dialog
initDialog
show
Overview
overview
3Static
static
32240512402...18.exe
windows7-x64
32240512402...18.exe
windows10-2004-x64
3$PLUGINSDI...ns.dll
windows7-x64
3$PLUGINSDI...ns.dll
windows10-2004-x64
3$PLUGINSDI...er.dll
windows7-x64
1$PLUGINSDI...er.dll
windows10-2004-x64
3$_8_/Common.dll
windows7-x64
1$_8_/Common.dll
windows10-2004-x64
1$_8_/DIFxAPI.dll
windows7-x64
1$_8_/DIFxAPI.dll
windows10-2004-x64
1$_8_/FileUnlock.dll
windows7-x64
3$_8_/FileUnlock.dll
windows10-2004-x64
3$_8_/GF.dll
windows7-x64
1$_8_/GF.dll
windows10-2004-x64
1Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
224051240232a076abb3a14c2f7f5f94_JaffaCakes118.exe
Resource
win7-20240221-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
224051240232a076abb3a14c2f7f5f94_JaffaCakes118.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
1 signatures
150 seconds
Behavioral task
behavioral3
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win7-20240419-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral4
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral5
Sample
$PLUGINSDIR/SetupHelper.dll
Resource
win7-20240508-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral6
Sample
$PLUGINSDIR/SetupHelper.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral7
Sample
$_8_/Common.dll
Resource
win7-20240220-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral8
Sample
$_8_/Common.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
1 signatures
150 seconds
Behavioral task
behavioral9
Sample
$_8_/DIFxAPI.dll
Resource
win7-20240508-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral10
Sample
$_8_/DIFxAPI.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
1 signatures
150 seconds
Behavioral task
behavioral11
Sample
$_8_/FileUnlock.dll
Resource
win7-20240611-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral12
Sample
$_8_/FileUnlock.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral13
Sample
$_8_/GF.dll
Resource
win7-20231129-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral14
Sample
$_8_/GF.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
224051240232a076abb3a14c2f7f5f94_JaffaCakes118
-
Size
2.0MB
-
MD5
224051240232a076abb3a14c2f7f5f94
-
SHA1
06ef4d6664897bbcb87fc99b2fc836511a05fe0f
-
SHA256
c9b03e1fc3b006d3abb6f34cbbde7cb52b19c7dd5d34c59c23ffad38d08aa8fd
-
SHA512
2af8ec179cf70e833d8326fc9579a91423be8201e2cd1b11604ec68acb10123c73a527e74342f299c889fb170f70bdc096bfc4c2bd8ece099bf43e008bba734f
-
SSDEEP
49152:TLJMIx2kiMsh/JSdfW6m4uBsHeiYkIOtGgnLPG59:TLJMIsk1jdfWcukezsGP
Score
3/10
Malware Config
Signatures
-
Unsigned PE 3 IoCs
Checks for missing Authenticode signature.
resource 224051240232a076abb3a14c2f7f5f94_JaffaCakes118 unpack001/$PLUGINSDIR/InstallOptions.dll unpack001/$_8_/GF.dll
Files
-
224051240232a076abb3a14c2f7f5f94_JaffaCakes118.exe windows:5 windows x86 arch:x86
b729b61eb1515fcf7b3e511e4e66258b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetFileTime
CompareFileTime
SearchPathW
GetShortPathNameW
GetFullPathNameW
MoveFileW
SetCurrentDirectoryW
GetFileAttributesW
GetLastError
CreateDirectoryW
SetFileAttributesW
Sleep
GetTickCount
CreateFileW
GetFileSize
GetModuleFileNameW
GetCurrentProcess
CopyFileW
ExitProcess
GetWindowsDirectoryW
GetTempPathW
GetCommandLineW
SetErrorMode
CloseHandle
lstrlenW
lstrcpynW
GetDiskFreeSpaceW
GlobalUnlock
GlobalLock
CreateThread
LoadLibraryW
CreateProcessW
lstrcmpiA
GetTempFileNameW
lstrcatW
GetProcAddress
LoadLibraryA
GetModuleHandleA
OpenProcess
lstrcpyW
GetVersionExW
GetSystemDirectoryW
GetVersion
lstrcpyA
RemoveDirectoryW
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GlobalFree
GetModuleHandleW
LoadLibraryExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
WideCharToMultiByte
MulDiv
lstrlenA
WriteFile
ReadFile
MultiByteToWideChar
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
lstrcpynA
user32
ScreenToClient
GetMessagePos
CallWindowProcW
IsWindowVisible
LoadBitmapW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuW
CreatePopupMenu
GetSystemMetrics
EndDialog
EnableMenuItem
GetSystemMenu
SetClassLongW
IsWindowEnabled
SetWindowPos
DialogBoxParamW
CheckDlgButton
CreateWindowExW
SystemParametersInfoW
RegisterClassW
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharNextA
CharUpperW
CharPrevW
DispatchMessageW
PeekMessageW
wsprintfA
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
LoadCursorW
SetCursor
GetWindowLongW
GetSysColor
CharNextW
GetClassInfoW
ExitWindowsEx
FindWindowExW
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
IsWindow
gdi32
SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor
SelectObject
shell32
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHFileOperationW
SHGetSpecialFolderLocation
advapi32
RegEnumKeyW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW
RegEnumValueW
comctl32
ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create
ole32
CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance
version
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
Sections
.text Size: 25KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 409KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ndata Size: - Virtual size: 1.1MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 289KB - Virtual size: 288KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/InstallOptions.dll.dll windows:5 windows x86 arch:x86
cd90e33ffbc335413a25300c682c83df
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
lstrcmpiW
GetModuleHandleW
GlobalLock
GlobalUnlock
GetCurrentDirectoryW
SetCurrentDirectoryW
GetPrivateProfileIntW
GetPrivateProfileStringW
lstrcatW
WritePrivateProfileStringW
lstrcpynW
lstrlenW
lstrcpyW
GlobalFree
GlobalAlloc
user32
OpenClipboard
DestroyIcon
LoadCursorW
DispatchMessageW
TranslateMessage
GetMessageW
IsDialogMessageW
ShowWindow
SetWindowLongW
GetClientRect
SetWindowRgn
LoadIconW
LoadImageW
CreateWindowExW
MapDialogRect
GetClipboardData
GetWindowRect
CreateDialogParamW
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
SetCursor
DrawTextW
GetWindowLongW
DrawFocusRect
CallWindowProcW
PostMessageW
wsprintfW
CharNextW
MessageBoxW
CloseClipboard
GetDlgCtrlID
MapWindowPoints
SetWindowPos
PtInRect
GetWindowTextW
SetWindowTextW
SendMessageW
DestroyWindow
gdi32
SelectObject
CreateRectRgn
GetObjectW
CombineRgn
DeleteObject
CreateCompatibleDC
GetDIBits
SetTextColor
shell32
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteW
SHGetDesktopFolder
comdlg32
GetOpenFileNameW
CommDlgExtendedError
GetSaveFileNameW
ole32
CoTaskMemFree
Exports
Exports
Sections
.text Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 152B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/SetupHelper.dll.dll windows:4 windows x86 arch:x86
9082e4116a9f4c78e0d62adbf746954e
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5cCertificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before21/05/2009, 00:00Not After20/05/2019, 23:59SubjectCN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
5d:06:88:f9:04:0a:d5:22:87:fc:32:ad:ec:eb:85:b0Certificate
IssuerCN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=USNot Before26/01/2010, 00:00Not After25/01/2013, 23:59SubjectCN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Tencent Technology(Shenzhen) Company Limited,L=shenzhen,ST=guangdong,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
02:82:1d:3a:5b:0e:07:a7:5a:ed:ee:92:9e:25:5b:5f:06:79:78:0bSigner
Actual PE Digest02:82:1d:3a:5b:0e:07:a7:5a:ed:ee:92:9e:25:5b:5f:06:79:78:0bDigest Algorithmsha1PE Digest MatchestrueHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mfc42u
ord3688
ord4128
ord4292
ord5784
ord2371
ord3084
ord2397
ord2854
ord4155
ord3728
ord810
ord4266
ord3292
ord3909
ord6004
ord5436
ord6379
ord5446
ord6390
ord4370
ord4847
ord3592
ord2567
ord4390
ord3569
ord6640
ord2294
ord4229
ord1143
ord384
ord686
ord2400
ord3995
ord2857
ord4279
ord2088
ord1115
ord1173
ord1568
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord6654
ord4273
ord859
ord4272
ord470
ord323
ord1633
ord1634
ord5781
ord3871
ord5871
ord2746
ord640
ord755
ord2606
ord4270
ord3658
ord795
ord3566
ord3716
ord2406
ord3621
ord3614
ord567
ord3397
ord4831
ord5286
ord1768
ord6051
ord4124
ord6195
ord940
ord3087
ord6451
ord4224
ord861
ord540
ord4419
ord4621
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord3793
ord5276
ord4347
ord6370
ord5157
ord2377
ord5237
ord4401
ord1767
ord4073
ord6048
ord4704
ord4992
ord5261
ord1826
ord815
ord561
ord3733
ord4418
ord4616
ord4075
ord3074
ord3820
ord3826
ord3825
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord825
ord3142
ord2977
ord3948
ord5710
ord5285
ord5303
ord4692
ord4074
ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord4269
ord2506
ord609
ord641
ord858
ord538
ord2810
