b99a8e8437abe86790e87c1084da66f5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b99a8e8437abe86790e87c1084da66f5_JaffaCakes118
Size

3.0MB
MD5

b99a8e8437abe86790e87c1084da66f5
SHA1

8ea48004727a1562190c175565f2013ce42edcc7
SHA256

f6fa13829408e397819866cfbdf5b4c6ab047e56bf179ed2e981bcc6803f6e17
SHA512

9c2be67642758e9da27fd9dc665c899df35441a501f248e9c46d678979cf632f424baa0d85cb5cfa197a189637dd047269c6c0c1da36f7ac54c243bf212d7cc2
SSDEEP

98304:xYsJQJwp0w4eXAYUWDHysZJK2ekOseBWNlpz4hqxW9VS8JE1:xXQJx5wA+HysZJ4kOtBIpzgqEU1

Score

3^/10

Malware Config

Signatures

Unsigned PE 38 IoCs

Checks for missing Authenticode signature.

resource
unpack001/QQLive/ADManage.dll
unpack001/QQLive/ChannelMgr.dll
unpack001/QQLive/Core.dll
unpack001/QQLive/Encrypt.dll
unpack001/QQLive/ExceptCatch.dll
unpack001/QQLive/FlvPlayer.dll
unpack001/QQLive/HallMain.dll
unpack001/QQLive/HttpDownload.dll
unpack001/QQLive/LiveMaster.dll
unpack001/QQLive/LiveStream.dll
unpack001/QQLive/LiveVOD.dll
unpack001/QQLive/MediaCtrl.dll
unpack001/QQLive/MiniTips.dll
unpack001/QQLive/P2PDownload.dll
unpack001/QQLive/QQHelper.dll
unpack001/QQLive/QQLive.dll
unpack001/QQLive/QQLiveCommu.dll
unpack001/QQLive/QQLiveHooks.dll
unpack001/QQLive/SetupShell.dll
unpack001/QQLive/Skin.dll
unpack001/QQLive/Statistic.dll
unpack001/QQLive/Upgrade.dll
unpack001/QQLive/UserData.dll
unpack001/QQLive/atl80.dll
unpack001/QQLive/log.dll
unpack001/QQLive/login.dll
unpack001/QQLive/mfc80u.dll
unpack001/QQLive/msvcp80.dll
unpack001/QQLive/msvcr80.dll
unpack001/QQLive/p2papp.dll
unpack001/QQLive/p2pcore.dll
unpack001/QQLive/p2pdata.dll
unpack001/QQLive/p2phttp.dll
unpack001/QQLive/proxy.dll
unpack001/QQLive/uninstall.exe
unpack002/$PLUGINSDIR/InstallOptions.dll
unpack002/$PLUGINSDIR/ProcDll.dll
unpack001/QQLive/vqqsdl.dll

Files

b99a8e8437abe86790e87c1084da66f5_JaffaCakes118
.rar
QQLive/ADManage.dll
.dll regsvr32 windows:4 windows x86 arch:x86

b8e626ae10ee630564d3b1941cb77d26

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\ADManage.pdb

Imports

kernel32

GetModuleHandleW
FindClose
FindNextFileW
SetFileAttributesW
FindFirstFileW
WritePrivateProfileStringW
WaitForSingleObject
GetPrivateProfileStringW
ResetEvent
InitializeCriticalSection
DeleteCriticalSection
lstrcmpiW
GetModuleFileNameW
InterlockedIncrement
FreeLibrary
LoadLibraryExW
SetThreadLocale
GetThreadLocale
GetFileAttributesW
ReadFile
GetFileSize
CreateFileW
GetTempFileNameW
GetTempPathW
CopyFileW
lstrcmpW
MulDiv
DeleteFileW
GlobalLock
GlobalAlloc
GetProcAddress
LoadLibraryW
GetPrivateProfileIntW
GlobalFree
GlobalHandle
GetLastError
MultiByteToWideChar
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapSize
HeapReAlloc
HeapDestroy
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
GetVersionExA
GetLocaleInfoA
GetACP
InterlockedExchange
CreateEventW
InterlockedDecrement
FormatMessageW
lstrlenW
HeapAlloc
GetProcessHeap
HeapFree
SetEvent
WideCharToMultiByte
CloseHandle
lstrlenA
Sleep
SetLastError
GetCurrentThreadId
GetCurrentProcess
FlushInstructionCache
GetTickCount
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
LeaveCriticalSection
EnterCriticalSection
RaiseException
GlobalUnlock

user32

SetWindowLongW
GetClassInfoExW
UnregisterClassA
LoadCursorW
DefWindowProcW
RegisterClassExW
GetWindowLongW
CallWindowProcW
CreateWindowExW
PostMessageW
SendMessageW
IsWindow
DestroyWindow
RegisterWindowMessageW
CharNextW
MoveWindow
GetClientRect
BeginPaint
EndPaint
InvalidateRect
SetTimer
SendDlgItemMessageW
GetParent
UpdateLayeredWindow
ReleaseDC
GetWindowRect
GetDC
SetWindowPos
GetWindow
SetWindowContextHelpId
EndDialog
MapDialogRect
GetSysColor
ClientToScreen
ScreenToClient
InvalidateRgn
RedrawWindow
SetCapture
IsChild
CreateDialogIndirectParamW
FindWindowExW
SetRectEmpty
KillTimer
ShowWindow
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
CreateAcceleratorTableW
DestroyAcceleratorTable
SetFocus
GetFocus
GetDesktopWindow
FillRect
ReleaseCapture
GetClassNameW
GetDlgItem

gdi32

GetStockObject
DeleteDC
DeleteObject
SetPixel
GetPixel
SelectObject
CreateDIBSection
CreateCompatibleDC
GetDeviceCaps
CreateCompatibleBitmap
BitBlt
CreateSolidBrush
GetObjectW

advapi32

RegEnumKeyExW
RegQueryValueExW
RegOpenKeyW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegDeleteKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW

ole32

CreateStreamOnHGlobal
CoUninitialize
CoInitialize
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
StringFromGUID2
CoFreeLibrary
CoLoadLibrary
OleUninitialize
OleInitialize
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning

oleaut32

DispCallFunc
LoadRegTypeLi
OleCreateFontIndirect
SysAllocStringLen
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysStringLen
SysStringByteLen
SysAllocStringByteLen
SysAllocString
VariantChangeType
VariantClear
VariantInit
VarBstrCmp
SystemTimeToVariantTime
VariantTimeToSystemTime
SysFreeString
GetErrorInfo

proxy

??0CProxyTool@@QAE@XZ
?GetUserProxySetting@CProxyTool@@QAEHAAHAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AAG11@Z
?CreateSocks5ProxyTCPSocket@CProxyTool@@QAEHAAIPB_WG111GAAVCComBSTR@ATL@@@Z
??1CProxyTool@@UAE@XZ
?CreateHttpProxyTCPSocket@CProxyTool@@QAEHAAIPB_WG111GAAVCComBSTR@ATL@@@Z

encrypt

?oi_symmetry_decrypt2@@YAHPBEH0PAEPAH@Z
?oi_symmetry_encrypt2@@YAXPBEH0PAEPAH@Z

msvcp80

?size@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIXZ
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z

log

?StrToAddr@@YAHAAUsockaddr_in@@PB_WF@Z
?CreateObjectFromFile2@@YAJAAPAUHINSTANCE__@@PB_WPAUIUnknown@@ABU_GUID@@3PAPAX@Z
?DOLOG@@YAXPB_WZZ
?GetModulePath2@@YA?AVCComBSTR@ATL@@PAUHINSTANCE__@@@Z
?TraceComError@@YAXAAV_com_error@@@Z
?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ
?CreateAllDirectory@@YAHPB_W@Z
?ReportThirdPart@@YAXPB_WPAUHWND__@@@Z
?GetExeFolder2@@YA?AVCComBSTR@ATL@@XZ
?GetQQLiveDlgHwnd@@YAPAUHWND__@@XZ
?CheckAdvise@@YAXPB_W@Z
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?NavigateURL@@YAHPB_WH@Z
?GetUserGuid@@YAXPADAAH@Z
?CheckUnadvise@@YAXPB_W@Z
?GetRandomNum@@YAKKK@Z

msvcr80

fseek
calloc
_resetstkoflw
_purecall
fopen
ferror
_errno
strncpy
ftell
fread
atoi
fprintf
_wfopen_s
vswprintf_s
_vscwprintf
wcsrchr
fopen_s
fwrite
fclose
memcpy
realloc
sprintf_s
wcsstr
wcscat_s
??3@YAXPAX@Z
__CxxFrameHandler3
memmove_s
??_V@YAXPAX@Z
_recalloc
??2@YAPAXI@Z
memset
_beginthreadex
_invalid_parameter_noinfo
_vsnwprintf_s
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@XZ
_localtime64_s
ceil
??0exception@std@@QAE@ABV01@@Z
_time64
fputc
wcsncpy_s
wcscpy_s
free
malloc
wcstoul
strncpy_s
?terminate@@YAXXZ
_except_handler4_common
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
memcpy_s
_CxxThrowException
swprintf_s

urlmon

URLDownloadToCacheFileW

ws2_32

ntohs
inet_ntoa
setsockopt
WSAGetLastError
socket
connect
closesocket
send
select
recv
ntohl
htonl
htons

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 232KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/ChannelMgr.dll
.dll regsvr32 windows:4 windows x86 arch:x86

a706a267d367e9d0ed9832c264dd1153

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\ChannelMgr.pdb

Imports

kernel32

GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
TerminateProcess
InterlockedCompareExchange
Sleep
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
GetVersionExA
GetLocaleInfoA
GetACP
InterlockedExchange
RaiseException
lstrlenA
GetTickCount
MultiByteToWideChar
DeleteFileW
WideCharToMultiByte
FormatMessageW
GetProcessHeap
HeapAlloc
GetFileAttributesW
GetProcAddress
GetLastError
GetThreadLocale
SetThreadLocale
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetModuleFileNameW
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
lstrlenW

user32

UnregisterClassA

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW

ole32

CoLoadLibrary
CoCreateInstance

oleaut32

VariantClear
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayCopy
SafeArrayCreate
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SafeArrayGetVartype
VariantInit
VarBstrCmp
SysAllocStringLen
VariantCopy
SysFreeString
SysStringLen
DispCallFunc
LoadRegTypeLi
LoadTypeLi

log

?CreateAllDirectory@@YAHPB_W@Z
?CheckAdvise@@YAXPB_W@Z
?CheckFileExist@@YAHPB_W@Z
?DOLOG@@YAXPB_WZZ
?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ
?CheckUnadvise@@YAXPB_W@Z

atl80

ord22
ord18
ord15
ord31
ord64
ord61
ord23
ord32
ord58
ord10
ord11
ord30

shlwapi

StrCmpW

msvcp80

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ

wininet

InternetSetCookieW

httpdownload

?OnConnected@CHttpDownloadUIInterface@@UAEXXZ
?OnDownloadStart@CHttpDownloadUIInterface@@UAEXKK@Z
?OnProgress@CHttpDownloadUIInterface@@UAEXKK@Z
?OnRedirected@CHttpDownloadUIInterface@@UAEXPB_W@Z
?Download@CHttpDowndExports@@QAEIPB_W0@Z
?SetUIInterface@CHttpDowndExports@@QAEXPAVCHttpDownloadUIInterface@@@Z
?AddContent@CHttpDowndExports@@QAEHPBEH@Z
?AddInfo@CHttpDowndExports@@QAEHPB_WK@Z
?AddInfo@CHttpDowndExports@@QAEHPB_W0@Z
?SetRequestMethod@CHttpDowndExports@@QAEXH@Z
??1CHttpDownloadUIInterface@@UAE@XZ
??0CHttpDowndExports@@QAE@XZ
??1CHttpDowndExports@@QAE@XZ
??_7CHttpDownloadUIInterface@@6B@
?OnConnecting@CHttpDownloadUIInterface@@UAEXPB_W@Z

msvcr80

ftell
__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
??3@YAXPAX@Z
_CxxThrowException
memcpy_s
free
__CxxFrameHandler3
??_V@YAXPAX@Z
_purecall
_recalloc
calloc
memset
malloc
memmove_s
_resetstkoflw
??2@YAPAXI@Z
_invalid_parameter_noinfo
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
_vscwprintf
vswprintf_s
swprintf_s
fclose
fwrite
fopen_s
wcstoul
memcpy
fread
_except_handler4_common
fseek
_wfopen_s
wcsstr

ws2_32

htons
htonl
ntohs
ntohl

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/Core.dll
.dll regsvr32 windows:4 windows x86 arch:x86

28ef09c20af489ece34d3ec27d29df90

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\Core.pdb

Imports

log

?DOLOG@@YAXPB_WZZ

mfc80u

ord3824
ord2239
ord6751
ord1043
ord314
ord762
ord266
ord1182
ord1178
ord1908
ord265
ord1162
ord4032
ord1192
ord1168
ord1170
ord1200
ord581
ord4008
ord6272
ord3795
ord6274
ord4320
ord2054
ord2009
ord5579
ord3800
ord1007
ord5096
ord1093
ord1199
ord1197
ord1087
ord1033
ord6215
ord5378
ord3826
ord371
ord1911
ord2925
ord5220
ord1079
ord315
ord5222
ord765
ord3942
ord4562
ord5226
ord5209
ord5562
ord2531
ord2725
ord2829
ord4301
ord2708
ord2832
ord2534
ord2640
ord2527
ord3712
ord3713
ord3703
ord2638
ord3943
ord4475
ord4255
ord3327
ord566
ord757
ord3677
ord764
ord1115

msvcr80

__dllonexit
_unlock
_except_handler4_common
_resetstkoflw
malloc
_encode_pointer
_recalloc
_purecall
free
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
calloc
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invalid_parameter_noinfo
memset
??0exception@std@@QAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
__CxxFrameHandler3
_initterm_e
__clean_type_info_names_internal

kernel32

RaiseException
lstrlenW
LeaveCriticalSection
EnterCriticalSection
GetFileAttributesW
GetProcAddress
GetModuleFileNameW
LocalFree
SetThreadLocale
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
InterlockedExchange
Sleep
InterlockedCompareExchange
GetACP
GetVersionExA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetLocaleInfoA
GetThreadLocale
GetSystemTimeAsFileTime
GetCurrentProcessId

user32

UnregisterClassA

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

ole32

CoCreateInstance
CoLoadLibrary

oleaut32

LoadTypeLi
LoadRegTypeLi
SysStringLen
SysFreeString

atl80

ord61
ord23
ord30
ord22
ord18
ord15
ord32
ord58
ord64
ord31

msvcp80

?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/Encrypt.dll
.dll windows:4 windows x86 arch:x86

2238759357539c6a1268e1a65676d82d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\Encrypt.pdb

Imports

msvcr80

__clean_type_info_names_internal
_crt_debugger_hook
__dllonexit
_lock
_onexit
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
free
_malloc_crt
_encode_pointer
rand
_unlock
??3@YAXPAX@Z

ws2_32

ntohl
htonl

kernel32

QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetTickCount

Exports

Exports

?TeaDecryptECB@@YAXPBE0PAE@Z
?TeaEncryptECB@@YAXPBE0PAE@Z
?oi_symmetry_decrypt2@@YAHPBEH0PAEPAH@Z
?oi_symmetry_decrypt@@YAHPBEH0PAEPAH@Z
?oi_symmetry_encrypt2@@YAXPBEH0PAEPAH@Z
?oi_symmetry_encrypt@@YAXPBEH0PAEPAH@Z

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 460B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/ExceptCatch.dll
.dll windows:4 windows x86 arch:x86

a5724a7ee706e5160bd89bf958da4acd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\Symbol\ExceptCatch.pdb

Imports

mfc80u

ord1271
ord1058
ord4119
ord1894
ord760
ord572
ord3189
ord4255
ord4480
ord3943
ord2638
ord3703
ord3713
ord3712
ord2985
ord2527
ord2640
ord2534
ord2856
ord2708
ord4301
ord2829
ord2725
ord2531
ord5196
ord1590
ord1646
ord1647
ord1955
ord5171
ord1353
ord4961
ord3339
ord6275
ord3796
ord6273
ord1513
ord2163
ord2169
ord2399
ord2381
ord2379
ord2397
ord2409
ord2386
ord2402
ord2407
ord2390
ord2392
ord2394
ord2388
ord2404
ord3155
ord931
ord927
ord929
ord925
ord920
ord5229
ord5231
ord5956
ord1591
ord4276
ord4716
ord3397
ord5210
ord4179
ord6271
ord5067
ord1899
ord5148
ord4238
ord1393
ord3940
ord1608
ord1611
ord5911
ord6721
ord416
ord354
ord3176
ord4256
ord5199
ord1392
ord5908
ord6720
ord1542
ord1661
ord1662
ord4884
ord4206
ord5178
ord1785
ord709
ord501
ord2651
ord6063
ord1555
ord5803
ord4574
ord266
ord265
ord6086
ord3635
ord1925
ord1118
ord3204
ord1472
ord4347
ord4729
ord6749
ord6751
ord3390
ord280
ord384
ord3927
ord5083
ord2897
ord2460
ord5319
ord5398
ord5558
ord1430
ord6284
ord2011
ord629
ord776
ord4026
ord777
ord2310
ord370
ord2261
ord618
ord5524
ord3990
ord386
ord2271
ord2279
ord2745
ord774
ord5416
ord1908
ord631
ord267
ord575
ord1079
ord6111
ord6700
ord282
ord2895
ord870
ord1479
ord899
ord651
ord620
ord605
ord2121
ord900
ord293
ord2311
ord896
ord1093
ord371
ord1168
ord762
ord5708
ord1176
ord283
ord577
ord1178
ord1182
ord2384
ord764

msvcr80

_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
wcsncpy_s
wcscat_s
_wsplitpath_s
vswprintf_s
wcsrchr
swscanf_s
srand
rand
memmove_s
_except_handler4_common
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
wprintf
_set_invalid_parameter_handler
_time64
memcpy_s
memset
memcpy
__CxxFrameHandler3
wcsftime
_localtime64_s
strchr
_recalloc
_malloc_crt
free
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?terminate@@YAXXZ
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invalid_parameter_noinfo
__clean_type_info_names_internal

kernel32

LoadLibraryW
GetCurrentProcessId
WriteFile
SetFileAttributesW
DeleteFileW
GetPrivateProfileIntW
GetCurrentProcess
GetModuleHandleW
GetProcAddress
lstrlenA
VirtualQueryEx
GetModuleFileNameA
CreateFileA
CloseHandle
GetVersionExW
IsBadReadPtr
VirtualProtect
GetLastError
MultiByteToWideChar
GetModuleFileNameW
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
GetUserDefaultLCID
GetCurrentThreadId
GetUserDefaultUILanguage
GetUserDefaultLangID
GetSystemDefaultUILanguage
GetSystemDefaultLangID
GetOEMCP
GetACP
InterlockedDecrement
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
CreateFileW
SetUnhandledExceptionFilter
WideCharToMultiByte
GetSystemDefaultLCID
lstrlenW
HeapDestroy
GetVersionExA
GetThreadLocale
GetLocaleInfoA
SetLastError

user32

UnregisterClassA
MessageBeep
LoadBitmapW
GetSystemMetrics
EnableWindow
KillTimer
SetTimer
GetClientRect
GetWindowRect
SendMessageW

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegOpenKeyW

ole32

CoCreateInstance

oleaut32

SysAllocString
SysStringByteLen
SysAllocStringByteLen
SysAllocStringLen
SysStringLen
SetErrorInfo
VariantInit
VariantClear
VariantChangeType
GetErrorInfo
VariantTimeToSystemTime
SystemTimeToVariantTime
SysFreeString
CreateErrorInfo

msvcp80

?allocate@?$allocator@D@std@@QAEPADI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?deallocate@?$allocator@D@std@@QAEXPADI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

log

?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetExeFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CreateObjectFromFile@@YAJPB_WPAUIUnknown@@ABU_GUID@@2PAPAX@Z

imagehlp

SymLoadModule
SymGetModuleInfo
StackWalk
SymFunctionTableAccess
SymSetOptions
SymGetSymFromAddr
SymInitialize

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

wininet

HttpSendRequestA
InternetOpenA
InternetCloseHandle
InternetConnectA
HttpOpenRequestA

Exports

Exports

?SetExceptionCatcher@@YAXABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@H@Z

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/FileVersion.dll
.dll regsvr32 windows:4 windows x86 arch:x86

cfd8cd7bc5e5b1472849369d1c575194

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:92:ae:b3:83:26:5c:7c:64:53:bd:92:a0:40:a0:20
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

15/02/2009, 00:00

Not After

15/02/2010, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Tencent,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

85:07:a8:a6:40:7d:10:1b:44:a6:28:2d:93:82:07:9f:76:b6:81:8a
Signer

Actual PE Digest

85:07:a8:a6:40:7d:10:1b:44:a6:28:2d:93:82:07:9f:76:b6:81:8a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\FileVersion.pdb

Imports

kernel32

HeapFree
InterlockedCompareExchange
GetVersionExA
GetLocaleInfoA
GetACP
InterlockedExchange
GetProcAddress
LoadLibraryA
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
GetModuleFileNameW
HeapReAlloc
HeapSize
GetProcessHeap
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
lstrcmpiW
GetLastError
DeleteCriticalSection
lstrlenW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetLastError
GetCurrentThreadId
GetCurrentProcess
FlushInstructionCache
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
GetThreadLocale
SetThreadLocale
GetModuleHandleW
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
MultiByteToWideChar
FreeLibrary
InterlockedDecrement
Sleep
InterlockedIncrement
RaiseException
HeapDestroy
HeapAlloc

user32

SetWindowRgn
OffsetRect
EqualRect
IntersectRect
EndPaint
GetClientRect
BeginPaint
CallWindowProcW
UnregisterClassA
PtInRect
UnionRect
SetFocus
IsChild
GetFocus
IsWindow
InvalidateRect
GetKeyState
RegisterClassExW
CreateWindowExW
SetWindowPos
GetDC
ReleaseDC
LoadCursorW
GetClassInfoExW
ShowWindow
GetWindowLongW
SetWindowLongW
DestroyWindow
DefWindowProcW
CharNextW

gdi32

SetMapMode
SetViewportOrgEx
DeleteDC
CreateDCW
GetClipRgn
CreateRectRgn
SelectClipRgn
Rectangle
SetTextAlign
TextOutW
CreateMetaFileW
SaveDC
SetWindowOrgEx
SetWindowExtEx
RestoreDC
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
GetDeviceCaps
LPtoDP

advapi32

RegSetValueExW
RegDeleteKeyW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegEnumKeyExW
RegDeleteValueW

ole32

OleSaveToStream
WriteClassStm
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CreateOleAdviseHolder
CoCreateInstance
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
OleLoadFromStream

oleaut32

LoadRegTypeLi
OleCreatePropertyFrame
VariantChangeType
VariantClear
VariantInit
SysStringByteLen
SysAllocStringByteLen
VarBstrCat
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString
SysStringLen

msvcr80

__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_except_handler4_common
swprintf_s
??2@YAPAXI@Z
_purecall
_wsplitpath_s
_vscwprintf
_itow_s
??_U@YAPAXI@Z
_recalloc
__CxxFrameHandler3
memset
??_V@YAXPAX@Z
wcscat_s
wcsncpy_s
wcscpy_s
_CxxThrowException
memcpy_s
??3@YAXPAX@Z
vswprintf_s
malloc
free

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/FlvPlayer.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d2138fef14d3f0be2a1c4da504fd865b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\FlvPlayer.pdb

Imports

kernel32

GetProcAddress
LoadLibraryW
HeapAlloc
FormatMessageW
lstrlenA
InterlockedIncrement
InterlockedDecrement
SetLastError
GetTickCount
GlobalUnlock
GlobalLock
GlobalAlloc
WideCharToMultiByte
SetThreadLocale
GetThreadLocale
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentProcess
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
Sleep
GetVersionExA
GetLocaleInfoA
GetACP
InterlockedExchange
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
HeapSize
HeapReAlloc
HeapDestroy
FlushInstructionCache
GetModuleFileNameW
lstrlenW
GetProcessHeap
HeapFree
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
MultiByteToWideChar
FreeLibrary
GetPrivateProfileStringW
WritePrivateProfileStringW
GetLogicalDrives
GetDriveTypeW
GetDiskFreeSpaceExW
CreateFileW
SetFileAttributesW
DeviceIoControl
CloseHandle
LeaveCriticalSection
EnterCriticalSection
FindFirstFileW
CreateDirectoryW
GetLastError
GetFileAttributesW
GetCurrentThreadId

user32

SetWindowPos
GetDesktopWindow
CreateWindowExW
GetWindow
SetWindowContextHelpId
EndDialog
MapDialogRect
DestroyWindow
GetDoubleClickTime
GetCursorPos
CopyRect
FindWindowExW
GetKeyState
IsIconic
GetWindowRect
ClientToScreen
IsWindowVisible
SetRectEmpty
SetPropW
UnregisterClassA
GetDlgItem
ReleaseCapture
SendMessageW
GetClassInfoExW
LoadCursorW
RegisterClassExW
SetWindowLongW
GetWindowLongW
IsWindow
DefWindowProcW
CallWindowProcW
SetParent
GetParent
RegisterWindowMessageW
PostMessageW
SetWindowTextW
MoveWindow
SendDlgItemMessageW
SetFocus
SetCapture
KillTimer
SetTimer
ShowWindow
SetWindowPlacement
GetWindowPlacement
GetClientRect

gdi32

DeleteObject
CreateSolidBrush

advapi32

RegOpenKeyW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW

shell32

SHGetFolderPathW

ole32

CoCreateInstance
CreateStreamOnHGlobal
CoLoadLibrary

oleaut32

LoadTypeLi
LoadRegTypeLi
DispCallFunc
SysStringLen
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
SysAllocString
VariantCopy
VariantClear
VariantInit
VarBstrCmp
SysFreeString
GetErrorInfo

atl80

ord64
ord10
ord58
ord11
ord42
ord31
ord23
ord61
ord30
ord47
ord32
ord48
ord60
ord54
ord43
ord44
ord37
ord15
ord18
ord22

shlwapi

PathAppendW

msvcr80

malloc
_purecall
calloc
_vsnwprintf_s
??2@YAPAXI@Z
free
memmove_s
wcstoul
_wtof
strncpy_s
?terminate@@YAXXZ
_unlock
_encode_pointer
_lock
_onexit
_resetstkoflw
__dllonexit
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_except_handler4_common
??3@YAXPAX@Z
memset
wcscat_s
vswprintf_s
_CxxThrowException
swprintf_s
_vscwprintf
memcpy_s
??_V@YAXPAX@Z
??_U@YAPAXI@Z
__CxxFrameHandler3
_recalloc
wcsncpy_s
_decode_pointer

msvcp80

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
?insert@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IPB_W@Z
?_Xran@_String_base@std@@SAXXZ
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

log

?GetQQLiveDlgHwnd@@YAPAUHWND__@@XZ
?GetUserAppDataPath3@@YA?AVCComBSTR@ATL@@XZ
?GetXPMenuState@@YAXAAHAAK@Z
?CheckAdvise@@YAXPB_W@Z
?GetFullScreen@@YA?AUtagRECT@@PAUHWND__@@@Z
?CheckUnadvise@@YAXPB_W@Z
?DOLOG@@YAXPB_WZZ
?GetModulePath2@@YA?AVCComBSTR@ATL@@PAUHINSTANCE__@@@Z

comctl32

_TrackMouseEvent

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/HallMain.dll
.dll regsvr32 windows:4 windows x86 arch:x86

