ploutus | 10de35a72f05fd40a075993d0c1378b0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

10de35a72f05fd40a075993d0c1378b0_JaffaCakes118
Size

2.2MB
MD5

10de35a72f05fd40a075993d0c1378b0
SHA1

15cc57ebdd406a42f489e23440792c0cec0d3ef0
SHA256

ba090f00dec7afbd561670d2a345193fe2d8c10688aa3b5c73972918d1a55a4a
SHA512

ca5f5fa96a2c57e51b441ca70302d195dbb7af25cf068289f27ba5583e113db4d8c76f2343e8f4f4de89588e9d71fae1b34188cee120eb9c1c5d3f6ac8dc41d6
SSDEEP

49152:csT/ZVknzPhWewNK497iok1BN4VTF07mbJbvvNZT:csTBVm5iQ4Nrk1BN8F0iZFZT

Score

10^/10

ploutus

Malware Config

Signatures

Detected Ploutus loader 1 IoCs

Processes:

resource	yara_rule
static1/unpack002/Connectifyd.exe	family_ploutus

Ploutus family
ploutus

Unsigned PE 12 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack002/$PLUGINSDIR/SimpleSC.dll
unpack002/$PLUGINSDIR/System.dll
unpack002/$PLUGINSDIR/UAC.dll
unpack002/$PLUGINSDIR/nsDialogs.dll
unpack002/$PLUGINSDIR/nsExec.dll
unpack002/$TEMP/wifi.dll
unpack002/WCN-UFD/setupSNK.exe
unpack002/drivers/amd64/snetcfg.exe
unpack002/drivers/x86/snetcfg.exe
unpack003/$PLUGINSDIR/SimpleSC.dll
unpack003/$PLUGINSDIR/System.dll
unpack003/$PLUGINSDIR/nsExec.dll

NSIS installer 4 IoCs

installer

Processes:

resource	yara_rule
static1/unpack001/ConnectifyInstaller.exe	nsis_installer_1
static1/unpack001/ConnectifyInstaller.exe	nsis_installer_2
static1/unpack002/start_service.exe	nsis_installer_1
static1/unpack002/start_service.exe	nsis_installer_2

Files

10de35a72f05fd40a075993d0c1378b0_JaffaCakes118
.rar
155绿色软件站.url
.url
ConnectifyInstaller.exe
.exe windows:4 windows x86 arch:x86

dfb06052e74b26a42b0e490bd1c07959

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2c:40:19:83:a7:e2:16:3f:77:77:70:f3:7c:75:b9:5d:5b:98:79:89
Signer

Actual PE Digest

2c:40:19:83:a7:e2:16:3f:77:77:70:f3:7c:75:b9:5d:5b:98:79:89

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
MulDiv
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetAsyncKeyState
IsDlgButtonChecked
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
RegisterClassA
OpenClipboard
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
wvsprintfA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
ShowWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
EmptyClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
SetForegroundWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/OCSetupHlp.dll
.dll regsvr32 windows:5 windows x86 arch:x86

0615854a8bf9998cbbbcc756d6e6d4bf

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6f:fc:26:3a:35:11:34:19:4c:f1:6e:1e:6d:0e:08:06
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

25-01-2011 00:00

Not After

14-03-2014 23:59

Subject

CN=OpenCandy Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=OpenCandy Inc.,L=San Diego,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6b:5d:3d:d9:b4:58:ba:66:2d:2d:12:f0:45:be:52:cc:73:2a:95:3f
Signer

Actual PE Digest

6b:5d:3d:d9:b4:58:ba:66:2d:2d:12:f0:45:be:52:cc:73:2a:95:3f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileAttributesW
CreateFileW
GetFileSize
GetCurrentProcessId
GetEnvironmentVariableW
FindFirstFileW
FindNextFileW
FindClose
ReadFile
GetTimeZoneInformation
WaitForSingleObject
OutputDebugStringW
WriteFile
DeleteFileW
GetCurrentThreadId
SetLastError
GetCurrentProcess
FlushInstructionCache
ExpandEnvironmentStringsW
UnmapViewOfFile
MapViewOfFileEx
CreateFileMappingW
OpenFileMappingW
CreateMutexW
OpenMutexW
ReleaseMutex
CreateDirectoryW
GetShortPathNameW
GetTempPathW
SetFilePointer
GetTickCount
CreateEventW
SetEvent
CreateProcessW
MoveFileExW
GlobalUnlock
GlobalLock
GlobalAlloc
Process32NextW
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetFileAttributesA
CreateProcessA
GetExitCodeProcess
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetFullPathNameW
SetEndOfFile
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
Process32FirstW
CreateToolhelp32Snapshot
WriteConsoleA
GetCurrentDirectoryA
CreateFileA
CloseHandle
GetFileInformationByHandle
GetFullPathNameA
FlushFileBuffers
GetModuleHandleA
SetErrorMode
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
SetHandleCount
LCMapStringA
ExitProcess
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
GetStdHandle
HeapCreate
RtlUnwind
GetDriveTypeW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetFileType
GetConsoleMode
GetConsoleCP
FindFirstFileA
GetDriveTypeA
FileTimeToLocalFileTime
GetCommandLineA
ExitThread
GetSystemTimeAsFileTime
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
HeapSize
HeapReAlloc
HeapDestroy
HeapFree
HeapAlloc
GetProcessHeap
FindResourceA
GlobalMemoryStatusEx
GetDiskFreeSpaceExW
GetFileAttributesExW
CompareFileTime
FileTimeToSystemTime
GetVersion
GetSystemInfo
GetVersionExW
GetTempFileNameW
GlobalFree
ReleaseSemaphore
ResumeThread
InitializeCriticalSectionAndSpinCount
CreateSemaphoreW
GetSystemDefaultLCID
FormatMessageA
ExpandEnvironmentStringsA
SleepEx
lstrlenA
WideCharToMultiByte
OpenProcess
GetUserDefaultUILanguage
GetLocaleInfoW
FreeLibrary
LoadLibraryW
DeleteCriticalSection
lstrcmpiW
EnterCriticalSection
GetProcAddress
GetThreadLocale
GetLastError
SetThreadLocale
RaiseException
lstrlenW
MultiByteToWideChar
GetModuleFileNameW
LeaveCriticalSection
InitializeCriticalSection
GetModuleHandleW
InterlockedDecrement
InterlockedIncrement
QueryPerformanceCounter
LoadLibraryExW
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
Sleep
PeekNamedPipe
CreateThread

psapi

EnumProcesses
GetProcessImageFileNameW

ws2_32

WSACleanup
WSAStartup
closesocket
WSAGetLastError
gethostname
ioctlsocket
getaddrinfo
freeaddrinfo
select
__WSAFDIsSet
WSASetLastError
connect
setsockopt
getpeername
getsockopt
htons
bind
ntohs
getsockname
send
recv
socket

msimg32

AlphaBlend

shlwapi

PathMatchSpecW

user32

IsWindow
CallWindowProcW
DefWindowProcW
GetWindowLongW
SetWindowLongW
GetCursor
ReleaseCapture
TrackPopupMenu
GetCursorPos
DestroyWindow
PostMessageW
PostQuitMessage
KillTimer
UnregisterClassA
GetForegroundWindow
DestroyMenu
NotifyWinEvent
FindWindowW
GetParent
GetAncestor
SetFocus
CreateDialogParamW
LoadImageW
GetSystemMetrics
CallNextHookEx
UnhookWindowsHookEx
SystemParametersInfoW
SetWindowsHookExW
DrawTextW
ScreenToClient
SetMenuItemInfoW
IsWindowVisible
SetForegroundWindow
SetCursor
ClientToScreen
GetWindowRect
SendDlgItemMessageW
EnableMenuItem
GetSystemMenu
EnableWindow
SetDlgItemTextW
MessageBoxW
CreateWindowExW
LoadCursorW
GetClassInfoExW
RegisterClassExW
GetDesktopWindow
CharNextW
FillRect
InvalidateRect
GetAsyncKeyState
EndPaint
BeginPaint
DrawFocusRect
ReleaseDC
GetDC
GetSysColorBrush
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard
GetWindowThreadProcessId
SetWindowPos
MoveWindow
GetClientRect
SetWindowTextW
SendMessageW
LoadIconW
DispatchMessageW
TranslateMessage
IsDialogMessageW
GetMessageW
GetDlgItem
ShowWindow
EnumWindows
EnumChildWindows
GetWindowTextW
GetWindowTextLengthW
SetTimer

gdi32

CreateSolidBrush
SetViewportOrgEx
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetTextExtentPoint32W
SelectObject
CreateDIBSection
SetBkMode
SetTextColor
CreateFontIndirectW
GetObjectW
DeleteObject
DeleteDC
GetDeviceCaps
GetStockObject
GdiFlush

advapi32

RegDeleteKeyW
RegQueryInfoKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyExW
RegSetValueExW
RegDeleteValueA
LookupPrivilegeValueW
RegDeleteValueW
AdjustTokenPrivileges
OpenProcessToken
DuplicateTokenEx
GetUserNameW
RegEnumKeyW

shell32

SHGetFolderPathW
Shell_NotifyIconW
ShellExecuteW

ole32

CoUninitialize
CoInitializeSecurity
CoSetProxyBlanket
CoTaskMemAlloc
CoCreateGuid
StringFromGUID2
CoTaskMemRealloc
CoInitialize
CoCreateInstance
CLSIDFromProgID
CoTaskMemFree

oleaut32

VariantClear
LoadRegTypeLi
SysAllocStringLen
SysFreeString
RegisterTypeLi
VarUI4FromStr
UnRegisterTypeLi
LoadTypeLi
SysStringLen
SysAllocString

