df80bb9e554c8cec9045af62fd841560_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

df80bb9e554c8cec9045af62fd841560_JaffaCakes118
Size

26.7MB
MD5

df80bb9e554c8cec9045af62fd841560
SHA1

38a4cc516e250ac6ed8f1af175a71fcc1a3161cf
SHA256

70e2d5e6acab4b020a35c34c8c585eabbb9d0b12fb048c33d3629ddacfc3a809
SHA512

fa558268260a6249c790abdd78b560bfc908de11593e2d3b29325b4e835ee95ed9da95ae648eeaf417774f0ce267f07e49939460712d84c04d9fba91627b87e7
SSDEEP

786432:Y/qzgFHNh4bxhuLoEzgAdyubvbFkDD7kvOdNGgJXC:YYMv4VMoELXvaDKOTGwXC

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/InstallerDU-2.4.3.1734.exe	upx

Unsigned PE 49 IoCs

Checks for missing Authenticode signature.

resource
unpack001/IDT/WDM/Vista/IDTPIMA.exe
unpack001/IDT/WDM/Vista/IDTPMA64.exe
unpack001/IDT/WDM/Vista/IDTmini2.exe
unpack001/IDT/WDM/Vista/idt64mp1.exe
unpack001/IDT/WDM/Vista/idt64mp2.exe
unpack001/IDT/WDM/Vista/idtcpl.cpl
unpack001/IDT/WDM/Vista/idtcpl64.cpl
unpack001/IDT/WDM/Vista/idtmini1.exe
unpack001/IDT/WDM/Vista/staco.dll
unpack001/IDT/WDM/Vista/staco64.dll
unpack001/IDT/WDM/Vista/stacsv.exe
unpack001/IDT/WDM/Vista/stacsv64.exe
unpack001/IDT/WDM/Vista/stapi32.dll
unpack001/IDT/WDM/Vista/stapi64.dll
unpack001/IDT/WDM/Vista/stapo.dll
unpack001/IDT/WDM/Vista/stapo64.dll
unpack001/IDT/WDM/Vista/stcplx.dll
unpack001/IDT/WDM/Vista/stcplx64.dll
unpack001/IDT/WDM/Vista/stlang.dll
unpack001/IDT/WDM/Vista/stlang64.dll
unpack001/IDT/WDM/Vista/sttray.exe
unpack001/IDT/WDM/Vista/sttray64.exe
unpack001/IDT/WDM/Vista/stwrt.sys
unpack001/IDT/WDM/Vista/stwrt64.sys
unpack001/IDT/WDM/Vista/suhlp.exe
unpack001/IDT/WDM/Vista/suhlp64.exe
unpack001/IDT/WDM/WinXP/idtsg.cpl
unpack001/IDT/WDM/WinXP/idtsg64.cpl
unpack001/IDT/WDM/WinXP/stacapi.dll
unpack001/IDT/WDM/WinXP/staco.dll
unpack001/IDT/WDM/WinXP/staco64.dll
unpack001/IDT/WDM/WinXP/stacsv.exe
unpack001/IDT/WDM/WinXP/stacsv64.exe
unpack001/IDT/WDM/WinXP/stapi64x.dll
unpack001/IDT/WDM/WinXP/sthda.sys
unpack001/IDT/WDM/WinXP/sthda64.sys
unpack001/IDT/WDM/WinXP/stlang.dll
unpack001/IDT/WDM/WinXP/stlang64.dll
unpack001/IDT/WDM/WinXP/sttray.exe
unpack001/IDT/WDM/WinXP/sttray64.exe
unpack001/IDT/WDM/WinXP/suhlp.exe
unpack001/IDT/WDM/WinXP/suhlp64.exe
unpack002/DotNetInstaller.exe
unpack002/IKernel.dll
unpack002/IScript.dll
unpack002/IUser.dll
unpack002/ctor.dll
unpack002/objectps.dll
unpack001/InstallerDU-2.4.3.1734.exe

Files

df80bb9e554c8cec9045af62fd841560_JaffaCakes118
.zip
IDT/HDAQFE/srvrtm/us/kb888111srvrtm.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/12/2000, 08:00

Not After

12/11/2005, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:0e:7d:a7:00:00:00:00:00:48
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/10/2003, 05:59

Not After

25/01/2005, 06:09

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

79:77:6f:bb:8f:77:d0:48:d4:3c:ac:8d:1a:79:98:41:41:44:8d:ff
Signer

Actual PE Digest

79:77:6f:bb:8f:77:d0:48:d4:3c:ac:8d:1a:79:98:41:41:44:8d:ff

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 714KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/HDAQFE/srvsp1/us/KB901105.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:0c:ab:11:d8:22:ef:7d:6c:79:7e
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

23/05/2002, 08:00

Not After

25/09/2011, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:87:58:00:03:00:00:00:5a
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

05/01/2005, 23:20

Not After

05/04/2006, 23:30

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

2f:9f:8f:6e:18:d7:2a:6e:b5:bf:4c:b3:6f:0c:05:67:03:16:33:7c
Signer

Actual PE Digest

2f:9f:8f:6e:18:d7:2a:6e:b5:bf:4c:b3:6f:0c:05:67:03:16:33:7c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 505KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/HDAQFE/win2k3/jpn/KB901105.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:0c:ab:11:d8:22:ef:7d:6c:79:7e
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

23/05/2002, 08:00

Not After

25/09/2011, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:87:58:00:03:00:00:00:5a
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

05/01/2005, 23:20

Not After

05/04/2006, 23:30

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

a6:e6:ac:67:89:c4:e4:83:60:bf:98:a6:f2:b0:62:fd:bb:1b:18:37
Signer

Actual PE Digest

a6:e6:ac:67:89:c4:e4:83:60:bf:98:a6:f2:b0:62:fd:bb:1b:18:37

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 698KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/HDAQFE/win2k3/us/kb901105.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:0c:ab:11:d8:22:ef:7d:6c:79:7e
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

23/05/2002, 08:00

Not After

25/09/2011, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:87:58:00:03:00:00:00:5a
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

05/01/2005, 23:20

Not After

05/04/2006, 23:30

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

95:7b:73:0b:11:d4:6c:0e:da:f1:98:19:67:e8:84:dd:16:30:bd:32
Signer

Actual PE Digest

95:7b:73:0b:11:d4:6c:0e:da:f1:98:19:67:e8:84:dd:16:30:bd:32

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 696KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/HDAQFE/win2k_xp/us/kb835221.exe
.exe windows:5 windows x86 arch:x86

37b5470d0de58de885e56867363c66a9

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/12/2000, 08:00

Not After

12/11/2005, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:0e:7d:a7:00:00:00:00:00:48
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/10/2003, 05:59

Not After

25/01/2005, 06:09

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

0e:f2:cf:0e:e3:89:d2:a7:bb:45:eb:b0:5f:79:84:e0:86:9b:e4:75
Signer

Actual PE Digest

0e:f2:cf:0e:e3:89:d2:a7:bb:45:eb:b0:5f:79:84:e0:86:9b:e4:75

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
CreateFileA
FindClose
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
GetModuleFileNameA
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 604KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/HDAQFE/win2ksp4/us/kb888111w2ksp4.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/12/2000, 08:00

Not After

12/11/2005, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:0e:7d:a7:00:00:00:00:00:48
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/10/2003, 05:59

Not After

25/01/2005, 06:09

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

4e:6d:50:d7:1d:84:7c:53:6c:ac:82:da:00:70:2b:46:c9:19:0d:c5
Signer

Actual PE Digest

4e:6d:50:d7:1d:84:7c:53:6c:ac:82:da:00:70:2b:46:c9:19:0d:c5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 686KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/HDAQFE/xpsp1/us/kb888111xpsp1.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/12/2000, 08:00

Not After

12/11/2005, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:0e:7d:a7:00:00:00:00:00:48
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/10/2003, 05:59

Not After

25/01/2005, 06:09

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

25:90:a7:d4:a3:67:d4:b9:98:16:1d:e4:e5:97:68:d0:98:d6:37:a1
Signer

Actual PE Digest

25:90:a7:d4:a3:67:d4:b9:98:16:1d:e4:e5:97:68:d0:98:d6:37:a1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 717KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/HDAQFE/xpsp2/us/kb888111xpsp2.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/12/2000, 08:00

Not After

12/11/2005, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:0e:7d:a7:00:00:00:00:00:48
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/10/2003, 05:59

Not After

25/01/2005, 06:09

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

80:16:8d:e6:75:93:e7:2b:6d:3c:16:f2:b1:e9:61:bd:e1:a2:9e:82
Signer

Actual PE Digest

80:16:8d:e6:75:93:e7:2b:6d:3c:16:f2:b1:e9:61:bd:e1:a2:9e:82

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 664KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/PCAudio.ico
IDT/Setup.ini
IDT/WDM/Vista/E_WRT_202_G2_DY.INI
IDT/WDM/Vista/E_WRT_206_G2_DY-202.INI
IDT/WDM/Vista/E_WRT_206_G2_DY.INI
IDT/WDM/Vista/IDTPIMA.exe
.exe windows:6 windows x86 arch:x86

c29cfd6f397d2fba50b0a300950ae288

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\pima\objfre_wlh_x86\i386\IDTPIMA.pdb

Imports

kernel32

GetVersionExW
Sleep
OutputDebugStringW
GetLocalTime
CreateFileA
CloseHandle
VirtualQuery
GetSystemInfo
VirtualProtect
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetCommandLineA
GetVersionExA
RaiseException
RtlUnwind
GetLastError
HeapFree
HeapAlloc
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThreadId
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
EnterCriticalSection
LeaveCriticalSection
OutputDebugStringA
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
HeapSize
LoadLibraryA
InitializeCriticalSection
GetModuleHandleW
SetFilePointer
GetConsoleCP
GetConsoleMode
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
FlushFileBuffers
SetStdHandle

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
VariantClear
VariantInit
SysFreeString

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/IDTPMA64.exe
.exe windows:6 windows x64 arch:x64

3f1eb3269e75299b2daf2c7f1b9b1306

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\pima\objfre_wlh_amd64\amd64\IDTPMA64.pdb

Imports

kernel32

GetVersionExW
OutputDebugStringW
Sleep
GetLocalTime
CloseHandle
CreateFileW
FlushFileBuffers
WriteConsoleW
SetStdHandle
VirtualQuery
GetSystemInfo
SetThreadStackGuarantee
VirtualAlloc
GetCommandLineA
RaiseException
GetLastError
HeapFree
RtlPcToFileHeader
HeapAlloc
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
EncodePointer
DecodePointer
FlsFree
SetLastError
FlsSetValue
FlsGetValue
GetCurrentThreadId
FlsAlloc
HeapSetInformation
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RtlUnwindEx
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
GetACP
GetOEMCP
OutputDebugStringA
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
LoadLibraryW
LCMapStringW
MultiByteToWideChar
GetStringTypeW
SetFilePointer
GetConsoleCP
GetConsoleMode
VirtualProtect

ole32

CoCreateInstance
CoUninitialize
CoInitialize

oleaut32

SafeArrayUnaccessData
SysAllocString
VariantClear
VariantInit
SafeArrayAccessData
SafeArrayCreate
SysFreeString

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/IDTmini2.exe
.exe windows:4 windows x86 arch:x86

