
Res/CDA.ico
Res/FLAC.ico
Res/FLV.ico
Res/IDX.ico
Res/IFO.ico
Res/MKV.ico
Res/MOV.ico
Res/MP3.ico
Res/MP4.ico
Res/MPG.ico
Res/PMP.ico
Res/PSB.ico
Res/RA.ico
Res/RM.ico
Res/SMI.ico
Res/SRT.ico
Res/SSA.ico
Res/SSF.ico
Res/SUB.ico
Res/SWF.ico
Res/USF.ico
Res/VIDEO.ico
Res/WAV.ico
Res/WMA.ico
Res/Xmp.ico
Res/dvd.ico
Res/sup.ico
Res/vob.ico
Res/wmv.ico
XLFSIO.dll
.dll windows:5 windows x86 arch:x86

2347993f7de0127c1411289199f4b2e5

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

75:06:b5:d2:91:7a:13:5c:04:e2:29:ee:21:44:9a:8d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

22/02/2017, 00:00

Not After

25/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

45:98:a2:8d:fd:dc:bc:31:de:d0:f2:98:07:c5:a7:43
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

05/01/2016, 00:00

Not After

26/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

02/01/2017, 00:00

Not After

01/04/2028, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

b7:38:70:47:b1:81:08:be:d7:87:73:71:26:4f:73:a6:03:14:50:39:cf:f8:43:00:0a:53:84:1c:a3:24:c9:8d
Signer

Actual PE Digest

b7:38:70:47:b1:81:08:be:d7:87:73:71:26:4f:73:a6:03:14:50:39:cf:f8:43:00:0a:53:84:1c:a3:24:c9:8d

Digest Algorithm

sha256

PE Digest Matches

true

87:c7:a6:47:16:93:ef:20:98:b7:e5:78:93:49:9b:23:da:f0:45:76
Signer

Actual PE Digest

87:c7:a6:47:16:93:ef:20:98:b7:e5:78:93:49:9b:23:da:f0:45:76

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\work\xunlei_uiengine\pdb\ProductRelease\XLFSIO\XLFSIO.pdb

Imports

kernel32

FreeLibrary
LockResource
SizeofResource
LoadResource
FindResourceW
LoadLibraryW
GetProcAddress
GetModuleHandleW
DisableThreadLibraryCalls
InterlockedIncrement
FreeResource
InterlockedDecrement
IsDebuggerPresent
OutputDebugStringW
DebugBreak
GetCurrentThreadId
GetModuleFileNameW
VirtualQuery
GetTickCount
GetLastError
GetCurrentProcessId
LeaveCriticalSection
FindClose
FindNextFileW
WideCharToMultiByte
MultiByteToWideChar
GetProcessHeap
HeapSetInformation
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime
EnterCriticalSection
DeleteCriticalSection
FindFirstFileW
InitializeCriticalSection

shlwapi

PathCanonicalizeW
PathCombineW

msvcp90

?assign@?$char_traits@_W@std@@SAPA_WPA_WI_W@Z
?compare@?$char_traits@D@std@@SAHPBD0I@Z
?eq@?$char_traits@_W@std@@SA_NAB_W0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?length@?$char_traits@D@std@@SAIPBD@Z
?assign@?$char_traits@D@std@@SAXAADABD@Z
?find@?$char_traits@_W@std@@SAPB_WPB_WIAB_W@Z
?compare@?$char_traits@_W@std@@SAHPB_W0I@Z
?_Copy_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Move_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?assign@?$char_traits@_W@std@@SAXAA_WAB_W@Z
?_Xran@_String_base@std@@SAXXZ
?_Xlen@_String_base@std@@SAXXZ
?length@?$char_traits@_W@std@@SAIPB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?_Copy_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?_Move_s@?$char_traits@D@std@@SAPADPADIPBDI@Z

msvcr90

__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_amsg_exit
_except_handler4_common
__clean_type_info_names_internal
_adjust_fdiv
_purecall
__CxxFrameHandler3
_CxxThrowException
memcpy
memset
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
fread
fwrite
ftell
fseek
fclose
_wfopen
wcsncpy
ldiv
memmove_s
_wcsicmp
strncmp
free
__RTDynamicCast
_wcsnicmp
_time64
_chsize
_fileno
rand
srand
tolower
strncpy
fopen
ferror
?_query_new_handler@@YAP6AHI@ZXZ
strlen
wcscpy
wcslen
strcpy
?_query_new_mode@@YAHXZ
bsearch
qsort
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e

Exports

Exports

XLFS_AddRefStream
XLFS_CacheGC
XLFS_CloseDirectory
XLFS_CloseFile
XLFS_CreateStreamFromFile
XLFS_CreateStreamFromMemory
XLFS_CreateStreamFromMountFile
XLFS_CreateStreamFromResource
XLFS_DeleteFile
XLFS_DirExists
XLFS_FileExists
XLFS_FixPath
XLFS_GetCacheFile
XLFS_GetFileAbsPath
XLFS_GetFilePosition
XLFS_GetFileSize
XLFS_GetRealAbsPath
XLFS_GetRealAbsPathCount
XLFS_GetXARFileType
XLFS_Init
XLFS_IsEOF
XLFS_MountDir
XLFS_MountFile
XLFS_OpenDirectory
XLFS_OpenFile
XLFS_ReadDirectory
XLFS_ReadFile
XLFS_ReleaseStream
XLFS_SeekFile
XLFS_SetXARDecryptCallBack
XLFS_SetXARProtocol
XLFS_Stat
XLFS_StreamGetPosition
XLFS_StreamGetSize
XLFS_StreamRead
XLFS_StreamSeek
XLFS_StreamSetPosition
XLFS_StreamSetSize
XLFS_StreamWrite
XLFS_UnMount
XLFS_Uninit
XLFS_UpdateCacheFile
XLFS_WriteFile

Sections

.text
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uestat
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLGraphic.dll
.dll windows:5 windows x86 arch:x86

068eaff42e938805ea525a3e32eb7b30

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

75:06:b5:d2:91:7a:13:5c:04:e2:29:ee:21:44:9a:8d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

22/02/2017, 00:00

Not After

25/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

45:98:a2:8d:fd:dc:bc:31:de:d0:f2:98:07:c5:a7:43
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

05/01/2016, 00:00

Not After

26/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

02/01/2017, 00:00

Not After

01/04/2028, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

1a:d5:43:af:4e:09:bd:f1:44:0a:b9:f1:3f:f2:89:26:0c:6a:94:09:bc:89:bc:27:97:18:89:9c:9a:04:de:52
Signer

Actual PE Digest

1a:d5:43:af:4e:09:bd:f1:44:0a:b9:f1:3f:f2:89:26:0c:6a:94:09:bc:89:bc:27:97:18:89:9c:9a:04:de:52

Digest Algorithm

sha256

PE Digest Matches

true

0e:56:93:b1:19:e4:1f:90:da:76:02:ae:e6:50:5b:30:73:7b:57:e3
Signer

Actual PE Digest

0e:56:93:b1:19:e4:1f:90:da:76:02:ae:e6:50:5b:30:73:7b:57:e3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\work\xunlei_uiengine\pdb\ProductRelease\XLGraphic\XLGraphic.pdb

Imports

libpng13

ord7
ord12
ord122
ord98
ord180
ord76
ord136
ord108
ord99
ord100
ord87
ord81
ord75
ord14

msimg32

AlphaBlend

xlfsio

XLFS_Init
XLFS_CreateStreamFromFile
XLFS_StreamRead
XLFS_CreateStreamFromMemory
XLFS_CreateStreamFromMountFile
XLFS_ReleaseStream

shlwapi

PathAppendW
PathFileExistsW
PathFindExtensionW

kernel32

GetSystemTimeAsFileTime
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
InterlockedIncrement
InterlockedDecrement
GetCurrentProcess
GetProcAddress
GetModuleHandleW
GetVersionExW
lstrcmpiW
GetProcessHeap
HeapSetInformation
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
IsDebuggerPresent
OutputDebugStringW
DebugBreak
GetCurrentThreadId
GetModuleFileNameW
VirtualQuery
LoadLibraryW
FreeLibrary
GetTickCount
GetLastError
GetCurrentProcessId
GetPrivateProfileStringW
WideCharToMultiByte
MultiByteToWideChar
UnhandledExceptionFilter
SetUnhandledExceptionFilter
QueryPerformanceCounter

user32

IsRectEmpty
IntersectRect
SubtractRect
InflateRect
PtInRect
GetWindowDC
SystemParametersInfoW
GetDC
ReleaseDC
CopyRect
EqualRect
UnionRect
SetRectEmpty
OffsetRect
SetRect

gdi32

CreateCompatibleDC
CreateDIBSection
GetDeviceCaps
SelectObject
SetDIBitsToDevice
DeleteDC
DeleteObject
StretchDIBits
EnumFontFamiliesExW
GetGlyphOutlineW
CreateFontIndirectW
GetOutlineTextMetricsW
CreateFontW
GetFontData

advapi32

RegCloseKey
RegOpenKeyExW
RegEnumValueW

msvcp90

?_Move_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?_Copy_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?assign@?$char_traits@D@std@@SAXAADABD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@I_W@Z
?size@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIXZ
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?assign@?$char_traits@D@std@@SAPADPADID@Z
?_Xlen@_String_base@std@@SAXXZ
?_Xran@_String_base@std@@SAXXZ
?assign@?$char_traits@_W@std@@SAXAA_WAB_W@Z
?assign@?$char_traits@_W@std@@SAPA_WPA_WI_W@Z
?_Move_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Copy_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?length@?$char_traits@D@std@@SAIPBD@Z
?length@?$char_traits@_W@std@@SAIPB_W@Z

msvcr90

memmove
strrchr
__clean_type_info_names_internal
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
fclose
_amsg_exit
_initterm_e
strncpy
wcsrchr
wcsstr
_wtoi
_itow
_initterm
_encoded_null
_malloc_crt
?terminate@@YAXXZ
fread
fseek
ftell
fopen
memchr
strncmp
atol
strstr
atoi
?_query_new_handler@@YAP6AHI@ZXZ
wcscpy
wcslen
strcpy
strlen
memcmp
?_query_new_mode@@YAHXZ
_unlock
__dllonexit
??0exception@std@@QAE@ABQBD@Z
_encode_pointer
_lock
_onexit
memset
memcpy
__CxxFrameHandler3
_CIsqrt
floor
_purecall
ldiv
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
longjmp
_wcsicmp
_setjmp3
__CxxLongjmpUnwind
free
memmove_s
sprintf
_itoa
_CIcos
_CIsin
qsort
wcsncpy
wcsncmp
_decode_pointer

Exports

Exports

XL_ARGB2PARGB
XL_AddCurveControlPoint
XL_AddRefBitmap
XL_AddRefBrush
XL_AddRefCurve
XL_AddRefFont
XL_AddRefImageList
XL_AddRefImageSeq
XL_AddRefMask
XL_AddRefPen
XL_AddRefTextEnv
XL_AddRefTexture
XL_AddRefTrans
XL_AddSubTrans
XL_AddTextureBlock
XL_AdjustBitmapColor
XL_AdjustColor
XL_AlphaPaintBitmap
XL_BindExpObject
XL_BindExpRect
XL_BindMaskSource
XL_BindRectExpRect
XL_Blend
XL_BuildMaskCache
XL_CaclExp
XL_CaclRectExp
XL_ClearMaskCache
XL_ClipSubBindBitmap
XL_CloneBitmap
XL_CloneEXP
XL_CloneMask
XL_CloneTrans
XL_ConvertBitmap
XL_CopyRect
XL_CreateBindBitmap
XL_CreateBindBitmapEx
XL_CreateBitmap
XL_CreateBrush
XL_CreateCurve
XL_CreateExp
XL_CreateFont
XL_CreateImageList
XL_CreateImageSeq
XL_CreatePen
XL_CreateRectExp
XL_CreateRotateTrans
XL_CreateStretchTrans
XL_CreateSubMask
XL_CreateTextEnv
XL_CreateTextEnv2
XL_CreateTexture
XL_CreateTrans
XL_CreateTransferTrans
XL_DefaultGraphicHint
XL_DeleteExp
XL_DeleteFont
XL_DeleteRectExp
XL_DeleteTextEvn
XL_DoTrans
XL_DrawEllipse
XL_DrawLine
XL_DrawMultilineText
XL_DrawPolygon
XL_DrawRectangle
XL_DrawRectangle2
XL_DrawSinglelineText
XL_EnableRenderMode
XL_EnableShadow
XL_EqualRect
XL_ExtractBitmap
XL_FillBitmap
XL_FillBlend
XL_GC
XL_GetBitmapBuffer
XL_GetBitmapChanel
XL_GetBitmapInfo
XL_GetBitmapMainColor
XL_GetBitmapPixelBytes
XL_GetBknColor
XL_GetBknMode
XL_GetColorVariance
XL_GetCurveControlPoint
XL_GetCurveControlPointCount
XL_GetCurveInfo
XL_GetCurvePosition
XL_GetCurveProgress
XL_GetCurveType
XL_GetDefaultFaceName
XL_GetDefaultFont
XL_GetExpString
XL_GetExpValue
XL_GetHSVModify
XL_GetImageCount
XL_GetImageListBitmap
XL_GetLineGap
XL_GetLogBrush
XL_GetLogFont
XL_GetLogPen
XL_GetMaskSize
XL_GetMaskSource
XL_GetMaskSourceChanel
XL_GetMaskSourceType
XL_GetMultilineTextExtent
XL_GetRectExpHeight
XL_GetRectExpLeft
XL_GetRectExpRect
XL_GetRectExpTop
XL_GetRectExpWidth
XL_GetSinglelineTextExtent
XL_GetSubTrans
XL_GetSubTransCount
XL_GetTextAlignment
XL_GetTextBorderWidth
XL_GetTextCharacterExtra
XL_GetTextColor
XL_GetTextEffectColor
XL_GetTextEffectType
XL_GetTextExtentAndBaseLine
XL_GetTextFont
XL_GetTextForceUnderline
XL_GetTextLRGap
XL_GetTextType
XL_GetTextureBitmap
XL_GetTextureType
XL_GetTransInfo
XL_HSL2RGB
XL_HSV2RGB
XL_ImageSeqAddImage
XL_ImageSeqBeginAddImage
XL_ImageSeqEndAddImage
XL_ImageSeqGetCount
XL_ImageSeqGetImage
XL_ImageSeqGetImageByIndex
XL_InflateRect
XL_InitGraphicLib
XL_IntersectRect
XL_IntersectRectEx
XL_IsBitmapLossyCliped
XL_IsBitmapOwnerBuffer
XL_IsBitmapPreMultiplied
XL_IsFreeTypeEnabled
XL_IsRectEmpty
XL_IsRectIntersect
XL_IsRenderModeEnabled
XL_IsSupportFont
XL_LoadBitmapFromFile
XL_LoadBitmapFromMemory
XL_LoadBitmapFromMemoryEx
XL_LoadPngFromFile
XL_LoadPngFromStream
XL_NewMask
XL_OffsetRect
XL_PARGB2ARGB
XL_PaintBitmap
XL_PaintImageList
XL_PaintTexture
XL_PreMultiplyBitmap
XL_PrepareGraphicParam
XL_PtInRect
XL_RGB2HSL
XL_RGB2HSV
XL_RegisterImageLoader
XL_ReleaseBitmap
XL_ReleaseBrush
XL_ReleaseCurve
XL_ReleaseFont
XL_ReleaseImageList
XL_ReleaseImageSeq
XL_ReleaseMask
XL_ReleasePen
XL_ReleaseTextEnv
XL_ReleaseTexture
XL_ReleaseTrans
XL_RemoveCurveControlPoint
XL_RemoveImageloader
XL_RemoveTextureBlock
XL_ResetAlphaChannel
XL_SetAntialiasMode
XL_SetBknColor
XL_SetBknMode
XL_SetBrushColor
XL_SetConfigFontName
XL_SetExp
XL_SetFreeTypeEnabled
XL_SetHintMode
XL_SetImageListBitmap
XL_SetLCDModeFactor
XL_SetLineGap
XL_SetLoadNoBitmap
XL_SetMaskBmpStretch
XL_SetMaskSize
XL_SetPenColor
XL_SetRect
XL_SetRectEmpty
XL_SetRectExpHeight
XL_SetRectExpLeft
XL_SetRectExpTop
XL_SetRectExpWidth
XL_SetShadowColor
XL_SetShadowOffset
XL_SetTextAlignment
XL_SetTextBorderWidth
XL_SetTextCharacterExtra
XL_SetTextColor
XL_SetTextEffectColor
XL_SetTextEffectType
XL_SetTextFont
XL_SetTextForceUnderline
XL_SetTextLRGap
XL_SetTextType
XL_SetTextureBitmap
XL_SetTextureOrigin
XL_SetTextureRect
XL_SetTransDistDisp2obs
XL_SetTransParam
XL_SetTransRegion
XL_StatObject
XL_StretchBitmap
XL_StretchBlend
XL_SubtractRect
XL_TabbedTextOut
XL_TransGetDestBmpSize
XL_TransKeepCentreRect
XL_TransPoint
XL_TransRect
XL_UnInitGraphicLib
XL_UnionRect
XL_UnionRectEx

Sections

.text
Size: 582KB - Virtual size: 582KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uestat
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLGraphicPlus.dll
.dll windows:5 windows x86 arch:x86

74ed267b90ea46f46dd12b690dbf13bc

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:25:07:1d:f9:af
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/11/2009, 10:00

Not After

18/03/2019, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

68:39:2e:6e:1f:ea:72:e0:4c:0e:0e:02
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

18/10/2017, 11:24

Not After

26/06/2018, 10:11

Subject

SERIALNUMBER=91440300746612636Q,CN=深圳市迅雷网络技术有限公司,OU=Operating Dept.,O=深圳市迅雷网络技术有限公司,STREET=南山区粤海街道科技中二路深圳软件园11号楼7、8层,L=SHENZHEN,ST=GUANGDONG,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085348454e5a48454e,1.3.6.1.4.1.311.60.2.1.2=#13094755414e47444f4e47,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:25:07:1d:f9:af
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/11/2009, 10:00

Not After

18/03/2019, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

68:39:2e:6e:1f:ea:72:e0:4c:0e:0e:02
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

18/10/2017, 11:24

Not After

26/06/2018, 10:11

Subject

SERIALNUMBER=91440300746612636Q,CN=深圳市迅雷网络技术有限公司,OU=Operating Dept.,O=深圳市迅雷网络技术有限公司,STREET=南山区粤海街道科技中二路深圳软件园11号楼7、8层,L=SHENZHEN,ST=GUANGDONG,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085348454e5a48454e,1.3.6.1.4.1.311.60.2.1.2=#13094755414e47444f4e47,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

11:21:b4:55:35:1e:bb:1a:b2:4f:97:ef:07:fe:2a:b3:0b:8a
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for Standard - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

f9:f1:00:ed:1b:c3:a0:e6:3a:aa:f1:71:71:5a:fe:94:0f:69:02:91:48:7c:09:ab:3a:ea:31:bb:ac:6c:23:8b
Signer

Actual PE Digest

f9:f1:00:ed:1b:c3:a0:e6:3a:aa:f1:71:71:5a:fe:94:0f:69:02:91:48:7c:09:ab:3a:ea:31:bb:ac:6c:23:8b

Digest Algorithm

sha256

PE Digest Matches

true

e6:46:01:eb:04:4b:d7:89:5b:52:52:23:30:06:e7:48:5f:5d:80:9d
Signer

Actual PE Digest

e6:46:01:eb:04:4b:d7:89:5b:52:52:23:30:06:e7:48:5f:5d:80:9d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\work\xunlei_uiengine\pdb\ProductRelease\XLGraphicPlus\XLGraphicPlus.pdb