comctl32

InitCommonControlsEx

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

urlmon

URLDownloadToFileW

wininet

InternetQueryOptionW
InternetGetConnectedStateExW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllInstall
DllRegisterServer
DllUnregisterServer
OCPRD357CanLeaveOfferPage
OCPRD357CleanupProduct
OCPRD357Detach
OCPRD357FindGuidAndRunDialog
OCPRD357FindGuidAndRunDialogA
OCPRD357GetAsyncOfferStatus
OCPRD357GetBannerInfo
OCPRD357GetBannerInfoW
OCPRD357GetMsg
OCPRD357GetNoCandy
OCPRD357GetOfferState
OCPRD357GetOfferType
OCPRD357Init2A
OCPRD357Init2W
OCPRD357InnoAdjust
OCPRD357InnoRestore
OCPRD357InstallShieldAdjust
OCPRD357LoadOpenCandyDLL
OCPRD357LogDevModeMessage
OCPRD357LogDevModeMessageW
OCPRD357NSISAdjust
OCPRD357PreInit
OCPRD357PrepareDownload
OCPRD357RunDialog
OCPRD357SetCmdLineValues
OCPRD357SetCmdLineValuesW
OCPRD357SetCustomBrushColor
OCPRD357SetCustomBrushColorW
OCPRD357SetNoCandy
OCPRD357SetOCOfferEnabled
OCPRD357SetOfferData
OCPRD357SetOfferLocation
OCPRD357SetUseDefaultColorBkGrnd
OCPRD357Shutdown
OCPRD357SignalProductFailed
OCPRD357SignalProductInstalled
OCPRD357StartDLMgr2Download
OCPRD357StartDLMgr2DownloadRunasAdmin
_OCPRD357DLMgr2Check@16
_OCPRD357Display@16
_OCPRD357DownloadMgr2RecycleOffer@12
_OCPRD357MgrCheck@16
_OCPRD357MgrExec@16
_OCPRD357RestartDll@16
_OCPRD357RestartDllAsAdmin@16
_OCPRD357RunOpenCandyDLL@16

Sections

.text
Size: 507KB - Virtual size: 506KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/SimpleSC.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ContinueService
ExistsService
GetErrorMessage
GetServiceBinaryPath
GetServiceDescription
GetServiceDisplayName
GetServiceFailure
GetServiceLogon
GetServiceName
GetServiceStartType
GetServiceStatus
GrantServiceLogonPrivilege
InstallService
PauseService
RemoveService
RemoveServiceLogonPrivilege
RestartService
ServiceIsPaused
ServiceIsRunning
ServiceIsStopped
SetServiceBinaryPath
SetServiceDescription
SetServiceFailure
SetServiceLogon
SetServiceStartType
StartService
StopService

Sections

CODE
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UAC.dll
.dll windows:4 windows x86 arch:x86

d78ca16597d32a4413a1ca1794041785

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersionExA
SetLastError
lstrcmpiA
GetCurrentThreadId
GetProcAddress
GetCommandLineA
UnmapViewOfFile
WaitForSingleObject
GetCurrentProcessId
SetEvent
lstrlenA
SetCurrentDirectoryA
MapViewOfFile
Sleep
OpenProcess
GetExitCodeProcess
GetExitCodeThread
CreateThread
CreateFileMappingA
CreateEventA
GlobalAlloc
CreateProcessA
GetLastError
MultiByteToWideChar
FormatMessageA
LocalFree
GlobalFree
CloseHandle
GetModuleFileNameA
lstrcatA
GetPrivateProfileIntA
GetPrivateProfileStringA
DuplicateHandle
LoadLibraryA

user32

GetClassNameA
SetWindowsHookExA
DispatchMessageA
TranslateMessage
IsDialogMessageA
PeekMessageA
MsgWaitForMultipleObjects
DefWindowProcA
PostMessageA
SetForegroundWindow
CreateWindowExA
GetWindowThreadProcessId
CallWindowProcA
SetWindowPos
GetWindowRect
UnhookWindowsHookEx
CallNextHookEx
CharNextA
DialogBoxParamA
SendMessageW
MessageBoxA
EndDialog
SetWindowLongA
LoadImageA
GetWindowLongA
EnableWindow
ShowWindow
wsprintfA
GetDlgItem
SendMessageA
LoadStringA
DestroyWindow

advapi32

GetUserNameA
QueryServiceStatus
CloseServiceHandle
OpenServiceA
OpenSCManagerA
LookupPrivilegeValueA
GetTokenInformation
FreeSid
EqualSid
AllocateAndInitializeSid
OpenThreadToken
AdjustTokenPrivileges
OpenProcessToken

shell32

ShellExecuteExA

ole32

CoInitialize

Exports

Exports

_

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 898B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:4 windows x86 arch:x86

1e2884056e655f2b7bc5a904e352fc80

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyA
GetFileAttributesA
lstrcmpiA
MulDiv
lstrlenA
HeapFree
GetCurrentDirectoryA
HeapAlloc
HeapReAlloc
GlobalFree
lstrcpynA
GlobalAlloc
GetProcessHeap
SetCurrentDirectoryA

user32

GetPropA
DestroyWindow
CallWindowProcA
SetCursor
LoadCursorA
RemovePropA
CharPrevA
GetWindowLongA
DrawTextA
GetWindowTextA
GetDlgItem
SetWindowLongA
SetWindowPos
CreateDialogParamA
MapWindowPoints
GetWindowRect
SetPropA
CreateWindowExA
IsWindow
SetTimer
KillTimer
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
ShowWindow
wsprintfA
MapDialogRect
GetClientRect
CharNextA
SendMessageA
DrawFocusRect

gdi32

SetTextColor

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/nsExec.dll
.dll windows:4 windows x86 arch:x86

d83f71e61ee459ee63ca3e829966a9dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetExitCodeProcess
WaitForSingleObject
Sleep
TerminateProcess
lstrcpyA
lstrcpynA
GlobalReAlloc
GlobalUnlock
GlobalSize
ReadFile
PeekNamedPipe
GetTickCount
CreateProcessA
GetStartupInfoA
CreatePipe
GetVersionExA
GetModuleHandleA
DeleteFileA
lstrcmpiA
lstrlenA
lstrcatA
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
CreateFileA
CopyFileA
GetTempFileNameA
GlobalFree
GlobalAlloc
GetModuleFileNameA
ExitProcess
GetCommandLineA
GetProcAddress
GlobalLock
GetCurrentProcess

user32

SendMessageA
OemToCharBuffA
CharNextA
wsprintfA
CharPrevA
FindWindowExA

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

Exports

Exports

Exec
ExecToLog
ExecToStack

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$TEMP/ConnectifyShutdown.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

6a:00:61:9a:e5:9c:9d:39:25:15:e9:ea:a2:ff:49:e5:9e:1f:44:c4
Signer

Actual PE Digest

6a:00:61:9a:e5:9c:9d:39:25:15:e9:ea:a2:ff:49:e5:9e:1f:44:c4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\2.2.0.release\ConnectifyKiller\obj\x86\Release\ConnectifyShutdown.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$TEMP/wifi.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\2.2.0.release\ManagedWifi\obj\Release\wifi.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
BuildProps.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

60:85:28:57:dc:b0:67:75:bb:46:1d:d7:90:0e:81:13:01:cb:45:83
Signer

Actual PE Digest

60:85:28:57:dc:b0:67:75:bb:46:1d:d7:90:0e:81:13:01:cb:45:83

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\2.2.0.release\BuildProps\obj\Release\BuildProps.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ConnUPnP.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

95:f0:19:40:15:b5:ff:b6:17:bb:27:b7:8c:1b:c6:04:3e:90:70:e7
Signer

Actual PE Digest

95:f0:19:40:15:b5:ff:b6:17:bb:27:b7:8c:1b:c6:04:3e:90:70:e7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\2.2.0.release\ConnUPnP\obj\Release\ConnUPnP.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Connectify.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2a:b2:42:8b:cf:ee:f7:cf:b7:41:41:2e:58:d5:10:58:59:da:d6:4b
Signer

Actual PE Digest

2a:b2:42:8b:cf:ee:f7:cf:b7:41:41:2e:58:d5:10:58:59:da:d6:4b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Connectify.exe.config
ConnectifyNAT.dll
.dll windows:5 windows x86 arch:x86

675f4c21e3bc18a8b1c8d9b3908805a0

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

35:d8:a0:96:da:0b:57:84:d3:e7:4d:8a:17:ae:d6:ba:b0:7f:65:d1
Signer

Actual PE Digest

35:d8:a0:96:da:0b:57:84:d3:e7:4d:8a:17:ae:d6:ba:b0:7f:65:d1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\kchuang\Documents\Connectify_all\connectify\software\Release\ConnectifyNAT.pdb