24938c04eaa91360dad6a3089fc67d0a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

stlang

LocalizeSetLangID
LocalizeGetLangID
LocalizeString

mfc42u

ord540
ord5871
ord2854
ord613
ord1634
ord1633
ord6871
ord289
ord1143
ord2114
ord4155
ord6354
ord1088
ord6193
ord283
ord4128
ord4292
ord5784
ord472
ord2559
ord3614
ord2855
ord823
ord535
ord5568
ord861
ord2910
ord2810
ord538
ord858
ord2606
ord4273
ord6655
ord4667
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord4074
ord4692
ord5303
ord5285
ord5710
ord4616
ord3733
ord617
ord815
ord296
ord561
ord641
ord2506
ord5297
ord5208
ord2613
ord1131
ord2717
ord5261
ord4370
ord4847
ord4992
ord6048
ord1767
ord4401
ord5276
ord4419
ord3592
ord324
ord2294
ord4229
ord2971
ord5210
ord4124
ord6195
ord1165
ord5949
ord3087
ord4704
ord6211
ord922
ord2858
ord3871
ord470
ord2634
ord6107
ord6330
ord5142
ord4688
ord5798
ord665
ord1971
ord5438
ord3313
ord5180
ord354
ord6919
ord4197
ord5436
ord6379
ord5446
ord6390
ord5674
ord537
ord3312
ord5785
ord5732
ord4272
ord6279
ord6278
ord2756
ord6867
ord2236
ord2372
ord3133
ord3792
ord3568
ord3688
ord6168
ord5783
ord4118
ord1921
ord3716
ord795
ord3711
ord790
ord3915
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4390
ord1768
ord4073
ord6051
ord2567
ord2406
ord3621
ord800
ord2859
ord5977
ord5047
ord2371
ord4279
ord2397
ord4270
ord5781
ord567
ord556
ord323
ord609
ord809
ord640
ord3569
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord755
ord1173
ord1240
ord6466
ord1571
ord600
ord826
ord269
ord3658
ord825
ord3566
ord3397
ord2806
ord1569

msvcrt

_controlfp
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_onexit
__dllonexit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
iswspace
_wcsnicmp
_wtoi
wcstol
wcscmp
memmove
wcsstr
wcsncmp
wcschr
wcscpy
wcsncpy
_ftol
wcslen
__CxxFrameHandler

kernel32

GetStartupInfoW
GetModuleHandleW
LocalAlloc
LocalFree
LoadLibraryA
GetProcAddress
GetVersionExW
ExpandEnvironmentStringsW
MultiByteToWideChar
GetModuleFileNameW
GetCurrentThreadId

user32

GetWindowRect
OffsetRect
DrawStateW
FillRect
DrawFocusRect
ReleaseDC
GetDC
CreateIconIndirect
GetIconInfo
LoadImageW
InflateRect
GetClientRect
GetSysColor
DestroyMenu
DestroyCursor
DestroyIcon
GetWindowLongW
SendMessageW
GetNextDlgTabItem
GetParent
SetCursor
InvalidateRect
SetRect
GetActiveWindow
WindowFromPoint
ClientToScreen
PostMessageW
TrackPopupMenuEx
GetSubMenu
FrameRect
EnableWindow
ReleaseCapture
SetCapture
GetCapture
SetFocus
SetForegroundWindow
AttachThreadInput
GetWindowThreadProcessId
FindWindowW
LoadIconW
SetWindowRgn
SystemParametersInfoW
LoadBitmapW
SetWindowLongW
AppendMenuW
GetSystemMenu
DrawIcon
GetSystemMetrics
IsIconic
ScreenToClient
SetWindowPos
GetDlgItem
GetNextDlgGroupItem
GetFocus
DrawEdge
SetLayeredWindowAttributes
RedrawWindow
CopyRect

gdi32

DeleteDC
Rectangle
CreatePen
CreateSolidBrush
ExtCreatePen
RoundRect
Arc
GetTextColor
GetTextExtentPoint32W
CreateRectRgn
CombineRgn
CreateFontIndirectW
SetPixel
SetTextColor
CreateCompatibleBitmap
GetStockObject
GetPixel
GetDeviceCaps
CreateBitmap
SetBkColor
DeleteObject
CreateCompatibleDC
SelectObject
BitBlt
GetObjectW

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

ShellExecuteExW

comctl32

_TrackMouseEvent
ord17

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SysFreeString
SysAllocString

winmm

PlaySoundW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

gdiplus

GdipCreateFromHDC
GdipSetSmoothingMode
GdipCreateSolidFill
GdipDeleteBrush
GdipDeleteGraphics
GdipFillPath
GdipCloneBrush
GdipAlloc
GdipCreatePath
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdiplusShutdown
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromFile
GdipCloneImage
GdipDisposeImage
GdipFree
GdipDeletePath

shlwapi

PathFindFileNameW
PathSkipRootW
PathParseIconLocationW
PathMakePrettyW
PathCanonicalizeW
PathFileExistsW
PathRemoveArgsW

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 424KB - Virtual size: 420KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/Karaoke_X404.chm
.chm
IDT/WDM/Vista/Karaoke_X409.chm
.chm
IDT/WDM/Vista/Karaoke_X804.chm
.chm
IDT/WDM/Vista/STWRT.INF
IDT/WDM/Vista/STWRT64.INF
IDT/WDM/Vista/Stwrt.ini
IDT/WDM/Vista/idt64mp1.exe
.exe windows:6 windows x64 arch:x64

bb5376a06a8c94c944b4208c0a730d76

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\idtcpl\minipanel1\objfre_wnet_amd64\amd64\idt64mp1.pdb

Imports

kernel32

Sleep
VirtualProtect
GetModuleFileNameW
MultiByteToWideChar
GlobalLock
GlobalAlloc
LoadResource
LockResource
SizeofResource
FindResourceW
GlobalFree
GlobalUnlock
GetCurrentThreadId
ExpandEnvironmentStringsW
LocalFree
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetModuleHandleW
SetUnhandledExceptionFilter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
GetStartupInfoW

gdi32

CombineRgn
Rectangle
GetTextExtentPoint32W
RoundRect
CreateSolidBrush
CreatePen
CreateFontIndirectW
Ellipse
GetStockObject
CreateRectRgn
CreateCompatibleBitmap
GetObjectW
SetPixel
GetPixel
DeleteDC
DeleteObject
CreateBitmap
CreateCompatibleDC
SelectObject
SetBkColor
BitBlt
SetTextColor

user32

FrameRect
GetIconInfo
GetActiveWindow
OffsetRect
InflateRect
CreateIconIndirect
ReleaseDC
GetNextDlgTabItem
GetClientRect
DrawFocusRect
WindowFromPoint
SetWindowPos
IsIconic
GetDC
ClientToScreen
GetWindowRect
EnableWindow
GetParent
GetSysColor
GetWindowLongW
InvalidateRect
FillRect
DrawStateW
GetSubMenu
SendMessageW
TrackPopupMenuEx
PostMessageW
DestroyCursor
DestroyMenu
SetCursor
SetRect
PtInRect
DrawEdge
GetFocus
GetSystemMetrics
AttachThreadInput
GetWindowThreadProcessId
SetForegroundWindow
SetFocus
FindWindowW
EnableMenuItem
SetRectEmpty
KillTimer
LoadBitmapW
SetTimer
LoadIconW
SystemParametersInfoW
GetDlgItem
SetWindowRgn
GetSystemMenu
DrawIcon
RemoveMenu
AppendMenuW
DestroyIcon
SetWindowLongW
SetLayeredWindowAttributes
RedrawWindow
LoadImageW
CopyRect

mfc42u

ord1584
ord6704
ord4521
ord1977
ord5807
ord3440
ord5602
ord877
ord371
ord5425
ord5570
ord6499
ord2903
ord6767
ord6632
ord627
ord2842
ord5632
ord5687
ord4721
ord5245
ord5406
ord6437
ord1777
ord1259
ord6614
ord4771
ord6224
ord3761
ord1463
ord5702
ord6328
ord3177
ord5077
ord4860
ord4557
ord6225
ord2329
ord337
ord1041
ord6243
ord626
ord3790
ord1040
ord822
ord4131
ord4770
ord2420
ord3742
ord4988
ord2427
ord4371
ord650
ord3164
ord1055
ord2393
ord4077
ord336
ord4083
ord851
ord4082
ord3046
ord3166
ord4609
ord3052
ord5699
ord3366
ord3231
ord3862
ord4815
ord3362
ord3243
ord3049
ord2140
ord2457
ord5683
ord5712
ord1736
ord5484
ord3933
ord5467
ord6814
ord2906
ord2060
ord3740
ord2670
ord1441
ord4789
ord5229
ord4017
ord310
ord826
ord2574
ord528
ord2408
ord6102
ord2138
ord1574
ord6131
ord4621
ord4442
ord286
ord4694
ord6887
ord6351
ord6812
ord5586
ord2399
ord1646
ord5663
ord4473
ord4741
ord6127
ord3830
ord1778
ord4365
ord3743
ord6440
ord1647
ord1387
ord2898
ord4599
ord6612
ord665
ord303
ord1122
ord4752
ord525
ord984
ord1930
ord2846
ord620
ord1035
ord1126
ord6886
ord6511
ord6880
ord6832
ord5815
ord3783
ord6821
ord6130
ord5804
ord2900
ord6133
ord4014
ord6577
ord1029
ord3889
ord4187
ord624
ord2975
ord5887
ord832
ord6076
ord3437
ord622
ord6015
ord3751
ord4743
ord2589
ord4542
ord2023
ord2422
ord4436
ord4601
ord6705
ord6708
ord4602
ord2783
ord5979
ord2629
ord2784
ord3916
ord4983
ord6053
ord5711
ord5730
ord5065
ord4368
ord2752
ord5724
ord5722
ord3468
ord2412
ord5615
ord4598
ord1388
ord4191
ord6071
ord2515
ord5039
ord2559
ord659
ord4836
ord1063
ord6813
ord318
ord834
ord5630
ord5723
ord2517
ord852

msvcrt

memset
memcpy
?terminate@@YAXXZ
_onexit
_lock
__dllonexit
_unlock
??1type_info@@UEAA@XZ
__set_app_type
_fmode
_commode
__setusermatherr
_initterm
_wcmdln
exit
_cexit
_exit
_XcptFilter
__C_specific_handler
__wgetmainargs
_callnewh
malloc
_CxxThrowException
free
??0exception@@QEAA@AEBV0@@Z
??1exception@@UEAA@XZ
?what@exception@@UEBAPEBDXZ
??0exception@@QEAA@AEBQEBDH@Z
_amsg_exit
__CxxFrameHandler
_wtoi
wcstol
wcsstr
wcschr
memmove
wcsncmp
iswspace
_wcsnicmp
floorf

ole32

CoTaskMemFree
CoInitialize
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal

oleaut32

SysFreeString
SafeArrayGetElement
VariantClear
SysAllocString

shlwapi

PathFindFileNameW
PathCanonicalizeW
PathMakePrettyW
PathRemoveArgsW
PathParseIconLocationW

comctl32

ord17
_TrackMouseEvent

winmm

PlaySoundW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

shell32

ShellExecuteExW

gdiplus

GdipGetImageWidth
GdipAddPathArcI
GdipAddPathLineI
GdipDeleteGraphics
GdipCreateFromHDC
GdipClosePathFigure
GdipAlloc
GdipFree
GdipGetImageHeight
GdipCreatePath
GdipCreateSolidFill
GdipDeleteBrush
GdiplusShutdown
GdipSetSmoothingMode
GdipFillPath
GdiplusStartup
GdipDisposeImage
GdipDrawImageRectI
GdipCreateBitmapFromStream
GdipDeletePath
GdipCloneImage

msimg32

GradientFill

stlang64

LocalizeString

Sections

.text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 426KB - Virtual size: 426KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/idt64mp2.exe
.exe windows:6 windows x64 arch:x64

d83dcf8c9a2a3858bb1b87ba873d79f8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\idtcpl\minipanel2\objfre_wnet_amd64\amd64\IDT64MP2.pdb