Imports

xlgraphic

XL_FillBlend
XL_DefaultGraphicHint
XL_TransRect
XL_TransKeepCentreRect
XL_AdjustBitmapColor
XL_TransPoint
XL_ReleaseTrans
XL_AddSubTrans
XL_SetTransDistDisp2obs
XL_DoTrans
XL_CloneBitmap
XL_PaintBitmap
XL_CreateBitmap
XL_GetBitmapBuffer
XL_GetBitmapInfo
XL_ResetAlphaChannel
XL_RemoveImageloader
XL_RegisterImageLoader
XL_AddRefBitmap
XL_TransGetDestBmpSize
XL_PreMultiplyBitmap
XL_GetImageCount
XL_GetImageListBitmap
XL_ReleaseImageList
XL_ExtractBitmap
XL_SetImageListBitmap
XL_ReleaseCurve
XL_GetCurveProgress
XL_AddCurveControlPoint
XL_ImageSeqAddImage
XL_ImageSeqEndAddImage
XL_ImageSeqBeginAddImage
XL_ReleaseImageSeq
XL_ImageSeqGetCount
XL_ImageSeqGetImageByIndex
XL_ReleaseMask
XL_CreateSubMask
XL_GetMaskSize
XL_BuildMaskCache
XL_GetMaskSourceChanel
XL_BindMaskSource
XL_GetMaskSource
XL_GetMaskSourceType
XL_RGB2HSL
XL_AdjustColor
XL_SetPenColor
XL_SetBrushColor
XL_GetLogBrush
XL_ReleasePen
XL_GetLogPen
XL_GetTextureType
XL_GetTextureBitmap
XL_ReleaseTexture
XL_RemoveTextureBlock
XL_AddTextureBlock
XL_SetTextureRect
XL_SetTextureBitmap
XL_ReleaseTextEnv
XL_GetTextBorderWidth
XL_SetTextBorderWidth
XL_GetTextEffectColor
XL_SetTextEffectColor
XL_GetMultilineTextExtent
XL_LoadBitmapFromFile
XL_CreateCurve
XL_ReleaseFont
XL_CreateFont
XL_CreateTextEnv2
XL_CreateTextEnv
XL_CreateTexture
XL_CreateImageList
XL_CreateBrush
XL_CreatePen
XL_AddRefCurve
XL_AddRefTexture
XL_AddRefFont
XL_AddRefImageList
XL_AddRefTextEnv
XL_AddRefTrans
XL_CreateRotateTrans
XL_CreateTransferTrans
XL_CreateStretchTrans
XL_GetDefaultFaceName
XL_IsSupportFont
XL_SetConfigFontName
XL_SetFreeTypeEnabled
XL_AddRefMask
XL_AddRefPen
XL_AddRefBrush
XL_AddRefImageSeq
XL_ClipSubBindBitmap
XL_FillBitmap
XL_IsBitmapOwnerBuffer
XL_Blend
XL_StretchBlend
XL_StretchBitmap
XL_DrawLine
XL_DrawRectangle
XL_DrawPolygon
XL_DrawEllipse
XL_DrawSinglelineText
XL_DrawMultilineText
XL_TabbedTextOut
XL_GetBitmapMainColor
XL_GetBitmapChanel
XL_GetLogFont
XL_SetTextType
XL_GetTextType
XL_SetTextColor
XL_GetTextColor
XL_SetBknColor
XL_GetBknColor
XL_SetBknMode
XL_GetBknMode
XL_SetTextFont
XL_GetTextFont
XL_SetTextAlignment
XL_GetTextAlignment
XL_SetTextCharacterExtra
XL_GetTextCharacterExtra
XL_SetLineGap
XL_GetLineGap
XL_GetSinglelineTextExtent
XL_ReleaseBitmap

gdiplus

GdipSetPixelOffsetMode
GdipDrawImageRectRectI
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipGetImageFlags
GdipSetInterpolationMode
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipGetImageGraphicsContext
GdipSetImageAttributesWrapMode
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdiplusShutdown
GdiplusStartup
GdipSetImagePalette
GdipSaveImageToFile
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromHICON
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromScan0
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectI
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateHICONFromBitmap
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipAlloc
GdipCloneImage
GdipFree
GdipImageGetFrameDimensionsCount
GdipDisposeImage

xlfsio

XLFS_StreamSeek
XLFS_StreamRead
XLFS_ReleaseStream
XLFS_CreateStreamFromFile
XLFS_AddRefStream
XLFS_StreamWrite
XLFS_StreamSetSize
XLFS_StreamGetSize
XLFS_CreateStreamFromMountFile
XLFS_StreamGetPosition

xlluaruntime

lua_pushlightuserdata
XLLRT_PushXLObject
lua_isuserdata
luaL_checkudata
lua_pushboolean
lua_tolstring
lua_gettop
lua_tointeger
lua_type
lua_touserdata
lua_pushnil
lua_createtable
lua_tonumber
lua_rawgeti
lua_getfield
lua_settop
lua_pushnumber
lua_toboolean
lua_pushstring
luaL_checklstring
XLLRT_RegisterGlobalObj
luaL_checknumber
luaL_checkinteger
lua_pushinteger
XLLRT_RegisterClass
XLLRT_GetEnv
XLLRT_IsGlobalObjRegistered
XLLRT_ReleaseEnv

kernel32

Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
WideCharToMultiByte
InterlockedExchange
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
HeapCreate
HeapSetInformation
GetProcessHeap
OutputDebugStringW
GlobalAlloc
GlobalLock
GlobalFree
GlobalUnlock
lstrcmpiW
CreateFileW
WriteFile
CloseHandle
EnumResourceNamesW
FindResourceW
LoadResource
SizeofResource
LoadLibraryExW
FreeLibrary
MultiByteToWideChar

user32

DestroyIcon
DestroyCursor
CopyImage
CopyIcon
CharNextW
CreateIconFromResourceEx
GetSystemMetrics
ReleaseDC
GetDC
CreateIconFromResource
GetIconInfo
LookupIconIdFromDirectoryEx

gdi32

BitBlt
SelectObject
DeleteObject
GetDIBits
CreateCompatibleDC
GetObjectW
CreateCompatibleBitmap
CreateDIBSection
DeleteDC

advapi32

RegQueryValueW
RegOpenKeyExW
RegCloseKey

shell32

SHGetFileInfoW
DuplicateIcon

ole32

CreateStreamOnHGlobal

shlwapi

PathFindExtensionW

msvcp90

??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?replace@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IIPB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?assign@?$char_traits@_W@std@@SAXAA_WAB_W@Z
?_Copy_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Xlen@_String_base@std@@SAXXZ
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
?_Xran@_String_base@std@@SAXXZ
?length@?$char_traits@D@std@@SAIPBD@Z
?assign@?$char_traits@D@std@@SAXAADABD@Z
?_Move_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?length@?$char_traits@_W@std@@SAIPB_W@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Move_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?_Copy_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?compare@?$char_traits@D@std@@SAHPBD0I@Z

msvcr90

_purecall
wcscpy
_CxxThrowException
free
pow
sqrt
__CxxFrameHandler3
cos
sin
abs
rand
srand
_time64
floor
?_query_new_handler@@YAP6AHI@ZXZ
strcpy
strlen
?_query_new_mode@@YAHXZ
strcmp
sscanf
atoi
_stricmp
??0exception@std@@QAE@ABV01@@Z
memmove_s
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
_unlock
__dllonexit
memset
_wtoi
labs
_wcsicmp
memcpy
wcscmp
memcmp
fabs
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_except_handler4_common
__clean_type_info_names_internal
wcslen

Exports

Exports

XLGP_ABaoHue
XLGP_AddNoise
XLGP_AddRefCursor
XLGP_AddRefGif
XLGP_AddRefIcon
XLGP_AdjustCurve
XLGP_AdjustCurve_RGB
XLGP_AfterGlow
XLGP_AutoLevels
XLGP_AutoReversalFilm
XLGP_AutoWB
XLGP_BitmapBlur
XLGP_BitmapBlur1
XLGP_BitmapBlur2
XLGP_BitmapInvert
XLGP_BitmapSharpen
XLGP_BitmapToGray
XLGP_BlackAndWhite
XLGP_BlendEx
XLGP_ChannelMix
XLGP_CheckBitmap
XLGP_CheckBrush
XLGP_CheckColor
XLGP_CheckColor2
XLGP_CheckCursor
XLGP_CheckCurve
XLGP_CheckFont
XLGP_CheckGif
XLGP_CheckIcon
XLGP_CheckImageList
XLGP_CheckImageSeq
XLGP_CheckMask
XLGP_CheckPen
XLGP_CheckTexture
XLGP_ColdStyle
XLGP_ColorBalance
XLGP_ColorEmboss
XLGP_ColorFilter1
XLGP_ColorFilter2
XLGP_ColorFilter3
XLGP_ContrastAdjust
XLGP_ConvertDDBToDIB
XLGP_ConvertDDBToXLBitmap
XLGP_ConvertDIBToXLBitmap
XLGP_ConvertXLBitmapToDDB
XLGP_ConvertXLBitmapToDIB
XLGP_CreateCursorFromHandle
XLGP_CreateIconFromBitmap
XLGP_CreateIconFromHandle
XLGP_CursorGetHandle
XLGP_FillLight
XLGP_FineSharpen
XLGP_FlipHorizontal
XLGP_FlipVertical
XLGP_GammaAdjust
XLGP_GifGetFirstFrame
XLGP_GifGetFrame
XLGP_GifGetFrameCount
XLGP_GifGetIntervalAfterFrame
XLGP_GifGetNextFrame
XLGP_GifGetSize
XLGP_IconGetBitmap
XLGP_IconGetHandle
XLGP_IconGetOriginBitmap
XLGP_IconGetSize
XLGP_InitGraphicPlus
XLGP_KeepMyColor
XLGP_LevelAdjust
XLGP_LightnessAdjust
XLGP_LoadBmpFromFile
XLGP_LoadBmpFromStream
XLGP_LoadCursorFromFile
XLGP_LoadCursorFromStream
XLGP_LoadCursorFromStreamEx
XLGP_LoadGifFromFile
XLGP_LoadGifFromStream
XLGP_LoadIconFromFile
XLGP_LoadIconFromFileExt
XLGP_LoadIconFromModule
XLGP_LoadIconFromModuleFile
XLGP_LoadIconFromStream
XLGP_LoadJpegFromFile
XLGP_LoadJpegFromStream
XLGP_LoadOriginBmpFromFile
XLGP_LoadOriginBmpFromStream
XLGP_Lomo
XLGP_LoseColor
XLGP_NegativeFilm
XLGP_PencilSketch
XLGP_PortraitBlur
XLGP_PortraitEnhance
XLGP_PrepareGraphicPlusParam
XLGP_PushBitmap
XLGP_PushBrush
XLGP_PushColor
XLGP_PushColor2
XLGP_PushCursor
XLGP_PushCurve
XLGP_PushFont
XLGP_PushGif
XLGP_PushIcon
XLGP_PushImageList
XLGP_PushImageSeq
XLGP_PushMask
XLGP_PushPen
XLGP_PushTexture
XLGP_RFNegativeImpact
XLGP_RGBAdjust
XLGP_ReduceGrainNoise
XLGP_ReduceISONoise
XLGP_ReduceLight
XLGP_ReduceNightNoise
XLGP_ReduceRedSaturation
XLGP_ReduceYellowSkin
XLGP_RegisterLuaHost
XLGP_ReleaseCursor
XLGP_ReleaseGif
XLGP_ReleaseIcon
XLGP_RemoveFrog
XLGP_RemoveRedEye
XLGP_RemoveStain
XLGP_ReversalFilm
XLGP_Rotate180
XLGP_Rotate270
XLGP_Rotate90
XLGP_SaveIconToIcoFile
XLGP_SaveXLBitmapToBmpFile
XLGP_SaveXLBitmapToJpegFile
XLGP_SaveXLBitmapToPngFile
XLGP_SrcAlphaBlend
XLGP_StudioStyle
XLGP_TVScanLine
XLGP_Texturize
XLGP_UnInitGraphicPlus
XLGP_Vignetting
XLGP_WBCorrection
XLGP_YellowFilter

Sections

.text
Size: 205KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLLuaRuntime.dll
.dll windows:5 windows x86 arch:x86

a3c7e84b81974bc68a2eda53abd09101

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

75:06:b5:d2:91:7a:13:5c:04:e2:29:ee:21:44:9a:8d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

22/02/2017, 00:00

Not After

25/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

45:98:a2:8d:fd:dc:bc:31:de:d0:f2:98:07:c5:a7:43
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

05/01/2016, 00:00

Not After

26/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

02/01/2017, 00:00

Not After

01/04/2028, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

a2:23:10:6e:41:69:47:40:3c:fd:45:10:6c:7f:56:f6:96:06:ec:c6:b8:e6:c3:16:2f:fe:3b:8d:42:9f:bd:36
Signer

Actual PE Digest

a2:23:10:6e:41:69:47:40:3c:fd:45:10:6c:7f:56:f6:96:06:ec:c6:b8:e6:c3:16:2f:fe:3b:8d:42:9f:bd:36

Digest Algorithm

sha256

PE Digest Matches

true

94:43:78:b9:42:14:9a:59:a7:1b:98:12:a4:da:33:ff:b5:60:0d:11
Signer

Actual PE Digest

94:43:78:b9:42:14:9a:59:a7:1b:98:12:a4:da:33:ff:b5:60:0d:11

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\work\xunlei_uiengine\pdb\ProductRelease\XLLuaRuntime\XLLuaRuntime.pdb

Imports

xlfsio

XLFS_Init
XLFS_OpenFile
XLFS_IsEOF
XLFS_ReadFile
XLFS_CloseFile
XLFS_FixPath

kernel32

GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetProcAddress
GetModuleHandleW
InterlockedIncrement
InterlockedDecrement
OpenProcess
InitializeCriticalSection
VirtualQuery
ReadProcessMemory
DisableThreadLibraryCalls
GetModuleFileNameA
FormatMessageA
GetLastError
FreeLibrary
LoadLibraryA
WideCharToMultiByte
MultiByteToWideChar
IsDebuggerPresent
OutputDebugStringW
UnhandledExceptionFilter
GetCurrentThreadId
GetModuleFileNameW
LoadLibraryW
GetTickCount
GetCurrentProcessId
OpenFileMappingA
OpenMutexA
MapViewOfFile
ReleaseMutex
CreateFileMappingA
WaitForSingleObject
CreateMutexA
CloseHandle
UnmapViewOfFile
GetProcessHeap
HeapSetInformation
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
Sleep
InterlockedExchange
SetUnhandledExceptionFilter
QueryPerformanceCounter
DebugBreak
GetSystemTimeAsFileTime

user32

MessageBoxW

msvcp90

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?compare@?$char_traits@D@std@@SAHPBD0I@Z
?_Xlen@_String_base@std@@SAXXZ
?_Move_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Copy_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Xran@_String_base@std@@SAXXZ
?compare@?$char_traits@_W@std@@SAHPB_W0I@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

msvcr90

__clean_type_info_names_internal
_except_handler4_common
_crt_debugger_hook
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_CxxThrowException
_purecall
__CxxFrameHandler3
free
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
memmove_s
wcsncpy
memcpy_s
sprintf
memcpy
memset
atoi
ldiv
_CIsqrt
_i64toa
_atoi64
wcsrchr
strchr
fread
feof
strerror
_errno
fclose
ferror
ungetc
fopen
freopen
getc
__iob_func
fprintf
strstr
fputs
isspace
strtoul
_CIpow
floor
fgets
_setjmp3
exit
longjmp
_pclose
_wfopen
_popen
tmpfile
fscanf
clearerr
fwrite
ftell
fseek
setvbuf
fflush
iscntrl
localeconv
isalnum
isdigit
isalpha
_CIsin
_CIsinh
_CIcos
_CIcosh
_CItan
_CItanh
_CIasin
_CIacos
_CIatan
_CIatan2
ceil
_CIfmod
modf
_CIlog
_CIlog10
_CIexp
frexp
ldexp
rand
srand
_HUGE
strrchr
getenv
strtod
strncat
strcspn
strncpy
_difftime64
_gmtime64
_localtime64
_mktime64
_time64
system
remove
rename
tmpnam
clock
strftime
setlocale
tolower
toupper
isxdigit
isupper
ispunct
islower
memchr
strpbrk
strcoll
_wcsdup
?_query_new_handler@@YAP6AHI@ZXZ
strlen
wcscpy
wcslen
strcpy
?_query_new_mode@@YAHXZ
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit

Exports

Exports

XLLRT_AddLoadLuaFile
XLLRT_AddRefChunk
XLLRT_AddRefEnv
XLLRT_AddRefRunTime
XLLRT_BeginEnumGlobalAPI
XLLRT_BeginEnumGlobalClass
XLLRT_BeginEnumGlobalObject
XLLRT_CheckInt64
XLLRT_CheckXLObject
XLLRT_CheckXLObjectEx
XLLRT_CreateChunk
XLLRT_CreateChunkFromFile
XLLRT_CreateChunkFromModule
XLLRT_CreateEnv
XLLRT_CreateRunTime
XLLRT_DebugCreateLogs
XLLRT_DebugCreateStackMemPool
XLLRT_DebugDesroyStackMemPool
XLLRT_DebugDestroyLogs
XLLRT_DebugDestroyState
XLLRT_DebugGetCallLog
XLLRT_DebugGetCurState
XLLRT_DebugGetDebugeeName
XLLRT_DebugGetDumpList
XLLRT_DebugGetProcessCallLog
XLLRT_DebugGetProcessCurState
XLLRT_DebugGetProcessStackLog
XLLRT_DebugGetStackLog
XLLRT_DebugGetStateFromDump
XLLRT_DebugGetType
XLLRT_DebugInit
XLLRT_DebugLogsPopNextLog
XLLRT_DebugMemPoolGetLogs
XLLRT_DebugOutputLuaStack
XLLRT_DestroyEnv
XLLRT_DestroyRunTime
XLLRT_DoRegisterClass
XLLRT_DumpTable
XLLRT_EndEnum
XLLRT_ErrorHandle
XLLRT_GetAllLuaState
XLLRT_GetChunkName
XLLRT_GetChunkType
XLLRT_GetEnv
XLLRT_GetFunctionAddress
XLLRT_GetInt64
XLLRT_GetLastError
XLLRT_GetLoadLuaFileByIndex
XLLRT_GetLoadLuaFileCount
XLLRT_GetLuaState
XLLRT_GetNextGlobalAPI
XLLRT_GetNextGlobalClass
XLLRT_GetNextGlobalObject
XLLRT_GetOwnerEnv
XLLRT_GetRuntime
XLLRT_GetRuntimeFromLuaState
XLLRT_GetVersion
XLLRT_GetXLObject
XLLRT_GetXLObjectClass
XLLRT_GetXLObjectEx
XLLRT_IsClassRegistered
XLLRT_IsDerivedClass
XLLRT_IsGlobalAPIRegistered
XLLRT_IsGlobalObjRegistered
XLLRT_LuaCall
XLLRT_PrepareChunk
XLLRT_PushInt64
XLLRT_PushXLObject
XLLRT_PushXLObjectEx
XLLRT_RegisterClass
XLLRT_RegisterGlobalAPI
XLLRT_RegisterGlobalObj
XLLRT_RegisterGlobalSetCallback
XLLRT_RegisterInt64
XLLRT_ReleaseChunk
XLLRT_ReleaseEnv
XLLRT_ReleaseRunTime
XLLRT_RemoveClassFunctionHook
XLLRT_RemoveGlobalAPI
XLLRT_RemoveGlobalAPIHook
XLLRT_RemoveGlobalObj
XLLRT_RemoveGlobalObjectFunctionHook
XLLRT_RunChunk
XLLRT_SetClassFunctionHook
XLLRT_SetGlobalAPIHook
XLLRT_SetGlobalObjectFunctionHook
XLLRT_Stat
XLLRT_SwitchRuntimeThread
XLLRT_UnRegisterClass
luaL_addlstring
luaL_addstring
luaL_addvalue
luaL_argerror
luaL_buffinit
luaL_callmeta
luaL_checkany
luaL_checkinteger
luaL_checklstring
luaL_checknumber
luaL_checkoption
luaL_checkstack
luaL_checktype
luaL_checkudata
luaL_error
luaL_findtable
luaL_getmetafield
luaL_gsub
luaL_loadbuffer
luaL_loadfile
luaL_loadstring
luaL_newmetatable
luaL_openlib
luaL_openlibs
luaL_optinteger
luaL_optlstring
luaL_optnumber
luaL_prepbuffer
luaL_pushresult
luaL_ref
luaL_register
luaL_typerror
luaL_unref
luaL_where
lua_atpanic
lua_call
lua_checkstack
lua_close
lua_concat
lua_cpcall
lua_createtable
lua_dump
lua_equal
lua_error
lua_gc
lua_getallocf
lua_getfenv
lua_getfield
lua_gethook
lua_gethookcount
lua_gethookmask
lua_getinfo
lua_getlocal
lua_getmetatable
lua_getstack
lua_gettable
lua_gettop
lua_getupvalue
lua_insert
lua_iscfunction
lua_isnumber
lua_isstring
lua_isuserdata
lua_lessthan
lua_load
lua_loadwithpath
lua_newstate
lua_newthread
lua_newuserdata
lua_next
lua_objlen
lua_pcall
lua_pushboolean
lua_pushcclosure
lua_pushinteger
lua_pushlightuserdata
lua_pushlstring
lua_pushnil
lua_pushnumber
lua_pushstring
lua_pushthread
lua_pushvalue
lua_pushvfstring
lua_rawequal
lua_rawget
lua_rawgeti
lua_rawset
lua_rawseti
lua_remove
lua_replace
lua_resume
lua_setallocf
lua_setfenv
lua_setfield
lua_sethook
lua_setlevel
lua_setlocal
lua_setmetatable
lua_settable
lua_settop
lua_setupvalue
lua_status
lua_toboolean
lua_tocfunction
lua_tointeger
lua_tolstring
lua_tonumber
lua_topointer
lua_tothread
lua_touserdata
lua_type
lua_typename
lua_xmove
lua_yield
luaopen_base
luaopen_debug
luaopen_io
luaopen_math
luaopen_os
luaopen_package
luaopen_string
luaopen_table

Sections

.text
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uestat
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLUE.dll
.dll windows:5 windows x86 arch:x86

5391d09a4e33e49d693dc1a99f9d0468

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

75:06:b5:d2:91:7a:13:5c:04:e2:29:ee:21:44:9a:8d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

22/02/2017, 00:00

Not After

25/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

45:98:a2:8d:fd:dc:bc:31:de:d0:f2:98:07:c5:a7:43
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

05/01/2016, 00:00

Not After

26/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

02/01/2017, 00:00

Not After

01/04/2028, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

39:87:f6:49:a7:06:8e:32:37:b9:e2:ce:e7:33:f0:3c:a6:0c:84:ab:28:04:a6:e8:89:89:52:de:35:dc:79:b8
Signer

Actual PE Digest

39:87:f6:49:a7:06:8e:32:37:b9:e2:ce:e7:33:f0:3c:a6:0c:84:ab:28:04:a6:e8:89:89:52:de:35:dc:79:b8

Digest Algorithm

sha256

PE Digest Matches

true

70:57:e7:0e:44:b3:a7:3d:ad:a7:7e:da:bd:c1:3a:cb:53:a4:5d:c3
Signer

Actual PE Digest

70:57:e7:0e:44:b3:a7:3d:ad:a7:7e:da:bd:c1:3a:cb:53:a4:5d:c3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\work\xunlei_uiengine\pdb\ProductRelease\XLUE\XLUE.pdb

