Computech Windows Tweaker 1[.]0[.]0[.]0[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

Computech Windows Tweaker 1.0.0.0.rar
Size

3.6MB
MD5

891697163c1234784e6877d332b9644e
SHA1

f83d18e0be83f774e4dbbaa811d53a8dc02e4c0b
SHA256

70ef5358251a9fffc5fdb8b438d9f9a6252813a18961d4337c06fbe19f76307e
SHA512

ee7ad4720f0db7b20c1c293f49437a6574aae782f784b04917e0f072a75dc1d66245551c63a6958f6c53267f7bf5cf715a619e634fc4187622f0ea3bbc913c93
SSDEEP

98304:RqM+TPCH6M0GXt3cNas66eedyZgHKJLg3:R7+TPCHHhV6ejZYKhM

Score

3^/10

Malware Config

Signatures

Unsigned PE 6 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Computech Windows Tweaker 1.0.0.0/WinTweaks.exe
unpack001/Computech Windows Tweaker 1.0.0.0/cdp.dll
unpack001/Computech Windows Tweaker 1.0.0.0/msvcr71/Ionic.Zip.dll
unpack001/Computech Windows Tweaker 1.0.0.0/msvcr71/Launcher.exe
unpack001/Computech Windows Tweaker 1.0.0.0/msvcr71/cdp.dll
unpack001/Computech Windows Tweaker 1.0.0.0/msvcr71/sas.exe

Files

Computech Windows Tweaker 1.0.0.0.rar
.rar
Computech Windows Tweaker 1.0.0.0/WinTweaks.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Computech Windows Tweaker 1.0.0.0/cdp.dll
.dll regsvr32 windows:10 windows x64 arch:x64

1d688f3e339fa209fa2edf2b13190bef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

cdp.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm

api-ms-win-crt-string-l1-1-0

wcsncmp
strncmp
memset
strpbrk

api-ms-win-crt-private-l1-1-0

_o__localtime64_s
_o__mkgmtime64
_o__mktime64
_o__purecall
_o__register_onexit_function
_o__seh_filter_dll
_o__set_errno
_o__stricmp
_o__strnicmp
_o__strtoui64
_o__wcsicmp
_o_atoi
memmove
_o_free
_o_iswspace
_o_malloc
_o_modf
_o_rand
_o_realloc
_o_strcpy_s
_o_strftime
_o_strncpy_s
_o_strtol
_o_strtoul
_o_terminate
_o_tolower
_o_toupper
_o_wcstoul
__C_specific_handler
_o___std_type_info_destroy_list
_o___std_exception_destroy
_o___std_exception_copy
_o__invalid_parameter_noinfo_noreturn
_o__invalid_parameter_noinfo
strstr
_o__execute_onexit_table
_o__errno
_o__initialize_onexit_table
_o__initialize_narrow_environment
_o__dtest
_o__gmtime64_s
_o__difftime64
_o__crt_atexit
_o__configure_narrow_argv
_o__cexit
_o__callnewh
__CxxFrameHandler3
__std_terminate
__std_type_info_compare
strchr
wcschr
_CxxThrowException
_o__get_errno
_o___stdio_common_vswprintf_s
_o___stdio_common_vswprintf
_o___stdio_common_vsscanf
_o___stdio_common_vsprintf_s
_o___stdio_common_vsprintf
_o___stdio_common_vsnprintf_s
memchr
memcmp
memcpy

combase

ord12
ord6
ord14
ord17
ord2
CStdStubBuffer_DebugServerQueryInterface
ord10
ord13
ord11
CStdStubBuffer_Invoke
ord154
NdrCStdStubBuffer_Release
ord24
ord4
CStdStubBuffer_AddRef
ord5
ord7
ord8
CStdStubBuffer_CountRefs
ord16
ord9
CStdStubBuffer_QueryInterface
CStdStubBuffer_DebugServerRelease
ord15
CStdStubBuffer_Disconnect
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Connect
ord3
ord23
CStdStubBuffer2_Connect
ord32
NdrCStdStubBuffer2_Release
CStdStubBuffer2_CountRefs
ord21
ord26
ord20
ord27
ord19
ord22
CStdStubBuffer2_Disconnect
ord25
ord34
ord33
ord18
CStdStubBuffer2_QueryInterface

ntdll

NtOpenSemaphore
RtlIsMultiUsersInSessionSku
RtlGetDeviceFamilyInfoEnum
NtCreateWnfStateName
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RtlSidDominates
RtlInitUnicodeString
NtCreateSemaphore
RtlGetTokenNamedObjectPath
RtlFreeUnicodeString
RtlPublishWnfStateData
NtOpenMutant
NtQueryWnfStateData
RtlUnsubscribeWnfNotificationWaitForCompletion
RtlSubscribeWnfStateChangeNotification
NtDeleteWnfStateName

rpcrt4

IUnknown_Release_Proxy
NdrOleFree
IUnknown_QueryInterface_Proxy
NdrStubCall3
NdrStubForwardingFunction
IUnknown_AddRef_Proxy
NdrClientCall3
NdrOleAllocate
UuidFromStringW
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrDllRegisterProxy
NdrDllUnregisterProxy
RpcServerInqCallAttributesW

api-ms-win-core-libraryloader-l1-2-0

FreeLibrary
FindStringOrdinal
GetModuleFileNameA
LockResource
GetModuleHandleW
FindResourceExW
DisableThreadLibraryCalls
GetModuleHandleExW
LoadResource
GetProcAddress

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-0

GetCurrentThread
GetCurrentThreadId
OpenThreadToken
OpenProcessToken
TerminateProcess
GetCurrentProcess
GetCurrentProcessId
SetThreadToken

api-ms-win-core-sysinfo-l1-1-0

GetSystemTimeAsFileTime
GetTickCount64
GetLocalTime
GetSystemTime
GetComputerNameExW
GetVersionExW
GetTickCount

api-ms-win-core-interlocked-l1-1-0

InitializeSListHead

api-ms-win-core-debug-l1-1-0

OutputDebugStringW
IsDebuggerPresent
DebugBreak

api-ms-win-core-errorhandling-l1-1-0

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetLastError
RaiseException
SetLastError

api-ms-win-core-processthreads-l1-1-1

IsProcessorFeaturePresent

shcore

ord190
SHCreateMemStream
IStream_Write
IStream_Reset
IStream_WriteStr
IStream_ReadStr
IStream_Size
IStream_Read