Imports

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

kernel32

Sleep
VirtualProtect
ExpandEnvironmentStringsW
MultiByteToWideChar
GetModuleFileNameW
GetCurrentThreadId
LocalFree
LoadLibraryA
GetProcAddress
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetModuleHandleW
SetUnhandledExceptionFilter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
GetStartupInfoW
GetVersionExW

gdi32

RoundRect
Rectangle
CreatePen
GetTextColor
Arc
SetPixel
ExtCreatePen
CreateSolidBrush
GetTextExtentPoint32W
CombineRgn
DeleteObject
CreateCompatibleDC
GetPixel
GetObjectW
BitBlt
CreateRectRgn
GetDeviceCaps
SetBkColor
SelectObject
DeleteDC
CreateBitmap
GetStockObject
CreateCompatibleBitmap
SetTextColor
CreateFontIndirectW

user32

EnableWindow
WindowFromPoint
InflateRect
GetActiveWindow
FillRect
DrawFocusRect
LoadIconW
ClientToScreen
GetClientRect
DestroyIcon
GetWindowRect
GetParent
CopyRect
GetSysColor
GetSubMenu
SendMessageW
GetWindowLongW
OffsetRect
GetNextDlgTabItem
LoadImageW
CreateIconIndirect
InvalidateRect
TrackPopupMenuEx
PostMessageW
GetDC
LoadBitmapW
ScreenToClient
DrawIcon
AppendMenuW
IsIconic
ReleaseDC
DestroyCursor
SetCursor
FrameRect
DestroyMenu
GetIconInfo
SetCapture
ReleaseCapture
GetCapture
GetSystemMetrics
GetNextDlgGroupItem
DrawEdge
GetFocus
SetRect
SetWindowLongW
SetLayeredWindowAttributes
RedrawWindow
GetDlgItem
SetWindowPos
FindWindowW
AttachThreadInput
GetWindowThreadProcessId
SetForegroundWindow
SetFocus
GetSystemMenu
SystemParametersInfoW
SetWindowRgn
DrawStateW

mfc42u

ord1584
ord5979
ord2783
ord4602
ord6708
ord6705
ord4601
ord2842
ord6632
ord5632
ord5687
ord4721
ord5245
ord5406
ord5804
ord6437
ord6821
ord1777
ord6880
ord5702
ord5815
ord6832
ord4436
ord4771
ord2784
ord2661
ord3761
ord3740
ord6887
ord336
ord851
ord1646
ord2408
ord2427
ord1574
ord6127
ord286
ord3830
ord2420
ord3790
ord626
ord5484
ord1040
ord3933
ord4131
ord1441
ord6814
ord2060
ord2670
ord2574
ord4789
ord2393
ord528
ord5229
ord4017
ord4609
ord5699
ord3862
ord2138
ord5712
ord4694
ord6812
ord5467
ord4473
ord5586
ord2906
ord2399
ord5663
ord4741
ord1778
ord1387
ord6131
ord4365
ord6791
ord4621
ord6440
ord310
ord4442
ord826
ord2586
ord6612
ord303
ord6102
ord3742
ord3743
ord4770
ord6351
ord4988
ord665
ord4371
ord3164
ord1647
ord4077
ord4083
ord4082
ord822
ord3046
ord3166
ord3052
ord650
ord3366
ord1055
ord3231
ord4815
ord3362
ord2898
ord3243
ord3049
ord2140
ord2457
ord4599
ord5683
ord6243
ord1736
ord3783
ord2900
ord2846
ord1122
ord6015
ord6614
ord6133
ord4424
ord6886
ord2259
ord2629
ord4014
ord3234
ord6130
ord2394
ord525
ord984
ord6577
ord6076
ord3437
ord622
ord1930
ord1035
ord1126
ord4752
ord4187
ord1029
ord3889
ord624
ord2975
ord5887
ord620
ord1463
ord1430
ord5630
ord5723
ord2517
ord852
ord2752
ord3916
ord4983
ord4598
ord6053
ord5711
ord5730
ord5065
ord5039
ord4368
ord659
ord5724
ord1063
ord5722
ord3468
ord2412
ord318
ord5615
ord834
ord1388
ord4191
ord6071
ord2515
ord2559
ord4836
ord6813
ord2903
ord6767
ord5570
ord5061
ord6147
ord371
ord877
ord5602
ord3440
ord5807
ord1977
ord337
ord4521
ord6704
ord2329
ord4557
ord5077
ord3177
ord6499
ord6328
ord1259

msvcrt

memset
memcpy
_onexit
_lock
_unlock
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
__set_app_type
_fmode
_commode
__setusermatherr
_amsg_exit
_initterm
_wcmdln
exit
_cexit
_exit
_wcsnicmp
_wtoi
wcstol
__dllonexit
_XcptFilter
__C_specific_handler
__wgetmainargs
_callnewh
malloc
_CxxThrowException
free
??0exception@@QEAA@AEBV0@@Z
??1exception@@UEAA@XZ
?what@exception@@UEBAPEBDXZ
??0exception@@QEAA@AEBQEBDH@Z
__CxxFrameHandler
wcsstr
wcschr
memmove
wcsncmp
iswspace

ole32

CoUninitialize
CoInitialize
CoCreateInstance

oleaut32

SysAllocString
SysFreeString

shlwapi

PathCanonicalizeW
PathMakePrettyW
PathRemoveArgsW
PathParseIconLocationW
PathFindFileNameW
PathFileExistsW

comctl32

ord17
_TrackMouseEvent

winmm

PlaySoundW

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

shell32

ShellExecuteExW

gdiplus

GdipCreateSolidFill
GdipDeleteBrush
GdiplusShutdown
GdipSetSmoothingMode
GdipFillPath
GdiplusStartup
GdipAddPathLineI
GdipDeleteGraphics
GdipCreateFromHDC
GdipClosePathFigure
GdipAlloc
GdipFree
GdipDeletePath
GdipCreatePath
GdipCreateBitmapFromFile
GdipCreateHBITMAPFromBitmap
GdipCloneImage
GdipDisposeImage
GdipAddPathArcI

stlang64

LocalizeSetLangID
LocalizeString
LocalizeGetLangID

Sections

.text
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 421KB - Virtual size: 420KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/idtcpl.cpl
.dll windows:4 windows x86 arch:x86

08c2e12cb70518e168aae53b594efcda

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

stlang

LocalizeSetLangID
LocalizeGetLangID
LocalizeString

winmm

PlaySoundW

rpcrt4

UuidFromStringW

mfc42u

ord2015
ord4213
ord2570
ord4392
ord3577
ord610
ord616
ord6135
ord287
ord2072
ord4118
ord3312
ord5785
ord3974
ord3084
ord5598
ord926
ord665
ord1971
ord5438
ord3313
ord5180
ord354
ord1165
ord5261
ord4992
ord2506
ord6048
ord1767
ord4401
ord5276
ord4419
ord3592
ord641
ord324
ord2294
ord4847
ord4370
ord5949
ord4704
ord2078
ord5142
ord5764
ord6125
ord6124
ord755
ord470
ord3568
ord5783
ord4470
ord6211
ord3087
ord3711
ord790
ord2362
ord6330
ord2637
ord4688
ord1808
ord541
ord656
ord3605
ord801
ord2634
ord6195
ord2081
ord2105
ord6874
ord6139
ord5857
ord2070
ord1921
ord3716
ord795
ord3688
ord6115
ord5436
ord6379
ord5446
ord6390
ord5568
ord4667
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord3948
ord4616
ord3733
ord815
ord561
ord1197
ord6466
ord4124
ord1172
ord922
ord6919
ord4197
ord2776
ord6868
ord5706
ord5679
ord940
ord942
ord4294
ord2806
ord5210
ord6004
ord3995
ord6375
ord1226
ord6153
ord4215
ord2576
ord3649
ord2430
ord6266
ord3282
ord3298
ord4120
ord2606
ord4273
ord927
ord5674
ord537
ord5732
ord5819
ord3659
ord996
ord2746
ord415
ord715
ord5637
ord1859
ord2861
ord816
ord562
ord1863
ord384
ord686
ord5603
ord2754
ord897
ord2088
ord2400
ord1635
ord2445
ord941
ord1834
ord2755
ord1854
ord3696
ord500
ord772
ord6138
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord6168
ord5869
ord5790
ord5575
ord5567
ord6057
ord5860
ord3591
ord4272
ord3915
ord6190
ord3490
ord1795
ord4459
ord3981
ord2914
ord3697
ord1083
ord501
ord807
ord2915
ord2004
ord4158
ord2112
ord554
ord1614
ord5852
ord536
ord1192
ord5602
ord2403
ord696
ord1258
ord5638
ord4180
ord5624
ord3701
ord2444
ord4018
ord909
ord326
ord2538
ord3810
ord291
ord1109
ord2715
ord2382
ord3054
ord5094
ord5097
ord4461
ord4298
ord3345
ord5006
ord975
ord5468
ord3398
ord2874
ord2873
ord4146
ord4072
ord5233
ord5278
ord2641
ord1658
ord4430
ord1717
ord5252
ord4421
ord706
ord408
ord1857
ord5095
ord2093
ord5098
ord3346
ord976
ord4147
ord2374
ord5279
ord5250
ord2437
ord401
ord674
ord1850
ord2094
ord5469
ord407
ord645
ord1856
ord5248
ord366
ord5801
ord4140
ord5480
ord3227
ord1134
ord1137
ord2144
ord1851
ord4689
ord5935
ord5191
ord1995
ord5726
ord3943
ord2177
ord2176
ord4209
ord3102
ord5612
ord988
ord3439
ord3188
ord4157
ord3348
ord6449
ord709
ord411
ord1811
ord3097
ord6150
ord2523
ord4358
ord4052
ord4116
ord2381
ord5077
ord1702
ord1706
ord5230
ord6365
ord5275
ord5244
ord2436
ord331
ord4231
ord6644
ord2706
ord5467
ord1229
ord3864
ord2119
ord2383
ord5096
ord5099
ord4462
ord2875
ord2375
ord5280
ord4431
ord5251
ord4422
ord402
ord3254
ord394
ord773
ord3737
ord713
ord818
ord6137
ord414
ord2373
ord6456
ord1230
ord5855
ord6597
ord5600
ord925
ord3792
ord6307
ord4166
ord6279
ord6278
ord6867
ord860
ord6865
ord6374
ord6376
ord355
ord3714
ord793
ord3865
ord2106
ord3356
ord2372
ord3133
ord2108
ord1933
ord810
ord4266
ord3747
ord3291
ord3292
ord5267
ord1787
ord4803
ord2505
ord293
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4390
ord1768
ord4073
ord6051
ord2567
ord2406
ord3621
ord3658
ord3566
ord4769
ord4495
ord4494
ord4452
ord6451
ord3016
ord1173
ord4768
ord4804
ord2855
ord3614
ord2559
ord472
ord5784
ord4292
ord4128
ord283
ord6193
ord1088
ord6354
ord2423
ord2114
ord1143
ord289
ord6871
ord1633
ord1634
ord613
ord2854
ord5871
ord3871
ord5977
ord4279
ord2397
ord4270
ord5781
ord567
ord556
ord323
ord609
ord809
ord640
ord3569
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord3397
ord2971
ord3076
ord2980
ord3257
ord2745
ord1570
ord1179
ord342
ord1240
ord1194
ord1563
ord1248
ord1250
ord1571
ord600
ord826
ord269
ord2859
ord1130
ord4493
ord2858
ord2371
ord5047
ord4718
ord4451
ord2447
ord1637
ord4241
ord4237
ord4240
ord4243
ord4229
ord4242
ord4155
ord2756
ord2910
ord535
ord6107
ord823
ord538
ord858
ord6655