2b86eef3f76ee84a84ad94bc501dfb97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\HallMain.pdb

Imports

kernel32

GetCurrentProcessId
GetSystemTimeAsFileTime
RaiseException
GetThreadLocale
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetThreadLocale
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetLocaleInfoA
GetACP
lstrlenA
GetFileAttributesW
GetProcAddress
MultiByteToWideChar
GetModuleFileNameW
LeaveCriticalSection
EnterCriticalSection
lstrlenW
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
SetUnhandledExceptionFilter
InitializeCriticalSection
InterlockedExchange
GetVersionExA

user32

UnregisterClassA

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

ole32

CoLoadLibrary
CoCreateInstance

oleaut32

VariantInit
DispCallFunc
SysFreeString
SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysStringLen
LoadRegTypeLi
LoadTypeLi
VariantClear

log

?DOLOG@@YAXPB_WZZ
?CheckAdvise@@YAXPB_W@Z
?CheckUnadvise@@YAXPB_W@Z

atl80

ord30
ord11
ord10
ord31
ord15
ord32
ord61
ord23
ord64
ord18
ord22
ord58

msvcp80

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcr80

??0exception@std@@QAE@ABQBD@Z
__CxxFrameHandler3
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@XZ
_invalid_parameter_noinfo
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
??2@YAPAXI@Z
??_V@YAXPAX@Z
_purecall
free
memcpy
??1exception@std@@UAE@XZ
vswprintf_s
memset
memcpy_s
memmove_s
_recalloc
calloc
malloc
_resetstkoflw
_except_handler4_common
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
??3@YAXPAX@Z
_vscwprintf

ws2_32

htons
inet_ntoa
ntohl
ntohs
htonl

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/HttpDownload.dll
.dll windows:4 windows x86 arch:x86

147120de1225afd6a3f4ab05743c2224

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\Release\HttpDownload.pdb

Imports

mfc80u

ord4078
ord896
ord6096
ord3990
ord287
ord862
ord762
ord660
ord3227
ord423
ord899
ord5524
ord290
ord6700
ord5558
ord1908
ord5148
ord2340
ord1176
ord1646
ord1156
ord3249
ord1172
ord5316
ord6282
ord760
ord572
ord3331
ord4255
ord4480
ord3943
ord2638
ord3703
ord3713
ord3712
ord2527
ord2640
ord2534
ord2856
ord2708
ord4301
ord2829
ord2725
ord2531
ord5196
ord1590
ord1647
ord1955
ord5171
ord1353
ord4961
ord1472
ord6275
ord3796
ord6273
ord1513
ord2163
ord2169
ord2399
ord2381
ord2379
ord2397
ord2409
ord2386
ord2402
ord2407
ord2390
ord2392
ord2394
ord2388
ord2404
ord2384
ord931
ord927
ord929
ord925
ord920
ord5229
ord5231
ord5956
ord1591
ord4276
ord4716
ord3397
ord5210
ord4179
ord6271
ord5067
ord1899
ord4238
ord1393
ord3940
ord1608
ord1611
ord5911
ord6721
ord1571
ord5327
ord6293
ord3678
ord4100
ord897
ord2468
ord777
ord283
ord280
ord6167
ord6173
ord4074
ord2444
ord900
ord2261
ord2260
ord4101
ord2461
ord2460
ord5398
ord1182
ord1077
ord776
ord2311
ord2895
ord870
ord1147
ord774
ord3927
ord1175
ord265
ord2121
ord4057
ord548
ord4038
ord5462
ord293
ord577
ord266
ord3168
ord559
ord1178
ord747
ord6201
ord3339
ord764

msvcr80

__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
free
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
_except_handler4_common
_purecall
memcpy_s
_beginthreadex
srand
rand
_time64
_localtime64_s
wcsftime
_mktime64
_wsplitpath_s
wcstoul
memset
memcpy
__CxxFrameHandler3

kernel32

WriteFile
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetLastError
SetEvent
GetFileSize
SetEndOfFile
SetFilePointer
HeapAlloc
GetFileAttributesW
CreateDirectoryW
CreateEventW
CreateFileW
CloseHandle
HeapFree
GetProcessHeap
GetTempPathW
ReadFile
WaitForSingleObject
SetThreadPriority
TerminateThread
WaitForMultipleObjects
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
ResetEvent

user32

DispatchMessageW
PeekMessageW
EnableWindow
GetDesktopWindow
SendMessageW
PostMessageW

wininet

InternetConnectW
HttpSendRequestW
HttpAddRequestHeadersW
InternetSetStatusCallbackW
InternetErrorDlg
InternetOpenW
HttpOpenRequestW
InternetReadFileExA
InternetWriteFile
HttpSendRequestExW
HttpEndRequestW
HttpQueryInfoW
InternetCloseHandle
InternetQueryOptionW

oleaut32

SysFreeString

Exports

Exports

??0CHttpDowndExports@@QAE@XZ
??0CHttpDownload@@QAE@XZ
??0CHttpDownloadUIInterface@@IAE@XZ
??0CHttpDownloadUIInterface@@QAE@ABV0@@Z
??0CThreadModel@@IAE@XZ
??1CHttpDowndExports@@QAE@XZ
??1CHttpDownload@@UAE@XZ
??1CHttpDownloadUIInterface@@UAE@XZ
??1CThreadModel@@MAE@XZ
??4CHttpDowndExports@@QAEAAV0@ABV0@@Z
??4CHttpDownloadUIInterface@@QAEAAV0@ABV0@@Z
??_7CHttpDownload@@6B@
??_7CHttpDownloadUIInterface@@6B@
??_7CThreadModel@@6B@
?AddContent@CHttpDowndExports@@QAEHPBEH@Z
?AddContent@CHttpDownload@@QAEHPBEH@Z
?AddEvent@CThreadModel@@IAEXPAX@Z
?AddInfo@CHttpDowndExports@@QAEHPB_W0@Z
?AddInfo@CHttpDowndExports@@QAEHPB_WK@Z
?AddInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@0@Z
?AddInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?AddInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@K@Z
?AddInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PBEH@Z
?AfterThread@CHttpDownload@@MAEXXZ
?AfterThread@CThreadModel@@MAEXXZ
?BeforeThread@CHttpDownload@@MAEXXZ
?BeforeThread@CThreadModel@@MAEXXZ
?CancelDownload@CHttpDownload@@QAEXXZ
?CheckDirectoryExist@CHttpDownload@@IAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?CheckFileExist@CHttpDownload@@IAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ClearRequestContent@CHttpDownload@@QAEXXZ
?ClearRequestHeader@CHttpDownload@@QAEXXZ
?CloseInternetConnection@CHttpDownload@@IAEXXZ
?CloseInternetFile@CHttpDownload@@IAEXXZ
?CloseInternetSession@CHttpDownload@@IAEXXZ
?CloseSaveFile@CHttpDownload@@IAEXXZ
?CreateAllDirectory@CHttpDownload@@IAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?CreateHeapData@CHttpDownload@@IAEHPBXKAAPAX@Z
?CreateUIProxy@CHttpDownload@@IAEHXZ
?DecodeBuffer@CHttpDownload@@IAEHAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PBEK@Z
?DeleteUIProxy@CHttpDownload@@IAEXXZ
?Download@CHttpDowndExports@@QAEIPB_W0@Z
?Download@CHttpDownload@@QAEIPB_W0PAU_SYSTEMTIME@@@Z
?Download@CHttpDownload@@QAEIPB_WPAU_SYSTEMTIME@@@Z
?DownloadBase@CHttpDownload@@IAEIPB_W0@Z
?DownloadInternetFile@CHttpDownload@@IAEIXZ
?DownloadResume@CHttpDownload@@QAEIPB_W0KH@Z
?DownloadRun@CHttpDownload@@IAEIXZ
?EncodeBuffer@CHttpDownload@@IAEHPAEAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ExitDownload@CHttpDownload@@IAEXXZ
?FlushSaveFile@CHttpDownload@@IAEHXZ
?GetDownloadTempDir@CHttpDownload@@QAEAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetFileCurrentPos@CHttpDownload@@IAEHPAXAAK@Z
?GetLastModifyTime@CHttpDownload@@QAEHAAU_SYSTEMTIME@@@Z
?GetRawResponseHeader@CHttpDownload@@QAEHAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?GetRawUserRequestHeader@CHttpDownload@@QAE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetRequestContent@CHttpDownload@@QAEXPAPBEPAH@Z
?GetResponseFileName@CHttpDownload@@QAEHAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?GetUserAgent@CHttpDownload@@IAEHAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?HttpHandleModifiedTime@CHttpDownload@@IAEXXZ
?HttpPreSetFilePointer@CHttpDownload@@IAEXK@Z
?HttpQueryInfoStatusCode@CHttpDownload@@IAEKXZ
?HttpQueryResponseHeader@CHttpDownload@@IAEXXZ
?HttpSendRequestW@CHttpDownload@@MAEIXZ
?HttpSetExternalHeader@CHttpDownload@@IAEXV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?HttpSetRequestModifiedHeader@CHttpDownload@@IAEXAAU_SYSTEMTIME@@@Z
?InitDownload@CHttpDownload@@IAEIXZ
?InitMemberData@CHttpDownload@@IAEXXZ
?InitReceiveBuffer@CHttpDownload@@IAEHXZ
?InternetStatusCallback@CHttpDownload@@KGXPAXKK0K@Z
?IsThreadRunning@CThreadModel@@IAEHXZ
?MoveFilePosition@CHttpDownload@@IAEHKK@Z
?OnConnected@CHttpDownload@@IAEXXZ
?OnConnected@CHttpDownloadUIInterface@@UAEXXZ
?OnConnecting@CHttpDownload@@IAEXXZ
?OnConnecting@CHttpDownloadUIInterface@@UAEXPB_W@Z
?OnDownloadComplete@CHttpDownload@@IAEXK@Z
?OnDownloadComplete@CHttpDownloadUIInterface@@UAEXKPB_W@Z
?OnDownloadStart@CHttpDownload@@IAEXKK@Z
?OnDownloadStart@CHttpDownloadUIInterface@@UAEXKK@Z
?OnError@CHttpDownload@@IAEXK@Z
?OnError@CHttpDownloadUIInterface@@UAEXKPB_W@Z
?OnGetProxyUserPassword@CHttpDownload@@IAEHXZ
?OnHttpStatusOK@CHttpDownload@@IAEIK@Z
?OnHttpStatusOther@CHttpDownload@@IAEIK@Z
?OnHttpStatusPartialContent@CHttpDownload@@IAEIK@Z
?OnHttpStatusRedirect@CHttpDownload@@IAEIK@Z
?OnInetClosingConnection@CHttpDownload@@IAEXPAX@Z
?OnInetConnectionClosed@CHttpDownload@@IAEXPAX@Z
?OnInetHandleCreated@CHttpDownload@@IAEXPAXPAUINTERNET_ASYNC_RESULT@@@Z
?OnInetRequestComplete@CHttpDownload@@IAEXPAXPAUINTERNET_ASYNC_RESULT@@@Z
?OnInetResponceReceived@CHttpDownload@@IAEXPAX0@Z
?OnMessageError@CHttpDownload@@IAEXPB_W@Z
?OnProgress@CHttpDownload@@MAEXK@Z
?OnProgress@CHttpDownloadUIInterface@@UAEXKK@Z
?OnRedirect@CHttpDownload@@IAEXPB_W@Z
?OnRedirected@CHttpDownloadUIInterface@@UAEXPB_W@Z
?OnStatusCallback@CHttpDownload@@MAEXPAXK0K@Z
?OnSupportResume@CHttpDownload@@MAEXH@Z
?OpenInternetConnection@CHttpDownload@@IAEIXZ
?OpenInternetFile@CHttpDownload@@IAEIXZ
?OpenInternetSession@CHttpDownload@@IAEHXZ
?OpenSaveFile@CHttpDownload@@IAEHXZ
?QueryEvent@CThreadModel@@IAEHAAPAXH@Z
?QueryExitEvent@CThreadModel@@IAEHXZ
?QueryInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@AAH@Z
?QueryInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@AAK@Z
?QueryInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@AAV23@H@Z
?QueryInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAEK@Z
?QueryInfoBase@CHttpDownload@@IAEHPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?QueryInternetFileInfo@CHttpDownload@@IAEXAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@AAKAAU_SYSTEMTIME@@@Z
?ReleaseReceiveBuffer@CHttpDownload@@IAEXXZ
?Run@CHttpDownload@@MAEIXZ
?SetAutoResume@CHttpDownload@@QAEXH@Z
?SetDownloadSize@CHttpDownload@@IAEXH@Z
?SetDownloadTempDir@CHttpDownload@@QAEXPB_W@Z
?SetEventMask@CHttpDownload@@QAEXE@Z
?SetFileSize@CHttpDownload@@IAEXH@Z
?SetInternetOptions@CHttpDownload@@IAEHXZ
?SetRequestMethod@CHttpDowndExports@@QAEXH@Z
?SetRequestMethod@CHttpDownload@@QAEXH@Z
?SetResueThread@CHttpDownload@@QAEXH@Z
?SetStatusAndErrorCode@CHttpDownload@@IAEXW4DOWNLOAD_STATUS@1@W4DOWNLOAD_ERRORCODE@@@Z
?SetUIInterface@CHttpDowndExports@@QAEXPAVCHttpDownloadUIInterface@@@Z
?SetUIInterface@CHttpDownload@@QAEXPAVCHttpDownloadUIInterface@@@Z
?SetUseIEProxy@CHttpDownload@@QAEXH@Z
?StartThread@CThreadModel@@QAEHXZ
?StopThread@CThreadModel@@QAEXXZ
?WaitThread@CThreadModel@@QAEHK@Z
?WriteSaveFile@CHttpDownload@@IAEHPAXK@Z
?__ThreadProxyProc@CThreadModel@@CGIPAX@Z
?m_strPassword@CHttpDownload@@1V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@A
?m_strUserName@CHttpDownload@@1V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@A
?m_thisMap@CHttpDownload@@0VCThisMapPtrToPtr@1@A

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 684B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/LiveAPI.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d1ad6c4e705d2a21d7b3b9ad7c160c15

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:92:ae:b3:83:26:5c:7c:64:53:bd:92:a0:40:a0:20
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

15/02/2009, 00:00

Not After

15/02/2010, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Tencent,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

37:bb:34:e5:83:f7:cf:01:06:6b:44:4f:0f:a0:1f:e1:a7:b4:5d:2d
Signer

Actual PE Digest

37:bb:34:e5:83:f7:cf:01:06:6b:44:4f:0f:a0:1f:e1:a7:b4:5d:2d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\LiveAPI.pdb

Imports

kernel32

InterlockedDecrement
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
SetThreadLocale
GetThreadLocale
LockResource
InterlockedIncrement
GetPrivateProfileIntW
FormatMessageW
GetProcAddress
GetFileAttributesW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
GetModuleFileNameW
lstrcmpiW
GetLastError
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
FindResourceExW
lstrlenW
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetLocaleInfoA
GetACP
InterlockedExchange

user32

UnregisterClassA
SendMessageTimeoutW
GetDesktopWindow
CharNextW
GetWindow
GetPropW
IsWindow

advapi32

RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW

shell32

ShellExecuteW

ole32

CoTaskMemRealloc
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoLoadLibrary
CoTaskMemAlloc

oleaut32

SysAllocString
SysFreeString
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
LoadRegTypeLi
SysAllocStringLen
VarUI4FromStr
SysStringLen

log

?GetExeFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CheckFileExist@@YAHPB_W@Z
?DOLOG@@YAXPB_WZZ
?GetModuleFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@PAUHINSTANCE__@@@Z

msvcr80

malloc
free
memcpy_s
_CxxThrowException
wcscpy_s
wcsncpy_s
wcscat_s
memset
__CxxFrameHandler3
??_V@YAXPAX@Z
_recalloc
??_U@YAPAXI@Z
_vscwprintf
wcslen
vswprintf_s
_purecall
??2@YAPAXI@Z
calloc
_resetstkoflw
_except_handler4_common
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
memcmp
??3@YAXPAX@Z
memmove_s

msvcp80

?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/LiveMaster.dll
.dll regsvr32 windows:4 windows x86 arch:x86

08184e9aa050dcaa61341611c023c02b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\LiveMaster.pdb

Imports

kernel32

lstrlenA
LoadLibraryW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
Sleep
GlobalUnlock
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
MultiByteToWideChar
GetACP
InterlockedExchange
GetVersionExA
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
lstrlenW
FreeLibrary
GetThreadLocale
SetThreadLocale
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
GetPrivateProfileIntW
GetPrivateProfileStringW
RaiseException
LoadLibraryExW
GetProcAddress
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
GetModuleFileNameW
SetLastError
GetCurrentProcess
FlushInstructionCache
GlobalAlloc
GetLocaleInfoA
GlobalLock
WritePrivateProfileStringW
GetLogicalDrives
GetDriveTypeW
GetDiskFreeSpaceExW
CreateFileW
DeviceIoControl
CloseHandle
LeaveCriticalSection
EnterCriticalSection
FindFirstFileW
CreateDirectoryW
GetLastError
GetFileAttributesW
VirtualAlloc
SetFileAttributesW

user32

GetKeyState
InvalidateRect
KillTimer
SetTimer
UnregisterClassA
GetClassInfoExW
LoadCursorW
RegisterClassExW
PostMessageW
IsWindow
DefWindowProcW
DestroyWindow
SetWindowPos
SetWindowRgn
OffsetRect
EqualRect
IntersectRect
EndPaint
BeginPaint
SetWindowLongW
GetWindowLongW
ShowWindow
PtInRect
UnionRect
CallWindowProcW
CreateWindowExW
GetFocus
IsChild
SetFocus
GetClientRect

gdi32

LPtoDP
SetMapMode
SetViewportOrgEx
DeleteDC
CreateMetaFileW
SaveDC
SetWindowOrgEx
SetWindowExtEx
RestoreDC
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
SetTextAlign
TextOutW
GetDeviceCaps

advapi32

RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegOpenKeyW
RegQueryValueExW

shell32

SHGetFolderPathW

ole32

CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CreateOleAdviseHolder
CoTaskMemAlloc
CoCreateInstance
CoFreeLibrary
CoLoadLibrary
CoTaskMemFree

oleaut32

LoadTypeLi
LoadRegTypeLi
OleCreatePropertyFrame
VariantChangeType
VariantClear
VariantInit
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysFreeString
VarBstrCmp
SysStringLen
GetErrorInfo

atl80

ord27
ord61
ord23
ord64
ord22
ord30
ord32
ord15
ord26
ord43
ord44
ord58
ord31
ord50
ord51
ord52
ord53
ord18

shlwapi

PathAppendW

msvcp80

??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z

msvcr80

??2@YAPAXI@Z
calloc
_purecall
_itow_s
free
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
malloc
_malloc_crt
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_except_handler4_common
wcsstr
isdigit
sscanf_s
_resetstkoflw
strncpy_s
memmove_s
strcpy_s
strcat_s
sprintf_s
_time64
rand
__clean_type_info_names_internal
srand
wcstoul
_encoded_null
??3@YAXPAX@Z
memset
wcscat_s
vswprintf_s
_CxxThrowException
swprintf_s
_vscwprintf
memcpy_s
??_V@YAXPAX@Z
_recalloc
wcsncpy_s
__CxxFrameHandler3
strchr

log

?CreateObjectFromFile2@@YAJAAPAUHINSTANCE__@@PB_WPAUIUnknown@@ABU_GUID@@3PAPAX@Z
?DOLOG@@YAXPB_WZZ
?GetModulePath2@@YA?AVCComBSTR@ATL@@PAUHINSTANCE__@@@Z
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetUserAppDataPath3@@YA?AVCComBSTR@ATL@@XZ

ws2_32

gethostname
gethostbyname
inet_ntoa
WSAStartup
WSACleanup
inet_addr
ntohl

Exports

Exports

CreateP2PAppCtrl
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/LiveMedia.dll
.dll regsvr32 windows:4 windows x86 arch:x86

b2bb426f4d18671c6d6e32af65a0d9ca

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:92:ae:b3:83:26:5c:7c:64:53:bd:92:a0:40:a0:20
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

15/02/2009, 00:00

Not After

15/02/2010, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Tencent,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

88:ef:f0:0e:e3:56:65:c7:96:d8:59:c2:dc:1e:92:99:c5:2c:77:c3
Signer

Actual PE Digest

88:ef:f0:0e:e3:56:65:c7:96:d8:59:c2:dc:1e:92:99:c5:2c:77:c3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\Symbol\LiveMedia.pdb

Imports

ws2_32

gethostbyname
gethostname
ntohl
inet_addr
WSACleanup
WSAStartup
inet_ntoa

kernel32

FormatMessageW
GlobalUnlock
GlobalLock
lstrcmpW
GlobalFree
GlobalHandle
MulDiv
LoadLibraryW
CloseHandle
ResetEvent
CreateEventW
GetTickCount
HeapDestroy
HeapReAlloc
HeapSize
InterlockedExchange
GetACP
GetLocaleInfoA
GetVersionExA
InterlockedCompareExchange
LoadLibraryA
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
Sleep
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
MultiByteToWideChar
lstrlenW
RaiseException
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GetCurrentProcess
GetCurrentThreadId
SetLastError
InitializeCriticalSection
DeleteCriticalSection
GetLastError
lstrcmpiW
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
FreeLibrary
LoadLibraryExW
GetModuleHandleW
SetThreadLocale
GetThreadLocale
GetProcAddress
GetFileAttributesW
HeapFree
GetProcessHeap
GlobalAlloc
lstrlenA
HeapAlloc

user32

RegisterWindowMessageW
FindWindowExW
GetKeyState
SetRectEmpty
CopyRect
SetWindowLongW
GetWindowLongW
PostMessageW
IsIconic
MoveWindow
SetWindowPos
GetWindowRect
GetClientRect
ClientToScreen
ShowWindow
IsWindowVisible
SetTimer
KillTimer
IsWindow
SystemParametersInfoW
UnregisterClassA
BeginPaint
DestroyAcceleratorTable
GetFocus
SetFocus
SetWindowRgn
OffsetRect
GetParent
GetClassInfoExW
LoadCursorW
SendMessageW
DefWindowProcW
CallWindowProcW
SetPropW
GetDesktopWindow
RegisterClassExW
CreateWindowExW
CharNextW
SetWindowTextW
SendDlgItemMessageW
DestroyWindow
GetWindowTextW
GetWindowTextLengthW
CreateDialogIndirectParamW
GetWindow
SetWindowContextHelpId
EndDialog
MapDialogRect
GetSysColor
ScreenToClient
GetDC
ReleaseDC
InvalidateRect
InvalidateRgn
RedrawWindow
SetCapture
IsChild
GetDlgItem
GetClassNameW
ReleaseCapture
FillRect
GetDoubleClickTime
GetPropW
SetParent
BringWindowToTop
MessageBoxW
GetCursorPos
CreateAcceleratorTableW
UnionRect
PtInRect
IntersectRect
EqualRect
EndPaint

gdi32

GetClipRgn
CreateRectRgn
SelectClipRgn
Rectangle
SetTextAlign
TextOutW
LPtoDP
SetMapMode
SetViewportOrgEx
CreateDCW
CreateMetaFileW
SaveDC
SetWindowOrgEx
SetWindowExtEx
RestoreDC
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
GetStockObject
GetObjectW
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SelectObject
DeleteObject

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyW
RegEnumKeyExW
RegQueryInfoKeyW
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW

ole32

OleSaveToStream
WriteClassStm
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CreateOleAdviseHolder
OleLoadFromStream
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoLoadLibrary
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc
CoTaskMemAlloc
CoFreeLibrary
CoTaskMemFree

oleaut32

VariantInit
VariantClear
VariantCopy
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
DispCallFunc
LoadRegTypeLi
OleCreateFontIndirect
OleCreatePropertyFrame
VarBstrCmp
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysStringLen
SysFreeString
VariantChangeType

msvcp80

??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?_Xran@_String_base@std@@SAXXZ
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?insert@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IPB_W@Z

msvcr80

wcstoul
_resetstkoflw
_purecall
??2@YAPAXI@Z
calloc
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
_invalid_parameter_noinfo
_itow_s
wcscat_s
wcscpy_s
free
malloc
_recalloc
_time64
wcsncpy_s
wcsstr
isdigit
sscanf_s
sprintf_s
strncpy_s
memset
strchr
__CxxFrameHandler3
memcpy_s
vswprintf_s
_vscwprintf
_CxxThrowException
rand
srand
memmove_s
??_V@YAXPAX@Z
??3@YAXPAX@Z
_wcslwr_s
wcsrchr
atoi
_wtoi
memcpy
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_except_handler4_common
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
swprintf_s

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

log

?CreateObjectFromFile2@@YAJAAPAUHINSTANCE__@@PB_WPAUIUnknown@@ABU_GUID@@3PAPAX@Z
?GetExeFolder2@@YA?AVCComBSTR@ATL@@XZ
?GetQQLiveDlgHwnd@@YAPAUHWND__@@XZ
?GetFullScreen@@YA?AUtagRECT@@PAUHWND__@@@Z
?GetModulePath2@@YA?AVCComBSTR@ATL@@PAUHINSTANCE__@@@Z
?CreateObjectFromFile@@YAJPB_WPAUIUnknown@@ABU_GUID@@2PAPAX@Z
?NavigateURL@@YAHPB_WH@Z
?DOLOG@@YAXPB_WZZ
?CheckUnadvise@@YAXPB_W@Z
?CheckAdvise@@YAXPB_W@Z

comctl32

_TrackMouseEvent

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/LiveStream.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d813b411f80e03faa2c6b865a32cafe3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\LiveStream.pdb