ord800
ord823
ord2859
ord6871
ord2078
ord6193
ord6466
ord1165
ord324
msvcrt
wcscat
wcscpy
_wcslwr
wprintf
_except_handler3
time
tolower
??0exception@@QAE@ABV0@@Z
_CxxThrowException
??1exception@@UAE@XZ
_wsplitpath
wcschr
swscanf
memmove
isspace
isalnum
strncmp
wcslen
wcsrchr
__CxxFrameHandler
_snwprintf
wcscmp
_wtol
_wtoi
wcsstr
_wcsicmp
strchr
atoi
_wcsdup
_vsnwprintf
_purecall
fprintf
isalpha
_ftol
__dllonexit
_onexit
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
wcsncpy
wcsncat
free
malloc
vswprintf
_snprintf
??0exception@@QAE@ABQBD@Z
kernel32
FreeLibrary
CreateDirectoryW
FindFirstFileW
MoveFileExW
FindNextFileW
FindClose
RemoveDirectoryW
GetFileAttributesW
CreateFileW
FormatMessageW
lstrlenW
OutputDebugStringW
GetProcAddress
lstrlenA
OutputDebugStringA
LocalFree
ReleaseMutex
CreateMutexW
DeleteFileW
GlobalAlloc
lstrcpynW
GlobalFree
CopyFileW
CreateToolhelp32Snapshot
Process32FirstW
OpenProcess
CloseHandle
Process32NextW
WaitForSingleObject
Sleep
GetModuleFileNameW
LoadLibraryW
GetVersion
GetSystemDefaultLangID
IsBadReadPtr
ExpandEnvironmentStringsW
GetCurrentDirectoryW
GetSystemDirectoryW
GetSystemInfo
GetModuleHandleW
GetVersionExW
GetLocaleInfoW
GetExitCodeProcess
CreateProcessW
Module32NextW
Module32FirstW
TerminateProcess
SetEvent
CreateEventW
DeviceIoControl
LocalAlloc
GetFileSize
GetTickCount
SetFilePointer
InterlockedDecrement
GetCurrentProcessId
GetPrivateProfileIntW
HeapFree
HeapAlloc
GetProcessHeap
WritePrivateProfileStringW
MultiByteToWideChar
WideCharToMultiByte
GetLocalTime
LoadLibraryA
InitializeCriticalSection
DeleteCriticalSection
VirtualQuery
LeaveCriticalSection
EnterCriticalSection
MapViewOfFile
CreateFileMappingW
SetEndOfFile
UnmapViewOfFile
GetLastError
GetCurrentProcess
user32
SetWindowLongW
FindWindowW
IsWindowEnabled
SetWindowTextW
IsWindow
OffsetRect
MoveWindow
SetFocus
GetWindowRect
GetParent
UpdateWindow
ShowWindow
CreateWindowExW
SetTimer
LoadBitmapW
LoadIconW
wsprintfW
GetDesktopWindow
GetDC
ReleaseDC
GetCursorPos
PtInRect
LoadCursorW
SetCursor
CharNextW
CharPrevW
InvalidateRect
ScreenToClient
RegisterWindowMessageW
MessageBoxW
LoadStringW
GetClientRect
IsWindowVisible
SendMessageW
KillTimer
LoadImageW
GetDlgItem
SendMessageTimeoutW
EnableWindow
PostMessageW
gdi32
CreatePen
CreateCompatibleDC
GetTextColor
GetBkColor
BitBlt
GetStockObject
DeleteObject
GetObjectW
CreateFontIndirectW
CreateCompatibleBitmap
advapi32
ControlService
CloseServiceHandle
OpenServiceW
OpenSCManagerW
DeleteService
StartServiceW
CreateServiceW
RegRestoreKeyW
LookupAccountNameW
GetFileSecurityW
GetSecurityDescriptorDacl
GetAclInformation
GetLengthSid
InitializeAcl
GetAce
AddAce
AddAccessAllowedAce
GetSecurityDescriptorControl
SetFileSecurityW
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
AdjustTokenPrivileges
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegDeleteValueW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
QueryServiceStatus
shell32
SHGetSpecialFolderPathW
ShellExecuteW
SHFileOperationW
comctl32
ImageList_AddMasked
ole32
CoInitialize
CoSetProxyBlanket
CoInitializeSecurity
CoUninitialize
StgCreateDocfile
StgOpenStorage
CoCreateInstance
oleaut32
SysAllocString
VariantClear
SysFreeString
ws2_32
WSCDeinstallProvider
WSCEnumProtocols
htons
htonl
msvcp60
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@
??1ios_base@std@@UAE@XZ
?_Doraise@bad_cast@std@@MBEXXZ
??0bad_cast@std@@QAE@ABV01@@Z
?find_last_not_of@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGII@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z
?compare@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEHIIPBGI@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?max_size@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIXZ
?_Copy@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEXI@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?erase@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@II@Z
??Mstd@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
?find_first_of@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGII@Z
?_Freeze@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEXXZ
?find@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGII@Z
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@ABV12@II@Z
??Hstd@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@0@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$allocator@G@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??1?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??_8?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@7B@
??0ios_base@std@@IAE@XZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??_7?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@6B@
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?_Xran@std@@YAXXZ
?_Split@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEXXZ
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBGI@Z
?find_last_of@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGII@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??9std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
?_Tidy@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEX_N@Z
?_Eos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEXI@Z
?rfind@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGII@Z
?substr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBE?AV12@II@Z
?_Xlen@std@@YAXXZ
?_C@?1??_Nullstr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@CAPBGXZ@4GB
?_Grow@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAE_NI_N@Z
?assign@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBGI@Z
??Hstd@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@PBG@Z
?npos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@2IB
?assign@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@ABV12@II@Z
??_7?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@6B@
??_7?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@6B@
?get@?$basic_istream@GU?$char_traits@G@std@@@std@@QAEGXZ
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z
??1?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
?str@?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@2@XZ
??_7bad_cast@std@@6B@
??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@
??1locale@std@@QAE@XZ
??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@IAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??Hstd@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBGABV10@@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
version
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
psapi
EnumProcessModules
GetModuleFileNameExW
shlwapi
PathFileExistsW
PathIsDirectoryW
SHSetValueW
imagehlp
MapAndLoad
UnMapAndLoad
Exports
Exports
BackUpSetupPackage
CheckAV
CheckForQQSoftUninstall
CheckForSetup
CheckForUninstall
CheckInstallPath
CleanTempFolder
CreateBitmapCtrl
DeleteCacheFolder
DeleteFileRecursively
DeployFile
ExecuteShell
ExtendCommand
FinalizeReport
FindExistedRTP
GetIntVersionFromString
GetMessageHandler
GetQQReleatedPath
GetQQSoftInstallDir
InitializeReport
IsAdmin
IsChildProtectionRun
IsNeedUpdate
IsPinUnsoftToStartMenu
IsQQDoctorExist
IsQQSoftExist
IsWndEnable
LoadDriver
LoadQMDriver
NotifyProgress
NotifySetupStatus
OutputError
OutputInfo
ParseCmdLine
ParseUninstallCmdLine
PinUnsoftToStartMenu
RecoverCommand
ReleaseRtpOptDlg
RemoveUnSoft
ReportInstallInfo
ReportUninstallInfo
SaveRtpState
SetExclusive
SetInstallPath
SetSystemAccessControl
SetText
SetUnInstallPath
ShowLoadDriverErrorDlg
ShowRtpOptDlg
UninstallLSP
UninstallQQDoctor
UninstallQQSoft
UpdateProtectState
UpdateRTPService
UpdateRtpState
UpdateSetupInfo
WaitForUninstExit
WaitUninstallComplete
free_instfilespage_bitmap
kill_instfilespage_timer
load_instfilespage_bitmap
start_instfilespage_timer
Sections
.text Size: 212KB - Virtual size: 209KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 44KB - Virtual size: 43KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 292KB - Virtual size: 289KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 24KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/ioSpecial.ini
-
$PLUGINSDIR/modern-header.bmp
-
$PLUGINSDIR/modern-wizard.bmp
-
$_8_/CheckAv.etf
-
$_8_/Common.dll.dll regsvr32 windows:4 windows x86 arch:x86
473cdd61fc97879fb797054518dd2125
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5cCertificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before21/05/2009, 00:00Not After20/05/2019, 23:59SubjectCN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
5d:06:88:f9:04:0a:d5:22:87:fc:32:ad:ec:eb:85:b0Certificate
IssuerCN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=USNot Before26/01/2010, 00:00Not After25/01/2013, 23:59SubjectCN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Tencent Technology(Shenzhen) Company Limited,L=shenzhen,ST=guangdong,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