msvcp_win

?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrCopyException@@YAXPEAXPEBX1@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAADD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?setf@ios_base@std@@QEAAHHH@Z
_Query_perf_frequency
_Query_perf_counter
?_Xinvalid_argument@std@@YAXPEBD@Z
_Cnd_init
_Mtx_destroy
_Thrd_detach
_Thrd_start
_Mtx_init
_Cnd_wait
_Cnd_destroy
_Cnd_do_broadcast_at_thread_exit
_Cnd_broadcast
_Thrd_hardware_concurrency
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?tolower@?$ctype@D@std@@QEBADD@Z
?is@?$ctype@D@std@@QEBA_NFD@Z
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
?id@?$collate@D@std@@2V0locale@2@A
??Bid@locale@std@@QEAA_KXZ
?id@?$ctype@D@std@@2V0locale@2@A
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
??0_Lockit@std@@QEAA@H@Z
??0_Locinfo@std@@QEAA@PEBD@Z
?c_str@?$_Yarn@D@std@@QEBAPEBDXZ
??1_Lockit@std@@QEAA@XZ
??1_Locinfo@std@@QEAA@XZ
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Incref@facet@locale@std@@UEAAXXZ
?setf@ios_base@std@@QEAAHH@Z
_Thrd_yield
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
_Strcoll
_Strxfrm
??1facet@locale@std@@MEAA@XZ
??0facet@locale@std@@IEAA@_K@Z
_Unlock_shared_ptr_spin_lock
_Thrd_id
_Lock_shared_ptr_spin_lock
?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_Syserror_map@std@@YAPEBDH@Z
_Thrd_join
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Xbad_alloc@std@@YAXXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Xbad_function_call@std@@YAXXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
?setp@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXPEAG00@Z
?epptr@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
?setg@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXPEAG00@Z
?egptr@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
?eback@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IEAA@XZ
?setp@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXPEAG0@Z
?pbase@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAA@XZ
?sputn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAA_JPEBG_J@Z
?imbue@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAXAEBVlocale@2@@Z
?setbuf@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAPEAV12@PEAG_J@Z
?xsgetn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JPEAG_J@Z
?uflow@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAGXZ
?showmanyc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JXZ
?xsputn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JPEBG_J@Z
?sputc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAAGG@Z
?__ExceptionPtrRethrow@@YAXPEBX@Z
?_Lock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAAXXZ
?_Osfx@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAXXZ
?sync@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAHXZ
?rdbuf@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAPEAV?$basic_streambuf@GU?$char_traits@G@std@@@2@XZ
?setstate@?$basic_ios@GU?$char_traits@G@std@@@std@@QEAAXH_N@Z
?flush@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV12@XZ
?tie@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAPEAV?$basic_ostream@GU?$char_traits@G@std@@@2@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAA@XZ
?_Pninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAPEAGXZ
?gbump@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXH@Z
?pptr@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
?gptr@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UEAA@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?_Random_device@std@@YAIXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
_Mtx_lock
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
_Thrd_sleep
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?_Throw_future_error@std@@YAXAEBVerror_code@1@@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
_Mtx_init_in_situ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAN@Z
??7ios_base@std@@QEBA_NXZ
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?id@?$codecvt@GDU_Mbstatet@@@std@@2V0locale@2@A
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
??1?$codecvt@GDU_Mbstatet@@@std@@MEAA@XZ
??0?$codecvt@GDU_Mbstatet@@@std@@QEAA@_K@Z
?out@?$codecvt@GDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBG1AEAPEBGPEAD3AEAPEAD@Z
?in@?$codecvt@GDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAG3AEAPEAG@Z
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAK@Z
_Mtx_destroy_in_situ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Throw_C_error@std@@YAXH@Z
_Mtx_unlock
?_Xout_of_range@std@@YAXPEBD@Z
_Cnd_signal
_Cnd_timedwait
?_Throw_Cpp_error@std@@YAXH@Z
?_Xlength_error@std@@YAXPEBD@Z
_Cnd_register_at_thread_exit
?__ExceptionPtrToBool@@YA_NPEBX@Z
?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?good@ios_base@std@@QEBA_NXZ
?uncaught_exception@std@@YA_NXZ
?width@ios_base@std@@QEAA_J_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?flags@ios_base@std@@QEBAHXZ
?width@ios_base@std@@QEBA_JXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?fill@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAGXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
_Cnd_init_in_situ
_Cnd_destroy_in_situ
_Xtime_get_ticks
_Mtx_current_owns
_Cnd_unregister_at_thread_exit
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@K@Z
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z

api-ms-win-crt-time-l1-1-0

clock
_time64

umpdc

Pdcv2ActivationClientDeactivate
Pdcv2ActivationClientRegister
Pdcv2ActivationClientUnregister
Pdcv2ActivationClientActivate

api-ms-win-core-winrt-string-l1-1-0

HSTRING_UserSize
HSTRING_UserFree64
HSTRING_UserUnmarshal
WindowsCreateString
HSTRING_UserSize64
HSTRING_UserFree
HSTRING_UserMarshal64
WindowsCreateStringReference
HSTRING_UserUnmarshal64
HSTRING_UserMarshal
WindowsDeleteString
WindowsGetStringRawBuffer

api-ms-win-core-string-l1-1-0

CompareStringOrdinal

api-ms-win-core-winrt-error-l1-1-1

RoGetMatchingRestrictedErrorInfo

api-ms-win-core-localization-l1-2-0

FormatMessageW
GetSystemPreferredUILanguages
GetLocaleInfoEx

api-ms-win-core-com-l1-1-0

CoImpersonateClient
CoRevertToSelf
CoTaskMemAlloc
CoTaskMemRealloc
CoSwitchCallContext
CoTaskMemFree
CLSIDFromString
CoCreateInstance
CoSetProxyBlanket
StringFromCLSID
CoWaitForMultipleHandles
CoCreateFreeThreadedMarshaler

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-winrt-error-l1-1-0

SetRestrictedErrorInfo

api-ms-win-core-winrt-l1-1-0

RoActivateInstance
RoGetActivationFactory
RoInitialize
RoUninitialize

api-ms-win-core-threadpool-l1-2-0

SubmitThreadpoolWork
FreeLibraryWhenCallbackReturns
CloseThreadpoolWork
SetThreadpoolWait
CreateThreadpoolTimer
WaitForThreadpoolWorkCallbacks
CreateThreadpoolWork
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CloseThreadpoolWait
CloseThreadpool
CreateThreadpool
WaitForThreadpoolWaitCallbacks
SetThreadpoolThreadMinimum
SetThreadpoolThreadMaximum
CreateThreadpoolWait

api-ms-win-core-synch-l1-1-0

InitializeCriticalSectionAndSpinCount
ReleaseSemaphore
ReleaseSRWLockExclusive
ResetEvent
CreateEventExW
CreateEventW
CreateSemaphoreExW
EnterCriticalSection
LeaveCriticalSection
ReleaseSRWLockShared
WaitForSingleObject
ReleaseMutex
WaitForSingleObjectEx
OpenSemaphoreW
AcquireSRWLockShared
CreateMutexExW
DeleteCriticalSection
TryAcquireSRWLockExclusive
InitializeSRWLock
InitializeCriticalSectionEx
AcquireSRWLockExclusive
SetEvent
CreateMutexW
OpenMutexW

api-ms-win-core-heap-l1-1-0

GetProcessHeap
HeapFree
HeapAlloc

api-ms-win-core-registry-l1-1-0

RegCreateKeyExW
RegSetValueExW
RegCreateKeyExA
RegNotifyChangeKeyValue
RegQueryInfoKeyA
RegOpenKeyExA
RegEnumKeyExA
RegGetValueW
RegCloseKey
RegGetValueA

api-ms-win-eventing-provider-l1-1-0

EventWriteTransfer
EventUnregister
EventRegister
EventSetInformation
EventProviderEnabled

api-ms-win-appmodel-runtime-l1-1-0

GetCurrentPackageInfo

api-ms-win-appmodel-runtime-l1-1-1

GetApplicationUserModelIdFromToken
GetPackageFamilyNameFromToken

api-ms-win-core-sysinfo-l2-1-0

GetUserNameW

api-ms-win-security-base-l1-1-0

CopySid
GetLengthSid
GetTokenInformation
CreateWellKnownSid
RevertToSelf
ImpersonateLoggedOnUser

api-ms-win-core-processenvironment-l1-1-0

ExpandEnvironmentStringsW

api-ms-win-core-synch-l1-2-0

InitOnceBeginInitialize
InitOnceComplete
Sleep

api-ms-win-core-file-l1-1-0

DeleteFileW
FindClose
CreateFileW
RemoveDirectoryW
FindNextFileW
GetFullPathNameW
FindFirstFileW
ReadFile
CreateDirectoryW
FlushFileBuffers
CreateDirectoryA
SetFilePointerEx
GetFileAttributesW
SetEndOfFile
SetFilePointer
WriteFile
GetFileSizeEx