Imports

ws2_32

htons
inet_addr
bind
ioctlsocket
recv
closesocket
select
socket
accept
connect
send
listen
inet_ntoa
WSAGetLastError

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
GetThreadLocale
lstrlenA
GetModuleFileNameA
MultiByteToWideChar
FormatMessageA
GetProcAddress
LocalFree
WideCharToMultiByte
SizeofResource
lstrlenW
lstrcmpiA
FreeLibrary
RaiseException
DisableThreadLibraryCalls
DeleteCriticalSection
InterlockedIncrement
IsDebuggerPresent
LoadResource
GetModuleHandleA
LoadLibraryExA
GetLastError
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
InitializeCriticalSection
IsDBCSLeadByte
CreateMutexA
CloseHandle
SetEvent
WaitForSingleObject
CreateEventA
FindClose
CreateDirectoryA
FindFirstFileA
GetTickCount
Sleep
GetVersionExA
CreateThread
GetLocaleInfoA
GetACP
InterlockedExchange
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
FindResourceA

user32

UnregisterClassA
CharNextA
IsWindow
DestroyWindow
DispatchMessageA
CreateWindowExA
TranslateMessage
SetWindowLongA
GetMessageA
KillTimer
SetTimer
PostMessageA
GetWindowLongA

advapi32

RegOpenKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumKeyExA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA

ole32

CoUninitialize
CoInitialize
CoTaskMemAlloc
CoTaskMemRealloc
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CLSIDFromString
StringFromCLSID
CoLoadLibrary
CoFreeLibrary

oleaut32

LoadRegTypeLi
LoadTypeLi
VarUI4FromStr
UnRegisterTypeLi
RegisterTypeLi
SysAllocString
SysStringLen
SysFreeString
SysAllocStringLen

msvcr80

_strnicmp
_stricmp
__CxxFrameHandler3
??3@YAXPAX@Z
strcpy
sprintf
_splitpath
??_U@YAPAXI@Z
strlen
??_V@YAXPAX@Z
wcstombs
_CxxThrowException
strcpy_s
strcat_s
_recalloc
_mbsnbcpy_s
_purecall
wcsncpy_s
??2@YAPAXI@Z
memset
malloc
_resetstkoflw
memcmp
memcpy_s
free
memcpy
memmove_s
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABV01@@Z
_time64
_beginthreadex
fopen
fclose
strstr
sprintf_s
_localtime64
strftime
atoi
strchr
vsprintf_s
strcmp
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
strcat

msvcp80

?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
?eof@?$char_traits@D@std@@SAHXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?width@ios_base@std@@QBEHXZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?flags@ios_base@std@@QBEHXZ
?length@?$char_traits@D@std@@SAIPBD@Z
?good@ios_base@std@@QBE_NXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?uncaught_exception@std@@YA_NXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?width@ios_base@std@@QAEHH@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Myptr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IBEPBDXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?rdstate@ios_base@std@@QBEHXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/LiveVOD.dll
.dll regsvr32 windows:4 windows x86 arch:x86

0445ec071a08f1bd6ba922541acb98ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\LiveVOD.pdb

Imports

ws2_32

WSAStartup
WSACleanup
inet_addr
inet_ntoa
recv
send
select
__WSAFDIsSet
accept
socket
WSAGetLastError
htons
bind
listen
closesocket

wininet

InternetCrackUrlA

kernel32

HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetLocaleInfoA
GetACP
InterlockedExchange
GetModuleFileNameW
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
GetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteFileA
CopyFileA
GetProcAddress
GetFileAttributesW
GetLocalTime
lstrlenA
HeapReAlloc
InitializeCriticalSection
DeleteCriticalSection
CloseHandle
WaitForSingleObject
InterlockedIncrement
InterlockedDecrement
SetThreadLocale
GetThreadLocale
FreeLibrary
LoadLibraryW
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
SetEvent
GetModuleHandleW
CreateEventW
GetTickCount
RaiseException
CreateDirectoryW
HeapSize
GetProcessHeap
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
Sleep

user32

UnregisterClassA
CreateWindowExA
SetWindowLongA
SetWindowLongW
GetMessageW
TranslateMessage
DispatchMessageW
DestroyWindow
GetWindowLongW
KillTimer
SetTimer
IsWindow
PostMessageW

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

SHGetFolderPathW

ole32

CoInitialize
CoLoadLibrary
CoUninitialize
CoCreateInstance

oleaut32

SysStringByteLen
SysAllocStringByteLen
SysAllocStringLen
LoadTypeLi
LoadRegTypeLi
DispCallFunc
SysAllocString
VariantClear
VariantInit
SysFreeString
SysStringLen
GetErrorInfo

atl80

ord10
ord61
ord23
ord64
ord22
ord18
ord15
ord31
ord11
ord58

msvcp80

??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z

msvcr80

isalpha
strncpy_s
_purecall
strncmp
_beginthreadex
fseek
ftell
_wsplitpath_s
wcscat_s
wcschr
wcsrchr
wcsncpy_s
swprintf_s
_strlwr_s
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
malloc
_decode_pointer
_except_handler4_common
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_strnicmp
??3@YAXPAX@Z
__CxxFrameHandler3
memset
free
_CxxThrowException
_invalid_parameter_noinfo
memmove_s
calloc
_recalloc
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
fopen
strcat_s
strcpy_s
fclose
fflush
fwrite
??0exception@std@@QAE@ABV01@@Z
??2@YAPAXI@Z
??_V@YAXPAX@Z
vsprintf_s
sprintf_s
memcpy
_vsnprintf
_localtime64
_time64
strchr
strstr
strrchr
strtoul
strftime
memcpy_s

Exports

Exports

CreateQQLiveVOD
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/MediaCtrl.dll
.dll regsvr32 windows:4 windows x86 arch:x86

97ae7a3fad5ee5d151c864c911aa0c0d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\MediaCtrl.pdb

Imports

skin

?GetPicEx@@YAHPB_WAAPAUHBITMAP__@@AAUtagPOINT@@AAUtagSIZE@@H@Z
?TransparentBlt2@@YAXPAUHDC__@@HHHH0HHHHI@Z
?LoadSkinFromFile@@YAHPB_W00@Z
?SetWndSkin@@YAHPB_WPAUHWND__@@H@Z
?SetSkinVar@@YAHPB_W0H@Z

log

?GetQQLiveDlgHwnd@@YAPAUHWND__@@XZ
?GetXPMenuState@@YAXAAHAAK@Z
?TraceComError@@YAXAAV_com_error@@@Z
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CheckUnadvise@@YAXPB_W@Z
?CheckAdvise@@YAXPB_W@Z
?SetXPMenuState@@YAXH@Z
?GetModulePath2@@YA?AVCComBSTR@ATL@@PAUHINSTANCE__@@@Z
?GetFullScreen@@YA?AUtagRECT@@PAUHWND__@@@Z
?AddCloseHwnd@@YAXPAUHWND__@@@Z
?DelCloseHwnd@@YAXPAUHWND__@@@Z
?DOLOG@@YAXPB_WZZ

mfc80u

ord5171
ord1353
ord4961
ord3339
ord6275
ord3796
ord6273
ord1513
ord2163
ord2169
ord2399
ord2381
ord2379
ord2397
ord2409
ord2386
ord2402
ord2407
ord2390
ord2392
ord2394
ord2388
ord2404
ord2384
ord931
ord927
ord929
ord925
ord920
ord5229
ord5231
ord5956
ord1591
ord4276
ord4716
ord3397
ord5210
ord4179
ord5067
ord1899
ord5148
ord4238
ord1393
ord3940
ord1608
ord1611
ord5911
ord6721
ord2155
ord2651
ord6063
ord6086
ord6271
ord6061
ord6279
ord6059
ord3752
ord572
ord4347
ord3678
ord1079
ord1274
ord4119
ord1156
ord3417
ord4226
ord1536
ord3677
ord566
ord3327
ord4475
ord2832
ord5562
ord5209
ord5226
ord4562
ord3942
ord5222
ord5220
ord2925
ord1911
ord3826
ord5378
ord6215
ord5096
ord1007
ord1955
ord5579
ord2009
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord757
ord3824
ord2239
ord1043
ord1479
ord2895
ord6111
ord282
ord6700
ord1118
ord1925
ord3204
ord3157
ord2362
ord5727
ord326
ord709
ord501
ord3756
ord3927
ord589
ord330
ord3155
ord1271
ord1270
ord602
ord347
ord3331
ord1416
ord2461
ord2361
ord2468
ord2648
ord2254
ord3983
ord2255
ord6003
ord3390
ord6749
ord3497
ord6140
ord3249
ord1172
ord5316
ord2340
ord6282
ord3281
ord3238
ord2085
ord4094
ord1946
ord651
ord564
ord416
ord755
ord1921
ord1647
ord1959
ord5637
ord5558
ord3990
ord1571
ord3995
ord4117
ord502
ord5327
ord6293
ord1646
ord1590
ord5196
ord2531
ord2725
ord2829
ord4301
ord2708
ord2856
ord2534
ord2640
ord2527
ord3712
ord3713
ord3703
ord2638
ord3943
ord581
ord1200
ord1170
ord1168
ord1192
ord1115
ord1162
ord4480
ord4255
ord760
ord1894
ord587
ord3590
ord2879
ord900
ord2713
ord2261
ord776
ord896
ord899
ord280
ord870
ord2366
ord265
ord1908
ord314
ord266
ord762
ord267
ord6751
ord1086
ord1472
ord2311
ord293
ord774
ord577
ord283
ord1182
ord1178
ord1176
ord764
ord371
ord1093
ord1199
ord1197
ord1087
ord1033
ord315
ord765
ord3800

msvcr80

_except_handler4_common
wcscat_s
?terminate@@YAXXZ
_resetstkoflw
wcstoul
_purecall
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
wcscpy_s
__clean_type_info_names_internal
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
__CxxFrameHandler3
_localtime64_s
malloc
free
memcpy_s
wcsncpy_s
memset
wcsftime
_invalid_parameter_noinfo
calloc
_recalloc
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException

kernel32

HeapFree
GetFileAttributesW
GetProcAddress
GetModuleFileNameW
GetLastError
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
GetProcessHeap
SetLastError
LocalFree
LocalAlloc
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
lstrcmpiW
GetPrivateProfileIntW
WritePrivateProfileStringW
InterlockedIncrement
InterlockedDecrement
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
SetThreadLocale
GetThreadLocale
GetACP
GetLocaleInfoA
GetVersionExA
lstrlenW
LoadLibraryW

user32

ModifyMenuW
GetMenuItemInfoW
GetMenuItemCount
AppendMenuW
DrawIconEx
DestroyIcon
MonitorFromPoint
CopyRect
OffsetRect
SendMessageW
ShowCursor
IsZoomed
CharNextW
PtInRect
GetMonitorInfoW
GetDC
ReleaseDC
SetCursor
ScreenToClient
SetRect
GetSysColor
InvalidateRect
UpdateWindow
FillRect
InflateRect
LoadIconW
CreatePopupMenu
ReleaseCapture
SetWindowPos
EnableWindow
SetParent
GetParent
GetDesktopWindow
GetClientRect
PostMessageW
SetCapture
RegisterWindowMessageW
GetSystemMetrics
GetAsyncKeyState
GetWindowRect
ShowWindow
GetForegroundWindow
KillTimer
SetTimer
IsWindow
GetWindowLongW
MoveWindow
GetCursorPos
UnregisterClassA

gdi32

CreateCompatibleDC
GetTextExtentPoint32W
Rectangle
DeleteDC
SelectObject
CreatePen
DeleteObject
Ellipse

advapi32

RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegDeleteValueW

comctl32

_TrackMouseEvent

ole32

CoTaskMemRealloc
CoLoadLibrary
CoTaskMemFree
CoCreateInstance
StringFromGUID2
CoTaskMemAlloc

oleaut32

SysStringLen
SysFreeString
VarBstrCmp
VariantInit
VariantClear
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringByteLen
DispCallFunc
VarUI4FromStr
LoadRegTypeLi
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi

msvcp80

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 132KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/Microsoft.VC80.ATL.manifest
.xml
QQLive/Microsoft.VC80.CRT.manifest
QQLive/Microsoft.VC80.MFC.manifest
QQLive/Microsoft.VC80.MFCLOC.manifest
QQLive/MiniTips.dll
.dll regsvr32 windows:4 windows x86 arch:x86

45a58c13c6d23cafd6b97341392eef01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\MiniTips.pdb

Imports

log

?CheckFileExist@@YAHPB_W@Z
?CreateAllDirectory@@YAHPB_W@Z
?DOLOG@@YAXPB_WZZ
?CheckAdvise@@YAXPB_W@Z
?ConvertTime@@YAI_J@Z
?CheckDirectoryExist@@YAHPB_W@Z
?GetExeFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CheckUnadvise@@YAXPB_W@Z

skin

?SetWndSkin@@YAHPB_WPAUHWND__@@H@Z
?SetSkin@CSkinBase@@QAEJPB_W0@Z
?CreateSkinControl@@YAPAUHWND__@@PB_WPAU1@H@Z

mfc80u

ord3826
ord5378
ord6215
ord5096
ord1007
ord3800
ord5579
ord2009
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord757
ord1049
ord3824
ord2239
ord1043
ord3590
ord572
ord4480
ord2856
ord5196
ord1590
ord1646
ord1647
ord1955
ord5171
ord1353
ord4961
ord3339
ord6275
ord3796
ord6273
ord1513
ord2163
ord2169
ord2399
ord2381
ord2379
ord2397
ord2409
ord2386
ord2402
ord2407
ord2390
ord2392
ord2394
ord2388
ord2404
ord2384
ord931
ord927
ord929
ord925
ord920
ord5229
ord5231
ord5956
ord1591
ord4276
ord4716
ord3397
ord5210
ord4179
ord1911
ord5067
ord1899
ord5148
ord4238
ord1393
ord3940
ord1608
ord1611
ord5911
ord6721
ord760
ord4347
ord1894
ord3678
ord1479
ord2895
ord6111
ord282
ord6700
ord2311
ord267
ord2985
ord1605
ord3902
ord605
ord777
ord354
ord3176
ord4256
ord5199
ord1392
ord5908
ord6720
ord1542
ord1661
ord1662
ord2011
ord4884
ord4729
ord4206
ord5178
ord4119
ord4109
ord1079
ord4574
ord3983
ord2651
ord6061
ord3635
ord6063
ord5524
ord3599
ord3435
ord1416
ord6279
ord774
ord4100
ord2925
ord5220
ord5222
ord3942
ord4562
ord5226
ord5209
ord5562
ord2531
ord2725
ord315
ord765
ord2829
ord4301
ord2708
ord2832
ord2534
ord2640
ord2527
ord3712
ord3713
ord3703
ord2638
ord3943
ord4475
ord4255
ord3327
ord566
ord3677
ord1908
ord1182
ord283
ord293
ord2460
ord5398
ord421
ord5105
ord5283
ord581
ord1200
ord1170
ord1168
ord1192
ord1115
ord1162
ord371
ord1093
ord1199
ord1197
ord1087
ord1434
ord655
ord2366
ord6086
ord314
ord870
ord577
ord6219
ord6116
ord6751
ord1571
ord6293
ord5327
ord762
ord6282
ord5316
ord1172
ord3249
ord265
ord266
ord2340
ord1178
ord1176
ord764
ord6271
ord3395
ord1033

msvcr80

__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
_except_handler4_common
wcstoul
_wtoi64
srand
rand
swprintf_s
_time64
_localtime32_s
asctime_s
memcpy
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
_invalid_parameter_noinfo
_resetstkoflw
malloc
_beginthreadex
memcpy_s
memmove_s
memset
__CxxFrameHandler3
free
fclose
fwrite
fopen_s
_purecall
_recalloc
calloc
__RTDynamicCast

kernel32

SetThreadLocale
GetModuleFileNameW
InterlockedDecrement
InterlockedIncrement
ResetEvent
SetFileAttributesW
DeleteFileW
CopyFileW
lstrlenW
TerminateThread
CreateEventW
SetEvent
WaitForSingleObject
CloseHandle
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetProcAddress
WideCharToMultiByte
GetThreadLocale
GetLastError
LoadLibraryW
GetVersion
RemoveDirectoryW
LocalFree
LocalAlloc
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentThreadId
GetFileAttributesW
lstrlenA
WritePrivateProfileStringW
GetACP
RaiseException
MultiByteToWideChar
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoA
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
InitializeCriticalSection
GetTickCount
GetPrivateProfileIntW

user32

UnregisterClassA
GetWindowLongW
SetWindowLongW
GetCursorPos
KillTimer
GetParent
CallWindowProcW
GetPropW
MonitorFromRect
GetMonitorInfoW
ScreenToClient
GetClientRect
SendMessageW
EnableMenuItem
OffsetRect
EnableWindow
CopyRect
PtInRect
GetWindowRect
RegisterWindowMessageW
IsZoomed
SetTimer
IsWindow
PostMessageW
IsIconic
IsWindowVisible
SystemParametersInfoW
GetSystemMetrics
SetWindowPos

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

comctl32

_TrackMouseEvent

ole32

CoLoadLibrary
CoCreateInstance

oleaut32

SysStringByteLen
SysAllocStringByteLen
VarBstrCmp
DispCallFunc
SysAllocString
VariantClear
VariantInit
LoadTypeLi
LoadRegTypeLi
SysStringLen
SysFreeString

urlmon

URLDownloadToCacheFileW

atl80

ord18
ord15
ord31
ord10
ord61
ord23
ord30
ord32
ord11
ord58
ord64
ord22

msvcp80

?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?size@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIXZ
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

ws2_32

htonl
ntohl
ntohs
htons

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/P2PDownload.dll
.dll regsvr32 windows:4 windows x86 arch:x86

25284d9bcb8876d656741d90ba879cd3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\P2PDownload.pdb

Imports

ws2_32

WSACleanup
inet_ntoa
gethostname
WSAStartup
ntohl
inet_addr
gethostbyname

kernel32

lstrlenW
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
MultiByteToWideChar
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
CloseHandle
WaitForSingleObject
GetCurrentThreadId
GetProcAddress
TerminateThread
CreateEventW
lstrlenA
DeleteCriticalSection
CreateDirectoryW
GetPrivateProfileIntW
GetPrivateProfileStringW
CopyFileW
DeleteFileW
SetFileAttributesW
LocalFree
FormatMessageW
GetLastError
GetTickCount
SetThreadLocale
GetThreadLocale
SetEvent
MoveFileW
ResetEvent
RaiseException
InterlockedExchange
GetLocaleInfoA
GetVersionExA
InitializeCriticalSection
WideCharToMultiByte
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleHandleW
HeapDestroy
HeapAlloc
TerminateProcess
InterlockedCompareExchange
Sleep
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetACP

user32

RegisterClassW
CreateWindowExW
LoadIconW
GetWindowLongW
DefWindowProcW
UnregisterClassA
IsWindow
SetTimer
KillTimer
SendMessageW
LoadCursorW
SetWindowLongW
DestroyWindow
UnregisterClassW
PostMessageW

ole32

CoCreateInstance
CoFreeLibrary

oleaut32

VariantInit
SysAllocStringLen
SysAllocString
LoadTypeLi
LoadRegTypeLi
SysStringLen
SysFreeString
VariantClear

log

?DOLOG@@YAXPB_WZZ
?CheckFileExist@@YAHPB_W@Z
?CreateObjectFromFile2@@YAJAAPAUHINSTANCE__@@PB_WPAUIUnknown@@ABU_GUID@@3PAPAX@Z
?GetModulePath2@@YA?AVCComBSTR@ATL@@PAUHINSTANCE__@@@Z
?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ

atl80

ord31
ord30
ord23
ord61
ord58
ord15
ord18
ord22
ord64
ord32

msvcp80

?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@II@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcr80

_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
_encoded_null
_unlock
?terminate@@YAXXZ
_except_handler4_common
_time64
srand
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
__dllonexit
??3@YAXPAX@Z
??2@YAPAXI@Z
__CxxFrameHandler3
free
??_V@YAXPAX@Z
_purecall
_CxxThrowException
_recalloc
calloc
memset
malloc
_resetstkoflw
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
memcpy_s
strncpy_s
strcpy_s
rand
_invalid_parameter_noinfo
memmove_s
vswprintf_s
??0exception@std@@QAE@ABV01@@Z
_beginthreadex

urlmon

URLDownloadToCacheFileW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/QQHelper.dll
.dll regsvr32 windows:4 windows x86 arch:x86

c7ab7cfbc98dce0ae16dd508e8a631ba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\QQHelper.pdb

Imports

kernel32

FindResourceExW
GetLastError
lstrcmpiW
GetModuleHandleW
GetModuleFileNameW
CreateProcessW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
FindResourceW
GetCurrentProcess
TerminateProcess
LoadResource
LockResource
SizeofResource
RaiseException
CloseHandle
GetThreadLocale
SetThreadLocale
InterlockedCompareExchange
Sleep
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetLocaleInfoA
GetACP
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
lstrlenW
lstrlenA
LeaveCriticalSection
MultiByteToWideChar
EnterCriticalSection
WideCharToMultiByte
UnhandledExceptionFilter

user32

CharNextW
UnregisterClassA
MessageBoxW

advapi32

RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW
RegCloseKey

shell32

SHGetFileInfoW
ShellExecuteW

ole32

CoTaskMemFree
StringFromCLSID
CoInitialize
CoUninitialize
CoCreateInstance

oleaut32

SysStringLen
VariantClear
VariantChangeType
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayUnlock
SafeArrayLock
SysAllocString
SafeArrayDestroy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetVartype
VarUI4FromStr
LoadRegTypeLi
GetErrorInfo
LoadTypeLi
VariantCopy
SysAllocStringLen
SafeArrayCopy
VariantInit
SysFreeString

log

?BitsToHexString2@@YA?AVCComBSTR@ATL@@PBEH@Z

atl80

ord58
ord32
ord61
ord23
ord64
ord18
ord15
ord30
ord22
ord31

msvcp80

??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z

msvcr80

__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_except_handler4_common
_wcsicmp
_crt_debugger_hook
?terminate@@YAXXZ
calloc
??3@YAXPAX@Z
malloc
free
_CxxThrowException
_vscwprintf
vswprintf_s
swprintf_s
memcpy_s
_resetstkoflw
__CxxFrameHandler3
_recalloc
??_V@YAXPAX@Z
memcpy
memset
strncpy_s
_beginthreadex
??2@YAPAXI@Z
wcscpy_s
wcsncpy_s
memmove_s
_purecall
__clean_type_info_names_internal

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/QQLive.dll
.dll regsvr32 windows:4 windows x86 arch:x86

f330289e902210a3a9647f0ae854a315

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\P2PStream.pdb

Imports

ws2_32

WSAStartup
htons
ntohl
ntohs
accept
connect
recv
listen
getpeername
ioctlsocket
WSACleanup
gethostbyname
gethostname
send
WSAGetLastError
inet_addr
select
__WSAFDIsSet
socket
bind
recvfrom
closesocket
sendto
htonl
setsockopt
inet_ntoa

kernel32

GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
TerminateProcess
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
GetLastError
lstrlenW
lstrlenA
InitializeCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
InterlockedIncrement
HeapDestroy
RaiseException
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
GetFileAttributesW
GetModuleFileNameW
GetTickCount
DeleteFileA
GetLocalTime
GetModuleFileNameA
GetProcAddress
Sleep
CloseHandle
CreateSemaphoreA
SetEvent
WaitForSingleObject
CreateEventA
TerminateThread
GetModuleHandleA
ReleaseMutex
CreateMutexA
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
InterlockedCompareExchange
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
InterlockedDecrement
GetSystemTimeAsFileTime

user32

PostMessageA
IsWindow
SetTimer
KillTimer
SendMessageA
GetWindowLongA
UnregisterClassA
DispatchMessageA
TranslateMessage
GetMessageA
SetWindowLongA
CreateWindowExA
DestroyWindow

advapi32

RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

SHGetFolderPathW

ole32

CoUninitialize
CoLoadLibrary
CoFreeLibrary
CoCreateInstance
CoInitialize

oleaut32

SysAllocStringLen
SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysStringLen
SysFreeString

atl80

ord18
ord22
ord64
ord49
ord23
ord61
ord15
ord32

msvcp80

?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?_Lock@_Mutex@std@@QAEXXZ
?_Unlock@_Mutex@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ

msvcr80

strrchr
__iob_func
fprintf
perror
exit
strncpy
__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_except_handler4_common
fgetc
fputc
??3@YAXPAX@Z
malloc
free
_CxxThrowException
__CxxFrameHandler3
calloc
_resetstkoflw
_purecall
??2@YAPAXI@Z
??_V@YAXPAX@Z
strchr
memcpy_s
memset
memcpy
sprintf_s
strncpy_s
isdigit
_mbsrchr
memmove_s
_wsplitpath_s
vsprintf_s
wcsncpy_s
wcscat_s
swprintf_s
_strlwr_s
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
_invalid_parameter_noinfo
??0exception@std@@QAE@ABV01@@Z
fclose
ftell
fseek
fflush
fwrite
fopen
strcpy_s
_localtime64_s
_time64
strlen
rename
srand
rand
_splitpath_s
strcat_s
_wassert
_beginthreadex
atoi
strtol
clock
_beginthread
strcpy
memmove
strstr
sprintf

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
ReleaseCommLib

Sections

.text
Size: 456KB - Virtual size: 454KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/QQLive.exe
.exe windows:4 windows x86 arch:x86

4178b44b11e4e56160f23c42cdf233a3

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:92:ae:b3:83:26:5c:7c:64:53:bd:92:a0:40:a0:20
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

15/02/2009, 00:00

Not After

15/02/2010, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Tencent,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

94:38:92:40:cb:c3:2e:3a:e4:cb:ff:a5:5b:9f:19:73:26:3b:15:c5
Signer

Actual PE Digest

94:38:92:40:cb:c3:2e:3a:e4:cb:ff:a5:5b:9f:19:73:26:3b:15:c5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\QQLive_Dailybuild\src\symbol\QQLive.pdb