49:5c:c9:32:86:b0:cd:8d:0a:94:25:17:61:67:4e:7b:d4:d7:ae:baSigner
Actual PE Digest49:5c:c9:32:86:b0:cd:8d:0a:94:25:17:61:67:4e:7b:d4:d7:ae:baDigest Algorithmsha1PE Digest MatchestrueHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\Hummer\platform_QQ1.55\Basic_HummerPlatform_VOB\Platform_fr\Output\bin\Common.pdb
Imports
ws2_32
listen
getsockopt
setsockopt
getsockname
getpeername
bind
WSAAsyncSelect
WSAGetLastError
send
ioctlsocket
recv
select
__WSAFDIsSet
closesocket
WSAStartup
inet_addr
gethostname
WSAAsyncGetHostByName
WSACancelAsyncRequest
getservbyport
gethostbyaddr
getservbyname
accept
socket
gethostbyname
WSASetLastError
sendto
recvfrom
connect
WSACleanup
inet_ntoa
wininet
InternetGetCookieW
InternetSetCookieW
InternetErrorDlg
HttpQueryInfoW
InternetQueryOptionW
HttpSendRequestW
HttpOpenRequestW
InternetCloseHandle
InternetConnectW
InternetOpenW
InternetCrackUrlW
InternetSetOptionW
InternetCanonicalizeUrlW
setupapi
SetupIterateCabinetW
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
psapi
GetModuleFileNameExA
GetModuleFileNameExW
iphlpapi
GetIpForwardTable
GetIpAddrTable
dbghelp
SymLoadModule
SymInitialize
SymSetOptions
SymCleanup
SymGetModuleInfo
kernel32
InterlockedExchange
GetVersionExA
GetLocaleInfoA
HeapDestroy
HeapReAlloc
HeapSize
InterlockedCompareExchange
UnhandledExceptionFilter
IsDebuggerPresent
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
GetModuleHandleW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetLastError
MultiByteToWideChar
WideCharToMultiByte
CloseHandle
CreateFileW
GetVersionExW
OpenProcess
GetCurrentProcessId
GetVersion
OutputDebugStringA
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
SetThreadLocale
GetThreadLocale
RaiseException
OpenMutexW
CreateMutexW
WaitForSingleObject
ReleaseMutex
DeviceIoControl
GetVolumeInformationW
GetDriveTypeW
IsBadReadPtr
FreeLibrary
ReadFile
CreateProcessW
CreatePipe
DuplicateHandle
GetCurrentProcess
GetStdHandle
lstrlenW
GetModuleFileNameW
GetFileSizeEx
LockResource
LoadResource
SizeofResource
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GetFileAttributesW
CreateDirectoryW
GetFileType
RemoveDirectoryW
FindClose
FindNextFileW
DeleteFileW
SetFileAttributesW
FindFirstFileW
FindResourceW
FindResourceExW
SetFilePointer
WriteFile
GetTempPathW
GetCommandLineW
GetFileSize
SetFilePointerEx
FlushFileBuffers
SetEndOfFile
GetDiskFreeSpaceW
GetFullPathNameW
Sleep
lstrcmpW
CopyFileW
MoveFileExW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
MoveFileW
GetSystemTimeAsFileTime
GetProcessTimes
GetModuleHandleA
GetPrivateProfileStringA
GetFileAttributesA
GetModuleFileNameA
VirtualQuery
QueryPerformanceFrequency
SetProcessAffinityMask
GetProcessAffinityMask
GlobalFree
SetLastError
LocalFree
GetProcessHeap
HeapFree
LoadLibraryA
GetSystemDirectoryA
FormatMessageW
DeleteFileA
GetLocaleInfoW
GetUserDefaultLCID
GetSystemDefaultLCID
IsValidLocale
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetSystemDefaultLangID
GetUserDefaultLangID
SetLocaleInfoW
GetDateFormatW
GetTimeFormatW
GetCalendarInfoW
GetCurrencyFormatW
GetNumberFormatW
GetTimeZoneInformation
FileTimeToSystemTime
FileTimeToLocalFileTime
SetEvent
SetNamedPipeHandleState
WaitNamedPipeW
DisconnectNamedPipe
CreateEventW
CreateThread
ConnectNamedPipe
CreateNamedPipeW
lstrcmpiA
lstrcmpiW
GetCPInfoExW
SetThreadPriority
ResetEvent
TerminateThread
WaitForMultipleObjects
ReadProcessMemory
CreateFileA
VirtualQueryEx
GetThreadSelectorEntry
OpenThread
ResumeThread
GetThreadContext
SuspendThread
GetThreadTimes
GetCurrentThread
TerminateProcess
SearchPathW
WriteProcessMemory
SetUnhandledExceptionFilter
VirtualAllocEx
SetErrorMode
HeapAlloc
GetACP
GetWindowsDirectoryA
LoadLibraryW
GetWindowsDirectoryW
GetSystemDirectoryW
lstrcpynW
SetProcessWorkingSetSize
IsDBCSLeadByte
user32
TranslateMessage
DispatchMessageW
SetWindowLongW
SetTimer
KillTimer
PostMessageW
DestroyWindow
CreateWindowExW
PeekMessageW
DefWindowProcW
GetFocus
IsWindowEnabled
EnableWindow
SetFocus
RemovePropW
SendMessageW
GetPropW
GetWindow
MonitorFromWindow
GetMonitorInfoW
GetClientRect
MapWindowPoints
SetWindowPos
DrawTextW
GetIconInfo
GetDC
ReleaseDC
GetDesktopWindow
OpenInputDesktop
GetUserObjectInformationW
GetThreadDesktop
CloseDesktop
GetSystemMetrics
IsWindow
IsWindowVisible
GetClassNameW
GetGUIThreadInfo
GetWindowLongW
GetWindowThreadProcessId
GetParent
GetWindowRect
GetWindowTextW
SystemParametersInfoW
RegisterClassExW
GetClassInfoExW
CharNextA
CharUpperA
CharLowerA
CharNextW
CharUpperW
CharLowerW
FindWindowW
UnregisterClassA
ShowWindow
SetPropW
gdi32
SelectObject
RealizePalette
GetDIBits
CreateCompatibleDC
CreateDIBSection
DeleteDC
CreateDIBitmap
SetTextColor
DeleteObject
ExtCreateRegion
GetObjectW
GetClipBox
CreateRectRgnIndirect
ExtSelectClipRgn
SetDIBitsToDevice
ExtTextOutW
CreateFontIndirectW
GetStockObject
SetBkMode
SetStretchBltMode
StretchDIBits
RectVisible
CreateCompatibleBitmap
CreateBitmap
SetBkColor
BitBlt
StretchBlt
CreateRectRgn
comdlg32
GetOpenFileNameW
GetSaveFileNameW
CommDlgExtendedError
advapi32
RegOpenKeyW
RegQueryValueExW
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
GetSidSubAuthority
GetSidSubAuthorityCount
GetTokenInformation
OpenProcessToken
DuplicateTokenEx
RegCloseKey
shell32
SHGetSpecialFolderPathW
SHGetMalloc
SHGetPathFromIDListW
ShellExecuteW
ShellExecuteExW
SHCreateDirectoryExW
SHGetFolderLocation
ole32
CoFreeLibrary
CLSIDFromString
CoCreateInstance
CoCreateGuid
CoTaskMemAlloc
CoTaskMemFree
StgOpenStorageOnILockBytes
StgCreateDocfile
StgOpenStorage
StringFromGUID2
CoLoadLibrary
CoGetMalloc
oleaut32
SysStringLen
SysFreeString
VariantChangeType
SysReAllocStringLen
VariantInit
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringByteLen
SysStringByteLen
BstrFromVector
VectorFromBstr
VarBstrCmp
VarDateFromStr
VariantTimeToSystemTime
VariantClear
SysAllocString
SysAllocStringLen
LoadRegTypeLi
LoadTypeLi
atl80
ord31
ord58
ord32
ord30
ord61
ord15
ord23
ord64
ord22
ord18
shlwapi
StrCmpIW
PathFindFileNameW
StrCmpW
msvcp80
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?reserve@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?resize@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
msvcr80
getc
fputc
ferror
srand
feof
fflush
ftell
fseek
fwrite
fread
fclose
_CIexp
ceil
_CIlog
_CIatan
_cabs
_CIpow
floor
_CIcos
_CIsin
_CIsqrt
malloc
qsort
_wtoi
strtoul
memcpy
_snwprintf
_strrev
_ismbcspace
_vswprintf
wcscoll
_wcsicoll
wcspbrk
_wcsrev
wcscspn
strrchr
wcsstr
iswdigit
wcsspn
wcsnlen
sscanf_s
_vsnwprintf
_vscwprintf
_vsnprintf_s
tolower
isalpha
_snprintf
_gmtime32
_heapmin
_unlock
_mbspbrk
vsprintf
_vscprintf
fgetc
__dllonexit
isprint
_lock
_onexit
_decode_pointer
_except_handler4_common
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
isalnum
__iob_func
_purecall
free
sprintf_s
setlocale
strncpy
memmove_s
wcsftime
_localtime64_s
_gmtime64_s
_mktime64
wcstoul
iswalpha
iswalnum
strcat_s
strncpy_s
strcpy_s
_wtol
atoi
_beginthreadex
wcschr
isxdigit
??_V@YAXPAX@Z
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
_invalid_parameter_noinfo
iswspace
isspace
_time64
__CxxFrameHandler3
_recalloc
_CxxThrowException
memset
??3@YAXPAX@Z
printf
strncmp
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
_endthread
_beginthread
strstr
_strdup
rand
calloc
longjmp
_setjmp3
__CxxLongjmpUnwind
_wfopen
_CIfmod
div
_CIacos
_CIatan2
wcsncpy
realloc
exit
fprintf
sprintf
sscanf
getenv
abort
strtod
_msize
memmove
wcsncmp
_wtof
_wcsicmp
atof
wcstok
wcsrchr
memcpy_s
toupper
strchr
_encode_pointer
_mbsinc
wintrust
CryptCATAdminAcquireContext
CryptCATAdminReleaseContext
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminEnumCatalogFromHash
CryptCATCatalogInfoFromContext
WinVerifyTrust
WTHelperProvDataFromStateData
WTHelperGetProvCertFromChain
CryptCATAdminReleaseCatalogContext
WTHelperGetProvSignerFromChain
crypt32
CertGetNameStringW
netapi32
Netbios
rasapi32
RasGetProjectionInfoW
RasEnumConnectionsW
Exports
Exports
??0Big@@QAE@AAPAI@Z
??0Big@@QAE@ABV0@@Z
??0Big@@QAE@H@Z
??0Big@@QAE@J@Z
??0Big@@QAE@PAD@Z
??0Big@@QAE@XZ
??0CCmdCodecBase@@QAE@XZ
??0CEcdsa@@QAE@W4ECCBIT@eccparam@@@Z
??0CExpatDataCompat@@QAE@XZ
??0CExpatFileReader@@QAE@XZ
??0CExpatMemReader@@QAE@XZ
??0CFmtString@@QAE@XZ
??0CGUnzipBuffer@@QAE@XZ
??0CGZipBuffer@@QAE@HH@Z
??0CMACReader@@QAE@XZ
??0CP2PDownload@@QAE@AAV0@@Z
??0CP2PDownload@@QAE@XZ
??0CP2PDownloadParam@@QAE@AAV0@@Z
??0CP2PDownloadParam@@QAE@XZ
??0CP2PDownloadUIInterface@@QAE@ABV0@@Z
??0CP2PDownloadUIInterface@@QAE@XZ
??0CRootStorage@@QAE@ABV0@@Z
??0CRootStorage@@QAE@PAVCCompoundDocument@@@Z
??0CScopeToggler@@QAE@PA_N_N@Z