msvcrt

_wcsicmp
wcscpy
swprintf
__CxxFrameHandler
wcscat
wcslen
wcsncpy
_CxxThrowException
_ftol
??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
?terminate@@YAXXZ
_except_handler3
wcstok
wcstoul
rand
time
srand
_wcslwr
sprintf
iswalpha
wcscspn
iswspace
_wcsnicmp
memmove
wcsstr
wcsncmp
wcschr
_wtoi
wcstol
tolower
floor
wcscmp
vswprintf

kernel32

lstrlenW
LocalAlloc
LocalFree
LoadLibraryA
GlobalReAlloc
CallNamedPipeW
GetFileAttributesExW
GetFileAttributesW
GetFullPathNameW
ExpandEnvironmentStringsW
GetCurrentDirectoryW
InterlockedDecrement
GetEnvironmentVariableW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
SetLastError
GetTickCount
MulDiv
GetVersion
GetVersionExW
WaitForSingleObject
ReleaseMutex
GetWindowsDirectoryW
QueryPerformanceFrequency
QueryPerformanceCounter
MultiByteToWideChar
GetCurrentThreadId
CloseHandle
CreateMutexW
GetCommandLineW
SizeofResource
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetLastError
Sleep
GetModuleFileNameW
GetModuleHandleW
FindResourceW
LoadResource
LockResource
OutputDebugStringW
GetProcAddress
FreeLibrary
LoadLibraryW

user32

CopyImage
GetMenuItemRect
GetMenuItemInfoW
IsMenu
SetMenuInfo
GetWindowDC
GetMenuItemCount
MonitorFromRect
MonitorFromWindow
GetMonitorInfoW
IsWindow
EnableMenuItem
LoadBitmapW
ModifyMenuW
IsIconic
GetSystemMetrics
DrawIcon
RemoveMenu
AppendMenuW
SystemParametersInfoW
AdjustWindowRectEx
SetWindowRgn
LoadIconW
IsRectEmpty
FindWindowW
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
SetFocus
SetRectEmpty
SetWindowPos
SetRect
SetTimer
LoadCursorW
wsprintfW
SetWindowLongW
DrawFrameControl
DrawTextW
CallWindowProcW
PtInRect
UpdateWindow
GetCapture
SetCapture
GetKeyNameTextW
EnableWindow
FrameRect
LoadMenuW
LoadImageW
GetIconInfo
MapVirtualKeyW
CopyAcceleratorTableW
GetMenuInfo
WindowFromDC
CreateIconIndirect
GetDC
ReleaseDC
GetSysColor
FillRect
DrawStateW
OffsetRect
GetClientRect
CopyRect
InflateRect
DrawFocusRect
IntersectRect
GetMenuItemID
GetMessagePos
TabbedTextOutW
GrayStringW
DrawEdge
GetWindowRect
GetSubMenu
TrackPopupMenuEx
PostMessageW
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
RegisterWindowMessageW
SetWindowTextW
GetDlgItem
SendMessageW
GetSystemMenu
DestroyMenu
GetMenu
KillTimer
GetCursorPos
MenuItemFromPoint
IsChild
GetFocus
GetMenuDefaultItem
InsertMenuW
GetMenuStringW
GetDesktopWindow
GetMenuState
RedrawWindow
DeleteMenu
CreatePopupMenu
SetLayeredWindowAttributes
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
DrawIconEx
GetNextDlgGroupItem
MessageBeep
SetMenuDefaultItem
UnionRect
GetNextDlgTabItem
GetWindowLongW
ChildWindowFromPointEx
GetDlgCtrlID
LoadStringW
ScreenToClient
CreateWindowExW
DefWindowProcW
DestroyIcon
DestroyCursor
ValidateRect
BeginPaint
EndPaint
SetMenu
DrawMenuBar
CallNextHookEx
GetClassNameW
SetPropW
GetPropW
RemovePropW
UnhookWindowsHookEx
SetWindowsHookExW
ReleaseCapture

gdi32

BitBlt
DeleteDC
CreateDIBSection
ExtCreateRegion
SelectObject
Pie
GetBkColor
Polyline
ExtCreatePen
Arc
Polygon
GetBitmapBits
CreateCompatibleDC
SelectClipRgn
CreateRectRgn
CombineRgn
CreateRectRgnIndirect
CreateHatchBrush
UnrealizeObject
SetBrushOrgEx
Escape
TextOutW
RectVisible
PtVisible
Rectangle
GetNearestColor
SetWindowOrgEx
CreatePatternBrush
GetCurrentObject
GetTextAlign
GetLayout
SetTextAlign
MoveToEx
GetTextExtentPointW
GetCurrentPositionEx
GetTextColor
GetTextExtentPoint32W
Ellipse
RoundRect
CreatePen
CreateSolidBrush
PatBlt
ExtTextOutW
GetTextMetricsW
CreateFontIndirectW
SetPixel
SetTextColor
CreateCompatibleBitmap
GetStockObject
GetPixel
GetDeviceCaps
CreateBitmap
SetBkColor
DeleteObject
StretchBlt
GetObjectW

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW
RegEnumValueW
RegQueryInfoKeyW

shell32

Shell_NotifyIconW
ShellExecuteW
ShellExecuteExW

comctl32

ImageList_Draw
ImageList_GetImageCount
ImageList_GetIcon
_TrackMouseEvent
ord17
ImageList_GetIconSize
ImageList_AddMasked
ImageList_Replace
ImageList_Add
ImageList_ReplaceIcon

ole32

CreateStreamOnHGlobal
CoInitialize
CoCreateInstance
CoUninitialize
CoTaskMemFree

oleaut32

SysStringLen
SafeArrayGetElement
VariantInit
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
CreateErrorInfo
SysFreeString
GetErrorInfo
SetErrorInfo
VariantChangeType
VariantClear

gdiplus

GdipFillEllipseI
GdipDrawArcI
GdipSetCompositingMode
GdipCreatePen1
GdipDeletePen
GdipCloneBrush
GdipSetSmoothingMode
GdipCreateSolidFill
GdipDeleteBrush
GdipFillPath
GdipDeletePath
GdipCreatePath
GdipCreateHBITMAPFromBitmap
GdipAddPathLineI
GdipClosePathFigure
GdipCreateBitmapFromFile
GdiplusShutdown
GdiplusStartup
GdipCreateFromHDC
GdipDrawImageRectI
GdipDeleteGraphics
GdipDisposeImage
GdipFree
GdipCloneImage
GdipAlloc
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImageWidth
GdipGetImageHeight
GdipAddPathArcI

dsound

ord1

setupapi

SetupDiEnumDeviceInfo
SetupDiGetClassDevsExW
SetupDiOpenDevRegKey
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyW

msimg32

GradientFill

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

shlwapi

PathRemoveExtensionW
PathAddExtensionW
PathFindExtensionW
PathFindFileNameW
PathQuoteSpacesW
PathCanonicalizeW
PathMakePrettyW
PathRenameExtensionW
PathRemoveFileSpecW
PathParseIconLocationW
PathCommonPrefixW
PathGetDriveNumberW
PathRelativePathToW
PathIsRelativeW
PathMatchSpecW
PathCompactPathW
PathCompactPathExW
PathSetDlgItemPathW
PathSearchAndQualifyW
PathFindOnPathW
PathFileExistsW
PathIsDirectoryW
PathIsSystemFolderW
PathUnmakeSystemFolderW
PathMakeSystemFolderW
PathRemoveArgsW
PathAddBackslashW
PathRemoveBackslashW
PathAppendW
PathBuildRootW
PathSkipRootW

Exports

Exports

CPlApplet

Sections

.text
Size: 552KB - Virtual size: 549KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10.7MB - Virtual size: 10.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/idtcpl64.cpl
.dll windows:6 windows x64 arch:x64

8e3234e52f67b035f7ab6c7da17487d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\idtcpl\objfre_wnet_amd64\amd64\idtcpl64.pdb

Imports

mfc42u

ord832
ord307
ord823
ord525
ord984
ord6832
ord5815
ord6821
ord5804
ord1930
ord6511
ord3894
ord6130
ord4752
ord1035
ord6886
ord6577
ord2629
ord6015
ord4014
ord1471
ord3234
ord2394
ord6076
ord2132
ord4187
ord1029
ord3889
ord371
ord877
ord5602
ord3440
ord5807
ord1977
ord1463
ord5912
ord2801
ord4436
ord4826
ord3177
ord6632
ord5702
ord337
ord852
ord2094
ord5077
ord6328
ord3761
ord6522
ord6110
ord4771
ord5570
ord1777
ord6437
ord2517
ord5406
ord6520
ord5687
ord6767
ord2665
ord5061
ord5245
ord4721
ord2329
ord2384
ord627
ord1041
ord2661
ord2129
ord2097
ord6614
ord6544
ord1812
ord6224
ord6225
ord867
ord2087
ord3774
ord5887
ord4521
ord6704
ord1259
ord5980
ord6021
ord6050
ord4429
ord2449
ord1499
ord4544
ord2595
ord3397
ord3820
ord5632
ord2842
ord3419
ord4623
ord6817
ord1533
ord4267
ord6559
ord6386
ord6691
ord4602
ord1287
ord1284
ord1264
ord622
ord567
ord5525
ord6407
ord1005
ord1408
ord1815
ord3831
ord3872
ord2112
ord6603
ord312
ord5522
ord4668
ord4063
ord434
ord6173
ord6599
ord344
ord6096
ord3809
ord3816
ord6607
ord2551
ord339
ord6099
ord621
ord4559
ord3038
ord6216
ord1648
ord929
ord435
ord3873
ord5674
ord2464
ord2775
ord1863
ord1869
ord2740
ord2581
ord427
ord3787
ord4774
ord890
ord387
ord5678
ord408
ord1733
ord904
ord1856
ord4784
ord5838
ord1674
ord2780
ord915
ord2671
ord6609
ord5935
ord2455
ord5704
ord1195
ord420
ord5670
ord5659
ord4364
ord5701
ord4461
ord2463
ord856
ord4500
ord6806
ord2919
ord5930
ord1562
ord1862
ord1219
ord5656
ord2920
ord1721
ord3536
ord4601
ord1716
ord5840
ord1865
ord5503
ord1316
ord1353
ord2404
ord5420
ord5957
ord4422
ord3481
ord4297
ord4346
ord4633
ord287
ord4705
ord4817
ord1483
ord2536
ord5524
ord2781
ord6556
ord5521
ord1838
ord1436
ord3187
ord3141
ord1381
ord445
ord660
ord2421
ord1433
ord2405
ord1064
ord2105
ord3341
ord2750
ord4983
ord5854
ord2114
ord940
ord1006
ord4454
ord5972
ord6151
ord568
ord3822
ord6543
ord5971
ord1286
ord2178
ord1857
ord6223
ord1808
ord5839
ord1860
ord3647
ord1623
ord3823
ord2776
ord3879
ord3760
ord2456
ord5676
ord6228
ord5705
ord6448
ord2396
ord5886
ord4462
ord5896
ord1317
ord6138
ord3482
ord6238
ord5425
ord1537
ord1966
ord6222
ord5932
ord443
ord938
ord6542
ord1262
ord2395
ord4485
ord6738
ord3920
ord5979
ord6705
ord6708
ord6818
ord6816
ord3491
ord372
ord1033
ord2130
ord4124
ord3892
ord3916
ord4214
ord6053
ord5711
ord5730
ord5065
ord4368
ord5724
ord5722
ord3468
ord2412
ord5615
ord1388
ord2752
ord4191
ord6071
ord2515
ord2559
ord4836
ord6813
ord4598
ord5039
ord659
ord1063
ord3936
ord3413
ord3410
ord1942
ord1056
ord4595
ord5693
ord1799
ord314
ord2516
ord5195
ord812
ord1586
ord1555
ord1553
ord1577
ord1491
ord1544
ord355
ord1477
ord1585
ord1583
ord1416
ord288
ord1082
ord3174
ord2589
ord4542
ord4238
ord6133
ord1263
ord2422
ord2023
ord4743
ord4424
ord3751
ord3437
ord6540
ord2900
ord3783
ord4770
ord3790
ord6351
ord303
ord6612
ord1647
ord6791
ord1387
ord1646
ord6440
ord3743
ord4365
ord3740
ord1778
ord3830
ord4741
ord2442
ord5663
ord2399
ord5586
ord6812
ord4694
ord286
ord2138
ord6102
ord5712
ord4442
ord4621
ord6131
ord1574
ord826
ord2408
ord310
ord528
ord5699
ord2574
ord4609
ord851
ord1441
ord336
ord1055
ord650
ord4017
ord5229
ord4789
ord2427
ord822
ord2670
ord2420
ord2060
ord6814
ord3933
ord5484
ord665
ord1736
ord1067
ord5683
ord2457
ord2140
ord4599
ord3049
ord3243
ord3362
ord4131
ord4815
ord3862
ord6243
ord3231
ord3366
ord3052
ord3535
ord3166
ord6127
ord2586
ord3046
ord2898
ord4082
ord4083
ord4077
ord3164
ord4371
ord4988
ord3742
ord4565
ord6499
ord5196
ord6887
ord4849
ord4569
ord1040
ord624
ord4572
ord6880
ord5151
ord4852
ord4851
ord4557
ord1122
ord4807
ord2411
ord2784
ord4571
ord2393
ord4860
ord2846
ord4473
ord2783
ord2975
ord5149
ord1126
ord2903
ord1472
ord3099
ord1428
ord620
ord5467
ord5093
ord626
ord2906
ord1650
ord2466
ord4806
ord2908
ord4570