Imports

exceptcatch

?SetExceptionCatcher@@YAXABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@H@Z

skin

?GetColorSchemeChangeMsg@CSkinBase@@SAIXZ
?SetSkinColorScheme@@YAXHH@Z
?HookColorSchemeChange@@YAHPAUHWND__@@H@Z
?GetSkinFont@@YAPAUHFONT__@@PB_W@Z
?LoadSkinFromFile@@YAHPB_W00@Z
?CreateSkinControl@@YAPAUHWND__@@PB_WPAU1@H@Z
?SetSkin@CSkinBase@@QAEJPB_W0@Z
?GetPicEx@@YAHPB_WAAPAUHBITMAP__@@AAUtagPOINT@@AAUtagSIZE@@H@Z
?TransparentBlt2@@YAXPAUHDC__@@HHHH0HHHHI@Z
?SetWndSkin@@YAHPB_WPAUHWND__@@H@Z

mfc80u

ord4475
ord2832
ord334
ord5562
ord593
ord5226
ord1908
ord5113
ord2239
ord4562
ord3942
ord5209
ord5222
ord5220
ord2925
ord267
ord1911
ord3826
ord5378
ord6215
ord5096
ord1007
ord3800
ord5579
ord2009
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord1176
ord1123
ord1472
ord1139
ord4535
ord3677
ord5971
ord1079
ord2261
ord2366
ord566
ord1156
ord899
ord3204
ord6086
ord2362
ord752
ord3157
ord3198
ord1970
ord1281
ord1571
ord2340
ord330
ord1271
ord3990
ord589
ord4026
ord6282
ord1172
ord5316
ord3331
ord777
ord3249
ord1925
ord4112
ord5727
ord6293
ord5327
ord6061
ord501
ord709
ord326
ord5638
ord2979
ord1118
ord3296
ord3320
ord567
ord758
ord1894
ord4119
ord3902
ord2985
ord1605
ord762
ord3417
ord587
ord4226
ord1536
ord2651
ord6063
ord1386
ord3176
ord4256
ord5199
ord1392
ord5908
ord6720
ord1542
ord1661
ord1662
ord2011
ord4884
ord4729
ord4206
ord5178
ord605
ord896
ord2560
ord3395
ord1086
ord1161
ord6219
ord497
ord496
ord3599
ord2260
ord3752
ord6059
ord314
ord6751
ord2155
ord3435
ord1416
ord4098
ord2121
ord4686
ord4109
ord1067
ord2749
ord1274
ord4743
ord4762
ord5829
ord6279
ord6277
ord1476
ord2390
ord631
ord2271
ord2279
ord3925
ord5609
ord3756
ord2648
ord354
ord3983
ord3635
ord4574
ord290
ord2361
ord502
ord3497
ord5637
ord4117
ord3995
ord1946
ord4094
ord2085
ord2255
ord3238
ord2254
ord900
ord6140
ord3155
ord416
ord651
ord564
ord755
ord1921
ord6003
ord1959
ord3281
ord6749
ord1198
ord3327
ord1049
ord1117
ord3824
ord1121
ord1058
ord757
ord297
ord764
ord293
ord577
ord265
ord266
ord2311
ord776
ord280
ord3678
ord3339
ord6275
ord3796
ord6273
ord1513
ord2163
ord2169
ord2399
ord2381
ord2379
ord2397
ord2409
ord2386
ord2402
ord2407
ord909
ord581
ord1200
ord1162
ord1087
ord315
ord765
ord304
ord578
ord1182
ord283
ord1434
ord5283
ord5105
ord5524
ord655
ord421
ord5558
ord5398
ord766
ord2460
ord1479
ord282
ord774
ord1178
ord6700
ord4961
ord1353
ord5171
ord1955
ord1647
ord1646
ord760
ord1590
ord572
ord5196
ord2531
ord2725
ord3590
ord2829
ord4301
ord6721
ord2708
ord5911
ord2856
ord1611
ord2534
ord1608
ord2640
ord3940
ord2527
ord1393
ord3712
ord4238
ord3713
ord5148
ord3703
ord1899
ord2638
ord5067
ord3943
ord6271
ord4480
ord4179
ord4255
ord5210
ord3397
ord4716
ord4276
ord1591
ord5956
ord5231
ord5229
ord920
ord925
ord929
ord927
ord931
ord2384
ord2404
ord2388
ord2394
ord2392
ord6116
ord4347
ord386

msvcr80

_amsg_exit
__CxxFrameHandler3
__wgetmainargs
_cexit
_exit
_XcptFilter
exit
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
memset
__set_app_type
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_except_handler4_common
_invoke_watson
_controlfp_s
_crt_debugger_hook
??0exception@std@@QAE@ABV01@@Z
swprintf_s
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
_localtime64_s
??1exception@std@@UAE@XZ
_vsnwprintf_s
??0exception@std@@QAE@ABQBD@Z
_time64
?what@exception@std@@UBEPBDXZ
calloc
wcstol
_itow_s
_wcsicmp
wcsncmp
memmove_s
wcstoul
wcsstr
wcscpy_s
malloc
_recalloc
free
wcsncat_s
_wtoi
fclose
_beginthreadex
fwrite
fopen_s
_time32
memcpy_s
__RTDynamicCast
swscanf_s
wcsncpy_s
wcscat_s
_CxxThrowException
?_type_info_dtor_internal_method@type_info@@QAEXXZ
memcpy

kernel32

InterlockedCompareExchange
InterlockedExchange
LocalAlloc
LocalFree
GetCurrentThread
GlobalUnlock
GlobalLock
GetCurrentThreadId
MulDiv
HeapFree
GetProcessHeap
FlushInstructionCache
GetCurrentProcess
lstrcmpW
GlobalAlloc
SetLastError
LeaveCriticalSection
EnterCriticalSection
CreateProcessW
FindResourceExW
LockResource
GetVersion
VirtualFreeEx
ReadProcessMemory
VirtualAllocEx
OpenProcess
DeleteCriticalSection
InitializeCriticalSection
LoadResource
FindResourceW
lstrcmpiW
CreateMutexW
RaiseException
SizeofResource
LoadLibraryExW
GetModuleFileNameW
MultiByteToWideChar
GetProcAddress
LoadLibraryW
GetModuleHandleW
SetEvent
ResetEvent
TerminateThread
WideCharToMultiByte
CopyFileW
DeleteFileW
WaitForSingleObject
CreateEventW
lstrlenW
FreeLibrary
GlobalDeleteAtom
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileIntW
CloseHandle
SetFileAttributesW
GetLastError
GetFileAttributesW
GetPrivateProfileStringW
GetStartupInfoW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
HeapAlloc
HeapDestroy
HeapSize
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
LoadLibraryA
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
Sleep

user32

CreatePopupMenu
RegisterClassExW
UpdateWindow
ReleaseDC
RemovePropW
BringWindowToTop
SetPropW
GetKeyState
InvalidateRgn
SetWindowLongW
EnableMenuItem
LoadCursorW
IsIconic
DestroyWindow
ShowWindow
ShowOwnedPopups
CreateAcceleratorTableW
SetForegroundWindow
GetSystemMetrics
AdjustWindowRectEx
DrawIcon
GetWindowTextW
ReleaseCapture
IsChild
UnregisterClassA
GetWindowTextLengthW
DestroyAcceleratorTable
GetFocus
SetCapture
GetDlgItem
FillRect
SetFocus
CopyRect
CallWindowProcW
UnregisterHotKey
RegisterHotKey
PostMessageW
RegisterWindowMessageW
SetWindowPos
DefWindowProcW
GetSysColor
AppendMenuW
GetMenuItemInfoW
DestroyIcon
GetMenuItemCount
ModifyMenuW
GetMonitorInfoW
MonitorFromRect
GetTopWindow
IsZoomed
SystemParametersInfoW
SetMenuDefaultItem
GetDoubleClickTime
GetDC
GetClassInfoExW
EndPaint
ScreenToClient
IsWindow
EnableWindow
LoadIconW
BeginPaint
GetWindow
GetDesktopWindow
CharNextW
MessageBoxW
GetPropW
SendMessageTimeoutW
IsWindowVisible
SetRectEmpty
KillTimer
GetWindowThreadProcessId
SetTimer
InflateRect
LoadImageW
SetWindowTextW
GetIconInfo
MoveWindow
SendMessageW
DrawTextW
RedrawWindow
ClientToScreen
SetRect
SetWindowRgn
OffsetRect
FindWindowW
SetCursor
FindWindowExW
GetWindowLongW
DrawIconEx
PtInRect
GetWindowRect
SetActiveWindow
InvalidateRect
CreateWindowExW
GetClientRect
TranslateMessage
GetClassNameW
GetParent
WindowFromPoint
GetCursorPos
EqualRect

gdi32

GetDeviceCaps
BitBlt
DeleteDC
CreateCompatibleDC
CreatePen
Rectangle
Ellipse
CreateCompatibleBitmap
GetStockObject
CreateFontIndirectW
FrameRgn
GetObjectW
OffsetRgn
CreateSolidBrush
CombineRgn
FillRgn
CreateRectRgn
CreatePolygonRgn
CreateRoundRectRgn
DeleteObject
SelectObject
GetTextExtentPoint32W

advapi32

RegQueryInfoKeyW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteKeyW
RegSetValueExW
RegDeleteValueW

shell32

ShellExecuteW
Shell_NotifyIconW
SHGetFolderPathW

comctl32

_TrackMouseEvent
InitCommonControlsEx

ole32

CoCreateInstance
CoLoadLibrary
CoRevokeClassObject
CoRegisterClassObject
CoTaskMemRealloc
CoTaskMemFree
CreateStreamOnHGlobal
OleUninitialize
OleInitialize
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
OleLockRunning
StringFromGUID2
CoTaskMemAlloc

oleaut32

VariantCopy
OleCreateFontIndirect
SysStringByteLen
SystemTimeToVariantTime
SysAllocStringByteLen
VariantTimeToSystemTime
LoadRegTypeLi
VariantInit
DispCallFunc
SysAllocStringLen
RegisterTypeLi
VarUI4FromStr
LoadTypeLi
UnRegisterTypeLi
SysStringLen
VarBstrCmp
VariantClear
SysAllocString
SysFreeString

urlmon

URLDownloadToFileW
URLDownloadToCacheFileW

ws2_32

WSAStartup

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

log

?GetModulePath2@@YA?AVCComBSTR@ATL@@PAUHINSTANCE__@@@Z
?CloseAllCloseHwnd@@YAXXZ
?GetExeFolder2@@YA?AVCComBSTR@ATL@@XZ
?GetQQLiveDlgHwnd@@YAPAUHWND__@@XZ
?CheckAdvise@@YAXPB_W@Z
?CheckUnadvise@@YAXPB_W@Z
?NavigateURL@@YAHPB_WH@Z
?DelCloseHwnd@@YAXPAUHWND__@@@Z
?AddCloseHwnd@@YAXPAUHWND__@@@Z
?GetModuleFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@PAUHINSTANCE__@@@Z
?GetKeyValue@@YAHABV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@0AAV12@@Z
?CheckDirectoryExist@@YAHPB_W@Z
?FocusToTop@@YAXPAUHWND__@@@Z
?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ
?gLoadString@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@J@Z
?SetQQliveDlgHwnd@@YAXPAUHWND__@@@Z
?IsWinXPOrLater@@YAHXZ
?SetXPMenuState@@YAXH@Z
?RegistLocalInfo@@YAHXZ
?KillOtherQQLivePlayerApp@@YAHPB_W@Z
?CheckAllAdviseValue@@YAXXZ
?TraceComError@@YAXAAV_com_error@@@Z
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CreateAllDirectory@@YAHPB_W@Z
?DOLOG@@YAXPB_WZZ
?CheckFileExist@@YAHPB_W@Z
?GetExeFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ

msvcp80

??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z

wininet

InternetCrackUrlW

proxy

?GetUserProxyTypeSetting@CProxyTool@@QAEHXZ
??1CProxyTool@@UAE@XZ
??0CProxyTool@@QAE@XZ

Sections

.text
Size: 200KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
QQLive/QQLiveCommu.dll
.dll regsvr32 windows:4 windows x86 arch:x86

5fb7b68fb82076f3c94f7f524425a6aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\QQLiveCommu.pdb

Imports

proxy

?CreateProxyTCPSocket@CProxyTool@@QAEHAAIPB_WGAAVCComBSTR@ATL@@@Z
??0CProxyTool@@QAE@XZ
?IsUseProxy@CProxyTool@@QAEHXZ
??1CProxyTool@@UAE@XZ

log

?CheckAdvise@@YAXPB_W@Z
?CheckUnadvise@@YAXPB_W@Z
?DOLOG@@YAXPB_WZZ

atl80

ord32
ord64
ord22
ord18
ord15
ord58
ord23
ord61
ord31
ord30
ord10
ord11

kernel32

GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
lstrlenW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
QueryPerformanceCounter
GetTickCount
InterlockedIncrement
InterlockedDecrement
GetModuleFileNameW
CloseHandle
WaitForSingleObject
Sleep
GetProcAddress
GetFileAttributesW
MultiByteToWideChar
lstrlenA
SetThreadLocale
GetThreadLocale
WideCharToMultiByte
RaiseException
GetModuleHandleW
InterlockedExchange
GetACP
GetLocaleInfoA
GetVersionExA
InterlockedCompareExchange
GetCurrentThreadId
GetCurrentProcessId
DeleteCriticalSection
GetSystemTimeAsFileTime

user32

UnregisterClassW
DestroyWindow
SetWindowLongW
SetTimer
KillTimer
PostMessageW
DefWindowProcW
GetWindowLongW
CreateWindowExW
RegisterClassW
UnregisterClassA
RegisterWindowMessageW

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

ole32

CoLoadLibrary
CoCreateInstance
CoUninitialize
CoInitialize

oleaut32

VariantInit
SysStringByteLen
SysAllocStringByteLen
SysAllocString
LoadTypeLi
LoadRegTypeLi
VariantClear
DispCallFunc
SysStringLen
SysFreeString

msvcp80

?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcr80

swprintf_s
_except_handler4_common
srand
memmove_s
_wtol
_vsnwprintf_s
memcpy
_beginthreadex
_resetstkoflw
memset
__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
??3@YAXPAX@Z
free
_CxxThrowException
_invalid_parameter_noinfo
__CxxFrameHandler3
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@XZ
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
??_V@YAXPAX@Z
_purecall
malloc
_recalloc
calloc
?terminate@@YAXXZ

ws2_32

recv
send
WSAStartup
__WSAFDIsSet
select
WSACleanup
htonl
htons
ntohl
ntohs
ioctlsocket
socket
closesocket
recvfrom
sendto
inet_ntoa
inet_addr
gethostbyname
WSAGetLastError
connect

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/QQLiveHooks.dll
.dll windows:4 windows x86 arch:x86

918bd412b5c4d08260936fe619f7c938

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\QQLiveHooks.pdb

Imports

mfc80

ord5230
ord4568
ord3948
ord2248
ord5226
ord5224
ord2931
ord1920
ord3832
ord5382
ord6219
ord5102
ord1010
ord3806
ord5583
ord2018
ord2063
ord4326
ord6276
ord3801
ord6278
ord4014
ord4038
ord5213
ord1187
ord1191
ord5566
ord3830
ord372
ord6754
ord765
ord315
ord1084
ord1037
ord1092
ord1206
ord1208
ord1098
ord371
ord1917
ord1167
ord1120
ord1201
ord764
ord1175
ord1177
ord314
ord1209
ord581
ord2537
ord2731
ord2835
ord4307
ord2714
ord2838
ord2540
ord2646
ord2533
ord3718
ord3719
ord3709
ord2644
ord3949
ord4481
ord4261
ord3333
ord566
ord3683
ord745
ord557
ord3934
ord4109
ord297
ord1486
ord300
ord781
ord785
ord5715
ord1185
ord6006
ord6118
ord6703
ord299
ord876
ord1489
ord310
ord2322
ord6174
ord6180
ord2902
ord2451
ord5491
ord2271
ord304
ord2272
ord578
ord757

msvcr80

__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
memset
__CxxFrameHandler3
strstr
malloc
free
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
wcscpy_s
calloc
_recalloc
_resetstkoflw
wcslen
??2@YAPAXI@Z
_unlock
_initterm_e
_initterm
_encoded_null
_malloc_crt
_except_handler4_common
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
?terminate@@YAXXZ

kernel32

UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
Sleep
LocalAlloc
LocalFree
GetStringTypeExW
GetStringTypeExA
GetEnvironmentVariableW
GetEnvironmentVariableA
lstrlenA
lstrcmpiW
CompareStringW
CompareStringA
lstrlenW
MultiByteToWideChar
InterlockedExchange
GetFileAttributesExW
GetFileAttributesExA
SetUnhandledExceptionFilter
GetFileType
GetVersionExA
GetVersion
GetSystemInfo
GetCurrentProcessId
lstrcmpiA
VirtualProtect
GetCurrentProcess
WriteProcessMemory
GetLastError
VirtualQuery
GetProcAddress
GetModuleHandleA
Module32Next
Module32First
CreateToolhelp32Snapshot
CloseHandle
GetCurrentThreadId
GetSystemTimeAsFileTime
IsDebuggerPresent
QueryPerformanceCounter
WideCharToMultiByte
GetThreadLocale
GetACP
GetLocaleInfoA
GetTickCount

user32

CharUpperW
CharLowerA
CharLowerW
CharUpperA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

ole32

CoTaskMemFree
StringFromCLSID

oleaut32

SysFreeString

imagehlp

ImageDirectoryEntryToData

Exports

Exports

InstallHook
SetFileList
SetFlag
UninstallHook

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/QQLiveInstaller.dll
.dll regsvr32 windows:4 windows x86 arch:x86

7a290cf12deb74c6f77ad0ba5e392afd

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:92:ae:b3:83:26:5c:7c:64:53:bd:92:a0:40:a0:20
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

15/02/2009, 00:00

Not After

15/02/2010, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Tencent,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

fc:2c:14:55:28:96:ac:74:f2:bd:d6:a7:d5:f3:f4:57:a4:59:17:5b
Signer

Actual PE Digest

fc:2c:14:55:28:96:ac:74:f2:bd:d6:a7:d5:f3:f4:57:a4:59:17:5b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\QQLiveInstaller.pdb

Imports

kernel32

GetTickCount
Sleep
TerminateThread
GetProcAddress
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetLastError
lstrcmpiW
GetModuleFileNameW
DisableThreadLibraryCalls
InterlockedIncrement
GetPrivateProfileStringW
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateProcessW
WaitForSingleObject
GetExitCodeProcess
CloseHandle
lstrlenW
DeleteFileW
GetFileAttributesW
CreateDirectoryW
InterlockedDecrement
WideCharToMultiByte
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange

user32

IsWindow
DefWindowProcW
RegisterClassExW
CharNextW
CreateWindowExW
PostMessageW
UnregisterClassA

advapi32

RegQueryInfoKeyW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyExW

shell32

SHGetFolderPathW

ole32

CoFreeLibrary
CoLoadLibrary
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoCreateInstance
StringFromGUID2

oleaut32

SysFreeString
VariantInit
VariantClear
SysAllocString
SysStringLen
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
VarUI4FromStr
LoadRegTypeLi

urlmon

URLDownloadToFileW

msvcp80

?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

msvcr80

_purecall
__clean_type_info_names_internal
_crt_debugger_hook
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_except_handler4_common
_decode_pointer
_onexit
_lock
?_type_info_dtor_internal_method@type_info@@QAEXXZ
??3@YAXPAX@Z
_CxxThrowException
__CxxFrameHandler3
wcslen
wcsncpy_s
wcsncat_s
_vsnwprintf_s
??_V@YAXPAX@Z
memset
??2@YAPAXI@Z
swprintf_s
_strlwr_s
strlen
rand
srand
_beginthreadex
memcmp
malloc
free
memcpy_s
wcscpy_s
wcscat_s
vswprintf_s
_encode_pointer
_recalloc
memmove_s
?terminate@@YAXXZ
_unlock
__dllonexit
__CppXcptFilter

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/QQLiveOneClick.exe
.exe windows:4 windows x86 arch:x86

5eba28c9d5e4dfd35e80b8e40282d1a2

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:92:ae:b3:83:26:5c:7c:64:53:bd:92:a0:40:a0:20
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

15/02/2009, 00:00

Not After

15/02/2010, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Tencent,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

b6:ee:2c:99:07:e5:3c:87:bb:21:de:bf:c8:a2:af:7d:48:be:68:a2
Signer

Actual PE Digest

b6:ee:2c:99:07:e5:3c:87:bb:21:de:bf:c8:a2:af:7d:48:be:68:a2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\QQLive_Dailybuild\src\symbol\QQliveOneClick.pdb

Imports

kernel32

lstrlenW
WritePrivateProfileStringW
GetPrivateProfileIntW
MultiByteToWideChar
lstrlenA
GetModuleFileNameA
GetProcAddress
GetModuleFileNameW
GetFileAttributesW
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
InterlockedCompareExchange
Sleep
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
UnhandledExceptionFilter

advapi32

RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey

shell32

SHGetFolderPathW

ole32

CoLoadLibrary
CoUninitialize
CoInitialize

oleaut32

SysFreeString
SysAllocString

msvcp80

?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z

msvcr80

wcscat_s
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
exit
__winitenv
_initterm
wcsncpy_s
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
strcat_s
_splitpath_s
_wcsicmp
swprintf_s
sprintf_s
??3@YAXPAX@Z
_initterm_e
_CxxThrowException
__CxxFrameHandler3
_strlwr_s
memset

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
QQLive/QQLiveUp.exe
.exe windows:4 windows x86 arch:x86

3a870a44f19978c541f6fe1543eef555

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:92:ae:b3:83:26:5c:7c:64:53:bd:92:a0:40:a0:20
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

15/02/2009, 00:00

Not After

15/02/2010, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Tencent,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

19:89:dd:85:0d:19:b0:e9:82:b2:3f:15:3a:2b:b6:6d:7e:7a:29:2b
Signer

Actual PE Digest

19:89:dd:85:0d:19:b0:e9:82:b2:3f:15:3a:2b:b6:6d:7e:7a:29:2b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\QQLive_Dailybuild\src\symbol\QQLiveUp.pdb

Imports

httpdownload

??_7CHttpDownloadUIInterface@@6B@
?OnRedirected@CHttpDownloadUIInterface@@UAEXPB_W@Z
?Download@CHttpDownload@@QAEIPB_W0PAU_SYSTEMTIME@@@Z
?AddInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@K@Z
?QueryInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@AAV23@H@Z
?QueryInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@AAK@Z
?GetRawResponseHeader@CHttpDownload@@QAEHAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
??1CHttpDownloadUIInterface@@UAE@XZ
?SetUIInterface@CHttpDownload@@QAEXPAVCHttpDownloadUIInterface@@@Z
?OnConnecting@CHttpDownloadUIInterface@@UAEXPB_W@Z
?OnConnected@CHttpDownloadUIInterface@@UAEXXZ
??1CHttpDownload@@UAE@XZ
?OnDownloadStart@CHttpDownloadUIInterface@@UAEXKK@Z
??0CHttpDownload@@QAE@XZ
?AddInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@0@Z
?OnProgress@CHttpDownloadUIInterface@@UAEXKK@Z

log

?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ
?CheckAdvise@@YAXPB_W@Z
?CheckUnadvise@@YAXPB_W@Z
?CreateStandardFont@@YAXAAPAUHFONT__@@@Z

mfc80u

ord2397
ord293
ord2409
ord2386
ord2402
ord2407
ord2390
ord2392
ord2394
ord3395
ord2388
ord577
ord2404
ord2384
ord931
ord927
ord929
ord925
ord920
ord5229
ord1118
ord5231
ord5956
ord2362
ord1591
ord4276
ord4716
ord3570
ord3397
ord2311
ord1271
ord3678
ord5727
ord1925
ord4255
ord4480
ord5210
ord3756
ord3943
ord4179
ord2985
ord2638
ord6271
ord5971
ord2011
ord3327
ord4475
ord2832
ord5562
ord5209
ord2239
ord266
ord5226
ord4562
ord3942
ord5222
ord5220
ord2925
ord2379
ord1911
ord3826
ord265
ord5378
ord6215
ord5096
ord1007
ord3800
ord1182
ord5579
ord2009
ord2054
ord4320
ord6274
ord1123
ord3795
ord6272
ord4535
ord4008
ord3677
ord1139
ord4032
ord566
ord757
ord1121
ord1178
ord3824
ord1049
ord334
ord593
ord5113
ord1176
ord715
ord501
ord709
ord1058
ord2460
ord3176
ord4256
ord5398
ord5199
ord1785
ord4238
ord1392
ord5908
ord6720
ord3635
ord1542
ord1661
ord1894
ord1662
ord4884
ord4729
ord4574
ord4206
ord4743
ord5178
ord2365
ord314
ord5609
ord1067
ord899
ord4026
ord6751
ord283
ord4119
ord354
ord605
ord1472
ord762
ord4347
ord6063
ord1634
ord1572
ord3286
ord6086
ord1386
ord2381
ord2399
ord2169
ord2163
ord1513
ord6273
ord3796
ord6275
ord3339
ord4961
ord1353
ord5171
ord1955
ord1647
ord1646
ord1590
ord5196
ord3198
ord741
ord2086
ord2531
ord1582
ord2725
ord1079
ord6721
ord2829
ord572
ord5911
ord4301
ord1611
ord2708
ord1608
ord2856
ord3940
ord2534
ord1393
ord2640
ord4234
ord2527
ord3311
ord5148
ord3712
ord3204
ord1899
ord3713
ord5067
ord3703
ord764
ord1198
ord1908

msvcr80

_adjust_fdiv
__setusermatherr
_configthreadlocale
__p__commode
_initterm
memset
__p__fmode
_encode_pointer
__set_app_type
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_except_handler4_common
_invoke_watson
_controlfp_s
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_initterm_e
_wcmdln
exit
_XcptFilter
_exit
_cexit
__wgetmainargs
_amsg_exit
_time64
rand
malloc
free
wcscpy_s
_recalloc
wcscat_s
memcpy_s
wcsncpy_s
__CxxFrameHandler3

kernel32

FindResourceW
LoadResource
GetModuleFileNameW
SizeofResource
LoadLibraryExW
GetVersionExW
DeleteFileW
GetCommandLineW
LocalFree
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
RaiseException
lstrcmpiW
FreeLibrary
lstrlenW
InitializeCriticalSection
DeleteCriticalSection
MultiByteToWideChar
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
GetFileAttributesW
GetLastError
GetProcAddress

user32

PostMessageW
SetWindowLongW
UnregisterClassA
EnableWindow
CharNextW
IsIconic
SendMessageW
InvalidateRect
LoadIconW
GetSystemMetrics
GetClientRect
ShowOwnedPopups
SetForegroundWindow
IsWindow
AppendMenuW
GetSystemMenu
GetWindowRect
DrawIcon

gdi32

CreateFontIndirectW
GetStockObject
GetObjectW

advapi32

RegDeleteKeyW
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegQueryInfoKeyW
RegCloseKey
RegOpenKeyExW

shell32

ShellExecuteW
Shell_NotifyIconW
CommandLineToArgvW

comctl32

InitCommonControlsEx

shlwapi

StrCmpW

ole32

CoTaskMemAlloc
CoRegisterClassObject
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoRevokeClassObject
CoTaskMemRealloc
CoLoadLibrary

oleaut32

VariantClear
SysFreeString
VarUI4FromStr
LoadTypeLi
VariantInit
DispCallFunc
LoadRegTypeLi
RegisterTypeLi
SysAllocString
SysStringLen
UnRegisterTypeLi

msvcp80

??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z

ws2_32

htonl
ntohl

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
QQLive/Resources/2052/SetupShell.xml
.xml
QQLive/SetupShell.dll
.dll regsvr32 windows:4 windows x86 arch:x86

