4498fbda45b463a960102f7d072ba02f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4498fbda45b463a960102f7d072ba02f_JaffaCakes118
Size

5.5MB
MD5

4498fbda45b463a960102f7d072ba02f
SHA1

0ee0de58c027512b1900860f0a36de5e665e3354
SHA256

d4d28309ee921a61536143bc1449b6444d8e8b668342a046a158d64b17ed20a9
SHA512

03a6a089ebf515e78f63ca3873299ef349a3b839680a6371ce4e0f1a8da10911b04cf4e5c7eff9dfd3882cb590f25fda14bf1fc0732d1701d459240ae18d07ee
SSDEEP

98304:IqAW5shRSKGnim2mDq9HpXGzF0YWeE6FF1OQQocSbAHXU64:p3sHiimtDq9Hp2yfCFrOxocSMHXf4

Score

3^/10

Malware Config

Signatures

Unsigned PE 41 IoCs

Checks for missing Authenticode signature.

resource
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/$TEMP/WebThunder_SetupHelper.dll
unpack001/BugReport.exe
unpack001/CacheServer.dll
unpack001/DownAndPlay/DapCtrl.dll
unpack001/DownAndPlay/DapPlayer.dll
unpack001/DownAndPlay/PlayerHelper.dll
unpack001/DownAndPlay/WebDownAndPlay.dll
unpack001/DownAndPlay/xlsf.dll
unpack001/FileIcon.dll
unpack001/Packer.dll
unpack001/RegisterDll.dll
unpack001/TaskManager.dll
unpack001/ThunderLoader/NsThunderLoader.dll
unpack001/ThunderLoader/NsThunderLoaderInstaller.dll
unpack001/ThunderLoader/regxpcom.exe
unpack001/UpdateHistory.exe
unpack001/WebThunderInstaller.dll
unpack001/WebThunder_SetupHelper.dll
unpack001/XLNet.dll
unpack001/XLSafe/RMFScan.dll
unpack001/XLSafe/SafeInfo.dll
unpack001/XLStatistic/XLStatisticAddin.dll
unpack001/al.dll
unpack001/asyn_dns.dll
unpack001/bd.dll
unpack001/download_interface.dll
unpack001/historyinfo_manage.dll
unpack001/kankan/IJL15.DLL
unpack001/kankan/PPlayer.dll
unpack001/kankan/XAFilter.ax
unpack001/kankan/XPlayer.dll
unpack001/kankan/Xdrm.dll
unpack001/kankan/XmvSource.dll
unpack001/kankan/atl71.dll
unpack001/msvcr71.dll
unpack001/stlport_vc646.dll
unpack001/streammedialib.dll
unpack001/upnp.exe
unpack001/xldc.dll

NSIS installer 1 IoCs

installer

resource	yara_rule
sample	nsis_installer_1

Files

4498fbda45b463a960102f7d072ba02f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

18bc6fa81e19f21156316b1ae696ed6b

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:c3:09:c2:ed:0e:e4:35:09:fc:8b:d8:68:bc:4c:fd
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

26/04/2006, 00:00

Not After

31/05/2009, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Department of System Engineering,O=ShenZhen Thunder Networking Technologies Ltd.,L=ShenZhen,ST=GuangDong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
lstrcmpiA
ExitProcess
GetCommandLineA
GetWindowsDirectoryA
GetTempPathA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
CopyFileA

user32

ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
EndDialog
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
MultiByteToWideChar
GlobalAlloc

user32

GetDlgCtrlID
GetClientRect
SetWindowRgn
MapWindowPoints
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
PtInRect
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
LoadIconA

gdi32

SetTextColor
GetObjectA
SelectObject
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
CreateCompatibleDC

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 954B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetLastError
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 494B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$TEMP/WebThunder_SetupHelper.dll
.dll windows:4 windows x86 arch:x86

cb15c4ce4f27454ccf6f64d3e8a9ffaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersionExA
OutputDebugStringA
CloseHandle
Process32Next
Process32First
GetCurrentProcessId
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
WriteFile
HeapFree
GetCommandLineA
GetVersion
ExitProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
Sleep
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement

user32

SendMessageA
FindWindowA

Exports

Exports

QuitWebThunder

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BugReport.exe
.exe windows:4 windows x86 arch:x86

4740164c3e34bd4b4976d13c9a3a65a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord825
ord815
ord641
ord800
ord2514
ord860
ord2621
ord1134
ord5265
ord4376
ord4853
ord4998
ord4710
ord6052
ord4078
ord1775
ord4407
ord2512
ord2385
ord5163
ord6374
ord4353
ord5280
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord4425
ord3597
ord324
ord4234
ord1146
ord1168
ord540
ord2301
ord4160
ord2863
ord2379
ord755
ord470
ord6199
ord6197
ord3092
ord665
ord1979
ord5572
ord5442
ord2915
ord3318
ord5186
ord354
ord2818
ord6877
ord537
ord2645
ord6334
ord2554
ord4486
ord6375
ord4274
ord5241
ord4673
ord1576

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit
_mbscmp
__CxxFrameHandler
__p___argc
__p___argv
_mbsnbicmp
_setmbcp
_onexit

kernel32

GetPrivateProfileStringA
GetModuleHandleA
GetStartupInfoA

user32

DrawIcon
GetClientRect
GetSystemMetrics
GetSystemMenu
GetWindowRect
EnableWindow
AppendMenuA
IsIconic
LoadIconA
SendMessageA

shell32

ShellExecuteA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
BugReport.ini
CacheServer.dll
.dll windows:4 windows x86 arch:x86

dba3be5b92dc3795e99ef29099085fdc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord3259
ord4465
ord3136
ord3147
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord825
ord815
ord540
ord800
ord2077
ord823
ord1247
ord860
ord6467
ord1248
ord397
ord699
ord6139
ord4188
ord912
ord287
ord5810
ord5481
ord2031
ord4411
ord4447
ord4863
ord4975
ord4919
ord5796
ord5478
ord5714
ord966
ord3570
ord278
ord3953
ord2982
ord1871
ord3663
ord610
ord700
ord3811
ord398
ord535
ord4189
ord4202
ord1791
ord4335
ord5602
ord940
ord2614
ord2764
ord4274
ord858
ord913
ord6282
ord4277
ord4129
ord2763
ord537
ord1615
ord3500
ord5572
ord2915
ord922
ord4160
ord2818
ord2819
ord548
ord3337
ord4278
ord5683
ord923
ord924
ord5710
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord5289
ord5307
ord4698
ord4079
ord2725
ord5302
ord5300
ord3346
ord605
ord1638
ord1971
ord6283
ord1578
ord600
ord1255
ord269
ord1176
ord1575
ord1168
ord1577
ord1182
ord1570
ord1243
ord1253
ord1197
ord826
ord342
ord1116

msvcrt

__CxxFrameHandler
_onexit
__dllonexit
free
_initterm
memmove
??1type_info@@UAE@XZ
malloc
_adjust_fdiv
_mbscmp
_mbsicmp
atoi

kernel32

GetSystemTime
GetFileSize
GetFileTime
GetFullPathNameA
GetFileAttributesA
ReadFile
CloseHandle
FileTimeToSystemTime
LocalFree
LocalAlloc
CreateFileA

user32

DrawIconEx
FillRect
GetDC
ReleaseDC

gdi32

DeleteObject
DeleteDC
GetDIBits
GetObjectA
CreateSolidBrush
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC

shell32

SHGetFileInfoA

wsock32

shutdown
WSAGetLastError
listen

Exports

Exports

StartServer
StopServer

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DownAndPlay/DapCtrl.dll
.dll regsvr32 windows:4 windows x86 arch:x86

947bbd0c8519506a531881d16af03f33

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Projects\DapCtrlModule\Release\DapCtrl.pdb

Imports

kernel32

CreateThread
WinExec
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
FlushInstructionCache
GetCurrentProcess
HeapFree
GetProcessHeap
HeapAlloc
lstrlenA
lstrcmpiA
FindResourceA
lstrcpynA
InterlockedIncrement
IsDBCSLeadByte
MulDiv
lstrcmpA
SetLastError
LockResource
LoadResource
FreeLibrary
SizeofResource
LoadLibraryExA
GetModuleHandleA
GlobalHandle
TerminateThread
GetProcAddress
LoadLibraryA
lstrcpyA
lstrcatA
GetFileAttributesExA
WritePrivateProfileStringA
CopyFileA
WaitForMultipleObjects
GetFileSize
GetTempPathA
MoveFileA
GetDiskFreeSpaceExA
CreateEventA
SetEvent
ResetEvent
GetVolumeInformationA
GetSystemDirectoryA
FreeResource
TlsAlloc
OpenEventA
CreateMutexA
SetEndOfFile
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetFilePointer
GetStringTypeW
GetStringTypeA
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ReadFile
HeapSize
TerminateProcess
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
QueryPerformanceCounter
LCMapStringW
LCMapStringA
GetCPInfo
GetOEMCP
GetCommandLineA
HeapReAlloc
GetSystemInfo
VirtualAlloc
VirtualProtect
RtlUnwind
GetSystemTimeAsFileTime
LocalFree
GetLastError
CreateFileMappingA
MapViewOfFile
ExitProcess
InterlockedExchangeAdd
TlsFree
FindCloseChangeNotification
UnmapViewOfFile
ReleaseMutex
TlsSetValue
GetLocalTime
GetCurrentThreadId
TlsGetValue
OutputDebugStringA
FindFirstChangeNotificationA
WaitForSingleObject
FindNextChangeNotification
GetPrivateProfileStringA
GetPrivateProfileIntA
FindFirstFileA
FindNextFileA
FindClose
InterlockedDecrement
CreateFileA
WriteFile
FlushFileBuffers
CloseHandle
DeleteFileA
GetCurrentProcessId
GetFileAttributesA
CreateDirectoryA
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
VirtualQuery
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
GetTickCount
DeleteCriticalSection
InitializeCriticalSection
Sleep
RaiseException

user32

MoveWindow
MapWindowPoints
SystemParametersInfoA
MessageBoxA
SendMessageTimeoutA
FindWindowA
CharNextA
FindWindowExW
PostMessageA
DispatchMessageA
TranslateMessage
GetMessageA
SetWindowLongA
GetWindowLongA
SendMessageA
SetWindowPos
ScreenToClient
ShowWindow
IsWindowVisible
SetTimer
KillTimer
SetParent
EndDialog
SetCursor
wsprintfA
GetKeyState
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
UnionRect
PtInRect
PeekMessageA
GetActiveWindow
MapDialogRect
SetWindowContextHelpId
DialogBoxIndirectParamA
RegisterWindowMessageA
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
CreateAcceleratorTableA
SendDlgItemMessageA
GetClassNameA
RedrawWindow
GetDlgItem
DestroyAcceleratorTable
GetFocus
IsChild
DrawTextA
GetCursorPos
LoadBitmapA
UnregisterClassA
GetClassInfoExA
SetWindowsHookExA
SetFocus
GetWindowInfo
GetSystemMetrics
GetWindowRect
GetClassNameW
GetParent
IsWindow
DefWindowProcA
CharUpperBuffA
EnumChildWindows
RegisterClassExA
CreateWindowExA
GetSysColor
ReleaseCapture
SetCapture
FillRect
GetClientRect
GetDC
ReleaseDC
InvalidateRect
InvalidateRgn
LoadCursorA
DestroyWindow
GetWindow
BeginPaint
EndPaint
CallWindowProcA
GetDesktopWindow
UnhookWindowsHookEx

gdi32

RestoreDC
SetViewportOrgEx
SetWindowOrgEx
SetMapMode
DeleteObject
LPtoDP
CreateDCA
CombineRgn
GetPixel
CreateRectRgn
TextOutA
SetTextColor
SetBkMode
CreateFontA
StretchBlt
Rectangle
SelectObject
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
GetDeviceCaps
GetObjectA
GetStockObject
CreateSolidBrush
SaveDC
CreateRectRgnIndirect

comdlg32

GetSaveFileNameA

advapi32

RegQueryInfoKeyA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegEnumKeyExA
RegCreateKeyA
RegSetValueExA
RegEnumKeyA

shell32

SHFileOperationA
SHGetFolderPathA

ole32

WriteClassStm
OleLoadFromStream
CreateOleAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
OleUninitialize
OleInitialize
CLSIDFromString
OleSaveToStream
CoGetClassObject
CreateStreamOnHGlobal
OleLockRunning
StringFromGUID2
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoUninitialize
CLSIDFromProgID

oleaut32

SafeArrayUnaccessData
SafeArrayDestroy
SafeArrayAccessData
SafeArrayCreateVector
SysAllocString
SysFreeString
SysAllocStringLen
SysStringLen
SysAllocStringByteLen
SysStringByteLen
VarBstrCmp
VariantInit
VariantClear
VariantCopy
VariantChangeType
VarUI4FromStr
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
OleCreatePropertyFrame
UnRegisterTypeLi
RegisterTypeLi
OleLoadPicture

shlwapi

PathFileExistsA
PathFindExtensionA
PathFindFileNameA
SHDeleteKeyA
StrStrIA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

ws2_32

shutdown
send
recv
connect
socket
htons
htonl
bind
listen
accept
closesocket
WSACleanup
WSAStartup
sendto
inet_ntoa
gethostbyname
inet_addr

iphlpapi

GetAdaptersInfo

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
RegisterServerDirect
UnregisterServerDirect

Sections

.text
Size: 288KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DownAndPlay/DapPlayer.dll
.dll regsvr32 windows:4 windows x86 arch:x86

b6c812eb3c2fb315aa07bf22ea9575f1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MulDiv
WinExec
GetFileSize
CreateFileA
WaitForMultipleObjects
GetTempPathA
CreateThread
GetFileAttributesExA
CreateEventA
GetVolumeInformationA
OutputDebugStringA
LocalFree
ResetEvent
MoveFileA
SetEvent
WaitForSingleObject
TerminateThread
GetPrivateProfileIntA
GetTickCount
GetVersionExA
GetEnvironmentVariableA
LeaveCriticalSection
CloseHandle
lstrcmpA
GlobalLock
GlobalUnlock
GlobalAlloc
LockResource
GlobalHandle
GlobalFree
FreeResource
InterlockedIncrement
InterlockedDecrement
lstrcatA
DeleteCriticalSection
HeapDestroy
InitializeCriticalSection
lstrcpyA
CopyFileA
FindFirstFileA
DeleteFileA
FindNextFileA
FindClose
LoadLibraryA
GetProcAddress
DisableThreadLibraryCalls
GetFileAttributesA
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
GetLastError
FindResourceA
LoadResource
SizeofResource
FreeLibrary
WideCharToMultiByte
GetModuleHandleA
GetShortPathNameA
lstrlenA
MultiByteToWideChar
lstrlenW
GetModuleFileNameA
GetCurrentProcess
FlushInstructionCache
GetCurrentThreadId
EnterCriticalSection
GetDiskFreeSpaceExA

user32

PostMessageA
SetClassLongA
GetClassLongA
SetWindowsHookExA
UnhookWindowsHookEx
SystemParametersInfoA
FindWindowA
SetParent
SetActiveWindow
MessageBoxA
CallNextHookEx
GetWindowRect
WindowFromPoint
FillRect
DefWindowProcA
EndPaint
BeginPaint
ShowWindow
GetParent
GetSystemMetrics
GetWindowLongA
RegisterClassExA
wsprintfA
LoadCursorA
GetClassInfoExA
SetWindowLongA
CallWindowProcA
CreateWindowExA
CharNextA
EnumChildWindows
DrawTextA
GetSysColor
GetKeyState
PtInRect
UnionRect
IsDialogMessageA
GetNextDlgTabItem
GetWindow
SendMessageA
IsChild
GetFocus
CreateDialogIndirectParamA
RegisterWindowMessageA
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
SetFocus
ReleaseDC
GetDC
GetClientRect
SetWindowPos
IsWindow
RedrawWindow
GetClassNameA
GetDesktopWindow
CreateAcceleratorTableA
ReleaseCapture
SetCapture
InvalidateRect
InvalidateRgn
DestroyWindow
GetDlgItem
SetWindowRgn
OffsetRect
EqualRect
IntersectRect
SetTimer
LoadBitmapA
KillTimer
GetDialogBaseUnits
SendMessageTimeoutA
GetCursorPos
DestroyCursor

gdi32

SetWindowOrgEx
SaveDC
CreateMetaFileA
SetViewportOrgEx
SetMapMode
LPtoDP
CreateDCA
SetWindowExtEx
TextOutA
MoveToEx
LineTo
CreatePen
GetTextExtentPointA
GetTextMetricsA
CreateFontIndirectA
RestoreDC
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
CreateCompatibleBitmap
GetDeviceCaps
SetBkColor
Rectangle
SetTextColor
SetBkMode
GetStockObject
CreateSolidBrush
DeleteObject
StretchBlt
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
CreateFontA
GetObjectA

advapi32

RegOpenKeyA
RegQueryValueA
RegEnumKeyA
RegQueryValueExA
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
RegCreateKeyA
RegEnumValueA
RegQueryInfoKeyA
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA

ole32

CLSIDFromString
CLSIDFromProgID
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
OleLoadFromStream
CreateDataAdviseHolder
StringFromCLSID
OleRegGetUserType
OleRegEnumVerbs
OleSaveToStream
WriteClassStm
CoCreateInstance
CoTaskMemRealloc
CoTaskMemAlloc
OleRegGetMiscStatus
OleLockRunning
CreateOleAdviseHolder
CoInitialize
CoUninitialize
CoTaskMemFree

oleaut32

SysAllocStringByteLen
SysAllocStringLen
OleCreateFontIndirect
OleCreatePropertyFrame
VariantInit
SysStringByteLen
VariantChangeType
OleTranslateColor
SysStringLen
LoadRegTypeLi
VariantClear
RegisterTypeLi
LoadTypeLi
SysAllocString
VarUI4FromStr
SysFreeString
CreateErrorInfo
SetErrorInfo
GetErrorInfo

msvcrt

time
_adjust_fdiv
_initterm
_onexit
__dllonexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_except_handler3
atoi
abs
fputs
fwrite
fread
_ui64toa
wcslen
_wcsupr
fgets
strcspn
strstr
wcscmp
_strnicmp
_mbsupr
_atoi64
fopen
fclose
isspace
isalpha
isdigit
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_CxxThrowException
??0exception@@QAE@ABV0@@Z
_ultoa
atol
_mbsicmp
strncpy
_snprintf
strtok
toupper
tolower
memmove
strcpy
strcat
strcmp
sprintf
_mbscmp
_purecall
memcmp
_itoa
srand
rand
??2@YAPAXI@Z
realloc
malloc
free
_vsnprintf
_putenv
__CxxFrameHandler
strlen
memcpy
_ftol
??3@YAXPAX@Z
memset

msvcp60

?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIPBDI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?_Xran@std@@YAXXZ
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??_7logic_error@std@@6B@
??_7runtime_error@std@@6B@
??1logic_error@std@@UAE@XZ
??0logic_error@std@@QAE@ABV01@@Z
??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??1runtime_error@std@@UAE@XZ
??0runtime_error@std@@QAE@ABV01@@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

shlwapi

PathFileExistsA
UrlEscapeA
UrlUnescapeA
SHDeleteKeyA
PathRemoveFileSpecA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

ws2_32

htonl
shutdown
send
recv
connect
socket
inet_ntoa
inet_addr
bind
listen
accept
closesocket
WSACleanup
gethostbyname
sendto
htons
WSAStartup

iphlpapi

GetAdaptersInfo

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
RegisterServerDirect

Sections

.text
Size: 224KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DownAndPlay/PlayerHelper.dll
.dll windows:4 windows x86 arch:x86