??0CShortStreamContainer@@QAE@XZ
??0CStorage@@QAE@ABV0@@Z
??0CStorage@@QAE@PAVCCompoundDocument@@H@Z
??0CStorageIterator@@QAE@ABV0@@Z
??0CStorageIterator@@QAE@XZ
??0CStream@@QAE@ABV0@@Z
??0CStream@@QAE@PAVCCompoundDocument@@H@Z
??0CTXBSTR@@QAE@ABU_GUID@@@Z
??0CTXBSTR@@QAE@ABV0@@Z
??0CTXBSTR@@QAE@ABVCTXStringW@@@Z
??0CTXBSTR@@QAE@H@Z
??0CTXBSTR@@QAE@HPB_W@Z
??0CTXBSTR@@QAE@PB_W@Z
??0CTXBSTR@@QAE@XZ
??0CTXCommPack@@QAE@ABV0@@Z
??0CTXCommPack@@QAE@XZ
??0CTXCriticalSection@@QAE@ABV0@@Z
??0CTXCriticalSection@@QAE@XZ
??0CTXFileDialog@@IAE@XZ
??0CTXFileDialog@@QAE@ABV0@@Z
??0CTXFileDialog@@QAE@HPB_W00K0PAUHWND__@@HPAVVFileDialgCallback@@@Z
??0CTXHttpDownload@@QAE@XZ
??0CTXHttpDownloadSink@@IAE@XZ
??0CTXHttpDownloadSink@@QAE@ABV0@@Z
??0CTXHttpUpload@@QAE@XZ
??0CTXHttpUploadBuffer@@QAE@XZ
??0CTXHttpUploadStandard@@QAE@XZ
??0CTXStringA@@QAE@ABV0@@Z
??0CTXStringA@@QAE@DH@Z
??0CTXStringA@@QAE@PBD@Z
??0CTXStringA@@QAE@PBDH@Z
??0CTXStringA@@QAE@UtagEN@@PB_WH@Z
??0CTXStringA@@QAE@UtagGBK@@PB_WH@Z
??0CTXStringA@@QAE@UtagUTF8@@PB_WH@Z
??0CTXStringA@@QAE@XZ
??0CTXStringW@@QAE@ABU_GUID@@@Z
??0CTXStringW@@QAE@ABUtagVARIANT@@@Z
??0CTXStringW@@QAE@ABV0@@Z
??0CTXStringW@@QAE@ABVCTXBSTR@@@Z
??0CTXStringW@@QAE@H@Z
??0CTXStringW@@QAE@PA_W@Z
??0CTXStringW@@QAE@PB_W@Z
??0CTXStringW@@QAE@PB_WH@Z
??0CTXStringW@@QAE@UtagEN@@PBDH@Z
??0CTXStringW@@QAE@UtagGBK@@PBDH@Z
??0CTXStringW@@QAE@UtagUTF8@@PBDH@Z
??0CTXStringW@@QAE@XZ
??0CTXStringW@@QAE@_WH@Z
??0CTXTCPDataSender@@QAE@XZ
??0CTXTCPThread@@QAE@XZ
??0CTXTLVCodecBase@@QAE@XZ
??0CTXThreadModel@@IAE@XZ
??0CTXTime@@QAE@AAVCTime@ATL@@@Z
??0CTXTime@@QAE@ABU_FILETIME@@H@Z
??0CTXTime@@QAE@ABU_SYSTEMTIME@@H@Z
??0CTXTime@@QAE@GGH@Z
??0CTXTime@@QAE@HHHHHHH@Z
??0CTXTime@@QAE@XZ
??0CTXTime@@QAE@_J@Z
??0CTXUDPDataSender@@QAE@XZ
??0CTXVariant@@QAE@ABVCTXBuffer@@@Z
??0CUnZipFile@@QAE@ABV0@@Z
??0CUnZipFile@@QAE@XZ
??0CUnzipBuffers@@QAE@ABV0@@Z
??0CUnzipBuffers@@QAE@XZ
??0CZipBuffers@@QAE@ABV0@@Z
??0CZipBuffers@@QAE@XZ
??0CZipFiles@@QAE@ABV0@@Z
??0CZipFiles@@QAE@XZ
??0CxExifInfo@CxImageJPG@@QAE@PAUtag_ExifInfo@1@@Z
??0CxFile@@QAE@ABV0@@Z
??0CxFile@@QAE@PB_WK@Z
??0CxFile@@QAE@XZ
??0CxImage@@QAE@ABV0@_N11@Z
??0CxImage@@QAE@K@Z
??0CxImage@@QAE@KKKK@Z
??0CxImage@@QAE@PAEKK@Z
??0CxImage@@QAE@PAU_iobuf@@K@Z
??0CxImage@@QAE@PAVCxFile@@K@Z
??0CxImage@@QAE@PB_WK@Z
??0CxImageGIF@@QAE@ABV0@@Z
??0CxImageGIF@@QAE@XZ
??0CxImageJPG@@QAE@ABV0@@Z
??0CxImageJPG@@QAE@XZ
??0CxMemFile@@QAE@ABV0@@Z
??0CxMemFile@@QAE@KPAE@Z
??0CxPoint2@@QAE@ABV0@@Z
??0CxPoint2@@QAE@MM@Z
??0CxPoint2@@QAE@XZ
??0CxRect2@@QAE@ABV0@@Z
??0CxRect2@@QAE@MMMM@Z
??0CxRect2@@QAE@XZ
??0TiXmlAttribute@@QAE@PBD0@Z
??0TiXmlAttribute@@QAE@XZ
??0TiXmlAttributeSet@@QAE@XZ
??0TiXmlComment@@QAE@ABV0@@Z
??0TiXmlComment@@QAE@PBD@Z
??0TiXmlComment@@QAE@XZ
??0TiXmlDeclaration@@QAE@ABV0@@Z
??0TiXmlDeclaration@@QAE@PBD00@Z
??0TiXmlDeclaration@@QAE@XZ
??0TiXmlDocument@@IAE@PBD@Z
??0TiXmlDocument@@QAE@ABV0@@Z
??0TiXmlDocument@@QAE@XZ
??0TiXmlElement@@QAE@ABV0@@Z
??0TiXmlElement@@QAE@PBD@Z
??0TiXmlNode@@IAE@W4NodeType@0@@Z
??0TiXmlText@@QAE@ABV0@@Z
??0TiXmlText@@QAE@PBD@Z
??0TiXmlUnknown@@QAE@ABV0@@Z
??0TiXmlUnknown@@QAE@XZ
??0VTXTCPDataSenderTimeOutCallback@@QAE@ABV0@@Z
??0VTXTCPDataSenderTimeOutCallback@@QAE@XZ
??0VTXUDPDataSenderTimeOutCallback@@QAE@ABV0@@Z
??0VTXUDPDataSenderTimeOutCallback@@QAE@XZ
??1Big@@QAE@XZ
??1CCmdCodecBase@@UAE@XZ
??1CEcdsa@@QAE@XZ
??1CExpatDataCompat@@QAE@XZ
??1CExpatFileReader@@UAE@XZ
??1CExpatMemReader@@UAE@XZ
??1CFmtString@@QAE@XZ
??1CGUnzipBuffer@@QAE@XZ
??1CGZipBuffer@@QAE@XZ
??1CMACReader@@QAE@XZ
??1CP2PDownload@@UAE@XZ
??1CP2PDownloadParam@@UAE@XZ
??1CP2PDownloadUIInterface@@UAE@XZ
??1CRootStorage@@QAE@XZ
??1CScopeToggler@@QAE@XZ
??1CShortStreamContainer@@QAE@XZ
??1CStorage@@QAE@XZ
??1CStorageIterator@@QAE@XZ
??1CStream@@QAE@XZ
??1CTXBSTR@@QAE@XZ
??1CTXCommPack@@UAE@XZ
??1CTXCriticalSection@@UAE@XZ
??1CTXFileDialog@@QAE@XZ
??1CTXHttpDownload@@UAE@XZ
??1CTXHttpDownloadSink@@UAE@XZ
??1CTXHttpUpload@@UAE@XZ
??1CTXHttpUploadBuffer@@UAE@XZ
??1CTXHttpUploadStandard@@UAE@XZ
??1CTXStringA@@QAE@XZ
??1CTXStringW@@QAE@XZ
??1CTXTCPDataSender@@UAE@XZ
??1CTXTCPThread@@UAE@XZ
??1CTXTLVCodecBase@@UAE@XZ
??1CTXThreadModel@@MAE@XZ
??1CTXUDPDataSender@@UAE@XZ
??1CUnZipFile@@QAE@XZ
??1CUnzipBuffers@@QAE@XZ
??1CWriteBuffer@@QAE@XZ
??1CZipBuffers@@QAE@XZ
??1CZipFiles@@QAE@XZ
??1CxExifInfo@CxImageJPG@@QAE@XZ
??1CxFile@@UAE@XZ
??1CxImage@@UAE@XZ
??1CxImageGIF@@UAE@XZ
??1CxImageJPG@@UAE@XZ
??1CxMemFile@@UAE@XZ
??1TiXmlAttribute@@UAE@XZ
??1TiXmlAttributeSet@@QAE@XZ
??1TiXmlComment@@UAE@XZ
??1TiXmlDeclaration@@UAE@XZ
??1TiXmlDocument@@UAE@XZ
??1TiXmlElement@@UAE@XZ
??1TiXmlNode@@UAE@XZ
??1TiXmlText@@UAE@XZ
??1TiXmlUnknown@@UAE@XZ
??4Big@@QAEAAV0@ABV0@@Z
??4Big@@QAEAAV0@H@Z
??4Big@@QAEAAV0@J@Z
??4Big@@QAEAAV0@PAD@Z
??4CGUnzipBuffer@@QAEAAV0@ABV0@@Z
??4CGZipBuffer@@QAEAAV0@ABV0@@Z
??4CP2PDownload@@QAEAAV0@ABV0@@Z
??4CP2PDownloadParam@@QAEAAV0@ABV0@@Z
??4CP2PDownloadUIInterface@@QAEAAV0@ABV0@@Z
??4CRootStorage@@QAEAAV0@ABV0@@Z
??4CScopeToggler@@QAEAAV0@ABV0@@Z
??4CShortStreamContainer@@QAEAAV0@ABV0@@Z
??4CStorage@@QAEAAV0@ABV0@@Z
??4CStorageIterator@@QAEAAV0@ABV0@@Z
??4CStream@@QAEAAV0@ABV0@@Z
??4CTXBSTR@@QAEAAV0@ABV0@@Z
??4CTXBSTR@@QAEAAV0@ABVCTXStringW@@@Z
??4CTXBSTR@@QAEAAV0@PB_W@Z
??4CTXCriticalSection@@QAEAAV0@ABV0@@Z
??4CTXFileDialog@@QAEAAV0@ABV0@@Z
??4CTXHttpDownloadSink@@QAEAAV0@ABV0@@Z
??4CTXStringA@@QAEAAV0@ABV0@@Z
??4CTXStringA@@QAEAAV0@D@Z
??4CTXStringA@@QAEAAV0@PBD@Z
??4CTXStringW@@QAEAAV0@ABUtagVARIANT@@@Z
??4CTXStringW@@QAEAAV0@ABV0@@Z
??4CTXStringW@@QAEAAV0@ABVCTXBSTR@@@Z
??4CTXStringW@@QAEAAV0@PA_W@Z
??4CTXStringW@@QAEAAV0@PB_W@Z
??4CTXStringW@@QAEAAV0@_W@Z
??4CTXTime@@QAEAAV0@_J@Z
??4CUnZipFile@@QAEAAV0@ABV0@@Z
??4CUnzipBuffers@@QAEAAV0@ABV0@@Z
??4CZipBuffers@@QAEAAV0@ABV0@@Z
??4CZipFiles@@QAEAAV0@ABV0@@Z
??4CxExifInfo@CxImageJPG@@QAEAAV01@ABV01@@Z
??4CxFile@@QAEAAV0@ABV0@@Z
??4CxImage@@QAEAAV0@ABV0@@Z
??4CxImageGIF@@QAEAAV0@ABV0@@Z
??4CxImageJPG@@QAEAAV0@ABV0@@Z
??4CxMemFile@@QAEAAV0@ABV0@@Z
??4CxPoint2@@QAEAAV0@ABV0@@Z
??4CxRect2@@QAEAAV0@ABV0@@Z
??4TiXmlComment@@QAEXABV0@@Z
??4TiXmlDeclaration@@QAEXABV0@@Z
??4TiXmlDocument@@QAEXABV0@@Z
??4TiXmlElement@@QAEXABV0@@Z
??4TiXmlText@@QAEXABV0@@Z
??4TiXmlUnknown@@QAEXABV0@@Z
??4VTXTCPDataSenderTimeOutCallback@@QAEAAV0@ABV0@@Z
??4VTXUDPDataSenderTimeOutCallback@@QAEAAV0@ABV0@@Z
??7CTXStringA@@QBE_NXZ
??7CTXStringW@@QBE_NXZ
??8@YA_NABVCTXStringA@@0@Z
??8@YA_NABVCTXStringA@@D@Z
??8@YA_NABVCTXStringA@@PBD@Z
??8@YA_NABVCTXStringW@@0@Z
??8@YA_NABVCTXStringW@@PB_W@Z
??8@YA_NABVCTXStringW@@_W@Z
??8@YA_NDABVCTXStringA@@@Z
??8@YA_NPA_WABVCTXBSTR@@@Z
??8@YA_NPA_WABVCTXStringW@@@Z
??8@YA_NPBDABVCTXStringA@@@Z
??8@YA_NPB_WABVCTXBSTR@@@Z
??8@YA_NPB_WABVCTXStringW@@@Z
??8@YA_N_WABVCTXStringW@@@Z
??8CP2PDownloadParam@@QAEHABV0@@Z
??8CTXBSTR@@QBE_NABV0@@Z
??8CTXBSTR@@QBE_NPA_W@Z
??8CTXBSTR@@QBE_NPB_W@Z
??8CTXTime@@QBE_NV0@@Z
??8TiXmlAttribute@@QBE_NABV0@@Z
??9@YA_NABVCTXStringA@@0@Z
??9@YA_NABVCTXStringA@@D@Z
??9@YA_NABVCTXStringA@@PBD@Z
??9@YA_NABVCTXStringW@@0@Z
??9@YA_NABVCTXStringW@@PB_W@Z
??9@YA_NABVCTXStringW@@_W@Z
??9@YA_NDABVCTXStringA@@@Z
??9@YA_NPA_WABVCTXBSTR@@@Z
??9@YA_NPBDABVCTXStringA@@@Z
??9@YA_NPB_WABVCTXBSTR@@@Z
??9@YA_NPB_WABVCTXStringW@@@Z
??9@YA_N_WABVCTXStringW@@@Z
??9CP2PDownloadParam@@QAEHABV0@@Z
??9CTXBSTR@@QBE_NABV0@@Z
??9CTXBSTR@@QBE_NPA_W@Z
??9CTXBSTR@@QBE_NPB_W@Z
??9CTXTime@@QBE_NV0@@Z
??ABig@@QAEAAIH@Z
??ACTXStringA@@QBEDH@Z
??ACTXStringW@@QBE_WH@Z
??BCTXBSTR@@QBEPA_WXZ
??BCTXCriticalSection@@QAEPAU_RTL_CRITICAL_SECTION@@XZ
??BCTXStringA@@QBEPBDXZ
??BCTXStringW@@QBEPB_WXZ
??EBig@@QAEAAV0@XZ
??FBig@@QAEAAV0@XZ
??GCTXTime@@QBE?AV0@VCTimeSpan@ATL@@@Z
??GCTXTime@@QBE?AVCTimeSpan@ATL@@V0@@Z
??H@YA?AVCTXStringA@@ABV0@0@Z
??H@YA?AVCTXStringA@@ABV0@D@Z
??H@YA?AVCTXStringA@@ABV0@PBD@Z
??H@YA?AVCTXStringA@@DABV0@@Z
??H@YA?AVCTXStringA@@PBDABV0@@Z
??H@YA?AVCTXStringW@@ABV0@0@Z
??H@YA?AVCTXStringW@@ABV0@PB_W@Z
??H@YA?AVCTXStringW@@ABV0@_W@Z
??H@YA?AVCTXStringW@@PB_WABV0@@Z
??H@YA?AVCTXStringW@@_WABV0@@Z
??HCTXTime@@QBE?AV0@VCTimeSpan@ATL@@@Z
??ICTXBSTR@@QAEPAPA_WXZ
??M@YA_NABVCTXStringA@@0@Z
??M@YA_NABVCTXStringA@@PBD@Z
??M@YA_NABVCTXStringW@@0@Z
??M@YA_NABVCTXStringW@@PB_W@Z
??M@YA_NPBDABVCTXStringA@@@Z
??M@YA_NPB_WABVCTXStringW@@@Z
??MCTXBSTR@@QBE_NABV0@@Z
??MCTXBSTR@@QBE_NPA_W@Z
??MCTXBSTR@@QBE_NPB_W@Z
??MCTXTime@@QBE_NV0@@Z
??MTiXmlAttribute@@QBE_NABV0@@Z
??N@YA_NABVCTXStringA@@0@Z
??N@YA_NABVCTXStringA@@PBD@Z
??N@YA_NABVCTXStringW@@0@Z
??N@YA_NABVCTXStringW@@PB_W@Z
??N@YA_NPBDABVCTXStringA@@@Z
??N@YA_NPB_WABVCTXStringW@@@Z
??NCTXTime@@QBE_NV0@@Z
??O@YA_NABVCTXStringA@@0@Z
??O@YA_NABVCTXStringA@@PBD@Z
??O@YA_NABVCTXStringW@@0@Z
??O@YA_NABVCTXStringW@@PB_W@Z
??O@YA_NPBDABVCTXStringA@@@Z
??O@YA_NPB_WABVCTXStringW@@@Z