Imports

xlgraphic

XL_CreateBindBitmap
XL_EnableShadow
XL_SetShadowOffset
XL_SetShadowColor
XL_SetTextEffectType
XL_SetTextLRGap
XL_PaintTexture
XL_GetBitmapBuffer
XL_GetImageCount
XL_GetImageListBitmap
XL_ReleaseImageList
XL_ExtractBitmap
XL_SetImageListBitmap
XL_ReleaseCurve
XL_GetCurveProgress
XL_AddCurveControlPoint
XL_RGB2HSL
XL_AdjustColor
XL_SetPenColor
XL_SetBrushColor
XL_GetLogBrush
XL_ReleasePen
XL_GetLogPen
XL_GetTextureType
XL_GetTextureBitmap
XL_ReleaseTexture
XL_RemoveTextureBlock
XL_AddTextureBlock
XL_SetTextureRect
XL_SetTextureBitmap
XL_ReleaseTextEnv
XL_GetTextBorderWidth
XL_SetTextBorderWidth
XL_GetTextEffectColor
XL_SetTextEffectColor
XL_GetMultilineTextExtent
XL_GetSinglelineTextExtent
XL_GetLineGap
XL_SetLineGap
XL_GetTextCharacterExtra
XL_SetTextCharacterExtra
XL_GetTextAlignment
XL_SetTextAlignment
XL_GetTextFont
XL_SetTextFont
XL_GetBknMode
XL_SetBknMode
XL_GetBknColor
XL_SetBknColor
XL_GetTextColor
XL_SetTextColor
XL_GetTextType
XL_SetTextType
XL_GetLogFont
XL_GetBitmapChanel
XL_GetBitmapMainColor
XL_TabbedTextOut
XL_DrawMultilineText
XL_DrawSinglelineText
XL_DrawEllipse
XL_DrawPolygon
XL_DrawRectangle
XL_DrawLine
XL_StretchBitmap
XL_StretchBlend
XL_GetDefaultFont
XL_DefaultGraphicHint
XL_Blend
XL_IsBitmapOwnerBuffer
XL_GetBitmapInfo
XL_FillBitmap
XL_CloneBitmap
XL_ClipSubBindBitmap
XL_ReleaseMask
XL_CreateSubMask
XL_GetMaskSize
XL_BuildMaskCache
XL_GetMaskSourceChanel
XL_BindMaskSource
XL_GetMaskSource
XL_GetMaskSourceType
XL_ImageSeqAddImage
XL_ImageSeqEndAddImage
XL_ImageSeqBeginAddImage
XL_ImageSeqGetCount
XL_ImageSeqGetImageByIndex
XL_AdjustBitmapColor
XL_TransRect
XL_TransKeepCentreRect
XL_TransGetDestBmpSize
XL_TransPoint
XL_ReleaseTrans
XL_AddSubTrans
XL_SetTransDistDisp2obs
XL_DoTrans
XL_AddRefImageSeq
XL_AddRefBrush
XL_AddRefPen
XL_ReleaseBrush
XL_BindExpObject
XL_BindExpRect
XL_DeleteExp
XL_EqualRect
XL_GetExpValue
XL_CaclExp
XL_CloneEXP
XL_SetExp
XL_CreateExp
XL_GetExpString
XL_GetCurveControlPoint
XL_GetCurveControlPointCount
XL_CloneTrans
XL_SetMaskSize
XL_AddRefMask
XL_SetFreeTypeEnabled
XL_SetConfigFontName
XL_IsSupportFont
XL_GetDefaultFaceName
XL_CreateStretchTrans
XL_CreateTransferTrans
XL_CreateRotateTrans
XL_AddRefTrans
XL_AddRefTextEnv
XL_AddRefImageList
XL_AddRefFont
XL_AddRefTexture
XL_AddRefCurve
XL_AddRefBitmap
XL_CreatePen
XL_CreateBrush
XL_CreateImageList
XL_CreateTexture
XL_CreateTextEnv
XL_CreateTextEnv2
XL_CreateFont
XL_ReleaseFont
XL_CreateCurve
XL_LoadBitmapFromFile
XL_CreateBitmap
XL_ReleaseBitmap
XL_PaintBitmap
XL_SetMaskBmpStretch
XL_CreateImageSeq
XL_DeleteFont
XL_SetTextureOrigin
XL_FillBlend
XL_ReleaseImageSeq
XL_NewMask

xlluaruntime

XLLRT_DebugDesroyStackMemPool
XLLRT_DebugDestroyLogs
XLLRT_DebugLogsPopNextLog
XLLRT_DebugMemPoolGetLogs
XLLRT_DebugCreateLogs
XLLRT_DebugOutputLuaStack
XLLRT_DebugCreateStackMemPool
XLLRT_ReleaseRunTime
XLLRT_GetLuaState
XLLRT_ReleaseEnv
XLLRT_GetRuntime
lua_pcall
XLLRT_RunChunk
XLLRT_AddRefEnv
XLLRT_CreateChunk
XLLRT_CreateChunkFromModule
XLLRT_CreateChunkFromFile
XLLRT_AddRefRunTime
lua_remove
XLLRT_AddRefChunk
XLLRT_DoRegisterClass
XLLRT_GetRuntimeFromLuaState
XLLRT_PrepareChunk
lua_newuserdata
lua_setmetatable
XLLRT_ReleaseChunk
XLLRT_GetEnv
XLLRT_CreateRunTime
XLLRT_CreateEnv
XLLRT_DestroyEnv
XLLRT_DestroyRunTime
lua_gc
lua_pushnil
luaL_checklstring
lua_tolstring
luaL_checkudata
XLLRT_PushXLObject
XLLRT_RegisterGlobalObj
lua_touserdata
lua_pushstring
lua_pushinteger
lua_insert
lua_gettable
lua_tonumber
lua_getmetatable
lua_rawequal
lua_isuserdata
lua_next
lua_getfield
XLLRT_LuaCall
lua_pushthread
XLLRT_RegisterGlobalAPI
lua_createtable
lua_setfield
lua_rawgeti
lua_settop
lua_isstring
lua_gettop
luaL_checknumber
lua_pushnumber
lua_pushlightuserdata
XLLRT_RegisterClass
lua_tointeger
lua_pushvalue
luaL_ref
luaL_unref
lua_type
lua_toboolean
lua_isnumber
lua_pushboolean
luaL_checkinteger

imm32

ImmGetCompositionFontW
ImmSetCompositionWindow
ImmAssociateContext
ImmAssociateContextEx
ImmSetCompositionFontW
ImmGetContext
ImmReleaseContext

xlfsio

XLFS_CloseDirectory
XLFS_UpdateCacheFile
XLFS_MountDir
XLFS_FileExists
XLFS_IsEOF
XLFS_CloseFile
XLFS_OpenFile
XLFS_GetFileSize
XLFS_ReadFile
XLFS_DirExists
XLFS_ReadDirectory
XLFS_OpenDirectory
XLFS_ReleaseStream
XLFS_CreateStreamFromMountFile
XLFS_UnMount
XLFS_Init

kernel32

CreateFileW
SetFilePointer
SetEndOfFile
DeleteFileW
FlushFileBuffers
GetLastError
WriteFile
GetLocalTime
CloseHandle
InitializeCriticalSection
HeapAlloc
VirtualProtect
GetCurrentThreadId
SetLastError
GetCurrentProcess
FlushInstructionCache
GetProcessHeap
GetUserDefaultLCID
LeaveCriticalSection
EnterCriticalSection
RaiseException
GetModuleHandleW
GetProcAddress
DeleteCriticalSection
ResumeThread
SetThreadPriority
FreeLibrary
GetSystemDirectoryW
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
CopyFileW
CreateDirectoryW
GetTempPathW
GetModuleFileNameW
CreateMutexW
WriteProcessMemory
VirtualProtectEx
GetCurrentProcessId
TlsSetValue
TlsGetValue
InterlockedIncrement
InterlockedDecrement
WaitForSingleObject
lstrlenW
GlobalFree
GetVersionExW
SizeofResource
LoadResource
FindResourceW
EnumResourceNamesW
SetEvent
ResetEvent
CreateEventW
HeapSetInformation
HeapCreate
HeapDestroy
HeapReAlloc
HeapSize
WideCharToMultiByte
MultiByteToWideChar
IsDebuggerPresent
OutputDebugStringW
DebugBreak
UnmapViewOfFile
VirtualQuery
ReleaseMutex
LocalFree
MapViewOfFileEx
CreateFileMappingW
OpenFileMappingW
GetFileSize
ReadFile
LockResource
FreeResource
AddAtomW
GetSystemTimeAsFileTime
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetTickCount
CreateProcessW
OpenMutexW
TlsAlloc
MulDiv
Sleep
InterlockedExchange
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
HeapFree
LoadLibraryW

user32

GetClassInfoExW
LoadCursorW
OffsetRect
SetRectEmpty
IntersectRect
IsWindow
ShowWindow
GetFocus
SetFocus
GetWindowDC
ReleaseDC
IsRectEmpty
DefWindowProcW
DestroyWindow
SetWindowLongW
GetWindowLongW
CallWindowProcW
CreateWindowExW
GetWindow
SetCursor
EqualRect
CopyRect
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
IsChild
PostMessageW
SendMessageW
PtInRect
GetWindowRect
GetCursorPos
TrackMouseEvent
ScreenToClient
IsWindowEnabled
WindowFromPoint
GetMessagePos
SetTimer
KillTimer
MoveWindow
SetWindowPos
SetParent
wsprintfW
GetDC
GetSysColor
RegisterClassExW
GetParent
GetClassNameW
GetAncestor
RegisterClipboardFormatW
IsClipboardFormatAvailable
GetSystemMetrics
CreateIconFromResourceEx
LookupIconIdFromDirectoryEx
SetRect
UnionRect
MonitorFromRect
DestroyAcceleratorTable
GetWindowPlacement
MapWindowPoints
GetClientRect
DialogBoxIndirectParamW
EndDialog
DispatchMessageW
TranslateMessage
GetMessageW
PeekMessageW
MonitorFromPoint
GetDoubleClickTime
RedrawWindow
GetWindowRgn
DeferWindowPos
GetClassLongW
PrintWindow
GetWindowTextW
GetWindowTextLengthW
CharNextW
GetMonitorInfoW
RegisterWindowMessageW
InvalidateRect
EndPaint
BeginPaint
GetActiveWindow
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SystemParametersInfoW
SetActiveWindow
SetCapture
GetCapture
ReleaseCapture
ClientToScreen
UpdateLayeredWindow
IsZoomed
IsIconic
EnableWindow
SetWindowTextW
SetLayeredWindowAttributes
SetWindowRgn
BringWindowToTop
GetKeyState
SetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetCaretBlinkTime
UnregisterClassA
CreateAcceleratorTableW

gdi32

GetStockObject
GetObjectW
GetTextMetricsW
CombineRgn
CreateRectRgnIndirect
GetRgnBox
GetCurrentObject
GetDeviceCaps
CopyMetaFileW
CreateSolidBrush
StretchBlt
GetRegionData
SelectClipRgn
SetStretchBltMode
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
DeleteDC
SetWindowOrgEx
CreateDIBSection
BitBlt
DeleteObject
ExtCreateRegion
PtInRegion
OffsetRgn
CreateRoundRectRgn
GetClipBox
CreateRectRgn
CreateFontIndirectW
PatBlt

advapi32

GetSecurityDescriptorLength
GetSecurityDescriptorDacl
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetSecurityDescriptorGroup
GetSecurityDescriptorOwner
GetSecurityDescriptorControl
MakeSelfRelativeSD
GetSecurityDescriptorSacl

ole32

OleLockRunning
CoCreateInstance
CLSIDFromProgID
CoUninitialize
CoInitialize
DoDragDrop
RegisterDragDrop
RevokeDragDrop
CoGetClassObject
CLSIDFromString
CreateStreamOnHGlobal
OleDuplicateData
ReleaseStgMedium
CoTaskMemAlloc
CoTaskMemFree
OleGetClipboard
OleSetClipboard
CoGetMalloc
StgCreateDocfile

oleaut32

SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysStringLen
SysAllocString
VariantClear
VariantCopy
VarBstrCmp
VariantInit

atl90

ord41
ord43
ord44
ord27
ord30
ord28
ord32
ord59
ord42
ord31

shlwapi

PathCombineW
PathIsDirectoryW
PathIsRelativeW
PathCanonicalizeW
PathFindFileNameW
PathRemoveExtensionW
PathAppendW
PathFileExistsW
PathRemoveFileSpecW
PathFindExtensionW

msvcp90

?max@?$numeric_limits@I@std@@SAIXZ
?copy@?$char_traits@D@std@@SAPADPADPBDI@Z
?to_char_type@?$char_traits@D@std@@SADABH@Z
?assign@?$char_traits@_W@std@@SAPA_WPA_WI_W@Z
?find@?$char_traits@_W@std@@SAPB_WPB_WIAB_W@Z
?eq@?$char_traits@_W@std@@SA_NAB_W0@Z
?find@?$char_traits@D@std@@SAPBDPBDIABD@Z
?compare@?$char_traits@_W@std@@SAHPB_W0I@Z
?length@?$char_traits@_W@std@@SAIPB_W@Z
?length@?$char_traits@D@std@@SAIPBD@Z
?_Xlen@_String_base@std@@SAXXZ
?_Xran@_String_base@std@@SAXXZ
?assign@?$char_traits@D@std@@SAXAADABD@Z
?_Copy_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?_Move_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?compare@?$char_traits@D@std@@SAHPBD0I@Z
?assign@?$char_traits@_W@std@@SAXAA_WAB_W@Z
?_Copy_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Move_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z

msvcr90

fopen
fread
fclose
strtol
_wtoi
fabs
__CxxFrameHandler3
_CxxThrowException
memcmp
_recalloc
free
swprintf_s
strncpy
ldiv
??0exception@std@@QAE@ABV01@@Z
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
strncmp
__RTDynamicCast
sprintf
strcmp
_stricmp
strlen
wcscpy
sscanf
atoi
wcslen
memset
memmove_s
wcsncpy
_strnicmp
atol
rand
srand
memcpy
_vswprintf_c_l
swscanf
wcscmp
_wcsicmp
_time64
strcpy
atof
?_query_new_handler@@YAP6AHI@ZXZ
_beginthreadex
?_query_new_mode@@YAHXZ
malloc
memcpy_s
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_purecall

libexpat

ord35
ord21
ord63
ord16
ord48
ord2
ord52
ord20
ord12
ord25
ord50

shell32

SHAppBarMessage

gdiplus

GdipCreateBitmapFromScan0
GdipDeleteGraphics
GdipDrawImageRectI
GdipDrawImageRectRectI
GdipFree
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateFromHDC
GdipCloneImage
GdipDisposeImage
GdipCreateBitmapFromGdiDib
GdipAlloc

Exports

Exports

XLI18N_ActiveLocation
XLI18N_GetActiveLocationID
XLI18N_GetLanguagePackage
XLI18N_GetRootDir
XLI18N_GetSupportLocationList
XLI18N_GetTextIDAssertMode
XLI18N_Init
XLI18N_IsSupportLocation
XLI18N_LoadText
XLI18N_LoadTextFromPackage
XLI18N_PreloadLanguagePackage
XLI18N_RegisterLocationChangeEvent
XLI18N_RegisterLuaClass
XLI18N_ReleaseLanguagePackage
XLI18N_RemoveLocationChangeEvent
XLI18N_SetTextIDAssertMode
XLI18N_UnloadLanguagePackage
XLUE_AddObjChild
XLUE_AddRefAnimation
XLUE_AddRefResRealHandle
XLUE_AddRefResource
XLUE_AddXARSearchPath
XLUE_AlphaChagneAniSetKeyAlpha
XLUE_AlphaChangAniBindRenderObj
XLUE_AngleChangeAniBindRenderObj
XLUE_AngleChangeAniSetKeyAngle
XLUE_AngleChangeAniSetKeyRange
XLUE_AniBindCurve
XLUE_AniBindCurveID
XLUE_AniGetCurve
XLUE_AniGetCurveID
XLUE_AsynLoadXAR
XLUE_B3DAniSetBlendMode
XLUE_B3DAniSetCentrePoint
XLUE_B3DAniSetCentrePointMode
XLUE_B3DAniSetDistanceDisp2Obs
XLUE_B3DAniSetPositionMode
XLUE_B3DAniSetSizeLimitMode
XLUE_B3DAniSetZPlane
XLUE_BeginEnumHostWnd
XLUE_BindUIObjectTree
XLUE_CanObjHandleInput
XLUE_CenterHostWnd
XLUE_CheckBitmap
XLUE_CheckBrush
XLUE_CheckColor
XLUE_CheckColor2
XLUE_CheckCurve
XLUE_CheckFont
XLUE_CheckImageList
XLUE_CheckImageSeq
XLUE_CheckMask
XLUE_CheckObject
XLUE_CheckObjectEx
XLUE_CheckPen
XLUE_CheckRes
XLUE_CheckResEx
XLUE_CheckTexture
XLUE_ClearAllXARSearchPath
XLUE_ClearLuaObj
XLUE_CreateAnimation
XLUE_CreateHostWnd
XLUE_CreateObj
XLUE_CreateObjTree
XLUE_DeleteHostWnd
XLUE_DestoryObj
XLUE_DestroyObjTree
XLUE_DoMessageLoopWork
XLUE_EnableObjInputTarget
XLUE_FireExtObjEvent
XLUE_GC
XLUE_GetAnimationClassName
XLUE_GetAnimationRunningTime
XLUE_GetAnimationState
XLUE_GetBindUIObjectTree
XLUE_GetBitmap
XLUE_GetBitmapFromProvider
XLUE_GetBrush
XLUE_GetBrushFromProvider
XLUE_GetColor
XLUE_GetColorFromProvider
XLUE_GetControlObject
XLUE_GetControlObjectEx
XLUE_GetCurve
XLUE_GetCurveFromProvider
XLUE_GetExtHandle
XLUE_GetFont
XLUE_GetFontFromProvider
XLUE_GetGlobalResProvider
XLUE_GetHostWndAppWindow
XLUE_GetHostWndByHandle
XLUE_GetHostWndByID
XLUE_GetHostWndCacheRect
XLUE_GetHostWndClassName
XLUE_GetHostWndCursorID
XLUE_GetHostWndEnable
XLUE_GetHostWndID
XLUE_GetHostWndLayered
XLUE_GetHostWndMaxTrackSize
XLUE_GetHostWndMinTrackSize
XLUE_GetHostWndParent
XLUE_GetHostWndRect
XLUE_GetHostWndTitle
XLUE_GetHostWndToolWindow
XLUE_GetHostWndTopMost
XLUE_GetHostWndVisible
XLUE_GetHostWndWindowHandle
XLUE_GetImageList
XLUE_GetImageListFromProvider
XLUE_GetImageObjBitmap
XLUE_GetImageObjResID
XLUE_GetImageSeq
XLUE_GetImageSeqFromProvider
XLUE_GetKeyAnimationTotalTime
XLUE_GetLayerObjClipSens
XLUE_GetLuaStack
XLUE_GetNextHostWnd
XLUE_GetObjAbsPos
XLUE_GetObjAbsZorder
XLUE_GetObjCaptureMouse
XLUE_GetObjCaretLimitRect
XLUE_GetObjChild
XLUE_GetObjChildByCmd
XLUE_GetObjChildByID
XLUE_GetObjChildCount
XLUE_GetObjChildrenEnable
XLUE_GetObjChildrenVisible
XLUE_GetObjClassName
XLUE_GetObjCursorID
XLUE_GetObjDropEnable
XLUE_GetObjEnable
XLUE_GetObjFather
XLUE_GetObjFatherEnable
XLUE_GetObjFatherVisible
XLUE_GetObjFocus
XLUE_GetObjFocusStrategy
XLUE_GetObjID
XLUE_GetObjInheritMask
XLUE_GetObjLimitRect
XLUE_GetObjMaskBlendType
XLUE_GetObjMaskPos
XLUE_GetObjOwner
XLUE_GetObjPos
XLUE_GetObjPrivateEnable
XLUE_GetObjPrivateVisible
XLUE_GetObjResProvider
XLUE_GetObjTabGroup
XLUE_GetObjTabOrder
XLUE_GetObjTabStop
XLUE_GetObjTree
XLUE_GetObjTreeBindHostWnd
XLUE_GetObjTreeCaptureMouseObj
XLUE_GetObjTreeFocusObj
XLUE_GetObjTreeID
XLUE_GetObjTreeObjectCount
XLUE_GetObjTreeRootObj
XLUE_GetObjVisible
XLUE_GetObjZorder
XLUE_GetOwnerControl
XLUE_GetPen
XLUE_GetPenFromProvider
XLUE_GetRealObjHostWindow
XLUE_GetRealObjWindow
XLUE_GetRenderObjAlpha
XLUE_GetRes
XLUE_GetResExtHandle
XLUE_GetResFromProvider
XLUE_GetResID
XLUE_GetResProviderFromXAR
XLUE_GetResRealHandle
XLUE_GetResType
XLUE_GetTexture
XLUE_GetTextureFromProvider
XLUE_GetUIObject
XLUE_GetUpdateFPS
XLUE_GetWindowBitmap
XLUE_HitTest
XLUE_HostWndCreateWnd
XLUE_HostWndDestroyWnd
XLUE_HostWndDoModal
XLUE_HostWndEndDialog
XLUE_HostWndPtToScreenPt
XLUE_HostWndPtToTreePt
XLUE_HostWndRectToScreenRect
XLUE_HostWndRectToTreeRect
XLUE_Init
XLUE_InitLoader
XLUE_InitLuaHost
XLUE_IsAnimationValid
XLUE_IsChild
XLUE_IsControl
XLUE_IsHostWndValid
XLUE_IsObjLimit
XLUE_IsObjLimitChild
XLUE_IsObjTreeValid
XLUE_IsObjValid
XLUE_IsResProviderValid
XLUE_IsXARInAsynLoading
XLUE_IsXARLoaded
XLUE_KillTimer
XLUE_LoadXAR
XLUE_LoadXLUEApp
XLUE_MaskChangeAniBindMaskObj
XLUE_MaskChangeAniGetBindMaskObj
XLUE_MaskChangeAniSetMaskKeyFrame
XLUE_MaxHostWnd
XLUE_MinHostWnd
XLUE_MoveHostWnd
XLUE_ObjBindLayer
XLUE_ObjGetLayer
XLUE_ObjHitTest
XLUE_ObjPaint
XLUE_ObjProcessInput
XLUE_ObjPushDirtyRect
XLUE_ObjRouteToFather
XLUE_ObjSetDefaultRediretorByEvent
XLUE_ObjSetRediretorByEvent
XLUE_PosChangAniBindLayoutObj
XLUE_PosChangeAniSetKeyPos
XLUE_PosChangeAniSetKeyRect
XLUE_PreRegisterExtType
XLUE_PushBitmap
XLUE_PushBrush
XLUE_PushColor
XLUE_PushColor2
XLUE_PushCurve
XLUE_PushFont
XLUE_PushImageList
XLUE_PushImageSeq
XLUE_PushMask
XLUE_PushObjTreeDirtyRect
XLUE_PushObject
XLUE_PushPen
XLUE_PushRes
XLUE_PushTexture
XLUE_QueryObjFocus
XLUE_QueryTimer
XLUE_RegisterAnimation
XLUE_RegisterExtObj
XLUE_RegisterExtRes
XLUE_RegisterHostWnd
XLUE_RegisterMessageLoopListener
XLUE_RegisterResource
XLUE_RegisterStandardObjects
XLUE_ReleaseAnimation
XLUE_ReleaseResRealHandle
XLUE_ReleaseResource
XLUE_RemoveGlobalHook
XLUE_RemoveObjAllChildren
XLUE_RemoveObjChild
XLUE_RemoveXARSearchPath
XLUE_RenderObject
XLUE_RenderTree
XLUE_ResProviderAttachResEvent
XLUE_ResProviderDetachResEvent
XLUE_RestoreHostWnd
XLUE_ResumeAnimation
XLUE_ScreenPtToHostWndPt
XLUE_ScreenRectToHostWndRect
XLUE_SelectResPackage
XLUE_SetDS
XLUE_SetGlobalHook
XLUE_SetHostWndAppWindow
XLUE_SetHostWndCacheRect
XLUE_SetHostWndCursorID
XLUE_SetHostWndEnable
XLUE_SetHostWndLayered
XLUE_SetHostWndMaxTrackSize
XLUE_SetHostWndMinTrackSize
XLUE_SetHostWndParent
XLUE_SetHostWndTitle
XLUE_SetHostWndToolWindow
XLUE_SetHostWndTopMost
XLUE_SetHostWndVisible
XLUE_SetIDTimer
XLUE_SetImageObjBitmap
XLUE_SetImageObjResID
XLUE_SetKeyAnimationBindObj
XLUE_SetKeyAnimationForceStop
XLUE_SetKeyAnimationLoop
XLUE_SetKeyAnimationTotalTime
XLUE_SetLayerObjClipSens
XLUE_SetLoadStrategy
XLUE_SetObjCaptureMouse
XLUE_SetObjChildrenEnable
XLUE_SetObjChildrenVisible
XLUE_SetObjCursorID
XLUE_SetObjDropEnable
XLUE_SetObjEnable
XLUE_SetObjEnableEx
XLUE_SetObjFocus
XLUE_SetObjFocusEx
XLUE_SetObjFocusStrategy
XLUE_SetObjID
XLUE_SetObjInheritMask
XLUE_SetObjLimit
XLUE_SetObjLimitChild
XLUE_SetObjMaskBlendType
XLUE_SetObjMaskPos
XLUE_SetObjMaskPosExp
XLUE_SetObjMaskPosExp2
XLUE_SetObjPos
XLUE_SetObjPosExp
XLUE_SetObjPosExp2
XLUE_SetObjResProvider
XLUE_SetObjTabGroup
XLUE_SetObjTabOrder
XLUE_SetObjTabStop
XLUE_SetObjTreeRootObj
XLUE_SetObjVisible
XLUE_SetObjZorder
XLUE_SetOnceIDTimer
XLUE_SetOnceTimer
XLUE_SetRealObjWindow
XLUE_SetRenderObjAlpha
XLUE_SetRenderObjAlphaEx
XLUE_SetTextObjectDefaultTextType
XLUE_SetTimer
XLUE_SetTreeMaxClosure
XLUE_SetUpdateFPS
XLUE_ShowHostWnd
XLUE_Stat
XLUE_StopAnimation
XLUE_TreePtToHostWndPt
XLUE_TreeRectToHostWndRect
XLUE_TurnObjectAniBindBackObj
XLUE_TurnObjectAniBindFrontObj
XLUE_TurnObjectAniBindRenderObj
XLUE_TurnObjectAniSetFlag
XLUE_UnbindUIObjectTree
XLUE_Uninit
XLUE_UninitHandleMap
XLUE_UninitLoader
XLUE_UninitLuaHost
XLUE_UnloadAllXAR
XLUE_UnregisterMessageLoopListener
XLUE_UpdateAnimationRunningTime
XLUE_VerifyXAR
XLUE_VerifyXAR2
XLUE_XARExist
XLUE_XML_BeginGetAttribute
XLUE_XML_Free
XLUE_XML_GetChildByIndex
XLUE_XML_GetChildCount
XLUE_XML_GetName
XLUE_XML_GetNextAttribute
XLUE_XML_GetValue