57e7e7f2b70075eec800eb37ebe6dbc0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\SetupShell.pdb

Imports

proxy

??0CProxyTool@@QAE@XZ
?TestProxy@CProxyTool@@QAEXPAUHWND__@@@Z
??1CProxyTool@@UAE@XZ

encrypt

?oi_symmetry_encrypt2@@YAXPBEH0PAEPAH@Z
?oi_symmetry_decrypt2@@YAHPBEH0PAEPAH@Z

log

?CheckFileExist@@YAHPB_W@Z
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetExeFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CheckAdvise@@YAXPB_W@Z
?CheckUnadvise@@YAXPB_W@Z
?GetQQLiveDlgHwnd@@YAPAUHWND__@@XZ
?AddCloseHwnd@@YAXPAUHWND__@@@Z
?DOLOG@@YAXPB_WZZ
?DelCloseHwnd@@YAXPAUHWND__@@@Z

skin

?SetWndSkin@@YAHPB_WPAUHWND__@@H@Z
?CreateSkinControl@@YAPAUHWND__@@PB_WPAU1@H@Z
?GetSkinColor@@YAKPB_WH@Z
?SetSkin@CSkinBase@@QAEJPB_W0@Z
?RenderRichText@@YAHPB_WPAUHDC__@@ABUtagRECT@@HPAUHWND__@@PAUHFONT__@@H@Z

mfc80u

ord5562
ord5209
ord5226
ord4562
ord3942
ord5222
ord5220
ord2925
ord1911
ord3826
ord5378
ord6215
ord5096
ord1007
ord3800
ord5579
ord2009
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord3824
ord2239
ord1043
ord3417
ord1894
ord760
ord572
ord3158
ord4480
ord2985
ord2856
ord5196
ord1590
ord1646
ord1647
ord1955
ord5171
ord1353
ord4961
ord3339
ord6275
ord3796
ord6273
ord1513
ord2163
ord2169
ord2399
ord2381
ord2379
ord2397
ord2409
ord2386
ord2402
ord2407
ord2390
ord2392
ord2394
ord2388
ord2404
ord2384
ord931
ord927
ord929
ord925
ord920
ord5229
ord5231
ord5956
ord1591
ord4276
ord4716
ord3397
ord5210
ord4179
ord6271
ord5067
ord1899
ord5148
ord4226
ord1393
ord3940
ord1608
ord2531
ord5911
ord6721
ord1536
ord2077
ord587
ord3678
ord605
ord777
ord354
ord3176
ord4256
ord5199
ord4238
ord1392
ord5908
ord6720
ord1542
ord1661
ord1662
ord4884
ord4729
ord4206
ord5178
ord4119
ord4109
ord3395
ord4574
ord3983
ord2651
ord2155
ord290
ord6700
ord6061
ord3635
ord2648
ord6063
ord5524
ord2260
ord3756
ord5609
ord657
ord3223
ord4231
ord1561
ord1475
ord1924
ord6262
ord1388
ord4755
ord2082
ord4093
ord3400
ord2255
ord2361
ord1086
ord3204
ord1118
ord1925
ord3157
ord1271
ord5727
ord4314
ord3435
ord6086
ord4347
ord1386
ord899
ord6232
ord894
ord1872
ord1883
ord2725
ord3209
ord1550
ord1629
ord1785
ord5829
ord2795
ord753
ord2261
ord563
ord1006
ord1939
ord5803
ord5965
ord4558
ord620
ord3189
ord3755
ord4098
ord778
ord2829
ord4301
ord2708
ord2832
ord2534
ord2640
ord2527
ord3712
ord3713
ord3703
ord2638
ord3943
ord4475
ord4255
ord3327
ord566
ord581
ord1200
ord1170
ord1168
ord1192
ord1115
ord1162
ord371
ord1093
ord1199
ord757
ord3677
ord2011
ord4026
ord1220
ord774
ord776
ord2895
ord2461
ord2460
ord5398
ord1908
ord2366
ord314
ord283
ord766
ord267
ord575
ord6751
ord280
ord1472
ord1182
ord1571
ord762
ord6293
ord5327
ord6282
ord2340
ord5316
ord1172
ord3249
ord1178
ord1176
ord265
ord266
ord2311
ord870
ord293
ord577
ord764
ord1197
ord1087
ord1033
ord1079
ord315
ord765
ord1611
ord643

msvcr80

isdigit
_wtoi
wcstoul
wcscpy_s
_resetstkoflw
malloc
swprintf_s
_wfopen_s
fseek
ftell
fread
fclose
fwrite
_purecall
__RTDynamicCast
??0exception@std@@QAE@ABV01@@Z
memcpy
_except_handler4_common
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
_CxxThrowException
_recalloc
calloc
free
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
memmove_s
memcpy_s
wcsncpy_s
vswprintf_s
__CxxFrameHandler3
wcscat_s
memset
__clean_type_info_names_internal

kernel32

GetLogicalDrives
GetDriveTypeW
GetDiskFreeSpaceExW
CreateFileW
DeviceIoControl
CloseHandle
GetPrivateProfileIntW
WritePrivateProfileStringW
FindFirstFileW
CreateDirectoryW
GetLastError
GetFileAttributesW
SetFileAttributesW
InterlockedDecrement
GetModuleFileNameW
lstrlenW
DeleteFileW
LeaveCriticalSection
SetThreadLocale
GetPrivateProfileStringW
RaiseException
GetProcAddress
WideCharToMultiByte
DeleteCriticalSection
LocalAlloc
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetThreadLocale
InitializeCriticalSection
GetACP
GetLocaleInfoA
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetPrivateProfileStructW
WritePrivateProfileStructW
GetProcessHeap
MultiByteToWideChar
LocalFree
lstrlenA
EnterCriticalSection
InterlockedIncrement

user32

GetDesktopWindow
IsRectEmpty
GetTopWindow
GetClassNameW
IsWindow
GetPropW
GetCaretPos
GetMonitorInfoW
ScreenToClient
GetClientRect
EnableMenuItem
GetWindow
SendMessageW
EnableWindow
GetParent
IsIconic
SystemParametersInfoW
GetSystemMetrics
SetWindowPos
IsZoomed
GetWindowRect
PtInRect
CopyRect
OffsetRect
MonitorFromRect
IsWindowVisible
UnregisterClassA

gdi32

CreateSolidBrush

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteW
SHGetFolderPathW

comctl32

_TrackMouseEvent

shlwapi

PathAppendW

ole32

CoTaskMemFree
CoCreateInstance
CoLoadLibrary

oleaut32

SysFreeString
VariantInit
VariantClear
SysAllocString
SysStringLen
LoadRegTypeLi
LoadTypeLi
DispCallFunc

atl80

ord31
ord15
ord18
ord61
ord64
ord10
ord11
ord32
ord30
ord22
ord23
ord58

msvcp80

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/Skin.dll
.dll windows:4 windows x86 arch:x86

f0535d9b86afeab0826e24d6e9354312

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\Skin.pdb

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
RaiseException
GetVersionExA
InitializeCriticalSection
GetLocaleInfoA
GetACP
InterlockedExchange
DeleteCriticalSection
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
MultiByteToWideChar
lstrlenA
CreateFileW
GetFileSize
CloseHandle
ReadFile
GetVersionExW
GetModuleHandleW
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
GetModuleFileNameW
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetThreadLocale

user32

GetClassNameW
RedrawWindow
InvalidateRect
SetPropW
GetPropW
BeginPaint
EndPaint
GetCursorPos
WindowFromPoint
GetWindowDC
GetWindowRgn
ClientToScreen
GetTopWindow
GetWindowThreadProcessId
ScreenToClient
GetWindow
DrawIconEx
GetWindowTextW
GetWindowTextA
CallWindowProcW
DrawTextW
FillRect
SetWindowLongW
RemovePropW
CreateWindowExW
IsWindowVisible
DestroyCursor
LoadImageW
OffsetRect
GetWindowLongW
GetSystemMetrics
SetWindowRgn
SetCursor
IsWindow
PostMessageW
IsWindowEnabled
SendMessageW
GetParent
GetDesktopWindow
GetClientRect
GetWindowRect
SetWindowPos
RegisterWindowMessageW
SetRect
GetDC
ReleaseDC
SendMessageTimeoutW
UnregisterClassA

gdi32

CreateBitmap
BitBlt
SetBkColor
SetTextColor
SetStretchBltMode
CreateCompatibleDC
CreateDIBSection
SelectObject
StretchBlt
ExtCreateRegion
CombineRgn
DeleteObject
DeleteDC
CreateDIBitmap
GetObjectW
GetDIBits
GetDeviceCaps
CreateRectRgn
CreateFontIndirectW
Rectangle
CreatePen
CreateSolidBrush
GetTextExtentPoint32W
SetBkMode
FillRgn
RoundRect
GetStockObject
LineTo
MoveToEx
ExtSelectClipRgn
ExcludeClipRect
SelectClipRgn
CreateRectRgnIndirect
SetDIBits
OffsetRgn
CreateRoundRectRgn

oleaut32

SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysAllocStringLen
SysFreeString
VarBstrCmp

comctl32

InitCommonControlsEx
_TrackMouseEvent

msvcr80

memset
floor
??_V@YAXPAX@Z
??_U@YAPAXI@Z
_wcsicmp
wcsstr
_fstat64i32
vswprintf_s
_invalid_parameter_noinfo
??0exception@std@@QAE@ABV01@@Z
??2@YAPAXI@Z
swprintf_s
_wtoi
wcsncpy_s
wcstoul
fclose
fread
_fileno
_wfopen_s
_recalloc
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
memmove_s
_CxxThrowException
free
memcpy_s
??0exception@std@@QAE@XZ
?what@exception@std@@UBEPBDXZ
__CxxFrameHandler3
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
??3@YAXPAX@Z
_vscwprintf

msvcp80

??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?swap@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXAAV12@@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?length@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIXZ
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_WABV10@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
?insert@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IPB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?at@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?size@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIXZ
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z

msimg32

GradientFill

Exports

Exports

?CreateSkinControl@@YAPAUHWND__@@PB_WPAU1@H@Z
?DrawGradientRect@@YAXKKAAUtagRECT@@PAUHDC__@@H@Z
?GetColorSchemeChangeMsg@CSkinBase@@SAIXZ
?GetDrawMsg@CSkinBase@@SAIXZ
?GetPic@@YAHPB_WAAPAUHBITMAP__@@H@Z
?GetPicEx@@YAHPB_WAAPAUHBITMAP__@@AAUtagPOINT@@AAUtagSIZE@@H@Z
?GetSkinColor@@YAKPB_WH@Z
?GetSkinColorScheme@@YAXAAH0@Z
?GetSkinCursor@@YAHPB_WAAPAUHICON__@@@Z
?GetSkinFont@@YAPAUHFONT__@@PB_W@Z
?GetSkinPath@@YAHPAPA_W@Z
?HookColorSchemeChange@@YAHPAUHWND__@@H@Z
?LoadSkinFromFile@@YAHPB_W00@Z
?RenderRichText@@YAHPB_WPAUHDC__@@ABUtagRECT@@HPAUHWND__@@PAUHFONT__@@H@Z
?RenderRichTextNow@@YAHPB_WPAUHDC__@@ABUtagRECT@@2AAUtagSIZE@@PAUHWND__@@PAUHFONT__@@H@Z
?SetSkin@CSkinBase@@QAEJPB_W0@Z
?SetSkinColorScheme@@YAXHH@Z
?SetSkinVar@@YAHPB_W0H@Z
?SetWndSkin@@YAHPB_WPAUHWND__@@H@Z
?TransRichText2NormalText@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@PB_W@Z
?TransparentBlt2@@YAXPAUHDC__@@HHHH0HHHHI@Z

Sections

.text
Size: 132KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/Skin/BlueS/AllInOne.bmp
QQLive/Skin/BlueS/Hand.cur
QQLive/Skin/BlueS/Microsoft.VC80.ATL.manifest
.xml
QQLive/Skin/BlueS/Microsoft.VC80.CRT.manifest
QQLive/Skin/BlueS/Microsoft.VC80.MFC.manifest
QQLive/Skin/BlueS/Microsoft.VC80.MFCLOC.manifest
QQLive/Skin/BlueS/Skin.xml
QQLive/Skin/BlueS/skin.ini
QQLive/Skin/BlueS/skinConfig.ini
QQLive/Statistic.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d8e17478a2a15e06f397f7101419bab4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\Statistic.pdb

Imports

proxy

??0CProxyTool@@QAE@XZ
?IsUseProxy@CProxyTool@@QAEHXZ
??1CProxyTool@@UAE@XZ

mfc80u

ord1007
ord3800
ord5579
ord2009
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord757
ord3824
ord2239
ord5096
ord581
ord1170
ord1168
ord1192
ord1115
ord1162
ord371
ord1093
ord1199
ord1197
ord1087
ord1033
ord1079
ord6215
ord5378
ord3826
ord1911
ord2925
ord5220
ord5222
ord3942
ord4562
ord5226
ord5209
ord5562
ord2531
ord315
ord765
ord2725
ord2829
ord4301
ord2708
ord2832
ord2534
ord2640
ord2527
ord3712
ord3713
ord3703
ord2638
ord3943
ord4475
ord1200
ord4255
ord3327
ord566
ord3677
ord2311
ord1236
ord283
ord421
ord5105
ord1434
ord655
ord5489
ord2697
ord2696
ord3195
ord380
ord293
ord776
ord899
ord870
ord577
ord265
ord1908
ord266
ord314
ord762
ord267
ord6751
ord1182
ord1178
ord1176
ord764
ord1043

msvcr80

_fileno
??0exception@std@@QAE@XZ
__CxxFrameHandler3
_time32
memcpy_s
free
memset
_invalid_parameter_noinfo
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
calloc
swprintf_s
_wrename
_except_handler4_common
fread
_ultow_s
_wtol
fopen_s
fwrite
fclose
__CppXcptFilter
_itow_s
_beginthreadex
memcpy
_purecall
memmove_s
_recalloc
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
_fstat32

kernel32

InterlockedDecrement
InterlockedIncrement
GetPrivateProfileIntW
GetFileAttributesW
GetProcAddress
GetModuleFileNameW
TerminateProcess
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CloseHandle
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateThread
WaitForSingleObject
DeleteFileW
WideCharToMultiByte
CopyFileW
MultiByteToWideChar
GetDiskFreeSpaceExW
GlobalMemoryStatus
GetVersionExW
SetThreadLocale
GetThreadLocale
RaiseException
LocalFree
LocalAlloc
InterlockedExchange
Sleep
GetACP
GetLocaleInfoA
GetVersionExA
lstrlenW
LeaveCriticalSection
InterlockedCompareExchange

user32

GetSystemMetrics
UnregisterClassA

gdi32

GetDeviceCaps
DeleteDC
CreateDCW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

ole32

CoCreateInstance
CoLoadLibrary

oleaut32

VariantCopy
SysStringByteLen
SysAllocStringByteLen
LoadTypeLi
LoadRegTypeLi
DispCallFunc
SysAllocString
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SysStringLen

atl80

ord32
ord61
ord23
ord15
ord31
ord11
ord10
ord58
ord18
ord22
ord30
ord64

msvcp80

??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@II@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z

log

?GetExeFolder2@@YA?AVCComBSTR@ATL@@XZ
?DOLOG@@YAXPB_WZZ
?GetUserGuid@@YAXPADAAH@Z
?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ
?CheckAdvise@@YAXPB_W@Z
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CheckFileExist@@YAHPB_W@Z
?CheckUnadvise@@YAXPB_W@Z

ws2_32

htonl
htons

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/SysData/498x375.swf
QQLive/SysData/ADPlayer.swf
QQLive/SysData/FlvPlayer.swf
QQLive/SysData/HomePage.html
.html
QQLive/SysData/NestedLive.swf
QQLive/SysData/Playlist.swf
QQLive/SysData/TVAdPlayer.swf
QQLive/SysData/VideoLoading.html
.html
QQLive/SysData/VideoLoading.swf
QQLive/SysData/err.html
.html
QQLive/SysData/error_bg.png
.png
QQLive/SysData/loading_prompt.gif
.gif
QQLive/SysData/origin.swf
QQLive/SysData/tips.swf
QQLive/TNProxy.dll
.dll regsvr32 windows:4 windows x86 arch:x86

3e1312f81e1880a7089194f148e0d58e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:55:f9:95:e6:cd:a7:e4:0d:b8:62:9e:5a:f1:5e:48
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

26/02/2007, 00:00

Not After

26/02/2008, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Shenzhen R&D Center,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

5a:40:e0:b2:03:2a:9d:8a:a2:ea:27:80:4e:77:3c:8f:ab:8c:9a:ef
Signer

Actual PE Digest

5a:40:e0:b2:03:2a:9d:8a:a2:ea:27:80:4e:77:3c:8f:ab:8c:9a:ef

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
LoadLibraryA
InterlockedIncrement
GetProcAddress
FreeLibrary
GetTickCount
CloseHandle
Sleep
TlsSetValue
TlsFree
TlsAlloc
TlsGetValue

ws2_32

htonl
sendto
connect
htons
ntohs
ntohl
gethostbyname
WSAStartup
WSACleanup
select
closesocket
ioctlsocket
setsockopt
socket
bind
recvfrom
recv
send
getpeername
listen
accept
inet_ntoa
__WSAFDIsSet
WSAGetLastError
gethostname
inet_addr

msvcrt

_adjust_fdiv
_onexit
malloc
_initterm
__dllonexit
_CxxThrowException
??1type_info@@UAE@XZ
strcmp
memmove
isdigit
fgetc
_ftol
atoi
strncpy
strstr
free
calloc
memset
rand
srand
strcpy
memcpy
_beginthreadex
strlen
time
_iob
fputc
sprintf
printf
_purecall
__CxxFrameHandler
??3@YAXPAX@Z
??2@YAPAXI@Z

msvcp60

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??1?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??1_Winit@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

iphlpapi

GetAdaptersInfo
GetIfEntry

wininet

InternetGetConnectedState

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 300KB - Virtual size: 297KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/Upgrade.dll
.dll regsvr32 windows:4 windows x86 arch:x86

97e1f9ce4c0fa50af64ab26256d4346c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\Upgrade.pdb

Imports

log

?CheckUnadvise@@YAXPB_W@Z
?DOLOG@@YAXPB_WZZ
?KillOtherQQLivePlayerApp@@YAHPB_W@Z
?CheckDirectoryExist@@YAHPB_W@Z
?CreateAllDirectory@@YAHPB_W@Z
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetExeFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CheckFileExist@@YAHPB_W@Z
?CheckAdvise@@YAXPB_W@Z

httpdownload

?CancelDownload@CHttpDownload@@QAEXXZ
??_7CHttpDownloadUIInterface@@6B@
??1CHttpDownload@@UAE@XZ
?OnRedirected@CHttpDownloadUIInterface@@UAEXPB_W@Z
?OnError@CHttpDownloadUIInterface@@UAEXKPB_W@Z
?Download@CHttpDownload@@QAEIPB_W0PAU_SYSTEMTIME@@@Z
?SetAutoResume@CHttpDownload@@QAEXH@Z
?SetUIInterface@CHttpDownload@@QAEXPAVCHttpDownloadUIInterface@@@Z
??0CHttpDownload@@QAE@XZ
??1CHttpDownloadUIInterface@@UAE@XZ

mfc80u

ord2009
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord5579
ord3824
ord2239
ord1043
ord267
ord766
ord629
ord1430
ord6284
ord5083
ord384
ord2260
ord3800
ord1007
ord5096
ord6215
ord5378
ord1079
ord315
ord3826
ord1911
ord2925
ord5220
ord5222
ord3942
ord4562
ord5226
ord5209
ord5562
ord1033
ord2531
ord2725
ord2829
ord4301
ord2708
ord2832
ord2534
ord581
ord1200
ord1170
ord1168
ord1192
ord1115
ord1162
ord765
ord1087
ord371
ord1093
ord2640
ord2527
ord3712
ord3713
ord1199
ord1197
ord3703
ord2638
ord3943
ord4475
ord4255
ord3327
ord566
ord3677
ord314
ord2311
ord3927
ord6751
ord2261
ord2895
ord1476
ord1472
ord6700
ord282
ord1479
ord2121
ord896
ord899
ord284
ord280
ord860
ord4101
ord2460
ord5398
ord774
ord776
ord293
ord762
ord265
ord1908
ord266
ord283
ord870
ord577
ord1178
ord1182
ord764
ord757

msvcr80

_onexit
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
_except_handler4_common
wcstoul
wcscat_s
wcscpy_s
wcsrchr
wprintf_s
memcpy_s
_decode_pointer
fseek
ftell
fclose
fread
wcstol
memmove
wcsstr
memcpy
wcsncpy
wcsncmp
wcschr
_vswprintf
_resetstkoflw
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_wfopen
__clean_type_info_names_internal
calloc
_recalloc
malloc
_purecall
memset
__CxxFrameHandler3
free
fwrite
_lock

kernel32

CreateToolhelp32Snapshot
Process32FirstW
GetVersion
CloseHandle
OpenProcess
Process32NextW
InterlockedCompareExchange
MultiByteToWideChar
GetLastError
FormatMessageW
InterlockedDecrement
InterlockedIncrement
GetFileAttributesW
GetProcAddress
GetLocalTime
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
lstrlenW
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
DeleteFileW
TerminateProcess
GetPrivateProfileIntW
RaiseException
SetThreadLocale
GetThreadLocale
LocalFree
LocalAlloc
InterlockedExchange
GetModuleFileNameW
Sleep
GetACP
GetLocaleInfoA
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
WideCharToMultiByte
GetTickCount

user32

UnregisterClassA

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

ShellExecuteW

ole32

CoCreateInstance
CoLoadLibrary

oleaut32

SysStringByteLen
SysAllocStringByteLen
SysAllocString
LoadTypeLi
LoadRegTypeLi
SysStringLen
DispCallFunc
VariantClear
VariantInit
SysFreeString

atl80

ord58
ord64
ord22
ord18
ord15
ord30
ord32
ord31
ord61
ord23
ord11
ord10

msvcp80

??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z

wintrust

WinVerifyTrust

crypt32

CertCloseStore
CertCreateCertificateContext
CryptMsgGetParam
CryptQueryObject
CryptMsgClose
CertFreeCertificateContext
CertRDNValueToStrW
CryptDecodeObject
CertFindRDNAttr

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/UserData.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d706592c2b064b1b74f6fe89f23e3332

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\UserData.pdb

Imports

log

?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?CheckAdvise@@YAXPB_W@Z
?BitsToHexString@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@PBEH@Z
?CreateAllDirectory@@YAHPB_W@Z
?CheckUnadvise@@YAXPB_W@Z
?DOLOG@@YAXPB_WZZ
?CheckFileExist@@YAHPB_W@Z

mfc80u

ord3800
ord5579
ord2009
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord3824
ord1007
ord1043
ord371
ord1162
ord1115
ord1192
ord1168
ord1170
ord1200
ord581
ord1033
ord1079
ord315
ord765
ord5096
ord6215
ord5378
ord3826
ord1911
ord2925
ord5220
ord5222
ord3942
ord4562
ord5226
ord5209
ord5562
ord2531
ord2725
ord2829
ord4301
ord2708
ord2832
ord2534
ord2640
ord2527
ord3712
ord3713
ord3703
ord2638
ord1087
ord3943
ord4475
ord4255
ord3327
ord566
ord757
ord3677
ord283
ord776
ord293
ord2311
ord577
ord870
ord1908
ord762
ord314
ord6751
ord267
ord575
ord265
ord266
ord1182
ord1178
ord1176
ord764
ord1093
ord1199
ord1197
ord2239

msvcr80

memcpy
_invalid_parameter_noinfo
calloc
_recalloc
memmove_s
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABQBD@Z
_except_handler4_common
_ultoa_s
memcpy_s
_resetstkoflw
malloc
srand
rand
_wfopen_s
fwrite
fclose
_purecall
??0exception@std@@QAE@ABV01@@Z
_adjust_fdiv
free
memset
__CxxFrameHandler3
_time64
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
strtoul
_CxxThrowException
??0exception@std@@QAE@XZ
?what@exception@std@@UBEPBDXZ

kernel32

InterlockedIncrement
GetFileAttributesW
GetProcAddress
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameW
InterlockedDecrement
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
DeleteFileW
lstrlenA
RaiseException
SetThreadLocale
HeapDestroy
GetVersionExA
GetLocaleInfoA
GetThreadLocale
LocalFree
LocalAlloc
InterlockedExchange
HeapReAlloc
HeapSize
GetProcessHeap
Sleep
InterlockedCompareExchange
TerminateProcess
SetUnhandledExceptionFilter
EnterCriticalSection
GetACP
GetCurrentProcess

user32

UnregisterClassA

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

ole32

CoCreateInstance
CoLoadLibrary

oleaut32

VarBstrCmp
LoadTypeLi
LoadRegTypeLi
SysStringLen
DispCallFunc
SysStringByteLen
SysAllocStringByteLen
SysAllocString
VariantClear
VariantInit
SysFreeString
GetErrorInfo

atl80

ord61
ord23
ord30
ord15
ord31
ord11
ord10
ord58
ord18
ord22
ord32
ord64

msvcp80

?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHABV12@@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z

ws2_32

inet_ntoa
htons
ntohl
htonl
ntohs

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/atl80.dll
.dll windows:4 windows x86 arch:x86