20a3347ed63625383c658c0ce1ceca6a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InitializeCriticalSection
DeleteCriticalSection
CreateEventA
GetPrivateProfileStringA
GetPrivateProfileIntA
CreateThread
DeleteFileA
GetLastError
FreeLibrary
GetProcAddress
LoadLibraryA
MoveFileA
CloseHandle
WriteFile
CreateFileA
GetTempFileNameA
GetTempPathA
TerminateThread
WaitForSingleObject
InterlockedDecrement
WaitForMultipleObjects
LeaveCriticalSection
EnterCriticalSection
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
ReadFile
HeapDestroy
OutputDebugStringA
GetModuleHandleA
GetVolumeInformationA
WritePrivateProfileStringA
GetSystemDirectoryA
GetTickCount
lstrlenA
GetFileAttributesA
GetModuleFileNameA
lstrlenW
SetEvent
WideCharToMultiByte
LocalFree
MultiByteToWideChar

advapi32

RegQueryValueExA
RegOpenKeyExA

ole32

CoCreateInstance
OleRun

oleaut32

VariantChangeType
GetErrorInfo
SysAllocString
VariantInit
VariantClear
SysFreeString
VariantCopy
SysAllocStringByteLen
SysStringByteLen

iphlpapi

GetAdaptersInfo

wininet

InternetOpenUrlA
InternetOpenA
InternetCloseHandle
HttpQueryInfoA
InternetReadFile
InternetSetCookieA
InternetGetCookieA

ws2_32

gethostbyname
inet_addr
htons
WSAGetLastError
closesocket
sendto
setsockopt
WSACreateEvent
WSAResetEvent
WSAEventSelect
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
send
recv
connect
htonl
ntohl
WSACloseEvent
inet_ntoa
socket

msvcp60

??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??_8?$basic_ofstream@DU?$char_traits@D@std@@@std@@7B@
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??_7?$basic_ofstream@DU?$char_traits@D@std@@@std@@6B@
?open@?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEPAV12@PBDH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z
?_Init@?$basic_filebuf@DU?$char_traits@D@std@@@std@@IAEXPAU_iobuf@@W4_Initfl@12@@Z
??1?$basic_filebuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??_7logic_error@std@@6B@
??1logic_error@std@@UAE@XZ
??0logic_error@std@@QAE@ABV01@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0ios_base@std@@IAE@XZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??_7?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@6B@
?_Tidy@?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??1ios_base@std@@UAE@XZ
??_8?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@7B@
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??_7?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@6B@
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??1?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Xlen@std@@YAXXZ
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z

msvcrt

??0exception@@QAE@ABV0@@Z
_strnicmp
_stricmp
_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_onexit
__dllonexit
wcslen
_ui64toa
_ultoa
malloc
free
fclose
strrchr
_except_handler3
sscanf
?what@exception@@UBEPBDXZ
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@XZ
strncmp
atoi
time
srand
rand
sprintf
strncpy
strtoul
atol
strstr
_purecall
_atoi64
??2@YAPAXI@Z
memmove
??1exception@@UAE@XZ
_CxxThrowException
_itoa
__CxxFrameHandler

Exports

Exports

ForceRequestMovieADs
GetCancelEvent
GetFileByMoviePos
GetFileByMoviePosEx
GetFileByMoviePosExEx
GetPosListByMovie
InitHelper
PrepareForMovie
SendStat
SendStatEx
SetPlatformID
UninitHelper

Sections

.text
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DownAndPlay/WebDownAndPlay.dll
.dll windows:4 windows x86 arch:x86

1123b0e3211d2ed95e75f54b2a2a4b0e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateThread
OutputDebugStringA
CloseHandle
WaitForSingleObject
DeleteFileA
InterlockedIncrement
GetProcAddress
GetModuleHandleA
RemoveDirectoryA
GetModuleFileNameA
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
lstrlenA
GetLongPathNameA
GetTempPathA
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateEventA
SetEvent
ResetEvent
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
FlushFileBuffers
LCMapStringW
LCMapStringA
Sleep
SetStdHandle
SetConsoleCtrlHandler
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
GetStringTypeW
GetStringTypeA
UnhandledExceptionFilter
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
RtlUnwind
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
RaiseException
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
FatalAppExitA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
SetEnvironmentVariableA

user32

DefWindowProcA
SendMessageTimeoutA
IsWindow
LoadStringA
DestroyWindow
CreateDialogParamA
ShowWindow
PostMessageA

oleaut32

SysAllocString
SysAllocStringLen
SysFreeString

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

ws2_32

WSAStartup
WSACleanup
closesocket
accept
listen
bind
inet_addr
htons
socket
connect
recv
send

Exports

Exports

OnConnection
OnDisconnection

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DownAndPlay/xlsf.dll
.dll regsvr32 windows:4 windows x86 arch:x86

1b749b157df87ae05bd2f9c5d7a48614

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathRemoveFileSpecA
PathCombineA
UrlUnescapeA
UrlEscapeA
PathAddBackslashA

kernel32

GetLocaleInfoA
GetThreadLocale
GetVersionExA
RaiseException
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetEvent
WaitForSingleObject
ResetEvent
CloseHandle
WaitForMultipleObjects
GetLastError
CreateThread
InterlockedDecrement
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
CompareStringA
CompareStringW
Sleep
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetFileAttributesA
CopyFileA
MoveFileA
DeleteFileA
GetACP
SetThreadPriority
GetTickCount
GetFileSize
CreateFileA
SetFilePointer
ReadFile
IsBadWritePtr
IsBadReadPtr
OutputDebugStringA
GetCurrentThreadId
CreateEventA
GetModuleHandleA
CreateSemaphoreA
InterlockedIncrement
GetCurrentProcess
ReleaseSemaphore
GetSystemInfo
VirtualAlloc
VirtualFree
DisableThreadLibraryCalls
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
IsBadCodePtr
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
UnhandledExceptionFilter
GetEnvironmentStringsW
InterlockedExchange
GetLocalTime
SetEndOfFile
LocalFree
GetCommandLineA
ExitProcess
HeapCreate
lstrcpyA
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
SetEnvironmentVariableW
SetEnvironmentVariableA
LCMapStringW
VirtualQuery
VirtualProtect
RtlUnwind
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
LCMapStringA
GetCPInfo
GetOEMCP
SetUnhandledExceptionFilter
TerminateProcess
TlsGetValue
TlsSetValue
TlsFree
SetLastError
HeapDestroy
TlsAlloc

user32

SetRect
wsprintfA
GetMessageA
DispatchMessageA
TranslateMessage
MessageBoxA

advapi32

RegOpenKeyExA
RegSetValueA
RegEnumKeyExA
RegDeleteKeyA
RegQueryValueW
RegOpenKeyA
RegCreateKeyA
RegSetValueExA
RegQueryValueExA
RegCloseKey

ole32

CLSIDFromString
CoFreeUnusedLibraries
CoTaskMemFree
StringFromGUID2
CLSIDFromProgID
CoCreateInstance
CoUninitialize
CoInitialize
CoTaskMemAlloc

oleaut32

SysAllocStringLen
VariantInit
SysAllocString
SysFreeString
SafeArrayGetDim
SafeArrayLock
SafeArrayUnlock
VariantClear

wininet

HttpQueryInfoA
InternetReadFile
InternetCrackUrlA
InternetQueryDataAvailable
InternetSetFilePointer
InternetOpenA
InternetOpenUrlA
InternetCloseHandle

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer
RegisterServerDirect

Sections

.text
Size: 216KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_TEXT64
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Error.ini
FileIcon.dll
.dll windows:4 windows x86 arch:x86

b15f50e3f2711e0feb9b6d0b6f0258b5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
GetVersionExA
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
LeaveCriticalSection
EnterCriticalSection
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
RtlUnwind
InterlockedExchange
VirtualQuery
LoadLibraryA
HeapSize
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualProtect
GetSystemInfo

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GetAllUrl.htm
.html .vbs polyglot
GetUrl.htm
.html .js polyglot
Packer.dll
.dll windows:4 windows x86 arch:x86

66a925fd48fd95340dda6602e57cc059

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteFileA
GetTempFileNameA
GetTempPathA
CloseHandle
WriteFile
CreateFileA
ReadFile
GetFileSize
FindClose
FindNextFileA
FindFirstFileA
CreateDirectoryA
DisableThreadLibraryCalls

msvcrt

??2@YAPAXI@Z
ftell
fprintf
_fdopen
fopen
??3@YAXPAX@Z
malloc
fwrite
fread
fclose
free
fputc
_stricmp
_initterm
_adjust_fdiv
_errno

Exports

Exports

zlib_pack
zlib_unpack

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Profiles/Language.ini
Profiles/bootstrap.dat
Profiles/ipfilter.dat
Profiles/nodes.dat
Profiles/server.met
RegisterDll.dll
.dll windows:4 windows x86 arch:x86

b1df2dbe09b343d110fc7a0d35e46d7d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

gethostname
inet_ntoa
ntohl
recvfrom
sendto
bind
WSACloseEvent
socket
connect
recv
send
WSAEnumNetworkEvents
WSAEventSelect
closesocket
WSAResetEvent
WSAGetLastError
setsockopt
ntohs
inet_addr
htons
WSAWaitForMultipleEvents
WSACreateEvent
WSAStartup
htonl
gethostbyname

iphlpapi

GetAdaptersInfo

kernel32

GetProcAddress
FreeLibrary
TerminateThread
CloseHandle
WaitForMultipleObjects
LeaveCriticalSection
WritePrivateProfileStringA
GetLocalTime
EnterCriticalSection
InitializeCriticalSection
CreateThread
CreateEventA
DeleteCriticalSection
GetModuleFileNameA
GetPrivateProfileStringA
OutputDebugStringA
GetCurrentThreadId
GetPrivateProfileIntA
WaitForSingleObject
SetEvent
Sleep
UnmapViewOfFile
MapViewOfFile
GetLastError
CreateFileMappingA
OpenFileMappingA
GetTickCount
ResetEvent
CreateMutexA
LoadLibraryA

user32

TranslateMessage
PeekMessageA
DispatchMessageA

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

msvcp60

?_Xran@std@@YAXXZ
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xlen@std@@YAXXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??1bad_alloc@std@@UAE@XZ
??_7bad_alloc@std@@6B@
??0Init@ios_base@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0logic_error@std@@QAE@ABV01@@Z
??1logic_error@std@@UAE@XZ
??_7logic_error@std@@6B@
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z

msvcirt

?close@fstream@@QAEXXZ
??_Dfstream@@QAEXXZ
??0fstream@@QAE@XZ
??0exception@@QAE@ABQBD@Z
??1ios@@UAE@XZ
??0exception@@QAE@ABV0@@Z
?what@exception@@UBEPBDXZ
??0exception@@QAE@XZ
??1exception@@UAE@XZ
??1fstream@@UAE@XZ

msvcrt

_adjust_fdiv
malloc
_initterm
_onexit
_snprintf
sprintf
printf
__CxxFrameHandler
??2@YAPAXI@Z
memmove
rand
_atoi64
_CxxThrowException
fclose
fread
fseek
_fsopen
strrchr
strncpy
_purecall
_itoa
atoi
strstr
srand
time
fwrite
strtoul
free
_strdup
_ultoa
memchr
atol
??1type_info@@UAE@XZ
__dllonexit

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
HttpQueryInfoA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Exports

Exports

Authentication
GetAuthenInfo
GetConnectLastError
GetConnectStatus
GetMessageNum
GetPasswQuestion
GetSessionID
GetSessionKey
GetUserMessage
GetUserNameInfo
IsConnect
IsKickout
Logout
ModifyMailBox
ModifyPassword
QueryNewPassword
Register
Registerexit
Registerinit
ResetPassword
SavePassword
SetAutoLogin
SetDownloadMessage
SetPruductFlag
SetRetryGetMessage
SetUserMessage
SetUserNameandPassw
TestMyXunleiConnect
setregisterproxy

Sections

.text
Size: 172KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TaskManager.dll
.dll regsvr32 windows:4 windows x86 arch:x86

a772fb9452e659ea3d53e1a41a17f0ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathIsRootA
PathIsUNCA
PathIsDirectoryA
PathCombineA

mfc42

ord537
ord922
ord1200
ord2841
ord5450
ord6394
ord2107
ord5440
ord6383
ord1799
ord3262
ord4226
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord3738
ord561
ord815
ord5500
ord1132
ord1131
ord6354
ord801
ord860
ord541
ord539
ord861
ord6283
ord6282
ord5608
ord6143
ord3811
ord858
ord924
ord3258
ord4278
ord4277
ord4021
ord2614
ord6883
ord548
ord6673
ord940
ord5861
ord2820
ord6648
ord5431
ord3348
ord4351
ord2989
ord2625
ord297
ord619
ord2033
ord3443
ord3786
ord5860
ord500
ord1206
ord1223
ord446
ord743
ord4020
ord4129
ord2764
ord5683
ord6662
ord6929
ord1168
ord926
ord3988
ord6781
ord1116
ord1255
ord1578
ord600
ord826
ord269
ord2919
ord1193
ord2915
ord5572
ord941
ord535
ord823
ord3663
ord1601
ord825
ord290
ord540
ord614
ord800
ord3579
ord4424
ord4622
ord4080
ord3079
ord3825
ord3831
ord3830
ord3353
ord2976
ord3081
ord2985
ord3136
ord4465
ord3259
ord3147
ord2982
ord4003
ord2729
ord2730
ord6467
ord2727
ord1253
ord1570
ord1197
ord1243
ord342
ord1182
ord1577
ord1575
ord1176
ord2818

msvcrt

_ismbcalpha
strcpy
__CxxFrameHandler
_mbsrchr
_mbsnbcpy
strlen
memset
isalnum
__dllonexit
_onexit
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
atol
memcpy
_mbscmp
_CxxThrowException
memcmp
_ftol
_mbsnbcat
rand
sscanf
_mbsnbcmp
memmove
_mbsicmp
free
malloc
realloc
_mbsnbicmp
sprintf

kernel32

LocalFree
LocalAlloc
FindFirstFileA
GetModuleFileNameA
GetProcAddress
GetLastError
FreeLibrary
GetSystemTime
InterlockedIncrement
GetTickCount
MultiByteToWideChar
IsBadReadPtr
DeleteFileA
CopyFileA
FindClose
CreateDirectoryA

user32

SetTimer
KillTimer

ole32

StgIsStorageFile
StgOpenStorage
StgCreateDocfile
CoTaskMemFree

oleaut32

SysStringByteLen
SysAllocStringByteLen
VariantClear
VariantCopy
SysAllocStringLen
SysFreeString

msvcp60

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ThunderLoader/IThunderDownload.xpt
ThunderLoader/NsThunderLoader.dll
.dll windows:4 windows x86 arch:x86

5e179d164188f94230b8f3641c5ebf2d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WideCharToMultiByte
MultiByteToWideChar
InterlockedDecrement
FindFirstFileA
GetModuleFileNameA
lstrcatA
FindClose
lstrlenA
SetCurrentDirectoryA
GetLastError
LocalFree
DisableThreadLibraryCalls

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

ole32

CoInitialize
CoUninitialize
CoCreateInstance
CLSIDFromProgID

oleaut32

VariantClear
GetErrorInfo
SysAllocString
SysFreeString
SysAllocStringLen

shlwapi

PathIsRootA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

msvcrt

_CxxThrowException
_stat
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
fopen
fgets
??3@YAXPAX@Z
_mbsrchr
_ismbcalpha
??2@YAPAXI@Z
__CxxFrameHandler
memset
sprintf
strlen
strcpy
memcpy
_fullpath
fclose
strncmp
??1type_info@@UAE@XZ

nspr4

PR_smprintf_free
PR_GetEnv
PR_AtomicIncrement
PR_smprintf
PR_UnloadLibrary
PR_FindSymbol
PR_LoadLibraryWithFlags
PR_SetEnv
PR_FindSymbolAndLibrary
PR_Free
PR_GetLibraryFilePathname
PR_AtomicDecrement

plc4

PL_strrchr

Exports

Exports

NSGetModule

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ThunderLoader/NsThunderLoaderInstaller.dll
.dll regsvr32 windows:4 windows x86 arch:x86

010d328133240c24863d78e97a8b2589

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CopyFileA
lstrcpyA
DeleteFileA
FindClose
FindNextFileA
FindFirstFileA
CloseHandle
Process32Next
GetModuleFileNameA
CreateToolhelp32Snapshot
DisableThreadLibraryCalls
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
DeleteCriticalSection
lstrlenA
lstrcatA
Process32First
Sleep

user32

MessageBoxA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

ShellExecuteA
SHGetSpecialFolderPathA

msvcrt

_stricmp
_adjust_fdiv
malloc
_initterm
free
_onexit
_mbsrchr
memcpy
??3@YAXPAX@Z
__dllonexit

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ThunderLoader/regxpcom.exe
.exe windows:4 windows x86 arch:x86

8a5fa7e9e22145cbaf8580dbd2f15762

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

nspr4

PR_SetEnv
PR_GetEnv
PR_smprintf
PR_smprintf_free
PR_LoadLibraryWithFlags
PR_UnloadLibrary
PR_FindSymbol
PR_Free
PR_GetLibraryFilePathname
PR_FindSymbolAndLibrary

plc4

PL_strrchr

kernel32

GetModuleFileNameA
SetCurrentDirectoryA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

msvcrt

free
memset
strlen
_controlfp
_except_handler3
_stat
__p__commode
_adjust_fdiv
__p__fmode
_initterm
__getmainargs
__setusermatherr
exit
??3@YAXPAX@Z
strcmp
??2@YAPAXI@Z
printf
_fullpath
sprintf
malloc
__set_app_type
_XcptFilter
__p___initenv
strcpy
fclose
strncmp
fgets
fopen
_exit

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Thunder_cfg.ini
UpdateHistory.exe
.exe windows:4 windows x86 arch:x86

729cace0e2b6d813e90833a85e3960bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcp60

?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??_F?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
??0Init@ios_base@std@@QAE@XZ

kernel32

GetModuleHandleA
MultiByteToWideChar
GetFileAttributesA
CreateDirectoryA
DeleteFileA
MoveFileA
lstrcmpiA
GetSystemTime
LoadLibraryA
GetProcAddress
OutputDebugStringA
GetModuleFileNameA
GetStartupInfoA

user32

wsprintfA

ole32

StgOpenStorage
StgCreateDocfile
CoUninitialize
CoInitialize

oleaut32

SysAllocStringLen
SysFreeString

msvcrt

_strcmpi
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
??2@YAPAXI@Z
__CxxFrameHandler
strrchr
rand
localtime
sprintf
_mbsnbcpy
memmove
free
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
WebThunder.exe
.exe windows:4 windows x86 arch:x86

10f4b941c46f340a45b70a6398e09b6b

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:c3:09:c2:ed:0e:e4:35:09:fc:8b:d8:68:bc:4c:fd
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

26/04/2006, 00:00

Not After

31/05/2009, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Department of System Engineering,O=ShenZhen Thunder Networking Technologies Ltd.,L=ShenZhen,ST=GuangDong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
RemoveDirectoryA
SetFileAttributesA
WritePrivateProfileStringA
IsBadReadPtr
CopyFileA
lstrlenA
lstrcmpiA
lstrcatA
lstrcpyA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GlobalUnlock
GlobalLock
GlobalAlloc
lstrlenW
MulDiv
HeapAlloc
FlushInstructionCache
GetCurrentProcess
lstrcmpA
GetCurrentThreadId
GetPrivateProfileIntA
GetPrivateProfileStringA
GetPrivateProfileSectionNamesA
SetEvent
Sleep
CreateEventA
GetTickCount
RemoveDirectoryW
DeleteFileW
GetFileAttributesA
SetProcessWorkingSetSize
EndUpdateResourceA
UpdateResourceA
BeginUpdateResourceA
InterlockedIncrement
InterlockedDecrement
lstrcpynA
IsDBCSLeadByte
LoadLibraryExA
CreateProcessA
GetWindowsDirectoryA
GetCommandLineA
FileTimeToLocalFileTime
GetSystemTime
GetFileAttributesExA
SetCurrentDirectoryA
GetCurrentDirectoryA
FileTimeToSystemTime
TerminateThread
HeapSize
HeapReAlloc
HeapDestroy
ResumeThread
SetThreadPriority
GetTempPathA
GetLocalTime
SetUnhandledExceptionFilter
SetErrorMode
VirtualQuery
GetCurrentThread
VirtualQueryEx
GetThreadSelectorEntry
ReadProcessMemory
GetStartupInfoA
ExitProcess
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
CreateDirectoryA
GetModuleFileNameA
GetVolumeInformationA
LoadLibraryA
FreeLibrary
GetModuleHandleA
GetProcAddress
GetDiskFreeSpaceExA
GetDiskFreeSpaceA
SystemTimeToFileTime
FindNextFileA
DeleteFileA
MoveFileA
GetFileSize
SetFilePointer
FindFirstFileA
FindClose
GetProcessHeap
HeapFree
MultiByteToWideChar
WaitForSingleObject
CreateFileA
EnterCriticalSection
LeaveCriticalSection
WriteFile
ReadFile
CreateThread
CloseHandle
GetLastError
WideCharToMultiByte
FindResourceExA
FindResourceA
InterlockedExchange
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
CopyFileW
LocalFree

user32

EndDialog
SendMessageA
SetWindowLongA
UnregisterClassA
MessageBoxA
PostMessageA
BringWindowToTop
SetForegroundWindow
ExitWindowsEx
ClientToScreen
GetForegroundWindow
IsWindowVisible
LoadIconA
GetAsyncKeyState
DrawIconEx
FrameRect
FlashWindow
EnumThreadWindows
DialogBoxParamA
GetActiveWindow
UnregisterHotKey
TrackPopupMenu
AttachThreadInput
PtInRect
ReleaseDC
GetClientRect
LoadBitmapA
GetDC
EndPaint
BeginPaint
DrawTextA
IsDlgButtonChecked
KillTimer
SetTimer
wsprintfA
CharNextA
MessageBeep
GetParent
GetWindowLongA
DefWindowProcA
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
RegisterClassExA
LoadCursorA
GetClassInfoExA
RegisterWindowMessageA
GetSysColor
ReleaseCapture
SetCapture
FillRect
InvalidateRect
InvalidateRgn
GetDesktopWindow
CallWindowProcA
SetFocus
GetWindow
IsChild
GetWindowThreadProcessId
CheckMenuItem
EnableMenuItem
GetFocus
DestroyAcceleratorTable
IsWindow
GetDlgItem
RedrawWindow
DestroyWindow
SetWindowPos
GetClassNameA
CreateAcceleratorTableA
CreateWindowExA
GetSystemMetrics
GetCursorPos
GetWindowRect
ShowWindow
SystemParametersInfoA
SetCursor
EnableWindow
MessageBoxW
SetDlgItemTextA
PostQuitMessage
mouse_event
RegisterHotKey
GetMessageA
TranslateMessage
DispatchMessageA
FindWindowA
DestroyIcon
LoadMenuA
GetSubMenu
ModifyMenuA
SetCursorPos

gdi32

LineTo
CreatePen
GetDIBits
CreateRectRgn
CombineRgn
Rectangle
TextOutA
PtInRegion
GetDeviceCaps
CreateCompatibleBitmap
DeleteDC
GetStockObject
GetObjectA
CreateFontIndirectA
PatBlt
StretchBlt
CreateCompatibleDC
DeleteObject
SelectObject
BitBlt
CreateSolidBrush
MoveToEx
SetTextColor
SetBkMode