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 401KB - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 182KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uestat
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uestr
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLUEIPC.dll
.dll windows:5 windows x86 arch:x86

06050fb0e140b10ec7a2d0e07e7b8756

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:25:07:1d:f9:af
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/11/2009, 10:00

Not After

18/03/2019, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

68:39:2e:6e:1f:ea:72:e0:4c:0e:0e:02
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

18/10/2017, 11:24

Not After

26/06/2018, 10:11

Subject

SERIALNUMBER=91440300746612636Q,CN=深圳市迅雷网络技术有限公司,OU=Operating Dept.,O=深圳市迅雷网络技术有限公司,STREET=南山区粤海街道科技中二路深圳软件园11号楼7、8层,L=SHENZHEN,ST=GUANGDONG,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085348454e5a48454e,1.3.6.1.4.1.311.60.2.1.2=#13094755414e47444f4e47,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:25:07:1d:f9:af
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/11/2009, 10:00

Not After

18/03/2019, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

68:39:2e:6e:1f:ea:72:e0:4c:0e:0e:02
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

18/10/2017, 11:24

Not After

26/06/2018, 10:11

Subject

SERIALNUMBER=91440300746612636Q,CN=深圳市迅雷网络技术有限公司,OU=Operating Dept.,O=深圳市迅雷网络技术有限公司,STREET=南山区粤海街道科技中二路深圳软件园11号楼7、8层,L=SHENZHEN,ST=GUANGDONG,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085348454e5a48454e,1.3.6.1.4.1.311.60.2.1.2=#13094755414e47444f4e47,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

11:21:b4:55:35:1e:bb:1a:b2:4f:97:ef:07:fe:2a:b3:0b:8a
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for Standard - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

08:0e:91:d7:ed:81:22:85:ec:18:54:50:d8:39:a2:71:41:ca:fe:19:1e:8d:48:df:8c:b9:9f:f1:85:28:60:63
Signer

Actual PE Digest

08:0e:91:d7:ed:81:22:85:ec:18:54:50:d8:39:a2:71:41:ca:fe:19:1e:8d:48:df:8c:b9:9f:f1:85:28:60:63

Digest Algorithm

sha256

PE Digest Matches

true

d6:28:50:d9:58:a3:c6:4c:e8:5c:9e:6e:5d:1b:38:23:16:c1:b9:db
Signer

Actual PE Digest

d6:28:50:d9:58:a3:c6:4c:e8:5c:9e:6e:5d:1b:38:23:16:c1:b9:db

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\work\xunlei_uiengine\pdb\ProductRelease\XLUEIPC\XLUEIPC.pdb

Imports

kernel32

SetLastError
GetTickCount
GetLastError
LocalFree
CloseHandle
MapViewOfFileEx
CreateFileMappingW
OpenFileMappingW
UnmapViewOfFile
CreateMutexW
OpenMutexW
WaitForSingleObject
ReleaseMutex
RaiseException
OpenProcess
GetProcessHeap
HeapSetInformation
HeapCreate
HeapDestroy
HeapAlloc
GetCurrentProcess
HeapFree
HeapSize
MultiByteToWideChar
WideCharToMultiByte
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
Sleep
InterlockedExchange
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
FlushInstructionCache
GetModuleHandleW
GetProcAddress
GetVersionExW
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
HeapReAlloc
InterlockedIncrement

user32

MoveWindow
GetWindowThreadProcessId
CharNextW
GetMessageW
TranslateMessage
IsWindow
DestroyWindow
DefWindowProcW
SetWindowLongW
GetWindowLongW
CallWindowProcW
FindWindowW
PostMessageW
SendMessageTimeoutW
RegisterClassExW
CreateWindowExW
GetClassInfoExW
LoadCursorW
RegisterWindowMessageW
SetTimer
KillTimer
DispatchMessageW
UnregisterClassA

advapi32

GetSecurityDescriptorOwner
GetSecurityDescriptorDacl
GetSecurityDescriptorSacl
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetSecurityDescriptorControl
MakeSelfRelativeSD
GetSecurityDescriptorLength
GetSecurityDescriptorGroup

atl90

ord44
ord43

msvcp90

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Move_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Copy_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?length@?$char_traits@_W@std@@SAIPB_W@Z
?_Move_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?_Copy_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?compare@?$char_traits@D@std@@SAHPBD0I@Z
?_Xran@_String_base@std@@SAXXZ
?_Xlen@_String_base@std@@SAXXZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

msvcr90

__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_amsg_exit
_initterm_e
_initterm
_encoded_null
__CxxFrameHandler3
memcpy
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
ldiv
memset
_purecall
_itow
memmove_s
_recalloc
swprintf_s
strcmp
strlen
rand
srand
free
malloc
memcpy_s
strcpy
wcscpy
wcslen
strncpy
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
sscanf
sprintf
_except_handler4_common
_unlock
__dllonexit
_encode_pointer

xlluaruntime

XLLRT_RegisterClass
luaL_checkudata
lua_next
lua_touserdata
lua_pushlightuserdata
lua_pushboolean
lua_pushnumber
lua_pushstring
lua_toboolean
lua_tonumber
lua_newuserdata
lua_createtable
lua_settable
lua_objlen
XLLRT_PushXLObject
lua_pushnil
XLLRT_RegisterGlobalObj
lua_pushvalue
luaL_argerror
lua_tolstring
luaL_checklstring
lua_tointeger
lua_type
lua_pushinteger
lua_settop
lua_gettop
luaL_ref
XLLRT_LuaCall
luaL_unref
lua_rawgeti
lua_isuserdata

Exports

Exports

XLIPC_AcceptSession
XLIPC_AddRefInterface
XLIPC_AddRefServer
XLIPC_AsynAcceptSession
XLIPC_AsynCall
XLIPC_AsynCallReply
XLIPC_AsynConnectChannel
XLIPC_AsynConnectServer
XLIPC_AsynSendData
XLIPC_AsynSignalAndCallBack
XLIPC_CheckServerFromLua
XLIPC_CheckSessionFromLua
XLIPC_ClearAllMethods
XLIPC_CloseChannel
XLIPC_CloseServer
XLIPC_CloseSession
XLIPC_CreateChannel
XLIPC_CreateInterface
XLIPC_CreateSession
XLIPC_CreateStream
XLIPC_GetChannelAliveTimeout
XLIPC_GetChannelID
XLIPC_GetChannelStatus
XLIPC_GetServerCallback
XLIPC_GetServerIsWorking
XLIPC_GetSessionAliveTimeout
XLIPC_GetSessionCallBack
XLIPC_GetSessionInterface
XLIPC_GetSessionStatus
XLIPC_GetSessionTimeout
XLIPC_NewSession
XLIPC_PushServerToLua
XLIPC_PushSessionToLua
XLIPC_QueryMethod
XLIPC_QuerySessionInterface
XLIPC_QuerySessionRemoteInterface
XLIPC_QuerySessionRemoteMethod
XLIPC_RegisterLuaHost
XLIPC_RegisterMethod
XLIPC_RegisterMethodEx
XLIPC_RegisterMethods
XLIPC_RegisterSessionInterface
XLIPC_ReleaseInterface
XLIPC_ReleaseServer
XLIPC_SessionChannelOnDisconnect
XLIPC_SessionChannelOnRevData
XLIPC_SetChannelAliveTimeout
XLIPC_SetChannelCallBack
XLIPC_SetChannelStatus
XLIPC_SetChannelTimeout
XLIPC_SetSessionAliveTimeout
XLIPC_SetSessionCallBack
XLIPC_SetSessionStatus
XLIPC_SetSessionTimeout
XLIPC_StartServer
XLIPC_StreamAddRef
XLIPC_StreamClear
XLIPC_StreamDecode
XLIPC_StreamEncode
XLIPC_StreamGetParamType
XLIPC_StreamReadBoolean
XLIPC_StreamReadByte
XLIPC_StreamReadBytes
XLIPC_StreamReadDWord
XLIPC_StreamReadDouble
XLIPC_StreamReadInt
XLIPC_StreamReadInt64
XLIPC_StreamReadLong
XLIPC_StreamReadStream
XLIPC_StreamReadString
XLIPC_StreamReadWString
XLIPC_StreamReadWord
XLIPC_StreamRelease
XLIPC_StreamWriteBoolean
XLIPC_StreamWriteByte
XLIPC_StreamWriteBytes
XLIPC_StreamWriteDWord
XLIPC_StreamWriteDouble
XLIPC_StreamWriteInt
XLIPC_StreamWriteInt64
XLIPC_StreamWriteLong
XLIPC_StreamWriteStream
XLIPC_StreamWriteString
XLIPC_StreamWriteWString
XLIPC_StreamWriteWord
XLIPC_SyncCall
XLIPC_SyncCallReply
XLIPC_SyncCallReplyTimeout
XLIPC_SyncCallTimeout
XLIPC_SyncConnectChannel
XLIPC_SyncConnectServer
XLIPC_SyncSendData
XLIPC_SyncSignalAndWait
XLIPC_UnRegisterMethod
XLIPC_UnRegisterSessionInterface

Sections

.text
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLUEOPC.dll
.dll windows:5 windows x86 arch:x86

fb46be335b19f54253fb4d80a43d37b2

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

22:92:48:99:cd:fc:a0:ab:28:cf:2f:91:c8:f2:24:8b
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

16/06/2015, 00:00

Not After

25/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

5e:5f:69:7b:ba:70:5f:d0:ba:ee:b8:21:09:71:51:48:46:b2:56:15
Signer

Actual PE Digest

5e:5f:69:7b:ba:70:5f:d0:ba:ee:b8:21:09:71:51:48:46:b2:56:15

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\work\xunlei_uiengine\pdb\ProductRelease\XLUEOPC\XLUEOPC.pdb

Imports

xlueipc

XLIPC_SetSessionCallBack
XLIPC_AcceptSession
XLIPC_CloseServer
XLIPC_SetSessionStatus
XLIPC_ReleaseInterface
XLIPC_RegisterSessionInterface
XLIPC_CreateInterface
XLIPC_UnRegisterSessionInterface
XLIPC_CloseSession
XLIPC_StartServer

kernel32

GetTempPathW
GetLastError
CreateFileW
MoveFileW
FlushFileBuffers
WriteFile
GetTickCount
FreeLibrary
lstrlenW
LocalFree
MapViewOfFileEx
CreateFileMappingW
OpenFileMappingW
UnmapViewOfFile
WriteProcessMemory
VirtualProtectEx
GetCurrentProcess
VirtualQuery
TlsAlloc
GetTempFileNameW
GetSystemDirectoryW
TlsSetValue
TlsGetValue
WaitForSingleObject
ReleaseMutex
CreateMutexW
GetProcessHeap
HeapSetInformation
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
WideCharToMultiByte
MultiByteToWideChar
IsDebuggerPresent
OutputDebugStringW
DebugBreak
GetCurrentProcessId
DeleteFileW
GetModuleHandleW
GetProcAddress
GetModuleHandleExW
GetModuleFileNameW
GetCurrentThreadId
CloseHandle
LeaveCriticalSection
GetSystemTimeAsFileTime
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
QueryPerformanceCounter
LoadLibraryW

user32

LoadCursorW
ReleaseDC
GetDC
DestroyAcceleratorTable
PostThreadMessageW
DispatchMessageW
TranslateMessage
GetMessageW
PostMessageW
EqualRect
CopyRect
UnionRect
wsprintfW
CreateAcceleratorTableW
SetRectEmpty
PtInRect
CharNextW
OffsetRect

gdi32

GetObjectW
SelectObject
CreateDIBSection
DeleteObject
GetRgnBox
DeleteDC
CreateCompatibleDC

advapi32

GetSecurityDescriptorControl
GetSecurityDescriptorLength
MakeSelfRelativeSD
GetSecurityDescriptorOwner
GetSecurityDescriptorGroup
GetSecurityDescriptorDacl
GetSecurityDescriptorSacl
ConvertStringSecurityDescriptorToSecurityDescriptorW

ole32

CoUninitialize
CLSIDFromString
CreateStreamOnHGlobal
CoGetClassObject
CLSIDFromProgID
CoCreateInstance
OleLockRunning
CoInitialize

oleaut32

SysStringLen
VariantClear
VariantCopy
VariantInit
SysAllocString

atl90

ord31
ord28
ord32
ord30
ord27

shlwapi

PathFindFileNameW
PathAppendW
PathFindExtensionW

msvcp90

?compare@?$char_traits@_W@std@@SAHPB_W0I@Z
?_Move_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?length@?$char_traits@D@std@@SAIPBD@Z
?_Copy_s@?$char_traits@D@std@@SAPADPADIPBDI@Z
?assign@?$char_traits@D@std@@SAXAADABD@Z
?_Move_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Copy_s@?$char_traits@_W@std@@SAPA_WPA_WIPB_WI@Z
?_Xlen@_String_base@std@@SAXXZ
?assign@?$char_traits@_W@std@@SAXAA_WAB_W@Z
?_Xran@_String_base@std@@SAXXZ
?length@?$char_traits@_W@std@@SAIPB_W@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcr90

?terminate@@YAXXZ
_decode_pointer
_onexit
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_stricmp
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_lock
_encode_pointer
__dllonexit
_unlock
?_query_new_mode@@YAHXZ
strcpy
wcscpy
?_query_new_handler@@YAP6AHI@ZXZ
memcpy_s
malloc
strlen
_purecall
wcslen
_initterm
_encoded_null
_malloc_crt
free
memcmp
wcsncpy_s
memset
_wcsnicmp
_beginthreadex
ldiv
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
_except_handler4_common
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
__CxxFrameHandler3

Exports

Exports

XLUEOPC_IsFlashIdle
XLUEOPC_IsFlashServerIdle
XLUEOPC_StartFlashServer
XLUEOPC_StopFlashServer

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XMP.exe
.exe windows:5 windows x86 arch:x86

52731a52f551f2a269510778dc997246

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:ee:cc:f7:3f:05:11:35:54:88:70:d3:38:6e:4a:9c
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

24/12/2019, 00:00

Not After

04/01/2023, 12:00

Subject

CN=SHENZHEN THUNDER NETWORKING TECHNOLOGIES LTD.,O=SHENZHEN THUNDER NETWORKING TECHNOLOGIES LTD.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:ee:cc:f7:3f:05:11:35:54:88:70:d3:38:6e:4a:9c
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

24/12/2019, 00:00

Not After

04/01/2023, 12:00

Subject

CN=SHENZHEN THUNDER NETWORKING TECHNOLOGIES LTD.,O=SHENZHEN THUNDER NETWORKING TECHNOLOGIES LTD.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:95:28:f1:9a:44:02:31:ac:31:fb:96:d1:29:32:af:80:22:f3:e0:80:c5:9d:b1:fa:5c:05:5b:64:36:27:b0
Signer

Actual PE Digest

0e:95:28:f1:9a:44:02:31:ac:31:fb:96:d1:29:32:af:80:22:f3:e0:80:c5:9d:b1:fa:5c:05:5b:64:36:27:b0

Digest Algorithm

sha256

PE Digest Matches

true

a5:f8:2a:42:18:2c:84:67:48:87:8c:c8:3a:8d:f0:a6:4f:0d:df:42
Signer

Actual PE Digest

a5:f8:2a:42:18:2c:84:67:48:87:8c:c8:3a:8d:f0:a6:4f:0d:df:42

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\minixmp\xmp5\symbols\ProductRelease\XMP\pdb\XMP.pdb

Imports

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

libuv

uv_default_loop
uv_run
uv_loop_close

kernel32

WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameW
CreateDirectoryA
GetFileAttributesA
CreateDirectoryW
GetFileAttributesW
GetCurrentProcessId
FindClose
FindNextFileW
DeleteFileW
GetLastError
FindFirstFileW
GlobalLock
GlobalAlloc
CloseHandle
FlushFileBuffers
WriteFile
SetFilePointer
WritePrivateProfileStringW
GetTempPathA
CreateFileW
WritePrivateProfileStringA
GetPrivateProfileIntW
GetPrivateProfileStringA
GetPrivateProfileStringW
CopyFileW
MoveFileW
InterlockedExchangeAdd
InitializeCriticalSection
SetEnvironmentVariableW
ReleaseMutex
GetEnvironmentVariableW
WaitForSingleObject
ExitProcess
CreateMutexW
TerminateProcess
GetCurrentProcess
TlsSetValue
FindCloseChangeNotification
FindFirstChangeNotificationW
OutputDebugStringW
GetCurrentThreadId
GetLocalTime
TlsGetValue
GlobalUnlock
LoadLibraryW
GetSystemInfo
FreeLibrary
InterlockedDecrement
TlsFree
DeleteCriticalSection
GetProcAddress
RaiseException
GetModuleHandleW
Sleep
FlushInstructionCache
lstrlenW
InterlockedIncrement
lstrcmpiW
SetLastError
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
OpenProcess
SetCurrentDirectoryW
SetEvent
DuplicateHandle
GetCurrentDirectoryW
LocalFree
GetCommandLineW
GetTempPathW
CreateThread
QueryPerformanceCounter
GlobalFree
InterlockedCompareExchange
HeapFree
GetProcessHeap
HeapAlloc
LoadLibraryA
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
lstrcpyA
InterlockedExchange
GetStartupInfoW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LeaveCriticalSection
EnterCriticalSection
DeviceIoControl
CreateFileA
VirtualQuery
GetTickCount
GetSystemTimeAsFileTime
GetVolumeInformationA
GetSystemDirectoryA
GetModuleFileNameA
IsBadCodePtr
lstrcatA
TlsAlloc
SetPriorityClass
GetVersionExA

user32

CharNextW
SetWindowLongW
GetClassInfoExW
LoadCursorW
MessageBoxW
wsprintfW
DispatchMessageW
TranslateMessage
GetMessageW
UnregisterClassA
FindWindowW
PostQuitMessage
RegisterClassExW
CreateWindowExW
CallWindowProcW
SendMessageW
GetWindowLongW
DestroyWindow
DefWindowProcW
PeekMessageW

advapi32

RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW

shell32

ord680
SHGetSpecialFolderPathA
CommandLineToArgvW

ole32

OleInitialize
CoInitialize
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CoUninitialize
OleUninitialize

oleaut32

SysStringLen
SysFreeString
SysAllocString
SysAllocStringLen
VarUI4FromStr

shlwapi

PathFileExistsW
PathFindExtensionW
PathRemoveFileSpecW
StrStrIW
PathAddBackslashW
PathFindFileNameW
PathRemoveExtensionW
PathRemoveBackslashW
PathAppendW

comctl32

InitCommonControlsEx

msvcp90

?_Lock@_Mutex@std@@QAEXXZ
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?str@?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??_D?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?_Unlock@_Mutex@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
?length@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIXZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?length@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Myptr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@IAEPA_WXZ
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IPBD@Z
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHPB_W@Z
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBDH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
?unget@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0@Z
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z

msvcr90

??0exception@std@@QAE@ABV01@@Z
??2@YAPAXI@Z
??_V@YAXPAX@Z
strlen
strcmp
strstr
strncpy
_snprintf
strncat
wcstok
_wcsicmp
_wstat64i32
_wtol
_ultow
_vsnwprintf
memcpy_s
free
calloc
_recalloc
swprintf_s
strncmp
wcsstr
malloc
wcsncpy_s
strtok
memcmp
tolower
wcscpy
?terminate@@YAXXZ
_except_handler4_common
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
exit
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_invoke_watson
_controlfp_s
_invalid_parameter_noinfo
_wtoi
memcpy
wcslen
wcsncpy
_wsplitpath
_snwprintf
memset
__CxxFrameHandler3
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
??3@YAXPAX@Z
_itoa
_time64
sprintf
rand
srand
isprint
isspace
isalnum
_CxxThrowException