Imports

iphlpapi

NotifyAddrChange
CancelIPChangeNotify
GetIpNetTable
GetAdaptersInfo
NotifyRouteChange

ndisapi

?GetRasLinks@CNdisApi@@QAEHPAXPAU_RAS_LINKS@@@Z
?ConvertWindowsNTAdapterName@CNdisApi@@SAHPBDPADK@Z
?ConvertWindows9xAdapterName@CNdisApi@@SAHPBDPADK@Z
??0CNdisApi@@QAE@PBD@Z
??1CNdisApi@@UAE@XZ
?SetPacketEvent@CNdisApi@@QAEHPAX0@Z
?SetAdapterMode@CNdisApi@@QAEHPAU_ADAPTER_MODE@@@Z
?FlushAdapterPacketQueue@CNdisApi@@QAEHPAX@Z
?IsDriverLoaded@CNdisApi@@QAEHXZ
?GetTcpipBoundAdaptersInfo@CNdisApi@@QAEHPAU_TCP_AdapterList@@@Z
?ReadPacket@CNdisApi@@QAEHPAU_ETH_REQUEST@@@Z
?SendPacketToAdapter@CNdisApi@@QAEHPAU_ETH_REQUEST@@@Z
?SendPacketToMstcp@CNdisApi@@QAEHPAU_ETH_REQUEST@@@Z
?ConvertWindows2000AdapterName@CNdisApi@@SAHPBDPADK@Z

ws2_32

WSACreateEvent
htonl
inet_ntoa
ntohl
inet_addr
htons
ntohs
WSAGetLastError

log4cxx

??6CharMessageBuffer@helpers@log4cxx@@QAEAAV012@PBD@Z
??6CharMessageBuffer@helpers@log4cxx@@QAEAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@H@Z
??6CharMessageBuffer@helpers@log4cxx@@QAEAAV012@PAD@Z
?str@MessageBuffer@helpers@log4cxx@@QAEABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAVCharMessageBuffer@23@@Z
?isErrorEnabled@Logger@log4cxx@@QBE_NXZ
?getTrace@Level@log4cxx@@SA?AV?$ObjectPtrT@VLevel@log4cxx@@@helpers@2@XZ
??0?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??6CharMessageBuffer@helpers@log4cxx@@QAEAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@_N@Z
?getError@Level@log4cxx@@SA?AV?$ObjectPtrT@VLevel@log4cxx@@@helpers@2@XZ
??6MessageBuffer@helpers@log4cxx@@QAEAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@K@Z
??BCharMessageBuffer@helpers@log4cxx@@QAEAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@XZ
??0?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAE@XZ
??1?$ObjectPtrT@VLevel@log4cxx@@@helpers@log4cxx@@UAE@XZ
?isInfoEnabled@Logger@log4cxx@@QBE_NXZ
?getInfo@Level@log4cxx@@SA?AV?$ObjectPtrT@VLevel@log4cxx@@@helpers@2@XZ
??6CharMessageBuffer@helpers@log4cxx@@QAEAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@I@Z
?configure@PropertyConfigurator@log4cxx@@SAXABVFile@2@@Z
??0File@log4cxx@@QAE@PBD@Z
??1File@log4cxx@@QAE@XZ
?getLogger@Logger@log4cxx@@SA?AV?$ObjectPtrT@VLogger@log4cxx@@@helpers@2@QBD@Z
??4?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAEAAV012@ABV012@@Z
??1?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@UAE@XZ
?isDebugEnabled@Logger@log4cxx@@QBE_NXZ
??0MessageBuffer@helpers@log4cxx@@QAE@XZ
??1MessageBuffer@helpers@log4cxx@@QAE@XZ
?isTraceEnabled@Logger@log4cxx@@QBE_NXZ
?getDebug@Level@log4cxx@@SA?AV?$ObjectPtrT@VLevel@log4cxx@@@helpers@2@XZ
??6MessageBuffer@helpers@log4cxx@@QAEAAVCharMessageBuffer@12@PBD@Z
??6CharMessageBuffer@helpers@log4cxx@@QAEAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@K@Z
?str@MessageBuffer@helpers@log4cxx@@QAEABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAV?$basic_ostream@DU?$char_traits@D@std@@@5@@Z
??0LocationInfo@spi@log4cxx@@QAE@QBD0H@Z
?forcedLog@Logger@log4cxx@@QBEXABV?$ObjectPtrT@VLevel@log4cxx@@@helpers@2@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABVLocationInfo@spi@2@@Z

kernel32

GlobalLock
GlobalReAlloc
GlobalUnlock
GlobalHandle
GlobalAlloc
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
GlobalFree
TlsFree
GetCurrentThreadId
lstrlenA
GetModuleFileNameA
SetErrorMode
GetCurrentProcessId
MultiByteToWideChar
FormatMessageA
lstrcmpW
LoadLibraryA
CompareStringA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcmpA
GlobalFlags
GetModuleHandleW
InterlockedIncrement
InterlockedExchange
GetLocaleInfoA
GetCPInfo
GetOEMCP
EnterCriticalSection
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
GetCurrentProcess
CreateFileA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
ExitThread
CreateThread
GetCommandLineA
RaiseException
RtlUnwind
HeapSize
VirtualAlloc
HeapReAlloc
ExitProcess
HeapCreate
HeapDestroy
VirtualFree
GetStdHandle
SetStdHandle
GetFileType
GetConsoleCP
GetConsoleMode
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
InitializeCriticalSectionAndSpinCount
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoW
TlsGetValue
LeaveCriticalSection
LocalFree
LocalAlloc
FreeLibrary
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
InterlockedDecrement
GetModuleFileNameW
GetModuleHandleA
GetProcAddress
GetLastError
SetLastError
HeapAlloc
GetProcessHeap
CreateMutexA
HeapFree
SetEvent
ResetEvent
WaitForMultipleObjects
CreateEventA
CloseHandle
Sleep
GetVersionExA
ReleaseMutex
WaitForSingleObject
SystemTimeToFileTime
GetSystemTime

shlwapi

PathFindFileNameA
PathFindExtensionA

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassLongA
GetCapture
WinHelpA
LoadIconA
RegisterWindowMessageA
SetWindowTextA
ClientToScreen
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
GetDC
ReleaseDC
GetSysColorBrush
LoadCursorA
DestroyMenu
PostQuitMessage
IsWindow
MapWindowPoints
SetMenu
SetForegroundWindow
GetClientRect
PostMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
CopyRect
PtInRect
GetDlgCtrlID
CallWindowProcA
GetMenu
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetWindow
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetWindowThreadProcessId
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
UnregisterClassA
SetWindowsHookExA
CallNextHookEx
DispatchMessageA
SendMessageA
GetKeyState
PeekMessageA
ValidateRect
UnhookWindowsHookEx
GetWindowTextA
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessagePos
GetMessageTime
DefWindowProcA

gdi32

DeleteObject
SaveDC
RestoreDC
SetMapMode
PtVisible
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetDeviceCaps
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
GetStockObject

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

oleaut32

VariantClear
VariantChangeType
VariantInit

Exports

Exports

AddIcmpPortMapping
AddTcpPortMapping
AddUdpPortMapping
BlockMacAddress
ClearBlockList
DeleteIcmpPortMapping
DeleteTcpPortMapping
DeleteUdpPortMapping
GetExternalIPAddress
GetNATTableIcmp
GetNATTableTcp
GetNATTableUdp
IsNatting
NatInit
NetworkChanged
SetServerOffset
StartNatService
StopNatService

Sections

.text
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ConnectifyNetServices.exe
.exe windows:5 windows x86 arch:x86

5c9a7c42314bfcf982d918ee6b0cb0c3

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

50:7c:ca:1f:4b:cd:0c:ab:08:87:c6:a3:ba:a1:25:fc:9d:4e:3b:2f
Signer

Actual PE Digest

50:7c:ca:1f:4b:cd:0c:ab:08:87:c6:a3:ba:a1:25:fc:9d:4e:3b:2f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\kchuang\Documents\Connectify_all\connectify\software\NetServices\DualServer\src\ConnectifyNetServices.pdb

Imports

kernel32

SetEndOfFile
GetLocaleInfoW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
GetProcessHeap
LCMapStringW
LCMapStringA
LoadLibraryA
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
SetStdHandle
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
CompareStringA
CompareStringW
GlobalAlloc
GlobalFree
GetVersionExA
lstrcmpiA
GetModuleFileNameA
GetLastError
FormatMessageA
CreateEventA
Sleep
WaitForSingleObject
CloseHandle
GetStringTypeA
SetEvent
HeapFree
ExitThread
ResumeThread
CreateThread
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
RtlUnwind
RaiseException
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetCurrentThread
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
FatalAppExitA
HeapAlloc
VirtualAlloc
HeapReAlloc
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WideCharToMultiByte
GetTimeZoneInformation
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
WriteFile
GetConsoleCP
GetConsoleMode
MultiByteToWideChar
ReadFile
SetFilePointer
FlushFileBuffers
HeapSize
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
SetEnvironmentVariableA

ws2_32

inet_ntoa
WSASocketA
WSAIoctl
WSACreateEvent
WSACloseEvent
WSAStartup
bind
listen
connect
socket
sendto
inet_addr
setsockopt
recv
send
htonl
ntohl
ntohs
closesocket
select
__WSAFDIsSet
accept
WSAGetLastError
recvfrom
htons
WSACleanup

advapi32

CreateServiceA
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
OpenServiceA
DeleteService
OpenSCManagerA
SetServiceStatus
StartServiceA
CloseServiceHandle
QueryServiceStatus
ControlService

iphlpapi

GetAdaptersInfo
NotifyAddrChange
GetNetworkParams

Sections

.text
Size: 290KB - Virtual size: 290KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Connectifyd.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4c:56:78:9a:6f:a6:64:f7:e6:3a:c6:f5:13:03:a2:d2:39:4c:cc:c9
Signer

Actual PE Digest

4c:56:78:9a:6f:a6:64:f7:e6:3a:c6:f5:13:03:a2:d2:39:4c:cc:c9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\2.2.0.release\ConnectifyNOWd\obj\Release\Connectifyd.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 773KB - Virtual size: 773KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Connectifyd.exe.config
DriverLib.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c5:26:ed:f6:aa:41:49:d2:9e:26:86:1b:0c:80:2a:82:a0:25:b8:08
Signer

Actual PE Digest

c5:26:ed:f6:aa:41:49:d2:9e:26:86:1b:0c:80:2a:82:a0:25:b8:08

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\software\WinPkLib\obj\Release\DriverLib.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HardwareHelperLib.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

53:72:cd:44:2a:a7:eb:64:06:70:34:a5:82:b3:77:78:d2:e8:f2:48
Signer

Actual PE Digest

53:72:cd:44:2a:a7:eb:64:06:70:34:a5:82:b3:77:78:d2:e8:f2:48

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\software\HardwareHelperLib\obj\Release\HardwareHelperLib.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HtmlAgilityPack.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3a:d5:90:39:c4:ab:44:a8:1c:ac:69:3d:e1:b8:ce:5d:b7:d7:8f:12
Signer