??OCTXBSTR@@QBE_NABV0@@Z
??OCTXBSTR@@QBE_NPA_W@Z
??OCTXBSTR@@QBE_NPB_W@Z
??OCTXTime@@QBE_NV0@@Z
??OTiXmlAttribute@@QBE_NABV0@@Z
??P@YA_NABVCTXStringA@@0@Z
??P@YA_NABVCTXStringA@@PBD@Z
??P@YA_NABVCTXStringW@@0@Z
??P@YA_NABVCTXStringW@@PB_W@Z
??P@YA_NPBDABVCTXStringA@@@Z
??P@YA_NPB_WABVCTXStringW@@@Z
??PCTXTime@@QBE_NV0@@Z
??XBig@@QAEAAV0@ABV0@@Z
??XBig@@QAEAAV0@H@Z
??YBig@@QAEAAV0@ABV0@@Z
??YBig@@QAEAAV0@H@Z
??YCTXBSTR@@QAEAAV0@ABV0@@Z
??YCTXBSTR@@QAEAAV0@ABVCTXStringW@@@Z
??YCTXBSTR@@QAEAAV0@PB_W@Z
??YCTXStringA@@QAEAAV0@ABV0@@Z
??YCTXStringA@@QAEAAV0@D@Z
??YCTXStringA@@QAEAAV0@PBD@Z
??YCTXStringW@@QAEAAV0@ABUtagVARIANT@@@Z
??YCTXStringW@@QAEAAV0@ABV0@@Z
??YCTXStringW@@QAEAAV0@ABVCTXBSTR@@@Z
??YCTXStringW@@QAEAAV0@PB_W@Z
??YCTXStringW@@QAEAAV0@_W@Z
??YCTXTime@@QAEAAV0@VCTimeSpan@ATL@@@Z
??ZBig@@QAEAAV0@ABV0@@Z
??ZBig@@QAEAAV0@H@Z
??ZCTXTime@@QAEAAV0@VCTimeSpan@ATL@@@Z
??_0Big@@QAEAAV0@ABV0@@Z
??_0Big@@QAEAAV0@H@Z
??_1Big@@QAEAAV0@ABV0@@Z
??_1Big@@QAEAAV0@H@Z
??_2Big@@QAEAAV0@H@Z
??_3Big@@QAEAAV0@H@Z
??_7CP2PDownload@@6B@
??_7CP2PDownloadParam@@6B@
??_7CP2PDownloadUIInterface@@6B@
??_7CRootStorage@@6B@
??_7CStorage@@6B@
??_7CStream@@6B@
??_7CTXCommPack@@6B@
??_7CTXCriticalSection@@6B@
??_7CTXHttpDownload@@6BCHttpTCPConnectorSink@@@
??_7CTXHttpDownload@@6BCTXThreadModel@@@
??_7CTXHttpDownloadSink@@6B@
??_7CTXHttpUpload@@6BCHttpTCPConnectorSink@@@
??_7CTXHttpUpload@@6BCTXThreadModel@@@
??_7CTXHttpUploadBuffer@@6BCHttpTCPConnectorSink@@@
??_7CTXHttpUploadBuffer@@6BCTXThreadModel@@@
??_7CTXHttpUploadStandard@@6BCHttpTCPConnectorSink@@@
??_7CTXHttpUploadStandard@@6BCTXThreadModel@@@
??_7CTXTCPDataSender@@6B@
??_7CTXTCPThread@@6B@
??_7CTXUDPDataSender@@6B@
??_7CxFile@@6B@
??_7CxImage@@6B@
??_7CxImageGIF@@6B@
??_7CxImageJPG@@6B@
??_7CxMemFile@@6B@
??_7TiXmlAttribute@@6B@
??_7TiXmlComment@@6B@
??_7TiXmlDeclaration@@6B@
??_7TiXmlDocument@@6B@
??_7TiXmlElement@@6B@
??_7TiXmlNode@@6B@
??_7TiXmlText@@6B@
??_7TiXmlUnknown@@6B@
??_7VTXTCPDataSenderTimeOutCallback@@6B@
??_7VTXUDPDataSenderTimeOutCallback@@6B@
??_FCEcdsa@@QAEXXZ
??_FCGZipBuffer@@QAEXXZ
??_FCxExifInfo@CxImageJPG@@QAEXXZ
??_FCxImage@@QAEXXZ
??_FCxMemFile@@QAEXXZ
??_OCxImage@@QAEXAAV0@@Z
?AbortDownload@CP2PDownload@@QAEXXZ
?Accept@TiXmlComment@@UBE_NPAVTiXmlVisitor@@@Z
?Accept@TiXmlDeclaration@@UBE_NPAVTiXmlVisitor@@@Z
?Accept@TiXmlDocument@@UBE_NPAVTiXmlVisitor@@@Z
?Accept@TiXmlElement@@UBE_NPAVTiXmlVisitor@@@Z
?Accept@TiXmlText@@UBE_NPAVTiXmlVisitor@@@Z
?Accept@TiXmlUnknown@@UBE_NPAVTiXmlVisitor@@@Z
?Activate@TXBugMonitor@@YAXXZ
?ActiveMode@RegistryCenter@Util@@YAJW4__MIDL___MIDL_itf_IRegistry_0000_0004@@@Z
?Add@TiXmlAttributeSet@@QAEXPAVTiXmlAttribute@@@Z
?AddAveragingCont@CxImage@@IAEXABUtagRGBQUAD@@MAAM111@Z
?AddBuf@CTXCommPack@@QAEHABVCTXBuffer@@@Z
?AddBuf@CTXCommPack@@QAEHPBEI@Z
?AddBufLenByte@CTXCommPack@@QAEHABVCTXBuffer@@@Z
?AddBufLenDWord@CTXCommPack@@QAEHABVCTXBuffer@@H@Z
?AddBufLenWord@CTXCommPack@@QAEHABVCTXBuffer@@H@Z
?AddBuffer@CZipBuffers@@QAE_NPBXIPBD@Z
?AddBundleFile@TXStringBundle@@YAXPB_W0@Z
?AddByte@CTXCommPack@@QAEHE@Z
?AddCacheTask@CP2PDownload@@IAEXAAVCTXStringA@@@Z
?AddConfigData@ModuleConfig@@YAJPB_W0@Z
?AddDWord@CTXCommPack@@QAEHKH@Z
?AddEncryptInfo@TXEncryptMgr@@YAJU_GUID@@PAUITXDataStorage@@PAUITXSvrSealCrypto@@PAUITXEncUIGetPass@@PAUITXCallback@@H@Z
?AddErrorSink@FS@@YAHPAUITXFileSystemErrorSink@@@Z
?AddEvent@CTXThreadModel@@IAEXPAX@Z
?AddFile@CZipFiles@@QAE_NABVCTXStringW@@0@Z
?AddFileSystem@FS@@YAJW4FILESYSTEM_TYPE@@PB_W1HHH@Z
?AddFmtString@TXStringBundle@@YAXABVCFmtString@@@Z
?AddFormData@CTXHttpDownload@@QAEXABVCTXStringW@@0@Z
?AddHttpExtInfo@CP2PDownload@@QAEHABVCTXStringA@@0@Z
?AddIdleCallback@Window@Util@@YAJPAVVTXMsgLoopIdleCallback@@@Z
?AddInfo@CTXHttpDownload@@QAEHABVCTXStringW@@0@Z
?AddInfo@CTXHttpDownload@@QAEHABVCTXStringW@@@Z
?AddInfo@CTXHttpDownload@@QAEHABVCTXStringW@@K@Z
?AddInfo@CTXHttpDownload@@QAEHABVCTXStringW@@PBEK@Z
?AddObjectFactory@UtilOPCall@@YAHPAUITXOPObjectFactory@@@Z
?AddPack@CTXCommPack@@QAEHABV1@@Z
?AddPlugin@CoreCenter@Util@@YAHPA_WPAUITXData@@@Z
?AddRef@CCmdCodecBase@@MAGKXZ
?AddRelativeFileSystem@FS@@YAJPB_W00HH@Z
?AddResumeUrl@Http@Util@@YAHVCTXStringW@@W4__MIDL___MIDL_itf_IRegistry_0000_0003@@00@Z
?AddStrA@CTXCommPack@@QAEHABVCTXStringA@@@Z
?AddStrAEndChar@CTXCommPack@@QAEHABVCTXStringA@@E@Z
?AddStrALenByte@CTXCommPack@@QAEHABVCTXStringA@@@Z
?AddStrALenDWord@CTXCommPack@@QAEHABVCTXStringA@@H@Z
?AddStrALenWord@CTXCommPack@@QAEHABVCTXStringA@@H@Z
?AddStrW@CTXCommPack@@QAEHABVCTXStringW@@@Z
?AddStrWEndChar@CTXCommPack@@QAEHABVCTXStringW@@E@Z
?AddStrWLenByte@CTXCommPack@@QAEHABVCTXStringW@@@Z
?AddStrWLenDWord@CTXCommPack@@QAEHABVCTXStringW@@H@Z
?AddStrWLenWord@CTXCommPack@@QAEHABVCTXStringW@@H@Z
?AddTLV@CTXCommPack@@QAEHEABVCTXBuffer@@W4TXCommPackDataType@@@Z
?AddTLV@CTXCommPack@@QAEHGABVCTXBuffer@@W4TXCommPackDataType@@@Z
?AddTLV@CTXCommPack@@QAEHKABVCTXBuffer@@W4TXCommPackDataType@@@Z
?AddToDeadQueue@Misc@Util@@YAXHP6AXXZ@Z
?AddUInt64@CTXCommPack@@QAEH_KH@Z
?AddVBuf@CTXCommPack@@IAEHABVCTXBuffer@@W4TXCommPackDataType@@@Z
?AddWord@CTXCommPack@@QAEHGH@Z
?Alloc@CxMemFile@@IAEXK@Z
?AllocSysString@CTXStringW@@QBEPA_WXZ
?AlphaClear@CxImage@@QAEXXZ
?AlphaCopy@CxImage@@QAE_NAAV1@@Z
?AlphaCreate@CxImage@@QAEXXZ
?AlphaDelete@CxImage@@QAEXXZ
?AlphaFlip@CxImage@@QAE_NXZ
?AlphaGet@CxImage@@QAEEJJ@Z
?AlphaGetMax@CxImage@@QBEEXZ
?AlphaGetPointer@CxImage@@QAEPAEJJ@Z
?AlphaInvert@CxImage@@QAEXXZ
?AlphaIsValid@CxImage@@QAE_NXZ
?AlphaMirror@CxImage@@QAE_NXZ
?AlphaPaletteClear@CxImage@@QAEXXZ
?AlphaPaletteEnable@CxImage@@QAEX_N@Z
?AlphaPaletteIsEnabled@CxImage@@QAE_NXZ
?AlphaPaletteIsValid@CxImage@@QAE_NXZ
?AlphaPaletteSplit@CxImage@@QAE_NPAV1@@Z
?AlphaSet@CxImage@@QAEXE@Z
?AlphaSet@CxImage@@QAEXJJE@Z
?AlphaSet@CxImage@@QAE_NAAV1@@Z
?AlphaSetMax@CxImage@@QAEXE@Z
?AlphaSplit@CxImage@@QAE_NPAV1@@Z
?AlphaStrip@CxImage@@QAEXXZ
?AnalyseResponseData@CTXHttpDownload@@AAEHAAH@Z
?AnalyseResponseHead@CTXHttpDownload@@AAEHXZ
?AnsiToUnicode@Convert@Util@@YA_NAAVCTXStringW@@PBDH@Z
?Append@CTXBSTR@@QAEJABV1@@Z
?Append@CTXBSTR@@QAEJD@Z
?Append@CTXBSTR@@QAEJPB_W@Z
?Append@CTXBSTR@@QAEJPB_WH@Z
?Append@CTXBSTR@@QAEJ_W@Z
?Append@CTXStringA@@QAEXABV1@@Z
?Append@CTXStringA@@QAEXPBD@Z
Sections
.text Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 448KB - Virtual size: 445KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 281KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 100KB - Virtual size: 99KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$_8_/DIFxAPI.dll.dll windows:6 windows x86 arch:x86
bced6390751f7df672767c6c60fd16dc
Code Sign
61:03:dc:f6:00:00:00:00:00:0cCertificate
IssuerCN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before25/07/2008, 19:12Not After25/07/2011, 19:22SubjectCN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:159C-A3F7-2570,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
61:15:23:0f:00:00:00:00:00:0aCertificate
IssuerCN=Microsoft Windows Verification PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before07/12/2009, 21:57Not After07/03/2011, 21:57SubjectCN=Microsoft Windows,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
61:16:68:34:00:00:00:00:00:1cCertificate
IssuerCN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6dNot Before03/04/2007, 12:53Not After03/04/2021, 13:03SubjectCN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
61:07:02:dc:00:00:00:00:00:0bCertificate
IssuerCN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6dNot Before15/09/2005, 21:55Not After15/03/2016, 22:05SubjectCN=Microsoft Windows Verification PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign
b4:3a:2e:c6:32:74:1f:7f:5a:ac:1d:1e:5f:70:f7:d0:71:69:58:baSigner
Actual PE Digestb4:3a:2e:c6:32:74:1f:7f:5a:ac:1d:1e:5f:70:f7:d0:71:69:58:baDigest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
difxapi.pdb
Imports
ntdll
RtlNtStatusToDosError
VerSetConditionMask
RtlUnwind
kernel32
VerifyVersionInfoW
GetVersionExW
lstrlenW
FreeLibrary
GetProcAddress
LoadLibraryW
DeleteFileW
SetFileAttributesW
GetEnvironmentVariableW
CompareStringW
GetFileAttributesW
MoveFileExW
GetTempFileNameW
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetFileSize
CreateFileW
GetSystemWindowsDirectoryW
MultiByteToWideChar
WideCharToMultiByte
GetSystemDirectoryW
GetFullPathNameW
CopyFileW
LocalFree
RemoveDirectoryW
FindClose
FindNextFileW
lstrcmpW
FindFirstFileW
CreateDirectoryW
LocalReAlloc
LocalAlloc
GetProcessHeap
ReleaseMutex
DeviceIoControl
WaitForSingleObject
CreateMutexW
GetSystemTimeAsFileTime
Sleep
RaiseException
GetVersionExA
HeapSize
GetCommandLineA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetModuleHandleA
ExitProcess
TlsGetValue
SetLastError
TlsSetValue
TlsFree
GetCurrentThreadId