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
XmpPlayer.dll
.dll regsvr32 windows:5 windows x86 arch:x86

ca0519c224ebd1bfb6b266c799b17b63

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:ee:cc:f7:3f:05:11:35:54:88:70:d3:38:6e:4a:9c
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

24/12/2019, 00:00

Not After

04/01/2023, 12:00

Subject

CN=SHENZHEN THUNDER NETWORKING TECHNOLOGIES LTD.,O=SHENZHEN THUNDER NETWORKING TECHNOLOGIES LTD.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:ee:cc:f7:3f:05:11:35:54:88:70:d3:38:6e:4a:9c
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

24/12/2019, 00:00

Not After

04/01/2023, 12:00

Subject

CN=SHENZHEN THUNDER NETWORKING TECHNOLOGIES LTD.,O=SHENZHEN THUNDER NETWORKING TECHNOLOGIES LTD.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

8e:a4:74:60:4f:1f:1e:75:ae:11:94:55:59:f4:f4:ed:e6:9a:db:bf:b0:fb:76:9f:6c:70:17:d8:07:1d:2b:e1
Signer

Actual PE Digest

8e:a4:74:60:4f:1f:1e:75:ae:11:94:55:59:f4:f4:ed:e6:9a:db:bf:b0:fb:76:9f:6c:70:17:d8:07:1d:2b:e1

Digest Algorithm

sha256

PE Digest Matches

true

90:cc:5b:ac:11:3f:78:28:9d:d8:95:bd:0c:ad:99:ff:43:d5:68:0c
Signer

Actual PE Digest

90:cc:5b:ac:11:3f:78:28:9d:d8:95:bd:0c:ad:99:ff:43:d5:68:0c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\minixmp\xmp5\symbols\ProductRelease\XmpPlayer\pdb\XmpPlayer.pdb

Imports

xlgraphic

XL_PaintBitmap
XL_ReleaseFont
XL_GetDefaultFont
XL_PrepareGraphicParam
XL_GetBitmapInfo
XL_AlphaPaintBitmap
XL_LoadBitmapFromMemory
XL_GetBitmapBuffer
XL_CreateBitmap
XL_ReleaseBitmap
XL_PaintTexture
XL_DefaultGraphicHint
XL_SetTextureRect
XL_SetFreeTypeEnabled
XL_InitGraphicLib
XL_ReleaseImageSeq
XL_CreateImageSeq
XL_ReleaseImageList
XL_SetImageListBitmap
XL_GetTextureBitmap
XL_ResetAlphaChannel
XL_ReleaseTexture
XL_StretchBlend
XL_ImageSeqBeginAddImage
XL_ExtractBitmap
XL_ImageSeqAddImage
XL_ImageSeqEndAddImage
XL_PreMultiplyBitmap
XL_GetImageCount
XL_GetLogFont
XL_CreateImageList

xlgraphicplus

XLGP_ReleaseIcon
XLGP_IconGetHandle
XLGP_CheckIcon
XLGP_CheckImageList
XLGP_CheckBitmap
XLGP_CheckColor2
XLGP_PushImageList
XLGP_PushImageSeq
XLGP_ConvertXLBitmapToDIB
XLGP_ConvertDDBToXLBitmap
XLGP_PushBitmap
XLGP_InitGraphicPlus
XLGP_PrepareGraphicPlusParam
XLGP_CheckImageSeq
XLGP_PushIcon
XLGP_CreateIconFromHandle

xlue

XLUE_GetLuaStack
XLUE_LoadXAR
XLUE_XARExist
XLUE_UnloadAllXAR
XLUE_InitLoader
XLUE_ClearAllXARSearchPath
XLUE_GetColor
XLUE_CheckFont
XLUE_CheckTexture
XLUE_CheckBitmap
XLUE_PushBitmap
XLUE_GetBitmap
XLUE_GetTexture
XLUE_GetFont
XLUE_AddXARSearchPath

xlfsio

XLFS_MountDir
XLFS_Init

xlluaruntime

lua_settable
lua_tolstring
lua_isstring
lua_tointeger
lua_isnumber
lua_type
lua_next
lua_gettop
lua_toboolean
luaL_checkudata
luaL_unref
lua_tonumber
lua_topointer
XLLRT_CheckInt64
luaL_getmetafield
lua_insert
lua_getinfo
lua_getstack
lua_objlen
lua_getmetatable
XLLRT_GetOwnerEnv
lua_replace
XLLRT_CreateChunk
XLLRT_GetRuntimeFromLuaState
XLLRT_PrepareChunk
XLLRT_ReleaseChunk
luaL_checknumber
XLLRT_IsClassRegistered
XLLRT_RegisterClass
luaL_newmetatable
luaL_register
lua_error
luaL_optlstring
luaL_checktype
luaL_buffinit
luaL_addlstring
lua_gettable
luaL_pushresult
lua_getfield
lua_pcall
luaL_checkstack
luaL_checklstring
lua_pushlightuserdata
lua_rawseti
lua_rawset
lua_checkstack
lua_typename
luaL_checkoption
luaL_checkinteger
luaL_argerror
luaL_error
lua_rawget
XLLRT_RunChunk
XLLRT_ReleaseEnv
XLLRT_ReleaseRunTime
XLLRT_ErrorHandle
XLLRT_DebugInit
lua_gc
XLLRT_GetLuaState
XLLRT_GetRuntime
XLLRT_GetEnv
lua_setmetatable
lua_pushcclosure
lua_newuserdata
lua_pushboolean
lua_pushinteger
XLLRT_PushInt64
lua_pushstring
lua_setfield
lua_pushnumber
lua_pushnil
lua_createtable
lua_settop
XLLRT_PushXLObject
lua_rawgeti
lua_pushlstring
XLLRT_RegisterInt64
XLLRT_RegisterGlobalObj
lua_touserdata
lua_isuserdata
XLLRT_LuaCall
luaL_ref
lua_pushvalue
lua_remove

xlueipc

XLIPC_StreamReadBoolean
XLIPC_StreamReadDWord
XLIPC_StreamReadByte
XLIPC_StreamReadLong
XLIPC_StreamReadInt
XLIPC_RegisterLuaHost
XLIPC_StreamReadInt64
XLIPC_StreamReadDouble
XLIPC_StreamReadWString
XLIPC_StreamReadBytes
XLIPC_StreamReadString
XLIPC_StreamWriteString
XLIPC_StreamRelease
XLIPC_AsynCall
XLIPC_SyncCallReplyTimeout
XLIPC_CheckSessionFromLua
XLIPC_CreateStream
XLIPC_StreamReadStream
XLIPC_StreamGetParamType
XLIPC_StreamReadWord
XLIPC_SyncCallTimeout

minizip

mini_unzip_dll

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

ws2_32

gethostname
sendto
gethostbyname
setsockopt
WSACleanup
select
ioctlsocket
WSAStartup
recv
recvfrom
ntohl
inet_ntoa
connect
WSAAsyncGetHostByName
WSAGetLastError
getpeername
ntohs
getsockname
WSACancelAsyncRequest
WSAAsyncSelect
closesocket
socket
inet_addr
bind
htons
send

iphlpapi

GetAdaptersInfo

libexpat

ord8
ord63
ord32
ord16
ord6
ord23
ord18
ord19
ord52
ord24
ord25
ord26
ord27
ord28
ord31
ord38
ord40
ord42
ord41
ord44
ord51
ord47
ord53
ord5
ord15
ord21
ord12
ord2
ord11
ord10
ord9

libuv

uv_default_loop
uv_pipe_init
uv_pipe_connect
uv_read_start
uv_buf_init
uv_write
uv_close

kernel32

lstrcpyA
lstrcatA
GetModuleFileNameA
GetSystemDirectoryA
GetVolumeInformationA
HeapSize
HeapReAlloc
HeapDestroy
VirtualFree
IsProcessorFeaturePresent
HeapAlloc
GetProcessHeap
HeapFree
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedExchange
GetVersionExA
GetModuleHandleA
GetFileType
GetStdHandle
GlobalMemoryStatus
FlushConsoleInputBuffer
GetFileSizeEx
GetFileAttributesExW
OpenMutexW
SetFileAttributesW
GetWindowsDirectoryA
GetLogicalDriveStringsA
GetVolumeInformationW
GetDriveTypeA
GetDiskFreeSpaceExA
EnumResourceNamesW
SuspendThread
SetThreadContext
GetThreadContext
InterlockedCompareExchange
VirtualAlloc
VirtualProtect
ResumeThread
VirtualProtectEx
GetCurrentThread
GetThreadPriority
SetThreadPriority
MoveFileExW
OpenFileMappingW
GetExitCodeProcess
LoadLibraryA
GetSystemDirectoryW
SetThreadExecutionState
DeviceIoControl
GetLogicalDriveStringsW
GetWindowsDirectoryW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetTempFileNameW
GetComputerNameW
GlobalFindAtomW
RemoveDirectoryW
GetHandleInformation
lstrcmpA
GetDiskFreeSpaceExW
GetSystemPowerStatus
GetDriveTypeW
GlobalAddAtomW
GetVersion
CompareStringW
VerSetConditionMask
VerifyVersionInfoW
lstrcpynW
GetVersionExW
FindResourceExW
LockResource
MapViewOfFile
CreateFileMappingW
CreateFileA
WaitForMultipleObjects
GetProcessId
QueueUserWorkItem
IsBadReadPtr
GetCompressedFileSizeW
SetEndOfFile
ReadFile
SystemTimeToFileTime
SetFileTime
IsBadCodePtr
MulDiv
lstrcmpW
CreateEventW
ResetEvent
SetEvent
GetFileSize
GetPrivateProfileSectionW
WritePrivateProfileSectionW
GetPrivateProfileSectionNamesW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetProcessTimes
lstrcatW
Sleep
ExpandEnvironmentStringsW
SetProcessWorkingSetSize
lstrcpyW
GetTempPathW
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTickCount
FlushInstructionCache
OpenProcess
ReadProcessMemory
lstrlenA
GetLongPathNameW
GetShortPathNameW
GetCommandLineW
GetThreadLocale
SetThreadLocale
SetPriorityClass
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
lstrcmpiW
GetModuleHandleW
lstrlenW
GetProcAddress
TlsFree
FreeLibrary
GetSystemInfo
LoadLibraryW
TlsAlloc
TlsGetValue
GetLocalTime
GetCurrentThreadId
OutputDebugStringW
FindFirstChangeNotificationW
FindCloseChangeNotification
TlsSetValue
GetCurrentProcess
TerminateProcess
CreateMutexW
ExitProcess
WaitForSingleObject
GetEnvironmentVariableW
ReleaseMutex
SetEnvironmentVariableW
InterlockedExchangeAdd
MoveFileW
CopyFileW
GetPrivateProfileStringW
GetPrivateProfileStringA
GetPrivateProfileIntW
WritePrivateProfileStringA
UnmapViewOfFile
InterlockedDecrement
InterlockedIncrement
CreateFileW
GetTempPathA
WritePrivateProfileStringW
SetFilePointer
WriteFile
RaiseException
InitializeCriticalSection
DeleteCriticalSection
VirtualQuery
EnterCriticalSection
LeaveCriticalSection
GlobalFree
GlobalUnlock
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameW
CreateDirectoryA
GetFileAttributesA
CreateDirectoryW
GetFileAttributesW
GetCurrentProcessId
FindClose
FindNextFileW
DeleteFileW
GetLastError
FindFirstFileW
GlobalLock
GlobalAlloc
CloseHandle
FlushFileBuffers

user32

GetDoubleClickTime
EnumThreadWindows
FindWindowExW
GetActiveWindow
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
ShowCursor
BringWindowToTop
GetDCEx
SetActiveWindow
GetCapture
IsIconic
IsZoomed
GetAncestor
WindowFromPoint
GetCursorInfo
LockWindowUpdate
RegisterHotKey
UnregisterHotKey
GetKeyState
GetCursorPos
TrackMouseEvent
CopyRect
SetLayeredWindowAttributes
UpdateWindow
IsWindowVisible
ShowWindow
PtInRect
SetCursor
EnumWindows
GetMonitorInfoW
SetClassLongW
UnregisterClassW
GetWindowTextLengthW
GetWindowTextW
CreateAcceleratorTableW
GetFocus
GetWindow
SetFocus
DestroyAcceleratorTable
BeginPaint
EndPaint
FillRect
ReleaseCapture
GetClassNameW
GetDlgItem
GetParent
IsChild
RedrawWindow
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
ScreenToClient
ClientToScreen
SetWindowPos
MoveWindow
GetSysColor
PostQuitMessage
GetClientRect
SetWindowRgn
GetWindowThreadProcessId
wsprintfW
SendMessageTimeoutW
MonitorFromRect
MonitorFromPoint
GetWindowRgn
GetClipboardData
IsClipboardFormatAvailable
TrackPopupMenuEx
GetMenuItemID
EnableMenuItem
GetMenuItemCount
GetSystemMenu
SetForegroundWindow
SystemParametersInfoW
CreateIconIndirect
GetIconInfo
SetCursorPos
SendInput
GetKeyboardLayoutNameW
LoadKeyboardLayoutW
MonitorFromWindow
GetForegroundWindow
LoadIconW
IsWindow
GetSystemMetrics
LoadImageW
RegisterWindowMessageW
SendMessageW
FindWindowW
PostMessageW
GetDesktopWindow
CreateWindowExW
RegisterClassExW
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
DefWindowProcW
CallWindowProcW
DestroyWindow
LoadCursorW
GetClassInfoExW
KillTimer
SetTimer
GetWindowLongW
SetWindowLongW
CharUpperBuffW
CharNextW
CharLowerBuffW
MessageBoxW
SetWindowTextW
CloseWindow
GetWindowRect
UnregisterClassA
GetUserObjectInformationW
GetProcessWindowStation
MessageBoxA
SetCapture

gdi32

PatBlt
CreatePolygonRgn
StretchBlt
CreateDIBSection
SetBkColor
ExtTextOutW
SetViewportOrgEx
CreateDCW
SetBitmapBits
GetBitmapBits
GetStockObject
SetBkMode
GetObjectW
CreateSolidBrush
GetDeviceCaps
CreateRectRgn
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteDC
DeleteObject
CombineRgn

comdlg32

GetSaveFileNameW
GetOpenFileNameW
ChooseFontW
ChooseColorW

advapi32

RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW
RegQueryInfoKeyW
RegEnumKeyExW
RegQueryValueExW
GetTokenInformation
RegEnumValueW
CloseServiceHandle
OpenProcessToken
DeregisterEventSource
ReportEventA
RegisterEventSourceA
EnumServicesStatusW
OpenSCManagerW
RegCreateKeyExW

shell32

DragAcceptFiles
SHGetSpecialFolderPathA
DragQueryFileW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetSpecialFolderPathW
DragFinish
Shell_NotifyIconW
ShellExecuteW
ord680
SHChangeNotify
ord165
CommandLineToArgvW
SHGetFolderPathW
ShellExecuteExW
SHFileOperationW
SHCreateDirectoryExW

ole32

CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
StringFromGUID2
CoUninitialize
CoInitialize
IIDFromString
CLSIDFromString
OleLockRunning
CoGetClassObject
CLSIDFromProgID
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
OleRun
CoSetProxyBlanket
CoInitializeSecurity
CoCreateGuid
CoMarshalInterface
CoGetMarshalSizeMax
CoUnmarshalInterface
PropVariantClear
CoInitializeEx

oleaut32

VariantChangeType
VarCmp
OleCreateFontIndirect
SafeArrayCopy
SafeArrayRedim
SafeArrayLock
SafeArrayUnlock
SafeArrayGetVartype
DispCallFunc
SafeArrayCreate
SafeArrayPutElement
SafeArrayDestroy
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayUnaccessData
LoadRegTypeLi
VariantCopy
VariantClear
VariantInit
SystemTimeToVariantTime
VariantTimeToSystemTime
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysStringByteLen
SysAllocStringByteLen
SysAllocStringLen
VarBstrCmp
VarBstrCat
SysStringLen
SysFreeString
BSTR_UserSize
BSTR_UserMarshal
BSTR_UserUnmarshal
BSTR_UserFree
VARIANT_UserSize
VARIANT_UserMarshal
VARIANT_UserUnmarshal
VARIANT_UserFree
SysAllocString

rpcrt4

NdrDllRegisterProxy
NdrCStdStubBuffer2_Release
NdrCStdStubBuffer_Release
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrOleAllocate
NdrOleFree
IUnknown_QueryInterface_Proxy
IUnknown_AddRef_Proxy
IUnknown_Release_Proxy
NdrDllUnregisterProxy
CStdStubBuffer_AddRef
CStdStubBuffer_Connect
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_CountRefs
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_DebugServerRelease
NdrStubForwardingFunction
NdrStubCall2
NdrClientCall2
CStdStubBuffer_QueryInterface

msvcr90

_beginthreadex
sprintf
strcpy
memmove
isdigit
_errno
towupper
_wmakepath
_wfsopen
fclose
setvbuf
fread
ferror
wcscat
_wcslwr
isalnum
sprintf_s
strcat_s
?_wsopen@@YAHPB_WHHH@Z
_filelengthi64
_lseeki64
_read
_close
_vsnwprintf_s
wcstol
_vswprintf
wcscmp
wcsnlen
_i64tow
_wtoi64
__argc
_itoa
atol
atoi
_atoi64
strftime
_gmtime64
tolower
isspace
isprint
sscanf
_stricmp
__RTDynamicCast
vfprintf
exit
_strnicmp
_finite
_isnan
floor
_snprintf_s
strtod
sqrt
wcsncmp
fopen_s
ftell
fseek
fputc
sscanf_s
_vsnprintf_s
isalpha
rand
wcscspn
_wcsupr
_ultoa
_ui64toa
_ui64tow
swscanf
_wfopen
fabs
abs
_except_handler4_common
?terminate@@YAXXZ
_unlock
__dllonexit
strstr
_encode_pointer
_lock
_onexit
_decode_pointer
_vsnprintf
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
strcmp
strlen
??_V@YAXPAX@Z
_strdup
strchr
__iob_func
fprintf
abort
_ltoa
_snwprintf_s
wcsncat
_itow
_resetstkoflw
_time64
memmove_s
_itoa_s
calloc
realloc
swprintf_s
ceil
_localtime64_s
vswprintf_s
srand
isxdigit
strtoul
getenv
_exit
raise
fwrite
fflush
fopen
_setmode
_fileno
feof
fgets
qsort
isupper
fputs
signal
_getch
toupper
fwprintf
getc
fgetwc
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
_invalid_parameter_noinfo
_wtoi
memcpy
wcslen
wcsncpy
_wsplitpath
??_U@YAPAXI@Z
_snwprintf
__CxxFrameHandler3
??0exception@std@@QAE@XZ
_vscwprintf
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
memset
??3@YAXPAX@Z
memcmp
_snprintf
strncat
wcstok
_wcsicmp
_wstat64i32
_wtol
_ultow
_vsnwprintf
wcsstr
malloc
free
memcpy_s
wcscpy_s
wcsncpy_s
wcscat_s
strncmp
_recalloc
_wcsnicmp
strtok
wcscpy
_swprintf
wcschr
wcsrchr
_ftime64
strncpy

shlwapi

StrCmpW
PathIsSameRootW
PathIsFileSpecW
PathIsDirectoryW
PathFindExtensionW
PathFileExistsA
StrStrIW
PathCombineW
PathCanonicalizeW
wnsprintfW
PathRemoveExtensionW
SHDeleteKeyW
SHDeleteValueW
PathRemoveFileSpecW
PathRemoveBackslashW
PathAddBackslashW
PathFindFileNameW
PathAppendW
PathFileExistsW
PathAddExtensionW

urlmon

CoInternetSetFeatureEnabled
UrlMkGetSessionOption
UrlMkSetSessionOption
URLDownloadToCacheFileW
ObtainUserAgentString

msvcp90

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flags@ios_base@std@@QBEHXZ
?width@ios_base@std@@QBEHXZ
?length@?$char_traits@D@std@@SAIPBD@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0@Z
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?rend@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$reverse_iterator@V?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0strstreambuf@std@@QAE@PBDH@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??1strstreambuf@std@@UAE@XZ
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBDH@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IID@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@AAD@Z
?unget@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@D@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??1locale@std@@QAE@XZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QAE?AVlocale@2@ABV32@@Z
??0locale@std@@QAE@PBDH@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?_Myptr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@IAEPA_WXZ
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?swap@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXAAV12@@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?size@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIXZ
??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?close@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
?at@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?close@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIPBD@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEAB_WI@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?max_size@?$allocator@_W@std@@QBEIXZ
?allocate@?$allocator@_W@std@@QAEPA_WI@Z
?deallocate@?$allocator@_W@std@@QAEXPA_WI@Z
??0?$allocator@_W@std@@QAE@ABV01@@Z
??0?$allocator@_W@std@@QAE@XZ
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@I_W@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
??_D?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??7ios_base@std@@QBE_NXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
?replace@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IIABV12@@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
?peek@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@JH@Z
?eof@ios_base@std@@QBE_NXZ
?replace@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@III_W@Z
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHPB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z
?resize@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXID@Z
?reserve@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?fail@ios_base@std@@QBE_NXZ
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_W@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
??0?$allocator@D@std@@QAE@XZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
?setf@ios_base@std@@QAEHHH@Z
?setf@ios_base@std@@QAEHH@Z
?construct@?$allocator@D@std@@QAEXPADABD@Z
?allocate@?$allocator@D@std@@QAEPADI@Z
?destroy@?$allocator@D@std@@QAEXPAD@Z
?deallocate@?$allocator@D@std@@QAEXPADI@Z
??0?$allocator@D@std@@QAE@ABV01@@Z
?max_size@?$allocator@D@std@@QBEIXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?at@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIABV12@II@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IPBD@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
?length@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?length@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIXZ
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_WABV10@@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?eof@?$char_traits@D@std@@SAHXZ
?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?width@ios_base@std@@QAEHH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?good@ios_base@std@@QBE_NXZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Myptr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEPADXZ
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_WI@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
?insert@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IPB_W@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
?str@?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z
??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?rbegin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$reverse_iterator@V?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@XZ

winmm

midiStreamOut
PlaySoundW
waveOutWrite

comctl32

_TrackMouseEvent

wininet

FindCloseUrlCache
InternetGetCookieExA
InternetSetCookieExA
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetCloseHandle
InternetConnectW
InternetOpenW
InternetGetCookieW
InternetSetCookieW
InternetTimeFromSystemTimeW
DeleteUrlCacheEntryW
UnlockUrlCacheEntryFileW
FindNextUrlCacheEntryExW
FindFirstUrlCacheEntryExW
InternetSetCookieExW
InternetGetCookieExW

setupapi

SetupIterateCabinetW

wintrust

WTHelperGetProvCertFromChain
WTHelperProvDataFromStateData
WinVerifyTrust
WTHelperGetProvSignerFromChain

crypt32

CertGetNameStringW

psapi

GetModuleFileNameExW
GetProcessMemoryInfo

gdiplus

GdipCloneBrush
GdipGetPathData
GdiplusStartup
GdiplusShutdown
GdipLoadImageFromStream
GdipDisposeImage
GdipGetImageWidth
GdipGetFontHeightGivenDPI
GdipDrawImageRectI
GdipCloneImage
GdipCreatePen2
GdipCreateBitmapFromScan0
GdipCreateLineBrushFromRect
GdipSetPenStartCap
GdipSetPenEndCap
GdipSetPenDashStyle
GdipGetImageGraphicsContext
GdipDrawLine
GdipFillRectangleI
GdipDrawImageRect
GdipGetFontSize
GdipGetFontStyle
GdipCreateFont
GdipDrawString
GdipGetDpiY
GdipGetDpiX
GdipGetPageUnit
GdipSetSmoothingMode
GdipSetInterpolationMode
GdipSetTextRenderingHint
GdipReleaseDC
GdipCreateFromHDC
GdipGetPointCount
GdipAddPathString
GdipSetStringFormatTrimming
GdipCreateSolidFill
GdipDeleteFont
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteGraphics
GdipDeletePath
GdipCreatePath
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeletePen
GdipCreatePen1
GdipAlloc
GdipFree
GdipDeleteBrush
GdipGetImageHeight
GdipGetFamily

atl90

ord15

Exports

Exports

AssociateShellCommand
DllCanUnloadNow
DllGetClassObject
DllInstall
DllRegisterServer
DllUnregisterServer
HandleXmpSingleton
InitXLUE
SetLaunchWhenStartup
ShellCommand
UnInitXLUE
UtilityShellCommand
_XLQC_RegisterToEnv@4