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext
RegOpenKeyA
RegEnumKeyExA
RegQueryInfoKeyA
RegCreateKeyExA
RegDeleteKeyA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCreateKeyA
RegSetValueExA
RegDeleteValueA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
CryptAcquireContextA

shell32

Shell_NotifyIconA
ExtractIconA
SHGetFileInfoA
ShellExecuteA
ShellExecuteExA
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetSpecialFolderPathA
SHChangeNotify

ole32

CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
OleLockRunning
CoTaskMemAlloc
StringFromGUID2
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoRegisterClassObject
CoTaskMemFree
CoTaskMemRealloc
StringFromIID
CoUninitialize
CoInitialize
CoGetClassObject

oleaut32

VarUI4FromStr
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
SysStringLen
VarBstrCat
VarBstrCmp
SysStringByteLen
VariantInit
VariantClear
VariantCopy
SysAllocStringLen
SysAllocString
SysFreeString
SysAllocStringByteLen

shlwapi

PathIsRootA
PathCombineA
SHDeleteKeyA

msimg32

TransparentBlt

imagehlp

ImageNtHeader
CheckSumMappedFile
SymGetModuleInfo
SymGetSymFromAddr
SymGetModuleBase
SymLoadModule
SymSetOptions
SymInitialize
SymFunctionTableAccess
StackWalk

ws2_32

WSAStartup
htons
WSACleanup
htonl
WSAGetLastError

wininet

InternetCloseHandle
FindFirstUrlCacheEntryA
DeleteUrlCacheEntry
FindNextUrlCacheEntryA
FindCloseUrlCache
InternetOpenA
InternetSetOptionA
InternetOpenUrlA
HttpQueryInfoA
InternetReadFile

winmm

PlaySoundA
timeSetEvent

msvcr71

__security_error_handler
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_amsg_exit
_acmdln
exit
_cexit
_ismbblead
_XcptFilter
_exit
_c_exit
?terminate@@YAXXZ
_onexit
__dllonexit
??1type_info@@UAE@XZ
localtime
_mbsnbcpy
_snprintf
_strupr
_strlwr
_strnicmp
_stricmp
_itoa
??0exception@@QAE@ABQBD@Z
?what@exception@@UBEPBDXZ
_callnewh
fputs
srand
rand
fgets
strcmp
_purecall
_mbschr
_beginthreadex
_endthreadex
_mbsrev
fopen
fclose
strncpy
realloc
_resetstkoflw
malloc
_mbscmp
_mbsnbicmp
_atoi64
wcslen
_mbslwr
_mbscspn
_mbspbrk
_ismbcspace
_i64toa
strcat
strstr
sprintf
_ismbcalpha
_mbsrchr
??_V@YAXPAX@Z
_wtoi64
_wtoi
??0exception@@QAE@ABV0@@Z
atoi
time
??0exception@@QAE@XZ
??1exception@@UAE@XZ
_mbsstr
??3@YAXPAX@Z
memchr
_controlfp
_CxxThrowException
memset
_except_handler3
free
strlen
_mbsicmp
_vscprintf
vsprintf
memcpy
memmove
__CxxFrameHandler
strcpy
isalnum
memcmp
_mbsinc

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 320KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
WebThunderBHO.dll
.dll regsvr32 windows:4 windows x86 arch:x86

b556dba34aa3938506709d03dc23c998

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:c3:09:c2:ed:0e:e4:35:09:fc:8b:d8:68:bc:4c:fd
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

26/04/2006, 00:00

Not After

31/05/2009, 23:59

Subject

CN=ShenZhen Thunder Networking Technologies Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Department of System Engineering,O=ShenZhen Thunder Networking Technologies Ltd.,L=ShenZhen,ST=GuangDong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA
FindCloseUrlCache
InternetGetCookieA

kernel32

FindResourceExA
WideCharToMultiByte
InterlockedDecrement
MultiByteToWideChar
InterlockedIncrement
lstrlenA
GetFileAttributesA
lstrcpyA
InterlockedExchange
GetLastError
lstrlenW
ReadFile
CloseHandle
CreateFileA
lstrcmpiA
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
GetPrivateProfileIntA
OutputDebugStringA
GetPrivateProfileStringA
UnmapViewOfFile
FindResourceA
OpenFileMappingA
GetCurrentThreadId
CreateFileMappingA
CreateEventA
TerminateThread
WaitForSingleObject
SetEvent
ResumeThread
SetThreadPriority
CreateThread
ResetEvent
WritePrivateProfileStringA
GetLocalTime
DisableThreadLibraryCalls
GetModuleFileNameA
RemoveDirectoryA
WriteFile
DeleteFileA
CreateDirectoryA
GetProcAddress
LoadLibraryA
CopyFileA
MoveFileA
SetEndOfFile
CreateFileW
GetLocaleInfoW
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetCommandLineA
LoadResource
LockResource
SizeofResource
FindFirstFileA
FindClose
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
MapViewOfFile
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentProcess
TerminateProcess
GetModuleHandleA
VirtualAlloc
RtlUnwind
RaiseException
GetVersionExA
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetFilePointer
GetStartupInfoA
GetFileType
SetHandleCount
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetStdHandle
HeapCreate
VirtualFree
SetLastError
IsValidCodePage
GetOEMCP
ExitProcess
GetCPInfo
LCMapStringW
LCMapStringA
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetACP
GetLocaleInfoA
GetThreadLocale

user32

UnregisterClassA
CharUpperBuffA
wsprintfA

advapi32

RegCreateKeyA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegOpenKeyA

ole32

IIDFromString
CoCreateInstance
CLSIDFromProgID
CoGetMalloc
CLSIDFromString

oleaut32

SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
VariantInit
SysFreeString
VarBstrCmp
SysStringLen
SysAllocString
VariantClear

shlwapi

PathCombineA
SHDeleteKeyA
SHGetValueA
PathRemoveFileSpecA
SHDeleteValueA
SHSetValueA
StrStrIA

ws2_32

WSACreateEvent
WSAStartup
WSACleanup
closesocket
WSASetLastError
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
WSAGetLastError
send
WSAResetEvent
connect
gethostbyname
WSAEventSelect
socket
htons

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllInstall
DllRegisterServer
DllUnregisterServer
RegisterServerDirect

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WebThunderInstaller.dll
.dll regsvr32 windows:4 windows x86 arch:x86

aea8a5c14f44f629be514a821266a7a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
OpenProcess
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
DeleteCriticalSection
FreeLibrary
GetProcAddress
LoadLibraryA
SetCurrentDirectoryA
GetCurrentDirectoryA
WritePrivateProfileStringA
CreateProcessA
DeleteFileA
CopyFileA
RemoveDirectoryA
MoveFileExA
GetVersionExA
GetDiskFreeSpaceExA
GetLogicalDriveStringsA
LocalFree
lstrlenA
WaitForSingleObject
CloseHandle
FindFirstFileA
FindClose
GetLastError
GetModuleFileNameA
GetSystemDirectoryA
DisableThreadLibraryCalls
GetPrivateProfileStringA
OutputDebugStringA
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
LCMapStringW
LCMapStringA
InterlockedIncrement
InterlockedDecrement
SetFilePointer
IsBadWritePtr
VirtualAlloc
WriteFile
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
HeapCreate
VirtualFree
RaiseException

user32

GetWindowThreadProcessId
FindWindowA
wsprintfA
PostMessageA

advapi32

RegOpenKeyExA
RegDeleteValueA
RegOpenKeyA
RegQueryValueExA
RegDeleteKeyA
RegCreateKeyA
RegSetValueExA
RegCloseKey
RegCreateKeyExA

shell32

SHFileOperationA
ShellExecuteA
SHGetSpecialFolderPathA

ole32

CoInitialize
CoUninitialize
CLSIDFromProgID
CoCreateInstance

oleaut32

SysAllocString
VariantClear

wininet

FindNextUrlCacheEntryA
FindCloseUrlCache
DeleteUrlCacheEntry
FindFirstUrlCacheEntryA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

shlwapi

PathCombineA

netapi32

Netbios

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
SetPluginIdentify

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WebThunder_SetupHelper.dll
.dll windows:4 windows x86 arch:x86

cb15c4ce4f27454ccf6f64d3e8a9ffaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersionExA
OutputDebugStringA
CloseHandle
Process32Next
Process32First
GetCurrentProcessId
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
WriteFile
HeapFree
GetCommandLineA
GetVersion
ExitProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
Sleep
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement

user32

SendMessageA
FindWindowA

Exports

Exports

QuitWebThunder

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLNet.dll
.dll windows:4 windows x86 arch:x86

4e96b197ce8b5dfcf3e0d7a86735d74b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
GetSystemTime
WritePrivateProfileStringA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
TerminateThread
CloseHandle
WaitForMultipleObjects
CreateEventA
GlobalFree
SetLastError
GetLastError
WaitForSingleObject
DeleteFileA

ws2_32

gethostbyname
inet_addr
getservbyname
htons
gethostbyaddr
ntohs
getservbyport
WSACleanup
WSAStartup
WSACreateEvent
WSAGetLastError
socket
bind
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
send
WSAResetEvent
recv
connect
closesocket
getsockopt
setsockopt
htonl
inet_ntoa
WSAEventSelect
WSASetLastError

wininet

InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA

msvcp60

?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?_Xlen@std@@YAXXZ
?_Xran@std@@YAXXZ
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcrt

strtoul
fputc
_errno
_fdopen
fprintf
ftell
_stricmp
_strnicmp
_itoa
_adjust_fdiv
malloc
_initterm
_onexit
__dllonexit
fwrite
fopen
fread
fclose
time
srand
rand
strncmp
_ismbcspace
_mbschr
_mbscmp
atoi
_mbsrchr
__CxxFrameHandler
sprintf
??2@YAPAXI@Z
free
strncpy
calloc
strchr
_beginthreadex
memmove
strstr

Exports

Exports

XLGetHostByName
XLHttpAddRequestHeaders
XLHttpEndRequest
XLHttpOpenRequest
XLHttpQueryInfo
XLHttpSendRequest
XLNetCloseHandle
XLNetConnect
XLNetOpen
XLNetOpenUrl
XLNetQueryOption
XLNetReadFile
XLNetSetOption
XLNetWriteFile
XLSktAttach
XLSktClose
XLSktConnect
XLSktConnectEx
XLSktGetOpt
XLSktRecv
XLSktSend
XLSktSetOpt
XLSktSetProxy
XLSktSocket
XLUnZip
XLZip

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLSafe/RMFScan.dll
.dll windows:4 windows x86 arch:x86

3e0ce9a9e7a68903b3278ad495a907ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateEventW
CloseHandle
TerminateThread
WaitForSingleObject
SetEvent
lstrcpyW
ResetEvent
GetFileSize
CreateFileW
WriteFile
SetFilePointer
ReadFile

shlwapi

PathFileExistsW

msvcrt

_beginthreadex
??3@YAXPAX@Z
__CxxFrameHandler
??2@YAPAXI@Z
free
_initterm
malloc
_adjust_fdiv

ws2_32

ntohl
ntohs

Exports

Exports

CreateScanEngine

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 831B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLSafe/SafeInfo.dll
.dll regsvr32 windows:4 windows x86 arch:x86

1d2aa51bc4cc9cf9d9a66873e6ceeb60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\safe\trunk\src\client\WebThunderSafe\SafeInfo\Release\SafeInfo.pdb

Imports

kernel32

RaiseException
InitializeCriticalSection
DeleteCriticalSection
GetLastError
lstrcmpiW
lstrcpynW
LeaveCriticalSection
InterlockedIncrement
EnterCriticalSection
InterlockedDecrement
lstrlenA
FreeLibrary
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
DisableThreadLibraryCalls
lstrcatW
lstrcpyW
FindResourceExW
CreateEventW
WaitForSingleObject
SetEvent
ResetEvent
ResumeThread
CloseHandle
GetPrivateProfileIntW
GetPrivateProfileStringW
GetProcAddress
LoadLibraryW
SetThreadPriority
GetCurrentThread
LoadLibraryA
WriteFile
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
LockResource
InterlockedExchange
FlushFileBuffers
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
UnhandledExceptionFilter
IsBadReadPtr
GetCurrentProcess
TerminateProcess
GetModuleHandleA
TlsGetValue
TlsSetValue
TlsFree
SetStdHandle
GetStringTypeW
GetStringTypeA
SetLastError
LCMapStringW
LCMapStringA
SetFilePointer
GetCPInfo
GetOEMCP
IsBadCodePtr
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
ExitProcess
RtlUnwind
ExitThread
GetCurrentThreadId
CreateThread
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCommandLineA
HeapCreate
VirtualFree
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
SetUnhandledExceptionFilter
TlsAlloc

user32

PeekMessageW
MsgWaitForMultipleObjectsEx
PostThreadMessageW
CharNextW

advapi32

RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyExW

ole32

StringFromGUID2
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance

oleaut32

SysFreeString
VarUI4FromStr
SysAllocString
RegisterTypeLi
LoadTypeLi
SysAllocStringLen
UnRegisterTypeLi

shlwapi

PathCombineW
StrCpyNW
PathFindExtensionW

ws2_32

WSAGetLastError
connect
socket
WSAEventSelect
WSASetLastError
WSAWaitForMultipleEvents
WSAEnumNetworkEvents
recv
closesocket
send
inet_addr
gethostbyname
gethostbyaddr
htons
WSACreateEvent
WSAStartup

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XLStatistic/XLStatisticAddin.dll
.dll regsvr32 windows:4 windows x86 arch:x86

ca08127b136ae977b81558ef12ea2413

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetModuleHandleA
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetProcessVersion
GetCPInfo
GetOEMCP
RtlUnwind
RaiseException
GetCommandLineA
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
HeapSize
HeapReAlloc
GetACP
WritePrivateProfileStringA
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetStdHandle
GlobalFlags
SetLastError
GetVersion
lstrcatA
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
LocalAlloc
LocalFree
IsBadReadPtr
IsBadWritePtr
GetShortPathNameA
lstrcpynA
lstrcpyA
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
GetLastError
MultiByteToWideChar
lstrlenA
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
TerminateThread
CloseHandle
CreateEventA
CreateThread
InitializeCriticalSection
LoadLibraryA
GetProcAddress
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
Sleep
PulseEvent
WaitForMultipleObjects
lstrlenW
WideCharToMultiByte

user32

GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconA
LoadCursorA
GetSysColorBrush
LoadStringA
DestroyIcon
DestroyMenu
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
GetMenuItemID
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetMenuItemCount
GetWindowTextA
SetWindowTextA
ClientToScreen
GetWindow
GetDlgCtrlID
PtInRect
GetClassNameA
UnregisterClassA
UnhookWindowsHookEx
GetSystemMetrics
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
EnableWindow
SetCursor
SendMessageA
PostMessageA
DestroyWindow
PostQuitMessage
wsprintfA
GetWindowRect

gdi32

GetDeviceCaps
GetClipBox
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
DeleteDC
DeleteObject
CreateBitmap

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegQueryValueA
RegSetValueA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegOpenKeyA
RegCloseKey

shell32

ExtractIconA

comctl32

ord17

ole32

CoRegisterClassObject
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree
CoRevokeClassObject

oleaut32

SysAllocString
VariantClear
SysStringByteLen
SysStringLen
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
OnConnection
OnDisconnection
ResetServer

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
al.dll
.dll regsvr32 windows:4 windows x86 arch:x86

daebcebd13ee9e21b0b812d6762e2160

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
HeapDestroy
DisableThreadLibraryCalls
lstrcpyA
lstrcatA
WideCharToMultiByte
FreeLibrary
GetProcAddress
LoadLibraryA
CreateEventA
GetShortPathNameA
ResetEvent
SetEvent
WaitForSingleObject
WaitForMultipleObjects
GetTickCount
GetLastError
GetLocalTime
Sleep
GlobalMemoryStatus
lstrlenA
MultiByteToWideChar
lstrlenW
InterlockedIncrement
EnterCriticalSection
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionA
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetModuleFileNameA
InterlockedDecrement
CloseHandle
VirtualAlloc
VirtualFree
GetSystemInfo
GetSystemDirectoryA
GetPrivateProfileStringA
GetVolumeInformationA
CreateDirectoryA
GetFileAttributesA
DeleteFileA
MoveFileA
FindFirstFileA
FindClose
FlushFileBuffers
GetFileSize
SetEndOfFile
SetFilePointer
ReadFile
WriteFile
CreateFileA
GetCurrentThreadId
RaiseException
CreateThread
WritePrivateProfileStringA
GetDiskFreeSpaceA
GetSystemDefaultLangID
GetVersionExA

user32

CharNextA
GetSystemMetrics

ole32

CoCreateInstance

oleaut32

LoadTypeLi
SysAllocString
RegisterTypeLi
SysFreeString

stlport_vc646

?_M_decrement@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_Rebalance@?$_Rb_global@_N@_STL@@SAXPAU_Rb_tree_node_base@2@AAPAU32@@Z
?_M_compare@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@SAHPBD000@Z
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEPADPAD0@Z
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD0@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?_M_throw_out_of_range@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABUforward_iterator_tag@2@@Z
??_8?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@7B@
??0?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@IAE@XZ
??0?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??_7?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@6B@
?init@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@IAEXPAV?$basic_streambuf@DV?$char_traits@D@_STL@@@2@@Z
?open@?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAEPAV12@PBDH@Z
?clear@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?_M_put_char@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXD@Z
?_M_put_nowiden@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBD@Z
?put@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@D@Z
?flush@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@XZ
??0?$allocator@D@_STL@@QAE@XZ
?close@?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAEPAV12@XZ
?_M_throw_failure@ios_base@_STL@@IAEXXZ
??0__Named_exception@_STL@@QAE@ABV01@@Z
??1?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??_D?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
?_M_deallocate@?$__node_alloc@$00$0A@@_STL@@CAXPAXI@Z
?_M_allocate@?$__node_alloc@$00$0A@@_STL@@CAPAXI@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABUforward_iterator_tag@2@@Z
??1Init@ios_base@_STL@@QAE@XZ
??0Init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??0_Loc_init@ios_base@_STL@@QAE@XZ
?what@__Named_exception@_STL@@UBEPBDXZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
?_M_assign_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?_M_deallocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXXZ
?get_allocator@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$allocator@D@2@XZ
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
?deallocate@?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAEXPADI@Z
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??1?$allocator@D@_STL@@QAE@XZ
??1?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@XZ
??0logic_error@_STL@@QAE@ABV01@@Z
??1logic_error@_STL@@UAE@XZ
??_7logic_error@_STL@@6B@
??0__Named_exception@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??1?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??0runtime_error@_STL@@QAE@ABV01@@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ID@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD0ABUforward_iterator_tag@2@@Z
?rfind@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
??_D?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
??1ios_base@_STL@@UAE@XZ
??_7?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@6B@
??1?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
?str@?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
?replace@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0PBD1ABUrandom_access_iterator_tag@2@@Z
?_M_throw_length_error@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?find_first_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??1?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?_M_handle_exception@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
??1locale@_STL@@QAE@XZ
?_M_use_facet@locale@_STL@@QBEPAVfacet@12@ABVid@12@@Z
?id@?$num_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@2V0locale@2@A
?getloc@ios_base@_STL@@QBE?AVlocale@2@XZ
??1runtime_error@_STL@@UAE@XZ
?_M_list@?$_Stl_prime@_N@_STL@@2QBIB
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD@Z
?_M_check_exception_mask@ios_base@_STL@@IAEXXZ
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABU__false_type@2@@Z
?_M_allocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXI@Z
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@PAD@Z
?deallocate@?$allocator@D@_STL@@QAEXPADI@Z
?_Rebalance_for_erase@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@AAPAU32@11@Z
?_M_increment@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z

ws2_32

gethostname
WSAIoctl
WSASocketA
ntohs
WSAEventSelect
socket
ioctlsocket
inet_addr
gethostbyname
htons
WSAWaitForMultipleEvents
WSAGetLastError
connect
ntohl
sendto
recvfrom
closesocket
recv
inet_ntoa

iphlpapi

GetIpAddrTable
SendARP
GetAdaptersInfo
GetTcpTable

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

msvcrt

_itoa
_adjust_fdiv
_initterm
_onexit
__dllonexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_except_handler3
_strtime
_strdate
__RTtypeid
?name@type_info@@QBEPBDXZ
strtoul
strtol
_errno
_snprintf
_atoi64
atol
_ui64toa
_ultoa
_i64toa
time
srand
rand
_unlink
_ftol
sprintf
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
malloc
free
printf
_purecall
_getpid
??0exception@@QAE@ABV0@@Z
_CxxThrowException
memmove
__CxxFrameHandler
??2@YAPAXI@Z
memcpy

advapi32

LockServiceDatabase
RegQueryValueExA
RegOpenKeyA
RegSetValueExA
RegCreateKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CloseServiceHandle
UnlockServiceDatabase
OpenSCManagerA
GetUserNameA
RegCloseKey