00c6e566e88c3d07ddc376fe4ce83c5f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

atl80.i386.pdb

Imports

kernel32

RaiseException
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
FindClose
FindFirstFileW
CompareStringW
GetSystemDirectoryW
GetLongPathNameW
GetModuleFileNameW
GetProcAddress
GetModuleHandleW
lstrlenW
InitializeCriticalSection
DeleteCriticalSection
GetLastError
DisableThreadLibraryCalls
DebugBreak
OutputDebugStringA
GetVersionExA
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
CloseHandle
ReadFile
GetFileSize
CreateFileW
WideCharToMultiByte
WaitForSingleObject
GlobalAlloc
FindResourceA
MulDiv
FlushInstructionCache
GetCurrentProcess
lstrcmpW
GlobalUnlock
GlobalLock
SetLastError
GlobalFree
GlobalHandle
LockResource
lstrcmpA
GetModuleHandleA
GetTickCount
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
InterlockedCompareExchange
HeapFree
GetProcessHeap
HeapAlloc
LoadLibraryA
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
HeapSize
HeapReAlloc
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
LocalAlloc

Exports

Exports

AtlAdvise
AtlAxAttachControl
AtlAxCreateControl
AtlAxCreateControlEx
AtlAxCreateControlLic
AtlAxCreateControlLicEx
AtlAxCreateDialogA
AtlAxCreateDialogW
AtlAxDialogBoxA
AtlAxDialogBoxW
AtlAxGetControl
AtlAxGetHost
AtlAxWinInit
AtlCallTermFunc
AtlComModuleGetClassObject
AtlComModuleRegisterClassObjects
AtlComModuleRegisterServer
AtlComModuleRevokeClassObjects
AtlComModuleUnregisterServer
AtlComPtrAssign
AtlComQIPtrAssign
AtlCreateRegistrar
AtlCreateTargetDC
AtlDevModeW2A
AtlFreeMarshalStream
AtlGetObjectSourceInterface
AtlGetVersion
AtlHiMetricToPixel
AtlIPersistPropertyBag_Load
AtlIPersistPropertyBag_Save
AtlIPersistStreamInit_Load
AtlIPersistStreamInit_Save
AtlInternalQueryInterface
AtlLoadTypeLib
AtlMarshalPtrInProc
AtlModuleAddTermFunc
AtlPixelToHiMetric
AtlRegisterClassCategoriesHelper
AtlRegisterTypeLib
AtlSetErrorInfo
AtlUnRegisterTypeLib
AtlUnadvise
AtlUnmarshalPtr
AtlUpdateRegistryFromResourceD
AtlWaitWithMessageLoop
AtlWinModuleAddCreateWndData
AtlWinModuleExtractCreateWndData
AtlWinModuleInit
AtlWinModuleRegisterClassExA
AtlWinModuleRegisterClassExW
AtlWinModuleRegisterWndClassInfoA
AtlWinModuleRegisterWndClassInfoW
AtlWinModuleTerm

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/log.dll
.dll windows:4 windows x86 arch:x86

28fc133bca4534411b765bbe4c267dab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\Log.pdb

Imports

kernel32

WinExec
WritePrivateProfileStringW
SetProcessWorkingSetSize
GetCurrentProcess
CreateToolhelp32Snapshot
GetCurrentProcessId
lstrlenA
Process32FirstW
OpenProcess
TerminateProcess
Process32NextW
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
InitializeCriticalSection
LoadLibraryW
InterlockedDecrement
DeleteCriticalSection
FreeLibrary
LoadResource
GetTickCount
LockResource
SizeofResource
GetSystemDirectoryW
FindResourceExW
GetLocalTime
GetShortPathNameW
DeleteFileW
GetVersionExW
GetFileAttributesW
MultiByteToWideChar
CreateDirectoryW
WideCharToMultiByte
Sleep
InterlockedCompareExchange
UnhandledExceptionFilter
GetThreadLocale
GetLocaleInfoA
GetACP
GetVersionExA
RaiseException
HeapSize
HeapReAlloc
HeapDestroy
HeapFree
GetPrivateProfileStringW
HeapAlloc
GetModuleFileNameW
lstrlenW
CreateProcessW
FormatMessageW
CloseHandle
FindResourceW
GetProcessHeap
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
InterlockedExchange

user32

IsWindow
GetWindowRect
MonitorFromRect
RegisterWindowMessageW
UnregisterClassA
SendMessageW
GetMonitorInfoW
SetForegroundWindow
AttachThreadInput
ShowWindow
IsIconic
GetWindowThreadProcessId
GetForegroundWindow

gdi32

CreateFontW

advapi32

RegSetValueExW
RegOpenKeyW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey

shell32

ShellExecuteW
SHGetFolderPathW

ole32

CoCreateGuid
StringFromGUID2
CoLoadLibrary

oleaut32

SysFreeString
SysAllocString

msvcr80

_wsplitpath_s
memmove_s
_wcsicmp
??_V@YAXPAX@Z
_beginthreadex
srand
rand
wcsncpy_s
wcsstr
??_U@YAPAXI@Z
wcschr
??0exception@std@@QAE@ABQBD@Z
wcsrchr
_mktime64
??1exception@std@@UAE@XZ
_time64
_vsnwprintf_s
_wfopen_s
fclose
??0exception@std@@QAE@XZ
strncpy_s
_vscwprintf
fwrite
vswprintf_s
_strlwr_s
_fileno
_wcslwr_s
_wrename
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
free
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__clean_type_info_names_internal
??2@YAPAXI@Z
memcpy_s
_fstat64i32
??0exception@std@@QAE@ABV01@@Z
swprintf_s
sprintf_s
fread
ftell
_invalid_parameter_noinfo
fseek
?what@exception@std@@UBEPBDXZ
wcscat_s
_CxxThrowException
memset
??3@YAXPAX@Z
__CxxFrameHandler3

msvcp80

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

wininet

InternetCloseHandle
InternetOpenUrlW
InternetOpenW

ws2_32

gethostbyname
inet_addr
htons
WSAGetLastError
inet_ntoa

Exports

Exports

?AddCloseHwnd@@YAXPAUHWND__@@@Z
?BitsToHexString2@@YA?AVCComBSTR@ATL@@PBEH@Z
?BitsToHexString@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@PBEH@Z
?CheckAdvise@@YAXPB_W@Z
?CheckAllAdviseValue@@YAXXZ
?CheckDirectoryExist@@YAHPB_W@Z
?CheckFileExist@@YAHPB_W@Z
?CheckUnadvise@@YAXPB_W@Z
?ClearRN@@YAXAAV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@@Z
?CloseAllCloseHwnd@@YAXXZ
?ConvertTime@@YAI_J@Z
?CreateAllDirectory@@YAHPB_W@Z
?CreateObjectFromFile2@@YAJAAPAUHINSTANCE__@@PB_WPAUIUnknown@@ABU_GUID@@3PAPAX@Z
?CreateObjectFromFile@@YAJPB_WPAUIUnknown@@ABU_GUID@@2PAPAX@Z
?CreateStandardFont@@YAXAAPAUHFONT__@@@Z
?DOLOG@@YAXPB_WZZ
?DelCloseHwnd@@YAXPAUHWND__@@@Z
?Encode16@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV12@@Z
?FocusToTop@@YAXPAUHWND__@@@Z
?FormUrlEncode@@YAXAAV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@@Z
?GetComErrorDetail@@YA?AVCComBSTR@ATL@@AAV_com_error@@@Z
?GetExeFolder2@@YA?AVCComBSTR@ATL@@XZ
?GetExeFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetFolderByPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@PB_W@Z
?GetFullScreen@@YA?AUtagRECT@@PAUHWND__@@@Z
?GetKeyValue@@YAHABV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@0AAV12@@Z
?GetModuleFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@PAUHINSTANCE__@@@Z
?GetModulePath2@@YA?AVCComBSTR@ATL@@PAUHINSTANCE__@@@Z
?GetQQLiveDlgHwnd@@YAPAUHWND__@@XZ
?GetRandomNum@@YAKKK@Z
?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ
?GetUserAppDataPath3@@YA?AVCComBSTR@ATL@@XZ
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetUserGuid@@YAXPADAAH@Z
?GetXMLKeyValue@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@ABV12@0PAH1@Z
?GetXMLMasterKeyValue@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@PB_W@Z
?GetXPMenuState@@YAXAAHAAK@Z
?HashXMLFile2@@YAHPB_WAAV?$vector@EV?$allocator@E@std@@@std@@@Z
?HexStringToBits@@YA_NPBDPAEAAH@Z
?InflateColor@@YAKKH@Z
?IsInQuo@@YAHAAV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@H@Z
?IsWinXPOrLater@@YAHXZ
?IsWindows2KOrLater@@YAHXZ
?IsWindowsVista@@YAHXZ
?KillOtherQQLivePlayerApp@@YAHPB_W@Z
?MinimizeMemory@@YAXXZ
?NavigateURL@@YAHPB_WH@Z
?RegistLocalInfo@@YAHXZ
?ReportThirdPart@@YAXPB_WPAUHWND__@@@Z
?SetQQliveDlgHwnd@@YAXPAUHWND__@@@Z
?SetXPMenuState@@YAXH@Z
?StrToAddr@@YAHAAUsockaddr_in@@PB_WF@Z
?TraceComError@@YAXAAV_com_error@@@Z
?gLoadString@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@J@Z

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/login.dll
.dll regsvr32 windows:4 windows x86 arch:x86

9ce5b3104fd8c0cd6a5d882d72c5b273

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\login.pdb

Imports

httpdownload

??0CHttpDownload@@QAE@XZ
?AddInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@0@Z
?AddInfo@CHttpDownload@@QAEHABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@K@Z
?AddContent@CHttpDownload@@QAEHPBEH@Z
?SetUIInterface@CHttpDownload@@QAEXPAVCHttpDownloadUIInterface@@@Z
?Download@CHttpDownload@@QAEIPB_W0PAU_SYSTEMTIME@@@Z
?OnRedirected@CHttpDownloadUIInterface@@UAEXPB_W@Z
?OnProgress@CHttpDownloadUIInterface@@UAEXKK@Z
?OnDownloadStart@CHttpDownloadUIInterface@@UAEXKK@Z
?OnConnected@CHttpDownloadUIInterface@@UAEXXZ
?OnConnecting@CHttpDownloadUIInterface@@UAEXPB_W@Z
??1CHttpDownload@@UAE@XZ
??_7CHttpDownloadUIInterface@@6B@
?SetRequestMethod@CHttpDownload@@QAEXH@Z
??1CHttpDownloadUIInterface@@UAE@XZ

log

?GetModuleFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@PAUHINSTANCE__@@@Z
?gLoadString@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@J@Z
?AddCloseHwnd@@YAXPAUHWND__@@@Z
?DelCloseHwnd@@YAXPAUHWND__@@@Z
?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ
?NavigateURL@@YAHPB_WH@Z
?GetExeFolder@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetUserAppDataPath@@YA?AV?$CStringT@_WV?$StrTraitATL@_WV?$ChTraitsCRT@_W@ATL@@@ATL@@@ATL@@XZ
?GetQQLiveDlgHwnd@@YAPAUHWND__@@XZ
?CheckAdvise@@YAXPB_W@Z
?CheckUnadvise@@YAXPB_W@Z
?DOLOG@@YAXPB_WZZ
?CheckFileExist@@YAHPB_W@Z

mfc80u

ord5319
ord2121
ord2895
ord1176
ord3417
ord587
ord4480
ord2856
ord5196
ord1590
ord1646
ord1647
ord1955
ord5171
ord1353
ord4961
ord3339
ord6275
ord3796
ord6273
ord1513
ord2163
ord2169
ord2399
ord2381
ord2379
ord2397
ord2409
ord2386
ord2402
ord2407
ord2390
ord2392
ord2394
ord2388
ord2404
ord2384
ord931
ord927
ord929
ord925
ord920
ord5229
ord5231
ord5956
ord1591
ord4276
ord4716
ord3397
ord5210
ord4179
ord6271
ord5067
ord1899
ord5148
ord4226
ord1393
ord3940
ord1608
ord1611
ord5911
ord6721
ord1536
ord1894
ord3678
ord3435
ord605
ord1784
ord1883
ord2444
ord6232
ord2897
ord1479
ord282
ord6700
ord1079
ord1118
ord1925
ord3204
ord3157
ord1058
ord6061
ord6063
ord2651
ord3756
ord2159
ord2255
ord2361
ord5609
ord6086
ord4347
ord6219
ord326
ord384
ord2648
ord4314
ord5558
ord5524
ord5398
ord2460
ord6284
ord1386
ord5829
ord777
ord6116
ord2893
ord4256
ord5199
ord4238
ord1392
ord5908
ord6720
ord1542
ord2640
ord1662
ord2011
ord4884
ord4729
ord4206
ord5178
ord4098
ord3249
ord1172
ord5316
ord2340
ord6282
ord5327
ord6293
ord1571
ord1416
ord709
ord501
ord1189
ord572
ord3311
ord4234
ord1582
ord2086
ord741
ord313
ord760
ord3590
ord354
ord4119
ord4027
ord4574
ord3635
ord3198
ord1271
ord3189
ord620
ord4882
ord3176
ord4109
ord3395
ord3983
ord290
ord2260
ord5083
ord1430
ord629
ord776
ord1220
ord4026
ord3927
ord4112
ord280
ord766
ord765
ord315
ord1033
ord1087
ord1197
ord1199
ord764
ord3677
ord566
ord3327
ord4255
ord4475
ord3943
ord2638
ord3703
ord3713
ord3712
ord2527
ord581
ord1200
ord1170
ord1168
ord1192
ord1115
ord1162
ord371
ord1093
ord267
ord1472
ord2366
ord774
ord870
ord265
ord1908
ord266
ord762
ord293
ord2311
ord283
ord899
ord896
ord577
ord1178
ord1182
ord314
ord1043
ord6751
ord2239
ord3824
ord757
ord4032
ord4008
ord6272
ord3795
ord6274
ord4320
ord2054
ord2009
ord5579
ord3800
ord1007
ord5096
ord6215
ord5378
ord3826
ord1911
ord2925
ord5220
ord5222
ord3942
ord4562
ord5226
ord5209
ord5562
ord2531
ord2725
ord2829
ord4301
ord2708
ord2832
ord5727
ord2534
ord1661

msvcr80

wcsncmp
_wcslwr_s
_time64
_wcsnicmp
wcstol
iswdigit
swprintf_s
_ultoa_s
_beginthreadex
_except_handler4_common
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
memcpy
strcpy_s
strtoul
memcpy_s
_resetstkoflw
calloc
_recalloc
malloc
_wfopen_s
fseek
ftell
fclose
fread
_purecall
memmove_s
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
_invalid_parameter_noinfo
memset
free
__CxxFrameHandler3
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
__clean_type_info_names_internal

kernel32

WaitForSingleObject
ResetEvent
GetPrivateProfileIntW
GetPrivateProfileStringW
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
GlobalFree
RaiseException
GetTickCount
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
lstrlenA
DeleteFileW
GetFileAttributesW
GetProcAddress
GetModuleFileNameW
LeaveCriticalSection
EnterCriticalSection
lstrlenW
MultiByteToWideChar
GetThreadLocale
SetThreadLocale
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
SetEvent
ResumeThread
CreateEventW
GetVersion
LoadLibraryW
LocalFree
LocalAlloc
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetVersionExA
GetACP
GetLocaleInfoA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
CloseHandle

user32

ScreenToClient
EnableMenuItem
GetFocus
GetWindowLongW
SetWindowLongW
RedrawWindow
SetRect
GetDC
ReleaseDC
GetMonitorInfoW
FillRect
GetCursorPos
IsIconic
IsWindowVisible
SystemParametersInfoW
GetSystemMetrics
SetWindowPos
IsZoomed
PtInRect
CopyRect
OffsetRect
GetWindow
GetClientRect
MoveWindow
ShowWindow
LoadIconW
GetParent
InvalidateRect
GetWindowRect
SendMessageW
PostMessageW
GetDesktopWindow
IsWindow
RegisterWindowMessageW
EnableWindow
MonitorFromRect
MessageBoxW
UnregisterClassA
GetPropW
GetClassNameW
GetTopWindow
GetSysColor

gdi32

CreateSolidBrush
DeleteObject
CreateCompatibleDC
CreateFontW
DeleteDC
SelectObject
BitBlt
GetDeviceCaps
CreateCompatibleBitmap

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

comctl32

_TrackMouseEvent

ole32

CoLoadLibrary
CoCreateInstance
CreateStreamOnHGlobal

oleaut32

OleLoadPicture
SysStringLen
SysFreeString
VariantInit
VariantClear
SysAllocString
SysAllocStringByteLen
SysStringByteLen
DispCallFunc
LoadRegTypeLi
LoadTypeLi
SysAllocStringLen

atl80

ord11
ord10
ord58
ord61
ord30
ord64
ord22
ord18
ord15
ord31
ord32
ord23

msvcp80

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z

wininet

InternetSetCookieW

ws2_32

ntohl
ntohs
htons
htonl
inet_ntoa

skin

?SetSkinVar@@YAHPB_W0H@Z
?CreateSkinControl@@YAPAUHWND__@@PB_WPAU1@H@Z
?SetSkin@CSkinBase@@QAEJPB_W0@Z
?GetSkinColor@@YAKPB_WH@Z
?GetDrawMsg@CSkinBase@@SAIXZ
?SetWndSkin@@YAHPB_WPAUHWND__@@H@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/mfc80u.dll
.dll windows:4 windows x86 arch:x86

45cba60d0833bef75d882d15b2d5a2cd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

MFC80U.i386.pdb

Imports

msvcr80

?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
strcpy_s
_itow_s
_ultow_s
_ltow_s
iswdigit
ceil
wcsncmp
_wcsnicmp
_wfullpath
_wtol
__argc
swscanf_s
__wargv
_beginthreadex
_endthreadex
_wcsdup
_wtoi
_expand
wcstod
wcstoul
wcstol
_mbsrchr
_resetstkoflw
_recalloc
_wmakepath_s
_wsplitpath_s
_snwscanf_s
_vsnwprintf_s
labs
abs
calloc
_msize
wcscat_s
_snwprintf_s
_errno
_purecall
_mktime64
_localtime64_s
realloc
fputws
fwrite
clearerr_s
ferror
feof
fread
__doserrno
_fdopen
_open_osfhandle
_fileno
_get_osfhandle
fclose
fflush
ftell
fseek
fgetws
wcscpy_s
abort
memcmp
swprintf_s
wcsncpy_s
malloc
_wcsupr_s
_mbsicoll
vsprintf_s
wcslen
_mbsinc
wcsstr
_wcslwr_s
_mbsrev
memset
_mbscoll
_mbslwr_s
_vscwprintf
_mbscspn
_mbscmp
memmove
iswspace
_mbsicmp
wcsrchr
wcspbrk
_wcsrev
wcschr
wcscspn
_mbsupr_s
memcpy_s
_mbsspn
vswprintf_s
_wcsicoll
_wcsicmp
memcpy
_mbschr
free
_mbspbrk
wcsspn
wcscoll
memmove_s
_ismbcspace
strlen
_mbsstr
_vscprintf
_CxxThrowException
wcscmp
__clean_type_info_names_internal
__CxxFrameHandler3

kernel32

GetLocaleInfoA
GetSystemTimeAsFileTime
GetLastError
MultiByteToWideChar
FindResourceExW
GetEnvironmentVariableW
SizeofResource
LockResource
FormatMessageW
FindResourceW
WideCharToMultiByte
GetEnvironmentVariableA
LocalFree
FormatMessageA
LoadResource
SetLastError
GetAtomNameW
GlobalGetAtomNameW
lstrlenW
lstrcmpA
lstrlenA
DuplicateHandle
GetCurrentProcess
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
CreateFileW
FindClose
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
lstrcmpiW
CloseHandle
LockFile
GetThreadLocale
UnlockFile
GetStringTypeExW
SetEndOfFile
GetFileSize
MoveFileW
DeleteFileW
GetModuleFileNameW
GetShortPathNameW
LoadLibraryW
GetProcAddress
GlobalLock
GlobalSize
GlobalAlloc
GlobalUnlock
GlobalReAlloc
GlobalFree
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileAttributesW
SetFileTime
GetFileTime
GetFileAttributesW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetModuleHandleW
FreeLibrary
InterlockedDecrement
TlsGetValue
LocalReAlloc
TlsSetValue
LocalAlloc
TlsAlloc
InitializeCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
WaitForSingleObject
CreateSemaphoreW
ReleaseSemaphore
CreateMutexW
ReleaseMutex
CreateEventW
WaitForMultipleObjects
GlobalAddAtomW
GetCurrentThreadId
GetVersionExA
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomW
CompareStringW
GetCurrentProcessId
GetVersion
MulDiv
GetVersionExW
GetProfileIntW
LoadLibraryA
VirtualProtect
GetModuleHandleA
RaiseException
GlobalFlags
GetDiskFreeSpaceW
GetTempFileNameW
LocalLock
LocalUnlock
GetTempPathW
SearchPathW
SetEvent
SetThreadPriority
ResumeThread
SuspendThread
GetLocaleInfoW
CompareStringA
ConvertDefaultLocale
EnumResourceLanguagesW
GetCurrentThread
InterlockedExchange
SetErrorMode
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetCurrentDirectoryW
InterlockedIncrement
FindNextFileW
GetTickCount
CopyFileW
GetUserDefaultLCID
IsDBCSLeadByte
lstrcpyW
lstrcpyA
GetSystemTime
LoadLibraryExW
Sleep
InterlockedCompareExchange
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetACP

gdi32

GetBkMode
GetClipBox
OffsetRgn
SetBrushOrgEx
GetRgnBox
CreateMetaFileW
CopyMetaFileW
Ellipse
CreateEllipticRgn
LPtoDP
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
DPtoLP
SetRectRgn
CombineRgn
GetMapMode
PolylineTo
PolyDraw
SetArcDirection
StartDocW
ArcTo
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
OffsetClipRgn
GetPixel
ExcludeClipRect
SelectClipRgn
OffsetWindowOrgEx
EnumMetaFile
PlayMetaFile
ModifyWorldTransform
PlayMetaFileRecord
SetWorldTransform
GetObjectType
SetGraphicsMode
ExtSelectClipRgn
SetStretchBltMode
CreateDIBPatternBrushPt
GetClipRgn
SetROP2
CreateRectRgn
SetPolyFillMode
CreateHatchBrush
SelectClipPath
SetBkMode
CreateSolidBrush
PolyBezierTo
ExtCreatePen
SelectPalette
SetColorAdjustment
EnumFontFamiliesExW
CreateDCW
BitBlt
CreateRectRgnIndirect
PatBlt
UnrealizeObject
Rectangle
CreatePen
CreatePatternBrush
CreateBitmap
DeleteMetaFile
CloseMetaFile
TextOutW
GetViewportOrgEx
GetDeviceCaps
GetTextColor
Escape
GetStretchBltMode
GetPolyFillMode
RectVisible
ExtTextOutW
PtVisible
MoveToEx
GetCurrentPositionEx
GetROP2
GetTextAlign
GetTextExtentPoint32A
ScaleWindowExtEx
RestoreDC
SetWindowExtEx
ScaleViewportExtEx
SaveDC
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetNearestColor
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
CreateFontIndirectW
SetWindowOrgEx
GetWindowOrgEx
GetTextFaceW
GetStockObject
GetTextMetricsW
GetTextExtentPoint32W
DeleteObject
GetCharWidthW
CreateFontW
DeleteDC
StretchDIBits
SelectObject
GetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
SetBkColor
GetObjectW
SetTextColor

user32

IsWindow
IsChild
DeferWindowPos
GetClassNameW
GetClientRect
GetLastActivePopup
GetClassInfoW
AdjustWindowRectEx
MapWindowPoints
MessageBoxW
SetPropW
GetFocus
GetForegroundWindow
RegisterClassW
GetTopWindow
SetWindowsHookExW
SetActiveWindow
SetForegroundWindow
SetFocus
SetScrollPos
GetMessageTime
CreateWindowExW
SendDlgItemMessageW
SendDlgItemMessageA
GetScrollPos
GetMessagePos
RegisterWindowMessageW
SetScrollRange
UpdateWindow
DestroyWindow
GetKeyState
GetScrollRange
WinHelpW
GetDlgCtrlID
ShowScrollBar
PostMessageW
SendMessageW
IsIconic
GetCapture
DefWindowProcW
GetWindowTextLengthW
SetScrollInfo
LoadIconW
GetWindowPlacement
GetWindowTextW
GetScrollInfo
GetWindowRect
GetPropW
GetDlgItem
IsWindowVisible
SystemParametersInfoA
CallWindowProcW
SetWindowPlacement
ScrollWindow
PtInRect
RemovePropW
TrackPopupMenu
OffsetRect
TrackPopupMenuEx
GetWindowLongW
IntersectRect
GetMenuItemCount
PeekMessageW
SetWindowLongW
BeginDeferWindowPos
CallNextHookEx
DispatchMessageW
SetWindowPos
CopyRect
GetClassLongW
GetSubMenu
EndDeferWindowPos
GetMenuItemID
ScreenToClient
GetSysColor
EnableWindow
TranslateAcceleratorW
InsertMenuItemW
ReleaseCapture
BringWindowToTop
UnpackDDElParam
SetCursor
ReuseDDElParam
GetDesktopWindow
IsWindowEnabled
ShowWindow
GetWindowThreadProcessId
GetActiveWindow
LoadMenuW
DestroyMenu
CreatePopupMenu
InvalidateRect
SetMenu
SetRectEmpty
LoadAcceleratorsW
LoadCursorW
EqualRect
WaitMessage
WindowFromPoint
SetCapture
ClientToScreen
GetMessageW
TranslateMessage
DrawMenuBar
DefMDIChildProcW
RedrawWindow
DefFrameProcW
TranslateMDISysAccel
InflateRect
KillTimer
SetTimer
SetRect
GetDC
ReleaseDC
IsZoomed
SetParent
IsRectEmpty
GetSystemMenu
DeleteMenu
AppendMenuW
GetDCEx
LockWindowUpdate
GetTabbedTextExtentA
DrawTextW
DrawTextExW
GrayStringW
UnionRect
MapVirtualKeyW
GetKeyNameTextW
DrawFocusRect
LoadBitmapW
FillRect
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
GetAsyncKeyState
MapDialogRect
GetDialogBaseUnits
TabbedTextOutW
GetWindowDC
BeginPaint
EndPaint
GetMenuStringW
SystemParametersInfoW
GetMenuItemInfoW
GetSysColorBrush
SetWindowTextW
CheckRadioButton
GetDlgItemInt
GetDlgItemTextW
SetDlgItemInt
SetDlgItemTextW
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageW
MoveWindow
CheckDlgButton
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
ModifyMenuW
GetMenuCheckMarkDimensions
DestroyIcon
DestroyCursor
SetCursorPos
DrawIcon
FindWindowW
SetWindowRgn
GetTabbedTextExtentW
MessageBeep
IsClipboardFormatAvailable
RemoveMenu
ValidateRect
PostQuitMessage
UnregisterClassW
ShowOwnedPopups
InsertMenuW
RegisterClipboardFormatW
SendNotifyMessageW
CopyAcceleratorTableW
InSendMessage
PostThreadMessageW
CreateMenu
WindowFromDC
CountClipboardFormats
SetWindowContextHelpId
CharNextW
InvalidateRgn
GetNextDlgGroupItem
ClipCursor
DrawEdge
EnumChildWindows
GetWindow
GetMenu
GetClassInfoExW
GetParent
MsgWaitForMultipleObjects
UnhookWindowsHookEx
GetCursorPos
CharUpperW
OemToCharBuffA
UnregisterClassA
CharToOemBuffA
GetSystemMetrics

shlwapi

UrlUnescapeW
PathFindFileNameW
PathRemoveExtensionW
PathFindExtensionW
PathStripToRootW
PathIsUNCW