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
WriteFile
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
LoadLibraryExA
SetFilePointer
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
GetThreadLocale
WaitForMultipleObjectsEx
InterlockedCompareExchange
WaitForSingleObjectEx
SetEvent
CreateEventW
SetEndOfFile
InterlockedExchange
lstrcmpiW
GetLastError
InterlockedIncrement
InterlockedDecrement
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
HeapFree
HeapReAlloc
EnterCriticalSection
HeapAlloc
LeaveCriticalSection
HeapDestroy
GetModuleHandleW
DeleteCriticalSection
GetModuleFileNameA
OutputDebugStringA
HeapCreate
InitializeCriticalSection
TlsAlloc
CreateFileA
user32
UnregisterClassA
CharLowerW
setupapi
SetupDiSetDeviceRegistryPropertyW
SetupQueueCopyIndirectW
SetupDiCallClassInstaller
SetupDiBuildDriverInfoList
SetupDiSetDeviceInstallParamsW
SetupDiGetDeviceInstallParamsW
SetupDiSetSelectedDevice
SetupDiOpenDeviceInfoW
SetupDiOpenDevRegKey
SetupDiGetDeviceInstanceIdW
SetupDiCreateDeviceInfoList
SetupDiGetDriverInfoDetailW
SetupDiGetSelectedDriverW
SetupDiSetClassInstallParamsW
SetupDiClassNameFromGuidW
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyW
CM_Get_Device_IDW
CM_Get_Device_ID_ListW
CM_Get_Device_ID_List_SizeW
CM_Locate_DevNodeW
CM_Get_DevNode_Status
CM_Query_And_Remove_SubTreeW
SetupDiOpenClassRegKey
SetupGetTargetPathW
SetupInstallFilesFromInfSectionW
SetupPromptReboot
SetupInstallFromInfSectionW
SetupInstallServicesFromInfSectionW
SetupDiGetActualSectionToInstallW
SetupFindNextLine
SetupFindNextMatchLineW
SetupOpenInfFileW
SetupOpenFileQueue
SetupCommitFileQueueW
SetupQueueCopyW
SetupCloseFileQueue
SetupFindFirstLineW
SetupCopyOEMInfW
SetupCloseInfFile
SetupGetLineCountW
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupOpenAppendInfFileW
CM_Enumerate_Classes
CM_Setup_DevNode
SetupGetIntField
SetupGetFieldCount
pSetupGetGlobalFlags
pSetupSetGlobalFlags
SetupTermDefaultQueueCallback
SetupInitDefaultQueueCallbackEx
SetupDefaultQueueCallbackW
SetupGetStringFieldW
advapi32
RegCloseKey
CheckTokenMembership
AllocateAndInitializeSid
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW
RegQueryValueExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AddAccessAllowedAce
InitializeAcl
GetLengthSid
SetEntriesInAclW
QueryServiceStatus
DeleteService
ControlService
CloseServiceHandle
OpenServiceW
OpenSCManagerW
StartServiceW
FreeSid
ole32
StringFromCLSID
CoTaskMemFree
CoInitialize
CoUninitialize
CoCreateInstance
wintrust
WinVerifyTrust
CryptCATAdminCalcHashFromFileHandle
crypt32
CertFreeCertificateContext
CertGetCTLContextProperty
CryptQueryObject
CertFreeCTLContext
Exports
Exports
DIFXAPISetLogCallbackA
DIFXAPISetLogCallbackW
DriverPackageGetPathA
DriverPackageGetPathW
DriverPackageInstallA
DriverPackageInstallW
DriverPackagePreinstallA
DriverPackagePreinstallW
DriverPackageUninstallA
DriverPackageUninstallW
SetDifxLogCallbackA
SetDifxLogCallbackW
Sections
.text Size: 283KB - Virtual size: 282KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 17KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$_8_/FileOpen.etf
-
$_8_/FileUnlock.dll.dll windows:4 windows x86 arch:x86
ca82741618d4e0cd9b82efd1fb295997
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5cCertificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before21/05/2009, 00:00Not After20/05/2019, 23:59SubjectCN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
5d:06:88:f9:04:0a:d5:22:87:fc:32:ad:ec:eb:85:b0Certificate
IssuerCN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=USNot Before26/01/2010, 00:00Not After25/01/2013, 23:59SubjectCN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Tencent Technology(Shenzhen) Company Limited,L=shenzhen,ST=guangdong,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
31:b8:43:24:d7:0d:2e:a8:0d:88:4b:60:7a:14:02:cb:c8:d4:67:5dSigner
Actual PE Digest31:b8:43:24:d7:0d:2e:a8:0d:88:4b:60:7a:14:02:cb:c8:d4:67:5dDigest Algorithmsha1PE Digest MatchestrueHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\qqpcmgr_proj\QQPCMgr_4.4Beta3\Basic\Output\BinFinal\FileUnlock.pdb
Imports
kernel32
DisableThreadLibraryCalls
CreateThread
VirtualQueryEx
OpenProcess
Process32FirstW
Module32FirstW
Process32NextW
CreateToolhelp32Snapshot
Module32NextW
CloseHandle
GetCurrentProcessId
GetExitCodeThread
CreateMutexW
ReleaseMutex
WaitForSingleObject
IsBadReadPtr
TerminateThread
Sleep
CreateFileW
GetFileSize
GetProcAddress
SetFilePointer
VirtualAlloc
FreeLibrary
VirtualAllocEx
GetCurrentProcess
GetDiskFreeSpaceW
GetFileType
QueryDosDeviceW
DeviceIoControl
GetModuleHandleW
VirtualFree
CreateRemoteThread
WriteFile
DuplicateHandle
DeleteFileW
WriteProcessMemory
VirtualFreeEx
TerminateProcess
ReadFile
SetFileAttributesW
GetFileAttributesW
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
MultiByteToWideChar
HeapSize
GetSystemTimeAsFileTime
GetLastError
HeapFree
HeapAlloc
GetModuleHandleA
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
HeapDestroy
HeapCreate
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapReAlloc
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
LoadLibraryA
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
user32
GetWindowLongW
EnumWindows
GetWindowThreadProcessId
psapi
GetMappedFileNameW
ntdll
ZwClose
RtlInitUnicodeString
ZwQueryDirectoryFile
ZwQuerySystemInformation
ZwUnmapViewOfSection
NtQuerySystemInformation
ZwSetInformationObject
ZwQueryObject
RtlUnwind
NtCreateFile
Exports
Exports
CancelTask
ClearHandleProtect
EndServiceForTask
ForceCopyFile
FreeQuery
FreeRemoteModule
GetMainWndFromProcessId
IsRuningOn64
PrepareData
QueryFileLockedInforamtion
QueryFileOccupiedInfo
QueryFolderInformation
RemoteCloseHandle
StartServiceForTask
StopAllTask
TCUnlockFile
UnLockFileAny
Sections
.text Size: 44KB - Virtual size: 42KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$_8_/GF.dll.dll regsvr32 windows:4 windows x86 arch:x86
dbdeda49d1e75da9ba5d1b7676332387
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\Hummer\platform_QQ1.55\Basic_HummerPlatform_VOB\Platform_fr\Output\bin\GF.pdb
Imports
xgraphic32
CreateTextureRgn
SetTextureSlice
SetTextureMode
GetTextureFilter
GeoRectangle
GeoRoundRect
FillGradualRect
GetTextureSize
DrawTexture
GrayTexture
NormalizeTexture
TranslateTexture
GetCanvasBkColor
CanvasToTexture
SetViewportOrg
GeoRectFocusEx
SetCanvasBkColor
FillSolidRect
SetCanvasWindow
CreateCanvasFromDC
InvertTexture
GdiTransCanvas
SetWindowOrg
CanvasScroll
DrawTextureEx
GetCanvasFilter
GetCanvasHandle
CopyTexture
LightTexture
DrawModulation
DeleteTexture
CreateTexture
LockTextureBits
UnlockTextureBits
GetTextureHandle
ShuffleTexture
SetTextureFilter
FillSolidRectEx
CreateCanvas
SetCanvasFilter
MixCanvasWithColor
BlendCanvas
DeleteCanvas
MixCanvas
GetCanvasWindow
GetWindowOrg
common
?SetCreateObjectFactory@CoreCenter@Util@@YAXP6AJABU_GUID@@0PAPAX@Z@Z
?SetGetServiceFactory@CoreCenter@Util@@YAXP6AJABU_GUID@@PA_WPAPAX@Z@Z
ord27
?AppendFormat@CTXStringW@@QAAXPB_WZZ
??OCTXBSTR@@QBE_NABV0@@Z
?Append@CTXBSTR@@QAEJPB_WH@Z
?Utf8ToWS@Convert@Util@@YA?AVCTXStringW@@PBDH@Z
?GetCore@CoreCenter@Util@@YAHPA_WPAPAUITXCore@@@Z
?CreateExtensionSort@Extension@Util@@YAXABU_GUID@@PAPAUITXExtensionSort@@@Z
?CreateExtensionLogic@Extension@Util@@YAXABU_GUID@@PAPAUITXExtensionLogic@@@Z
??0CTXBSTR@@QAE@ABU_GUID@@@Z
?GetCurrentCallStack@Sys@Util@@YA?AVCTXStringW@@V3@HH@Z
ord25
?GetDate@NLS@@YAHAAVCTXStringW@@PBU_SYSTEMTIME@@KPB_W@Z
??YCTXBSTR@@QAEAAV0@ABVCTXStringW@@@Z
?TXCreateObject@UtilOPCall@@YAHKVCTXStringW@@PAUITXOPCallObject@@@Z
??1CTXBSTR@@QAE@XZ
??0CTXBSTR@@QAE@ABV0@@Z
??MCTXBSTR@@QBE_NABV0@@Z
??0CTXBSTR@@QAE@PB_W@Z
?Copy@CTXBSTR@@QBEPA_WXZ
??0CTXBSTR@@QAE@XZ
??4CTXBSTR@@QAEAAV0@PB_W@Z
?TXLog_DoTXLogVW@@YAXPAUtagLogObj@@PB_W1PAD@Z
?GetPlatformCore@Core@Util@@YAHPAPAUITXCore@@@Z
?ConvertXMLToTXData@Convert@Util@@YAHPA_WPAPA_WPAUITXData@@0@Z
??ICTXBSTR@@QAEPAPA_WXZ
??BCTXBSTR@@QBEPA_WXZ
?CreateTXData@Data@Util@@YAHPAPAUITXData@@@Z
?Length@CTXBSTR@@QBEIXZ
??0CTXStringW@@QAE@ABV0@@Z
??8CTXBSTR@@QBE_NPB_W@Z
??1CTXStringW@@QAE@XZ
??H@YA?AVCTXStringW@@ABV0@0@Z
??0CTXStringW@@QAE@PA_W@Z
??0CTXStringW@@QAE@ABVCTXBSTR@@@Z
??0CTXBSTR@@QAE@ABVCTXStringW@@@Z
??4CTXStringW@@QAEAAV0@ABVCTXBSTR@@@Z
??0CTXStringW@@QAE@XZ
?IsEmpty@CTXBSTR@@QAEHXZ
?CreateTXArray@Data@Util@@YAHPAPAUITXArray@@@Z
??0CTXBSTR@@QAE@HPB_W@Z
?SetInterval@TXTimer@@YAHIPAUITXTimerCallback@@I@Z
?EraseTimerCallback@TXTimer@@YAHPAUITXTimerCallback@@I@Z
?ConvertToPureFile@FS@@YA?AVCTXStringW@@PB_W@Z
??BCTXStringW@@QBEPB_WXZ
??4CTXStringW@@QAEAAV0@PA_W@Z
?GetLength@CTXStringW@@QBEHXZ
?Detach@CTXBSTR@@QAEPA_WXZ
?IsEmpty@CTXStringW@@QBE_NXZ
?AddToDeadQueue@Misc@Util@@YAXHP6AXXZ@Z
??1CxImage@@UAE@XZ
??0CxImage@@QAE@K@Z