api-ms-win-core-file-l1-2-0

CreateFile2

api-ms-win-security-sddl-l1-1-0

ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSidToStringSidW

api-ms-win-core-heap-l2-1-0

LocalFree
LocalAlloc

api-ms-win-core-path-l1-1-0

PathCchSkipRoot
PathAllocCombine

api-ms-win-core-file-l2-1-0

MoveFileExW

api-ms-win-core-com-l1-1-1

RoGetAgileReference

crypt32

CertOpenStore
CertCreateCertificateContext
CryptProtectData
CryptUnprotectData
CertGetCertificateContextProperty
CertGetNameStringW
CertDeleteCertificateFromStore
CertCreateSelfSignCertificate
CertFreeCertificateContext
CertAddCertificateContextToStore
CertSaveStore
CertDuplicateCertificateContext
CertCloseStore
CertFindCertificateInStore
CertStrToNameW

api-ms-win-core-timezone-l1-1-0

FileTimeToSystemTime

api-ms-win-core-libraryloader-l1-2-1

LoadLibraryW

api-ms-win-devices-query-l1-1-0

DevCreateObjectQuery
DevCloseObjectQuery

api-ms-win-core-io-l1-1-0

CreateIoCompletionPort
CancelIoEx
GetQueuedCompletionStatus
PostQueuedCompletionStatus
DeviceIoControl

propsys

PSPropertyBag_WriteStr
PSCreateMemoryPropertyStore
PSPropertyBag_WriteUnknown

api-ms-win-core-heap-obsolete-l1-1-0

LocalSize

api-ms-win-core-delayload-l1-1-1

ResolveDelayLoadedAPI

api-ms-win-core-delayload-l1-1-0

DelayLoadFailureHook

kernelbase

BaseFormatObjectAttributes

dsreg

DsrGetJoinInfo
DsrFreeJoinInfo

api-ms-win-core-apiquery-l1-1-0

ApiSetQueryApiSetPresence

api-ms-win-security-capability-l1-1-0

RpcClientCapabilityCheck
CapabilityCheck

Exports

Exports

CDPAccountFromWebAccount
CDPAcquireNetworkingInternal
CDPCreateAFSRegistrationClientInternal
CDPCreateAFSUserSettingsInternal
CDPCreateAccountInternalForUser
CDPCreateAccountInternalWithStableUserId
CDPCreateAccountProviderInternal
CDPCreateActivity
CDPCreateActivityInternal
CDPCreateActivityStoreInfoInternal
CDPCreateActivityStoreInfoWatcher
CDPCreateActivityStoreInfoWatcherForUser
CDPCreateActivityStoreInfoWatcherInternal
CDPCreateActivityStoreReader
CDPCreateActivityStoreReaderForUser
CDPCreateActivityStoreReaderInternal
CDPCreateAllDevicesQuery
CDPCreateAllDevicesQueryForUser
CDPCreateAnonymousAccount
CDPCreateAnonymousAccountInternal
CDPCreateAppControlClient
CDPCreateAppControlClientInternal
CDPCreateAppId
CDPCreateAppRegistrationManager
CDPCreateAppRegistrationManagerForUser
CDPCreateAppRegistrationManagerInternal
CDPCreateAzureActiveDirectoryAccount
CDPCreateBeaconControl
CDPCreateBeaconControlInternal
CDPCreateBinaryClient
CDPCreateBinaryClientInternal
CDPCreateBinaryHost
CDPCreateBinaryHostInternal
CDPCreateBinaryHostWithSettings
CDPCreateCallbackNotifierInternal
CDPCreateCloudNotification
CDPCreateComObjectInternal
CDPCreateCrossPlatformAppId
CDPCreateCrossPlatformAppIdFromAppId
CDPCreateCurrentCrossPlatformAppId
CDPCreateDedupedDevice
CDPCreateDedupedDeviceQuery
CDPCreateDedupedDeviceQueryForUser
CDPCreateDedupedDeviceQueryInternal
CDPCreateDedupedDeviceQueryParameters
CDPCreateDeviceInternal
CDPCreateDeviceQuery
CDPCreateDeviceQueryForSessionInternal
CDPCreateDeviceQueryForUser
CDPCreateDeviceQueryInternal
CDPCreateDeviceQueryWithIdentity
CDPCreateDirectNotificationHost
CDPCreateEmptyAccountSettings
CDPCreateEnvironmentManagerInternal
CDPCreateHttpRequestInternal
CDPCreateMessagingHost
CDPCreateMessagingHostInternal
CDPCreateMicrosoftAccount
CDPCreateOrGetDdsRegistrationUserObjectInternal
CDPCreatePlatformSettingsInternal
CDPCreateRemoteUserInternal
CDPCreateResource
CDPCreateResourceCollection
CDPCreateSettingsInteropInternal
CDPCreateTask
CDPCreateTaskInternal
CDPCreateTelemetryTask
CDPCreateTelemetryTaskInternal
CDPCreateUserInternal
CDPCreateUserNotificationClientInternal
CDPCreateUserServiceNotificationClient
CDPCreateUserServiceNotificationClientForUser
CDPCreateUuid
CDPFixAccounts
CDPGetAFCInitializer
CDPGetAccountProviderInternal
CDPGetAccountsNeedAttention
CDPGetAccountsSettings
CDPGetActivityStore
CDPGetActivityStoreForAccount
CDPGetActivityStoreForAccountInternal
CDPGetActivityStoreForStoreInfo
CDPGetActivityStoreForStoreInfoAndUser
CDPGetActivityStoreForStoreInfoInternal
CDPGetActivityStoreForUser
CDPGetActivityStoreInternal
CDPGetCloudNotificationProviderInternal
CDPGetCoreInitializer
CDPGetDeviceCache
CDPGetDeviceCacheInternal
CDPGetHost
CDPGetLogger
CDPGetNearShareAuthorizationPolicyOfInteractiveUser
CDPGetRelayInitializer
CDPGetResourceHandler
CDPGetResourceManager
CDPGetSDKAuthorizationPolicyOfInteractiveUser
CDPGetSGSocket
CDPGetSystemAppId
CDPGetUserActivitySettings
CDPGetUserActivitySettingsForUser
CDPGetUserActivitySettingsInternal
CDPGetUserCollectionInternal
CDPInitialize
CDPInitializeForService
CDPInitializeSGPowerOnPacket
CDPInitializeUserService
CDPInitializeUserServicePhase2
CDPIsEnabled
CDPPreShutdown
CDPRegisterActivityConflictResolverInternal
CDPReleaseNetworkingInternal
CDPResume
CDPSetAccountProviderInternal
CDPSetAppControlHostCallback
CDPSetExtendedLocalDeviceStatus
CDPSetResourceConfigProvider
CDPSetServicePid
CDPShutdown
CDPShutdownBluetooth
CDPStartCCSPolling
CDPStopCCSPolling
CDPSuspend
CDPUninitializeUserService
CDPWriteAccountSettings
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetProxyDllInfo

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Computech Windows Tweaker 1.0.0.0/en-US.jar
.zip
locale/en-US/alerts/notificationNames.properties
locale/en-US/autoconfig/autoconfig.properties
locale/en-US/cookie/cookieAcceptDialog.dtd
locale/en-US/cookie/cookieAcceptDialog.properties
locale/en-US/global-platform/mac/accessible.properties
locale/en-US/global-platform/mac/intl.properties
locale/en-US/global-platform/mac/platformKeys.properties
locale/en-US/global-platform/unix/accessible.properties
locale/en-US/global-platform/unix/intl.properties
locale/en-US/global-platform/unix/platformKeys.properties
locale/en-US/global-platform/win/accessible.properties
locale/en-US/global-platform/win/intl.properties
locale/en-US/global-platform/win/platformKeys.properties
locale/en-US/global-region/region.dtd
locale/en-US/global-region/region.properties
locale/en-US/global/about.dtd
locale/en-US/global/aboutRights.dtd
locale/en-US/global/aboutRights.properties
locale/en-US/global/appPicker.dtd
locale/en-US/global/appstrings.properties
locale/en-US/global/brand.dtd
locale/en-US/global/browser.properties
locale/en-US/global/charsetOverlay.dtd
locale/en-US/global/charsetTitles.properties
locale/en-US/global/commonDialog.dtd
locale/en-US/global/commonDialogs.properties
locale/en-US/global/config.dtd
locale/en-US/global/config.properties
locale/en-US/global/console.dtd
locale/en-US/global/console.properties
locale/en-US/global/contentAreaCommands.properties
locale/en-US/global/crashes.dtd
locale/en-US/global/crashes.properties
locale/en-US/global/css.properties
locale/en-US/global/customizeCharset.dtd
locale/en-US/global/customizeToolbar.dtd
locale/en-US/global/customizeToolbar.properties
locale/en-US/global/dateFormat.properties
locale/en-US/global/datetimepicker.dtd
locale/en-US/global/dialog.properties
locale/en-US/global/dialogOverlay.dtd
locale/en-US/global/dom/dom.properties
locale/en-US/global/downloadProgress.properties
locale/en-US/global/editMenuOverlay.dtd
locale/en-US/global/filefield.properties
locale/en-US/global/filepicker.dtd
locale/en-US/global/filepicker.properties
locale/en-US/global/findbar.dtd
locale/en-US/global/findbar.properties
locale/en-US/global/finddialog.dtd
locale/en-US/global/finddialog.properties
locale/en-US/global/global-strres.properties
locale/en-US/global/global.dtd
locale/en-US/global/globalKeys.dtd
locale/en-US/global/gnomeprintdialog.properties
locale/en-US/global/intl.css
locale/en-US/global/intl.properties
locale/en-US/global/keys.properties
locale/en-US/global/languageNames.properties
locale/en-US/global/layout/HtmlForm.properties
locale/en-US/global/layout/MediaDocument.properties
locale/en-US/global/layout/xmlparser.properties
locale/en-US/global/layout_errors.properties
locale/en-US/global/license.dtd
locale/en-US/global/mozilla.dtd
locale/en-US/global/netError.dtd
locale/en-US/global/netErrorApp.dtd
locale/en-US/global/notification.dtd
locale/en-US/global/nsHelperAppDlg.dtd
locale/en-US/global/nsHelperAppDlg.properties
locale/en-US/global/nsProgressDialog.dtd
locale/en-US/global/nsProgressDialog.properties
locale/en-US/global/nsWebBrowserPersist.properties
locale/en-US/global/plugins.properties
locale/en-US/global/preferences.dtd
locale/en-US/global/printPageSetup.dtd
locale/en-US/global/printPreview.dtd
locale/en-US/global/printPreviewProgress.dtd
locale/en-US/global/printProgress.dtd
locale/en-US/global/printdialog.dtd
locale/en-US/global/printdialog.properties
locale/en-US/global/printing.properties
locale/en-US/global/printjoboptions.dtd
locale/en-US/global/prompts.properties
locale/en-US/global/regionNames.properties
locale/en-US/global/search/search.properties
locale/en-US/global/security/caps.properties
locale/en-US/global/storage.properties
locale/en-US/global/svg/svg.properties
locale/en-US/global/textcontext.dtd
locale/en-US/global/tree.dtd
locale/en-US/global/videocontrols.dtd
locale/en-US/global/viewSource.dtd
locale/en-US/global/viewSource.properties
locale/en-US/global/webservices/security.properties
locale/en-US/global/wizard.dtd
locale/en-US/global/wizard.properties
locale/en-US/global/xbl.properties
locale/en-US/global/xml/prettyprint.dtd
locale/en-US/global/xpinstall/xpinstall.properties
locale/en-US/global/xslt/xslt.properties
locale/en-US/global/xul.properties
locale/en-US/mozapps/downloads/downloads.dtd
locale/en-US/mozapps/downloads/downloads.properties
locale/en-US/mozapps/downloads/settingsChange.dtd
locale/en-US/mozapps/downloads/unknownContentType.dtd
locale/en-US/mozapps/downloads/unknownContentType.properties
locale/en-US/mozapps/extensions/about.dtd
locale/en-US/mozapps/extensions/blocklist.dtd
locale/en-US/mozapps/extensions/errors.dtd
locale/en-US/mozapps/extensions/extensions.dtd
locale/en-US/mozapps/extensions/extensions.properties
locale/en-US/mozapps/extensions/update.dtd
locale/en-US/mozapps/extensions/update.properties
locale/en-US/mozapps/handling/handling.dtd
locale/en-US/mozapps/handling/handling.properties
locale/en-US/mozapps/plugins/plugins.dtd
locale/en-US/mozapps/plugins/plugins.properties
locale/en-US/mozapps/preferences/changemp.dtd
locale/en-US/mozapps/preferences/ocsp.dtd
locale/en-US/mozapps/preferences/preferences.properties
locale/en-US/mozapps/preferences/removemp.dtd
locale/en-US/mozapps/profile/createProfileWizard.dtd
locale/en-US/mozapps/profile/profileSelection.dtd
locale/en-US/mozapps/profile/profileSelection.properties
locale/en-US/mozapps/update/history.dtd
locale/en-US/mozapps/update/incompatible.dtd
locale/en-US/mozapps/update/updates.dtd
locale/en-US/mozapps/update/updates.properties
locale/en-US/mozapps/xpinstall/xpinstallConfirm.dtd
locale/en-US/mozapps/xpinstall/xpinstallConfirm.properties
locale/en-US/necko/necko.properties
locale/en-US/passwordmgr/passwordManager.dtd
locale/en-US/passwordmgr/passwordmgr.properties
locale/en-US/pipnss/nsserrors.properties
locale/en-US/pipnss/pipnss.properties
locale/en-US/pipnss/security.properties
locale/en-US/pippki/certManager.dtd
locale/en-US/pippki/deviceManager.dtd
locale/en-US/pippki/pippki.dtd
locale/en-US/pippki/pippki.properties
locale/en-US/pippki/validation.dtd
locale/en-US/places/places.properties
Computech Windows Tweaker 1.0.0.0/msvcr71/Ionic.Zip.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 478KB - Virtual size: 477KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Computech Windows Tweaker 1.0.0.0/msvcr71/LICENCE.dat
.zip
Computech Windows Tweaker 1.0.0.0/msvcr71/Launcher.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Computech Windows Tweaker 1.0.0.0/msvcr71/cdp.dll
.dll regsvr32 windows:10 windows x64 arch:x64