Actual PE Digest

3a:d5:90:39:c4:ab:44:a8:1c:ac:69:3d:e1:b8:ce:5d:b7:d7:8f:12

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Source\htmlagilitypack\Branches\1.4.0\HtmlAgilityPack\obj\Release\HtmlAgilityPack.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Interop.NETCONLib.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

20:04:d0:03:aa:25:c6:ee:70:b4:1c:2d:47:7c:c4:ac:5c:2d:18:57
Signer

Actual PE Digest

20:04:d0:03:aa:25:c6:ee:70:b4:1c:2d:47:7c:c4:ac:5c:2d:18:57

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Interop.NETWORKLIST.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

26:2f:91:87:a5:0c:fc:99:46:59:13:9d:97:b5:f0:0f:1c:45:07:d4
Signer

Actual PE Digest

26:2f:91:87:a5:0c:fc:99:46:59:13:9d:97:b5:f0:0f:1c:45:07:d4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Interop.NetFwTypeLib.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a0:f1:36:59:05:3b:d0:6f:96:4c:d7:0a:c5:85:a3:5a:c8:6d:dd:84
Signer

Actual PE Digest

a0:f1:36:59:05:3b:d0:6f:96:4c:d7:0a:c5:85:a3:5a:c8:6d:dd:84

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Interop.SHDocVw.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f5:fb:3d:68:fe:b8:b6:ba:fa:b9:de:4f:e7:88:57:65:97:41:13:53
Signer

Actual PE Digest

f5:fb:3d:68:fe:b8:b6:ba:fa:b9:de:4f:e7:88:57:65:97:41:13:53

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Ionic.Zip.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

6b:ce:04:f8:6f:d8:2f:ba:70:ab:14:e5:3e:0c:72:e2:34:c1:3b:c9
Signer

Actual PE Digest

6b:ce:04:f8:6f:d8:2f:ba:70:ab:14:e5:3e:0c:72:e2:34:c1:3b:c9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\DotNetZip\v1.8.4.27\DotNetZip\Zip Full DLL\obj\Release\Ionic.Zip.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 488KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UPnP.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

19:f8:9b:15:46:49:a9:2c:7e:c6:5d:f9:6c:d8:a5:e7:e8:47:79:11
Signer

Actual PE Digest

19:f8:9b:15:46:49:a9:2c:7e:c6:5d:f9:6c:d8:a5:e7:e8:47:79:11

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Uninstall.exe.nsis
WCN-UFD/AUTORUN.INF
WCN-UFD/SMRTNTKY/MessageB.txt
WCN-UFD/SMRTNTKY/fcw.ico
WCN-UFD/setupSNK.exe
.exe windows:6 windows x86 arch:x86

f33d1aaa7748aac42f8b1bfe46c5bd4d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

setupSNK.pdb

Imports

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

kernel32

HeapSetInformation
VerifyVersionInfoA
VerSetConditionMask
FreeLibrary
GetProcAddress
LoadLibraryA
CloseHandle
CreateProcessA
GetPrivateProfileStringA
SetCurrentDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
RtlUnwind
OutputDebugStringA
GetStartupInfoA
InterlockedCompareExchange
Sleep
InterlockedExchange

user32

MessageBoxA

msvcrt

_ismbblead
exit
_acmdln
_initterm
_amsg_exit
__setusermatherr
__p__commode
__p__fmode
__set_app_type
memcpy
?terminate@@YAXXZ
free
isleadbyte
_iob
_XcptFilter
_itoa
wctomb
malloc
__badioinfo
__pioinfo
_fileno
_lseeki64
_write
_isatty
_exit
_cexit
_errno
strstr
memset
??3@YAXPAX@Z
_snprintf
__getmainargs
_controlfp

shlwapi

PathFileExistsA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WPSLib.dll
.dll windows:5 windows x86 arch:x86

38c4c38395ad5357ba42c880eab2eaff

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9b:8b:9c:f7:ef:e7:1f:f5:4b:ff:28:ec:61:35:76:76:4b:f8:3b:10
Signer

Actual PE Digest

9b:8b:9c:f7:ef:e7:1f:f5:4b:ff:28:ec:61:35:76:76:4b:f8:3b:10

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\software\Release\WPSLib.pdb

Imports

msvcr90

?terminate@@YAXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
memset
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
??_V@YAXPAX@Z
_CxxThrowException
_unlock
??0exception@std@@QAE@ABV01@@Z
wprintf
memcmp
_wcsicmp
__CxxExceptionFilter
__CxxRegisterExceptionObject
__CxxDetectRethrow
__CxxQueryExceptionSize
__CxxUnregisterExceptionObject
??2@YAPAXI@Z
_cexit
abort
__FrameUnwindFilter
__dllonexit
_lock
_onexit
_except_handler4_common
??1exception@std@@UAE@XZ
_crt_debugger_hook
_initterm
_decode_pointer
_encoded_null
free
_malloc_crt
_encode_pointer
??3@YAXPAX@Z
?what@exception@std@@UBEPBDXZ
_purecall

kernel32

InitializeCriticalSection
FormatMessageW
GetLastError
WideCharToMultiByte
ResetEvent
CreateEventW
SetEvent
CloseHandle
InterlockedDecrement
DeleteCriticalSection
InterlockedIncrement
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedExchange
Sleep
InterlockedCompareExchange

rpcrt4

UuidFromStringW

msvcm90

?ThrowModuleLoadException@<CrtImplementationDetails>@@YAXP$AAVString@System@@@Z
?DoCallBackInDefaultDomain@<CrtImplementationDetails>@@YAXP6GJPAX@Z0@Z
?ThrowNestedModuleLoadException@<CrtImplementationDetails>@@YAXP$AAVException@System@@0@Z
?ThrowModuleLoadException@<CrtImplementationDetails>@@YAXP$AAVString@System@@P$AAVException@3@@Z
?DoDllLanguageSupportValidation@<CrtImplementationDetails>@@YAXXZ
?RegisterModuleUninitializer@<CrtImplementationDetails>@@YAXP$AAVEventHandler@System@@@Z

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance
StringFromGUID2
CoWaitForMultipleHandles
PropVariantClear

oleaut32

VariantCopy
SysStringByteLen
SysAllocStringByteLen
SysFreeString

msvcp90

??0?$allocator@_W@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_Decref@facet@locale@std@@QAEPAV123@XZ
?_Lockit_dtor@_Lockit@std@@SAXH@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?_Lockit_ctor@_Lockit@std@@SAXH@Z

mscoree

_CorDllMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
connectifynat.l4c
drivers/amd64/connctfy.cat
drivers/amd64/connctfy.inf
drivers/amd64/connctfy.sys
.sys windows:5 windows x64 arch:x64

47741601a8d417ed3dee154e7b640d25

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

b3:15:0b:a0:3e:48:61:27:8e:14:41:14:4a:65:4c:65:25:21:09:bb
Signer

Actual PE Digest

b3:15:0b:a0:3e:48:61:27:8e:14:41:14:4a:65:4c:65:25:21:09:bb

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\projects\builds\connctfy\kernel\bin\imdrv\amd64\connctfy.pdb

Imports

ntoskrnl.exe

RtlTimeFieldsToTime
ExEventObjectType
ObReferenceObjectByHandle
__C_specific_handler
ObfDereferenceObject
MmMapLockedPages
IoFreeMdl
RtlUnicodeStringToAnsiString
RtlQueryRegistryValues
RtlZeroMemory
RtlInitUnicodeString
IofCompleteRequest
RtlCopyMemory
KeAcquireSpinLockRaiseToDpc
KeReleaseSpinLock
KeSetEvent

ndis.sys

NdisMDeregisterDevice
NdisFreePacket
NdisIMCancelInitializeDeviceInstance
NdisIMDeInitializeDeviceInstance
NdisOpenProtocolConfiguration
NdisReadConfiguration
NdisAllocateMemoryWithTag
NdisInitializeEvent
NdisAllocatePacketPool
NdisAllocateBufferPool
NdisOpenAdapter
NdisIMInitializeDeviceInstanceEx
NdisCloseConfiguration
NdisReEnumerateProtocolBindings
NdisIMNotifyPnPEvent
NdisAllocatePacket
NdisAllocateBuffer
NdisSetEvent
NdisMSetAttributesEx
NdisIMGetDeviceContext
NdisRequest
NdisWaitEvent
NdisCloseAdapter
NdisResetEvent
NdisCancelSendPackets
NdisFreeBufferPool
NdisFreePacketPool
NdisFreeMemory
NdisAllocateMemory
NdisIMDeregisterLayeredMiniport
NdisTerminateWrapper
NdisIMAssociateMiniport
NdisRegisterProtocol
NdisMRegisterUnloadHandler
NdisIMRegisterLayeredMiniport
NdisInitializeWrapper
NdisMRegisterDevice
NdisMSleep
NdisDeregisterProtocol
NdisUnchainBufferAtFront

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
drivers/amd64/connctfy_m.inf
drivers/amd64/snetcfg.exe
.exe windows:5 windows x64 arch:x64

cef93da515744014629bc14ba0ac6191

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\Exchange\WinpkFilter\Setup\amd64\snetcfg.pdb

Imports

msvcrt

_wsplitpath
__C_specific_handler
_XcptFilter
_c_exit
_exit
_cexit
__winitenv
wcscat
_initterm
__setusermatherr
_commode
_fmode
__set_app_type
vwprintf
_iob
fflush
iswprint
wcslen
wcscpy
exit
wcschr
wprintf
__wgetmainargs
tolower

kernel32

GetCurrentDirectoryW
GetLastError
RtlZeroMemory

ole32

CoCreateInstance
CoUninitialize
CoTaskMemFree
CoInitializeEx

setupapi

SetupCopyOEMInfW
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 276B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
drivers/x86/connctfy.cat
drivers/x86/connctfy.inf
drivers/x86/connctfy.sys
.sys windows:5 windows x86 arch:x86