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 276KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
asyn_dns.dll
.dll windows:4 windows x86 arch:x86

957f94aaadefaa504af46b2c983e8589

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
WritePrivateProfileStringA
CreateThread
GetCurrentThreadId
WaitForSingleObject
FreeLibrary
GetProcAddress
LoadLibraryA
FindFirstFileA
CreateEventA
ResetEvent
SetWaitableTimer
CreateWaitableTimerA
CancelWaitableTimer
GetLastError
FindClose
GetVersionExA
GetWindowsDirectoryA
GetTickCount
SetEvent
PostQueuedCompletionStatus
InitializeCriticalSection
QueueUserAPC
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetSystemDirectoryA
DisableThreadLibraryCalls
GetOverlappedResult
RaiseException
GetModuleHandleA
GetModuleFileNameA

ws2_32

sendto
WSAGetOverlappedResult
inet_ntoa
WSASetLastError
htonl
WSAGetLastError
gethostbyname
getservbyname
htons
gethostbyaddr
ntohs
getservbyport
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
inet_addr
recvfrom
WSAEventSelect
WSACreateEvent
socket
WSACloseEvent
closesocket

iphlpapi

GetNetworkParams

stlport_vc646

??0Init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??0_Loc_init@ios_base@_STL@@QAE@XZ
?_M_allocate@?$__node_alloc@$00$0A@@_STL@@CAPAXI@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABUforward_iterator_tag@2@@Z
?_M_deallocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXXZ
??1Init@ios_base@_STL@@QAE@XZ
?substr@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV12@II@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
?_M_deallocate@?$__node_alloc@$00$0A@@_STL@@CAXPAXI@Z
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
??1?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
??1?$allocator@D@_STL@@QAE@XZ
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
?deallocate@?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAEXPADI@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABUforward_iterator_tag@2@@Z
?_Rebalance_for_erase@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@AAPAU32@11@Z
?_Rebalance@?$_Rb_global@_N@_STL@@SAXPAU_Rb_tree_node_base@2@AAPAU32@@Z
?_M_decrement@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_M_compare@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@SAHPBD000@Z
??0__Named_exception@_STL@@QAE@ABV01@@Z
??0runtime_error@_STL@@QAE@ABV01@@Z
?what@__Named_exception@_STL@@UBEPBDXZ
?_M_assign_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
??1runtime_error@_STL@@UAE@XZ
??_7runtime_error@_STL@@6B@
?reserve@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXI@Z
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?cout@_STL@@3V?$basic_ostream@DV?$char_traits@D@_STL@@@1@A
?cerr@_STL@@3V?$basic_ostream@DV?$char_traits@D@_STL@@@1@A
?deallocate@?$allocator@D@_STL@@QAEXPADI@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPBD0ABUforward_iterator_tag@2@@Z
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@PAD@Z
?_M_throw_out_of_range@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?find_first_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?find_first_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?_M_allocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXI@Z
??0logic_error@_STL@@QAE@ABV01@@Z
??1logic_error@_STL@@UAE@XZ
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABU__false_type@2@@Z
??_7logic_error@_STL@@6B@
??0__Named_exception@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
?get_allocator@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$allocator@D@2@XZ
?_M_increment@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
??_D?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
??1ios_base@_STL@@UAE@XZ
??_7?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@6B@
??1?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
?str@?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
?_M_put_char@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXD@Z
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
??1?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?_M_throw_failure@ios_base@_STL@@IAEXXZ
?_M_handle_exception@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
??1locale@_STL@@QAE@XZ
?_M_use_facet@locale@_STL@@QBEPAVfacet@12@ABVid@12@@Z
?id@?$num_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@2V0locale@2@A
?getloc@ios_base@_STL@@QBE?AVlocale@2@XZ
?_M_list@?$_Stl_prime@_N@_STL@@2QBIB
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEPADPAD0@Z

msvcrt

_itoa
_adjust_fdiv
malloc
_initterm
_onexit
__dllonexit
??1type_info@@UAE@XZ
__RTtypeid
?name@type_info@@QBEPBDXZ
_purecall
atol
_ultoa
_CIpow
_ftol
fopen
fread
fgetc
fclose
sprintf
strchr
__CxxFrameHandler
memmove
??2@YAPAXI@Z
_CxxThrowException
strncpy
??0exception@@QAE@ABV0@@Z
isdigit
isalpha
_strdate
_strtime
free
calloc
strtoul

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Exports

Exports

adns_cancel
adns_commit
adns_get_complete_code
adns_get_host
adns_get_ip
adns_get_ip_count
adns_get_notify_handle
asyn_dns_cancel
asyn_dns_commit
asyn_dns_init
asyn_dns_uninit

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bd.dll
.dll regsvr32 windows:4 windows x86 arch:x86

e1d3896cc1e6067b9009fc8ed952048c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcatA
WideCharToMultiByte
FreeLibrary
GetProcAddress
LoadLibraryA
InterlockedDecrement
lstrcpyA
GetPrivateProfileSectionA
GetPrivateProfileSectionNamesA
WaitForSingleObject
GetTickCount
GlobalMemoryStatus
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
HeapDestroy
GetModuleFileNameA
GetModuleHandleA
GetShortPathNameA
lstrlenW
lstrlenA
MultiByteToWideChar
InterlockedIncrement
VirtualAlloc
VirtualFree
GetSystemInfo
GetSystemDirectoryA
GetPrivateProfileStringA
GetVolumeInformationA
CreateDirectoryA
GetFileAttributesA
DeleteFileA
MoveFileA
FindFirstFileA
FindClose
FlushFileBuffers
GetFileSize
SetEndOfFile
SetFilePointer
ReadFile
WriteFile
CreateFileA
SetEvent
GetCurrentThreadId
RaiseException
ResetEvent
CreateThread
CloseHandle
CreateEventA
WritePrivateProfileStringA
GetDiskFreeSpaceA
GetSystemDefaultLangID
GetLastError
GetVersionExA

user32

CharNextA
GetSystemMetrics

ole32

CoCreateInstance

oleaut32

LoadTypeLi
SysAllocString
RegisterTypeLi
SysFreeString

stlport_vc646

??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD0@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?_M_throw_out_of_range@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABUforward_iterator_tag@2@@Z
??_8?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@7B@
??0?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@IAE@XZ
??0?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??_7?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@6B@
?init@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@IAEXPAV?$basic_streambuf@DV?$char_traits@D@_STL@@@2@@Z
?open@?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAEPAV12@PBDH@Z
?clear@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?_M_put_nowiden@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBD@Z
?_M_put_char@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXD@Z
?put@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@D@Z
?flush@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@XZ
?_M_increment@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?close@?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAEPAV12@XZ
?_M_throw_failure@ios_base@_STL@@IAEXXZ
??1?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??_7?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@6B@
??1ios_base@_STL@@UAE@XZ
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
??_D?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
?_M_deallocate@?$__node_alloc@$00$0A@@_STL@@CAXPAXI@Z
?_M_allocate@?$__node_alloc@$00$0A@@_STL@@CAPAXI@Z
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEPADPAD0@Z
??1Init@ios_base@_STL@@QAE@XZ
??0Init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??0_Loc_init@ios_base@_STL@@QAE@XZ
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
?_M_compare@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@SAHPBD000@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
?_M_assign_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?deallocate@?$allocator@D@_STL@@QAEXPADI@Z
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
?_M_deallocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXXZ
?deallocate@?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAEXPADI@Z
??1?$allocator@D@_STL@@QAE@XZ
??1?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@XZ
?_Rebalance@?$_Rb_global@_N@_STL@@SAXPAU_Rb_tree_node_base@2@AAPAU32@@Z
?_M_decrement@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
??0__Named_exception@_STL@@QAE@ABV01@@Z
??0runtime_error@_STL@@QAE@ABV01@@Z
?what@__Named_exception@_STL@@UBEPBDXZ
??1?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?_M_allocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXI@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ID@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD0ABUforward_iterator_tag@2@@Z
?rfind@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
??_D?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
??1?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
?str@?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
?replace@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0PBD1ABUrandom_access_iterator_tag@2@@Z
?_M_throw_length_error@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?find_first_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??1?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?_M_handle_exception@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
??1locale@_STL@@QAE@XZ
?_M_use_facet@locale@_STL@@QBEPAVfacet@12@ABVid@12@@Z
?id@?$num_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@2V0locale@2@A
?getloc@ios_base@_STL@@QBE?AVlocale@2@XZ
?_M_list@?$_Stl_prime@_N@_STL@@2QBIB
??0__Named_exception@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??1runtime_error@_STL@@UAE@XZ
??0logic_error@_STL@@QAE@ABV01@@Z
??1logic_error@_STL@@UAE@XZ
??_7logic_error@_STL@@6B@
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD@Z
?find_first_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@PBD@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@II@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD0@Z
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@@Z
?find_last_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?substr@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV12@II@Z
?find_last_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??_7runtime_error@_STL@@6B@
?_M_check_exception_mask@ios_base@_STL@@IAEXXZ
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@PAD@Z
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABU__false_type@2@@Z
?get_allocator@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$allocator@D@2@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABUforward_iterator_tag@2@@Z

ws2_32

connect
send
setsockopt
recv
closesocket
ntohs
WSASocketA
WSAIoctl
gethostname
htons
socket
WSAGetLastError
inet_addr
gethostbyname
inet_ntoa

iphlpapi

GetAdaptersInfo

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

msvcrt

_itoa
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_except_handler3
srand
rand
isspace
isalpha
isdigit
_strtime
_strdate
__RTtypeid
?name@type_info@@QBEPBDXZ
strtoul
strtol
_errno
_snprintf
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_atoi64
atol
_ui64toa
_ultoa
_i64toa
strstr
sscanf
sprintf
_getpid
??0exception@@QAE@ABV0@@Z
time
_purecall
_CxxThrowException
memmove
??3@YAXPAX@Z
__CxxFrameHandler
??2@YAPAXI@Z
memcpy

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyA
RegCreateKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CloseServiceHandle
UnlockServiceDatabase
LockServiceDatabase
OpenSCManagerA
GetUserNameA
RegCloseKey

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 188KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
download-complete.wav
download_interface.dll
.dll regsvr32 windows:4 windows x86 arch:x86

31c44741119b6ddbf66c0dbc11c14bf6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

stlport_vc646

?flush@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@XZ
??0?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_istream@DV?$char_traits@D@_STL@@@1@_N@Z
??0?$basic_istringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@H@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIABV12@I@Z
?get@?$num_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@QBE?AV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@2@V32@0AAVios_base@2@AAHAAG@Z
?precision@ios_base@_STL@@QAEHH@Z
?setf@ios_base@_STL@@QAEHHH@Z
??1?$basic_istringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
?write@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@PBDH@Z
?width@ios_base@_STL@@QAEHH@Z
?sputc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHD@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ID@Z
?allocate@?$__node_alloc@$00$0A@@_STL@@SAPAXI@Z
?c_str@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEPBDXZ
??1?$_STLP_alloc_proxy@PAGGV?$allocator@G@_STL@@@_STL@@QAE@XZ
?deallocate@?$allocator@G@_STL@@QAEXPAGI@Z
?close@?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?_Transfer@?$_List_global@_N@_STL@@SAXPAU_List_node_base@2@00@Z
?length@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIXZ
?empty@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE_NXZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@IDABV?$allocator@D@1@@Z
??Y?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@PBD@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDI@Z
?size@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIXZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@U_String_reserve_t@1@IABV?$allocator@D@1@@Z
??1strstream@_STL@@UAE@XZ
?rdbuf@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEPAV?$basic_streambuf@DV?$char_traits@D@_STL@@@2@PAV32@@Z
??0strstream@_STL@@QAE@PADHH@Z
?imbue@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@MAEXABVlocale@2@@Z
?overflow@strstreambuf@_STL@@MAEHH@Z
?_M_xsputnc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@MAEHDH@Z
?xsputn@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@MAEHPBDH@Z
?pbackfail@strstreambuf@_STL@@MAEHH@Z
?uflow@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@MAEHXZ
?underflow@strstreambuf@_STL@@MAEHXZ
?xsgetn@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@MAEHPADH@Z
?showmanyc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@MAEHXZ
?sync@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@MAEHXZ
?seekpos@strstreambuf@_STL@@MAE?AV?$fpos@H@2@V32@H@Z
?seekoff@strstreambuf@_STL@@MAE?AV?$fpos@H@2@JHH@Z
?setbuf@strstreambuf@_STL@@MAEPAV?$basic_streambuf@DV?$char_traits@D@_STL@@@2@PADH@Z
??1strstreambuf@_STL@@UAE@XZ
??0strstreambuf@_STL@@QAE@PADH0@Z
?setp@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@IAEXPAD0@Z
?setg@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@IAEXPAD00@Z
??0strstream@_STL@@QAE@XZ
??0strstreambuf@_STL@@QAE@H@Z
?str@strstream@_STL@@QAEPADXZ
?pcount@strstream@_STL@@QBEHXZ
?freeze@strstream@_STL@@QAEX_N@Z
?good@ios_base@_STL@@QBE_NXZ
?setstate@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEID@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PAD0@Z
?begin@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEPADXZ
??Y?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@D@Z
??Y?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@G@Z
?close@?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?open@?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBDH@Z
??0?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?open@?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBDH@Z
??0?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??A?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAADI@Z
?gptr@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@IBEPADXZ
?egptr@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@IBEPADXZ
?resize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXID@Z
??A?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEABDI@Z
??7ios_base@_STL@@QBE_NXZ
?data@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEPBDXZ
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBDI@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD@Z
?find_last_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDI@Z
?rfind@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDI@Z
?sputn@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHPBDH@Z
?deallocate@?$allocator@PAX@_STL@@QAEXPAPAXI@Z
??_Distrstream@_STL@@QAEXXZ
??0istrstream@_STL@@QAE@PADH@Z
?sgetn@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHPADH@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAH@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@H@Z
??0istrstream@_STL@@QAE@PBDH@Z
?freeze@ostrstream@_STL@@QAEX_N@Z
?str@ostrstream@_STL@@QAEPADXZ
??_Dostrstream@_STL@@QAEXXZ
?pcount@ostrstream@_STL@@QBEHXZ
?init@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@IAEXPAV?$basic_streambuf@DV?$char_traits@D@_STL@@@2@@Z
?eof@ios_base@_STL@@QBE_NXZ
??1?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAI@Z
??0runtime_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??1?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@XZ
??1?$_String_base@GV?$allocator@G@_STL@@@_STL@@QAE@XZ
?deallocate@?$_STLP_alloc_proxy@PAGGV?$allocator@G@_STL@@@_STL@@QAEXPAGI@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@XZ
??1?$allocator@G@_STL@@QAE@XZ
?append@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@AAEAAV12@PBG0ABUforward_iterator_tag@2@@Z
?append@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@AAEAAV12@PAG0ABUforward_iterator_tag@2@@Z
?_M_append_dispatch@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@AAEAAV12@PBG0ABU__false_type@2@@Z
?sbumpc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHXZ
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@PBGABV?$allocator@G@1@@Z
?erase@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEPAGPAG0@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@ABV01@@Z
?reserve@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEXI@Z
?_M_allocate_block@?$_String_base@GV?$allocator@G@_STL@@@_STL@@QAEXI@Z
??0?$_STLP_alloc_proxy@PAGGV?$allocator@G@_STL@@@_STL@@QAE@ABV?$allocator@G@1@PAG@Z
?get_allocator@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QBE?AV?$allocator@G@2@XZ
?assign@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEAAV12@PBG0@Z
??4?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEAAV01@ABV01@@Z
?_M_append_dispatch@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@AAEAAV12@PAG0ABU__false_type@2@@Z
?_M_deallocate_block@?$_String_base@GV?$allocator@G@_STL@@@_STL@@QAEXXZ
?_M_range_initialize@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@AAEXPAG0@Z
?push_back@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEXG@Z
?insert@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD00ABUforward_iterator_tag@2@@Z
?close@?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAEPAV12@XZ
?_M_check_exception_mask@ios_base@_STL@@IAEXXZ
??1?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??_D?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?_M_decrement@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_Rebalance@?$_Rb_global@_N@_STL@@SAXPAU_Rb_tree_node_base@2@AAPAU32@@Z
?_M_increment@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_M_compare@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@SAHPBD000@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?getloc@ios_base@_STL@@QBE?AVlocale@2@XZ
?id@?$num_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@2V0locale@2@A
?_M_use_facet@locale@_STL@@QBEPAVfacet@12@ABVid@12@@Z
??1locale@_STL@@QAE@XZ
?_M_handle_exception@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?_M_throw_failure@ios_base@_STL@@IAEXXZ
??1?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?find_first_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?_M_throw_length_error@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?replace@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0PBD1ABUrandom_access_iterator_tag@2@@Z
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
?_M_put_char@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXD@Z
?str@?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
??1?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
??_7?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@6B@
??1ios_base@_STL@@UAE@XZ
??_D?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
?rfind@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD0ABUforward_iterator_tag@2@@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ID@Z
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEPADPAD0@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?what@__Named_exception@_STL@@UBEPBDXZ
??0runtime_error@_STL@@QAE@ABV01@@Z
?seekg@?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@JH@Z
?tellg@?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAE?AV?$fpos@H@2@XZ
?read@?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@PADH@Z
??_7?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@6B@
??1?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??_D?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?_M_inside@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@ABE_NPAD@Z
?_M_move@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD00@Z
?_M_insert_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD00ABU__false_type@2@@Z
?_M_copy@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD00@Z
?replace@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD000ABUforward_iterator_tag@2@@Z
?replace@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD000ABUrandom_access_iterator_tag@2@@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@PBX@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@_N@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@I@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@N@Z
?sputbackc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHD@Z
??_D?$basic_istringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
??_8?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@7B@
??0?$allocator@D@_STL@@QAE@XZ
?_M_list@?$_Stl_prime@_N@_STL@@2QBIB
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
??0__Named_exception@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??_7logic_error@_STL@@6B@
??1logic_error@_STL@@UAE@XZ
??0logic_error@_STL@@QAE@ABV01@@Z
??0__Named_exception@_STL@@QAE@ABV01@@Z
?get_allocator@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$allocator@D@2@XZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABUforward_iterator_tag@2@@Z
?_M_allocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXI@Z
??1Init@ios_base@_STL@@QAE@XZ
??0Init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??0_Loc_init@ios_base@_STL@@QAE@XZ
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
?_M_assign_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD0@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABUforward_iterator_tag@2@@Z
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABU__false_type@2@@Z
?_M_allocate@?$__node_alloc@$00$0A@@_STL@@CAPAXI@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@K@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDIABV?$allocator@D@1@@Z
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@I@Z
??0?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
?str@?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
??1?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
??_D?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
?_M_deallocate@?$__node_alloc@$00$0A@@_STL@@CAXPAXI@Z
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@PAD@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPBD0ABUforward_iterator_tag@2@@Z
?rfind@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?substr@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV12@II@Z
?_M_throw_out_of_range@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?find_last_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
?deallocate@?$allocator@D@_STL@@QAEXPADI@Z
??1?$allocator@D@_STL@@QAE@XZ
??1?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@XZ
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPBD0@Z
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
?reserve@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXI@Z
?find_first_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
??0?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??_7?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@6B@
?_M_assign_dispatch@?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@AAEAAV12@PAG0ABU__false_type@2@@Z
?_M_open@_Filebuf_base@_STL@@QAE_NPBDH@Z
?_M_insert_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPADPBD1ABU__false_type@2@@Z
?assign@?$char_traits@D@_STL@@SAXAADABD@Z
?end@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEPADXZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PAD0@Z
?push_back@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXD@Z
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@II@Z
?__stl_throw_out_of_range@_STL@@YAXPBD@Z
?_M_clear@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@IAEXXZ
?_M_set@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@IAEXPAPAX00@Z
?_M_insert_overflow@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@IAEXPAPAXABQAXABU__true_type@2@I_N@Z
??1?$_STLP_alloc_proxy@PAPAXPAXV?$allocator@PAX@_STL@@@_STL@@QAE@XZ
??0?$_Vector_base@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@ABV?$allocator@PAX@1@@Z
?erase@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAEPAPAXPAPAX0@Z
?_M_fill_insert@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAEXPAPAXIABQAX@Z
??1?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@XZ
??0logic_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
?_M_skip_whitespace@?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEX_N@Z
?id@?$num_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@2V0locale@2@A
??0?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
?rdbuf@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QBEPAV?$basic_streambuf@DV?$char_traits@D@_STL@@@2@XZ
?get@?$num_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@QBE?AV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@2@V32@0AAVios_base@2@AAHAAJ@Z
??1?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??0?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_ostream@DV?$char_traits@D@_STL@@@1@@Z
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@H@Z
?_M_formatted_get@?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEXAAD@Z
??1?$allocator@PAX@_STL@@QAE@XZ
?_Rebalance_for_erase@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@AAPAU32@11@Z
??_7runtime_error@_STL@@6B@
??1runtime_error@_STL@@UAE@XZ
?insert@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@IABV12@@Z
?find_last_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD0@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@II@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@PBD@Z
?find_first_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??_8?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@7B@
??0?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@IAE@XZ
?open@?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAEPAV12@PBDH@Z
?clear@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?_M_put_nowiden@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBD@Z
??0?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?peek@?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEHXZ
??_7?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@6B@
??0ostrstream@_STL@@QAE@XZ
?put@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@D@Z
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
?deallocate@?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAEXPADI@Z
?clear@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
?_M_deallocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXXZ
?seekg@?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@V?$fpos@H@2@@Z
??1?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
?allocate@?$_STLP_alloc_proxy@PAGGV?$allocator@G@_STL@@@_STL@@QAEPAGI@Z