msvcrt

memset
memcpy
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
__C_specific_handler
_amsg_exit
_initterm
_XcptFilter
_callnewh
malloc
_CxxThrowException
free
??0exception@@QEAA@AEBV0@@Z
??1exception@@UEAA@XZ
?what@exception@@UEBAPEBDXZ
??0exception@@QEAA@AEBQEBDH@Z
__CxxFrameHandler
rand
sprintf
vswprintf
iswspace
_wcsnicmp
memmove
wcsstr
wcschr
wcsncmp
wcstol
_wtoi
_wcsicmp
swprintf
tolower
wcsncpy
floorf

advapi32

RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

kernel32

VirtualProtect
GlobalReAlloc
CreateMutexW
CloseHandle
GetCommandLineW
ReleaseMutex
WaitForSingleObject
OutputDebugStringW
CallNamedPipeW
ExpandEnvironmentStringsW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
MulDiv
GetTickCount
GetVersion
GlobalAddAtomW
LoadLibraryW
FreeLibrary
GetProcAddress
GetModuleFileNameW
GetModuleHandleW
FindResourceW
LoadResource
LockResource
Sleep
MultiByteToWideChar
GetWindowsDirectoryW
QueryPerformanceFrequency
QueryPerformanceCounter
GlobalUnlock
GlobalFree
SizeofResource
GlobalAlloc
GlobalLock
SetLastError
GetCurrentThreadId
GlobalDeleteAtom
GetVersionExW
GlobalFindAtomW
LocalFree
LoadLibraryA
LocalAlloc

user32

wsprintfW
GetSystemMetrics
GetNextDlgGroupItem
DrawEdge
SetTimer
IsRectEmpty
LoadCursorW
SetWindowPos
DrawIcon
EnableMenuItem
LoadBitmapW
RemoveMenu
LoadIconW
AppendMenuW
SetForegroundWindow
SystemParametersInfoW
AdjustWindowRectEx
SetWindowRgn
ModifyMenuW
IsIconic
RedrawWindow
SetWindowLongPtrW
GetMenuItemCount
GetMenuInfo
GetMenuDefaultItem
CreatePopupMenu
SetWindowsHookExW
IsMenu
GetMessagePos
IsWindow
SetMenuInfo
UnhookWindowsHookEx
WindowFromDC
GetMenuItemRect
TabbedTextOutW
GetMenuItemID
GetMenuStringW
GetMenuItemInfoW
CopyAcceleratorTableW
SetRect
MapVirtualKeyW
RemovePropW
GetKeyNameTextW
CopyImage
GrayStringW
GetClassNameW
GetWindowDC
GetWindowLongPtrW
SetPropW
CallNextHookEx
IntersectRect
GetMenuState
SetFocus
GetDlgCtrlID
LoadStringW
ChildWindowFromPointEx
ScreenToClient
UnionRect
SetMenuDefaultItem
MessageBeep
FindWindowW
AttachThreadInput
GetWindowThreadProcessId
DrawIconEx
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SetLayeredWindowAttributes
CallWindowProcW
DrawTextW
DrawFrameControl
UpdateWindow
SetRectEmpty
SetWindowLongW
ReleaseCapture
SetCapture
GetCapture
GetSubMenu
LoadMenuW
GetParent
GetWindowRect
GetNextDlgTabItem
DrawStateW
FillRect
GetActiveWindow
EnableWindow
GetPropW
GetClientRect
WindowFromPoint
LoadImageW
CreateIconIndirect
DrawFocusRect
OffsetRect
ClientToScreen
GetWindowLongW
GetIconInfo
InflateRect
DestroyIcon
FrameRect
ReleaseDC
GetDC
InvalidateRect
DestroyCursor
SetCursor
GetSysColor
PostMessageW
CopyRect
TrackPopupMenuEx
SetWindowTextW
SendMessageW
GetDlgItem
GetCursorPos
RegisterWindowMessageW
GetMenu
KillTimer
MenuItemFromPoint
IsChild
DestroyMenu
GetFocus
GetSystemMenu
PtInRect

ole32

CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitialize
CreateStreamOnHGlobal

oleaut32

SysStringLen
SysAllocString
VariantClear
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayCreate
VariantInit
SysFreeString
SafeArrayGetElement

shlwapi

PathParseIconLocationW
PathRemoveArgsW
PathFindFileNameW
PathCanonicalizeW
PathIsDirectoryW
PathFileExistsW
PathMakePrettyW

comctl32

ImageList_ReplaceIcon
ImageList_GetImageCount
_TrackMouseEvent
ImageList_GetIconSize
ImageList_Draw
ImageList_AddMasked
ImageList_Add
ImageList_Replace
ord17
ImageList_GetIcon

rpcrt4

UuidFromStringW

winmm

PlaySoundW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

shell32

Shell_NotifyIconW
ShellExecuteExW
ShellExecuteW

gdiplus

GdipCreateBitmapFromFile
GdipCreateHBITMAPFromBitmap
GdipCreatePen1
GdipDrawImageRectI
GdipDisposeImage
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDeletePen
GdipSetCompositingMode
GdipFillEllipseI
GdipDrawArcI
GdipCreateBitmapFromStream
GdiplusStartup
GdipAddPathLineI
GdipDeleteGraphics
GdipAddPathArcI
GdiplusShutdown
GdipFillPath
GdipSetSmoothingMode
GdipDeleteBrush
GdipCloneBrush
GdipCreatePath
GdipCreateSolidFill
GdipDeletePath
GdipCreateFromHDC
GdipFree
GdipAlloc
GdipClosePathFigure

gdi32

ExtCreateRegion
CreateDIBSection
GetBkColor
Polygon
GetNearestColor
GetCurrentObject
CreatePatternBrush
UnrealizeObject
Escape
SetWindowOrgEx
SelectClipRgn
CreateRectRgnIndirect
TextOutW
GetCurrentPositionEx
GetTextExtentPointW
RectVisible
CombineRgn
GetLayout
PtVisible
CreateRectRgn
SetBrushOrgEx
MoveToEx
SetTextAlign
GetTextAlign
PatBlt
Rectangle
Polyline
GetTextExtentPoint32W
GetTextColor
Arc
ExtCreatePen
Ellipse
RoundRect
CreateSolidBrush
CreatePen
GetTextMetricsW
ExtTextOutW
CreateFontIndirectW
GetDeviceCaps
StretchBlt
CreateCompatibleBitmap
GetStockObject
GetObjectW
SetPixel
DeleteObject
GetPixel
DeleteDC
SetTextColor
BitBlt
CreateBitmap
CreateCompatibleDC
SelectObject
SetBkColor

msimg32

GradientFill

dsound

ord1

stlang64

LocalizeGetLangID
LocalizeSetLangID
LocalizeString

Exports

Exports

CPlApplet

Sections

.text
Size: 809KB - Virtual size: 809KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10.7MB - Virtual size: 10.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/idtmini1.exe
.exe windows:4 windows x86 arch:x86

bfa0d3e5a5e0b76f119bf3d948a205e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

stlang

LocalizeString

mfc42u

ord2859
ord800
ord3871
ord540
ord5871
ord2854
ord613
ord1634
ord1633
ord6871
ord289
ord1143
ord2114
ord4155
ord1088
ord6193
ord283
ord4128
ord4292
ord5784
ord472
ord2559
ord1921
ord3716
ord3614
ord4401
ord795
ord823
ord861
ord755
ord535
ord2810
ord470
ord3688
ord6115
ord3568
ord5783
ord858
ord5436
ord6379
ord5446
ord6390
ord5568
ord2910
ord538
ord2606
ord4273
ord6655
ord4667
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord4616
ord3733
ord617
ord3397
ord296
ord561
ord641
ord801
ord2506
ord5297
ord5208
ord2613
ord5261
ord4370
ord4847
ord4992
ord6048
ord1767
ord5276
ord4419
ord5977
ord324
ord2294
ord4229
ord2806
ord5210
ord4124
ord6195
ord1165
ord5949
ord3087
ord4704
ord541
ord3312
ord5857
ord6107
ord6211
ord922
ord2858
ord6451
ord6874
ord5142
ord6330
ord6456
ord665
ord1971
ord5438
ord3313
ord5180
ord354
ord6919
ord4197
ord2403
ord2015
ord4213
ord2570
ord4392
ord3577
ord616
ord5674
ord537
ord5785
ord2855
ord5732
ord4272
ord6279
ord6278
ord2756
ord6867
ord6168
ord3792
ord3711
ord790
ord3915
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4390
ord1768
ord4073
ord6051
ord2567
ord5047
ord2371
ord4279
ord2397
ord4270
ord5781
ord2406
ord3621
ord3658
ord825
ord567
ord556
ord323
ord609
ord809
ord640
ord3566
ord3569
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3592
ord3825
ord815
ord1569

msvcrt

_controlfp
?terminate@@YAXXZ
_onexit
__dllonexit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
iswspace
_wcsnicmp
_wtoi
wcstol
wcscmp
memmove
wcsstr
wcsncmp
wcschr
floor
wcscpy
wcsncpy
_ftol
wcslen
__CxxFrameHandler