Sections

.text
Size: 924KB - Virtual size: 923KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/msvcp80.dll
.dll windows:4 windows x86 arch:x86

6488997e312be12f8300ea7b1c34d497

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcp80.i386.pdb

Imports

msvcr80

setvbuf
fwrite
??0exception@std@@QAE@XZ
_Getdays
_Getmonths
fgetpos
fseek
fsetpos
fclose
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
__iob_func
_invoke_watson
_fsopen
wcstombs_s
_wfsopen
_get_osplatform
mbstowcs_s
atan2
cos
exp
ldexp
log
pow
sin
sqrt
tan
fgetwc
fputwc
ungetwc
_Strftime
strcspn
_strtoi64
_strtoui64
sprintf_s
abort
??0exception@std@@QAE@ABQBDH@Z
_realloc_crt
setlocale
_malloc_crt
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
fputs
fflush
towlower
towupper
strcmp
_create_locale
_ui64toa_s
_free_locale
__pctype_func
_errno
___mb_cur_max_l_func
___lc_codepage_func
___lc_handle_func
__crtCompareStringA
___lc_collate_cp_func
__crtLCMapStringA
memcpy
isupper
_calloc_crt
islower
__crtGetStringTypeW
__crtLCMapStringW
__crtCompareStringW
isspace
tolower
strtod
isdigit
isalnum
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
__clean_type_info_names_internal
ungetc
fputc
fgetc
__CxxFrameHandler3
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??2@YAPAXI@Z
_invalid_parameter_noinfo
??_V@YAXPAX@Z
_Gettnames
localeconv
free
memset
memchr
strlen
memcmp
wcslen
memmove_s
memcpy_s
??3@YAXPAX@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
__uncaught_exception
??0exception@std@@QAE@ABQBD@Z

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
Sleep
InterlockedDecrement
InterlockedIncrement
GetLocaleInfoA
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
InterlockedCompareExchange
GetSystemTimeAsFileTime

Exports

Exports

??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z
??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAD@Z
??$?5DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?5GU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAG@Z
??$?5GU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAG@Z
??$?5GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?5MDU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@M@0@@Z
??$?5MGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@M@0@@Z
??$?5M_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@M@0@@Z
??$?5NDU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@N@0@@Z
??$?5NGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@N@0@@Z
??$?5N_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@N@0@@Z
??$?5ODU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@O@0@@Z
??$?5OGU?$char_traits@G@std@@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@O@0@@Z
??$?5O_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$complex@O@0@@Z
??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAC@Z
??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAE@Z
??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAC@Z
??$?5U?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAE@Z
??$?5_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AA_W@Z
??$?5_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@PA_W@Z
??$?5_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?6GU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@G@Z
??$?6GU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBG@Z
??$?6GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?6MDU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@M@0@@Z
??$?6MGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@M@0@@Z
??$?6M_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@M@0@@Z
??$?6NDU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@N@0@@Z
??$?6NGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@N@0@@Z
??$?6N_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@N@0@@Z
??$?6ODU?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@O@0@@Z
??$?6OGU?$char_traits@G@std@@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@O@0@@Z
??$?6O_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$complex@O@0@@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@C@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@E@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBC@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBE@Z
??$?6_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@PB_W@Z
??$?6_WU?$char_traits@_W@std@@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@_W@Z
??$?6_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?8M@std@@YA_NABMABV?$complex@M@0@@Z
??$?8M@std@@YA_NABV?$complex@M@0@0@Z
??$?8M@std@@YA_NABV?$complex@M@0@ABM@Z
??$?8N@std@@YA_NABNABV?$complex@N@0@@Z
??$?8N@std@@YA_NABV?$complex@N@0@0@Z
??$?8N@std@@YA_NABV?$complex@N@0@ABN@Z
??$?8O@std@@YA_NABOABV?$complex@O@0@@Z
??$?8O@std@@YA_NABV?$complex@O@0@0@Z
??$?8O@std@@YA_NABV?$complex@O@0@ABO@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?9GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?9M@std@@YA_NABMABV?$complex@M@0@@Z
??$?9M@std@@YA_NABV?$complex@M@0@0@Z
??$?9M@std@@YA_NABV?$complex@M@0@ABM@Z
??$?9N@std@@YA_NABNABV?$complex@N@0@@Z
??$?9N@std@@YA_NABV?$complex@N@0@0@Z
??$?9N@std@@YA_NABV?$complex@N@0@ABN@Z
??$?9O@std@@YA_NABOABV?$complex@O@0@@Z
??$?9O@std@@YA_NABV?$complex@O@0@0@Z
??$?9O@std@@YA_NABV?$complex@O@0@ABO@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?DM@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$?DM@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$?DM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$?DN@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$?DN@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$?DN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$?DO@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$?DO@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$?DO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$?GM@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$?GM@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$?GM@std@@YA?AV?$complex@M@0@ABV10@@Z
??$?GM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$?GN@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$?GN@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$?GN@std@@YA?AV?$complex@N@0@ABV10@@Z
??$?GN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$?GO@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$?GO@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$?GO@std@@YA?AV?$complex@O@0@ABV10@@Z
??$?GO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@DABV10@@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@0@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@G@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@PBG@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@GABV10@@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBGABV10@@Z
??$?HM@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$?HM@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$?HM@std@@YA?AV?$complex@M@0@ABV10@@Z
??$?HM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$?HN@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$?HN@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$?HN@std@@YA?AV?$complex@N@0@ABV10@@Z
??$?HN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$?HO@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$?HO@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$?HO@std@@YA?AV?$complex@O@0@ABV10@@Z
??$?HO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_WABV10@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@_WABV10@@Z
??$?KM@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$?KM@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$?KM@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$?KN@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$?KN@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$?KN@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$?KO@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$?KO@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$?KO@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?NGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?N_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?O_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?PDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??$?PGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?P_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NPB_WABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$_Fabs@M@std@@YAMABV?$complex@M@0@PAH@Z
??$_Fabs@N@std@@YANABV?$complex@N@0@PAH@Z
??$_Fabs@O@std@@YAOABV?$complex@O@0@PAH@Z
??$abs@M@std@@YAMABV?$complex@M@0@@Z
??$abs@N@std@@YANABV?$complex@N@0@@Z
??$abs@O@std@@YAOABV?$complex@O@0@@Z
??$arg@M@std@@YAMABV?$complex@M@0@@Z
??$arg@N@std@@YANABV?$complex@N@0@@Z
??$arg@O@std@@YAOABV?$complex@O@0@@Z
??$conj@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$conj@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$conj@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$cos@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$cos@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$cos@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$cosh@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$cosh@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$cosh@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$exp@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$exp@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$exp@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@D@Z
??$getline@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??$getline@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@G@Z
??$getline@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??$getline@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@_W@Z
??$imag@M@std@@YAMABV?$complex@M@0@@Z
??$imag@N@std@@YANABV?$complex@N@0@@Z
??$imag@O@std@@YAOABV?$complex@O@0@@Z
??$log10@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$log10@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$log10@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$log@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$log@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$log@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$norm@M@std@@YAMABV?$complex@M@0@@Z
??$norm@N@std@@YANABV?$complex@N@0@@Z
??$norm@O@std@@YAOABV?$complex@O@0@@Z
??$polar@M@std@@YA?AV?$complex@M@0@ABM0@Z
??$polar@M@std@@YA?AV?$complex@M@0@ABM@Z
??$polar@N@std@@YA?AV?$complex@N@0@ABN0@Z
??$polar@N@std@@YA?AV?$complex@N@0@ABN@Z
??$polar@O@std@@YA?AV?$complex@O@0@ABO0@Z
??$polar@O@std@@YA?AV?$complex@O@0@ABO@Z
??$pow@M@std@@YA?AV?$complex@M@0@ABMABV10@@Z
??$pow@M@std@@YA?AV?$complex@M@0@ABV10@0@Z
??$pow@M@std@@YA?AV?$complex@M@0@ABV10@ABM@Z
??$pow@M@std@@YA?AV?$complex@M@0@ABV10@H@Z
??$pow@N@std@@YA?AV?$complex@N@0@ABNABV10@@Z
??$pow@N@std@@YA?AV?$complex@N@0@ABV10@0@Z
??$pow@N@std@@YA?AV?$complex@N@0@ABV10@ABN@Z
??$pow@N@std@@YA?AV?$complex@N@0@ABV10@H@Z
??$pow@O@std@@YA?AV?$complex@O@0@ABOABV10@@Z
??$pow@O@std@@YA?AV?$complex@O@0@ABV10@0@Z
??$pow@O@std@@YA?AV?$complex@O@0@ABV10@ABO@Z
??$pow@O@std@@YA?AV?$complex@O@0@ABV10@H@Z
??$real@M@std@@YAMABV?$complex@M@0@@Z
??$real@N@std@@YANABV?$complex@N@0@@Z
??$real@O@std@@YAOABV?$complex@O@0@@Z
??$sin@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$sin@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$sin@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$sinh@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$sinh@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$sinh@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$sqrt@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$sqrt@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$sqrt@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$tan@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$tan@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$tan@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??$tanh@M@std@@YA?AV?$complex@M@0@ABV10@@Z
??$tanh@N@std@@YA?AV?$complex@N@0@ABV10@@Z
??$tanh@O@std@@YA?AV?$complex@O@0@ABV10@@Z
??0?$_Complex_base@MU_C_float_complex@@@std@@QAE@ABM0@Z
??0?$_Complex_base@NU_C_double_complex@@@std@@QAE@ABN0@Z
??0?$_Complex_base@OU_C_ldouble_complex@@@std@@QAE@ABO0@Z
??0?$_Mpunct@D@std@@IAE@PBDI_N@Z
??0?$_Mpunct@D@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@D@std@@QAE@I_N@Z
??0?$_Mpunct@G@std@@IAE@PBDI_N@Z
??0?$_Mpunct@G@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@G@std@@QAE@I_N@Z
??0?$_Mpunct@_W@std@@IAE@PBDI_N@Z
??0?$_Mpunct@_W@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@_W@std@@QAE@I_N@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@QAE@ABV01@@Z
??0?$_String_val@GV?$allocator@G@std@@@std@@IAE@V?$allocator@G@1@@Z
??0?$_String_val@GV?$allocator@G@std@@@std@@QAE@ABV01@@Z
??0?$_String_val@_WV?$allocator@_W@std@@@std@@IAE@V?$allocator@_W@1@@Z
??0?$_String_val@_WV?$allocator@_W@std@@@std@@QAE@ABV01@@Z
??0?$allocator@D@std@@QAE@ABV01@@Z
??0?$allocator@D@std@@QAE@XZ
??0?$allocator@G@std@@QAE@ABV01@@Z
??0?$allocator@G@std@@QAE@XZ
??0?$allocator@X@std@@QAE@ABV01@@Z
??0?$allocator@X@std@@QAE@XZ
??0?$allocator@_W@std@@QAE@ABV01@@Z
??0?$allocator@_W@std@@QAE@XZ
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_filebuf@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z
??0?$basic_fstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_istringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z
??0?$basic_istringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBGHH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBDHH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PBGHH@Z
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z
??0?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@IDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@1@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@II@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@IIABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG0@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGI@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGIABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@V?$_String_const_iterator@GU?$char_traits@G@std@@V?$allocator@G@2@@1@0@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@II@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@IIABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_WABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W0@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WIABV?$allocator@_W@1@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@V?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@0@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_stringbuf@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z
??0?$basic_stringbuf@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@1@H@Z
??0?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@DDH@std@@QAE@I@Z
??0?$codecvt@GDH@std@@IAE@PBDI@Z
??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@GDH@std@@QAE@I@Z
??0?$codecvt@_WDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@_WDH@std@@QAE@I@Z
??0?$collate@D@std@@IAE@PBDI@Z
??0?$collate@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@D@std@@QAE@I@Z
??0?$collate@G@std@@IAE@PBDI@Z
??0?$collate@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@G@std@@QAE@I@Z
??0?$collate@_W@std@@IAE@PBDI@Z
??0?$collate@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@_W@std@@QAE@I@Z
??0?$complex@M@std@@QAE@ABM0@Z
??0?$complex@M@std@@QAE@ABU_C_float_complex@@@Z
??0?$complex@M@std@@QAE@ABV?$complex@N@1@@Z
??0?$complex@M@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@N@std@@QAE@ABN0@Z
??0?$complex@N@std@@QAE@ABU_C_double_complex@@@Z
??0?$complex@N@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@N@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@O@std@@QAE@ABO0@Z
??0?$complex@O@std@@QAE@ABU_C_ldouble_complex@@@Z
??0?$complex@O@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@O@std@@QAE@ABV?$complex@N@1@@Z
??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@D@std@@QAE@PBF_NI@Z
??0?$ctype@G@std@@IAE@PBDI@Z
??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@G@std@@QAE@I@Z
??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@_W@std@@QAE@I@Z
??0?$messages@D@std@@IAE@PBDI@Z
??0?$messages@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@D@std@@QAE@I@Z
??0?$messages@G@std@@IAE@PBDI@Z
??0?$messages@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@G@std@@QAE@I@Z
??0?$messages@_W@std@@IAE@PBDI@Z
??0?$messages@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@_W@std@@QAE@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$money_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$money_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$moneypunct@D$00@std@@IAE@PBDI@Z
??0?$moneypunct@D$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@D$00@std@@QAE@I@Z
??0?$moneypunct@D$0A@@std@@IAE@PBDI@Z
??0?$moneypunct@D$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@D$0A@@std@@QAE@I@Z
??0?$moneypunct@G$00@std@@IAE@PBDI@Z
??0?$moneypunct@G$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@G$00@std@@QAE@I@Z
??0?$moneypunct@G$0A@@std@@IAE@PBDI@Z
??0?$moneypunct@G$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@G$0A@@std@@QAE@I@Z
??0?$moneypunct@_W$00@std@@IAE@PBDI@Z
??0?$moneypunct@_W$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@_W$00@std@@QAE@I@Z
??0?$moneypunct@_W$0A@@std@@IAE@PBDI@Z
??0?$moneypunct@_W$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@_W$0A@@std@@QAE@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

Sections

.text
Size: 208KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 292KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/msvcr80.dll
.dll windows:4 windows x86 arch:x86

7fecbc4a16a5dc85a5394a1df6217680

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr80.i386.pdb

Imports

msvcrt

_getdrives

kernel32

GetStringTypeA
GetLocalTime
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetSystemDirectoryW
GetLongPathNameW
GetCurrentThreadId
TlsGetValue
DebugBreak
OutputDebugStringA
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
GetLastError
ResumeThread
CreateThread
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
FindNextFileA
FindFirstFileA
FindClose
FindNextFileW
FindFirstFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
Sleep
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
VirtualAlloc
HeapSize
SetHandleCount
GetFileType
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WriteConsoleW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSection
MultiByteToWideChar
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
WideCharToMultiByte
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
LCMapStringW
SetLocalTime
GetStringTypeW
LoadLibraryW
GetLocaleInfoA
GetLocaleInfoW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
RtlUnwind
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
SetStdHandle
CreateFileA
CompareStringA
CompareStringW
Beep
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
RaiseException
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
CreateProcessW
HeapValidate
HeapCompact
HeapWalk
VirtualProtect
GetSystemInfo
VirtualQuery
IsDBCSLeadByteEx
ReadConsoleA
ReadConsoleW
SetConsoleMode
SetEndOfFile
DuplicateHandle
GetFileInformationByHandle
PeekNamedPipe
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
LockFile
UnlockFile
CreatePipe
ReadFile
CreateFileW
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1exception@std@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??2@YAPAXIHPBDH@Z
??3@YAXPAX@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4exception@std@@QAEAAV01@ABV01@@Z
??8type_info@@QBE_NABV0@@Z
??9type_info@@QBE_NABV0@@Z
??_7__non_rtti_object@std@@6B@
??_7bad_cast@std@@6B@
??_7bad_typeid@std@@6B@
??_7exception@@6B@
??_7exception@std@@6B@
??_Fbad_cast@std@@QAEXXZ
??_Fbad_typeid@std@@QAEXXZ
??_U@YAPAXI@Z
??_U@YAPAXIHPBDH@Z
??_V@YAXPAX@Z
?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Type_info_dtor@type_info@@CAXPAV1@@Z
?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z
?_ValidateExecute@@YAHP6GHXZ@Z
?_ValidateRead@@YAHPBXI@Z
?_ValidateWrite@@YAHPAXI@Z
?_inconsistency@@YAXXZ
?_invalid_parameter@@YAXPBG00II@Z
?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
?_open@@YAHPBDHH@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZH@Z
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?_sopen@@YAHPBDHHH@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?_wopen@@YAHPB_WHH@Z
?_wsopen@@YAHPB_WHHH@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZH@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZH@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?swprintf@@YAHPAGIPBGZZ
?swprintf@@YAHPA_WIPB_WZZ
?terminate@@YAXXZ
?unexpected@@YAXXZ
?vswprintf@@YAHPA_WIPB_WPAD@Z
?what@exception@std@@UBEPBDXZ
@_calloc_crt@8
@_malloc_crt@4
@_realloc_crt@8
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CRT_RTC_INITW
_CreateFrameInfo
_CxxThrowException
_EH_prolog
_FindAndUnlinkFrame
_Getdays
_Getmonths
_Gettnames
_HUGE
_IsExceptionObjectToBeDestroyed
_NLG_Dispatch2
_NLG_Return
_NLG_Return2
_Strftime
_XcptFilter
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__CppXcptFilter
__CxxCallUnwindDelDtor
__CxxCallUnwindDtor
__CxxCallUnwindStdDelDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__STRINGTOLD_L
__TypeMatch
___fls_getvalue@4
___fls_setvalue@8
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___mb_cur_max_l_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__clean_type_info_names_internal
__control87_2
__create_locale
__crtCompareStringA
__crtCompareStringW
__crtGetLocaleInfoW
__crtGetStringTypeW
__crtLCMapStringA
__crtLCMapStringW
__daylight
__dllonexit
__doserrno
__dstbias
__fpecode
__free_locale
__get_app_type
__get_current_locale
__get_flsindex
__get_tlsindex
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__iswcsym
__iswcsymf
__lc_clike
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv
__lconv_init
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_asin
__libm_sse2_asinf
__libm_sse2_atan
__libm_sse2_atan2
__libm_sse2_atanf
__libm_sse2_cos
__libm_sse2_cosf
__libm_sse2_exp
__libm_sse2_expf
__libm_sse2_log
__libm_sse2_log10
__libm_sse2_log10f
__libm_sse2_logf
__libm_sse2_pow
__libm_sse2_powf
__libm_sse2_sin
__libm_sse2_sinf
__libm_sse2_tan
__libm_sse2_tanf
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__osplatform
__p__osver
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__winmajor
__p__winminor
__p__winver
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__report_gsfailure
__set_app_type
__set_flsgetvalue
__setlc_active
__setusermatherr
__strncnt
__swprintf_l
__sys_errlist
__sys_nerr
__threadhandle
__threadid
__timezone
__toascii
__tzname
__unDName
__unDNameEx
__unDNameHelper
__uncaught_exception
__unguarded_readlc_active
__vswprintf_l
__wargv
__wcserror
__wcserror_s
__wcsncnt
__wgetmainargs
__winitenv
_abnormal_termination
_abs64
_access
_access_s
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_aligned_free
_aligned_malloc
_aligned_msize
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_offset_recalloc
_aligned_realloc
_aligned_recalloc
_amsg_exit
_assert
_atodbl
_atodbl_l
_atof_l
_atoflt
_atoflt_l
_atoi64
_atoi64_l
_atoi_l
_atol_l
_atoldbl
_atoldbl_l
_beep
_beginthread
_beginthreadex
_byteswap_uint64
_byteswap_ulong
_byteswap_ushort
_c_exit
_cabs
_callnewh
_calloc_crt
_cexit
_cgets
_cgets_s
_cgetws
_cgetws_s
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_chsize_s
_clearfp
_close
_commit
_commode
_configthreadlocale
_control87
_controlfp
_controlfp_s
_copysign
_cprintf
_cprintf_l
_cprintf_p
_cprintf_p_l
_cprintf_s
_cprintf_s_l
_cputs
_cputws
_creat
_create_locale
_crt_debugger_hook
_cscanf
_cscanf_l
_cscanf_s
_cscanf_s_l
_ctime32
_ctime32_s
_ctime64
_ctime64_s
_cwait
_cwprintf
_cwprintf_l
_cwprintf_p
_cwprintf_p_l
_cwprintf_s
_cwprintf_s_l
_cwscanf
_cwscanf_l
_cwscanf_s
_cwscanf_s_l
_daylight
_decode_pointer
_difftime32
_difftime64
_dosmaperr
_dstbias
_dup
_dup2
_dupenv_s
_ecvt
_ecvt_s
_encode_pointer
_encoded_null
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_except_handler4_common
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fclose_nolock
_fcloseall
_fcvt
_fcvt_s
_fdopen
_fflush_nolock
_fgetchar
_fgetwc_nolock
_fgetwchar
_filbuf
_filelength
_filelengthi64
_fileno
_findclose
_findfirst32
_findfirst32i64
_findfirst64
_findfirst64i32
_findnext32
_findnext32i64
_findnext64
_findnext64i32
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fprintf_l
_fprintf_p
_fprintf_p_l
_fprintf_s_l
_fputchar
_fputwc_nolock
_fputwchar
_fread_nolock
_fread_nolock_s
_free_locale
_freea
_freea_s
_freefls
_fscanf_l
_fscanf_s_l
_fseek_nolock
_fseeki64
_fseeki64_nolock
_fsopen
_fstat32
_fstat32i64
_fstat64
_fstat64i32
_ftell_nolock
_ftelli64
_ftelli64_nolock
_ftime32
_ftime32_s
_ftime64
_ftime64_s
_ftol
_fullpath
_futime32
_futime64
_fwprintf_l
_fwprintf_p
_fwprintf_p_l
_fwprintf_s_l
_fwrite_nolock
_fwscanf_l
_fwscanf_s_l
_gcvt
_gcvt_s
_get_amblksiz
_get_current_locale
_get_daylight
_get_doserrno
_get_dstbias
_get_errno
_get_fmode
_get_heap_handle
_get_invalid_parameter_handler
_get_osfhandle
_get_osplatform
_get_osver
_get_output_format
_get_pgmptr
_get_printf_count_output
_get_purecall_handler
_get_sbh_threshold
_get_terminate
_get_timezone
_get_tzname
_get_unexpected
_get_winmajor
_get_winminor
_get_winver
_get_wpgmptr
_getch
_getch_nolock
_getche
_getche_nolock
_getcwd
_getdcwd
_getdcwd_nolock
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp

Sections

.text
Size: 396KB - Virtual size: 393KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/p2papp.dll
.dll regsvr32 windows:4 windows x86 arch:x86

fe1859b1f777b986d06791c7a6aea938

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\temp\p2papp\release\p2papp.pdb

Imports

kernel32

LocalFree
FormatMessageA
GetProcAddress
lstrlenA
lstrlenW
CompareStringA
CompareStringW
lstrcmpiA
lstrcmpiW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetStringTypeExA
GetStringTypeExW
InitializeCriticalSection
GetFileAttributesA
CreateDirectoryA
GetPrivateProfileStringA
WritePrivateProfileStringA
CloseHandle
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
LoadLibraryA
FreeLibrary
lstrcpynA
GetModuleHandleA
GetLocalTime
GetTickCount
GetTempPathA
DisableThreadLibraryCalls
InterlockedIncrement
InterlockedDecrement
WaitForSingleObject
ResetEvent
SetEvent
CreateEventA
Sleep
GetCurrentProcessId
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetSystemTimeAsFileTime
GetModuleFileNameA
GetVersion
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetLastError
RaiseException
WideCharToMultiByte
MultiByteToWideChar
GetCurrentThreadId
InterlockedExchange

user32

DestroyWindow
SendMessageA
DefWindowProcA
GetClassInfoExA
LoadCursorA
GetClassInfoExW
KillTimer
UnregisterClassA
CharLowerA
CharLowerW
CharUpperA
CharUpperW
RegisterClassExA
RegisterClassExW
IsWindow
SetTimer
CreateWindowExA
ShowWindow
UpdateWindow
PeekMessageA
TranslateMessage
LoadCursorW
DispatchMessageA

shell32

SHGetFolderPathA

ole32

CoTaskMemFree
CoCreateInstance
CLSIDFromString
CoLoadLibrary
CoFreeLibrary
StringFromCLSID

oleaut32

SysFreeString
SysAllocStringLen
SysStringLen
LoadRegTypeLi
LoadTypeLi

p2phttp

?CreateHttpClient@@YAHXZ
?DeleteHttpClient@@YAXXZ
?GetHttpClient@@YAPAVIHttpFile@@XZ

p2pdata

?CreateDataMgr@@YAHXZ
?GetDataMgr_Old@@YAPAVIP2PData@@XZ
?DeleteDataMgr@@YAXXZ

p2pcore

?CreateP2PCore@@YAXXZ
?DeleteP2PCore@@YAXXZ
?GetP2PCore_Old@@YAPAVIP2PCore@@XZ

atl80

ord18
ord64
ord49
ord23
ord61
ord15
ord32
ord58
ord31
ord22

msvcr80

_close
__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
??3@YAXPAX@Z
malloc
free
_CxxThrowException
wcscpy_s
sprintf_s
swprintf_s
strncpy
memset
_snprintf
strlen
wcstombs
strncat
_onexit
??_U@YAPAXI@Z
calloc
_recalloc
_resetstkoflw
__CxxFrameHandler3
wcslen
strrchr
_time32
memcpy
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
strchr
strstr
_atoi64
_i64toa
strcmp
atol
atoi
_invalid_parameter_noinfo
_vsnprintf_s
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
memcmp
_purecall
memmove_s
isalpha
_beginthreadex
_stat32
fclose
fread
fopen
sprintf
_errno
??_V@YAXPAX@Z
_read
_lseeki64
?_sopen@@YAHPBDHHH@Z
strcpy
fwrite
rand
strtol
memmove
printf
fflush
__iob_func
_except_handler4_common
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock

msvcp80

?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHPBD@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

ws2_32

send
recvfrom
sendto
socket
connect
shutdown
ntohs
inet_ntoa
WSAStartup
htons
htonl
ntohl
setsockopt
inet_addr
gethostbyname
WSAGetLastError
recv
closesocket