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 403B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 893KB - Virtual size: 893KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 226KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.xbase
Size: 222KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xblue
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
atl71.dll
.dll windows:4 windows x86 arch:x86

a0bd0cbc6c3c1f3095dd9342b630fcb9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

atl71.pdb

Imports

kernel32

InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetCurrentThreadId
lstrlenW
lstrcpyW
GetLastError
DisableThreadLibraryCalls
GetVersionExA
InterlockedIncrement
InterlockedDecrement
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
lstrcmpiW
lstrcpynW
CloseHandle
ReadFile
GetFileSize
CreateFileW
GetModuleHandleW
GetModuleFileNameW
WideCharToMultiByte
WaitForSingleObject
GlobalAlloc
FindResourceA
MulDiv
lstrcatW
FlushInstructionCache
GetCurrentProcess
GlobalUnlock
GlobalLock
lstrcmpW
SetLastError
GlobalFree
GlobalHandle
LockResource
lstrcmpA
GetModuleHandleA
GetTickCount
LocalAlloc
VirtualQuery
HeapFree
GetProcessHeap
InterlockedCompareExchange
HeapAlloc
GetProcAddress
LoadLibraryA
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
ExitProcess
HeapSize
DebugBreak
HeapReAlloc
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
lstrcatA
lstrcpyA
lstrlenA
GetModuleFileNameA
RtlUnwind

shlwapi

PathFindExtensionW

Exports

Exports

AtlAdvise
AtlAxAttachControl
AtlAxCreateControl
AtlAxCreateControlEx
AtlAxCreateControlLic
AtlAxCreateControlLicEx
AtlAxCreateDialogA
AtlAxCreateDialogW
AtlAxDialogBoxA
AtlAxDialogBoxW
AtlAxGetControl
AtlAxGetHost
AtlAxWinInit
AtlCallTermFunc
AtlComModuleGetClassObject
AtlComModuleRegisterClassObjects
AtlComModuleRegisterServer
AtlComModuleRevokeClassObjects
AtlComModuleUnregisterServer
AtlComPtrAssign
AtlComQIPtrAssign
AtlCreateRegistrar
AtlCreateTargetDC
AtlDevModeW2A
AtlFreeMarshalStream
AtlGetObjectSourceInterface
AtlGetVersion
AtlHiMetricToPixel
AtlIPersistPropertyBag_Load
AtlIPersistPropertyBag_Save
AtlIPersistStreamInit_Load
AtlIPersistStreamInit_Save
AtlInternalQueryInterface
AtlLoadTypeLib
AtlMarshalPtrInProc
AtlModuleAddTermFunc
AtlPixelToHiMetric
AtlRegisterClassCategoriesHelper
AtlRegisterTypeLib
AtlSetErrorInfo
AtlUnRegisterTypeLib
AtlUnadvise
AtlUnmarshalPtr
AtlUpdateRegistryFromResourceD
AtlWaitWithMessageLoop
AtlWinModuleAddCreateWndData
AtlWinModuleExtractCreateWndData
AtlWinModuleInit
AtlWinModuleRegisterClassExA
AtlWinModuleRegisterClassExW
AtlWinModuleRegisterWndClassInfoA
AtlWinModuleRegisterWndClassInfoW
AtlWinModuleTerm

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
atl90.dll
.dll windows:5 windows x86 arch:x86

17ed9dd04d0bbfc19b81bf75e8ebe774

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:27:81:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/10/2008, 21:24

Not After

22/01/2010, 21:34

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:49:7c:ed:00:00:00:00:00:05
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/09/2006, 01:55

Not After

16/09/2011, 02:05

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:10D8-5847-CBF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

44:6d:3d:ae:3c:49:8d:0c:c8:1e:e8:4a:30:a0:be:2d:0c:0c:f3:b0
Signer

Actual PE Digest

44:6d:3d:ae:3c:49:8d:0c:c8:1e:e8:4a:30:a0:be:2d:0c:0c:f3:b0

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

atl90.i386.pdb

Imports

kernel32

lstrlenW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetLastError
DisableThreadLibraryCalls
InterlockedIncrement
InterlockedDecrement
GetProcAddress
GetModuleHandleW
lstrcmpiW
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
CloseHandle
ReadFile
GetFileSize
CreateFileW
GetModuleFileNameW
WideCharToMultiByte
WaitForSingleObject
GlobalAlloc
FindResourceA
MulDiv
GetCurrentThreadId
FlushInstructionCache
GetCurrentProcess
lstrcmpW
GlobalUnlock
GlobalLock
SetLastError
GlobalFree
GlobalHandle
LockResource
LocalAlloc
InterlockedExchange
LoadLibraryA
HeapFree
HeapAlloc
GetCommandLineA
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
Sleep
ExitProcess
HeapSize
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetLocaleInfoA
SetFilePointer
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
FlushFileBuffers
InterlockedCompareExchange
GetProcessHeap
IsProcessorFeaturePresent
lstrcmpA
GetModuleHandleA

Exports

Exports

AtlAdvise
AtlAxAttachControl
AtlAxCreateControl
AtlAxCreateControlEx
AtlAxCreateControlLic
AtlAxCreateControlLicEx
AtlAxCreateDialogA
AtlAxCreateDialogW
AtlAxDialogBoxA
AtlAxDialogBoxW
AtlAxGetControl
AtlAxGetHost
AtlAxWinInit
AtlCallTermFunc
AtlComModuleGetClassObject
AtlComModuleRegisterClassObjects
AtlComModuleRevokeClassObjects
AtlComModuleUnregisterServer
AtlComPtrAssign
AtlComQIPtrAssign
AtlCreateRegistrar
AtlCreateTargetDC
AtlDevModeW2A
AtlFreeMarshalStream
AtlGetObjectSourceInterface
AtlGetPerUserRegistration
AtlGetVersion
AtlHiMetricToPixel
AtlIPersistPropertyBag_Load
AtlIPersistPropertyBag_Save
AtlIPersistStreamInit_Load
AtlIPersistStreamInit_Save
AtlInternalQueryInterface
AtlLoadTypeLib
AtlMarshalPtrInProc
AtlModuleAddTermFunc
AtlPixelToHiMetric
AtlRegisterClassCategoriesHelper
AtlSetErrorInfo
AtlSetPerUserRegistration
AtlUnadvise
AtlUnmarshalPtr
AtlUpdateRegistryFromResourceD
AtlWaitWithMessageLoop
AtlWinModuleAddCreateWndData
AtlWinModuleExtractCreateWndData
AtlWinModuleInit
AtlWinModuleRegisterClassExA
AtlWinModuleRegisterClassExW
AtlWinModuleRegisterWndClassInfoA
AtlWinModuleRegisterWndClassInfoW
AtlWinModuleTerm

Sections

.text
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libexpat.dll
.dll windows:5 windows x86 arch:x86

174ec97c99326b1ea1fa85329a941203

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\project\svn_3rd_source\XML\bin\libexpat.pdb

Imports

kernel32

GetModuleFileNameW
WriteConsoleW
GetFileType
GetStdHandle
GetCurrentThreadId
GetCommandLineA
IsDebuggerPresent
RaiseException
DebugBreak
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
GetProcAddress
LoadLibraryA
HeapValidate
IsBadReadPtr
GetModuleHandleW
Sleep
InterlockedIncrement
InterlockedDecrement
ExitProcess
GetLastError
SetConsoleCtrlHandler
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThread
SetHandleCount
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
HeapFree
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapAlloc
GetProcessHeap
VirtualQuery
FreeLibrary
FatalAppExitA
HeapSize
HeapReAlloc
VirtualAlloc
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
WriteFile
InterlockedExchange
InitializeCriticalSectionAndSpinCount
FlushFileBuffers
GetConsoleCP
GetConsoleMode
RtlUnwind
OutputDebugStringA
OutputDebugStringW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetLocaleInfoA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
SetFilePointer
GetTimeZoneInformation
CreateFileA
CloseHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

XML_DefaultCurrent
XML_ErrorString
XML_ExpatVersion
XML_ExpatVersionInfo
XML_ExternalEntityParserCreate
XML_FreeContentModel
XML_GetBase
XML_GetBuffer
XML_GetCurrentByteCount
XML_GetCurrentByteIndex
XML_GetCurrentColumnNumber
XML_GetCurrentLineNumber
XML_GetErrorCode
XML_GetFeatureList
XML_GetIdAttributeIndex
XML_GetInputContext
XML_GetParsingStatus
XML_GetSpecifiedAttributeCount
XML_MemFree
XML_MemMalloc
XML_MemRealloc
XML_Parse
XML_ParseBuffer
XML_ParserCreate
XML_ParserCreateNS
XML_ParserCreate_MM
XML_ParserFree
XML_ParserReset
XML_ResumeParser
XML_SetAttlistDeclHandler
XML_SetBase
XML_SetCdataSectionHandler
XML_SetCharacterDataHandler
XML_SetCommentHandler
XML_SetDefaultHandler
XML_SetDefaultHandlerExpand
XML_SetDoctypeDeclHandler
XML_SetElementDeclHandler
XML_SetElementHandler
XML_SetEncoding
XML_SetEndCdataSectionHandler
XML_SetEndDoctypeDeclHandler
XML_SetEndElementHandler
XML_SetEndNamespaceDeclHandler
XML_SetEntityDeclHandler
XML_SetExternalEntityRefHandler
XML_SetExternalEntityRefHandlerArg
XML_SetNamespaceDeclHandler
XML_SetNotStandaloneHandler
XML_SetNotationDeclHandler
XML_SetParamEntityParsing
XML_SetProcessingInstructionHandler
XML_SetReturnNSTriplet
XML_SetSkippedEntityHandler
XML_SetStartCdataSectionHandler
XML_SetStartDoctypeDeclHandler
XML_SetStartElementHandler
XML_SetStartNamespaceDeclHandler
XML_SetUnknownEncodingHandler
XML_SetUnparsedEntityDeclHandler
XML_SetUserData
XML_SetXmlDeclHandler
XML_StopParser
XML_UseForeignDTD
XML_UseParserAsHandlerArg

Sections

.textbss
Size: - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 546KB - Virtual size: 545KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libpng13.dll
.dll windows:5 windows x86 arch:x86

c37cc499cc76bd78361a30d23efb391d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

zlib1

deflateReset
deflateInit2_
deflateEnd
deflate
inflateEnd
inflateInit_
inflate
inflateReset
crc32

msvcr90

malloc
free
abort
_setjmp3
fread
abs
fabs
pow
strtod
strlen
longjmp
fflush
_gmtime64
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
memcpy
_snprintf
memset
memcmp
fwrite

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetCurrentProcess

Exports

Exports

png_access_version_number
png_build_grayscale_palette
png_check_sig
png_chunk_error
png_chunk_warning
png_convert_from_struct_tm
png_convert_from_time_t
png_convert_to_rfc1123
png_create_info_struct
png_create_read_struct
png_create_read_struct_2
png_create_write_struct
png_create_write_struct_2
png_data_freer
png_destroy_info_struct
png_destroy_read_struct
png_destroy_struct
png_destroy_struct_2
png_destroy_write_struct
png_error
png_free
png_free_data
png_free_default
png_get_IHDR
png_get_PLTE
png_get_asm_flagmask
png_get_asm_flags
png_get_bKGD
png_get_bit_depth
png_get_cHRM
png_get_cHRM_fixed
png_get_channels
png_get_color_type
png_get_compression_buffer_size
png_get_compression_type
png_get_copyright
png_get_error_ptr
png_get_filter_type
png_get_gAMA
png_get_gAMA_fixed
png_get_hIST
png_get_header_ver
png_get_header_version
png_get_iCCP
png_get_image_height
png_get_image_width
png_get_int_32
png_get_interlace_type
png_get_io_ptr
png_get_oFFs
png_get_pCAL
png_get_pHYs
png_get_pixel_aspect_ratio
png_get_pixels_per_meter
png_get_progressive_ptr
png_get_rgb_to_gray_status
png_get_rowbytes
png_get_rows
png_get_sBIT
png_get_sCAL
png_get_sPLT
png_get_sRGB
png_get_signature
png_get_tIME
png_get_tRNS
png_get_text
png_get_uint_16
png_get_uint_31
png_get_uint_32
png_get_unknown_chunks
png_get_user_chunk_ptr
png_get_user_height_max
png_get_user_transform_ptr
png_get_user_width_max
png_get_valid
png_get_x_offset_microns
png_get_x_offset_pixels
png_get_x_pixels_per_meter
png_get_y_offset_microns
png_get_y_offset_pixels
png_get_y_pixels_per_meter
png_handle_as_unknown
png_info_init_3
png_init_io
png_malloc
png_malloc_default
png_malloc_warn
png_memcpy_check
png_memset_check
png_mmx_support
png_permit_empty_plte
png_permit_mng_features
png_process_data
png_progressive_combine_row
png_read_end
png_read_image
png_read_info
png_read_init
png_read_init_2
png_read_init_3
png_read_png
png_read_row
png_read_rows
png_read_update_info
png_reset_zstream
png_save_int_32
png_save_uint_16
png_save_uint_32
png_set_IHDR
png_set_PLTE
png_set_add_alpha
png_set_asm_flags
png_set_bKGD
png_set_background
png_set_bgr
png_set_cHRM
png_set_cHRM_fixed
png_set_compression_buffer_size
png_set_compression_level
png_set_compression_mem_level
png_set_compression_method
png_set_compression_strategy
png_set_compression_window_bits
png_set_crc_action
png_set_dither
png_set_error_fn
png_set_expand
png_set_expand_gray_1_2_4_to_8
png_set_filler
png_set_filter
png_set_filter_heuristics
png_set_flush
png_set_gAMA
png_set_gAMA_fixed
png_set_gamma
png_set_gray_1_2_4_to_8
png_set_gray_to_rgb
png_set_hIST
png_set_iCCP
png_set_interlace_handling
png_set_invalid
png_set_invert_alpha
png_set_invert_mono
png_set_keep_unknown_chunks
png_set_oFFs
png_set_pCAL
png_set_pHYs
png_set_packing
png_set_packswap
png_set_palette_to_rgb
png_set_progressive_read_fn
png_set_read_fn
png_set_read_status_fn
png_set_read_user_chunk_fn
png_set_read_user_transform_fn
png_set_rgb_to_gray
png_set_rgb_to_gray_fixed
png_set_rows
png_set_sBIT
png_set_sCAL
png_set_sPLT
png_set_sRGB
png_set_sRGB_gAMA_and_cHRM
png_set_shift
png_set_sig_bytes
png_set_strip_16
png_set_strip_alpha
png_set_strip_error_numbers
png_set_swap
png_set_swap_alpha
png_set_tIME
png_set_tRNS
png_set_tRNS_to_alpha
png_set_text
png_set_unknown_chunk_location
png_set_unknown_chunks
png_set_user_limits
png_set_user_transform_info
png_set_write_fn
png_set_write_status_fn
png_set_write_user_transform_fn
png_sig_cmp
png_start_read_image
png_warning
png_write_chunk
png_write_chunk_data
png_write_chunk_end
png_write_chunk_start
png_write_end
png_write_flush
png_write_image
png_write_info
png_write_info_before_PLTE
png_write_init
png_write_init_2
png_write_init_3
png_write_png
png_write_row
png_write_rows

Sections

.text
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libuv.dll
.dll windows:5 windows x86 arch:x86

d5d233add86045d65e2fdd02c6326fe7

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

19:1a:32:cb:75:9c:97:b8:cf:ac:11:8d:d5:12:7f:49
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

04/03/2014, 00:00

Not After

03/03/2024, 23:59

Subject

CN=Symantec Class 3 Extended Validation Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

48:71:dd:fd:2e:98:d4:c3:c9:fd:c2:c8:b4:52:c6:fc
Certificate

Issuer

CN=Symantec Class 3 Extended Validation Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

29/03/2018, 00:00

Not After

28/03/2020, 23:59

Subject

SERIALNUMBER=91440300746612636Q,CN=ShenZhen Thunder Networking Technologies Ltd.,OU=IT,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#13085368656e5a68656e,1.3.6.1.4.1.311.60.2.1.2=#13084775616e446f6e67,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

19:1a:32:cb:75:9c:97:b8:cf:ac:11:8d:d5:12:7f:49
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

04/03/2014, 00:00

Not After

03/03/2024, 23:59

Subject

CN=Symantec Class 3 Extended Validation Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

48:71:dd:fd:2e:98:d4:c3:c9:fd:c2:c8:b4:52:c6:fc
Certificate

Issuer

CN=Symantec Class 3 Extended Validation Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

29/03/2018, 00:00

Not After

28/03/2020, 23:59

Subject

SERIALNUMBER=91440300746612636Q,CN=ShenZhen Thunder Networking Technologies Ltd.,OU=IT,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#13085368656e5a68656e,1.3.6.1.4.1.311.60.2.1.2=#13084775616e446f6e67,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:43:9a:da:a8:1f:bc:ea:10:1b:43:b1:f1:2d:c6:c1:66:75:54:90:ed:39:50:54:c2:e6:b6:84:3c:ec:69:f6
Signer

Actual PE Digest

01:43:9a:da:a8:1f:bc:ea:10:1b:43:b1:f1:2d:c6:c1:66:75:54:90:ed:39:50:54:c2:e6:b6:84:3c:ec:69:f6

Digest Algorithm

sha256

PE Digest Matches

true

37:85:c0:b5:03:a8:d6:8d:d1:d4:3c:e7:43:31:2f:b2:1a:15:f3:68
Signer

Actual PE Digest

37:85:c0:b5:03:a8:d6:8d:d1:d4:3c:e7:43:31:2f:b2:1a:15:f3:68

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\GitDev\XMP\XMP_After6151\XMP\xmp5\code\src\other\libuv\Release\libuv.pdb

Imports

ws2_32

WSAStartup
WSASetLastError
htons
gethostname
htonl
WSARecvFrom
WSASendTo
getpeername
WSARecv
WSASend
getsockname
shutdown
WSADuplicateSocketW
bind
socket
listen
ioctlsocket
WSAIoctl
select
WSASocketW
GetNameInfoW
FreeAddrInfoW
GetAddrInfoW
WSAGetLastError
setsockopt
closesocket
getsockopt

psapi

GetProcessMemoryInfo

iphlpapi

GetAdaptersAddresses

userenv

GetUserProfileDirectoryW

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DisableThreadLibraryCalls
GetTickCount
GetCurrentThreadId
GetModuleHandleA
LoadLibraryA
QueryPerformanceFrequency
CreateToolhelp32Snapshot
GetConsoleTitleW
SetConsoleTitleW
Process32NextW
GetSystemInfo
SetCurrentDirectoryW
GlobalMemoryStatusEx
Process32FirstW
VerifyVersionInfoW
GetTempPathW
GetSystemTimeAsFileTime
GetModuleFileNameW
FileTimeToSystemTime
GetLastError
PostQueuedCompletionStatus
SetErrorMode
GetQueuedCompletionStatus
CreateIoCompletionPort
CloseHandle
FreeLibrary
LoadLibraryExW
FormatMessageA
MultiByteToWideChar
GetProcAddress
LocalFree
ReadDirectoryChangesW
GetFileAttributesW
CreateFileW
GetCurrentDirectoryW
GetLongPathNameW
GetShortPathNameW
MoveFileExW
SetFilePointerEx
CreateDirectoryW
SetFileTime
WriteFile
WideCharToMultiByte
ReadFile
FlushFileBuffers
SetLastError
CreateHardLinkW
RemoveDirectoryW
DeviceIoControl
GetFileInformationByHandle
GetConsoleMode
GetFileType
UnregisterWait
PeekNamedPipe
GetCurrentProcess
WaitForSingleObject
ConnectNamedPipe
CreateNamedPipeW
GetCurrentThread
WaitNamedPipeW
GetNamedPipeHandleStateW
CreateNamedPipeA
RegisterWaitForSingleObject
CreateEventW
SetNamedPipeHandleState
QueueUserWorkItem
DuplicateHandle
GetCurrentProcessId
SwitchToThread
SetHandleInformation
CreateFileA
GetStartupInfoW
GetStdHandle
GetEnvironmentVariableW
SetInformationJobObject
CreateProcessW
CreateJobObjectW
OpenProcess
AssignProcessToJobObject
GetExitCodeProcess
TerminateProcess
UnregisterWaitEx
LCMapStringW
InitializeCriticalSection
Sleep
LeaveCriticalSection
InterlockedExchange
EnterCriticalSection
SetConsoleCtrlHandler
CancelIo
TryEnterCriticalSection
TlsGetValue
InterlockedCompareExchange
SetEvent
TlsSetValue
ReleaseSemaphore
ResetEvent
CreateSemaphoreW
WaitForMultipleObjects
DeleteCriticalSection
GetProcessTimes
TlsFree
ResumeThread
WriteConsoleInputW
GetNumberOfConsoleInputEvents
SetConsoleTextAttribute
ReadConsoleW
SetConsoleMode
SetConsoleCursorPosition
WriteConsoleW
FillConsoleOutputCharacterW
GetConsoleScreenBufferInfo
SetConsoleCursorInfo
FillConsoleOutputAttribute
GetConsoleCursorInfo
ReadConsoleInputW
GetProcessIoCounters
VerSetConditionMask
SetEnvironmentVariableW
QueryPerformanceCounter
TlsAlloc

user32

MapVirtualKeyW
GetSystemMetrics

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
GetUserNameW
OpenProcessToken
CryptGenRandom
CryptAcquireContextW
CryptReleaseContext

msvcr90

malloc
realloc
_vsnprintf_s
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
calloc
free
getenv
__dllonexit
_lock
_onexit
_except_handler4_common
_wcsdup
_umask
_wcsrev
memcpy
memset
_set_invalid_parameter_handler
abort
__iob_func
fprintf
_snwprintf
_wcsnicmp
wcsncpy
_lseeki64
_wchmod
__doserrno
_wmkdir
_wrmdir
_errno
_read
_fmode
_open_osfhandle
_get_osfhandle
wcsncmp
wcstombs
_write
_close
sprintf
strchr
strncpy
wcschr
qsort
wcsrchr
wcspbrk
_vscprintf
_beginthreadex
atoi