64277759856db01af6510c7d40f82086

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4c:a1:95:3d:48:b1:8a:18:63:fd:d0:ed:af:03:b6:2c:a7:c3:0e:d4
Signer

Actual PE Digest

4c:a1:95:3d:48:b1:8a:18:63:fd:d0:ed:af:03:b6:2c:a7:c3:0e:d4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\projects\builds\connctfy\kernel\bin\imdrv\i386\connctfy.pdb

Imports

ntoskrnl.exe

KeBugCheckEx
KeTickCount
_alldiv
KeQuerySystemTime
RtlTimeFieldsToTime
_except_handler3
ExEventObjectType
ObReferenceObjectByHandle
ObfDereferenceObject
RtlQueryRegistryValues
InterlockedIncrement
InterlockedDecrement
IofCompleteRequest
KeSetEvent

ndis.sys

NdisIMAssociateMiniport
NdisSend
NdisQueryBuffer
NdisFreeBuffer
NdisFreePacket
NdisQueryBufferOffset
NDIS_BUFFER_TO_SPAN_PAGES
NdisIMCancelInitializeDeviceInstance
NdisIMDeInitializeDeviceInstance
NdisOpenProtocolConfiguration
NdisReadConfiguration
NdisAllocateMemoryWithTag
NdisInitializeEvent
NdisAllocatePacketPool
NdisAllocateBufferPool
NdisSetEvent
NdisReleaseSpinLock
NdisAcquireSpinLock
NdisMSetAttributesEx
NdisIMGetDeviceContext
NdisRequest
NdisTransferData
NdisWaitEvent
NdisCloseAdapter
NdisResetEvent
NdisCancelSendPackets
NdisFreeBufferPool
NdisFreePacketPool
NdisFreeMemory
NdisAllocateMemory
NdisMDeregisterDevice
NdisFreeSpinLock
NdisIMDeregisterLayeredMiniport
NdisTerminateWrapper
NdisRegisterProtocol
NdisInitUnicodeString
NdisMRegisterUnloadHandler
NdisIMRegisterLayeredMiniport
NdisInitializeWrapper
NdisAllocateSpinLock
NdisMRegisterDevice
NdisMSleep
NdisDeregisterProtocol
NdisUnchainBufferAtFront
NdisAllocateBuffer
NdisAllocatePacket
NdisIMNotifyPnPEvent
NdisReEnumerateProtocolBindings
NdisCloseConfiguration
NdisIMInitializeDeviceInstanceEx
NdisOpenAdapter
NdisUnicodeStringToAnsiString

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
drivers/x86/connctfy_m.inf
drivers/x86/snetcfg.exe
.exe windows:5 windows x86 arch:x86

d6ae4c79da3020a39c8e06ed18543c45

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryW
GetLastError
GetProcAddress
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter

msvcrt

fflush
_iob
vwprintf
wcscat
_wsplitpath
_c_exit
_exit
iswprint
_cexit
__winitenv
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
tolower
wprintf
wcschr
exit
wcslen
wcscpy
_XcptFilter

ole32

CoCreateInstance
CoUninitialize
CoTaskMemFree
CoInitializeEx

setupapi

SetupCopyOEMInfW
SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceRegistryPropertyW
SetupDiDestroyDeviceInfoList

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
gma.Windows.Firewall.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

70:fd:98:3d:dd:f9:02:9b:94:75:24:ff:dc:1f:21:36:8e:34:12:a8
Signer

Actual PE Digest

70:fd:98:3d:dd:f9:02:9b:94:75:24:ff:dc:1f:21:36:8e:34:12:a8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\2.2.0.release\gma.Windows.Firewall\gma.Windows.Firewall\obj\Release\gma.Windows.Firewall.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
install-driver-amd64.bat
install-driver-x86.bat
io.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e7:36:b3:83:58:c0:b0:5c:04:2a:12:68:92:23:65:76:a4:c9:95:3f
Signer

Actual PE Digest

e7:36:b3:83:58:c0:b0:5c:04:2a:12:68:92:23:65:76:a4:c9:95:3f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\software\IoctlNdis\obj\Release\io.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
log4cxx.dll
.dll windows:5 windows x86 arch:x86

b5b218837ee2088b39158732524b0c94

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9c:46:99:09:90:5e:bf:50:ef:82:00:f8:23:8e:23:f9:a1:df:46:18
Signer

Actual PE Digest

9c:46:99:09:90:5e:bf:50:ef:82:00:f8:23:8e:23:f9:a1:df:46:18

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

CopySid
GetLengthSid
GetTokenInformation
OpenProcessToken
DeregisterEventSource
RegCloseKey
RegSetValueExW
RegCreateKeyExW
RegisterEventSourceW
ReportEventW
GetEffectiveRightsFromAclW
AllocateAndInitializeSid
GetSecurityInfo
GetNamedSecurityInfoA
GetNamedSecurityInfoW
RevertToSelf
CreateProcessAsUserW
ImpersonateLoggedOnUser
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
LookupAccountNameA
LookupAccountSidA
RegQueryValueExW
RegOpenKeyExA
FreeSid

odbc32

ord9
ord236
ord31
ord111
ord24
ord141
ord75

kernel32

GetFullPathNameW
GetFileType
LocalFree
GetStdHandle
MoveFileExW
DeleteFileW
CreateFileW
SetFilePointer
SetStdHandle
GetFileInformationByHandle
DeviceIoControl
CancelIo
GetOverlappedResult
FormatMessageA
CreateEventA
SetHandleInformation
EnterCriticalSection
LeaveCriticalSection
WaitForSingleObject
ReleaseSemaphore
CreateSemaphoreA
InitializeCriticalSection
DeleteCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
Sleep
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
FileTimeToSystemTime
GetSystemTimeAsFileTime
FindClose
SetLastError
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
CreateDirectoryW
ReadFile
PeekNamedPipe
WriteFile
CreateProcessW
GetHandleInformation
GetExitCodeProcess
GetCurrentProcessId
ReleaseMutex
SetEvent
ExpandEnvironmentStringsW
GetEnvironmentVariableW
GetDriveTypeA
GetDriveTypeW
GetCurrentDirectoryW
DuplicateHandle
TerminateProcess
GetVersionExA
GetProcAddress
LoadLibraryA
CreateFileA
LockFile
LockFileEx
UnlockFile
UnlockFileEx
CreatePipe
CreateNamedPipeA
OutputDebugStringW
InterlockedExchange
GetLastError
FormatMessageW
GetModuleHandleW
GetModuleFileNameW
GetCurrentProcess
CloseHandle
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentThreadId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
FindFirstFileW
GetFileAttributesExW
GetTimeZoneInformation
FindNextFileW

msvcp90

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEHPB_WH@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@V?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@@Z
?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getfacet@locale@std@@QBEPBVfacet@12@I@Z
?_Id_cnt@id@locale@std@@0HA
??1_Lockit@std@@QAE@XZ
?id@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@2V0locale@2@A
??0_Lockit@std@@QAE@H@Z
?_Incref@facet@locale@std@@QAEXXZ
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?put@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QBE?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBUtm@@DD@Z
?put@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QBE?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBUtm@@DD@Z
??1locale@std@@QAE@XZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@XZ
?find_last_not_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find_first_not_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHIIABV12@@Z
?insert@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@V?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@_W@Z
?find_first_not_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHPB_W@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?reserve@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@II@Z
?_Decref@facet@locale@std@@QAEPAV123@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?swap@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXAAV12@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@V?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@0@Z
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHIIPB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHIIABV12@II@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@I_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?_Tidy@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@IAEX_NI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@I_W@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@II@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_WABV10@@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@II@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?resize@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
?insert@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II_W@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IPBD@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIPBD@Z
?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z
??_7ios_base@std@@6B@
??0ios_base@std@@QAE@ABV01@@Z
??4ios_base@std@@QAEAAV01@ABV01@@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@@Z
??0?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??_D?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
?str@?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?str@?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??$?6_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Unlock@_Mutex@std@@QAEXXZ
?_Lock@_Mutex@std@@QAEXXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
?str@?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??_D?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
??0?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z

msvcr90

__clean_type_info_names_internal
_crt_debugger_hook
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
abort
srand
rand
setvbuf
_commit
_open_osfhandle
_dup2
_setmode
_get_osfhandle
_endthreadex
_beginthreadex
__doserrno
strftime
_errno
_strtoi64
memchr
islower
modf
getenv
isspace
strrchr
wcschr
wcsncmp
isalpha
_close
toupper
strerror
strspn
isdigit
malloc
realloc
free
strncmp
strchr
sprintf
fflush
__iob_func
fputws
fputs
tolower
atoi
??0bad_cast@std@@QAE@ABV01@@Z
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
atol
memmove
strcpy_s
strncpy_s
memcpy_s
wcstombs
memset
mbsrtowcs
memcpy
memmove_s
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
__CxxFrameHandler3
??_V@YAXPAX@Z
??3@YAXPAX@Z
_purecall
_encoded_null
_strnicmp
_stricmp
_invalid_parameter_noinfo
_getpid

ws2_32

gethostbyaddr
inet_addr
gethostbyname
htons
getpeername
getsockname
recvfrom
sendto
connect
select
__WSAFDIsSet
getsockopt
accept
ntohs
listen
bind
shutdown
socket
closesocket
WSAGetLastError
WSAStartup
WSACleanup
ntohl
ioctlsocket
setsockopt
recv
send
WSASend