kernel32

WriteFile
CreateFileA
ReadFile
CreateProcessA
GetProcessHeap
HeapAlloc
HeapFree
OutputDebugStringA
RaiseException
WriteFileGather
ReadFileScatter
lstrcatA
lstrcpyA
DisableThreadLibraryCalls
HeapDestroy
GetShortPathNameA
lstrlenW
IsBadCodePtr
VirtualQuery
InterlockedDecrement
lstrlenA
InterlockedIncrement
LoadLibraryA
FreeLibrary
GetProcAddress
lstrcpynA
SetFileAttributesA
CopyFileA
InitializeCriticalSection
DeleteCriticalSection
GetLastError
LeaveCriticalSection
EnterCriticalSection
WaitForMultipleObjects
ResetEvent
FindClose
FindNextFileA
FindFirstFileA
RemoveDirectoryA
QueryPerformanceFrequency
QueryPerformanceCounter
CreateWaitableTimerA
SetWaitableTimer
GetSystemTime
GetFileAttributesExA
CompareFileTime
ReleaseMutex
CreateMutexA
GetLongPathNameA
CreateThread
Sleep
QueueUserAPC
SetFilePointer
SetEndOfFile
GetFileSize
FlushFileBuffers
MoveFileA
DeleteFileA
GetFileAttributesA
CreateDirectoryA
GetVersionExA
GetModuleFileNameA
GetModuleHandleA
GetDiskFreeSpaceA
GetPrivateProfileSectionA
GetPrivateProfileSectionNamesA
WritePrivateProfileStringA
GetSystemInfo
VirtualFree
VirtualAlloc
WideCharToMultiByte
MultiByteToWideChar
GetVolumeInformationA
GetPrivateProfileStringA
GetSystemDirectoryA
GetTickCount
WaitForSingleObject
SetEvent
CreateEventA
GetOverlappedResult
WaitForMultipleObjectsEx
GetCurrentThreadId
CloseHandle
CreateIoCompletionPort
CancelIo
SetLastError
GetQueuedCompletionStatus
WaitForSingleObjectEx
PostQueuedCompletionStatus

ole32

CoCreateGuid
IIDFromString
CoCreateInstance
CoInitializeEx
CoUninitialize
CLSIDFromString

oleaut32

SysAllocString
RegisterTypeLi
SysFreeString
LoadTypeLi

ws2_32

accept
WSAWaitForMultipleEvents
getsockname
WSAEnumNetworkEvents
WSAEventSelect
htons
connect
WSAGetOverlappedResult
closesocket
WSASocketA
WSAIoctl
inet_addr
gethostname
WSAGetLastError
gethostbyname
inet_ntoa
shutdown
WSARecv
WSASend
setsockopt
socket
listen
bind
htonl
getpeername
ntohl
sendto
recvfrom
WSACreateEvent
WSACloseEvent
WSAStartup
WSACleanup
WSARecvFrom
WSASendTo
ioctlsocket
ntohs

asyn_dns

ord2
ord4
ord3
ord1

msvcp60

??0bad_alloc@std@@QAE@ABV01@@Z
??_7bad_alloc@std@@6B@
??0bad_alloc@std@@QAE@PBD@Z
??1bad_alloc@std@@UAE@XZ

msvcrt

tolower
strncmp
vsprintf
abort
printf
ceil
free
malloc
fclose
fread
fopen
?what@exception@@UBEPBDXZ
fflush
fwrite
fseek
_close
_read
_open
strrchr
strtok
_strdate
_strtime
memcpy
strlen
memset
strcmp
ftell
sqrt
toupper
memcmp
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
_stricmp
_itoa
_ultow
swprintf
realloc
exit
_mbsnbicmp
_mbsstr
_strnicmp
??1type_info@@UAE@XZ
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
_initterm
_adjust_fdiv
??0exception@@QAE@XZ
__RTtypeid
?name@type_info@@QBEPBDXZ
__RTDynamicCast
_purecall
atof
_ftol
_strlwr
rand
isspace
isalpha
isdigit
_snprintf
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_atoi64
atol
_ui64toa
_ultoa
_i64toa
sprintf
strncpy
??0exception@@QAE@ABV0@@Z
_putenv
time
srand
_CxxThrowException
memmove
__CxxFrameHandler
??2@YAPAXI@Z
atoi
strchr
strstr
_mbsicmp
sscanf
_CIpow

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

wininet

InternetGetCookieA
InternetQueryOptionA

user32

GetDesktopWindow
SetWindowTextA
GetDlgItem
FindWindowA
CharNextA

advapi32

CryptGenRandom
CryptReleaseContext
CryptAcquireContextA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl

shell32

ShellExecuteA

mswsock

GetAcceptExSockaddrs
AcceptEx

iphlpapi

GetNetworkParams
GetAdaptersInfo
SendARP

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
add_emule_server
add_emule_server_byLink
cancel_speed_limit
close_bt_reimport_task
connect_emule_server
create_continued_bt_task
create_continued_emule_task
create_continued_task
create_ed2k_link
create_new_bt_task
create_new_emule_task
create_new_task
create_predownload_task
create_upload_bt_task
create_upload_emule_task
debug_p2p_pipe_choke_remote
debug_p2p_pipe_query_info
debug_p2p_pipe_release_info
debug_p2p_pipe_simulate_remote_choke_local
delete_emule_server
delete_emule_temp_files
delete_task
delete_tempfile
emule_tempfile_reimport
erase_emule_tempfile_reimport_result
fetch_server_connection_info
fix_pre_download_parameter
fix_task_parameter
get_bt_cfg_file_list
get_bt_data_file_list
get_bt_file_id
get_bt_file_info
get_bt_peer_info_list
get_bt_reimport_progress
get_bt_reimport_root_path
get_bt_task_info
get_client_hash
get_connect_period
get_connector_parameter
get_credits_file
get_crypt_option
get_current_upload_speed
get_dht_status
get_download_bandwidth
get_dspider_ctrl_flag
get_ed2k_server_link
get_emule_hub_host
get_emule_hub_port
get_emule_kad_port
get_emule_listen_port
get_emule_peer_info_list
get_emule_server_count
get_emule_server_info
get_emule_server_list
get_emule_status
get_emule_task_AICH_hash
get_emule_task_bcid
get_emule_task_cid
get_emule_task_fileid
get_emule_task_gcid
get_emule_task_info
get_emule_tempfile_reimport_result
get_enrollsp1_info
get_failure_detail
get_final_filename
get_global_connection_limit
get_kademlia_node_hash
get_kadnode_file
get_last_modified
get_mod_version
get_nickname
get_origin_readbytes
get_peer_id
get_play_port
get_reconnect_period
get_reimport_ed2k_link
get_reimport_file_name
get_secure_file
get_secureident_option
get_server_list_file
get_small_file_size
get_source_search_period
get_source_upmost
get_task_gcid
get_task_url
get_temp_file_list
get_thunder_peer_extern_credit
get_torrent_file_name
get_upnp_status
get_url_str
hold_connect_ranking
import_clients_credit
init
is_AICH_enable
is_bt_tempfile_exist
is_compress_enable
is_ed2k_enable
is_emule_temp_file_exist
is_kad_enable
is_nated
is_p2sp_enable
is_protocol_forbidded
is_registered
is_source_exchange_enable
is_support_dispatch_strategy
is_support_schema
is_tempfile_exist
notify_del_uncomp_task
notify_hub_bt_deleted
notify_hub_bt_moved
notify_hub_deleted
notify_hub_moved
on_playing
parse_ed2k_server_url
parse_ed2k_url
parse_filename
parse_seed_file
parse_url
query_new_connect_info
query_part_cid
query_resource_info
query_task_info
read_ie_proxy
register_client
release_bt_data_file_list
release_bt_peer_info_list
release_ed2k_link
release_peer_info_list
release_seed_file_info
release_temp_file_list
report_crack
report_crack_cancel
reset_bt_task_need_download_file
sametime_connecting_peers
set_AICH_enable
set_added_resource_count
set_bt_file_download_order
set_bt_task_stat_para
set_client_hash
set_compress_enable
set_connector_parameter
set_cookie
set_crypt_option
set_cur_language
set_dht_switch
set_dispatch_strategy
set_ed2k_enable
set_emule_crypt_option
set_emule_hub_host
set_emule_hub_port
set_emule_kad_port
set_emule_listen_port
set_emule_server_priority
set_emule_switch
set_emule_task_stat_para
set_forbid_p2p_service
set_global_connection_limit
set_hub_proxy
set_iobuffer_size
set_kad_enable
set_kademlia_node_hash
set_last_modified
set_listen_port
set_nichname
set_p2sp_enable
set_product_identifier
set_proxy_info
set_recommend_info
set_report_strategy
set_res_query_cid
set_res_use_strategy
set_retry_strategy
set_sametime_connecting_peers
set_secureident_option
set_source_exchange_enable
set_source_upmost
set_speed_limit
set_stat_ref_url
set_task_type
set_thread_num
set_thunder_peer_extern_credit
set_upload_speed_limit
set_upnp_switch
set_user_name
set_xl_file_system_bufsize
set_xl_file_system_flush_bufsize
start_bt_reimport_task
start_predownload_task
start_task
stop_batch_task
stop_emule_server
stop_task
uninit
update_datafile
url_info_to_str
verify_proxy

Sections

.text
Size: 4.3MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 800KB - Virtual size: 799KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 240KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 500KB - Virtual size: 497KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
historyinfo_manage.dll
.dll windows:4 windows x86 arch:x86

37b9227ca259e757c314074fdb75da51

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetSystemTime
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
InterlockedDecrement
DisableThreadLibraryCalls

msvcrt

__CxxFrameHandler
fclose
sscanf
srand
fopen
fflush
fseek
??3@YAXPAX@Z
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv
rand
??2@YAPAXI@Z
sprintf
fwrite
time
fread
_memicmp

msvcp60

??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??1_Winit@std@@QAE@XZ

Exports

Exports

add_category_to_category
add_item_to_category
adjust_sub_order
create_default_content
delete_category
delete_content
delete_item
flush_to_disk
get_category_info
get_item_info
get_parent_id
get_root_info
get_version
init
move_category
move_item
uninit
update_category_info
update_item_info
verify_data

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
kankan/IJL15.DLL
.dll windows:4 windows x86 arch:x86

43fd8fd13d2d05654de14de52b9d512d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeEnvironmentStringsA
CloseHandle
ReadFile
WriteFile
SetFilePointer
LoadLibraryA
GetProcAddress
FreeLibrary
OutputDebugStringA
GetCurrentThreadId
GetModuleFileNameA
lstrlenA
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
GetModuleHandleA
HeapAlloc
HeapFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
CreateFileA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
InterlockedDecrement
InterlockedIncrement
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers

Exports

Exports

ijlErrorStr
ijlFree
ijlGetLibVersion
ijlInit
ijlRead
ijlWrite

Sections

.text
Size: 312KB - Virtual size: 309KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
kankan/PPlayer.dll
.dll regsvr32 windows:4 windows x86 arch:x86

031a0c119ddd43458308d814dc71f167

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\work\PPlayer2\Release\PPlayer.pdb

Imports

kernel32

ExitProcess
MapViewOfFile
CreateFileMappingW
CreateMutexW
TlsAlloc
TerminateThread
CreateThread
lstrlenW
lstrcpyW
lstrcmpiW
MulDiv
lstrcpynW
SetLastError
InterlockedIncrement
FreeLibrary
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
lstrlenA
LockResource
lstrcmpW
GlobalHandle
Sleep
CreateDirectoryW
CreateEventW
SetEvent
ResetEvent
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
SetFilePointer
FindResourceExW
GetProcAddress
LoadLibraryW
SetCurrentDirectoryW
GetCurrentDirectoryW
WritePrivateProfileStringW
MoveFileW
CreateFileA
ReadFile
GetFileSize
MoveFileA
DeleteFileA
lstrcatW
CopyFileW
GetFileAttributesExW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetDriveTypeA
InterlockedExchangeAdd
GetLocaleInfoW
SetStdHandle
GetOEMCP
LoadLibraryA
IsBadCodePtr
IsBadReadPtr
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentDirectoryA
GetFullPathNameW
GetTimeZoneInformation
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TerminateProcess
GetModuleHandleA
IsBadWritePtr
VirtualFree
HeapCreate
SetUnhandledExceptionFilter
GetModuleFileNameA
QueryPerformanceCounter
GetCPInfo
LCMapStringW
LCMapStringA
GetCommandLineA
GetDriveTypeW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetSystemTimeAsFileTime
GetSystemInfo
VirtualAlloc
VirtualProtect
RtlUnwind
LocalFree
HeapSize
HeapReAlloc
HeapDestroy
GetVersionExA
TlsFree
InterlockedDecrement
FindCloseChangeNotification
UnmapViewOfFile
ReleaseMutex
TlsSetValue
GetLocalTime
TlsGetValue
OutputDebugStringW
FindFirstChangeNotificationW
WaitForSingleObject
FindNextChangeNotification
GetFileAttributesW
GetPrivateProfileStringW
GetPrivateProfileStringA
GetPrivateProfileIntW
CreateFileW
WriteFile
FlushFileBuffers
CloseHandle
GetLastError
FindFirstFileW
DeleteFileW
FindNextFileW
FindClose
GetCurrentProcessId
MultiByteToWideChar
WideCharToMultiByte
GetCurrentThreadId
GetFileAttributesA
CreateDirectoryA
GetModuleFileNameW
VirtualQuery
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentProcess
FlushInstructionCache
GetTickCount
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
InterlockedExchange
EnterCriticalSection
RaiseException
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
SetEndOfFile

user32

GetCursor
SetCursor
SetClassLongW
DialogBoxParamW
DestroyCursor
FindWindowW
LoadStringW
EndDialog
CopyRect
KillTimer
CreateDialogIndirectParamW
EnumChildWindows
GetWindowTextLengthW
ModifyMenuW
AppendMenuW
DeleteMenu
GetMenuItemID
SetForegroundWindow
UnregisterClassW
SetWindowLongW
ShowWindow
GetClassInfoExW
wsprintfW
LoadCursorW
DefWindowProcW
RegisterClassExW
CreateWindowExW
GetWindowLongW
EnableMenuItem
SetTimer
LoadBitmapW
MessageBoxW
DrawTextW
FillRect
GetClientRect
ReleaseDC
GetDC
EndPaint
BeginPaint
PostMessageW
SetActiveWindow
LoadMenuW
TrackPopupMenu
GetSubMenu
UnhookWindowsHookEx
GetForegroundWindow
mouse_event
SetCursorPos
SetParent
CallNextHookEx
GetAsyncKeyState
SetWindowsHookExW
CharUpperBuffW
PostThreadMessageW
GetDialogBaseUnits
PeekMessageW
GetMessageW
DispatchMessageW
TranslateMessage
ShowCursor
TrackMouseEvent
ScreenToClient
ClientToScreen
SetLayeredWindowAttributes
CallWindowProcW
GetCursorPos
GetParent
GetSystemMetrics
GetFocus
CharNextW
PtInRect
UnionRect
GetSysColor
SetWindowPos
SetWindowRgn
OffsetRect
EqualRect
IntersectRect
DestroyWindow
IsWindow
InvalidateRect
GetKeyState
IsDialogMessageW
CopyAcceleratorTableW
GetNextDlgTabItem
GetWindow
SendMessageW
IsChild
GetDlgItem
SetFocus
SystemParametersInfoW
SendDlgItemMessageW
SetWindowContextHelpId
MapDialogRect
DestroyAcceleratorTable
GetDesktopWindow
ReleaseCapture
SetCapture
InvalidateRgn
RedrawWindow
GetClassNameW
CreateAcceleratorTableW
GetWindowTextW
SetWindowTextW
RegisterWindowMessageW

gdi32

RestoreDC
SetViewportOrgEx
SetWindowOrgEx
SetMapMode
SaveDC
LPtoDP
GetDeviceCaps
CreateDCW
CreateRectRgnIndirect
DeleteMetaFile
CloseMetaFile
SetWindowExtEx
CreateMetaFileW
Rectangle
CreateSolidBrush
GetTextExtentPoint32W
CreateFontW
TextOutW
GetTextExtentPointW
LineTo
MoveToEx
CreatePen
GetTextMetricsW
StretchBlt
GetObjectW
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontIndirectW
SelectObject
GetStockObject
DeleteDC
SetBkMode
SetTextColor
CreateBrushIndirect
SetBkColor
DeleteObject
BitBlt

comdlg32

GetSaveFileNameW

advapi32

RegQueryValueW
RegOpenKeyW
RegQueryValueExW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyW

shell32

SHGetFolderPathW
ShellExecuteW
SHGetPathFromIDListW
SHBrowseForFolderW

ole32

CoInitialize
CoUninitialize
OleUninitialize
OleInitialize
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
StringFromGUID2
CreateStreamOnHGlobal
OleSaveToStream
WriteClassStm
OleLoadFromStream
CreateDataAdviseHolder
OleRegGetMiscStatus
CreateOleAdviseHolder
OleRegGetUserType
OleRegEnumVerbs
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc

oleaut32

RegisterTypeLi
UnRegisterTypeLi
VarBstrCmp
OleTranslateColor
OleCreateFontIndirect
SysAllocStringLen
SysStringLen
LoadTypeLi
LoadRegTypeLi
OleCreatePropertyFrame
SysAllocStringByteLen
VarUI4FromStr
VariantChangeType
SysStringByteLen
VariantClear
VariantInit
SysAllocString
SysFreeString
GetErrorInfo

shlwapi

PathFileExistsW
PathFindExtensionW
StrStrIW
PathFindFileNameW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

ws2_32

setsockopt
closesocket
recvfrom
recv
connect
send
socket
sendto
ntohl
htons
inet_addr
WSAGetLastError
select
WSAStartup
WSACleanup
ioctlsocket
htonl
gethostbyname
inet_ntoa
ntohs

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
RegisterServerDirect
UnregisterServerDirect

Sections

.text
Size: 404KB - Virtual size: 403KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
kankan/XAFilter.ax
.dll regsvr32 windows:4 windows x86 arch:x86

674830c68ee84b9a1ada4313fff60d42

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Dev\XAFilter\pdb\XAFilter.pdb