kernel32

GetStartupInfoW
GetModuleHandleW
ExpandEnvironmentStringsW
MultiByteToWideChar
GlobalUnlock
GlobalFree
FindResourceW
SizeofResource
LoadResource
LockResource
GlobalAlloc
GlobalLock
GetModuleFileNameW
GetCurrentThreadId

user32

GetWindowRect
GetSubMenu
TrackPopupMenuEx
PostMessageW
ClientToScreen
WindowFromPoint
GetActiveWindow
DrawFocusRect
InflateRect
CopyRect
SetCursor
GetParent
GetNextDlgTabItem
GetClientRect
OffsetRect
DrawStateW
FillRect
GetSysColor
ReleaseDC
GetDC
CreateIconIndirect
GetIconInfo
LoadImageW
DestroyMenu
DestroyCursor
SendMessageW
GetWindowLongW
DestroyIcon
FrameRect
EnableWindow
SetRect
PtInRect
SetFocus
SetForegroundWindow
AttachThreadInput
GetWindowThreadProcessId
FindWindowW
LoadIconW
SetTimer
SetWindowLongW
SetLayeredWindowAttributes
RedrawWindow
DrawEdge
GetFocus
EnableMenuItem
KillTimer
IsIconic
GetSystemMetrics
DrawIcon
GetDlgItem
SetWindowPos
GetSystemMenu
RemoveMenu
AppendMenuW
SetRectEmpty
LoadBitmapW
SystemParametersInfoW
InvalidateRect
SetWindowRgn

gdi32

Rectangle
GetTextExtentPoint32W
Ellipse
CreateSolidBrush
RoundRect
CreatePen
CreateFontIndirectW
CreateRectRgn
CombineRgn
GetObjectW
GetPixel
SetPixel
CreateBitmap
SelectObject
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
DeleteObject

shell32

ShellExecuteExW

comctl32

ord17
_TrackMouseEvent

ole32

CreateStreamOnHGlobal
CoUninitialize
CoInitialize
CoCreateInstance
CoTaskMemFree

oleaut32

SysAllocString
SysFreeString
VariantClear
SafeArrayGetElement

winmm

PlaySoundW

msimg32

GradientFill

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

gdiplus

GdipCreatePath
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdipCreateFromHDC
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectI
GdipDeletePath
GdipDisposeImage
GdipFree
GdipCloneImage
GdipAlloc
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdiplusStartup
GdiplusShutdown
GdipFillPath
GdipDeleteBrush
GdipCreateSolidFill
GdipSetSmoothingMode
GdipCloneBrush
GdipDeleteGraphics

shlwapi

PathFindFileNameW
PathSkipRootW
PathCanonicalizeW
PathMakePrettyW
PathParseIconLocationW
PathRemoveArgsW

Sections

.text
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 428KB - Virtual size: 426KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/staco.dll
.dll windows:6 windows x86 arch:x86

714dc5bb88fd981280a8ffbb120e8f90

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\install\staco\objfre_wlh_x86\i386\STACO.pdb

Imports

setupapi

SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceInstallParamsA
SetupDiGetDeviceInstanceIdA
SetupDiOpenDevRegKey
SetupDiCreateDevRegKeyA
SetupFindNextLine
SetupDiGetSelectedDriverA
SetupDiGetDriverInfoDetailA
SetupOpenInfFileA
SetupDiGetActualSectionToInstallA
SetupFindFirstLineA
SetupGetStringFieldA
SetupCloseInfFile
SetupDiSetDeviceRegistryPropertyA

kernel32

SetFileAttributesA
FindFirstFileA
lstrcmpiA
lstrlenA
DeleteFileA
SetLastError
CloseHandle
GetLastError
WaitForSingleObject
CreateProcessA
lstrcmpA
lstrcpynA
FreeLibrary
GetProcAddress
LoadLibraryA
GetPrivateProfileStringA
lstrcatA
LocalFree
TerminateProcess
OpenProcess
GlobalFree
GlobalAlloc
Sleep
GetTickCount
HeapFree
HeapAlloc
GetProcessHeap
GetVersionExA
MoveFileExA
GetCommandLineA
RtlUnwind
RaiseException
MoveFileA
GetSystemTimeAsFileTime
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
SetHandleCount
GetStdHandle
GetFileType
CopyFileA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
FindNextFileA
EnterCriticalSection
VirtualAlloc
HeapReAlloc
WriteFile
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
OutputDebugStringA
GetTimeZoneInformation
HeapSize
InitializeCriticalSection
GetModuleHandleW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
SetFilePointer
GetConsoleCP
GetConsoleMode
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
FindClose
GetFileAttributesA
CreateDirectoryA
GetFullPathNameA
ExpandEnvironmentStringsA
lstrcpyA
GetStartupInfoA
LeaveCriticalSection

user32

PostMessageA
GetWindowRect
FindWindowExA
CallWindowProcA

advapi32

RegDeleteValueA
ConvertStringSecurityDescriptorToSecurityDescriptorA
RegEnumValueA
RegSetValueExA
RegQueryValueExA
RegQueryValueA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA
RegCreateKeyExA

shell32

SHGetFolderPathA

ole32

CoInitialize

shlwapi

SHGetValueA

Exports

Exports

Stac97CoInstaller

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/staco64.dll
.dll windows:6 windows x64 arch:x64

fc6e00af60d6ba57ddd31199128ee6c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\install\staco\objfre_wlh_amd64\amd64\STACO64.pdb

Imports

setupapi

SetupDiGetDriverInfoDetailA
SetupDiCreateDevRegKeyA
SetupDiGetDeviceInstallParamsA
SetupFindFirstLineA
SetupOpenInfFileA
SetupCloseInfFile
SetupDiGetActualSectionToInstallA
SetupDiGetDeviceInstanceIdA
SetupGetStringFieldA
SetupDiOpenDevRegKey
SetupFindNextLine
SetupDiSetDeviceInstallParamsA
SetupDiSetDeviceRegistryPropertyA
SetupDiGetSelectedDriverA

kernel32

GetFileAttributesA
SetFileAttributesA
ExpandEnvironmentStringsA
FindClose
lstrlenA
DeleteFileA
GetProcAddress
LocalFree
CreateProcessA
CloseHandle
lstrcpynA
WaitForSingleObject
GetPrivateProfileStringA
LoadLibraryA
FreeLibrary
GetLastError
lstrcmpA
lstrcatA
SetLastError
OpenProcess
HeapAlloc
GlobalAlloc
GetTickCount
GetProcessHeap
TerminateProcess
GlobalFree
FormatMessageA
HeapFree
Sleep
GetVersionExA
MoveFileExA
FlsSetValue
GetCommandLineA
GetVersionExW
MoveFileA
GetSystemTimeAsFileTime
RtlLookupFunctionEntry
RtlUnwindEx
RaiseException
RtlPcToFileHeader
GetModuleHandleW
ExitProcess
EncodePointer
DecodePointer
FlsFree
FlsGetValue
GetCurrentThreadId
CopyFileA
FlsAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapSetInformation
HeapCreate
HeapDestroy
lstrcmpiA
GetCurrentProcessId
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
WriteFile
GetCPInfo
GetACP
GetOEMCP
LCMapStringW
MultiByteToWideChar
OutputDebugStringA
EnterCriticalSection
LeaveCriticalSection
GetTimeZoneInformation
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
LoadLibraryW
GetStringTypeW
VirtualProtect
VirtualAlloc
SetThreadStackGuarantee
GetSystemInfo
VirtualQuery
SetFilePointer
GetConsoleCP
GetConsoleMode
ReadFile
SetStdHandle
FlushFileBuffers
CreateFileA
WriteConsoleW
SetEndOfFile
CreateFileW
CompareStringW
SetEnvironmentVariableA
FindFirstFileA
FindNextFileA
CreateDirectoryA
GetFullPathNameA
lstrcpyA
QueryPerformanceCounter

user32

GetWindowRect
PostMessageA
CallWindowProcA
FindWindowExA

advapi32

RegDeleteValueA
RegQueryValueExA
RegCloseKey
RegDeleteKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueA
RegEnumValueA
RegOpenKeyExA
ConvertStringSecurityDescriptorToSecurityDescriptorA
RegEnumKeyExA

shell32

SHGetFolderPathA

ole32

CoInitialize

shlwapi

SHGetValueA

Exports

Exports

Stac97CoInstaller

Sections

.text
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stacsv.exe
.exe windows:4 windows x86 arch:x86

4e96b259aa0203fe470f6dbaf1e51dfb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegEnumValueA
RegQueryInfoKeyA
CopySid
GetLengthSid
IsValidSid
LookupAccountNameA
GetUserNameA
StartServiceCtrlDispatcherA
ChangeServiceConfig2A
CloseServiceHandle
CreateServiceA
OpenSCManagerA
RegSetValueExA
RegCreateKeyA
DeleteService
QueryServiceStatus
ControlService
OpenServiceA
RegDeleteValueA
StartServiceA
RegisterServiceCtrlHandlerExA
SetServiceStatus
DeregisterEventSource
ReportEventA
RegisterEventSourceA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor

kernel32

CreateMutexA
CloseHandle
MultiByteToWideChar
OutputDebugStringA
GetLastError
DebugBreak
GetModuleFileNameA
Sleep
GetProcAddress
GetModuleHandleA
SetConsoleCtrlHandler
LocalFree
FormatMessageA
GlobalFree
InterlockedDecrement
GetStdHandle
AllocConsole
CallNamedPipeA
ReleaseMutex
WaitForSingleObject
WaitForMultipleObjects
ResetEvent
SetEvent
CreateThread
CreateEventA
DisconnectNamedPipe
FlushFileBuffers
WriteFile
ReadFile
ConnectNamedPipe
CreateNamedPipeA
ExitThread
lstrlenW
WideCharToMultiByte
lstrlenA
GetVersionExA
GlobalAlloc

user32

UnregisterDeviceNotification
RegisterDeviceNotificationA
RegisterClassA
CreateWindowExA
DefWindowProcA
DestroyWindow
wsprintfA
PostMessageA

ole32

CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

SysFreeString
GetErrorInfo
SetErrorInfo
VariantChangeType
CreateErrorInfo
SysStringLen
SysAllocStringByteLen
SysStringByteLen
VariantInit
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
SysAllocStringLen
VariantClear

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsExA
CM_Reenumerate_DevNode
CM_Locate_DevNodeA
SetupDiOpenDevRegKey

dsound

ord1

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_CxxThrowException
__getmainargs
__p___initenv
exit
_XcptFilter
_exit
?terminate@@YAXXZ
_except_handler3
??1type_info@@UAE@XZ
_wcslwr
wcscmp
wcsncmp
_iob
setvbuf
_open_osfhandle
_fdopen
_mbslen
printf
_purecall
_onexit
__dllonexit
free
malloc
calloc
_mbscmp
isalnum
isspace
isalpha
sprintf
_mbsnbcpy
_ftol
_CIasin
strtod
_CIpow
_CIacos
_mbslwr
??3@YAXPAX@Z
??2@YAPAXI@Z
__CxxFrameHandler
swprintf
sscanf
_mbsnbcmp
_mbsicmp
_mbsnbicmp
_strdup
wcscat
wcslen
wcscpy
vsprintf

Sections

.text
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stacsv64.exe
.exe windows:6 windows x64 arch:x64

bcbec59fc2c8dee2190074330b3c1706

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\stacsv\objfre_wnet_amd64\amd64\stacsv64.pdb