Exports

Exports

??0?$ObjectPtrT@VAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVAction@rolling@2@@Z
??0?$ObjectPtrT@VAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VAppender@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAppender@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VAppender@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VAppender@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAppender@log4cxx@@@helpers@log4cxx@@QAE@PAVAppender@2@@Z
??0?$ObjectPtrT@VAppender@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VAppenderAttachable@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAppenderAttachable@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VAppenderAttachable@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VAppenderAttachable@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAppenderAttachable@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVAppenderAttachable@spi@2@@Z
??0?$ObjectPtrT@VAppenderAttachable@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VAppenderAttachableImpl@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAppenderAttachableImpl@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VAppenderAttachableImpl@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VAppenderAttachableImpl@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAppenderAttachableImpl@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVAppenderAttachableImpl@12@@Z
??0?$ObjectPtrT@VAppenderAttachableImpl@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VAsyncAppender@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAsyncAppender@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VAsyncAppender@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VAsyncAppender@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VAsyncAppender@log4cxx@@@helpers@log4cxx@@QAE@PAVAsyncAppender@2@@Z
??0?$ObjectPtrT@VAsyncAppender@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VByteArrayInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VByteArrayInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VByteArrayInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VByteArrayInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VByteArrayInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVByteArrayInputStream@12@@Z
??0?$ObjectPtrT@VByteArrayInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VByteArrayOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VByteArrayOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VByteArrayOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VByteArrayOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VByteArrayOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVByteArrayOutputStream@12@@Z
??0?$ObjectPtrT@VByteArrayOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VCharsetDecoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VCharsetDecoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VCharsetDecoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VCharsetDecoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VCharsetDecoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVCharsetDecoder@12@@Z
??0?$ObjectPtrT@VCharsetDecoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VCharsetEncoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VCharsetEncoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VCharsetEncoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VCharsetEncoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VCharsetEncoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVCharsetEncoder@12@@Z
??0?$ObjectPtrT@VCharsetEncoder@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VConfigurator@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VConfigurator@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VConfigurator@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VConfigurator@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VConfigurator@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVConfigurator@spi@2@@Z
??0?$ObjectPtrT@VConfigurator@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VConsoleAppender@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VConsoleAppender@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VConsoleAppender@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VConsoleAppender@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VConsoleAppender@log4cxx@@@helpers@log4cxx@@QAE@PAVConsoleAppender@2@@Z
??0?$ObjectPtrT@VConsoleAppender@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VDOMConfigurator@xml@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDOMConfigurator@xml@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VDOMConfigurator@xml@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VDOMConfigurator@xml@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDOMConfigurator@xml@log4cxx@@@helpers@log4cxx@@QAE@PAVDOMConfigurator@xml@2@@Z
??0?$ObjectPtrT@VDOMConfigurator@xml@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VDailyRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDailyRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VDailyRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VDailyRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDailyRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@PAVDailyRollingFileAppender@2@@Z
??0?$ObjectPtrT@VDailyRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VDatagramPacket@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDatagramPacket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VDatagramPacket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VDatagramPacket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDatagramPacket@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVDatagramPacket@12@@Z
??0?$ObjectPtrT@VDatagramPacket@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VDatagramSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDatagramSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VDatagramSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VDatagramSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDatagramSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVDatagramSocket@12@@Z
??0?$ObjectPtrT@VDatagramSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VDate@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDate@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VDate@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VDate@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDate@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVDate@12@@Z
??0?$ObjectPtrT@VDate@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VDateFormat@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDateFormat@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VDateFormat@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VDateFormat@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDateFormat@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVDateFormat@12@@Z
??0?$ObjectPtrT@VDateFormat@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VDatePatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDatePatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VDatePatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VDatePatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDatePatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@PAVDatePatternConverter@pattern@2@@Z
??0?$ObjectPtrT@VDatePatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VDenyAllFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDenyAllFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VDenyAllFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VDenyAllFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VDenyAllFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@PAVDenyAllFilter@filter@2@@Z
??0?$ObjectPtrT@VDenyAllFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VErrorHandler@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VErrorHandler@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VErrorHandler@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VErrorHandler@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VErrorHandler@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVErrorHandler@spi@2@@Z
??0?$ObjectPtrT@VErrorHandler@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VFileAppender@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFileAppender@log4cxx@@@helpers@log4cxx@@QAE@PAVFileAppender@2@@Z
??0?$ObjectPtrT@VFileAppender@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VFileInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFileInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VFileInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VFileInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFileInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVFileInputStream@12@@Z
??0?$ObjectPtrT@VFileInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VFileOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFileOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VFileOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VFileOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFileOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVFileOutputStream@12@@Z
??0?$ObjectPtrT@VFileOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VFileRenameAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFileRenameAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VFileRenameAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VFileRenameAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFileRenameAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVFileRenameAction@rolling@2@@Z
??0?$ObjectPtrT@VFileRenameAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VFilter@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFilter@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VFilter@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VFilter@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFilter@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVFilter@spi@2@@Z
??0?$ObjectPtrT@VFilter@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VFilterBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFilterBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VFilterBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VFilterBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFilterBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVFilterBasedTriggeringPolicy@rolling@2@@Z
??0?$ObjectPtrT@VFilterBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VFixedWindowRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFixedWindowRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VFixedWindowRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VFixedWindowRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFixedWindowRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVFixedWindowRollingPolicy@rolling@2@@Z
??0?$ObjectPtrT@VFixedWindowRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VFormattingInfo@pattern@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFormattingInfo@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VFormattingInfo@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VFormattingInfo@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VFormattingInfo@pattern@log4cxx@@@helpers@log4cxx@@QAE@PAVFormattingInfo@pattern@2@@Z
??0?$ObjectPtrT@VFormattingInfo@pattern@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VGZCompressAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VGZCompressAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VGZCompressAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VGZCompressAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VGZCompressAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVGZCompressAction@rolling@2@@Z
??0?$ObjectPtrT@VGZCompressAction@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VHTMLLayout@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VHTMLLayout@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VHTMLLayout@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VHTMLLayout@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VHTMLLayout@log4cxx@@@helpers@log4cxx@@QAE@PAVHTMLLayout@2@@Z
??0?$ObjectPtrT@VHTMLLayout@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VHierarchyEventListener@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VHierarchyEventListener@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VHierarchyEventListener@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VHierarchyEventListener@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VHierarchyEventListener@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVHierarchyEventListener@spi@2@@Z
??0?$ObjectPtrT@VHierarchyEventListener@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VInetAddress@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VInetAddress@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VInetAddress@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VInetAddress@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VInetAddress@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVInetAddress@12@@Z
??0?$ObjectPtrT@VInetAddress@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVInputStream@12@@Z
??0?$ObjectPtrT@VInputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VInputStreamReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VInputStreamReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VInputStreamReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VInputStreamReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VInputStreamReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVInputStreamReader@12@@Z
??0?$ObjectPtrT@VInputStreamReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VInteger@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VInteger@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VInteger@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VInteger@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VInteger@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVInteger@12@@Z
??0?$ObjectPtrT@VInteger@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VIntegerPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VIntegerPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VIntegerPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VIntegerPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VIntegerPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@PAVIntegerPatternConverter@pattern@2@@Z
??0?$ObjectPtrT@VIntegerPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLayout@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLayout@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLayout@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLayout@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLayout@log4cxx@@@helpers@log4cxx@@QAE@PAVLayout@2@@Z
??0?$ObjectPtrT@VLayout@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLevel@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLevel@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLevel@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLevel@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLevel@log4cxx@@@helpers@log4cxx@@QAE@PAVLevel@2@@Z
??0?$ObjectPtrT@VLevel@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLevelMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLevelMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLevelMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLevelMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLevelMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@PAVLevelMatchFilter@filter@2@@Z
??0?$ObjectPtrT@VLevelMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLevelRangeFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLevelRangeFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLevelRangeFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLevelRangeFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLevelRangeFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@PAVLevelRangeFilter@filter@2@@Z
??0?$ObjectPtrT@VLevelRangeFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAE@PAVLogger@2@@Z
??0?$ObjectPtrT@VLogger@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLoggerFactory@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLoggerFactory@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLoggerFactory@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLoggerFactory@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLoggerFactory@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVLoggerFactory@spi@2@@Z
??0?$ObjectPtrT@VLoggerFactory@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLoggerRepository@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLoggerRepository@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLoggerRepository@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLoggerRepository@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLoggerRepository@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVLoggerRepository@spi@2@@Z
??0?$ObjectPtrT@VLoggerRepository@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLoggingEvent@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLoggingEvent@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLoggingEvent@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLoggingEvent@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLoggingEvent@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVLoggingEvent@spi@2@@Z
??0?$ObjectPtrT@VLoggingEvent@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VLoggingEventPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLoggingEventPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VLoggingEventPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VLoggingEventPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VLoggingEventPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@PAVLoggingEventPatternConverter@pattern@2@@Z
??0?$ObjectPtrT@VLoggingEventPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VNTEventLogAppender@nt@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VNTEventLogAppender@nt@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VNTEventLogAppender@nt@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VNTEventLogAppender@nt@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VNTEventLogAppender@nt@log4cxx@@@helpers@log4cxx@@QAE@PAVNTEventLogAppender@nt@2@@Z
??0?$ObjectPtrT@VNTEventLogAppender@nt@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VNameAbbreviator@pattern@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VNameAbbreviator@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VNameAbbreviator@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VNameAbbreviator@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VNameAbbreviator@pattern@log4cxx@@@helpers@log4cxx@@QAE@PAVNameAbbreviator@pattern@2@@Z
??0?$ObjectPtrT@VNameAbbreviator@pattern@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VODBCAppender@db@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VODBCAppender@db@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VODBCAppender@db@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VODBCAppender@db@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VODBCAppender@db@log4cxx@@@helpers@log4cxx@@QAE@PAVODBCAppender@db@2@@Z
??0?$ObjectPtrT@VODBCAppender@db@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VObject@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VObject@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VObject@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VObject@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VObject@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVObject@12@@Z
??0?$ObjectPtrT@VObject@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VObjectOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VObjectOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VObjectOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VObjectOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VObjectOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVObjectOutputStream@12@@Z
??0?$ObjectPtrT@VObjectOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVOutputStream@12@@Z
??0?$ObjectPtrT@VOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VOutputStreamWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VOutputStreamWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VOutputStreamWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VOutputStreamWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VOutputStreamWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVOutputStreamWriter@12@@Z
??0?$ObjectPtrT@VOutputStreamWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@PAVPatternConverter@pattern@2@@Z
??0?$ObjectPtrT@VPatternConverter@pattern@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VPatternLayout@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VPatternLayout@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VPatternLayout@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VPatternLayout@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VPatternLayout@log4cxx@@@helpers@log4cxx@@QAE@PAVPatternLayout@2@@Z
??0?$ObjectPtrT@VPatternLayout@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VPropertyResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VPropertyResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VPropertyResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VPropertyResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VPropertyResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVPropertyResourceBundle@12@@Z
??0?$ObjectPtrT@VPropertyResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVReader@12@@Z
??0?$ObjectPtrT@VReader@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VRepositorySelector@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRepositorySelector@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VRepositorySelector@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VRepositorySelector@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRepositorySelector@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVRepositorySelector@spi@2@@Z
??0?$ObjectPtrT@VRepositorySelector@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVResourceBundle@12@@Z
??0?$ObjectPtrT@VResourceBundle@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@PAVRollingFileAppender@2@@Z
??0?$ObjectPtrT@VRollingFileAppender@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VRollingFileAppender@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRollingFileAppender@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VRollingFileAppender@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VRollingFileAppender@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRollingFileAppender@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVRollingFileAppender@rolling@2@@Z
??0?$ObjectPtrT@VRollingFileAppender@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VRollingFileAppenderSkeleton@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRollingFileAppenderSkeleton@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VRollingFileAppenderSkeleton@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VRollingFileAppenderSkeleton@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRollingFileAppenderSkeleton@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVRollingFileAppenderSkeleton@rolling@2@@Z
??0?$ObjectPtrT@VRollingFileAppenderSkeleton@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVRollingPolicy@rolling@2@@Z
??0?$ObjectPtrT@VRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VRolloverDescription@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRolloverDescription@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VRolloverDescription@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VRolloverDescription@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VRolloverDescription@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVRolloverDescription@rolling@2@@Z
??0?$ObjectPtrT@VRolloverDescription@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VSMTPAppender@net@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSMTPAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VSMTPAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VSMTPAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSMTPAppender@net@log4cxx@@@helpers@log4cxx@@QAE@PAVSMTPAppender@net@2@@Z
??0?$ObjectPtrT@VSMTPAppender@net@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VSimpleLayout@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSimpleLayout@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VSimpleLayout@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VSimpleLayout@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSimpleLayout@log4cxx@@@helpers@log4cxx@@QAE@PAVSimpleLayout@2@@Z
??0?$ObjectPtrT@VSimpleLayout@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VSizeBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSizeBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VSizeBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VSizeBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSizeBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVSizeBasedTriggeringPolicy@rolling@2@@Z
??0?$ObjectPtrT@VSizeBasedTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVSocket@12@@Z
??0?$ObjectPtrT@VSocket@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VSocketAppender@net@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSocketAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VSocketAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VSocketAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSocketAppender@net@log4cxx@@@helpers@log4cxx@@QAE@PAVSocketAppender@net@2@@Z
??0?$ObjectPtrT@VSocketAppender@net@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VSocketHubAppender@net@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSocketHubAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VSocketHubAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VSocketHubAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSocketHubAppender@net@log4cxx@@@helpers@log4cxx@@QAE@PAVSocketHubAppender@net@2@@Z
??0?$ObjectPtrT@VSocketHubAppender@net@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VSocketOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSocketOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VSocketOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VSocketOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSocketOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVSocketOutputStream@12@@Z
??0?$ObjectPtrT@VSocketOutputStream@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VStringMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VStringMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VStringMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VStringMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VStringMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@PAVStringMatchFilter@filter@2@@Z
??0?$ObjectPtrT@VStringMatchFilter@filter@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VSyslogAppender@net@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSyslogAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VSyslogAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VSyslogAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VSyslogAppender@net@log4cxx@@@helpers@log4cxx@@QAE@PAVSyslogAppender@net@2@@Z
??0?$ObjectPtrT@VSyslogAppender@net@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VTTCCLayout@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTTCCLayout@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VTTCCLayout@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VTTCCLayout@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTTCCLayout@log4cxx@@@helpers@log4cxx@@QAE@PAVTTCCLayout@2@@Z
??0?$ObjectPtrT@VTTCCLayout@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VTelnetAppender@net@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTelnetAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VTelnetAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VTelnetAppender@net@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTelnetAppender@net@log4cxx@@@helpers@log4cxx@@QAE@PAVTelnetAppender@net@2@@Z
??0?$ObjectPtrT@VTelnetAppender@net@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VTimeBasedRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTimeBasedRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VTimeBasedRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VTimeBasedRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTimeBasedRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVTimeBasedRollingPolicy@rolling@2@@Z
??0?$ObjectPtrT@VTimeBasedRollingPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VTimeZone@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTimeZone@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VTimeZone@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VTimeZone@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTimeZone@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVTimeZone@12@@Z
??0?$ObjectPtrT@VTimeZone@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VTriggeringEventEvaluator@spi@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTriggeringEventEvaluator@spi@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VTriggeringEventEvaluator@spi@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VTriggeringEventEvaluator@spi@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTriggeringEventEvaluator@spi@log4cxx@@@helpers@log4cxx@@QAE@PAVTriggeringEventEvaluator@spi@2@@Z
??0?$ObjectPtrT@VTriggeringEventEvaluator@spi@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@PAVTriggeringPolicy@rolling@2@@Z
??0?$ObjectPtrT@VTriggeringPolicy@rolling@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVWriter@12@@Z
??0?$ObjectPtrT@VWriter@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VWriterAppender@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VWriterAppender@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VWriterAppender@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VWriterAppender@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VWriterAppender@log4cxx@@@helpers@log4cxx@@QAE@PAVWriterAppender@2@@Z
??0?$ObjectPtrT@VWriterAppender@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VXMLDOMDocument@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VXMLDOMDocument@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VXMLDOMDocument@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VXMLDOMDocument@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VXMLDOMDocument@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVXMLDOMDocument@12@@Z
??0?$ObjectPtrT@VXMLDOMDocument@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VXMLDOMElement@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VXMLDOMElement@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VXMLDOMElement@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VXMLDOMElement@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VXMLDOMElement@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVXMLDOMElement@12@@Z
??0?$ObjectPtrT@VXMLDOMElement@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VXMLDOMNode@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VXMLDOMNode@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z
??0?$ObjectPtrT@VXMLDOMNode@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABV012@@Z
??0?$ObjectPtrT@VXMLDOMNode@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VXMLDOMNode@helpers@log4cxx@@@helpers@log4cxx@@QAE@PAVXMLDOMNode@12@@Z
??0?$ObjectPtrT@VXMLDOMNode@helpers@log4cxx@@@helpers@log4cxx@@QAE@XZ
??0?$ObjectPtrT@VXMLDOMNodeList@helpers@log4cxx@@@helpers@log4cxx@@QAE@AAVObjectPtrBase@12@@Z
??0?$ObjectPtrT@VXMLDOMNodeList@helpers@log4cxx@@@helpers@log4cxx@@QAE@ABH@Z