1d688f3e339fa209fa2edf2b13190bef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

cdp.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm

api-ms-win-crt-string-l1-1-0

wcsncmp
strncmp
memset
strpbrk

api-ms-win-crt-private-l1-1-0

_o__localtime64_s
_o__mkgmtime64
_o__mktime64
_o__purecall
_o__register_onexit_function
_o__seh_filter_dll
_o__set_errno
_o__stricmp
_o__strnicmp
_o__strtoui64
_o__wcsicmp
_o_atoi
memmove
_o_free
_o_iswspace
_o_malloc
_o_modf
_o_rand
_o_realloc
_o_strcpy_s
_o_strftime
_o_strncpy_s
_o_strtol
_o_strtoul
_o_terminate
_o_tolower
_o_toupper
_o_wcstoul
__C_specific_handler
_o___std_type_info_destroy_list
_o___std_exception_destroy
_o___std_exception_copy
_o__invalid_parameter_noinfo_noreturn
_o__invalid_parameter_noinfo
strstr
_o__execute_onexit_table
_o__errno
_o__initialize_onexit_table
_o__initialize_narrow_environment
_o__dtest
_o__gmtime64_s
_o__difftime64
_o__crt_atexit
_o__configure_narrow_argv
_o__cexit
_o__callnewh
__CxxFrameHandler3
__std_terminate
__std_type_info_compare
strchr
wcschr
_CxxThrowException
_o__get_errno
_o___stdio_common_vswprintf_s
_o___stdio_common_vswprintf
_o___stdio_common_vsscanf
_o___stdio_common_vsprintf_s
_o___stdio_common_vsprintf
_o___stdio_common_vsnprintf_s
memchr
memcmp
memcpy

combase

ord12
ord6
ord14
ord17
ord2
CStdStubBuffer_DebugServerQueryInterface
ord10
ord13
ord11
CStdStubBuffer_Invoke
ord154
NdrCStdStubBuffer_Release
ord24
ord4
CStdStubBuffer_AddRef
ord5
ord7
ord8
CStdStubBuffer_CountRefs
ord16
ord9
CStdStubBuffer_QueryInterface
CStdStubBuffer_DebugServerRelease
ord15
CStdStubBuffer_Disconnect
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Connect
ord3
ord23
CStdStubBuffer2_Connect
ord32
NdrCStdStubBuffer2_Release
CStdStubBuffer2_CountRefs
ord21
ord26
ord20
ord27
ord19
ord22
CStdStubBuffer2_Disconnect
ord25
ord34
ord33
ord18
CStdStubBuffer2_QueryInterface

ntdll

NtOpenSemaphore
RtlIsMultiUsersInSessionSku
RtlGetDeviceFamilyInfoEnum
NtCreateWnfStateName
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RtlSidDominates
RtlInitUnicodeString
NtCreateSemaphore
RtlGetTokenNamedObjectPath
RtlFreeUnicodeString
RtlPublishWnfStateData
NtOpenMutant
NtQueryWnfStateData
RtlUnsubscribeWnfNotificationWaitForCompletion
RtlSubscribeWnfStateChangeNotification
NtDeleteWnfStateName

rpcrt4

IUnknown_Release_Proxy
NdrOleFree
IUnknown_QueryInterface_Proxy
NdrStubCall3
NdrStubForwardingFunction
IUnknown_AddRef_Proxy
NdrClientCall3
NdrOleAllocate
UuidFromStringW
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrDllRegisterProxy
NdrDllUnregisterProxy
RpcServerInqCallAttributesW

api-ms-win-core-libraryloader-l1-2-0

FreeLibrary
FindStringOrdinal
GetModuleFileNameA
LockResource
GetModuleHandleW
FindResourceExW
DisableThreadLibraryCalls
GetModuleHandleExW
LoadResource
GetProcAddress

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-0

GetCurrentThread
GetCurrentThreadId
OpenThreadToken
OpenProcessToken
TerminateProcess
GetCurrentProcess
GetCurrentProcessId
SetThreadToken

api-ms-win-core-sysinfo-l1-1-0

GetSystemTimeAsFileTime
GetTickCount64
GetLocalTime
GetSystemTime
GetComputerNameExW
GetVersionExW
GetTickCount

api-ms-win-core-interlocked-l1-1-0

InitializeSListHead

api-ms-win-core-debug-l1-1-0

OutputDebugStringW
IsDebuggerPresent
DebugBreak

api-ms-win-core-errorhandling-l1-1-0

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetLastError
RaiseException
SetLastError

api-ms-win-core-processthreads-l1-1-1

IsProcessorFeaturePresent

shcore

ord190
SHCreateMemStream
IStream_Write
IStream_Reset
IStream_WriteStr
IStream_ReadStr
IStream_Size
IStream_Read

msvcp_win

?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrCopyException@@YAXPEAXPEBX1@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAADD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?setf@ios_base@std@@QEAAHHH@Z
_Query_perf_frequency
_Query_perf_counter
?_Xinvalid_argument@std@@YAXPEBD@Z
_Cnd_init
_Mtx_destroy
_Thrd_detach
_Thrd_start
_Mtx_init
_Cnd_wait
_Cnd_destroy
_Cnd_do_broadcast_at_thread_exit
_Cnd_broadcast
_Thrd_hardware_concurrency
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?tolower@?$ctype@D@std@@QEBADD@Z
?is@?$ctype@D@std@@QEBA_NFD@Z
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
?id@?$collate@D@std@@2V0locale@2@A
??Bid@locale@std@@QEAA_KXZ
?id@?$ctype@D@std@@2V0locale@2@A
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
??0_Lockit@std@@QEAA@H@Z
??0_Locinfo@std@@QEAA@PEBD@Z
?c_str@?$_Yarn@D@std@@QEBAPEBDXZ
??1_Lockit@std@@QEAA@XZ
??1_Locinfo@std@@QEAA@XZ
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Incref@facet@locale@std@@UEAAXXZ
?setf@ios_base@std@@QEAAHH@Z
_Thrd_yield
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
_Strcoll
_Strxfrm
??1facet@locale@std@@MEAA@XZ
??0facet@locale@std@@IEAA@_K@Z
_Unlock_shared_ptr_spin_lock
_Thrd_id
_Lock_shared_ptr_spin_lock
?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_Syserror_map@std@@YAPEBDH@Z
_Thrd_join
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Xbad_alloc@std@@YAXXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Xbad_function_call@std@@YAXXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
?setp@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXPEAG00@Z
?epptr@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
?setg@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXPEAG00@Z
?egptr@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
?eback@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IEAA@XZ
?setp@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXPEAG0@Z
?pbase@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAA@XZ
?sputn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAA_JPEBG_J@Z
?imbue@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAXAEBVlocale@2@@Z
?setbuf@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAPEAV12@PEAG_J@Z
?xsgetn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JPEAG_J@Z
?uflow@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAGXZ
?showmanyc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JXZ
?xsputn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JPEBG_J@Z
?sputc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAAGG@Z
?__ExceptionPtrRethrow@@YAXPEBX@Z
?_Lock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAAXXZ
?_Osfx@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAXXZ
?sync@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAHXZ
?rdbuf@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAPEAV?$basic_streambuf@GU?$char_traits@G@std@@@2@XZ
?setstate@?$basic_ios@GU?$char_traits@G@std@@@std@@QEAAXH_N@Z
?flush@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV12@XZ
?tie@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAPEAV?$basic_ostream@GU?$char_traits@G@std@@@2@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAA@XZ
?_Pninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAPEAGXZ
?gbump@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXH@Z
?pptr@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
?gptr@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBAPEAGXZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UEAA@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?_Random_device@std@@YAIXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
_Mtx_lock
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
_Thrd_sleep
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?_Throw_future_error@std@@YAXAEBVerror_code@1@@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
_Mtx_init_in_situ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAN@Z
??7ios_base@std@@QEBA_NXZ
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?id@?$codecvt@GDU_Mbstatet@@@std@@2V0locale@2@A
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
??1?$codecvt@GDU_Mbstatet@@@std@@MEAA@XZ
??0?$codecvt@GDU_Mbstatet@@@std@@QEAA@_K@Z
?out@?$codecvt@GDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBG1AEAPEBGPEAD3AEAPEAD@Z
?in@?$codecvt@GDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAG3AEAPEAG@Z
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAK@Z
_Mtx_destroy_in_situ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Throw_C_error@std@@YAXH@Z
_Mtx_unlock
?_Xout_of_range@std@@YAXPEBD@Z
_Cnd_signal
_Cnd_timedwait
?_Throw_Cpp_error@std@@YAXH@Z
?_Xlength_error@std@@YAXPEBD@Z
_Cnd_register_at_thread_exit
?__ExceptionPtrToBool@@YA_NPEBX@Z
?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?good@ios_base@std@@QEBA_NXZ
?uncaught_exception@std@@YA_NXZ
?width@ios_base@std@@QEAA_J_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?flags@ios_base@std@@QEBAHXZ
?width@ios_base@std@@QEBA_JXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?fill@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAGXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
_Cnd_init_in_situ
_Cnd_destroy_in_situ
_Xtime_get_ticks
_Mtx_current_owns
_Cnd_unregister_at_thread_exit
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@K@Z
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z