Imports

advapi32

RegCloseKey
RegEnumValueA
RegQueryInfoKeyA
IsValidSid
DeregisterEventSource
QueryServiceStatus
RegDeleteKeyA
GetUserNameA
RegDeleteValueA
RegCreateKeyA
GetLengthSid
ChangeServiceConfig2A
StartServiceA
SetServiceStatus
ControlService
LookupAccountNameA
OpenServiceA
CloseServiceHandle
RegisterEventSourceA
RegisterServiceCtrlHandlerExA
StartServiceCtrlDispatcherA
DeleteService
CopySid
ReportEventA
RegSetValueExA
OpenSCManagerA
RegQueryValueExA
RegOpenKeyExA
CreateServiceA
RegCreateKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW

kernel32

GlobalAlloc
GetStdHandle
Sleep
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
GlobalFree
GetVersionExA
GetLastError
LocalFree
FormatMessageA
SetConsoleCtrlHandler
AllocConsole
DisconnectNamedPipe
CallNamedPipeA
FlushFileBuffers
WaitForSingleObject
CreateThread
WriteFile
ReadFile
SetEvent
ResetEvent
ConnectNamedPipe
CreateEventA
ReleaseMutex
WaitForMultipleObjects
ExitThread
CloseHandle
MultiByteToWideChar
CreateNamedPipeA
CreateMutexA
VirtualProtect
OutputDebugStringA
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
WideCharToMultiByte
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleHandleW
SetUnhandledExceptionFilter

msvcrt

_fmode
__set_app_type
??1type_info@@UEAA@XZ
?terminate@@YAXXZ
memcpy
memset
memmove
_unlock
__dllonexit
_lock
_onexit
_commode
__getmainargs
__setusermatherr
_amsg_exit
_initterm
exit
_cexit
_exit
_XcptFilter
__C_specific_handler
atan
sqrt
tan
cos
_errno
__CxxFrameHandler
_wcslwr
??0exception@@QEAA@XZ
??1exception@@UEAA@XZ
_strdup
swprintf
_mbsnbicmp
??0exception@@QEAA@AEBV0@@Z
_callnewh
_CxxThrowException
??0exception@@QEAA@AEBQEBDH@Z
_mbsnbcmp
wcsncmp
sscanf
_fdopen
setvbuf
printf
_iob
_mbslen
_purecall
_open_osfhandle
_mbsicmp
vsprintf
isalnum
_mbsnbcpy
_mbscmp
_mbslwr
sprintf
strtod
isalpha
malloc
calloc
isspace
free
?what@exception@@UEBAPEBDXZ
pow
asin
sin
exp
log
log10
acos

user32

UnregisterDeviceNotification
DefWindowProcA
DestroyWindow
RegisterDeviceNotificationA
wsprintfA
RegisterClassA
CreateWindowExA
PostMessageA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

oleaut32

VariantClear
SysStringByteLen
SysAllocStringByteLen
VariantInit
SafeArrayCreate
SysStringLen
SysFreeString
SysAllocStringLen
SafeArrayAccessData
SysAllocString
SafeArrayUnaccessData

setupapi

CM_Locate_DevNodeA
SetupDiGetDeviceRegistryPropertyA
SetupDiOpenDevRegKey
SetupDiGetClassDevsExA
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
CM_Reenumerate_DevNode

dsound

ord1

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stapi32.dll
.dll regsvr32 windows:6 windows x86 arch:x86

5fea08d64299660375a489392bb76e0a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\stacapi\objfre_wlh_x86\i386\stapi32.pdb

Imports

msvcrt

memcpy_s
__dllonexit
_unlock
_errno
realloc
??1type_info@@UAE@XZ
_except_handler4_common
?terminate@@YAXXZ
_adjust_fdiv
_amsg_exit
malloc
_XcptFilter
?what@exception@@UBEPBDXZ
wcslen
wcstoul
_wcsnicmp
_snwprintf
??0exception@@QAE@ABV0@@Z
free
_wcsicmp
_onexit
_ftol2
wcsncpy
memcpy
memset
_lock
_initterm
??0exception@@QAE@XZ
??1exception@@UAE@XZ
memmove_s
swprintf
sscanf
_ftol2_sse
_purecall
_resetstkoflw
__CxxFrameHandler3
_wtoi
wcscat
wcscpy
wcsstr
wcsrchr
wcschr
wcsncmp
_CIlog10
_CIpow
_wcsupr
_wcsupr_s
wcscat_s
wcsncpy_s
wcscpy_s
_callnewh
_CxxThrowException
sprintf

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetVersionExW
QueryPerformanceCounter
InterlockedCompareExchange
WideCharToMultiByte
InterlockedExchange
GetVersionExA
UnmapViewOfFile
CreateFileMappingW
MapViewOfFile
OpenMutexW
WaitForMultipleObjects
ExpandEnvironmentStringsW
OutputDebugStringW
GetCurrentThreadId
OutputDebugStringA
CreateFileW
GetLastError
SetLastError
DeviceIoControl
CloseHandle
lstrlenW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
GetModuleFileNameW
DisableThreadLibraryCalls
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
CallNamedPipeW
DisconnectNamedPipe
FlushFileBuffers
WriteFile
ReadFile
ConnectNamedPipe
CreateNamedPipeW
SetEvent
LocalFree
FormatMessageW
WaitForSingleObject
CreateThread
GetTickCount
CreateEventW
ExitThread
ReleaseMutex
Sleep
SetThreadPriority
GetCurrentThread
CreateMutexW
ResetEvent
TerminateProcess

user32

GetMessageW
SetWindowLongW
CreateWindowExW
RegisterClassW
DestroyWindow
UnregisterClassA
TranslateMessage
DispatchMessageW
GetWindowLongW
DefWindowProcW
UnregisterDeviceNotification
RegisterDeviceNotificationW
PostMessageW
wsprintfW
CharNextW
SendMessageW

advapi32

RegDeleteKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegQueryInfoKeyW
RegEnumValueW
OpenProcessToken
GetTokenInformation
LookupAccountSidW
RegQueryValueExW
InitializeSecurityDescriptor
RegEnumKeyExW
SetSecurityDescriptorDacl

ole32

CoInitializeEx
CoUninitialize
PropVariantClear
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateFreeThreadedMarshaler

oleaut32

SafeArrayPutElement
SafeArrayCreate
VariantInit
SafeArrayUnaccessData
SafeArrayAccessData
SysStringLen
SysAllocString
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
VarUI4FromStr
LoadRegTypeLi
SysAllocStringByteLen
SysStringByteLen
VarBstrCmp
VarBstrCat
SysAllocStringLen
VariantClear
SysFreeString

winmm

mixerGetControlDetailsW
mixerGetDevCapsW
mixerOpen
mixerGetLineInfoW
mixerGetLineControlsW
mixerClose
mixerSetControlDetails
mixerGetNumDevs
mixerMessage

setupapi

SetupDiGetClassDevsExW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetDeviceInstanceIdW
SetupDiEnumDeviceInfo
SetupDiOpenDeviceInterfaceRegKey
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiOpenDevRegKey
SetupDiGetClassDevsW

Exports

Exports

??0CSkpiRegCtrlClass@@QAE@ABV0@@Z
??4CSkpiRegCtrlClass@@QAEAAV0@ABV0@@Z
??_7CSkpiRegCtrlClass@@6B@
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stapi64.dll
.dll regsvr32 windows:6 windows x64 arch:x64

2fe12c442c17c51d5ea02dc3860df7f0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\stacapi\objfre_wlh_amd64\amd64\stapi64.pdb

Imports

msvcrt

??1exception@@UEAA@XZ
??0exception@@QEAA@AEBV0@@Z
??0exception@@QEAA@XZ
_snwprintf
wcstoul
memset
sprintf
__C_specific_handler
memmove_s
??0exception@@QEAA@AEBQEBDH@Z
?what@exception@@UEBAPEBDXZ
_CxxThrowException
_callnewh
__CxxFrameHandler3
_XcptFilter
_initterm
swprintf
sscanf
powf
_purecall
memcpy_s
wcscpy_s
wcsncpy_s
log10f
memcpy
_wcsnicmp
_amsg_exit
?terminate@@YAXXZ
realloc
_errno
_unlock
__dllonexit
_lock
_onexit
??1type_info@@UEAA@XZ
wcschr
_wtoi
wcsrchr
wcsstr
wcsncmp
_wcsupr
_wcsupr_s
wcscat_s
_resetstkoflw
malloc
_wcsicmp
free
wcsncpy
memcmp

kernel32

ExpandEnvironmentStringsW
OutputDebugStringW
RtlLookupFunctionEntry
GetVersionExW
RtlCaptureContext
RtlVirtualUnwind
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
WideCharToMultiByte
GetVersionExA
OutputDebugStringA
GetLastError
CreateFileW
CloseHandle
DeviceIoControl
SetLastError
MultiByteToWideChar
LeaveCriticalSection
lstrcmpiW
SizeofResource
DisableThreadLibraryCalls
InitializeCriticalSection
LoadResource
DeleteCriticalSection
FindResourceW
LoadLibraryExW
RaiseException
lstrlenW
FreeLibrary
GetModuleFileNameW
GetModuleHandleW
EnterCriticalSection
WriteFile
FlushFileBuffers
DisconnectNamedPipe
FormatMessageW
LocalFree
SetEvent
CreateEventW
WaitForSingleObject
CallNamedPipeW
GetTickCount
CreateThread
CreateNamedPipeW
ConnectNamedPipe
ReadFile
CreateMutexW
ReleaseMutex
WaitForMultipleObjects
ResetEvent
ExitThread
SetThreadPriority
GetCurrentThread
Sleep
OpenMutexW
UnmapViewOfFile
CreateFileMappingW
MapViewOfFile

user32

PostMessageW
DestroyWindow
UnregisterClassA
SendMessageW
CharNextW
RegisterClassW
CreateWindowExW
SetWindowLongPtrW
GetMessageW
TranslateMessage
DispatchMessageW
RegisterDeviceNotificationW
UnregisterDeviceNotification
GetWindowLongPtrW
DefWindowProcW
wsprintfW

advapi32

SetSecurityDescriptorDacl
OpenProcessToken
GetTokenInformation
RegEnumValueW
LookupAccountSidW
RegOpenKeyExW
RegEnumKeyExW
RegSetValueExW
RegQueryValueExW
RegQueryInfoKeyW
InitializeSecurityDescriptor
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoTaskMemRealloc
CoCreateFreeThreadedMarshaler
PropVariantClear

oleaut32

VariantClear
SysFreeString
VariantInit
SafeArrayCreate
SafeArrayPutElement
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringLen
VarBstrCat
VarBstrCmp
SysStringByteLen
SysAllocStringByteLen
SysStringLen
SysAllocString
UnRegisterTypeLi
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
VarUI4FromStr

winmm

mixerGetControlDetailsW
mixerGetLineControlsW
mixerGetLineInfoW
mixerClose
mixerOpen
mixerGetDevCapsW
mixerSetControlDetails
mixerMessage
mixerGetNumDevs

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsExW
SetupDiGetDeviceInterfaceDetailW
SetupDiOpenDevRegKey
SetupDiOpenDeviceInterfaceRegKey

Exports

Exports

??0CSkpiRegCtrlClass@@QEAA@AEBV0@@Z
??4CSkpiRegCtrlClass@@QEAAAEAV0@AEBV0@@Z
??_7CSkpiRegCtrlClass@@6B@
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 402KB - Virtual size: 401KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stapo.dll
.dll regsvr32 windows:6 windows x86 arch:x86

ae894f5fa114367c8ee7b46860038bc0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\stapo\apo\objfre_wlh_x86\i386\stapo.pdb