Sections

.text
Size: 719KB - Virtual size: 719KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 848KB - Virtual size: 847KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
log4net.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3c:7d:47:83:d5:66:88:5c:5b:96:94:b3:6e:cd:4a:1a:2f:21:0b:dc
Signer

Actual PE Digest

3c:7d:47:83:d5:66:88:5c:5b:96:94:b3:6e:cd:4a:1a:2f:21:0b:dc

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 252KB - Virtual size: 250KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
logs/logs.txt
ndisapi.dll
.dll windows:4 windows x86 arch:x86

8d71c681d609622894a03eef29b735ce

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7d:12:0f:fa:5c:78:5f:cb:b6:4a:98:0e:9c:63:44:5f:b4:18:23:1d
Signer

Actual PE Digest

7d:12:0f:fa:5c:78:5f:cb:b6:4a:98:0e:9c:63:44:5f:b4:18:23:1d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeviceIoControl
FreeLibrary
LoadLibraryA
CloseHandle
GetLastError
ResetEvent
CreateFileA
CreateEventA
GetVersionExA
GetModuleHandleA
GetProcAddress
WaitForSingleObject
GetCurrentProcess
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
GetModuleFileNameA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
RtlUnwind
InterlockedDecrement
InterlockedIncrement
TerminateProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
GetCPInfo
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW

advapi32

RegEnumKeyExA
RegQueryValueExA
RegCreateKeyA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