Imports

winmm

timeSetEvent
timeGetTime

shfolder

SHGetFolderPathW

ws2_32

gethostbyname
htons
sendto
htonl
WSASocketW
setsockopt
closesocket
inet_addr

kernel32

EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
WideCharToMultiByte
lstrlenW
CloseHandle
GetCurrentDirectoryW
SetCurrentDirectoryW
MultiByteToWideChar
lstrlenA
GetLastError
GetModuleFileNameA
GetVersionExW
DisableThreadLibraryCalls
lstrcpynW
InterlockedIncrement
InterlockedDecrement
CreateEventW
SetEvent
ResetEvent
WaitForMultipleObjects
ReleaseSemaphore
GetSystemInfo
VirtualFree
lstrcmpW
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
CreateSemaphoreW
VirtualAlloc
GetModuleHandleW
lstrcmpiW
InterlockedExchange
SetThreadPriority
GetThreadPriority
GetCurrentThread
GetTickCount
GlobalFree
CreateFileW
GetFileSize
GlobalAlloc
GlobalLock
GlobalUnlock
ReadFile
MulDiv
LoadResource
SizeofResource
FindResourceW
LoadLibraryExW
RaiseException
SetLastError
WaitForSingleObject
Sleep
CreateThread
FindResourceExW
OutputDebugStringA
LoadLibraryA
HeapSize
WriteFile
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
HeapCreate
HeapDestroy
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
ExitProcess
GetModuleHandleA
HeapReAlloc
RtlUnwind
GetProcessHeap
HeapAlloc
EnumSystemLocalesA
GetVersionExA
HeapFree
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
CompareStringA
CompareStringW
GetStringTypeA
GetStringTypeW
IsValidLocale
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FreeLibrary
LoadLibraryW
GetProcAddress
CopyFileW
CreateDirectoryW
GetModuleFileNameW
FindClose
FindNextFileW
DeleteFileW
FindFirstFileW
GetFileAttributesW
OutputDebugStringW
InterlockedCompareExchange
IsProcessorFeaturePresent
LockResource
GetConsoleCP
GetLocaleInfoA
GetConsoleMode
SetFilePointer
GetUserDefaultLCID
FlushInstructionCache
FlushFileBuffers
CreateFileA
GetThreadLocale
SetEndOfFile

user32

AdjustWindowRectEx
DestroyWindow
CreateWindowExW
ReleaseCapture
GetWindowLongW
CreateAcceleratorTableW
SetWindowLongW
EndPaint
GetSysColor
BeginPaint
ScreenToClient
ClientToScreen
GetClientRect
GetDlgItem
SetFocus
SetCapture
MoveWindow
RegisterClassExW
GetParent
LoadCursorW
FillRect
IsChild
GetClassInfoExW
GetFocus
InvalidateRect
DestroyAcceleratorTable
RedrawWindow
GetMenu
GetWindowTextLengthW
GetWindowTextW
GetClassNameW
DefWindowProcW
SetWindowTextW
CallWindowProcW
IsWindow
InvalidateRgn
SendMessageW
CharNextW
GetDC
GetDesktopWindow
ReleaseDC
DispatchMessageW
GetQueueStatus
RegisterWindowMessageW
MsgWaitForMultipleObjects
PeekMessageW
GetWindowRect
PostThreadMessageW
GetMessageW
UnregisterClassA
GetWindow
SetWindowPos

gdi32

ExtTextOutW
SetBkColor
GetTextExtentPoint32W
GetObjectW
GetStockObject
BitBlt
CreateCompatibleBitmap
CreateSolidBrush
DeleteObject
DeleteDC
SelectObject
CreateDIBSection
CreateCompatibleDC
GetDeviceCaps
SetTextColor
CreateFontIndirectW

advapi32

RegCreateKeyExW
RegDeleteValueW
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW
RegQueryInfoKeyW

shell32

ShellExecuteW

ole32

CoInitialize
CoUninitialize
CoCreateInstance
StringFromGUID2
CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal
CoTaskMemRealloc
OleInitialize
OleUninitialize
CLSIDFromProgID
CoGetClassObject
CLSIDFromString
OleLockRunning
CoFreeUnusedLibraries

oleaut32

SysStringLen
SysStringByteLen
SysAllocStringLen
VariantInit
OleCreateFontIndirect
VariantClear
GetErrorInfo
LoadTypeLi
SysFreeString
SysAllocString
OleLoadPicture
VarUI4FromStr
LoadRegTypeLi

ijl15

ord3
ord4
ord2

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 456KB - Virtual size: 453KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
kankan/XPlayer.dll
.dll regsvr32 windows:4 windows x86 arch:x86

b3b90a218d13b84e0fd3df04313a9916

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetStdHandle
FlushFileBuffers
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetFileType
GlobalAlloc
SetHandleCount
LCMapStringW
LCMapStringA
GetCPInfo
GetOEMCP
SetUnhandledExceptionFilter
HeapSize
TerminateProcess
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
GetModuleHandleA
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetCommandLineA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
LocalFree
InterlockedCompareExchange
IsProcessorFeaturePresent
GetModuleHandleW
DeviceIoControl
GetDiskFreeSpaceA
GlobalMemoryStatus
GetLocalTime
EnterCriticalSection
SizeofResource
WriteFile
CreateThread
Sleep
WaitForSingleObject
TerminateThread
CreateProcessA
InterlockedDecrement
InterlockedIncrement
CreateDirectoryA
CopyFileA
FindFirstFileA
DeleteFileA
FindNextFileA
FindClose
OutputDebugStringA
DisableThreadLibraryCalls
DeleteCriticalSection
InitializeCriticalSection
GetStartupInfoA
LeaveCriticalSection
InterlockedExchange
GetCurrentProcess
FlushInstructionCache
HeapAlloc
SetLastError
LockResource
FindResourceA
LoadResource
HeapReAlloc
RtlUnwind
ExitProcess
RaiseException
lstrlenW
MulDiv
lstrcpynA
GetProcessHeap
HeapFree
WideCharToMultiByte
GetLastError
GetFileAttributesA
GetModuleFileNameA
GetTickCount
GlobalLock
GlobalUnlock
GlobalFree
FreeLibrary
LoadLibraryA
GetProcAddress
GetFileSize
ReadFile
SetFilePointer
CloseHandle
CreateFileA
GetCurrentProcessId
GetCurrentThreadId
lstrlenA
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetStdHandle

user32

wvsprintfA
EnableWindow
GetDlgItem
CallNextHookEx
DestroyWindow
CreateWindowExA
GetClientRect
PostMessageA
SetWindowsHookExA
GetForegroundWindow
PtInRect
MoveWindow
GetClassLongA
SetClassLongA
MessageBoxA
GetMessageA
TranslateMessage
DispatchMessageA
LoadCursorA
RegisterClassExA
SetTimer
KillTimer
FindWindowExA
DefWindowProcA
CallWindowProcA
SetCursor
GetCursorPos
EndDialog
SendMessageA
GetNextDlgTabItem
CopyAcceleratorTableA
IsDialogMessageA
InvalidateRect
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
UnionRect
WindowFromPoint
MapDialogRect
SetWindowContextHelpId
SetWindowPos
EnumChildWindows
ShowWindow
GetKeyState
IsWindow
GetWindow
SetFocus
GetFocus
GetParent
IsChild
SystemParametersInfoA
SendDlgItemMessageA
GetSysColor
DrawTextA
LoadBitmapA
BeginPaint
EndPaint
FillRect
GetDC
ReleaseDC
GetDialogBaseUnits
wsprintfA
SetWindowLongA
GetWindowLongA
UnhookWindowsHookEx
IsWindowEnabled

gdi32

SetWindowExtEx
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
CreateSolidBrush
SetBkColor
Rectangle
SetTextColor
SetBkMode
LPtoDP
SaveDC
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
RestoreDC
GetObjectA
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
BitBlt
SetStretchBltMode
StretchBlt
DeleteDC
GetDeviceCaps
CreateFontIndirectA
SelectObject
GetTextMetricsA
GetTextExtentPointA
DeleteObject
CreateMetaFileA

advapi32

RegCloseKey
RegSetValueExA
RegQueryValueExA
RegCreateKeyA
RegOpenKeyExA
RegQueryValueA
RegOpenKeyA
RegCreateKeyExA

shell32

SHGetFolderPathA

ole32

GetRunningObjectTable
CreateItemMoniker
CreateDataAdviseHolder
CoCreateInstance
CoInitialize
CoUninitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
OleRegEnumVerbs
OleRegGetUserType
CreateOleAdviseHolder
OleRegGetMiscStatus
CoTaskMemFree
CoTaskMemAlloc

oleaut32

SysAllocStringByteLen
OleCreatePropertyFrame
LoadTypeLi
LoadRegTypeLi
VariantChangeType
SysStringByteLen
SysStringLen
SysAllocStringLen
OleTranslateColor
VariantClear
SysAllocString
VariantInit
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayUnaccessData
SysFreeString
SafeArrayDestroy
GetErrorInfo

atl71

ord30
ord38
ord43
ord44
ord11
ord10
ord54
ord48
ord60
ord18
ord32
ord49
ord23
ord61
ord15
ord50
ord51
ord58
ord31
ord46
ord27
ord26
ord28
ord36
ord65
ord42
ord47
ord66
ord64

shlwapi

StrCmpW

winmm

waveOutSetVolume
waveOutGetVolume

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
kankan/Xdrm.dll
.dll regsvr32 windows:4 windows x86 arch:x86

1dfc8d2416f1e5ce9c8a6e5e2fa2cb61

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteAtom
Sleep
FindAtomA
CloseHandle
SetFilePointer
ReadFile
GetFileSize
CreateFileA
GetVolumeInformationA
lstrlenW
lstrlenA
GetShortPathNameA
GetModuleHandleA
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
WaitForSingleObject
DisableThreadLibraryCalls
InitializeCriticalSection
HeapDestroy
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetFileAttributesA
FindClose
FindNextFileA
DeleteFileA
FindFirstFileA
GetProcAddress
LoadLibraryA
CopyFileA
CreateDirectoryA
InterlockedDecrement
InterlockedIncrement
TerminateThread
CreateThread
GetLocalTime
WritePrivateProfileStringA
GetPrivateProfileStringA
GetModuleFileNameA
MultiByteToWideChar
GetLastError
WideCharToMultiByte
AddAtomA
IsDBCSLeadByte
OutputDebugStringA
RaiseException
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
RtlUnwind
HeapFree
HeapAlloc
HeapReAlloc
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA

user32

CharNextA
wsprintfA

advapi32

RegQueryValueExA
RegEnumValueA
RegQueryInfoKeyA
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA
RegCreateKeyA

ole32

StringFromIID
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc

oleaut32

SysStringLen
SysFreeString
LoadRegTypeLi
VarUI4FromStr

shlwapi

SHDeleteKeyA

wininet

InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

iphlpapi

GetAdaptersInfo

shfolder

SHGetFolderPathA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
kankan/XmvSource.dll
.dll regsvr32 windows:4 windows x86 arch:x86

162f6c88b9fe9655bdbb45b9362a0fba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MapViewOfFile
OpenFileMappingA
UnmapViewOfFile
LoadLibraryA
OutputDebugStringA
GetFileAttributesA
FindClose
FindNextFileA
DeleteFileA
FindFirstFileA
GetLastError
GetProcAddress
CopyFileA
CreateDirectoryA
InterlockedIncrement
InterlockedDecrement
GetFileType
GetModuleFileNameA
CreateFileA
GetFileSize
ReadFile
SetFilePointer
FreeLibrary
CloseHandle
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetCPInfo
GetACP
GetOEMCP
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
RaiseException

user32

wsprintfA

advapi32

RegCreateKeyA
RegCloseKey
RegSetValueExA
RegQueryValueExA

shfolder

SHGetFolderPathA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
WMCreateStreamForURL

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
kankan/atl71.dll
.dll windows:4 windows x86 arch:x86

7c3004ebf21f282412fa952c164aa2bb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

atl71.pdb

Imports

kernel32

InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetCurrentThreadId
lstrlenW
lstrcpyW
GetLastError
DisableThreadLibraryCalls
GetVersionExA
InterlockedIncrement
InterlockedDecrement
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
lstrcmpiW
lstrcpynW
CloseHandle
ReadFile
GetFileSize
CreateFileW
GetModuleHandleW
GetModuleFileNameW
WideCharToMultiByte
HeapFree
GetProcessHeap
WaitForSingleObject
GlobalAlloc
FindResourceA
MulDiv
lstrcatW
HeapAlloc
FlushInstructionCache
GetCurrentProcess
GlobalUnlock
GlobalLock
lstrcmpW
SetLastError
GlobalFree
GlobalHandle
LockResource
lstrcmpA
GetModuleHandleA
GetTickCount
GetProcAddress
ExitProcess
HeapSize
DebugBreak
HeapReAlloc
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
lstrcatA
lstrcpyA
lstrlenA
GetModuleFileNameA
RtlUnwind
VirtualQuery
LocalAlloc
LoadLibraryA

shlwapi

PathFindExtensionW

Exports

Exports

AtlAdvise
AtlAxAttachControl
AtlAxCreateControl
AtlAxCreateControlEx
AtlAxCreateControlLic
AtlAxCreateControlLicEx
AtlAxCreateDialogA
AtlAxCreateDialogW
AtlAxDialogBoxA
AtlAxDialogBoxW
AtlAxGetControl
AtlAxGetHost
AtlAxWinInit
AtlCallTermFunc
AtlComModuleGetClassObject
AtlComModuleRegisterClassObjects
AtlComModuleRegisterServer
AtlComModuleRevokeClassObjects
AtlComModuleUnregisterServer
AtlComPtrAssign
AtlComQIPtrAssign
AtlCreateRegistrar
AtlCreateTargetDC
AtlDevModeW2A
AtlFreeMarshalStream
AtlGetObjectSourceInterface
AtlGetVersion
AtlHiMetricToPixel
AtlIPersistPropertyBag_Load
AtlIPersistPropertyBag_Save
AtlIPersistStreamInit_Load
AtlIPersistStreamInit_Save
AtlInternalQueryInterface
AtlLoadTypeLib
AtlMarshalPtrInProc
AtlModuleAddTermFunc
AtlPixelToHiMetric
AtlRegisterClassCategoriesHelper
AtlRegisterTypeLib
AtlSetErrorInfo
AtlUnRegisterTypeLib
AtlUnadvise
AtlUnmarshalPtr
AtlUpdateRegistryFromResourceD
AtlWaitWithMessageLoop
AtlWinModuleAddCreateWndData
AtlWinModuleExtractCreateWndData
AtlWinModuleInit
AtlWinModuleRegisterClassExA
AtlWinModuleRegisterClassExW
AtlWinModuleRegisterWndClassInfoA
AtlWinModuleRegisterWndClassInfoW
AtlWinModuleTerm

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcr71.dll
.dll windows:4 windows x86 arch:x86

7acc8c379c768a1ecd81ec502ff5f33e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr71.pdb

Imports

kernel32

GetModuleFileNameA
GetModuleFileNameW
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetCurrentThreadId
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
GetLastError
ResumeThread
CreateThread
TlsAlloc
SetLastError
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
FindNextFileA
FindFirstFileA
FindClose
FindNextFileW
FindFirstFileW
HeapAlloc
HeapFree
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetHandleCount
GetFileType
GetStartupInfoA
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
MultiByteToWideChar
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
InitializeCriticalSection
RtlUnwind
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetConsoleCtrlHandler
InterlockedExchange
VirtualQuery
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetEnvironmentVariableA
SetEnvironmentVariableW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
HeapSize
VirtualProtect
GetSystemInfo
FlushFileBuffers
SetFilePointer
SetStdHandle
CompareStringA
CompareStringW
Sleep
Beep
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
RaiseException
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadCodePtr
GetExitCodeProcess
WaitForSingleObject
FreeLibrary
CreateProcessA
CreateProcessW
HeapValidate
HeapCompact
HeapWalk
ReadConsoleA
SetConsoleMode
GetConsoleMode
IsDBCSLeadByteEx
GetConsoleCP
ReadConsoleW
SetEndOfFile
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
DuplicateHandle
GetFileInformationByHandle
PeekNamedPipe
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
LockFile
UnlockFile
CreateFileA
CreatePipe
ReadFile
CreateFileW
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetLocalTime
SetLocalTime

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@@QAE@ABV0@@Z
??0__non_rtti_object@@QAE@PBD@Z
??0bad_cast@@AAE@PBQBD@Z
??0bad_cast@@QAE@ABQBD@Z
??0bad_cast@@QAE@ABV0@@Z
??0bad_cast@@QAE@PBD@Z
??0bad_typeid@@QAE@ABV0@@Z
??0bad_typeid@@QAE@PBD@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??1__non_rtti_object@@UAE@XZ
??1bad_cast@@UAE@XZ
??1bad_typeid@@UAE@XZ
??1exception@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
??4bad_cast@@QAEAAV0@ABV0@@Z
??4bad_typeid@@QAEAAV0@ABV0@@Z
??4exception@@QAEAAV0@ABV0@@Z
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
??_7__non_rtti_object@@6B@
??_7bad_cast@@6B@
??_7bad_typeid@@6B@
??_7exception@@6B@
??_Fbad_cast@@QAEXXZ
??_Fbad_typeid@@QAEXXZ
??_U@YAPAXI@Z
??_V@YAXPAX@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDXZ
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?swprintf@@YAHPAGIPBGZZ
?swprintf@@YAHPA_WIPB_WZZ
?terminate@@YAXXZ
?unexpected@@YAXXZ
?vswprintf@@YAHPAGIPBGPAD@Z
?vswprintf@@YAHPA_WIPB_WPAD@Z
?what@exception@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CxxThrowException
_EH_prolog
_Getdays
_Getmonths
_Gettnames
_HUGE
_Strftime
_XcptFilter
__CppXcptFilter
__CxxCallUnwindDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__buffer_overrun
__crtCompareStringA
__crtCompareStringW
__crtGetLocaleInfoW
__crtGetStringTypeW
__crtLCMapStringA
__crtLCMapStringW
__dllonexit
__doserrno
__fpecode
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__lc_clike
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv_init
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fileinfo
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__osver
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__winmajor
__p__winminor
__p__winver
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__security_error_handler
__set_app_type
__set_buffer_overrun_handler
__setlc_active
__setusermatherr
__threadhandle
__threadid
__toascii
__unDName
__unDNameEx
__uncaught_exception
__unguarded_readlc_active
__wargv
__wcserror
__wgetmainargs
__winitenv
_abnormal_termination
_access
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_aligned_free
_aligned_malloc
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_realloc
_amsg_exit
_assert
_atodbl
_atoi64
_atoldbl
_beep
_beginthread
_beginthreadex
_c_exit
_cabs
_callnewh
_cexit
_cgets
_cgetws
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_clearfp
_close
_commit
_commode
_control87
_controlfp
_copysign
_cprintf
_cputs
_cputws
_creat
_cscanf
_ctime64
_cwait
_cwprintf
_cwscanf
_daylight
_dstbias
_dup
_dup2
_ecvt
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fcloseall
_fcvt
_fdopen
_fgetchar
_fgetwchar
_filbuf
_fileinfo
_filelength
_filelengthi64
_fileno
_findclose
_findfirst
_findfirst64
_findfirsti64
_findnext
_findnext64
_findnexti64
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fputchar
_fputwchar
_fsopen
_fstat
_fstat64
_fstati64
_ftime
_ftime64
_ftol
_fullpath
_futime
_futime64
_gcvt
_get_heap_handle
_get_osfhandle
_get_sbh_threshold
_getch
_getche
_getcwd
_getdcwd
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getsystime
_getw
_getwch
_getwche
_getws
_global_unwind2
_gmtime64
_heapadd
_heapchk
_heapmin
_heapset
_heapused
_heapwalk
_hypot
_i64toa
_i64tow
_initterm
_inp
_inpd
_inpw
_iob
_isatty
_isctype
_ismbbalnum
_ismbbalpha
_ismbbgraph
_ismbbkalnum
_ismbbkana
_ismbbkprint
_ismbbkpunct
_ismbblead
_ismbbprint
_ismbbpunct
_ismbbtrail
_ismbcalnum
_ismbcalpha
_ismbcdigit
_ismbcgraph
_ismbchira
_ismbckata
_ismbcl0
_ismbcl1
_ismbcl2
_ismbclegal
_ismbclower
_ismbcprint
_ismbcpunct
_ismbcspace
_ismbcsymbol
_ismbcupper
_ismbslead
_ismbstrail
_isnan
_itoa
_itow
_j0
_j1
_jn
_kbhit
_lfind
_loaddll
_local_unwind2
_localtime64
_lock
_locking
_logb
_longjmpex
_lrotl
_lrotr
_lsearch
_lseek
_lseeki64
_ltoa
_ltow
_makepath
_mbbtombc
_mbbtype
_mbcasemap
_mbccpy
_mbcjistojms
_mbcjmstojis
_mbclen
_mbctohira
_mbctokata
_mbctolower
_mbctombb
_mbctoupper
_mbctype
_mbsbtype
_mbscat
_mbschr
_mbscmp
_mbscoll
_mbscpy
_mbscspn
_mbsdec
_mbsdup
_mbsicmp
_mbsicoll
_mbsinc
_mbslen
_mbslwr
_mbsnbcat
_mbsnbcmp
_mbsnbcnt
_mbsnbcoll
_mbsnbcpy
_mbsnbicmp
_mbsnbicoll
_mbsnbset
_mbsncat
_mbsnccnt
_mbsncmp
_mbsncoll
_mbsncpy
_mbsnextc
_mbsnicmp
_mbsnicoll
_mbsninc
_mbsnset
_mbspbrk
_mbsrchr
_mbsrev
_mbsset
_mbsspn
_mbsspnp
_mbsstr
_mbstok
_mbstrlen
_mbsupr
_memccpy
_memicmp
_mkdir
_mktemp
_mktime64
_msize
_nextafter
_onexit
_open
_open_osfhandle
_osplatform
_osver
_outp
_outpd
_outpw
_pclose
_pctype
_pgmptr
_pipe
_popen
_purecall
_putch
_putenv
_putw
_putwch
_putws
_pwctype
_read
_resetstkoflw
_rmdir
_rmtmp
_rotl
_rotr
_safe_fdiv
_safe_fdivr
_safe_fprem
_safe_fprem1
_scalb
_scprintf
_scwprintf
_searchenv
_seh_longjmp_unwind
_set_SSE2_enable
_set_error_mode
_set_purecall_handler
_set_sbh_threshold
_set_security_error_handler
_seterrormode
_setjmp
_setjmp3
_setmaxstdio
_setmbcp
_setmode
_setsystime
_sleep
_snprintf
_snscanf
_snwprintf
_snwscanf
_sopen
_spawnl
_spawnle
_spawnlp
_spawnlpe
_spawnv
_spawnve
_spawnvp