??4CTXStringW@@QAEAAV0@PB_W@Z
?Format@CTXStringW@@QAAXPB_WZZ
??0CTXStringW@@QAE@PB_W@Z
??M@YA_NABVCTXStringW@@0@Z
?SetTimeout@TXTimer@@YAHIPAUITXTimerCallback@@I@Z
?GetFrameDelay@CxImage@@QBEKXZ
?GetTransColor@CxImage@@QAE?AUtagRGBQUAD@@XZ
?GetTransIndex@CxImage@@QBEJXZ
?Load@CxImage@@QAE_NPAVCxFile@@K@Z
?LoadGif@CxImageHelper@@YAPAVCxImage@@PAVCxFile@@AAH@Z
?FindFormat@CxImageHelper@@YAKPAVCxFile@@PAH@Z
??4CTXBSTR@@QAEAAV0@ABVCTXStringW@@@Z
?IsFileSystemFile@FS@@YAHPB_W@Z
?GetPalette@CxImage@@QBEPAUtagRGBQUAD@@XZ
?GetBpp@CxImage@@QBEGXZ
?GetColorType@CxImage@@QAEEXZ
?GetPixelColor@CxImage@@QAE?AUtagRGBQUAD@@JJ_N@Z
?GetAlpha@CxImage@@QBEPAEXZ
?GetHeight@CxImage@@QBEKXZ
?GetWidth@CxImage@@QBEKXZ
?CreateTXBuffer@Data@Util@@YAHPAPAUITXBuffer@@@Z
??0CxImage@@QAE@PAEKK@Z
??ACTXStringW@@QBE_WH@Z
??9@YA_NABVCTXStringW@@PB_W@Z
?Tokenize@CTXStringW@@QBE?AV1@PB_WAAH@Z
??4CTXStringW@@QAEAAV0@ABV0@@Z
??9@YA_NABVCTXStringW@@0@Z
??8@YA_NABVCTXStringW@@PB_W@Z
wcslcpy
??0CTXStringW@@QAE@PB_WH@Z
?Mid@CTXStringW@@QBE?AV1@H@Z
?ReverseFind@CTXStringW@@QBEH_W@Z
?ReleaseBuffer@CTXStringW@@QAEXH@Z
?GetBuffer@CTXStringW@@QAEPA_WH@Z
?Compare@CTXStringW@@QBEHPB_W@Z
?GetLCID@TXI18N@@YAKXZ
?CreateFileW@FS@@YAHPB_WKPAPAUITXFile@@@Z
??H@YA?AVCTXStringW@@ABV0@PB_W@Z
??1CxFile@@UAE@XZ
??_7CxFile@@6B@
?GuidFromString@Com@Util@@YAJPA_WAAU_GUID@@@Z
??H@YA?AVCTXStringW@@PB_WABV0@@Z
?MakeBitmap@CxImage@@QAEPAUHBITMAP__@@PAUHDC__@@@Z
?Thumbnail@CxImage@@QAE_NJJUtagRGBQUAD@@PAV1@@Z
?Find@CTXStringW@@QBEHPB_WH@Z
?SetCommitFlag@CxFile@@UAE_N_N@Z
?bFileOpenSuc@CxFile@@UAE_NXZ
?SetTransColor@CxImage@@QAEXUtagRGBQUAD@@@Z
?SetTransIndex@CxImage@@QAEXJ@Z
?SetPalette@CxImage@@QAEXPAUtagRGBQUAD@@K@Z
?Resample@CxImage@@QAE_NJJHPAV1@@Z
?Copy@CxImage@@QAEXABV1@_N11@Z
?GetPaletteColor@CxImage@@QAE?AUtagRGBQUAD@@E@Z
?GetNearestIndex@CxImage@@QAEEUtagRGBQUAD@@@Z
?IsIndexed@CxImage@@QBE_NXZ
?SetPixelColor@CxImage@@QAEXJJUtagRGBQUAD@@_N@Z
?Save@CxImage@@QAE_NPAVCxFile@@K@Z
?SetPaletteColor@CxImage@@QAEXEK@Z
?SetFrame@CxImage@@QAEXJ@Z
?Encode@CxImageGIF@@QAE_NPAVCxFile@@PAPAVCxImage@@H_N@Z
?SetDisposalMethod@CxImageGIF@@QAEXH@Z
?SetLoops@CxImageGIF@@QAEXH@Z
??0CxImageGIF@@QAE@XZ
?DecreaseBpp@CxImage@@QAE_NK_NPAUtagRGBQUAD@@K@Z
?Crop@CxImage@@QAE_NJJJJPAV1@@Z
?GetNumFrames@CxImage@@QBEJXZ
?GetType@CxImage@@QBEKXZ
??1CxImageGIF@@UAE@XZ
?SetFrameDelay@CxImage@@QAEXK@Z
?MixFrom@CxImage@@QAEXAAV1@JJ@Z
?Save@CxImage@@QAE_NPAVCxTXFile@@K@Z
?Create@CxImage@@QAEPAXKKKK@Z
?MakeLower@CTXStringW@@QAEAAV1@XZ
?LoadXmlByName@FS@Util@@YAHPB_WPAPAUIXMLDOMDocument@@@Z
?IsFileExist@FS@@YAHPB_W@Z
?Left@CTXStringW@@QBE?AV1@H@Z
?ConvertXMLSpecialLabel@Convert@Util@@YAHPA_W0PAPA_W@Z
?Trim@CTXStringW@@QAEAAV1@XZ
?LoadStringW@TXStringBundle@@YAPB_WPB_W@Z
?GetAt@CTXStringW@@QBE_WH@Z
??9CTXBSTR@@QBE_NPB_W@Z
?IsStopped@CoreCenter@Util@@YAHXZ
??8@YA_NPB_WABVCTXStringW@@@Z
??0CTXStringW@@QAE@_WH@Z
?Find@CTXStringW@@QBEH_WH@Z
?GetBuffer@CTXStringW@@QAEPA_WXZ
??9CTXBSTR@@QBE_NABV0@@Z
??4CTXBSTR@@QAEAAV0@ABV0@@Z
?Empty@CTXBSTR@@QAEXXZ
??YCTXStringW@@QAEAAV0@PB_W@Z
??YCTXStringW@@QAEAAV0@ABV0@@Z
?Mid@CTXStringW@@QBE?AV1@HH@Z
?Remove@CTXStringW@@QAEH_W@Z
??8@YA_NABVCTXStringW@@0@Z
?NotifyIdle@Window@Util@@YAJXZ
?Right@CTXStringW@@QBE?AV1@H@Z
?ToLower@CTXBSTR@@QAEJXZ
?AllocSysString@CTXStringW@@QBEPA_WXZ
?Replace@CTXStringW@@QAEHPB_W0@Z
?CopyTXDataField@Data@Util@@YAHPAUITXDataRead@@PAUITXData@@PB_W2@Z
?Empty@CTXStringW@@QAEXXZ
?CopyTo@CTXBSTR@@QBEJPAPA_W@Z
??H@YA?AVCTXStringW@@ABV0@_W@Z
?Delete@CTXStringW@@QAEHHH@Z
??8CTXBSTR@@QBE_NPA_W@Z
??9CTXBSTR@@QBE_NPA_W@Z
?GetBufferSetLength@CTXStringW@@QAEPA_WH@Z
??8CTXBSTR@@QBE_NABV0@@Z
??0CTXBSTR@@QAE@H@Z
?OpenUrlWithDefBrowser@UrlBase@Util@@YAXABVCTXStringW@@@Z
?MakeUpper@CTXStringW@@QAEAAV1@XZ
?SetAsyncCallback@TXTimer@@YAHPAUITXAsyncCallback@@I@Z
??YCTXStringW@@QAEAAV0@_W@Z
?EraseAsyncCallback@TXTimer@@YAHPAUITXAsyncCallback@@I@Z
?Insert@CTXStringW@@QAEHH_W@Z
??1CTXStringA@@QAE@XZ
?GetBuffer@CTXStringA@@QAEPADH@Z
?GetLength@CTXStringA@@QBEHXZ
??0CTXStringA@@QAE@UtagGBK@@PB_WH@Z
?SafeLoadLibrary@Sys@Util@@YAPAUHINSTANCE__@@PB_W@Z
?CompareNoCase@CTXStringA@@QBEHPBD@Z
??0CTXStringA@@QAE@PBD@Z
?CompareNoCase@CTXStringW@@QBEHPB_W@Z
??1CFmtString@@QAE@XZ
?DoFormat@CFmtString@@QAEPB_WPB_W@Z
?PropertyStr@CFmtString@@QAEHPB_W0@Z
??0CFmtString@@QAE@XZ
?TrimLeft@CTXStringW@@QAEAAV1@PB_W@Z
?GuidToString@Com@Util@@YAJABU_GUID@@PAPA_WH@Z
??YCTXBSTR@@QAEAAV0@PB_W@Z
?TXRegisterObjcet@UtilOPCall@@YAHPAUITXOPCallObject@@@Z
?GetClientId@UtilOPCall@@YAKXZ
imm32
ImmGetContext
ImmAssociateContext
ImmReleaseContext
rpcrt4
RpcStringFreeW
UuidToStringW
version
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
kernel32
SetLastError
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GlobalFree
WideCharToMultiByte
MultiByteToWideChar
MulDiv
lstrcpynW
LoadLibraryA
GetProcAddress
FreeLibrary
CloseHandle
CreateMutexW
Sleep
GetSystemTime
lstrcmpW
GetUserDefaultLCID
VirtualProtect
GetCurrentProcess
GetSystemTimeAsFileTime
GetThreadLocale
LocalAlloc
InterlockedExchange
GetCurrentProcessId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
HeapSize
HeapReAlloc
HeapDestroy
GetVersionExA
GetLocaleInfoA
GetACP
FlushInstructionCache
OutputDebugStringW
ExpandEnvironmentStringsW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
GetLastError
lstrlenW
lstrcmpiW
GetModuleHandleW
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
QueryPerformanceCounter
GetTickCount
GetVersionExW
GetVersion
HeapAlloc
HeapFree
GetProcessHeap
SetThreadLocale
user32
EnableScrollBar
WindowFromPoint
MonitorFromPoint
PeekMessageW
PostMessageA
SendMessageA
GetMessageExtraInfo
GetMessageTime
GetKeyboardState
GetCursor
GetMessagePos
GetDlgCtrlID
TrackMouseEvent
GetAsyncKeyState
GetDoubleClickTime
SendInput
GetScrollPos
KillTimer
SetTimer
MoveWindow
GetCaretBlinkTime
SetRect
GetSysColor
SetCapture
ReleaseCapture
GetScrollInfo
GetWindowTextW
IsWindowEnabled
GetWindowTextLengthW
RegisterClipboardFormatW
CallWindowProcW
EndPaint
IsZoomed
MonitorFromWindow
GetMonitorInfoW
AnimateWindow
UpdateWindow
GetDesktopWindow
GetClientRect
MapWindowPoints
SetWindowRgn
SetWindowTextW
BeginPaint
ValidateRgn
ValidateRect
GetUpdateRect
IsIconic
RedrawWindow
SetWindowLongW
SystemParametersInfoW
GetMessageW
TranslateMessage
GetScrollRange
SetScrollInfo
SetScrollPos
GetKeyState
SetScrollRange
DispatchMessageW
SetPropW
GetWindow
GetFocus
PostMessageW
SetParent
ShowScrollBar
GetCursorPos
EnableWindow
GetSysColorBrush
DrawFrameControl
DrawEdge
UpdateLayeredWindow
GetSubMenu
SubtractRect
MessageBoxW
ShowWindow
ClientToScreen
GetWindowRect
UnionRect
IntersectRect
DestroyWindow
CreateWindowExW
EqualRect
GetForegroundWindow
IsChild
PtInRect
SetFocus
EnumThreadWindows
GetClassNameW
IsWindowVisible
GetClassLongW
GetWindowRgn
FillRect
ScreenToClient
BringWindowToTop
SetForegroundWindow
CreateIconFromResourceEx
CreateIconFromResource
SetLayeredWindowAttributes
SetWindowsHookExW
CallNextHookEx
UnhookWindowsHookEx
LoadCursorFromFileW
DestroyCursor
GetWindowDC
SetRectEmpty
DrawIconEx
LoadImageW
DestroyIcon
GetSystemMetrics
InflateRect
IsRectEmpty
SetWindowPos
DefWindowProcW
InvalidateRgn
ReleaseDC
GetDC
IsWindow
CopyRect
OffsetRect
FindWindowExW
GetWindowLongW
GetParent
InvalidateRect
SendMessageW
GetActiveWindow
RegisterClassExW
CharNextW
LoadCursorW
GetClassInfoExW
GetPropW
SetCursor
RemovePropW
UnregisterClassA
IsMenu
GetCapture
PostQuitMessage
GetDlgItem
gdi32
Rectangle
LineTo
MoveToEx
SelectClipRgn
CreateFontW
BitBlt
SetBkColor
ExtTextOutW
CreateCompatibleBitmap
SetPixel
GetPixel
GetRgnBox
GetTextExtentExPointW
GetClipBox
SetWindowOrgEx
SaveDC
GetViewportOrgEx
GetWindowOrgEx
ExtSelectClipRgn
GetStockObject
PatBlt
SetRectRgn
CreatePatternBrush
CreateBitmap
Polygon
CloseEnhMetaFile
TextOutW
CreateEnhMetaFileW
PlayEnhMetaFile
StretchBlt
UnrealizeObject
SetBrushOrgEx
RestoreDC
CreatePen
CreateBrushIndirect
GetObjectW
EnumFontFamiliesExW
DPtoLP
CreateFontIndirectW
GetTextMetricsW
OffsetRgn
CombineRgn
CreateRectRgnIndirect
GetRegionData
ExtCreateRegion
CreateRoundRectRgn
DeleteObject
CreateCompatibleDC
SetViewportOrgEx
SetTextColor
SetBkMode
SelectObject
DeleteDC
GetDeviceCaps
CreateRectRgn
advapi32
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW
RegQueryValueExW
RegQueryValueW
RegOpenKeyExA
RegDeleteKeyW
shell32
DragQueryFileW
DragFinish
SHGetFileInfoW
ShellExecuteW
ole32
CoFileTimeNow
CoTaskMemFree
StringFromCLSID
CoCreateInstance
CLSIDFromProgID
DoDragDrop
RevokeDragDrop
RegisterDragDrop
oleaut32
VarBstrCmp
SysAllocStringLen
DispCallFunc
VariantClear
VariantInit
SysAllocString
LoadTypeLi
LoadRegTypeLi
SysStringLen
VarUI4FromStr
SysFreeString
atl80
ord58
ord32
ord30
ord31
ord11
ord10
ord43
ord44
ord18
ord22
ord64
ord15
msvcp80