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetP2PAppNet
GetP2PDownload

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/p2pcore.dll
.dll windows:4 windows x86 arch:x86

b7d7f33fcffb5f95a30a875a2f315907

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\temp\p2papp\release\p2pcore.pdb

Imports

ws2_32

connect
socket
send
sendto
select
setsockopt
htons
bind
ntohs
inet_addr
htonl
ntohl
recv
inet_ntoa
gethostbyname
gethostname
ioctlsocket
closesocket
WSAStartup
WSAGetLastError
WSACleanup
recvfrom
__WSAFDIsSet

kernel32

QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
GetCurrentProcessId
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetSystemTimeAsFileTime
UnhandledExceptionFilter
ResetEvent
TryEnterCriticalSection
GetTempPathA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
InitializeCriticalSection
InterlockedDecrement
MultiByteToWideChar
lstrlenA
GetLastError
GetModuleHandleA
GetProcAddress
InterlockedExchange
WaitForSingleObject
CreateEventA
CloseHandle
SetEvent
GetTickCount
CreateFileMappingA
MapViewOfFile
Sleep
OpenFileMappingA
GetCurrentThreadId
GetLocalTime
LoadLibraryA
FreeLibrary
GetPrivateProfileStringA
CreateDirectoryA
WritePrivateProfileStringA
GlobalAlloc
GetFileAttributesA
GlobalFree

user32

GetWindowTextA
EnumDisplaySettingsA
GetAncestor
WindowFromPoint
GetLastInputInfo

advapi32

RegQueryValueExA
RegCreateKeyA
RegOpenKeyA
RegSetValueExA
RegCloseKey

shell32

SHGetFolderPathA

ole32

CoFreeLibrary
CoLoadLibrary
CoCreateGuid
CoInitialize
CoUninitialize

p2phttp

?GetHttpClient@@YAPAVIHttpFile@@XZ

p2pdata

?GetDataMgr_Old@@YAPAVIP2PData@@XZ

msvcp80

?allocate@?$allocator@D@std@@QAEPADI@Z
?deallocate@?$allocator@D@std@@QAEXPADI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHPBD@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?setbase@std@@YA?AU?$_Smanip@H@1@H@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z

msvcr80

_CxxThrowException
_beginthreadex
_vsnprintf_s
sprintf_s
_atoi64
isdigit
strchr
clock
strtol
_snprintf_s
_strdup
strstr
strncmp
_unlock
__dllonexit
_encode_pointer
_lock
_decode_pointer
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
__clean_type_info_names_internal
__CxxFrameHandler3
memset
memcpy
_onexit
??3@YAXPAX@Z
??_V@YAXPAX@Z
_purecall
??2@YAPAXI@Z
srand
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
_time32
rand
memmove_s
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
_invalid_parameter_noinfo
strncpy
free
malloc
strncat
_snprintf

Exports

Exports

??0IP2PCore@@QAE@ABV0@@Z
??0IP2PCore@@QAE@XZ
??1IP2PCore@@UAE@XZ
??4IP2PCore@@QAEAAV0@ABV0@@Z
??_7IP2PCore@@6B@
?CreateP2PCore@@YAXXZ
?DeleteP2PCore@@YAXXZ
?GetP2PCore_Old@@YAPAVIP2PCore@@XZ

Sections

.text
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/p2pdata.dll
.dll windows:4 windows x86 arch:x86

1874485c7b5afc7720bd3da7644d8e33

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\temp\p2papp\release\p2pdata.pdb

Imports

kernel32

InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
GetLastError
EnterCriticalSection
LeaveCriticalSection
GetVersion
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
CloseHandle
GetProcAddress
LoadLibraryA
FreeLibrary
InterlockedIncrement
InterlockedDecrement
lstrlenW
CompareStringA
CompareStringW
lstrcmpiA
lstrcmpiW
lstrlenA
GetCurrentThreadId
GetLocalTime
GetEnvironmentVariableA
GetEnvironmentVariableW
GetStringTypeExA
GetStringTypeExW
InitializeCriticalSection
DeleteCriticalSection
GetDiskFreeSpaceExA
FindClose
FindNextFileA
FindFirstFileA
GetTickCount
GetFileSize
CreateFileA
ReadFile
SetFilePointer
WriteFile
SetEndOfFile
DeviceIoControl
DeleteFileA
RemoveDirectoryA
GetCurrentProcessId
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetSystemTimeAsFileTime

user32

CharUpperA
CharLowerW
CharLowerA
CharUpperW

oleaut32

SysFreeString

msvcp80

??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??_D?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?close@?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

msvcr80

??0exception@std@@QAE@XZ
__CxxFrameHandler3
_purecall
??_V@YAXPAX@Z
memset
strlen
??0exception@std@@QAE@ABV01@@Z
_invalid_parameter_noinfo
_vsnprintf_s
calloc
_recalloc
??2@YAPAXI@Z
_resetstkoflw
wcslen
memcpy
??1exception@std@@UAE@XZ
strchr
strstr
strcmp
_snprintf
rand
srand
memcmp
memmove_s
_stat32
_mkdir
_access
?terminate@@YAXXZ
_except_handler4_common
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
wcscpy_s
_CxxThrowException
free
malloc
??3@YAXPAX@Z
_time32

Exports

Exports

??0IP2PData@@QAE@ABV0@@Z
??0IP2PData@@QAE@XZ
??1IP2PData@@UAE@XZ
??4IP2PData@@QAEAAV0@ABV0@@Z
??_7IP2PData@@6B@
?CreateDataMgr@@YAHXZ
?DeleteDataMgr@@YAXXZ
?GetDataMgr_Old@@YAPAVIP2PData@@XZ

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/p2phttp.dll
.dll windows:4 windows x86 arch:x86

1ebc3196b0c45e1daf9133f243336a4c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\temp\p2papp\release\p2phttp.pdb

Imports

kernel32

GetCurrentThreadId
GetLocalTime
GetTickCount
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
WaitForMultipleObjects
GetLastError
SetEvent
WaitForSingleObject
CreateEventA
Sleep
ResetEvent
MultiByteToWideChar
FreeLibrary
RaiseException
lstrlenW
lstrlenA
lstrcmpiA
DisableThreadLibraryCalls
GetModuleFileNameA
IsDBCSLeadByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetModuleHandleA
GetSystemTimeAsFileTime
GetCurrentProcessId
LoadLibraryA
GetProcAddress
CloseHandle
OpenFileMappingA
CreateFileMappingA
MapViewOfFile
LeaveCriticalSection
WideCharToMultiByte
EnterCriticalSection
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange

user32

UnregisterClassA
CharNextA

advapi32

RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey
RegDeleteKeyA
RegEnumKeyExA

ole32

CoTaskMemFree
CoCreateInstance
CoTaskMemRealloc
CoTaskMemAlloc
StringFromGUID2

oleaut32

SysFreeString
UnRegisterTypeLi
VarUI4FromStr
SysStringLen
RegisterTypeLi
SysAllocString
LoadTypeLi

p2pdata

?GetDataMgr_Old@@YAPAVIP2PData@@XZ

msvcr80

memmove
strstr
memset
_purecall
strlen
strncpy
atol
_vsnprintf_s
strncat_s
__CxxFrameHandler3
??2@YAPAXI@Z
_time32
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
_CxxThrowException
_invalid_parameter_noinfo
??0exception@std@@QAE@ABV01@@Z
memmove_s
_beginthread
isalpha
memcmp
malloc
free
strcpy_s
wcsncpy_s
strcat_s
_resetstkoflw
_mbsnbcpy_s
memcpy_s
_recalloc
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_except_handler4_common
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
memcpy
??_V@YAXPAX@Z
??3@YAXPAX@Z
??_U@YAPAXI@Z

msvcp80

??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

ws2_32

socket
send
htons
select
WSAStartup
inet_addr
gethostbyname
ntohs
inet_ntoa
ioctlsocket
connect
recv
setsockopt
closesocket
__WSAFDIsSet

Exports

Exports

??0IHttpFile@@QAE@ABV0@@Z
??0IHttpFile@@QAE@XZ
??1IHttpFile@@UAE@XZ
??4IHttpFile@@QAEAAV0@ABV0@@Z
??_7IHttpFile@@6B@
?CreateHttpClient@@YAHXZ
?DeleteHttpClient@@YAXXZ
?GetHttpClient@@YAPAVIHttpFile@@XZ

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/proxy.dll
.dll windows:4 windows x86 arch:x86

ebe2642f659cad320bbd9ac68426d7a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\QQLive_Dailybuild\src\symbol\Proxy.pdb

Imports

kernel32

lstrlenA
WideCharToMultiByte
FindResourceW
SizeofResource
LockResource
LoadResource
FindResourceExW
GetLastError
GetPrivateProfileIntW
GetPrivateProfileStructW
lstrlenW
GetACP
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetPrivateProfileStringW
MultiByteToWideChar
GetThreadLocale
GetVersionExA
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
HeapAlloc
HeapFree
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
GetProcessHeap
HeapSize
HeapReAlloc
InterlockedExchange

user32

GetDesktopWindow
UnregisterClassA
MessageBoxW

oleaut32

SysFreeString
SysAllocString

log

?GetUserAppDataPath2@@YA?AVCComBSTR@ATL@@XZ
?StrToAddr@@YAHAAUsockaddr_in@@PB_WF@Z
?DOLOG@@YAXPB_WZZ

encrypt

?oi_symmetry_decrypt2@@YAHPBEH0PAEPAH@Z

msvcp80

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ

ws2_32

WSAGetLastError
connect
inet_ntoa
gethostbyname
gethostname
setsockopt
closesocket
shutdown
bind
socket
htons
ntohs
send
select
recv

msvcr80

memcpy_s
atoi
??_V@YAXPAX@Z
sprintf_s
vsprintf_s
wcsstr
_wtoi
memmove_s
wcsncpy_s
free
memset
?terminate@@YAXXZ
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
_unlock
__dllonexit
_lock
_onexit
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
??3@YAXPAX@Z
memcpy
_CxxThrowException
??2@YAPAXI@Z
__CxxFrameHandler3

wininet

InternetOpenW
HttpQueryInfoW
InternetConnectW
InternetErrorDlg
InternetSetOptionW
HttpSendRequestW
HttpOpenRequestW
InternetQueryOptionW
InternetCloseHandle

Exports

Exports

??0CHttpAgent@@QAE@ABV0@@Z
??0CHttpAgent@@QAE@XZ
??0CIEProxyInfo@@QAE@ABV0@@Z
??0CIEProxyInfo@@QAE@XZ
??0CProxyTool@@QAE@ABV0@@Z
??0CProxyTool@@QAE@XZ
??0CSocks5Agent@@QAE@ABV0@@Z
??0CSocks5Agent@@QAE@XZ
??1CHttpAgent@@UAE@XZ
??1CIEProxyInfo@@UAE@XZ
??1CProxyTool@@UAE@XZ
??1CSocks5Agent@@UAE@XZ
??4CHttpAgent@@QAEAAV0@ABV0@@Z
??4CIEProxyInfo@@QAEAAV0@ABV0@@Z
??4CProxyTool@@QAEAAV0@ABV0@@Z
??4CSocks5Agent@@QAEAAV0@ABV0@@Z
??_7CHttpAgent@@6B@
??_7CIEProxyInfo@@6B@
??_7CProxyTool@@6B@
??_7CSocks5Agent@@6B@
?Base64Encode@CHttpAgent@@AAEHPBEHPADPAHK@Z
?CreateHttpAgent@CHttpAgent@@QAEHAAIPB_WG1G11@Z
?CreateHttpProxyTCPSocket@CProxyTool@@QAEHAAIPB_WG111GAAVCComBSTR@ATL@@@Z
?CreateProxyTCPSocket@CProxyTool@@QAEHAAIPB_WGAAVCComBSTR@ATL@@@Z
?CreateSocks5ProxyTCPSocket@CProxyTool@@QAEHAAIPB_WG111GAAVCComBSTR@ATL@@@Z
?CreateSocks5ProxyUDPSocket@CProxyTool@@QAEHAAI0AAUsockaddr_in@@PB_WG222GAAVCComBSTR@ATL@@@Z
?GetBrowserProxyAddr@CIEProxyInfo@@AAEHHPB_WAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AAG@Z
?GetHttpReplyCode@CHttpAgent@@AAEHPAD@Z
?GetIEProxyInfo@CIEProxyInfo@@QAEHHHAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AAG00@Z
?GetProxyUserNamePswFromIE@CIEProxyInfo@@AAEHAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0@Z
?GetUserProxySetting@CProxyTool@@QAEHAAHAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AAG11@Z
?GetUserProxyTypeSetting@CProxyTool@@QAEHXZ
?IsAllowProxy@CSocks5Agent@@AAEHPAEJH@Z
?IsHTTPNeedAuthenticate@CIEProxyInfo@@QAEHXZ
?IsIESetProxy@CIEProxyInfo@@QAEHXZ
?IsUseProxy@CProxyTool@@QAEHXZ
?MakeUdpProxySendBuf@CProxyTool@@QAEHPAEH0AAHKG@Z
?ParserUdpProxyRecvBuf@CProxyTool@@QAEHPAEH0AAHAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AAG@Z
?ProcProxyReq@CSocks5Agent@@AAEHAAIAAUtagPROXYINFO@1@AAKAAGHG@Z
?ProcProxyReqDest@CSocks5Agent@@AAEHAAIAAUtagPROXYINFO@1@AAKAAGHG@Z
?ProcProxyReqUserPassword@CSocks5Agent@@AAEHAAIAAUtagPROXYINFO@1@AAKAAGHG@Z
?SetProxyInfo@CSocks5Agent@@QAEXAAUtagPROXYINFO@1@PB_WF1F11@Z
?StartSOCKET5ProxyTCP@CSocks5Agent@@QAEHAAUtagPROXYINFO@1@AAI@Z
?StartSOCKET5ProxyUDP@CSocks5Agent@@QAEHAAUtagPROXYINFO@1@GAAIAAUsockaddr_in@@@Z
?TestHttp@CProxyTool@@AAEXPAUHWND__@@PB_WG11@Z
?TestProxy@CProxyTool@@QAEXPAUHWND__@@@Z
?TestSocks5@CProxyTool@@AAEXPAUHWND__@@PB_WG11@Z

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/qqlive.ini
QQLive/uninstall.exe
.exe windows:5 windows x86 arch:x86

b729b61eb1515fcf7b3e511e4e66258b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathW
GetShortPathNameW
GetFullPathNameW
MoveFileW
SetCurrentDirectoryW
GetFileAttributesW
GetLastError
CreateDirectoryW
SetFileAttributesW
Sleep
GetTickCount
CreateFileW
GetFileSize
GetModuleFileNameW
GetCurrentProcess
CopyFileW
ExitProcess
GetWindowsDirectoryW
GetTempPathW
GetCommandLineW
SetErrorMode
CloseHandle
lstrlenW
lstrcpynW
GetDiskFreeSpaceW
GlobalUnlock
GlobalLock
CreateThread
LoadLibraryW
CreateProcessW
lstrcmpiA
GetTempFileNameW
lstrcatW
GetProcAddress
LoadLibraryA
GetModuleHandleA
OpenProcess
lstrcpyW
GetVersionExW
GetSystemDirectoryW
GetVersion
lstrcpyA
RemoveDirectoryW
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GlobalFree
GetModuleHandleW
LoadLibraryExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
WideCharToMultiByte
MulDiv
lstrlenA
WriteFile
ReadFile
MultiByteToWideChar
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
lstrcpynA

user32

ScreenToClient
GetMessagePos
CallWindowProcW
IsWindowVisible
LoadBitmapW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuW
CreatePopupMenu
GetSystemMetrics
EndDialog
EnableMenuItem
GetSystemMenu
SetClassLongW
IsWindowEnabled
SetWindowPos
DialogBoxParamW
CheckDlgButton
CreateWindowExW
SystemParametersInfoW
RegisterClassW
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharNextA
CharUpperW
CharPrevW
DispatchMessageW
PeekMessageW
wsprintfA
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
LoadCursorW
SetCursor
GetWindowLongW
GetSysColor
CharNextW
GetClassInfoW
ExitWindowsEx
FindWindowExW
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
IsWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor
SelectObject

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHFileOperationW
SHGetSpecialFolderLocation

advapi32

RegEnumKeyW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW
RegEnumValueW

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 409KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 932KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:5 windows x86 arch:x86

cd90e33ffbc335413a25300c682c83df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpiW
GetModuleHandleW
GlobalLock
GlobalUnlock
GetCurrentDirectoryW
SetCurrentDirectoryW
GetPrivateProfileIntW
GetPrivateProfileStringW
lstrcatW
WritePrivateProfileStringW
lstrcpynW
lstrlenW
lstrcpyW
GlobalFree
GlobalAlloc

user32

OpenClipboard
DestroyIcon
LoadCursorW
DispatchMessageW
TranslateMessage
GetMessageW
IsDialogMessageW
ShowWindow
SetWindowLongW
GetClientRect
SetWindowRgn
LoadIconW
LoadImageW
CreateWindowExW
MapDialogRect
GetClipboardData
GetWindowRect
CreateDialogParamW
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
SetCursor
DrawTextW
GetWindowLongW
DrawFocusRect
CallWindowProcW
PostMessageW
wsprintfW
CharNextW
MessageBoxW
CloseClipboard
GetDlgCtrlID
MapWindowPoints
SetWindowPos
PtInRect
GetWindowTextW
SetWindowTextW
SendMessageW
DestroyWindow

gdi32

SelectObject
CreateRectRgn
GetObjectW
CombineRgn
DeleteObject
CreateCompatibleDC
GetDIBits
SetTextColor

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteW
SHGetDesktopFolder

comdlg32

GetOpenFileNameW
CommDlgExtendedError
GetSaveFileNameW

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ProcDll.dll
.dll windows:4 windows x86 arch:x86

86ef946f073dd0b72f142d1baf2c76f3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\My Documents\SVNProject\QQLive_proj\trunk\Setup\PluginSource\ProcDLL\Release\ProcDLL.pdb

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
GetLastError
InterlockedIncrement
DebugBreak
OutputDebugStringW
lstrlenA
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
CreateDirectoryW
Sleep
CreateThread
GetCurrentThreadId
GetThreadLocale
SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
CreateFileA
GetLocaleInfoW
TerminateProcess
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
lstrlenW
SetConsoleCtrlHandler
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetFileAttributesW
GetVersionExW
GetProcAddress
LoadLibraryW
OpenProcess
CloseHandle
lstrcmpiW
FreeLibrary
LoadLibraryA
GetTimeZoneInformation
GetLongPathNameW
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
MultiByteToWideChar
GlobalFree
WideCharToMultiByte
GlobalAlloc
lstrcpynW
GetStartupInfoA
GetFileType
SetHandleCount
LCMapStringW
LCMapStringA
HeapSize
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
lstrcpyW
InterlockedExchange
HeapCreate
HeapDestroy
RtlUnwind
HeapAlloc
HeapFree
HeapReAlloc
GetCommandLineA
GetVersionExA
GetProcessHeap
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThread
FatalAppExitA
VirtualFree
VirtualAlloc

user32

SendMessageW
IsWindow
wsprintfW
LoadStringW
GetClassNameW
FillRect
LoadBitmapW
ReleaseDC
GetForegroundWindow
GetWindowThreadProcessId
SetForegroundWindow
IsWindowVisible
AttachThreadInput
CreateDialogParamW
GetWindowLongW
SetLayeredWindowAttributes
CreateWindowExW
ShowWindow
TranslateMessage
DispatchMessageW
GetMessageW
IsDialogMessageW
DestroyWindow
PostMessageW
SetWindowPos
RedrawWindow
SetWindowLongW
CallWindowProcW
GetClientRect
BeginPaint
EndPaint
CharNextW
UnregisterClassA

gdi32

SetBkMode
CreateFontW
SetTextColor
TextOutW
DeleteObject
GetObjectW
CreateCompatibleDC
SelectObject
StretchBlt
CreateSolidBrush

advapi32

RegSetValueExW
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW

shell32

SHGetSpecialFolderPathW

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc

oleaut32

VarUI4FromStr
SysFreeString

comctl32

_TrackMouseEvent

msimg32

TransparentBlt

Exports

Exports

CheckInstallType
CreatePath
Destroy
GetAppDataPath
HasUserAborted
IsProcRunning
KillProcRunning
ParseCmdLine
SetCompletionRate
SetInstallProgress
Show
Update
getWindow

Sections

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioC.ini
$PLUGINSDIR/modern-header.bmp
QQLive/vqqsdl.dll
.dll regsvr32 windows:4 windows x86 arch:x86

1249727b8543306f447f3354fe4519c7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

inet_addr
setsockopt
bind
socket
recvfrom
__WSAFDIsSet
connect
recv
sendto
gethostname
WSACleanup
WSAStartup
WSAGetLastError
ioctlsocket
closesocket
ntohl
ntohs
htons
select
send
gethostbyname
htonl

kernel32

LoadLibraryA
lstrcpyA
MultiByteToWideChar
lstrlenA
lstrcatA
WideCharToMultiByte
lstrlenW
GetModuleFileNameA
GetShortPathNameA
GetProcAddress
SizeofResource
LoadResource
FindResourceA
GetLastError
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
FreeLibrary
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
GetModuleHandleA
SetEvent
CreateEventA
GetTempPathA
GetCurrentDirectoryA
CloseHandle
TerminateThread
WaitForSingleObject
Sleep
GetTickCount

user32

CharNextA
PostMessageA

advapi32

RegQueryInfoKeyA
RegCreateKeyA
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyA
RegEnumValueA

ole32

CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoLoadLibrary
CoFreeLibrary
CoUninitialize
CoCreateGuid
CoInitialize
CoCreateInstance

oleaut32

VarUI4FromStr
RegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString

msvcrt

??1type_info@@UAE@XZ
_adjust_fdiv
_onexit
__dllonexit
?terminate@@YAXXZ
_except_handler3
tolower
_ftol
clock
sscanf
strchr
strtol
isdigit
rename
remove
_access
_chsize
_filelengthi64
_lseeki64
_read
_write
_commit
_sopen
strncat
srand
time
strncpy
_beginthreadex
rand
_CxxThrowException
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
_splitpath
strcpy
strcat
memset
realloc
malloc
free
memcmp
_purecall
??2@YAPAXI@Z
__CxxFrameHandler
strlen
memcpy
??3@YAXPAX@Z
_close
_initterm

msvcp60

??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??1?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0ABV?$allocator@D@1@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??_D?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?setbase@std@@YA?AU?$_Smanip@H@1@H@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
??0logic_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??_7out_of_range@std@@6B@
??1out_of_range@std@@UAE@XZ
??0out_of_range@std@@QAE@ABV01@@Z
??0logic_error@std@@QAE@ABV01@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??_7bad_alloc@std@@6B@
??1bad_alloc@std@@UAE@XZ
??0bad_alloc@std@@QAE@ABV01@@Z
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQLive/whatsnew.txt
QQLive/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

b8e626ae10ee630564d3b1941cb77d26

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

proxy

encrypt

msvcp80

log

msvcr80

urlmon

ws2_32

Exports

Exports

Sections

.text Size: 232KB - Virtual size: 229KB

.rdata Size: 100KB - Virtual size: 99KB

.data Size: 12KB - Virtual size: 13KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 24KB - Virtual size: 23KB

a706a267d367e9d0ed9832c264dd1153

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

ole32

oleaut32

log

atl80

shlwapi

msvcp80

wininet

httpdownload

msvcr80

ws2_32

Exports

Exports

Sections

.text Size: 144KB - Virtual size: 142KB

.rdata Size: 56KB - Virtual size: 52KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 24KB - Virtual size: 21KB

.reloc Size: 20KB - Virtual size: 19KB

28ef09c20af489ece34d3ec27d29df90

Headers

File Characteristics

PDB Paths

Imports

log

mfc80u

msvcr80

kernel32

user32

advapi32

ole32

oleaut32

atl80

msvcp80

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 36KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 232KB - Virtual size: 229KB

.rdata
Size: 100KB - Virtual size: 99KB

.data
Size: 12KB - Virtual size: 13KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 24KB - Virtual size: 23KB

.text
Size: 144KB - Virtual size: 142KB

.rdata
Size: 56KB - Virtual size: 52KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 24KB - Virtual size: 21KB

.reloc
Size: 20KB - Virtual size: 19KB

.text
Size: 40KB - Virtual size: 36KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 8KB - Virtual size: 5KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 868B

.rsrc
Size: 512B - Virtual size: 428B

.reloc
Size: 512B - Virtual size: 460B

.text
Size: 48KB - Virtual size: 45KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 5KB

.reloc
Size: 8KB - Virtual size: 5KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

7b:92:ae:b3:83:26:5c:7c:64:53:bd:92:a0:40:a0:20
Certificate

85:07:a8:a6:40:7d:10:1b:44:a6:28:2d:93:82:07:9f:76:b6:81:8a
Signer