Sections

.text
Size: 228KB - Virtual size: 226KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
page.wtp
patchversion.dat
stlport_vc646.dll
.dll windows:4 windows x86 arch:x86

b1603c3e1c5acc291efe3235cc214391

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcp60

??1bad_alloc@std@@UAE@XZ
??0bad_alloc@std@@QAE@ABV01@@Z
??0bad_alloc@std@@QAE@PBD@Z

msvcrt

sprintf
?what@exception@@UBEPBDXZ
_fcvt
setlocale
??9type_info@@QBEHABV0@@Z
atoi
_fpclass
_ecvt
strncat
getc
_CIcosh
_CIsinh
??1type_info@@UAE@XZ
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
_initterm
_adjust_fdiv
_isnan
_copysign
_iob
putc
_finite
ungetc
feof
ftell
fsetpos
fseek
fgetpos
setvbuf
fflush
realloc
memchr
_get_osfhandle
__pioinfo
abort
_vsnprintf
free
malloc
??0exception@@QAE@XZ
strncpy
??1exception@@UAE@XZ
memmove
_CxxThrowException
__CxxFrameHandler
??4exception@@QAEAAV0@ABV0@@Z
??0exception@@QAE@ABV0@@Z
??2@YAPAXI@Z
strchr
strcspn
strstr
_fstat
_hypot

kernel32

EnumSystemLocalesA
WriteFile
lstrcmpiA
CompareStringW
CompareStringA
LCMapStringW
LCMapStringA
GetLocaleInfoA
GetCPInfo
GetVersionExA
MultiByteToWideChar
GetStringTypeW
GetStringTypeA
WideCharToMultiByte
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
GetLastError
ReadFile
CreateFileA
SetEndOfFile
SetFilePointer
CloseHandle
GetSystemInfo
GetFileSize
GetFileType
OutputDebugStringA
DisableThreadLibraryCalls
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
Sleep

Exports

Exports

??0?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@AAE@ABV01@@Z
??0?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_istream@DV?$char_traits@D@_STL@@@1@U_No_Skip_WS@1@@Z
??0?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_istream@DV?$char_traits@D@_STL@@@1@_N@Z
??0?$_Isentry@GV?$char_traits@G@_STL@@@_STL@@AAE@ABV01@@Z
??0?$_Isentry@GV?$char_traits@G@_STL@@@_STL@@QAE@AAV?$basic_istream@GV?$char_traits@G@_STL@@@1@U_No_Skip_WS@1@@Z
??0?$_Isentry@GV?$char_traits@G@_STL@@@_STL@@QAE@AAV?$basic_istream@GV?$char_traits@G@_STL@@@1@_N@Z
??0?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@AAE@ABV01@@Z
??0?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_ostream@DV?$char_traits@D@_STL@@@1@@Z
??0?$_Osentry@GV?$char_traits@G@_STL@@@_STL@@AAE@ABV01@@Z
??0?$_Osentry@GV?$char_traits@G@_STL@@@_STL@@QAE@AAV?$basic_ostream@GV?$char_traits@G@_STL@@@1@@Z
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV01@@Z
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@PAD@Z
??0?$_STLP_alloc_proxy@PAGGV?$allocator@G@_STL@@@_STL@@QAE@ABV01@@Z
??0?$_STLP_alloc_proxy@PAGGV?$allocator@G@_STL@@@_STL@@QAE@ABV?$allocator@G@1@PAG@Z
??0?$_STLP_alloc_proxy@PAPAXPAXV?$allocator@PAX@_STL@@@_STL@@QAE@ABV01@@Z
??0?$_STLP_alloc_proxy@PAPAXPAXV?$allocator@PAX@_STL@@@_STL@@QAE@ABV?$allocator@PAX@1@PAPAX@Z
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV01@@Z
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@@Z
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@I@Z
??0?$_String_base@GV?$allocator@G@_STL@@@_STL@@QAE@ABV01@@Z
??0?$_String_base@GV?$allocator@G@_STL@@@_STL@@QAE@ABV?$allocator@G@1@@Z
??0?$_String_base@GV?$allocator@G@_STL@@@_STL@@QAE@ABV?$allocator@G@1@I@Z
??0?$_Vector_base@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@ABV01@@Z
??0?$_Vector_base@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@ABV?$allocator@PAX@1@@Z
??0?$_Vector_base@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@IABV?$allocator@PAX@1@@Z
??0?$__debug_alloc@V?$__malloc_alloc@$0A@@_STL@@@_STL@@QAE@XZ
??0?$__debug_alloc@V?$__node_alloc@$00$0A@@_STL@@@_STL@@QAE@XZ
??0?$__debug_alloc@V__new_alloc@_STL@@@_STL@@QAE@XZ
??0?$allocator@D@_STL@@QAE@ABV01@@Z
??0?$allocator@D@_STL@@QAE@XZ
??0?$allocator@G@_STL@@QAE@ABV01@@Z
??0?$allocator@G@_STL@@QAE@XZ
??0?$allocator@PAX@_STL@@QAE@ABV01@@Z
??0?$allocator@PAX@_STL@@QAE@XZ
??0?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??0?$basic_filebuf@GV?$char_traits@G@_STL@@@_STL@@QAE@XZ
??0?$basic_fstream@DV?$char_traits@D@_STL@@@_STL@@QAE@HH@Z
??0?$basic_fstream@DV?$char_traits@D@_STL@@@_STL@@QAE@PBDH@Z
??0?$basic_fstream@DV?$char_traits@D@_STL@@@_STL@@QAE@PBDHJ@Z
??0?$basic_fstream@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??0?$basic_fstream@GV?$char_traits@G@_STL@@@_STL@@QAE@HH@Z
??0?$basic_fstream@GV?$char_traits@G@_STL@@@_STL@@QAE@PBDH@Z
??0?$basic_fstream@GV?$char_traits@G@_STL@@@_STL@@QAE@PBDHJ@Z
??0?$basic_fstream@GV?$char_traits@G@_STL@@@_STL@@QAE@XZ
??0?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAE@HH@Z
??0?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAE@PBDH@Z
??0?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAE@PBDHJ@Z
??0?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??0?$basic_ifstream@GV?$char_traits@G@_STL@@@_STL@@QAE@HH@Z
??0?$basic_ifstream@GV?$char_traits@G@_STL@@@_STL@@QAE@PBDH@Z
??0?$basic_ifstream@GV?$char_traits@G@_STL@@@_STL@@QAE@PBDHJ@Z
??0?$basic_ifstream@GV?$char_traits@G@_STL@@@_STL@@QAE@XZ
??0?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@IAE@XZ
??0?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$basic_ios@GV?$char_traits@G@_STL@@@_STL@@IAE@XZ
??0?$basic_ios@GV?$char_traits@G@_STL@@@_STL@@QAE@PAV?$basic_streambuf@GV?$char_traits@G@_STL@@@1@@Z
??0?$basic_iostream@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$basic_iostream@GV?$char_traits@G@_STL@@@_STL@@QAE@PAV?$basic_streambuf@GV?$char_traits@G@_STL@@@1@@Z
??0?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAE@PAV?$basic_streambuf@GV?$char_traits@G@_STL@@@1@@Z
??0?$basic_istringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@H@Z
??0?$basic_istringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
??0?$basic_istringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@ABV?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@1@H@Z
??0?$basic_istringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@H@Z
??0?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAE@HH@Z
??0?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAE@PBDH@Z
??0?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAE@PBDHJ@Z
??0?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??0?$basic_ofstream@GV?$char_traits@G@_STL@@@_STL@@QAE@HH@Z
??0?$basic_ofstream@GV?$char_traits@G@_STL@@@_STL@@QAE@PBDH@Z
??0?$basic_ofstream@GV?$char_traits@G@_STL@@@_STL@@QAE@PBDHJ@Z
??0?$basic_ofstream@GV?$char_traits@G@_STL@@@_STL@@QAE@XZ
??0?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAE@PAV?$basic_streambuf@GV?$char_traits@G@_STL@@@1@@Z
??0?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@H@Z
??0?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
??0?$basic_ostringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@ABV?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@1@H@Z
??0?$basic_ostringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@H@Z
??0?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@IAE@PAU_iobuf@@0@Z
??0?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@IAE@XZ
??0?$basic_streambuf@GV?$char_traits@G@_STL@@@_STL@@IAE@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@IIABV?$allocator@D@1@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV?$allocator@D@1@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@IDABV?$allocator@D@1@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PAD0@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBD0@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDIABV?$allocator@D@1@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@U_String_reserve_t@1@IABV?$allocator@D@1@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@ABV01@@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@ABV01@IIABV?$allocator@G@1@@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@ABV?$allocator@G@1@@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@IGABV?$allocator@G@1@@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@PAG0@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@PBG0@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@PBGABV?$allocator@G@1@@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@PBGIABV?$allocator@G@1@@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@U_String_reserve_t@1@IABV?$allocator@G@1@@Z
??0?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@XZ
??0?$basic_stringbuf@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringbuf@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
??0?$basic_stringbuf@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@ABV?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringbuf@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@H@Z
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
??0?$basic_stringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@ABV?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@H@Z
??0?$codecvt@DDH@_STL@@QAE@I@Z
??0?$codecvt@GDH@_STL@@QAE@I@Z
??0?$codecvt_byname@DDH@_STL@@QAE@PBDI@Z
??0?$collate@D@_STL@@QAE@I@Z
??0?$collate@G@_STL@@QAE@I@Z
??0?$collate_byname@D@_STL@@QAE@PBDI@Z
??0?$collate_byname@G@_STL@@QAE@PBDI@Z
??0?$complex@M@_STL@@QAE@ABU01@@Z
??0?$complex@M@_STL@@QAE@ABU?$complex@N@1@@Z
??0?$complex@M@_STL@@QAE@ABU?$complex@O@1@@Z
??0?$complex@M@_STL@@QAE@MM@Z
??0?$complex@N@_STL@@QAE@ABU01@@Z
??0?$complex@N@_STL@@QAE@ABU?$complex@M@1@@Z
??0?$complex@N@_STL@@QAE@ABU?$complex@O@1@@Z
??0?$complex@N@_STL@@QAE@NN@Z
??0?$complex@O@_STL@@QAE@ABU01@@Z
??0?$complex@O@_STL@@QAE@ABU?$complex@M@1@@Z
??0?$complex@O@_STL@@QAE@ABU?$complex@N@1@@Z
??0?$complex@O@_STL@@QAE@OO@Z
??0?$ctype@D@_STL@@QAE@PBW4mask@ctype_base@1@_NI@Z
??0?$ctype@G@_STL@@QAE@I@Z
??0?$ctype_byname@D@_STL@@QAE@PBDI@Z
??0?$ctype_byname@G@_STL@@QAE@PBDI@Z
??0?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_istream@DV?$char_traits@D@_STL@@@1@@Z
??0?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$messages@D@_STL@@IAE@IPAU_Locale_messages@@@Z
??0?$messages@D@_STL@@QAE@I@Z
??0?$messages@D@_STL@@QAE@PAV_Messages@1@@Z
??0?$messages@G@_STL@@IAE@IPAU_Locale_messages@@@Z
??0?$messages@G@_STL@@QAE@I@Z
??0?$messages@G@_STL@@QAE@PAV_Messages@1@@Z
??0?$messages_byname@D@_STL@@QAE@PBDI@Z
??0?$messages_byname@G@_STL@@QAE@PBDI@Z
??0?$money_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$money_get@GV?$istreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$moneypunct@D$00@_STL@@QAE@I@Z
??0?$moneypunct@D$0A@@_STL@@QAE@I@Z
??0?$moneypunct@G$00@_STL@@QAE@I@Z
??0?$moneypunct@G$0A@@_STL@@QAE@I@Z
??0?$moneypunct_byname@D$00@_STL@@QAE@PBDI@Z
??0?$moneypunct_byname@D$0A@@_STL@@QAE@PBDI@Z
??0?$moneypunct_byname@G$00@_STL@@QAE@PBDI@Z
??0?$moneypunct_byname@G$0A@@_STL@@QAE@PBDI@Z
??0?$num_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$numpunct@D@_STL@@QAE@I@Z
??0?$numpunct@G@_STL@@QAE@I@Z
??0?$numpunct_byname@D@_STL@@QAE@PBDI@Z
??0?$numpunct_byname@G@_STL@@QAE@PBDI@Z
??0?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_ostream@DV?$char_traits@D@_STL@@@1@@Z
??0?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@QAE@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??0?$time_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@IAE@PAU_Locale_time@@I@Z
??0?$time_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$time_get@GV?$istreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@IAE@PAU_Locale_time@@I@Z
??0?$time_get@GV?$istreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@IAE@PAU_Locale_time@@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@IAE@PAU_Locale_time@@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@QAE@I@Z
??0?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@ABV01@@Z
??0?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@ABV?$allocator@PAX@1@@Z
??0?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@I@Z
??0?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@IABQAXABV?$allocator@PAX@1@@Z
??0?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@PAPAX0@Z
??0Init@ios_base@_STL@@QAE@XZ
??0_Filebuf_base@_STL@@QAE@XZ
??0_Loc_init@ios_base@_STL@@QAE@XZ
??0_Locale@_STL@@QAE@ABV01@@Z
??0_Locale@_STL@@QAE@ABV_Locale_impl@1@@Z
??0_Locale@_STL@@QAE@IPBD@Z
??0_Locale_impl@_STL@@QAE@ABV01@@Z
??0_Locale_impl@_STL@@QAE@PBD@Z
??0_Refcount_Base@_STL@@QAE@J@Z
??0_STLP_auto_lock@_STL@@QAE@AAU_STLP_mutex_base@1@@Z
??0_STLP_mutex@_STL@@QAE@XZ
??0_Time_Info@_STL@@QAE@ABV01@@Z
??0_Time_Info@_STL@@QAE@XZ
??0__Named_exception@_STL@@QAE@ABV01@@Z
??0__Named_exception@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0domain_error@_STL@@QAE@ABV01@@Z
??0domain_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0facet@locale@_STL@@AAE@ABV012@@Z
??0facet@locale@_STL@@IAE@I@Z
??0failure@ios_base@_STL@@QAE@ABV012@@Z
??0failure@ios_base@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@@Z
??0invalid_argument@_STL@@QAE@ABV01@@Z
??0invalid_argument@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0ios_base@_STL@@IAE@XZ
??0istrstream@_STL@@QAE@PAD@Z
??0istrstream@_STL@@QAE@PADH@Z
??0istrstream@_STL@@QAE@PBD@Z
??0istrstream@_STL@@QAE@PBDH@Z
??0length_error@_STL@@QAE@ABV01@@Z
??0length_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0locale@_STL@@QAE@ABV01@0H@Z
??0locale@_STL@@QAE@ABV01@@Z
??0locale@_STL@@QAE@ABV01@PBDH@Z
??0locale@_STL@@QAE@PAV_Locale_impl@1@@Z
??0locale@_STL@@QAE@PAV_Locale_impl@1@_N@Z
??0locale@_STL@@QAE@PBD@Z
??0locale@_STL@@QAE@XZ
??0logic_error@_STL@@QAE@ABV01@@Z
??0logic_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0ostrstream@_STL@@QAE@PADHH@Z
??0ostrstream@_STL@@QAE@XZ
??0out_of_range@_STL@@QAE@ABV01@@Z
??0out_of_range@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0overflow_error@_STL@@QAE@ABV01@@Z
??0overflow_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0range_error@_STL@@QAE@ABV01@@Z
??0range_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0runtime_error@_STL@@QAE@ABV01@@Z
??0runtime_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??0strstream@_STL@@QAE@PADHH@Z
??0strstream@_STL@@QAE@XZ
??0strstreambuf@_STL@@QAE@H@Z
??0strstreambuf@_STL@@QAE@P6APAXI@ZP6AXPAX@Z@Z
??0strstreambuf@_STL@@QAE@PACH0@Z
??0strstreambuf@_STL@@QAE@PADH0@Z
??0strstreambuf@_STL@@QAE@PAEH0@Z
??0strstreambuf@_STL@@QAE@PBCH@Z
??0strstreambuf@_STL@@QAE@PBDH@Z
??0strstreambuf@_STL@@QAE@PBEH@Z
??0underflow_error@_STL@@QAE@ABV01@@Z
??0underflow_error@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??1?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??1?$_Isentry@GV?$char_traits@G@_STL@@@_STL@@QAE@XZ
??1?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
??1?$_Osentry@GV?$char_traits@G@_STL@@@_STL@@QAE@XZ
??1?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@XZ
??1?$_STLP_alloc_proxy@PAGGV?$allocator@G@_STL@@@_STL@@QAE@XZ
??1?$_STLP_alloc_proxy@PAPAXPAXV?$allocator@PAX@_STL@@@_STL@@QAE@XZ
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
??1?$_String_base@GV?$allocator@G@_STL@@@_STL@@QAE@XZ
??1?$_Vector_base@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@XZ
??1?$__debug_alloc@V?$__malloc_alloc@$0A@@_STL@@@_STL@@QAE@XZ
??1?$__debug_alloc@V?$__node_alloc@$00$0A@@_STL@@@_STL@@QAE@XZ
??1?$__debug_alloc@V__new_alloc@_STL@@@_STL@@QAE@XZ
??1?$allocator@D@_STL@@QAE@XZ
??1?$allocator@G@_STL@@QAE@XZ
??1?$allocator@PAX@_STL@@QAE@XZ
??1?$basic_filebuf@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_filebuf@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_fstream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_fstream@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ifstream@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ios@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_iostream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_iostream@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_istringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
??1?$basic_istringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@UAE@XZ
??1?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ofstream@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
??1?$basic_ostringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@UAE@XZ
??1?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_streambuf@GV?$char_traits@G@_STL@@@_STL@@UAE@XZ
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??1?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAE@XZ
??1?$basic_stringbuf@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
??1?$basic_stringbuf@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@UAE@XZ
??1?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
??1?$basic_stringstream@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@UAE@XZ
??1?$codecvt@DDH@_STL@@MAE@XZ
??1?$codecvt@GDH@_STL@@MAE@XZ
??1?$codecvt_byname@DDH@_STL@@UAE@XZ
??1?$collate@D@_STL@@MAE@XZ
??1?$collate@G@_STL@@MAE@XZ
??1?$collate_byname@D@_STL@@MAE@XZ
??1?$collate_byname@G@_STL@@MAE@XZ
??1?$ctype@D@_STL@@MAE@XZ
??1?$ctype@G@_STL@@MAE@XZ
??1?$ctype_byname@D@_STL@@UAE@XZ
??1?$ctype_byname@G@_STL@@MAE@XZ
??1?$messages@D@_STL@@MAE@XZ
??1?$messages@G@_STL@@MAE@XZ
??1?$messages_byname@D@_STL@@MAE@XZ
??1?$messages_byname@G@_STL@@MAE@XZ
??1?$money_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$money_get@GV?$istreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$money_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$money_put@GV?$ostreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$moneypunct@D$00@_STL@@MAE@XZ
??1?$moneypunct@D$0A@@_STL@@MAE@XZ
??1?$moneypunct@G$00@_STL@@MAE@XZ
??1?$moneypunct@G$0A@@_STL@@MAE@XZ
??1?$moneypunct_byname@D$00@_STL@@MAE@XZ
??1?$moneypunct_byname@D$0A@@_STL@@MAE@XZ
??1?$moneypunct_byname@G$00@_STL@@MAE@XZ
??1?$moneypunct_byname@G$0A@@_STL@@MAE@XZ
??1?$num_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$num_get@GV?$istreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$num_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$num_put@GV?$ostreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$numpunct@D@_STL@@UAE@XZ
??1?$numpunct@G@_STL@@MAE@XZ
??1?$numpunct_byname@D@_STL@@MAE@XZ
??1?$numpunct_byname@G@_STL@@MAE@XZ
??1?$time_get@DV?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$time_get@GV?$istreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$time_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$time_put@GV?$ostreambuf_iterator@GV?$char_traits@G@_STL@@@_STL@@@_STL@@MAE@XZ
??1?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@XZ
??1Init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??1_Locale@_STL@@UAE@XZ
??1_Locale_impl@_STL@@UAE@XZ
??1_STLP_auto_lock@_STL@@QAE@XZ
??1_STLP_mutex@_STL@@QAE@XZ
??1_Time_Info@_STL@@QAE@XZ
??1__Named_exception@_STL@@UAE@XZ
??1domain_error@_STL@@UAE@XZ
??1facet@locale@_STL@@MAE@XZ
??1failure@ios_base@_STL@@UAE@XZ
??1invalid_argument@_STL@@UAE@XZ
??1ios_base@_STL@@UAE@XZ
??1istrstream@_STL@@UAE@XZ
??1length_error@_STL@@UAE@XZ
??1locale@_STL@@QAE@XZ
??1logic_error@_STL@@UAE@XZ
??1ostrstream@_STL@@UAE@XZ
??1out_of_range@_STL@@UAE@XZ
??1overflow_error@_STL@@UAE@XZ
??1range_error@_STL@@UAE@XZ
??1runtime_error@_STL@@UAE@XZ
??1strstream@_STL@@UAE@XZ
??1strstreambuf@_STL@@UAE@XZ
??1underflow_error@_STL@@UAE@XZ
??4?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@AAEXABV01@@Z
??4?$_Isentry@GV?$char_traits@G@_STL@@@_STL@@AAEXABV01@@Z
??4?$_LimG@_N@_STL@@QAEAAV01@ABV01@@Z
??4?$_List_global@_N@_STL@@QAEAAV01@ABV01@@Z
??4?$_Noconv_output@V?$char_traits@D@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@AAEXABV01@@Z
??4?$_Osentry@GV?$char_traits@G@_STL@@@_STL@@AAEXABV01@@Z
??4?$_Rb_global@_N@_STL@@QAEAAV01@ABV01@@Z
??4?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$_STLP_alloc_proxy@PAGGV?$allocator@G@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$_STLP_alloc_proxy@PAPAXPAXV?$allocator@PAX@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$_Sl_global@_N@_STL@@QAEAAV01@ABV01@@Z
??4?$_Stl_prime@_N@_STL@@QAEAAV01@ABV01@@Z
??4?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$_String_base@GV?$allocator@G@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$_Underflow@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$_Underflow@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$_Vector_base@PAXV?$allocator@PAX@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$__debug_alloc@V?$__malloc_alloc@$0A@@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$__debug_alloc@V?$__node_alloc@$00$0A@@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$__debug_alloc@V__new_alloc@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$__malloc_alloc@$0A@@_STL@@QAEAAV01@ABV01@@Z
??4?$__node_alloc@$00$0A@@_STL@@QAEAAV01@ABV01@@Z
??4?$__stl_debug_engine@_N@_STL@@QAEAAU01@ABU01@@Z
??4?$allocator@D@_STL@@QAEAAV01@ABV01@@Z
??4?$allocator@G@_STL@@QAEAAV01@ABV01@@Z
??4?$allocator@PAX@_STL@@QAEAAV01@ABV01@@Z
??4?$allocator@X@_STL@@QAEAAV01@ABV01@@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@D@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@PBD@Z
??4?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEAAV01@ABV01@@Z
??4?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEAAV01@G@Z
??4?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEAAV01@PBG@Z
??4?$char_traits@D@_STL@@QAEAAV01@ABV01@@Z
??4?$char_traits@G@_STL@@QAEAAV01@ABV01@@Z
??4?$complex@M@_STL@@QAEAAU01@ABU01@@Z
??4?$complex@M@_STL@@QAEAAU01@M@Z
??4?$complex@N@_STL@@QAEAAU01@ABU01@@Z
??4?$complex@N@_STL@@QAEAAU01@N@Z
??4?$complex@O@_STL@@QAEAAU01@ABU01@@Z
??4?$complex@O@_STL@@QAEAAU01@O@Z
??4?$hash@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@_STL@@QAEAAU01@ABU01@@Z
??4?$hash@V?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@@_STL@@QAEAAU01@ABU01@@Z
??4?$istreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@D@Z
??4?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAEAAV01@ABV01@@Z
??4Init@ios_base@_STL@@QAEAAV012@ABV012@@Z
??4_Filebuf_base@_STL@@QAEAAV01@ABV01@@Z
??4_Loc_init@ios_base@_STL@@QAEAAV012@ABV012@@Z
??4_Node_alloc_obj@_STL@@QAEAAV01@ABV01@@Z
??4_Refcount_Base@_STL@@QAEAAU01@ABU01@@Z
??4_STLP_mutex_base@_STL@@QAEAAU01@ABU01@@Z
??4_Time_Info@_STL@@QAEAAV01@ABV01@@Z
??4__Named_exception@_STL@@QAEAAV01@ABV01@@Z
??4__new_alloc@_STL@@QAEAAV01@ABV01@@Z
??4codecvt_base@_STL@@QAEAAV01@ABV01@@Z
??4ctype_base@_STL@@QAEAAV01@ABV01@@Z
??4domain_error@_STL@@QAEAAV01@ABV01@@Z
??4failure@ios_base@_STL@@QAEAAV012@ABV012@@Z
??4id@locale@_STL@@QAEAAV012@ABV012@@Z
??4invalid_argument@_STL@@QAEAAV01@ABV01@@Z
??4length_error@_STL@@QAEAAV01@ABV01@@Z
??4locale@_STL@@QAEABV01@ABV01@@Z
??4logic_error@_STL@@QAEAAV01@ABV01@@Z
??4out_of_range@_STL@@QAEAAV01@ABV01@@Z
??4overflow_error@_STL@@QAEAAV01@ABV01@@Z
??4range_error@_STL@@QAEAAV01@ABV01@@Z
??4runtime_error@_STL@@QAEAAV01@ABV01@@Z
??4time_base@_STL@@QAEAAV01@ABV01@@Z
??4underflow_error@_STL@@QAEAAV01@ABV01@@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAF@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAG@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAH@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAI@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAJ@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAK@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAM@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAN@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAO@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AAPAX@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AA_J@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AA_K@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@AA_N@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@P6AAAV?$basic_ios@DV?$char_traits@D@_STL@@@1@AAV21@@Z@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAF@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAG@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAH@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAI@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAJ@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAK@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAM@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAN@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAO@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AAPAX@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AA_J@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AA_K@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@AA_N@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@P6AAAV?$basic_ios@GV?$char_traits@G@_STL@@@1@AAV21@@Z@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@PAV?$basic_streambuf@GV?$char_traits@G@_STL@@@1@@Z
??5_STL@@YAAAV?$basic_istream@DV?$char_traits@D@_STL@@@0@AAV10@AAU?$complex@M@0@@Z
??5_STL@@YAAAV?$basic_istream@DV?$char_traits@D@_STL@@@0@AAV10@AAU?$complex@N@0@@Z
??5_STL@@YAAAV?$basic_istream@DV?$char_traits@D@_STL@@@0@AAV10@AAU?$complex@O@0@@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@F@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@G@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@H@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@I@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@J@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@K@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@M@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@N@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@O@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@P6AAAV?$basic_ios@DV?$char_traits@D@_STL@@@1@AAV21@@Z@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@PAV?$basic_streambuf@DV?$char_traits@D@_STL@@@1@@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@PBX@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@_J@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@_K@Z
??6?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV01@_N@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@F@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@G@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@H@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@I@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@J@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@K@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@M@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@N@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@O@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@P6AAAV?$basic_ios@GV?$char_traits@G@_STL@@@1@AAV21@@Z@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@PAV?$basic_streambuf@GV?$char_traits@G@_STL@@@1@@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@PBX@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@_J@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@_K@Z
??6?$basic_ostream@GV?$char_traits@G@_STL@@@_STL@@QAEAAV01@_N@Z
??6_STL@@YAAAV?$basic_ostream@DV?$char_traits@D@_STL@@@0@AAV10@ABU?$complex@M@0@@Z
??6_STL@@YAAAV?$basic_ostream@DV?$char_traits@D@_STL@@@0@AAV10@ABU?$complex@N@0@@Z
??6_STL@@YAAAV?$basic_ostream@DV?$char_traits@D@_STL@@@0@AAV10@ABU?$complex@O@0@@Z
??7ios_base@_STL@@QBE_NXZ
??8locale@_STL@@QBE_NABV01@@Z
??9locale@_STL@@QBE_NABV01@@Z
??A?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAADI@Z
??A?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEABDI@Z
??A?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QAEAAGI@Z
??A?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@QBEABGI@Z