Exports

Exports

uv_accept
uv_async_init
uv_async_send
uv_backend_fd
uv_backend_timeout
uv_barrier_destroy
uv_barrier_init
uv_barrier_wait
uv_buf_init
uv_cancel
uv_chdir
uv_check_init
uv_check_start
uv_check_stop
uv_close
uv_cond_broadcast
uv_cond_destroy
uv_cond_init
uv_cond_signal
uv_cond_timedwait
uv_cond_wait
uv_cpu_info
uv_cwd
uv_default_loop
uv_disable_stdio_inheritance
uv_dlclose
uv_dlerror
uv_dlopen
uv_dlsym
uv_err_name
uv_exepath
uv_fileno
uv_free_cpu_info
uv_free_interface_addresses
uv_freeaddrinfo
uv_fs_access
uv_fs_chmod
uv_fs_chown
uv_fs_close
uv_fs_event_getpath
uv_fs_event_init
uv_fs_event_start
uv_fs_event_stop
uv_fs_fchmod
uv_fs_fchown
uv_fs_fdatasync
uv_fs_fstat
uv_fs_fsync
uv_fs_ftruncate
uv_fs_futime
uv_fs_link
uv_fs_lstat
uv_fs_mkdir
uv_fs_mkdtemp
uv_fs_open
uv_fs_poll_getpath
uv_fs_poll_init
uv_fs_poll_start
uv_fs_poll_stop
uv_fs_read
uv_fs_readlink
uv_fs_realpath
uv_fs_rename
uv_fs_req_cleanup
uv_fs_rmdir
uv_fs_scandir
uv_fs_scandir_next
uv_fs_sendfile
uv_fs_stat
uv_fs_symlink
uv_fs_unlink
uv_fs_utime
uv_fs_write
uv_get_free_memory
uv_get_osfhandle
uv_get_process_title
uv_get_total_memory
uv_getaddrinfo
uv_getnameinfo
uv_getrusage
uv_guess_handle
uv_handle_size
uv_has_ref
uv_hrtime
uv_idle_init
uv_idle_start
uv_idle_stop
uv_inet_ntop
uv_inet_pton
uv_interface_addresses
uv_ip4_addr
uv_ip4_name
uv_ip6_addr
uv_ip6_name
uv_is_active
uv_is_closing
uv_is_readable
uv_is_writable
uv_key_create
uv_key_delete
uv_key_get
uv_key_set
uv_kill
uv_listen
uv_loadavg
uv_loop_alive
uv_loop_close
uv_loop_configure
uv_loop_delete
uv_loop_fork
uv_loop_init
uv_loop_new
uv_loop_size
uv_mutex_destroy
uv_mutex_init
uv_mutex_lock
uv_mutex_trylock
uv_mutex_unlock
uv_now
uv_once
uv_os_free_passwd
uv_os_get_passwd
uv_os_getenv
uv_os_gethostname
uv_os_homedir
uv_os_setenv
uv_os_tmpdir
uv_os_unsetenv
uv_pipe_bind
uv_pipe_connect
uv_pipe_getpeername
uv_pipe_getsockname
uv_pipe_init
uv_pipe_open
uv_pipe_pending_count
uv_pipe_pending_instances
uv_pipe_pending_type
uv_poll_init
uv_poll_init_socket
uv_poll_start
uv_poll_stop
uv_prepare_init
uv_prepare_start
uv_prepare_stop
uv_print_active_handles
uv_print_all_handles
uv_process_kill
uv_queue_work
uv_read_start
uv_read_stop
uv_recv_buffer_size
uv_ref
uv_replace_allocator
uv_req_size
uv_resident_set_memory
uv_run
uv_rwlock_destroy
uv_rwlock_init
uv_rwlock_rdlock
uv_rwlock_rdunlock
uv_rwlock_tryrdlock
uv_rwlock_trywrlock
uv_rwlock_wrlock
uv_rwlock_wrunlock
uv_sem_destroy
uv_sem_init
uv_sem_post
uv_sem_trywait
uv_sem_wait
uv_send_buffer_size
uv_set_process_title
uv_setup_args
uv_shutdown
uv_signal_init
uv_signal_start
uv_signal_start_oneshot
uv_signal_stop
uv_spawn
uv_stop
uv_stream_set_blocking
uv_strerror
uv_tcp_bind
uv_tcp_connect
uv_tcp_getpeername
uv_tcp_getsockname
uv_tcp_init
uv_tcp_init_ex
uv_tcp_keepalive
uv_tcp_nodelay
uv_tcp_open
uv_tcp_simultaneous_accepts
uv_thread_create
uv_thread_equal
uv_thread_join
uv_thread_self
uv_timer_again
uv_timer_get_repeat
uv_timer_init
uv_timer_set_repeat
uv_timer_start
uv_timer_stop
uv_translate_sys_error
uv_try_write
uv_tty_get_winsize
uv_tty_init
uv_tty_reset_mode
uv_tty_set_mode
uv_udp_bind
uv_udp_getsockname
uv_udp_init
uv_udp_init_ex
uv_udp_open
uv_udp_recv_start
uv_udp_recv_stop
uv_udp_send
uv_udp_set_broadcast
uv_udp_set_membership
uv_udp_set_multicast_interface
uv_udp_set_multicast_loop
uv_udp_set_multicast_ttl
uv_udp_set_ttl
uv_udp_try_send
uv_unref
uv_update_time
uv_uptime
uv_version
uv_version_string
uv_walk
uv_write
uv_write2

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stls
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
minizip.dll
.dll windows:5 windows x86 arch:x86

263b1290e607071ff5affde2318948eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

g:\Xunlei\Projects\xl_framework\vc9\3rd\minizip\Release\minizip.pdb

Imports

zlib1

deflateInit2_
deflateEnd
deflate
inflateInit2_
get_crc_table
inflateEnd
inflate
crc32

kernel32

SetUnhandledExceptionFilter
GetCurrentProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
CloseHandle
CreateFileA
GetLastError
ReadFile
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetFileTime
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
UnhandledExceptionFilter

msvcr90

fclose
ferror
malloc
free
_errno
strcpy
strlen
fseek
scanf
strcat
strncpy
memset
_chdir
_time64
rand
srand
memcpy
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
ftell
fwrite
fread
fopen
_mkdir
exit
strcmp

Exports

Exports

mini_unzip_dll
unzClose
unzCloseCurrentFile
unzGetCurrentFileInfo
unzGetFilePos
unzGetGlobalComment
unzGetGlobalInfo
unzGetLocalExtrafield
unzGetOffset
unzGoToFilePos
unzGoToFirstFile
unzGoToNextFile
unzLocateFile
unzOpen
unzOpen2
unzOpenCurrentFile
unzOpenCurrentFile2
unzOpenCurrentFile3
unzOpenCurrentFilePassword
unzReadCurrentFile
unzSetOffset
unzStringFileNameCompare
unzeof
unztell
zipClose
zipCloseFileInZip
zipCloseFileInZipRaw
zipOpen
zipOpen2
zipOpenNewFileInZip
zipOpenNewFileInZip2
zipOpenNewFileInZip3
zipWriteInFileInZip

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcp90.dll
.dll windows:5 windows x86 arch:x86

c2219f463c61f3122c87331837e12c34

Code Sign

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:0f:78:4d:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/08/2007, 00:23

Not After

23/02/2009, 00:33

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:14:2c:a7:00:00:00:00:00:06
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/06/2007, 23:54

Not After

13/06/2012, 00:04

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:27F4-D440-54F3,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:14:2c:a7:00:00:00:00:00:06
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/06/2007, 23:54

Not After

13/06/2012, 00:04

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:27F4-D440-54F3,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e9:c4:fe:36:f3:bd:3e:f2:64:2c:75:13:e1:a7:62:07:ef:2f:ea:bf
Signer

Actual PE Digest

e9:c4:fe:36:f3:bd:3e:f2:64:2c:75:13:e1:a7:62:07:ef:2f:ea:bf

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcp90.i386.pdb

Imports

msvcr90

fflush
setvbuf
fwrite
??0exception@std@@QAE@XZ
_Getdays
_Getmonths
fgetpos
fseek
fsetpos
fclose
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
__iob_func
_wfsopen
mbstowcs_s
atan2
cos
exp
ldexp
log
pow
sin
sqrt
tan
fgetwc
fputwc
ungetwc
memcpy
_Strftime
strcspn
sprintf_s
abort
??0exception@std@@QAE@ABQBDH@Z
_realloc_crt
setlocale
_malloc_crt
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
fputs
__uncaught_exception
ungetc
towupper
strcmp
_create_locale
_ui64toa_s
_free_locale
__pctype_func
_errno
___mb_cur_max_l_func
___lc_codepage_func
___lc_handle_func
__crtCompareStringA
___lc_collate_cp_func
__crtLCMapStringA
isupper
_calloc_crt
islower
__crtGetStringTypeW
__crtLCMapStringW
__crtCompareStringW
isspace
tolower
strtod
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
__clean_type_info_names_internal
fputc
fgetc
__CxxFrameHandler3
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??2@YAPAXI@Z
_invalid_parameter_noinfo
___mb_cur_max_func
??_V@YAXPAX@Z
_Gettnames
localeconv
free
memset
memchr
strlen
memcmp
wcslen
memmove_s
memcpy_s
??3@YAXPAX@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
towlower
??0exception@std@@QAE@ABQBD@Z

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
Sleep
InterlockedDecrement
InterlockedIncrement
GetLocaleInfoA
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
InterlockedCompareExchange
GetSystemTimeAsFileTime

Exports

Exports

??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z
??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAD@Z
??$?5DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?5GU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAG@Z
??$?5GU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAG@Z
??$?5GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?5MDU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@M@0@@Z
??$?5MGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@M@0@@Z
??$?5M_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@M@0@@Z
??$?5NDU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@N@0@@Z
??$?5NGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@N@0@@Z
??$?5N_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@N@0@@Z
??$?5ODU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@O@0@@Z
??$?5OGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@O@0@@Z
??$?5O_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@O@0@@Z
??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAC@Z
??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAE@Z
??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAC@Z
??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAE@Z
??$?5_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AA_W@Z
??$?5_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@PA_W@Z
??$?5_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?6GU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@G@Z
??$?6GU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBG@Z
??$?6GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?6MDU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@M@0@@Z
??$?6MGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@M@0@@Z
??$?6M_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@M@0@@Z
??$?6NDU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@N@0@@Z
??$?6NGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@N@0@@Z
??$?6N_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@N@0@@Z
??$?6ODU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@O@0@@Z
??$?6OGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@O@0@@Z
??$?6O_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@O@0@@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@C@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@E@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBC@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBE@Z
??$?6_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@PB_W@Z
??$?6_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@_W@Z
??$?6_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?8M@std@@YA_NABMABV?$complex@M@0@@Z
??$?8M@std@@YA_NABV?$complex@M@0@0@Z
??$?8M@std@@YA_NABV?$complex@M@0@ABM@Z
??$?8N@std@@YA_NABNABV?$complex@N@0@@Z
??$?8N@std@@YA_NABV?$complex@N@0@0@Z
??$?8N@std@@YA_NABV?$complex@N@0@ABN@Z
??$?8O@std@@YA_NABOABV?$complex@O@0@@Z
??$?8O@std@@YA_NABV?$complex@O@0@0@Z
??$?8O@std@@YA_NABV?$complex@O@0@ABO@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?9M@std@@YA_NABMABV?$complex@M@0@@Z
??$?9M@std@@YA_NABV?$complex@M@0@0@Z
??$?9M@std@@YA_NABV?$complex@M@0@ABM@Z
??$?9N@std@@YA_NABNABV?$complex@N@0@@Z
??$?9N@std@@YA_NABV?$complex@N@0@0@Z
??$?9N@std@@YA_NABV?$complex@N@0@ABN@Z
??$?9O@std@@YA_NABOABV?$complex@O@0@@Z
??$?9O@std@@YA_NABV?$complex@O@0@0@Z
??$?9O@std@@YA_NABV?$complex@O@0@ABO@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?DM@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$?DM@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$?DM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$?DN@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$?DN@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$?DN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$?DO@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$?DO@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$?DO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$?GM@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$?GM@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$?GM@std@@YA?AV?$complex@M@0@ABV10@@Z
??$?GM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$?GN@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$?GN@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$?GN@std@@YA?AV?$complex@N@0@ABV10@@Z
??$?GN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$?GO@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$?GO@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$?GO@std@@YA?AV?$complex@O@0@ABV10@@Z
??$?GO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@DABV10@@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@0@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@G@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@PBG@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@GABV10@@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBGABV10@@Z
??$?HM@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$?HM@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$?HM@std@@YA?AV?$complex@M@0@ABV10@@Z
??$?HM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$?HN@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$?HN@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$?HN@std@@YA?AV?$complex@N@0@ABV10@@Z
??$?HN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$?HO@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$?HO@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$?HO@std@@YA?AV?$complex@O@0@ABV10@@Z
??$?HO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_WABV10@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@_WABV10@@Z
??$?KM@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$?KM@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$?KM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$?KN@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$?KN@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$?KN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$?KO@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$?KO@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$?KO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$_Fabs@M@std@@YAMABV?$complex@M@0@PAH@Z
??$_Fabs@N@std@@YANABV?$complex@N@0@PAH@Z
??$_Fabs@O@std@@YAOABV?$complex@O@0@PAH@Z
??$abs@M@std@@YAMABV?$complex@M@0@@Z
??$abs@N@std@@YANABV?$complex@N@0@@Z
??$abs@O@std@@YAOABV?$complex@O@0@@Z
??$arg@M@std@@YAMABV?$complex@M@0@@Z
??$arg@N@std@@YANABV?$complex@N@0@@Z
??$arg@O@std@@YAOABV?$complex@O@0@@Z
??$conj@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$conj@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$conj@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$cos@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$cos@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$cos@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$cosh@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$cosh@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$cosh@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$exp@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$exp@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$exp@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@D@Z
??$getline@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$getline@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@G@Z
??$getline@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$getline@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@_W@Z
??$imag@M@std@@YAMABV?$complex@M@0@@Z
??$imag@N@std@@YANABV?$complex@N@0@@Z
??$imag@O@std@@YAOABV?$complex@O@0@@Z
??$log10@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$log10@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$log10@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$log@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$log@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$log@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$norm@M@std@@YAMABV?$complex@M@0@@Z
??$norm@N@std@@YANABV?$complex@N@0@@Z
??$norm@O@std@@YAOABV?$complex@O@0@@Z
??$polar@M@std@@YA?AV?$complex@M@0@ABM0@Z
??$polar@M@std@@YA?AV?$complex@M@0@ABM@Z
??$polar@N@std@@YA?AV?$complex@N@0@ABN0@Z
??$polar@N@std@@YA?AV?$complex@N@0@ABN@Z
??$polar@O@std@@YA?AV?$complex@O@0@ABO0@Z
??$polar@O@std@@YA?AV?$complex@O@0@ABO@Z
??$pow@M@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$pow@M@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$pow@M@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$pow@M@std@@YA?AV?$complex@M@0@ABV10@H@Z
??$pow@N@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$pow@N@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$pow@N@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$pow@N@std@@YA?AV?$complex@N@0@ABV10@H@Z
??$pow@O@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$pow@O@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$pow@O@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$pow@O@std@@YA?AV?$complex@O@0@ABV10@H@Z
??$real@M@std@@YAMABV?$complex@M@0@@Z
??$real@N@std@@YANABV?$complex@N@0@@Z
??$real@O@std@@YAOABV?$complex@O@0@@Z
??$sin@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$sin@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$sin@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$sinh@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$sinh@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$sinh@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$sqrt@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$sqrt@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$sqrt@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$tan@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$tan@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$tan@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$tanh@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$tanh@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$tanh@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??0?$_Complex_base@MU_C_float_complex@@@std@@QAE@ABM0@Z
??0?$_Complex_base@NU_C_double_complex@@@std@@QAE@ABN0@Z
??0?$_Complex_base@OU_C_ldouble_complex@@@std@@QAE@ABO0@Z
??0?$_Mpunct@D@std@@IAE@PBDI_N1@Z
??0?$_Mpunct@D@std@@QAE@ABV_Locinfo@1@I_N1@Z
??0?$_Mpunct@D@std@@QAE@I_N@Z
??0?$_Mpunct@G@std@@IAE@PBDI_N1@Z
??0?$_Mpunct@G@std@@QAE@ABV_Locinfo@1@I_N1@Z
??0?$_Mpunct@G@std@@QAE@I_N@Z
??0?$_Mpunct@_W@std@@IAE@PBDI_N1@Z
??0?$_Mpunct@_W@std@@QAE@ABV_Locinfo@1@I_N1@Z
??0?$_Mpunct@_W@std@@QAE@I_N@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@QAE@ABV01@@Z
??0?$_String_val@GV?$allocator@G@std@@@std@@IAE@V?$allocator@G@1@@Z
??0?$_String_val@GV?$allocator@G@std@@@std@@QAE@ABV01@@Z
??0?$_String_val@_WV?$allocator@_W@std@@@std@@IAE@V?$allocator@_W@1@@Z
??0?$_String_val@_WV?$allocator@_W@std@@@std@@QAE@ABV01@@Z
??0?$allocator@D@std@@QAE@ABV01@@Z
??0?$allocator@D@std@@QAE@XZ
??0?$allocator@G@std@@QAE@ABV01@@Z
??0?$allocator@G@std@@QAE@XZ
??0?$allocator@X@std@@QAE@ABV01@@Z
??0?$allocator@X@std@@QAE@XZ
??0?$allocator@_W@std@@QAE@ABV01@@Z
??0?$allocator@_W@std@@QAE@XZ
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_filebuf@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_istringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z
??0?$basic_istringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z
??0?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@IDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@1@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@II@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@IIABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG0@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGI@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGIABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@V?$_String_const_iterator@GU?$char_traits@G@std@@V?$allocator@G@2@@1@0@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@II@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@IIABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_WABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W0@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WIABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@V?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@0@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_stringbuf@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z
??0?$basic_stringbuf@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z
??0?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@DDH@std@@QAE@I@Z
??0?$codecvt@GDH@std@@IAE@PBDI@Z
??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@GDH@std@@QAE@I@Z
??0?$codecvt@_WDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@_WDH@std@@QAE@I@Z
??0?$collate@D@std@@IAE@PBDI@Z
??0?$collate@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@D@std@@QAE@I@Z
??0?$collate@G@std@@IAE@PBDI@Z
??0?$collate@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@G@std@@QAE@I@Z
??0?$collate@_W@std@@IAE@PBDI@Z
??0?$collate@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@_W@std@@QAE@I@Z
??0?$complex@M@std@@QAE@ABM0@Z
??0?$complex@M@std@@QAE@ABU_C_double_complex@@@Z
??0?$complex@M@std@@QAE@ABU_C_float_complex@@@Z
??0?$complex@M@std@@QAE@ABU_C_ldouble_complex@@@Z
??0?$complex@M@std@@QAE@ABV?$complex@N@1@@Z
??0?$complex@M@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@N@std@@QAE@ABN0@Z
??0?$complex@N@std@@QAE@ABU_C_double_complex@@@Z
??0?$complex@N@std@@QAE@ABU_C_ldouble_complex@@@Z
??0?$complex@N@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@N@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@O@std@@QAE@ABO0@Z
??0?$complex@O@std@@QAE@ABU_C_ldouble_complex@@@Z
??0?$complex@O@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@O@std@@QAE@ABV?$complex@N@1@@Z
??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@D@std@@QAE@PBF_NI@Z
??0?$ctype@G@std@@IAE@PBDI@Z
??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@G@std@@QAE@I@Z
??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@_W@std@@QAE@I@Z
??0?$messages@D@std@@IAE@PBDI@Z
??0?$messages@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@D@std@@QAE@I@Z
??0?$messages@G@std@@IAE@PBDI@Z
??0?$messages@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@G@std@@QAE@I@Z
??0?$messages@_W@std@@IAE@PBDI@Z
??0?$messages@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@_W@std@@QAE@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$money_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$money_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$moneypunct@D$00@std@@IAE@PBDI@Z
??0?$moneypunct@D$00@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$moneypunct@D$00@std@@QAE@I@Z
??0?$moneypunct@D$0A@@std@@IAE@PBDI@Z
??0?$moneypunct@D$0A@@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$moneypunct@D$0A@@std@@QAE@I@Z
??0?$moneypunct@G$00@std@@IAE@PBDI@Z
??0?$moneypunct@G$00@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$moneypunct@G$00@std@@QAE@I@Z
??0?$moneypunct@G$0A@@std@@IAE@PBDI@Z
??0?$moneypunct@G$0A@@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$moneypunct@G$0A@@std@@QAE@I@Z
??0?$moneypunct@_W$00@std@@IAE@PBDI@Z
??0?$moneypunct@_W$00@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$moneypunct@_W$00@std@@QAE@I@Z
??0?$moneypunct@_W$0A@@std@@IAE@PBDI@Z
??0?$moneypunct@_W$0A@@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$moneypunct@_W$0A@@std@@QAE@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