api-ms-win-crt-time-l1-1-0

clock
_time64

umpdc

Pdcv2ActivationClientDeactivate
Pdcv2ActivationClientRegister
Pdcv2ActivationClientUnregister
Pdcv2ActivationClientActivate

api-ms-win-core-winrt-string-l1-1-0

HSTRING_UserSize
HSTRING_UserFree64
HSTRING_UserUnmarshal
WindowsCreateString
HSTRING_UserSize64
HSTRING_UserFree
HSTRING_UserMarshal64
WindowsCreateStringReference
HSTRING_UserUnmarshal64
HSTRING_UserMarshal
WindowsDeleteString
WindowsGetStringRawBuffer

api-ms-win-core-string-l1-1-0

CompareStringOrdinal

api-ms-win-core-winrt-error-l1-1-1

RoGetMatchingRestrictedErrorInfo

api-ms-win-core-localization-l1-2-0

FormatMessageW
GetSystemPreferredUILanguages
GetLocaleInfoEx

api-ms-win-core-com-l1-1-0

CoImpersonateClient
CoRevertToSelf
CoTaskMemAlloc
CoTaskMemRealloc
CoSwitchCallContext
CoTaskMemFree
CLSIDFromString
CoCreateInstance
CoSetProxyBlanket
StringFromCLSID
CoWaitForMultipleHandles
CoCreateFreeThreadedMarshaler

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-winrt-error-l1-1-0

SetRestrictedErrorInfo

api-ms-win-core-winrt-l1-1-0

RoActivateInstance
RoGetActivationFactory
RoInitialize
RoUninitialize

api-ms-win-core-threadpool-l1-2-0

SubmitThreadpoolWork
FreeLibraryWhenCallbackReturns
CloseThreadpoolWork
SetThreadpoolWait
CreateThreadpoolTimer
WaitForThreadpoolWorkCallbacks
CreateThreadpoolWork
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CloseThreadpoolWait
CloseThreadpool
CreateThreadpool
WaitForThreadpoolWaitCallbacks
SetThreadpoolThreadMinimum
SetThreadpoolThreadMaximum
CreateThreadpoolWait

api-ms-win-core-synch-l1-1-0

InitializeCriticalSectionAndSpinCount
ReleaseSemaphore
ReleaseSRWLockExclusive
ResetEvent
CreateEventExW
CreateEventW
CreateSemaphoreExW
EnterCriticalSection
LeaveCriticalSection
ReleaseSRWLockShared
WaitForSingleObject
ReleaseMutex
WaitForSingleObjectEx
OpenSemaphoreW
AcquireSRWLockShared
CreateMutexExW
DeleteCriticalSection
TryAcquireSRWLockExclusive
InitializeSRWLock
InitializeCriticalSectionEx
AcquireSRWLockExclusive
SetEvent
CreateMutexW
OpenMutexW

api-ms-win-core-heap-l1-1-0

GetProcessHeap
HeapFree
HeapAlloc

api-ms-win-core-registry-l1-1-0

RegCreateKeyExW
RegSetValueExW
RegCreateKeyExA
RegNotifyChangeKeyValue
RegQueryInfoKeyA
RegOpenKeyExA
RegEnumKeyExA
RegGetValueW
RegCloseKey
RegGetValueA

api-ms-win-eventing-provider-l1-1-0

EventWriteTransfer
EventUnregister
EventRegister
EventSetInformation
EventProviderEnabled

api-ms-win-appmodel-runtime-l1-1-0

GetCurrentPackageInfo

api-ms-win-appmodel-runtime-l1-1-1

GetApplicationUserModelIdFromToken
GetPackageFamilyNameFromToken

api-ms-win-core-sysinfo-l2-1-0

GetUserNameW

api-ms-win-security-base-l1-1-0

CopySid
GetLengthSid
GetTokenInformation
CreateWellKnownSid
RevertToSelf
ImpersonateLoggedOnUser

api-ms-win-core-processenvironment-l1-1-0

ExpandEnvironmentStringsW

api-ms-win-core-synch-l1-2-0

InitOnceBeginInitialize
InitOnceComplete
Sleep

api-ms-win-core-file-l1-1-0

DeleteFileW
FindClose
CreateFileW
RemoveDirectoryW
FindNextFileW
GetFullPathNameW
FindFirstFileW
ReadFile
CreateDirectoryW
FlushFileBuffers
CreateDirectoryA
SetFilePointerEx
GetFileAttributesW
SetEndOfFile
SetFilePointer
WriteFile
GetFileSizeEx

api-ms-win-core-file-l1-2-0

CreateFile2

api-ms-win-security-sddl-l1-1-0

ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSidToStringSidW

api-ms-win-core-heap-l2-1-0

LocalFree
LocalAlloc

api-ms-win-core-path-l1-1-0

PathCchSkipRoot
PathAllocCombine

api-ms-win-core-file-l2-1-0

MoveFileExW

api-ms-win-core-com-l1-1-1

RoGetAgileReference

crypt32

CertOpenStore
CertCreateCertificateContext
CryptProtectData
CryptUnprotectData
CertGetCertificateContextProperty
CertGetNameStringW
CertDeleteCertificateFromStore
CertCreateSelfSignCertificate
CertFreeCertificateContext
CertAddCertificateContextToStore
CertSaveStore
CertDuplicateCertificateContext
CertCloseStore
CertFindCertificateInStore
CertStrToNameW

api-ms-win-core-timezone-l1-1-0

FileTimeToSystemTime

api-ms-win-core-libraryloader-l1-2-1

LoadLibraryW

api-ms-win-devices-query-l1-1-0

DevCreateObjectQuery
DevCloseObjectQuery

api-ms-win-core-io-l1-1-0

CreateIoCompletionPort
CancelIoEx
GetQueuedCompletionStatus
PostQueuedCompletionStatus
DeviceIoControl