Exports

Exports

??0CNdisApi@@QAE@ABV0@@Z
??0CNdisApi@@QAE@PBD@Z
??1CNdisApi@@UAE@XZ
??4CNdisApi@@QAEAAV0@ABV0@@Z
??_7CNdisApi@@6B@
??_C@_06NKHA@NDISRD?$AA@
??_FCNdisApi@@QAEXXZ
?ConvertWindows2000AdapterName@CNdisApi@@SAHPBDPADK@Z
?ConvertWindows9xAdapterName@CNdisApi@@SAHPBDPADK@Z
?ConvertWindowsNTAdapterName@CNdisApi@@SAHPBDPADK@Z
?DeviceIoControl@CNdisApi@@QAEHKPAXH0HPAKPAU_OVERLAPPED@@@Z
?FlushAdapterPacketQueue@CNdisApi@@QAEHPAX@Z
?GetAdapterMode@CNdisApi@@QAEHPAU_ADAPTER_MODE@@@Z
?GetAdapterPacketQueueSize@CNdisApi@@QAEHPAXPAK@Z
?GetAdaptersStartupMode@CNdisApi@@SAKXZ
?GetBytesReturned@CNdisApi@@QAEKXZ
?GetHwPacketFilter@CNdisApi@@QAEHPAXPAK@Z
?GetMTUDecrement@CNdisApi@@SAKXZ
?GetPacketFilterTable@CNdisApi@@QAEHPAU_STATIC_FILTER_TABLE@@@Z
?GetPacketFilterTableResetStats@CNdisApi@@QAEHPAU_STATIC_FILTER_TABLE@@@Z
?GetPacketFilterTableSize@CNdisApi@@QAEHPAK@Z
?GetRasLinks@CNdisApi@@QAEHPAXPAU_RAS_LINKS@@@Z
?GetTcpipBoundAdaptersInfo@CNdisApi@@QAEHPAU_TCP_AdapterList@@@Z
?GetVersion@CNdisApi@@QAEKXZ
?IsDriverLoaded@CNdisApi@@QAEHXZ
?NdisrdRequest@CNdisApi@@QAEHPAU_PACKET_OID_DATA@@H@Z
?ReadPacket@CNdisApi@@QAEHPAU_ETH_REQUEST@@@Z
?ReadPackets@CNdisApi@@QAEHPAU_ETH_M_REQUEST@@@Z
?ResetPacketFilterTable@CNdisApi@@QAEHXZ
?SendPacketToAdapter@CNdisApi@@QAEHPAU_ETH_REQUEST@@@Z
?SendPacketToMstcp@CNdisApi@@QAEHPAU_ETH_REQUEST@@@Z
?SendPacketsToAdapter@CNdisApi@@QAEHPAU_ETH_M_REQUEST@@@Z
?SendPacketsToMstcp@CNdisApi@@QAEHPAU_ETH_M_REQUEST@@@Z
?SetAdapterListChangeEvent@CNdisApi@@QAEHPAX@Z
?SetAdapterMode@CNdisApi@@QAEHPAU_ADAPTER_MODE@@@Z
?SetAdaptersStartupMode@CNdisApi@@SAHK@Z
?SetHwPacketFilter@CNdisApi@@QAEHPAXK@Z
?SetMTUDecrement@CNdisApi@@SAHK@Z
?SetPacketEvent@CNdisApi@@QAEHPAX0@Z
?SetPacketFilterTable@CNdisApi@@QAEHPAU_STATIC_FILTER_TABLE@@@Z
?SetWANEvent@CNdisApi@@QAEHPAX@Z
CloseFilterDriver
ConvertWindows2000AdapterName
ConvertWindows9xAdapterName
ConvertWindowsNTAdapterName
FlushAdapterPacketQueue
GetAdapterMode
GetAdapterPacketQueueSize
GetAdaptersStartupMode
GetBytesReturned
GetDriverVersion
GetHwPacketFilter
GetMTUDecrement
GetPacketFilterTable
GetPacketFilterTableResetStats
GetPacketFilterTableSize
GetRasLinks
GetTcpipBoundAdaptersInfo
IsDriverLoaded
NdisrdRequest
OpenFilterDriver
ReadPacket
ReadPackets
ResetPacketFilterTable
SendPacketToAdapter
SendPacketToMstcp
SendPacketsToAdapter
SendPacketsToMstcp
SetAdapterListChangeEvent
SetAdapterMode
SetAdaptersStartupMode
SetHwPacketFilter
SetMTUDecrement
SetPacketEvent
SetPacketFilterTable
SetWANEvent

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
source/ManagedWifi/Interop.cs
source/ManagedWifi/ManagedWifi.csproj
source/ManagedWifi/Properties/AssemblyInfo.cs
source/ManagedWifi/WlanApi.cs
.vbs
source/ManagedWifi/app.config
source/ManagedWifi/license.txt
source/dualserver/DualServer.cpp
source/dualserver/DualServer.h
source/dualserver/gpl-2.0.txt
source/dualserver/makefile
start_service.exe
.exe windows:4 windows x86 arch:x86

1c042238f43557c055fca8642de8a074

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

96:00:24:70:ec:37:4b:67:49:84:46:84:10:20:1e:01:79:07:3d:84
Signer

Actual PE Digest

96:00:24:70:ec:37:4b:67:49:84:46:84:10:20:1e:01:79:07:3d:84

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
MulDiv
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetAsyncKeyState
IsDlgButtonChecked
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
RegisterClassA
OpenClipboard
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
wvsprintfA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
ShowWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
EmptyClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
SetForegroundWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/SimpleSC.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ContinueService
ExistsService
GetErrorMessage
GetServiceBinaryPath
GetServiceDescription
GetServiceDisplayName
GetServiceFailure
GetServiceLogon
GetServiceName
GetServiceStartType
GetServiceStatus
GrantServiceLogonPrivilege
InstallService
PauseService
RemoveService
RemoveServiceLogonPrivilege
RestartService
ServiceIsPaused
ServiceIsRunning
ServiceIsStopped
SetServiceBinaryPath
SetServiceDescription
SetServiceFailure
SetServiceLogon
SetServiceStartType
StartService
StopService

Sections

CODE
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/nsExec.dll
.dll windows:4 windows x86 arch:x86

d83f71e61ee459ee63ca3e829966a9dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetExitCodeProcess
WaitForSingleObject
Sleep
TerminateProcess
lstrcpyA
lstrcpynA
GlobalReAlloc
GlobalUnlock
GlobalSize
ReadFile
PeekNamedPipe
GetTickCount
CreateProcessA
GetStartupInfoA
CreatePipe
GetVersionExA
GetModuleHandleA
DeleteFileA
lstrcmpiA
lstrlenA
lstrcatA
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
CreateFileA
CopyFileA
GetTempFileNameA
GlobalFree
GlobalAlloc
GetModuleFileNameA
ExitProcess
GetCommandLineA
GetProcAddress
GlobalLock
GetCurrentProcess

user32

SendMessageA
OemToCharBuffA
CharNextA
wsprintfA
CharPrevA
FindWindowExA

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

Exports

Exports

Exec
ExecToLog
ExecToStack

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninstall-driver-amd64.bat
uninstall-driver-x86.bat
wifi.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28-01-1999 13:00

Not After

27-01-2017 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20-05-2010 14:48

Not After

21-05-2011 14:48

Subject

CN=Connectify,O=Connectify,L=Philadelphia,ST=PA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22-01-2004 10:00

Not After

27-01-2017 11:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:00

Not After

23-05-2016 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

47:9d:f5:df:fa:51:5a:98:48:8c:db:10:99:3e:8e:d7:4e:0e:a4:d6
Signer

Actual PE Digest

47:9d:f5:df:fa:51:5a:98:48:8c:db:10:99:3e:8e:d7:4e:0e:a4:d6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\kchuang\Documents\Connectify_all\connectify\2.2.0.release\ManagedWifi\obj\Release\wifi.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfb06052e74b26a42b0e490bd1c07959

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:1e:44:a5:e2:4eCertificate

Key Usages

01:00:00:00:00:01:28:b6:65:ba:0fCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:1e:44:a5:ec:beCertificate

Key Usages

61:0b:7f:6b:00:00:00:00:00:19Certificate

Key Usages

2c:40:19:83:a7:e2:16:3f:77:77:70:f3:7c:75:b9:5d:5b:98:79:89Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 3KB - Virtual size: 112KB

.ndata Size: - Virtual size: 88KB

.rsrc Size: 140KB - Virtual size: 139KB

0615854a8bf9998cbbbcc756d6e6d4bf

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

6f:fc:26:3a:35:11:34:19:4c:f1:6e:1e:6d:0e:08:06Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

6b:5d:3d:d9:b4:58:ba:66:2d:2d:12:f0:45:be:52:cc:73:2a:95:3fSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

psapi

ws2_32

msimg32

shlwapi

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

version

urlmon

wininet

Exports

Exports

Sections

.text Size: 507KB - Virtual size: 506KB

.rdata Size: 158KB - Virtual size: 158KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

04:00:00:00:00:01:1e:44:a5:e2:4e
Certificate

01:00:00:00:00:01:28:b6:65:ba:0f
Certificate

04:00:00:00:00:01:1e:44:a5:ec:be
Certificate

61:0b:7f:6b:00:00:00:00:00:19
Certificate

2c:40:19:83:a7:e2:16:3f:77:77:70:f3:7c:75:b9:5d:5b:98:79:89
Signer

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 3KB - Virtual size: 112KB

.ndata
Size: - Virtual size: 88KB

.rsrc
Size: 140KB - Virtual size: 139KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

6f:fc:26:3a:35:11:34:19:4c:f1:6e:1e:6d:0e:08:06
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

6b:5d:3d:d9:b4:58:ba:66:2d:2d:12:f0:45:be:52:cc:73:2a:95:3f
Signer

.text
Size: 507KB - Virtual size: 506KB

.rdata
Size: 158KB - Virtual size: 158KB

.data
Size: 9KB - Virtual size: 19KB

.rsrc
Size: 38KB - Virtual size: 38KB

.reloc
Size: 30KB - Virtual size: 30KB

CODE
Size: 45KB - Virtual size: 44KB

DATA
Size: 1KB - Virtual size: 1KB

BSS
Size: - Virtual size: 2KB

.idata
Size: 3KB - Virtual size: 2KB

.edata
Size: 1024B - Virtual size: 804B

.reloc
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 520B

.text
Size: 9KB - Virtual size: 9KB

.data
Size: 1024B - Virtual size: 852B

.rsrc
Size: 512B - Virtual size: 488B

.reloc
Size: 1024B - Virtual size: 898B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 572B