Sections

.text
Size: 521KB - Virtual size: 520KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcr90.dll
.dll windows:5 windows x86 arch:x86

0fda4497453286b1daa098623dfc53ce

Code Sign

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:0f:78:4d:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/08/2007, 00:23

Not After

23/02/2009, 00:33

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:14:2c:a7:00:00:00:00:00:06
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/06/2007, 23:54

Not After

13/06/2012, 00:04

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:27F4-D440-54F3,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:14:2c:a7:00:00:00:00:00:06
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/06/2007, 23:54

Not After

13/06/2012, 00:04

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:27F4-D440-54F3,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:a2:0c:d7:08:3c:6d:9c:9c:e7:11:07:12:85:b9:f7:4e:10:16:d8
Signer

Actual PE Digest

4e:a2:0c:d7:08:3c:6d:9c:9c:e7:11:07:12:85:b9:f7:4e:10:16:d8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr90.i386.pdb

Imports

kernel32

GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetSystemWindowsDirectoryW
GetSystemDirectoryW
GetLongPathNameW
GetCurrentThreadId
TlsGetValue
DebugBreak
OutputDebugStringA
GetCommandLineA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
GetLastError
ResumeThread
CreateThread
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
FindNextFileA
FindFirstFileA
FindClose
FindNextFileW
FindFirstFileW
GetLogicalDrives
GetDiskFreeSpaceA
FileTimeToSystemTime
FileTimeToLocalFileTime
SetErrorMode
Beep
GetFileAttributesA
SetFileAttributesA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
GetCurrentProcessId
CreateDirectoryA
MoveFileA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
SetEnvironmentVariableW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
DeleteFileW
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
LoadLibraryA
FreeLibrary
CreateProcessW
ReadFile
DuplicateHandle
GetCurrentProcess
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetLocalTime
WideCharToMultiByte
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetLocalTime
MultiByteToWideChar
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeFormatA
GetDateFormatA
RtlUnwind
RaiseException
HeapFree
HeapAlloc
GetProcessHeap
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
HeapSize
HeapReAlloc
VirtualAlloc
HeapValidate
HeapCompact
HeapWalk
VirtualProtect
GetSystemInfo
VirtualQuery
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
GetConsoleCP
GetConsoleMode
CreateFileA
FlushFileBuffers
CreatePipe
CreateFileW
SetStdHandle
ReadConsoleInputA
SetConsoleMode
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
IsDBCSLeadByteEx
ReadConsoleA
ReadConsoleW
SetEndOfFile
GetFileInformationByHandle
PeekNamedPipe
InterlockedExchange
LockFile
UnlockFile
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
QueryPerformanceCounter
GetTickCount
GetStringTypeW
GetStringTypeA
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
GetLocaleInfoW
GetLocaleInfoA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
LoadLibraryW
GetModuleHandleA

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1exception@std@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??2@YAPAXIHPBDH@Z
??3@YAXPAX@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4exception@std@@QAEAAV01@ABV01@@Z
??8type_info@@QBE_NABV0@@Z
??9type_info@@QBE_NABV0@@Z
??_7__non_rtti_object@std@@6B@
??_7bad_cast@std@@6B@
??_7bad_typeid@std@@6B@
??_7exception@@6B@
??_7exception@std@@6B@
??_Fbad_cast@std@@QAEXXZ
??_Fbad_typeid@std@@QAEXXZ
??_U@YAPAXI@Z
??_U@YAPAXIHPBDH@Z
??_V@YAXPAX@Z
?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Type_info_dtor@type_info@@CAXPAV1@@Z
?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z
?_ValidateExecute@@YAHP6GHXZ@Z
?_ValidateRead@@YAHPBXI@Z
?_ValidateWrite@@YAHPAXI@Z
?_inconsistency@@YAXXZ
?_invalid_parameter@@YAXPBG00II@Z
?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
?_open@@YAHPBDHH@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZH@Z
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?_sopen@@YAHPBDHHH@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?_wopen@@YAHPB_WHH@Z
?_wsopen@@YAHPB_WHHH@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZH@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZH@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?swprintf@@YAHPAGIPBGZZ
?swprintf@@YAHPA_WIPB_WZZ
?terminate@@YAXXZ
?unexpected@@YAXXZ
?vswprintf@@YAHPA_WIPB_WPAD@Z
?what@exception@std@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CRT_RTC_INITW
_CreateFrameInfo
_CxxThrowException
_EH_prolog
_FindAndUnlinkFrame
_Getdays
_Getmonths
_Gettnames
_HUGE
_IsExceptionObjectToBeDestroyed
_NLG_Dispatch2
_NLG_Return
_NLG_Return2
_Strftime
_XcptFilter
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__CppXcptFilter
__CxxCallUnwindDelDtor
__CxxCallUnwindDtor
__CxxCallUnwindStdDelDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__STRINGTOLD_L
__TypeMatch
___fls_getvalue@4
___fls_setvalue@8
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___mb_cur_max_l_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__clean_type_info_names_internal
__control87_2
__create_locale
__crtCompareStringA
__crtCompareStringW
__crtGetLocaleInfoW
__crtGetStringTypeW
__crtLCMapStringA
__crtLCMapStringW
__daylight
__dllonexit
__doserrno
__dstbias
__fpecode
__free_locale
__get_app_type
__get_current_locale
__get_flsindex
__get_tlsindex
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__iswcsym
__iswcsymf
__lc_clike
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv
__lconv_init
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_asin
__libm_sse2_asinf
__libm_sse2_atan
__libm_sse2_atan2
__libm_sse2_atanf
__libm_sse2_cos
__libm_sse2_cosf
__libm_sse2_exp
__libm_sse2_expf
__libm_sse2_log
__libm_sse2_log10
__libm_sse2_log10f
__libm_sse2_logf
__libm_sse2_pow
__libm_sse2_powf
__libm_sse2_sin
__libm_sse2_sinf
__libm_sse2_tan
__libm_sse2_tanf
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__report_gsfailure
__set_app_type
__set_flsgetvalue
__setlc_active
__setusermatherr
__strncnt
__swprintf_l
__sys_errlist
__sys_nerr
__threadhandle
__threadid
__timezone
__toascii
__tzname
__unDName
__unDNameEx
__unDNameHelper
__uncaught_exception
__unguarded_readlc_active
__vswprintf_l
__wargv
__wcserror
__wcserror_s
__wcsncnt
__wgetmainargs
__winitenv
_abnormal_termination
_abs64
_access
_access_s
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_aligned_free
_aligned_malloc
_aligned_msize
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_offset_recalloc
_aligned_realloc
_aligned_recalloc
_amsg_exit
_assert
_atodbl
_atodbl_l
_atof_l
_atoflt
_atoflt_l
_atoi64
_atoi64_l
_atoi_l
_atol_l
_atoldbl
_atoldbl_l
_beep
_beginthread
_beginthreadex
_byteswap_uint64
_byteswap_ulong
_byteswap_ushort
_c_exit
_cabs
_callnewh
_calloc_crt
_cexit
_cgets
_cgets_s
_cgetws
_cgetws_s
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_chsize_s
_clearfp
_close
_commit
_commode
_configthreadlocale
_control87
_controlfp
_controlfp_s
_copysign
_cprintf
_cprintf_l
_cprintf_p
_cprintf_p_l
_cprintf_s
_cprintf_s_l
_cputs
_cputws
_creat
_create_locale
_crt_debugger_hook
_cscanf
_cscanf_l
_cscanf_s
_cscanf_s_l
_ctime32
_ctime32_s
_ctime64
_ctime64_s
_cwait
_cwprintf
_cwprintf_l
_cwprintf_p
_cwprintf_p_l
_cwprintf_s
_cwprintf_s_l
_cwscanf
_cwscanf_l
_cwscanf_s
_cwscanf_s_l
_daylight
_decode_pointer
_difftime32
_difftime64
_dosmaperr
_dstbias
_dup
_dup2
_dupenv_s
_ecvt
_ecvt_s
_encode_pointer
_encoded_null
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_except_handler4_common
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fclose_nolock
_fcloseall
_fcvt
_fcvt_s
_fdopen
_fflush_nolock
_fgetchar
_fgetwc_nolock
_fgetwchar
_filbuf
_filelength
_filelengthi64
_fileno
_findclose
_findfirst32
_findfirst32i64
_findfirst64
_findfirst64i32
_findnext32
_findnext32i64
_findnext64
_findnext64i32
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fprintf_l
_fprintf_p
_fprintf_p_l
_fprintf_s_l
_fputchar
_fputwc_nolock
_fputwchar
_fread_nolock
_fread_nolock_s
_free_locale
_freea
_freea_s
_freefls
_fscanf_l
_fscanf_s_l
_fseek_nolock
_fseeki64
_fseeki64_nolock
_fsopen
_fstat32
_fstat32i64
_fstat64
_fstat64i32
_ftell_nolock
_ftelli64
_ftelli64_nolock
_ftime32
_ftime32_s
_ftime64
_ftime64_s
_ftol
_fullpath
_futime32
_futime64
_fwprintf_l
_fwprintf_p
_fwprintf_p_l
_fwprintf_s_l
_fwrite_nolock
_fwscanf_l
_fwscanf_s_l
_gcvt
_gcvt_s
_get_amblksiz
_get_current_locale
_get_daylight
_get_doserrno
_get_dstbias
_get_errno
_get_fmode
_get_heap_handle
_get_invalid_parameter_handler
_get_osfhandle
_get_output_format
_get_pgmptr
_get_printf_count_output
_get_purecall_handler
_get_sbh_threshold
_get_terminate
_get_timezone
_get_tzname
_get_unexpected
_get_wpgmptr
_getc_nolock
_getch
_getch_nolock
_getche
_getche_nolock
_getcwd
_getdcwd
_getdcwd_nolock
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getptd
_getsystime
_getw
_getwch
_getwch_nolock
_getwche
_getwche_nolock
_getws
_getws_s
_global_unwind2
_gmtime32

Sections

.text
Size: 598KB - Virtual size: 598KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
xlstat4.dll
.dll windows:5 windows x86 arch:x86

ec0a7442f9cdd62986b27ee4894c0b34

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

75:06:b5:d2:91:7a:13:5c:04:e2:29:ee:21:44:9a:8d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

22/02/2017, 00:00

Not After

25/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

45:98:a2:8d:fd:dc:bc:31:de:d0:f2:98:07:c5:a7:43
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

05/01/2016, 00:00

Not After

26/07/2018, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Operate,O=ShenZhen Thunder Networking Technologies Ltd.,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

02/01/2017, 00:00

Not After

01/04/2028, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

03:29:70:28:db:89:e7:10:51:e4:e7:d1:f5:5d:05:af:06:df:0b:12:e6:93:cd:9d:e5:b8:9a:fc:ce:2a:96:71
Signer

Actual PE Digest

03:29:70:28:db:89:e7:10:51:e4:e7:d1:f5:5d:05:af:06:df:0b:12:e6:93:cd:9d:e5:b8:9a:fc:ce:2a:96:71

Digest Algorithm

sha256

PE Digest Matches

true

e5:17:4a:36:a5:77:2d:c0:9a:a6:38:db:53:ca:28:c5:6b:39:c4:8f
Signer

Actual PE Digest

e5:17:4a:36:a5:77:2d:c0:9a:a6:38:db:53:ca:28:c5:6b:39:c4:8f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\commonlib\xl_framework\win32_component\xl_stat_v3\Release\Win32\xlstat4.pdb

Imports

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

ws2_32

socket
htons
send
recv
connect
closesocket
WSAAsyncGetHostByName
WSAGetLastError
getpeername
ntohs
getsockname
WSACancelAsyncRequest
WSASetLastError
WSASend
WSARecv
WSAIoctl
bind
WSASocketW
inet_addr
gethostbyname
inet_ntoa
WSAAsyncSelect

winhttp

WinHttpTimeToSystemTime

libexpat

ord16
ord35
ord48
ord50
ord25
ord21
ord20
ord52

xlluaruntime

lua_pushinteger
lua_pushnil
lua_gettop
lua_tonumber
lua_type
lua_pushstring
lua_tolstring
lua_settop
XLLRT_RegisterGlobalObj
lua_toboolean
lua_next
lua_createtable
lua_pushboolean
lua_settable
lua_pushnumber
luaL_checklstring
lua_tointeger

zlib1

compressBound
compress

kernel32

GetLastError
FindFirstFileW
FindClose
MultiByteToWideChar
WideCharToMultiByte
GetTempPathW
GetSystemTimeAsFileTime
GetQueuedCompletionStatus
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
Sleep
InterlockedExchange
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
PostQueuedCompletionStatus
CreateIoCompletionPort
GetWindowsDirectoryW
GetWindowsDirectoryA
QueryPerformanceCounter
lstrcatW
GetFileAttributesW
CreateDirectoryW
IsBadCodePtr
VirtualQuery
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
GetVersionExW
FindFirstFileA
GetCurrentProcessId
ResetEvent
WaitForSingleObject
InterlockedDecrement
InterlockedIncrement
GetCurrentProcess
FlushInstructionCache
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
CloseHandle
GetTempFileNameW
RaiseException
SetLastError
InitializeCriticalSection
DeleteCriticalSection
DeleteFileW
MoveFileW
GetTickCount
CreateEventW
SetEvent

user32

SetWindowLongW
GetWindowLongW
GetDesktopWindow
KillTimer
SetTimer
GetSystemMetrics
PostQuitMessage
DispatchMessageW
TranslateMessage
GetMessageW
CreateWindowExW
LoadCursorW
GetClassInfoExW
RegisterClassExW
PostMessageW
DestroyWindow
IsWindow
CallWindowProcW
DefWindowProcW
UnregisterClassA

ole32

CoInitialize
CoUninitialize
CoCreateInstance
CLSIDFromProgID

oleaut32

SysFreeString
VariantChangeType
VariantClear
VariantInit
SysAllocString

msvcp90

?unget@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@D@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
??1locale@std@@QAE@XZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QAE?AVlocale@2@ABV32@@Z
??0locale@std@@QAE@PBDH@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?at@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@AAD@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IID@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBDH@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z
??1strstreambuf@std@@UAE@XZ
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??_7ios_base@std@@6B@
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0strstreambuf@std@@QAE@PBDH@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_WI@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?deallocate@?$allocator@D@std@@QAEXPADI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?allocate@?$allocator@D@std@@QAEPADI@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?destroy@?$allocator@D@std@@QAEXPAD@Z
?construct@?$allocator@D@std@@QAEXPADABD@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z

shlwapi

PathFileExistsW

msvcr90

_mkgmtime64
_ui64toa
vsprintf_s
wcsrchr
__CxxFrameHandler3
memset
memcpy
strlen
_CxxThrowException
_strnicmp
_stricmp
_swprintf
atol
strncmp
ldiv
fopen
fgetc
isalpha
isdigit
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
strstr
_gmtime64
rand
??3@YAXPAX@Z
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABQBD@Z
memmove_s
sscanf
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
strncpy
atoi
_purecall
_itoa
_atoi64
_i64toa
_localtime64_s
strftime
memcpy_s
??_V@YAXPAX@Z
swprintf_s
_beginthreadex
_mktime64
_wfopen
fwrite
fclose
_recalloc
feof
fread
_time64
malloc
free
_snprintf
_itow
srand

Exports

Exports

XLSTAT4_AddStat
XLSTAT4_BeatDownloadStat
XLSTAT4_BeatPlayStat
XLSTAT4_EndDownloadStat
XLSTAT4_EndEventContext
XLSTAT4_EndPlayStat
XLSTAT4_EnterEventContext
XLSTAT4_GetActiveEventContextName
XLSTAT4_GetParentEventContextName
XLSTAT4_InitParam
XLSTAT4_Load
XLSTAT4_PrepareParam
XLSTAT4_RegisterClass
XLSTAT4_Save
XLSTAT4_SendDownloadStat
XLSTAT4_SendPlayStat
XLSTAT4_SetExtData
XLSTAT4_SetNetTimeout
XLSTAT4_SetUserID
XLSTAT4_StartDownloadStat
XLSTAT4_StartEventContext
XLSTAT4_StartOnlineStat
XLSTAT4_StartPlayStat
XLSTAT4_SwitchEventContext
XLSTAT4_SyncSendAllStat
XLSTAT4_TrackClick
XLSTAT4_TrackEvent
XLSTAT4_TrackPath
XLSTAT4_TrackShow
XLSTAT4_TrackUseTime
XLSTAT4_TrackUserUsed
XLSTAT4_URLEncode
XLSTAT4_Uninit
_XLSTAT4_BeatHeartbeat@16
_XLSTAT4_EndHeartbeat@16
_XLSTAT4_StartHeartbeat@16

Sections

.text
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
xlstat4.xml
zlib1.dll
.dll windows:5 windows x86 arch:x86

e8fcd924004be61375969e3c785cbe33

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcr90

ftell
fprintf
_fdopen
fopen
sprintf
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
clearerr
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
strerror
malloc
fputc
fseek
fflush
_vsnprintf
free
fclose
_errno
fread
ferror
fwrite
memset
_initterm_e
memcpy

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

Exports

Exports

adler32
compress
compress2
compressBound
crc32
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
get_crc_table
gzclearerr
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzungetc
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0300dc02104678425edb2598cd7a8e1

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7Certificate

Key Usages

04:00:00:00:00:01:25:07:1d:f9:afCertificate

Key Usages

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14Certificate

Extended Key Usages

Key Usages

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0fCertificate

Extended Key Usages

Key Usages

61:29:15:27:00:00:00:00:00:2aCertificate

Key Usages

62:1d:1c:2a:9f:65:dc:a4:d7:d6:3c:04Certificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:25:07:1d:f9:afCertificate

Key Usages

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0fCertificate

Extended Key Usages

Key Usages

61:29:15:27:00:00:00:00:00:2aCertificate

Key Usages

62:1d:1c:2a:9f:65:dc:a4:d7:d6:3c:04Certificate

Extended Key Usages

Key Usages

11:21:b4:55:35:1e:bb:1a:b2:4f:97:ef:07:fe:2a:b3:0b:8aCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:2f:4e:e1:52:d7Certificate

Key Usages

16:a1:3c:c1:94:61:51:f7:09:c3:16:37:49:22:2d:21:dd:ce:3c:96:9c:c2:17:74:2a:b0:81:2a:b4:b1:ff:32Signer

dd:eb:62:cd:61:bf:af:55:1f:89:76:78:a9:4d:62:dd:dc:48:d3:06Signer

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

atl71

shlwapi

msvfw32

version

winmm

ws2_32

d3d9

ddraw

rpcrt4

Exports

Exports

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.orpc Size: 4KB - Virtual size: 46B

.rdata Size: 304KB - Virtual size: 303KB

.data Size: 88KB - Virtual size: 123KB

.rsrc Size: 300KB - Virtual size: 297KB

.reloc Size: 68KB - Virtual size: 66KB

57de6dd620a5bdfdb6e91779dae5d252

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7Certificate

Key Usages

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14Certificate

Extended Key Usages

Key Usages

19:1a:32:cb:75:9c:97:b8:cf:ac:11:8d:d5:12:7f:49Certificate

Extended Key Usages

Key Usages

48:71:dd:fd:2e:98:d4:c3:c9:fd:c2:c8:b4:52:c6:fcCertificate

Extended Key Usages

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

04:00:00:00:00:01:25:07:1d:f9:af
Certificate

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

61:29:15:27:00:00:00:00:00:2a
Certificate

62:1d:1c:2a:9f:65:dc:a4:d7:d6:3c:04
Certificate

04:00:00:00:00:01:25:07:1d:f9:af
Certificate

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

61:29:15:27:00:00:00:00:00:2a
Certificate

62:1d:1c:2a:9f:65:dc:a4:d7:d6:3c:04
Certificate

11:21:b4:55:35:1e:bb:1a:b2:4f:97:ef:07:fe:2a:b3:0b:8a
Certificate

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

16:a1:3c:c1:94:61:51:f7:09:c3:16:37:49:22:2d:21:dd:ce:3c:96:9c:c2:17:74:2a:b0:81:2a:b4:b1:ff:32
Signer

dd:eb:62:cd:61:bf:af:55:1f:89:76:78:a9:4d:62:dd:dc:48:d3:06
Signer

.text
Size: 1.0MB - Virtual size: 1.0MB

.orpc
Size: 4KB - Virtual size: 46B

.rdata
Size: 304KB - Virtual size: 303KB

.data
Size: 88KB - Virtual size: 123KB

.rsrc
Size: 300KB - Virtual size: 297KB

.reloc
Size: 68KB - Virtual size: 66KB

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

19:1a:32:cb:75:9c:97:b8:cf:ac:11:8d:d5:12:7f:49
Certificate

48:71:dd:fd:2e:98:d4:c3:c9:fd:c2:c8:b4:52:c6:fc
Certificate

19:1a:32:cb:75:9c:97:b8:cf:ac:11:8d:d5:12:7f:49
Certificate

61:19:93:e4:00:00:00:00:00:1c
Certificate

48:71:dd:fd:2e:98:d4:c3:c9:fd:c2:c8:b4:52:c6:fc
Certificate

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

04:00:00:00:00:01:31:89:c6:50:04
Certificate

d0:3c:99:f2:f9:01:12:11:18:a4:5f:5a:53:7a:65:9c:7c:f1:f7:86:57:85:a7:8e:53:41:16:8b:64:97:a8:f5
Signer

af:7d:9c:ae:4a:8d:12:bf:5d:d8:77:af:76:84:c7:cb:c1:4a:a9:88
Signer

.text
Size: 120KB - Virtual size: 120KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 2KB - Virtual size: 5KB

.gfids
Size: 512B - Virtual size: 292B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 169KB - Virtual size: 169KB

.reloc
Size: 6KB - Virtual size: 5KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

75:06:b5:d2:91:7a:13:5c:04:e2:29:ee:21:44:9a:8d
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

45:98:a2:8d:fd:dc:bc:31:de:d0:f2:98:07:c5:a7:43
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6
Certificate

b7:38:70:47:b1:81:08:be:d7:87:73:71:26:4f:73:a6:03:14:50:39:cf:f8:43:00:0a:53:84:1c:a3:24:c9:8d
Signer

87:c7:a6:47:16:93:ef:20:98:b7:e5:78:93:49:9b:23:da:f0:45:76
Signer