Sections

.text
Size: 540KB - Virtual size: 537KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 220KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

STLPORT_
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
streammedialib.dll
.dll regsvr32 windows:4 windows x86 arch:x86

1f0c169ad8a328d97f6d3be26daccf2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
lstrcpyA
lstrcatA
FreeLibrary
lstrlenW
GetModuleFileNameA
GetShortPathNameA
GetModuleHandleA
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
lstrlenA
MultiByteToWideChar
SetEvent
CloseHandle
WideCharToMultiByte
CreateEventA
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
SetLastError
GetWindowsDirectoryA
GetLogicalDriveStringsA
GetDriveTypeA
GetDiskFreeSpaceExA
GetTempPathA
SetFileAttributesA
WaitForSingleObject
ResetEvent
VirtualAlloc
VirtualFree
GetSystemInfo
GetSystemDirectoryA
GetPrivateProfileStringA
GetVolumeInformationA
GetFileAttributesA
MoveFileA
FlushFileBuffers
GetFileSize
SetEndOfFile
SetFilePointer
ReadFile
WriteFile
CreateFileA
GetTickCount
CreateDirectoryA
GetDiskFreeSpaceA
DeleteFileA
RemoveDirectoryA
FindFirstFileA
FindNextFileA
FindClose
GetSystemDefaultLangID
GetLastError
GlobalMemoryStatus
GetVersionExA
WritePrivateProfileStringA
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionA

user32

GetSystemMetrics
CharNextA

ole32

CoInitialize
CLSIDFromString
CoCreateInstance
CoUninitialize

oleaut32

RegisterTypeLi
LoadTypeLi
SysFreeString
SysAllocString

stlport_vc646

??0logic_error@_STL@@QAE@ABV01@@Z
??0__Named_exception@_STL@@QAE@ABV01@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
?_M_deallocate@?$__node_alloc@$00$0A@@_STL@@CAXPAXI@Z
?_M_allocate@?$__node_alloc@$00$0A@@_STL@@CAPAXI@Z
?_M_deallocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXXZ
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABUforward_iterator_tag@2@@Z
??1?$allocator@D@_STL@@QAE@XZ
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
?deallocate@?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAEXPADI@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPBD0ABUforward_iterator_tag@2@@Z
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@@Z
??_7logic_error@_STL@@6B@
??1?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@XZ
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABU__false_type@2@@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPBD0@Z
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@PAD@Z
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@II@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD0@Z
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
?_M_increment@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_Rebalance_for_erase@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@AAPAU32@11@Z
?_M_decrement@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_Rebalance@?$_Rb_global@_N@_STL@@SAXPAU_Rb_tree_node_base@2@AAPAU32@@Z
??0_Loc_init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??0Init@ios_base@_STL@@QAE@XZ
??1Init@ios_base@_STL@@QAE@XZ
?_M_compare@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@SAHPBD000@Z
?get_allocator@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$allocator@D@2@XZ
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@II@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@II@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?_M_list@?$_Stl_prime@_N@_STL@@2QBIB
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?rfind@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?_M_insert_aux@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEPADPADD@Z
?push_back@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXD@Z
?resize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXID@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@IIABV?$allocator@D@1@@Z
??_D?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
?str@?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
?_M_put_char@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXD@Z
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
?replace@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@IIPBD@Z
?find_first_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?substr@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV12@II@Z
??1?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?clear@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?_M_handle_exception@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
??1locale@_STL@@QAE@XZ
?_M_use_facet@locale@_STL@@QBEPAVfacet@12@ABVid@12@@Z
?id@?$num_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@2V0locale@2@A
?getloc@ios_base@_STL@@QBE?AVlocale@2@XZ
?flush@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@XZ
??0runtime_error@_STL@@QAE@ABV01@@Z
?what@__Named_exception@_STL@@UBEPBDXZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ID@Z
??1runtime_error@_STL@@UAE@XZ
??_D?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?close@?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?put@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@D@Z
?_M_put_nowiden@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBD@Z
??0?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAE@PBDH@Z
?find_last_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
??0?$allocator@D@_STL@@QAE@XZ
??_D?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAEXXZ
?open@?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBDH@Z
??0?$basic_ifstream@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?open@?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBDH@Z
??0?$basic_ofstream@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?read@?$basic_istream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@PADH@Z
?write@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@PBDH@Z
??_7runtime_error@_STL@@6B@
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD@Z
??_D?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
??1?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@UAE@XZ
??1?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
?str@?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
?width@ios_base@_STL@@QAEHH@Z
?setf@ios_base@_STL@@QAEHHH@Z
??0?$basic_ostringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
?sputc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHD@Z
?find_first_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
?_M_throw_out_of_range@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?find_last_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??1?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
?copy@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPADII@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
?_M_assign_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABUforward_iterator_tag@2@@Z
?_M_allocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXI@Z
??0__Named_exception@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
??1logic_error@_STL@@UAE@XZ

msvcp60

??0bad_alloc@std@@QAE@ABV01@@Z
??_7bad_alloc@std@@6B@
??1bad_alloc@std@@UAE@XZ

msvcrt

_assert
memmove
memcmp
sprintf
memset
atoi
_i64toa
_ultoa
_ui64toa
atol
_atoi64
??1exception@@UAE@XZ
??0exception@@QAE@ABQBD@Z
_snprintf
_errno
strtol
strtoul
strcmp
_strlwr
pow
log10
atof
rand
_ftol
time
srand
__RTDynamicCast
??2@YAPAXI@Z
fclose
fread
fseek
fopen
??0exception@@QAE@XZ
_stricmp
isdigit
isalpha
isspace
strrchr
strchr
strncmp
sscanf
?what@exception@@UBEPBDXZ
free
??1type_info@@UAE@XZ
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
_initterm
malloc
_adjust_fdiv
strlen
??0exception@@QAE@ABV0@@Z
_purecall
memcpy
_CxxThrowException
strstr
__CxxFrameHandler
_itoa

advapi32

RegCloseKey
RegOpenKeyA
RegSetValueExA
RegCreateKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CloseServiceHandle
UnlockServiceDatabase
LockServiceDatabase
OpenSCManagerA
GetUserNameA
RegOpenKeyExA
RegQueryValueExA

shell32

SHGetSpecialFolderPathA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

ws2_32

gethostname
inet_ntoa
WSASocketA
ntohs
WSAIoctl
gethostbyname
WSAGetLastError
ntohl
inet_addr

iphlpapi

GetAdaptersInfo

asyn_dns

ord6
ord5
ord11
ord10
ord9

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninst.exe.nsis
upnp.exe
.exe windows:4 windows x86 arch:x86

db3aaec65b2cf92bd344076287539133

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

stlport_vc646

??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
?_M_deallocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXXZ
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
?_M_deallocate@?$__node_alloc@$00$0A@@_STL@@CAXPAXI@Z
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
?deallocate@?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAEXPADI@Z
??0?$allocator@D@_STL@@QAE@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABU__false_type@2@@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD0ABUforward_iterator_tag@2@@Z
?_M_throw_out_of_range@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@PAD@Z
?find_first_not_of@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@PBD@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@II@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD0@Z
?rfind@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPAD0@Z
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABUforward_iterator_tag@2@@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ID@Z
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
?_M_allocate@?$__node_alloc@$00$0A@@_STL@@CAPAXI@Z
??0_Loc_init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??0Init@ios_base@_STL@@QAE@XZ
??1Init@ios_base@_STL@@QAE@XZ
?_M_list@?$_Stl_prime@_N@_STL@@2QBIB
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEPADPAD0@Z
?_M_assign_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?deallocate@?$allocator@D@_STL@@QAEXPADI@Z
??1?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@XZ
??1?$allocator@D@_STL@@QAE@XZ

ws2_32

send
recv
htons
inet_addr
connect
WSAStartup
socket

msvcrt

free
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
??1type_info@@UAE@XZ
__dllonexit
_onexit
_controlfp
atol
??2@YAPAXI@Z
memmove
isdigit
_snprintf
__CxxFrameHandler

kernel32

DeleteCriticalSection
InitializeCriticalSection

Sections

.text
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xldc.dll
.dll regsvr32 windows:4 windows x86 arch:x86

c93797393d782153dadff23cad7c9e12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrlenW
MultiByteToWideChar
lstrlenA
GetShortPathNameA
GetModuleHandleA
GetModuleFileNameA
HeapDestroy
GetProcAddress
LoadLibraryA
lstrcpyA
lstrcatA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
EnterCriticalSection
LeaveCriticalSection
MoveFileA
CreateDirectoryA
FindFirstFileA
FindNextFileA
FindClose
DeleteCriticalSection
InitializeCriticalSection
FreeLibrary
DeleteFileA
GetFileSize
ReadFile
WriteFile
CreateFileA
WritePrivateProfileStringA
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionA
GetWindowsDirectoryA
GetDiskFreeSpaceA
GetLastError
GetTempPathA
CloseHandle
CreateEventA

user32

CharNextA

shell32

SHGetSpecialFolderPathA

ole32

CoCreateInstance

oleaut32

RegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString

shlwapi

PathIsDirectoryA
PathFileExistsA

stlport_vc646

??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD0@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
?_M_deallocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXXZ
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??1?$allocator@D@_STL@@QAE@XZ
??1?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@XZ
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@II@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPBD0ABUforward_iterator_tag@2@@Z
??0__Named_exception@_STL@@QAE@ABV01@@Z
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
??1logic_error@_STL@@UAE@XZ
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABU__false_type@2@@Z
?_M_throw_out_of_range@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
??_7logic_error@_STL@@6B@
??0__Named_exception@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@@Z
?_M_assign_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PBD0ABUforward_iterator_tag@2@@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBD@Z
?_M_append_dispatch@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABU__false_type@2@@Z
?_Rebalance_for_erase@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@AAPAU32@11@Z
?_M_range_initialize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEXPBD0@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
?deallocate@?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAEXPADI@Z
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAEAAV12@PAD0ABUforward_iterator_tag@2@@Z
?_M_allocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXI@Z
??0?$_STLP_alloc_proxy@PADDV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@PAD@Z
?_Rebalance@?$_Rb_global@_N@_STL@@SAXPAU_Rb_tree_node_base@2@AAPAU32@@Z
?get_allocator@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$allocator@D@2@XZ
?_M_deallocate@?$__node_alloc@$00$0A@@_STL@@CAXPAXI@Z
?_M_allocate@?$__node_alloc@$00$0A@@_STL@@CAPAXI@Z
?_M_increment@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_M_compare@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@SAHPBD000@Z
?_M_decrement@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
??0logic_error@_STL@@QAE@ABV01@@Z
?resize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXID@Z
??_D?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
?str@?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
??1?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?clear@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?_M_handle_exception@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
??1locale@_STL@@QAE@XZ
?_M_use_facet@locale@_STL@@QBEPAVfacet@12@ABVid@12@@Z
?id@?$num_put@DV?$ostreambuf_iterator@DV?$char_traits@D@_STL@@@_STL@@@_STL@@2V0locale@2@A
?getloc@ios_base@_STL@@QBE?AVlocale@2@XZ
?flush@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEAAV12@XZ
??0_Loc_init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??0Init@ios_base@_STL@@QAE@XZ
??1Init@ios_base@_STL@@QAE@XZ
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@II@Z
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@II@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?substr@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV12@II@Z
?_M_put_nowiden@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBD@Z
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@1@H@Z
??1?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?sputbackc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHD@Z
?setstate@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?push_back@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXD@Z
?sbumpc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHXZ
?reserve@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXI@Z
??0?$_Isentry@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_istream@DV?$char_traits@D@_STL@@@1@_N@Z

msvcrt

_adjust_fdiv
malloc
_initterm
??1type_info@@UAE@XZ
_onexit
__dllonexit
free
fopen
fgets
fclose
sprintf
strlen
__CxxFrameHandler
strcpy
time
memcpy
_CxxThrowException
??2@YAPAXI@Z
memset
memcmp
??0exception@@QAE@ABV0@@Z
_purecall
atoi
?what@exception@@UBEPBDXZ
strrchr
_ultoa
atol
abs
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_itoa

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18bc6fa81e19f21156316b1ae696ed6b

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate

Extended Key Usages

Key Usages

3d:c3:09:c2:ed:0e:e4:35:09:fc:8b:d8:68:bc:4c:fdCertificate

Extended Key Usages

Key Usages

Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 108KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 27KB - Virtual size: 27KB

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 954B

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 1024B - Virtual size: 784B

.data Size: 512B - Virtual size: 92B

.reloc Size: 512B - Virtual size: 494B

cb15c4ce4f27454ccf6f64d3e8a9ffaf

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 12KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

3d:c3:09:c2:ed:0e:e4:35:09:fc:8b:d8:68:bc:4c:fd
Certificate

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 108KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 27KB - Virtual size: 27KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 954B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 92B

.reloc
Size: 512B - Virtual size: 494B

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 12KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 512B

.rsrc
Size: 8KB - Virtual size: 5KB

.text
Size: 16KB - Virtual size: 13KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 1KB

.text
Size: 288KB - Virtual size: 284KB

.rdata
Size: 80KB - Virtual size: 78KB

.data
Size: 8KB - Virtual size: 18KB

.rsrc
Size: 32KB - Virtual size: 30KB

.reloc
Size: 24KB - Virtual size: 23KB