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
msvcr80
_wtof
wcsrchr
_wfopen
getc
fputc
ferror
feof
??3@YAXPAX@Z
memcpy_s
malloc
free
_CxxThrowException
wcscpy_s
rand
_snwprintf
exit
_wtoi
memcpy
wcsncpy
_wcsicmp
wcsncpy_s
_invalid_parameter_noinfo
swprintf_s
__CxxFrameHandler3
fflush
_except_handler4_common
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??_V@YAXPAX@Z
memmove_s
??0exception@std@@QAE@ABV01@@Z
??2@YAPAXI@Z
_purecall
_recalloc
memset
_time64
memmove
realloc
wcschr
ftell
fclose
fread
fwrite
fseek
comctl32
ImageList_Create
ImageList_Destroy
ImageList_GetImageInfo
usp10
ScriptGetProperties
ScriptLayout
ScriptTextOut
ScriptFreeCache
ScriptItemize
ScriptPlace
ScriptGetFontProperties
ScriptShape
ScriptBreak
ScriptGetLogicalWidths
urlmon
CoInternetGetSession
Exports
Exports
??0CGFAnchor@@QAE@XZ
??0CGFFrameAnchorHelper@@QAE@XZ
??4CGFAnchor@@QAEAAV0@ABV0@@Z
??4CGFFrameAnchorHelper@@QAEAAV0@ABV0@@Z
?AddAnchor@CGFAnchor@@QAEXEEVCRect@@VCPoint@@@Z
?AdviseWebBrowser@IEEvent@Util@@YAHPAUIWebBrowser2@@PAUITXWebBrowserEvents@@PAPAUIUnknown@@AAK@Z
?BeginDrag@GF@Util@@YAJPAUIGFFrame@@VCPoint@@@Z
?BeginDragEffect@GF@Util@@YAXPAUIGFFrame@@VCPoint@@@Z
?CheckPermitActiveX@IEActiveX@Util@@YAHABU_GUID@@@Z
?ClearMousePointer@GF@Util@@YAJPAUIGFFrame@@@Z
?CloseAllPopupMenu@GF@Util@@YAJXZ
?ClosePopupWindows@GF@Util@@YAXXZ
?ConvertConfigMd@Metadata@Util@@YAJPA_W@Z
?CreateCompatibleImage@GIF@Util@@YAJAAVCxImage@@KKPAV3@@Z
?CreateObject@GF@Util@@YAJABU_GUID@@0PAPAX@Z
?CreatexFile@GF@Util@@YAXPAPAVCxFile@@VCTXStringW@@K@Z
?DispatchFrameMsg@GF@Util@@YAJPAUIGFFrame@@PAUtagBaseArg@@PAHPAJH@Z
?DispatchMsg_LocationChange@MsgEvt@Util@@YAJPAUIGFFrame@@UtagPOINT@@1@Z
?DispatchMsg_Lock@MsgEvt@Util@@YAJPAUIGFFrame@@H@Z
?DispatchMsg_PaddingChange@MsgEvt@Util@@YAJPAUIGFFrame@@UtagRECT@@1@Z
?DispatchMsg_SizeChange@MsgEvt@Util@@YAJPAUIGFFrame@@UtagSIZE@@1@Z
?DumpGFElementInfo@GF@Util@@YAXPAUIGFElement@@@Z
?EndDrag@GF@Util@@YAJXZ
?EndDragEffect@GF@Util@@YAXXZ
?FindDomodalChildren@GF@Util@@YAXPAUHWND__@@AAV?$vector@PAUHWND__@@V?$allocator@PAUHWND__@@@std@@@std@@@Z
?FlashFrameBorder@GF@Util@@YAJPAUIGFFrame@@EEKDKHKKPAUIGFAnimationEvent@@@Z
?FramePoint2WindowPoint@GF@Util@@YAXPAUIGFFrame@@AAUtagPOINT@@@Z
?FreeData@Metadata@Util@@YAJAAPA_W@Z
?GIFScale@GIF@Util@@YAJPAVCxFile@@0HHH@Z
?GIFScale@GIF@Util@@YAJPB_W0HHH@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAD@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAE@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAG@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAH@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAI@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAK@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAN@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAPA_W@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPATtagARGB@@@Z
?GetAnchor@CGFFrameAnchorHelper@@QAEJPAK@Z
?GetAnchor@CGFFrameAnchorHelper@@QAEJPAPA_W@Z
?GetAnchorResult@CGFAnchor@@QAE?AVCRect@@PAVVCalcSizeSupporter@@PAUtagSIZE@@@Z
?GetAnchorResult@CGFFrameAnchorHelper@@QAE?AVCRect@@V2@0PAVVCalcSizeSupporter@@@Z
?GetBOOL@Metadata@Util@@YAJPAUITXData@@PA_WPAH@Z
?GetCacheMetaData@GF@Util@@YAXPAH@Z
?GetCurrentModeId@GF@Util@@YAHXZ
?GetElementExtControl@GF@Util@@YAJPAUITXExtensionAgent@@PA_WPAUITXDataRead@@PAUIGFElement@@PAPAUIGFControl@@@Z
?GetElementExtProperties@GF@Util@@YAJPAUITXExtensionAgent@@HPA_WPAUITXDataRead@@PAPAUITXData@@@Z
?GetFrameByIndex@GFSpyFuncHelper@@YAJPAUIGFFrame@@HPAPAU2@@Z
?GetFrameCount@GFSpyFuncHelper@@YAJPAUIGFFrame@@PAI@Z
?GetFrameInfo@GFSpyFuncHelper@@YAJPAUIGFFrame@@PAUtagFrameInfo@@@Z
?GetGFConfigAgentCount@@YAMXZ
?GetGFConfigAgentSaveElmCount@@YAMXZ
?GetGFDrawCount@@YAKXZ
?GetGFElementCount@@YAKXZ
?GetGFFrameCount@@YAMXZ
?GetIEAcxContainer@IEEvent@Util@@YAXPAPAUIActiveXContainer@@@Z
?GetInterface@Metadata@Util@@YAJPAUITXData@@PA_WPAPAU3@@Z
?GetInterface@Metadata@Util@@YAJPAUITXData@@PA_WPAPAUITXArray@@@Z
?GetLightColor@Text@GF@Util@@YA?ATtagARGB@@T4@@Z
?GetMetadataMemoryUsage@@YAMXZ
?GetPaletteIndex@GIF@Util@@YAHAAVCxImage@@EEEAAE@Z
?GetService@GF@Util@@YAJABU_GUID@@PA_WPAPAX@Z
?GetTextColor@Text@GF@Util@@YA?ATtagARGB@@T4@@Z
?GetTotalGFFrameCount@@YAMXZ
?GetUseWSCAPTIONInWin7@GF@Util@@YAHXZ
?GetWindowByHWnd@GFSpyFuncHelper@@YAJPAUHWND__@@PAPAUIGFPopupWin@@@Z
?HookGFKeyMsg@GF@Util@@YAJPAUIGFHookKeyMsgListener@@@Z
?ImmAssociateContext@GF@Util@@YAXPAUIGFWin@@PAUHIMC__@@@Z
?IsFrameReachable@GF@Util@@YAHPAUIGFFrame@@@Z
?IsPopupMenuTracked@GF@Util@@YAHXZ
?IsValidGFElement@GF@Util@@YAHPAUIGFElement@@@Z
?LightInLightOut@GF@Util@@YAJPAUIGFFrame@@EEKDKHKKPAUIGFAnimationEvent@@@Z
?LoadImageW@GF@Util@@YAPAXPB_WIHHI@Z
?Merge@GIF@Util@@YAJAAV?$vector@PAVCxFile@@V?$allocator@PAVCxFile@@@std@@@std@@AAV?$vector@HV?$allocator@H@std@@@4@PAVCxFile@@K@Z
?Merge@GIF@Util@@YAJAAV?$vector@PB_WV?$allocator@PB_W@std@@@std@@AAV?$vector@HV?$allocator@H@std@@@4@PB_WK@Z
?MessageBoxW@GF@Util@@YAJPAUIGFFrame@@PAPAUIGFSysMessageBox@@VCTXStringW@@2H@Z
?ModifyReflect@GF@Util@@YAJPAXIH@Z
?OnElementExtEvent@GF@Util@@YAJPAUITXExtensionAgent@@HPAUITXDataRead@@1@Z
?Overlap@GIF@Util@@YAJPAVCxFile@@00K@Z
?Overlap@GIF@Util@@YAJPB_W00K@Z
?PopupMenu@GF@Util@@YAXPAUIGFMenuEx@@PAUIGFFrame@@@Z
?PrintFrame@GF@Util@@YAPAUHGTEXTURE__@@PAUIGFFrame@@KH@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_W1@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_WD@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_WE@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_WG@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_WH@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_WI@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_WK@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_WN@Z
?Put@Metadata@Util@@YAJPAUITXData@@PA_WTtagARGB@@@Z
?PutBOOL@Metadata@Util@@YAJPAUITXData@@PA_WH@Z
?PutInterface@Metadata@Util@@YAJPAUITXData@@PA_W0@Z
?PutInterface@Metadata@Util@@YAJPAUITXData@@PA_WPAUITXArray@@@Z
?RawCreateGFElementByMetadata@GF@Util@@YAJPAUITXData@@PAPAUIGFElement@@PAU4@PAUITXCore@@@Z
?RawCreateGFElementByMetadata@GF@Util@@YAJPAUITXData@@PAPAUIGFElement@@PAU4@PA_W@Z
?RawCreateGFElementByXtml@GF@Util@@YAJPA_WPAPAUIGFElement@@PAU3@0@Z
?RawCreateGFElementByXtml@GF@Util@@YAJPA_WPAPAUIGFElement@@PAU3@PAUITXCore@@@Z
?RawCreateGFObjectByName@GF@Util@@YAJPA_WPAPAUIGFElement@@@Z
?RawCreateGFObjectByName@GF@Util@@YAJPA_WPAPAUIGFElement@@PAUITXCore@@@Z
?RawInitGFElementByMetadata@GF@Util@@YAJPAUITXData@@PAUIGFElement@@1PAUITXCore@@@Z
?RawInitGFElementByMetadata@GF@Util@@YAJPAUITXData@@PAUIGFElement@@1PA_W@Z
?RawInitGFElementByXtml@GF@Util@@YAJPA_WPAUIGFElement@@10@Z
?RawInitGFElementByXtml@GF@Util@@YAJPA_WPAUIGFElement@@1PAUITXCore@@@Z
?RectExToRect@CGFAnchor@@IAE?AVCRect@@AAVCRectEx@@PAVVCalcSizeSupporter@@PAUtagSIZE@@@Z
?ScreenPoint2ClientPoint@GF@Util@@YAXPAUIGFFrame@@AAUtagPOINT@@@Z
?SetAnchor@CGFAnchor@@QAEXEVCRect@@@Z
?SetAnchor@CGFFrameAnchorHelper@@QAEJK@Z
?SetAnchor@CGFFrameAnchorHelper@@QAEJPA_W@Z
?SetCacheMetaData@GF@Util@@YAXH@Z
?SetCurrentMode@GF@Util@@YAJH@Z
?SetCustomObjectFactory@GF@Util@@YAXP6AHABU_GUID@@0PAPAX@Z@Z
?SetForegroundWindow@GF@Util@@YAXPAUIGFWin@@@Z
?SetFrameAttribute@GFSpyFuncHelper@@YAJPAUIGFFrame@@PB_W1@Z
?SetImageCacheCount@@YAXK@Z
?SetModeAttr@GF@Util@@YAJHPAUITXData@@@Z
?SetPermitActiveFileList@IEActiveX@Util@@YAHPAUITXArrayRead@@@Z
?SetPermitActiveXClsidList@IEActiveX@Util@@YAHPAUITXArrayRead@@@Z
?SetPermitEnable@IEActiveX@Util@@YAHH@Z
?SetStopCreateCompoent@GF@Util@@YAXXZ
?SetUseWSCAPTIONInWin7@GF@Util@@YAXH@Z
?SlideFrame@GF@Util@@YAJPAUIGFFrame@@VCRect@@1KDKHKKPAUIGFAnimationEvent@@@Z
?StopFlashFrameBorder@GF@Util@@YAJPAUIGFFrame@@@Z
?StopLightInLightOut@GF@Util@@YAJPAUIGFFrame@@@Z
?StopSlideFrame@GF@Util@@YAJPAUIGFFrame@@@Z
?TopFrameFromPoint@GF@Util@@YAJPAUIGFFrame@@PBUtagPOINT@@PAPAU3@@Z
?TopFrameInfoFromPoint@GFSpyFuncHelper@@YAJPAUIGFFrame@@PBUtagPOINT@@PAUtagFrameInfo@@@Z
?TransMd2GFElement@Metadata@Util@@YAJPAUITXData@@PAPAUIGFElement@@PAUIGFEnvironment@@PA_W@Z
?TransStringValue@Metadata@Util@@YA?AVCTXBSTR@@V3@@Z
?UnadviseWebBrowser@IEEvent@Util@@YAHPAUIWebBrowser2@@K@Z
?UnhookGFKeyMsg@GF@Util@@YAJPAUIGFHookKeyMsgListener@@@Z
?__GetGFCustMemAlloc@@YAIXZ
?__GetGFCustMemNewed@@YAIXZ
AccessorialTextOut
DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer
GetAccessorialCanvas
GetAccessorialDC
GetAccessorialHwnd
SetAccessorialCanvas
SetAccessorialDC
SetAccessorialHwnd
Sections
.text Size: 1.8MB - Virtual size: 1.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 496KB - Virtual size: 495KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 68KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 300KB - Virtual size: 298KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