propsys

PSPropertyBag_WriteStr
PSCreateMemoryPropertyStore
PSPropertyBag_WriteUnknown

api-ms-win-core-heap-obsolete-l1-1-0

LocalSize

api-ms-win-core-delayload-l1-1-1

ResolveDelayLoadedAPI

api-ms-win-core-delayload-l1-1-0

DelayLoadFailureHook

kernelbase

BaseFormatObjectAttributes

dsreg

DsrGetJoinInfo
DsrFreeJoinInfo

api-ms-win-core-apiquery-l1-1-0

ApiSetQueryApiSetPresence

api-ms-win-security-capability-l1-1-0

RpcClientCapabilityCheck
CapabilityCheck

Exports

Exports

CDPAccountFromWebAccount
CDPAcquireNetworkingInternal
CDPCreateAFSRegistrationClientInternal
CDPCreateAFSUserSettingsInternal
CDPCreateAccountInternalForUser
CDPCreateAccountInternalWithStableUserId
CDPCreateAccountProviderInternal
CDPCreateActivity
CDPCreateActivityInternal
CDPCreateActivityStoreInfoInternal
CDPCreateActivityStoreInfoWatcher
CDPCreateActivityStoreInfoWatcherForUser
CDPCreateActivityStoreInfoWatcherInternal
CDPCreateActivityStoreReader
CDPCreateActivityStoreReaderForUser
CDPCreateActivityStoreReaderInternal
CDPCreateAllDevicesQuery
CDPCreateAllDevicesQueryForUser
CDPCreateAnonymousAccount
CDPCreateAnonymousAccountInternal
CDPCreateAppControlClient
CDPCreateAppControlClientInternal
CDPCreateAppId
CDPCreateAppRegistrationManager
CDPCreateAppRegistrationManagerForUser
CDPCreateAppRegistrationManagerInternal
CDPCreateAzureActiveDirectoryAccount
CDPCreateBeaconControl
CDPCreateBeaconControlInternal
CDPCreateBinaryClient
CDPCreateBinaryClientInternal
CDPCreateBinaryHost
CDPCreateBinaryHostInternal
CDPCreateBinaryHostWithSettings
CDPCreateCallbackNotifierInternal
CDPCreateCloudNotification
CDPCreateComObjectInternal
CDPCreateCrossPlatformAppId
CDPCreateCrossPlatformAppIdFromAppId
CDPCreateCurrentCrossPlatformAppId
CDPCreateDedupedDevice
CDPCreateDedupedDeviceQuery
CDPCreateDedupedDeviceQueryForUser
CDPCreateDedupedDeviceQueryInternal
CDPCreateDedupedDeviceQueryParameters
CDPCreateDeviceInternal
CDPCreateDeviceQuery
CDPCreateDeviceQueryForSessionInternal
CDPCreateDeviceQueryForUser
CDPCreateDeviceQueryInternal
CDPCreateDeviceQueryWithIdentity
CDPCreateDirectNotificationHost
CDPCreateEmptyAccountSettings
CDPCreateEnvironmentManagerInternal
CDPCreateHttpRequestInternal
CDPCreateMessagingHost
CDPCreateMessagingHostInternal
CDPCreateMicrosoftAccount
CDPCreateOrGetDdsRegistrationUserObjectInternal
CDPCreatePlatformSettingsInternal
CDPCreateRemoteUserInternal
CDPCreateResource
CDPCreateResourceCollection
CDPCreateSettingsInteropInternal
CDPCreateTask
CDPCreateTaskInternal
CDPCreateTelemetryTask
CDPCreateTelemetryTaskInternal
CDPCreateUserInternal
CDPCreateUserNotificationClientInternal
CDPCreateUserServiceNotificationClient
CDPCreateUserServiceNotificationClientForUser
CDPCreateUuid
CDPFixAccounts
CDPGetAFCInitializer
CDPGetAccountProviderInternal
CDPGetAccountsNeedAttention
CDPGetAccountsSettings
CDPGetActivityStore
CDPGetActivityStoreForAccount
CDPGetActivityStoreForAccountInternal
CDPGetActivityStoreForStoreInfo
CDPGetActivityStoreForStoreInfoAndUser
CDPGetActivityStoreForStoreInfoInternal
CDPGetActivityStoreForUser
CDPGetActivityStoreInternal
CDPGetCloudNotificationProviderInternal
CDPGetCoreInitializer
CDPGetDeviceCache
CDPGetDeviceCacheInternal
CDPGetHost
CDPGetLogger
CDPGetNearShareAuthorizationPolicyOfInteractiveUser
CDPGetRelayInitializer
CDPGetResourceHandler
CDPGetResourceManager
CDPGetSDKAuthorizationPolicyOfInteractiveUser
CDPGetSGSocket
CDPGetSystemAppId
CDPGetUserActivitySettings
CDPGetUserActivitySettingsForUser
CDPGetUserActivitySettingsInternal
CDPGetUserCollectionInternal
CDPInitialize
CDPInitializeForService
CDPInitializeSGPowerOnPacket
CDPInitializeUserService
CDPInitializeUserServicePhase2
CDPIsEnabled
CDPPreShutdown
CDPRegisterActivityConflictResolverInternal
CDPReleaseNetworkingInternal
CDPResume
CDPSetAccountProviderInternal
CDPSetAppControlHostCallback
CDPSetExtendedLocalDeviceStatus
CDPSetResourceConfigProvider
CDPSetServicePid
CDPShutdown
CDPShutdownBluetooth
CDPStartCCSPolling
CDPStopCCSPolling
CDPSuspend
CDPUninitializeUserService
CDPWriteAccountSettings
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetProxyDllInfo

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Computech Windows Tweaker 1.0.0.0/msvcr71/en-US.jar
.zip
locale/en-US/alerts/notificationNames.properties
locale/en-US/autoconfig/autoconfig.properties
locale/en-US/cookie/cookieAcceptDialog.dtd
locale/en-US/cookie/cookieAcceptDialog.properties
locale/en-US/global-platform/mac/accessible.properties
locale/en-US/global-platform/mac/intl.properties
locale/en-US/global-platform/mac/platformKeys.properties
locale/en-US/global-platform/unix/accessible.properties
locale/en-US/global-platform/unix/intl.properties
locale/en-US/global-platform/unix/platformKeys.properties
locale/en-US/global-platform/win/accessible.properties
locale/en-US/global-platform/win/intl.properties
locale/en-US/global-platform/win/platformKeys.properties
locale/en-US/global-region/region.dtd
locale/en-US/global-region/region.properties
locale/en-US/global/about.dtd
locale/en-US/global/aboutRights.dtd
locale/en-US/global/aboutRights.properties
locale/en-US/global/appPicker.dtd
locale/en-US/global/appstrings.properties
locale/en-US/global/brand.dtd
locale/en-US/global/browser.properties
locale/en-US/global/charsetOverlay.dtd
locale/en-US/global/charsetTitles.properties
locale/en-US/global/commonDialog.dtd
locale/en-US/global/commonDialogs.properties
locale/en-US/global/config.dtd
locale/en-US/global/config.properties
locale/en-US/global/console.dtd
locale/en-US/global/console.properties
locale/en-US/global/contentAreaCommands.properties
locale/en-US/global/crashes.dtd
locale/en-US/global/crashes.properties
locale/en-US/global/css.properties
locale/en-US/global/customizeCharset.dtd
locale/en-US/global/customizeToolbar.dtd
locale/en-US/global/customizeToolbar.properties
locale/en-US/global/dateFormat.properties
locale/en-US/global/datetimepicker.dtd
locale/en-US/global/dialog.properties
locale/en-US/global/dialogOverlay.dtd
locale/en-US/global/dom/dom.properties
locale/en-US/global/downloadProgress.properties
locale/en-US/global/editMenuOverlay.dtd
locale/en-US/global/filefield.properties
locale/en-US/global/filepicker.dtd
locale/en-US/global/filepicker.properties
locale/en-US/global/findbar.dtd
locale/en-US/global/findbar.properties
locale/en-US/global/finddialog.dtd
locale/en-US/global/finddialog.properties
locale/en-US/global/global-strres.properties
locale/en-US/global/global.dtd
locale/en-US/global/globalKeys.dtd
locale/en-US/global/gnomeprintdialog.properties
locale/en-US/global/intl.css
locale/en-US/global/intl.properties
locale/en-US/global/keys.properties
locale/en-US/global/languageNames.properties
locale/en-US/global/layout/HtmlForm.properties
locale/en-US/global/layout/MediaDocument.properties
locale/en-US/global/layout/xmlparser.properties
locale/en-US/global/layout_errors.properties
locale/en-US/global/license.dtd
locale/en-US/global/mozilla.dtd
locale/en-US/global/netError.dtd
locale/en-US/global/netErrorApp.dtd
locale/en-US/global/notification.dtd
locale/en-US/global/nsHelperAppDlg.dtd
locale/en-US/global/nsHelperAppDlg.properties
locale/en-US/global/nsProgressDialog.dtd
locale/en-US/global/nsProgressDialog.properties
locale/en-US/global/nsWebBrowserPersist.properties
locale/en-US/global/plugins.properties
locale/en-US/global/preferences.dtd
locale/en-US/global/printPageSetup.dtd
locale/en-US/global/printPreview.dtd
locale/en-US/global/printPreviewProgress.dtd
locale/en-US/global/printProgress.dtd
locale/en-US/global/printdialog.dtd
locale/en-US/global/printdialog.properties
locale/en-US/global/printing.properties
locale/en-US/global/printjoboptions.dtd
locale/en-US/global/prompts.properties
locale/en-US/global/regionNames.properties
locale/en-US/global/search/search.properties
locale/en-US/global/security/caps.properties
locale/en-US/global/storage.properties
locale/en-US/global/svg/svg.properties
locale/en-US/global/textcontext.dtd
locale/en-US/global/tree.dtd
locale/en-US/global/videocontrols.dtd
locale/en-US/global/viewSource.dtd
locale/en-US/global/viewSource.properties
locale/en-US/global/webservices/security.properties
locale/en-US/global/wizard.dtd
locale/en-US/global/wizard.properties
locale/en-US/global/xbl.properties
locale/en-US/global/xml/prettyprint.dtd
locale/en-US/global/xpinstall/xpinstall.properties
locale/en-US/global/xslt/xslt.properties
locale/en-US/global/xul.properties
locale/en-US/mozapps/downloads/downloads.dtd
locale/en-US/mozapps/downloads/downloads.properties
locale/en-US/mozapps/downloads/settingsChange.dtd
locale/en-US/mozapps/downloads/unknownContentType.dtd
locale/en-US/mozapps/downloads/unknownContentType.properties
locale/en-US/mozapps/extensions/about.dtd
locale/en-US/mozapps/extensions/blocklist.dtd
locale/en-US/mozapps/extensions/errors.dtd
locale/en-US/mozapps/extensions/extensions.dtd
locale/en-US/mozapps/extensions/extensions.properties
locale/en-US/mozapps/extensions/update.dtd
locale/en-US/mozapps/extensions/update.properties
locale/en-US/mozapps/handling/handling.dtd
locale/en-US/mozapps/handling/handling.properties
locale/en-US/mozapps/plugins/plugins.dtd
locale/en-US/mozapps/plugins/plugins.properties
locale/en-US/mozapps/preferences/changemp.dtd
locale/en-US/mozapps/preferences/ocsp.dtd
locale/en-US/mozapps/preferences/preferences.properties
locale/en-US/mozapps/preferences/removemp.dtd
locale/en-US/mozapps/profile/createProfileWizard.dtd
locale/en-US/mozapps/profile/profileSelection.dtd
locale/en-US/mozapps/profile/profileSelection.properties
locale/en-US/mozapps/update/history.dtd
locale/en-US/mozapps/update/incompatible.dtd
locale/en-US/mozapps/update/updates.dtd
locale/en-US/mozapps/update/updates.properties
locale/en-US/mozapps/xpinstall/xpinstallConfirm.dtd
locale/en-US/mozapps/xpinstall/xpinstallConfirm.properties
locale/en-US/necko/necko.properties
locale/en-US/passwordmgr/passwordManager.dtd
locale/en-US/passwordmgr/passwordmgr.properties
locale/en-US/pipnss/nsserrors.properties
locale/en-US/pipnss/pipnss.properties
locale/en-US/pipnss/security.properties
locale/en-US/pippki/certManager.dtd
locale/en-US/pippki/deviceManager.dtd
locale/en-US/pippki/pippki.dtd
locale/en-US/pippki/pippki.properties
locale/en-US/pippki/validation.dtd
locale/en-US/places/places.properties
Computech Windows Tweaker 1.0.0.0/msvcr71/sas.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\My Work\Computechnology\Products\ApplySecurity\ApplySecurity\obj\Debug\WinTweaks.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 233KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 11KB - Virtual size: 10KB

.rsrc Size: 178KB - Virtual size: 177KB

.reloc Size: 512B - Virtual size: 12B

1d688f3e339fa209fa2edf2b13190bef

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-private-l1-1-0

combase

ntdll

rpcrt4

api-ms-win-core-libraryloader-l1-2-0

api-ms-win-core-profile-l1-1-0

api-ms-win-core-processthreads-l1-1-0

api-ms-win-core-sysinfo-l1-1-0

api-ms-win-core-interlocked-l1-1-0

api-ms-win-core-debug-l1-1-0

api-ms-win-core-errorhandling-l1-1-0

api-ms-win-core-processthreads-l1-1-1

shcore

msvcp_win

api-ms-win-crt-time-l1-1-0

umpdc

api-ms-win-core-winrt-string-l1-1-0

api-ms-win-core-string-l1-1-0

api-ms-win-core-winrt-error-l1-1-1

api-ms-win-core-localization-l1-2-0

api-ms-win-core-com-l1-1-0

api-ms-win-core-handle-l1-1-0

api-ms-win-core-winrt-error-l1-1-0

api-ms-win-core-winrt-l1-1-0

api-ms-win-core-threadpool-l1-2-0

api-ms-win-core-synch-l1-1-0

api-ms-win-core-heap-l1-1-0

api-ms-win-core-registry-l1-1-0

api-ms-win-eventing-provider-l1-1-0

api-ms-win-appmodel-runtime-l1-1-0

api-ms-win-appmodel-runtime-l1-1-1

api-ms-win-core-sysinfo-l2-1-0

api-ms-win-security-base-l1-1-0

api-ms-win-core-processenvironment-l1-1-0

api-ms-win-core-synch-l1-2-0

api-ms-win-core-file-l1-1-0

api-ms-win-core-file-l1-2-0

api-ms-win-security-sddl-l1-1-0

api-ms-win-core-heap-l2-1-0

api-ms-win-core-path-l1-1-0

api-ms-win-core-file-l2-1-0

api-ms-win-core-com-l1-1-1

crypt32

api-ms-win-core-timezone-l1-1-0

api-ms-win-core-libraryloader-l1-2-1

api-ms-win-devices-query-l1-1-0

api-ms-win-core-io-l1-1-0

propsys

api-ms-win-core-heap-obsolete-l1-1-0

api-ms-win-core-delayload-l1-1-1

api-ms-win-core-delayload-l1-1-0

kernelbase

dsreg

api-ms-win-core-apiquery-l1-1-0

api-ms-win-security-capability-l1-1-0

Exports

.text
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 178KB - Virtual size: 177KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 1.7MB - Virtual size: 1.7MB

.data
Size: 55KB - Virtual size: 61KB

.pdata
Size: 196KB - Virtual size: 195KB

.didat
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 38KB - Virtual size: 38KB

.text
Size: 478KB - Virtual size: 477KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 50KB - Virtual size: 50KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B