Imports

msvcrt

_initterm
??3@YAXPAX@Z
_amsg_exit
_adjust_fdiv
_except_handler4_common
realloc
_errno
_unlock
__dllonexit
_lock
_onexit
_wcsicmp
wcscpy_s
_XcptFilter
swprintf
wcsncmp
??_U@YAPAXI@Z
wcschr
swprintf_s
memcpy
wcscat_s
_vsnwprintf
wcsncpy_s
calloc
sqrt
sin
wcsrchr
memcpy_s
free
malloc
memset
_ftol2_sse
sprintf
_ftol2
_snwprintf
_CIcos
_CItan
_CIlog10
_CIsqrt
memmove
_CIpow
_CIlog
_CIsinh
_CIsin
_CIexp
floor
_CIatan
_CxxThrowException
??1type_info@@UAE@XZ
wcsncpy
??2@YAPAXI@Z
??_V@YAXPAX@Z
_purecall
cos

kernel32

SetEvent
UnhandledExceptionFilter
CreateFileMappingW
MapViewOfFile
CreateMutexW
OpenMutexW
WaitForSingleObject
ReleaseMutex
UnmapViewOfFile
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
InterlockedCompareExchange
Sleep
InterlockedIncrement
InterlockedDecrement
lstrlenW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetLastError
lstrcmpiW
CloseHandle
DeviceIoControl
CreateFileW
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
QueryPerformanceCounter
QueryPerformanceFrequency
InterlockedExchange
SetThreadLocale
GetThreadLocale
OutputDebugStringA
OutputDebugStringW
GetVersionExA
LocalFree

ole32

StringFromGUID2
CoCreateInstance
PropVariantClear
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
IIDFromString

oleaut32

RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysStringLen
SysStringByteLen
SysAllocStringByteLen
VarUI4FromStr
SysFreeString

advapi32

InitializeSecurityDescriptor
RegCloseKey
RegEnumKeyExW
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW
RegDeleteKeyW
RegDeleteValueW
RegQueryInfoKeyW
RegCreateKeyExW
SetSecurityDescriptorDacl

user32

UnregisterClassA
CharNextW

avrt

AvSetMmThreadPriority
AvSetMmThreadCharacteristicsW
AvRevertMmThreadCharacteristics

audioeng

AERT_Allocate
AERT_Free

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 730KB - Virtual size: 729KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RT_CODE
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

PAGE
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RT_DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stapo64.dll
.dll regsvr32 windows:6 windows x64 arch:x64

99d2cac6ed87a3d8d5b23209bfd97197

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\stapo\apo\objfre_wlh_amd64\amd64\stapo64.pdb

Imports

msvcrt

calloc
_XcptFilter
??3@YAXPEAX@Z
_initterm
_amsg_exit
realloc
wcsrchr
__C_specific_handler
_errno
memcpy_s
swprintf_s
??_U@YAPEAX_K@Z
wcschr
wcsncmp
free
memset
log
expf
cosf
tan
powf
sqrtf
_vsnwprintf
wcscat_s
malloc
wcsncpy_s
log10f
atan
_wcsicmp
sprintf
_snwprintf
memmove
memcpy
memcmp
_CxxThrowException
??1type_info@@UEAA@XZ
swprintf
wcsncpy
??2@YAPEAX_K@Z
??_V@YAXPEAX@Z
_purecall
floorf
exp
_unlock
__dllonexit
_lock
_onexit
wcscpy_s
sqrt
sin
cos
floor
pow
sinh

kernel32

SetEvent
LocalFree
OpenMutexW
CreateFileMappingW
UnmapViewOfFile
ReleaseMutex
MapViewOfFile
WaitForSingleObject
CreateMutexW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
LoadLibraryExW
MultiByteToWideChar
GetModuleHandleW
EnterCriticalSection
lstrlenW
LeaveCriticalSection
RaiseException
lstrcmpiW
DeleteCriticalSection
GetLastError
GetModuleFileNameW
FindResourceW
SizeofResource
InitializeCriticalSection
DeviceIoControl
FreeLibrary
CreateFileW
LoadResource
CloseHandle
QueryPerformanceFrequency
QueryPerformanceCounter
SetThreadLocale
GetThreadLocale
OutputDebugStringW
OutputDebugStringA
GetVersionExA
Sleep
GetTickCount
GetCurrentThreadId
GetCurrentProcessId

ole32

StringFromGUID2
CoCreateInstance
PropVariantClear
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
IIDFromString

oleaut32

SysAllocString
RegisterTypeLi
LoadTypeLi
SysStringLen
UnRegisterTypeLi
SysAllocStringByteLen
SysStringByteLen
VarUI4FromStr
SysFreeString

advapi32

InitializeSecurityDescriptor
RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
RegQueryInfoKeyW
RegDeleteValueW
RegDeleteKeyW
SetSecurityDescriptorDacl
RegQueryValueExW

user32

UnregisterClassA
CharNextW

avrt

AvSetMmThreadPriority
AvRevertMmThreadCharacteristics
AvSetMmThreadCharacteristicsW

audioeng

AERT_Allocate
AERT_Free

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RT_CODE
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RT_DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stcplx.dll
.dll regsvr32 windows:6 windows x86 arch:x86

878c5c9878a85cbdbe493aca82706dfc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\stcplx\objfre_wlh_x86\i386\stcplx.pdb

Imports

msvcrt

_onexit
_lock
__dllonexit
_unlock
_errno
realloc
_except_handler4_common
??1type_info@@UAE@XZ
wcscpy_s
_adjust_fdiv
_amsg_exit
_initterm
_XcptFilter
wcslen
calloc
wcschr
_CxxThrowException
?terminate@@YAXXZ
vswprintf_s
wcsncpy
_wcsicmp
memcpy
_wtoi
_itow
wcsncmp
free
malloc
??_V@YAXPAX@Z
memcpy_s
__CxxFrameHandler
wcscpy
wcscat
_wcsnicmp
_ftol2_sse
_purecall
??2@YAPAXI@Z
_vsnwprintf
memset
??_U@YAPAXI@Z
__CxxFrameHandler3
wcscat_s
wcsncpy_s
??3@YAXPAX@Z

advapi32

RegQueryValueExW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegEnumValueW
RegQueryValueExA
RegOpenKeyExA

kernel32

LoadLibraryA
GetTickCount
QueryPerformanceCounter
GetProcAddress
GetCurrentThreadId
GetSystemTimeAsFileTime
ExpandEnvironmentStringsA
InterlockedCompareExchange
DeviceIoControl
InterlockedExchange
GetVersionExA
GetSystemDirectoryW
CreateThread
CreateMutexW
ExitThread
CreateFileW
LoadLibraryW
LocalFree
LocalAlloc
SetLastError
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
OutputDebugStringA
TerminateProcess
lstrlenW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetLastError
lstrcmpiW
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
SetThreadLocale
GetThreadLocale
GetVersionExW
GetCurrentProcessId
OutputDebugStringW
WaitForSingleObject
ReleaseMutex
CloseHandle
Sleep

user32

EndDialog
DialogBoxParamW
EnableWindow
IsDlgButtonChecked
GetWindowLongW
CheckDlgButton
GetWindowTextW
LoadIconW
CreateWindowExW
GetDlgCtrlID
GetWindowRect
SetWindowPos
SetDlgItemTextW
ShowWindow
GetParent
GetDlgItemTextW
MoveWindow
DefWindowProcW
DispatchMessageW
TranslateMessage
GetMessageW
RegisterClassW
LoadBitmapW
UnregisterClassA
SendMessageW
GetDlgItem
SetWindowTextW
CharNextW
SetWindowLongW
DestroyWindow

ole32

PropVariantClear
CoInitialize
CoUninitialize
CoCreateInstance
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc

oleaut32

SysStringLen
SysAllocString
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
VarUI4FromStr
LoadRegTypeLi
VarBstrCmp
VariantInit
VariantClear
SafeArrayGetElement
VarBstrCat
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreate
SysFreeString

shlwapi

PathFileExistsW

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageW

rpcrt4

UuidEqual
UuidFromStringW

stlang

LocalizeGetLangID
LocalizeSetLangID
LocalizeBuffer

winmm

mixerGetNumDevs
mixerMessage

setupapi

SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stcplx64.dll
.dll regsvr32 windows:6 windows x64 arch:x64

e0680a5e102fc09901e5c0623cdb70ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\stcplx\objfre_wlh_amd64\amd64\stcplx64.pdb

Imports

msvcrt

__CxxFrameHandler3
_CxxThrowException
memcpy
_wcsicmp
??3@YAXPEAX@Z
wcsncpy
vswprintf_s
wcschr
memset
__C_specific_handler
calloc
_XcptFilter
_initterm
_wtoi
_itow
wcsncmp
_amsg_exit
?terminate@@YAXXZ
realloc
_errno
_unlock
__dllonexit
_lock
_onexit
_wcsnicmp
_purecall
_vsnwprintf
??2@YAPEAX_K@Z
malloc
free
memcpy_s
wcscpy_s
wcsncpy_s
wcscat_s
??_U@YAPEAX_K@Z
??_V@YAXPEAX@Z
??1type_info@@UEAA@XZ
memcmp

advapi32

RegQueryValueExW
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegCloseKey
RegDeleteKeyW
RegQueryValueExA
RegOpenKeyExA
RegEnumValueW

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetTickCount
QueryPerformanceCounter
GetVersionExA
GetProcAddress
LoadLibraryA
ExpandEnvironmentStringsA
DeviceIoControl
LoadLibraryW
LocalFree
LocalAlloc
SetLastError
GetCurrentThreadId
OutputDebugStringA
RaiseException
SizeofResource
LoadResource
lstrlenW
FindResourceW
LoadLibraryExW
LeaveCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleFileNameW
GetModuleHandleW
InitializeCriticalSection
MultiByteToWideChar
GetThreadLocale
SetThreadLocale
lstrcmpiW
DeleteCriticalSection
GetVersionExW
GetCurrentProcessId
OutputDebugStringW
CreateThread
CreateMutexW
CloseHandle
WaitForSingleObject
CreateFileW
Sleep
ExitThread
ReleaseMutex
GetSystemDirectoryW

user32

EnableWindow
GetWindowTextW
LoadIconW
GetDlgCtrlID
CreateWindowExW
ShowWindow
GetWindowRect
SetWindowPos
GetWindowLongW
CheckDlgButton
DestroyWindow
MoveWindow
GetDlgItemTextW
RegisterClassW
GetMessageW
TranslateMessage
DispatchMessageW
DefWindowProcW
LoadBitmapW
UnregisterClassA
GetWindowLongPtrW
DialogBoxParamW
EndDialog
GetParent
SendMessageW
SetWindowLongPtrW
GetDlgItem
SetWindowTextW
CharNextW
SetDlgItemTextW
IsDlgButtonChecked

ole32

PropVariantClear
CoUninitialize
CoInitialize
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree
StringFromGUID2
CoTaskMemAlloc

oleaut32

SysStringLen
RegisterTypeLi
SysAllocString
VarUI4FromStr
UnRegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SysFreeString
SafeArrayGetElement
VarBstrCmp
VariantInit
VariantClear
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreate
SysAllocStringByteLen
SysStringByteLen
SysAllocStringLen
VarBstrCat

shlwapi

PathFileExistsW

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageW

rpcrt4

UuidFromStringW
UuidEqual

stlang64

LocalizeSetLangID
LocalizeGetLangID
LocalizeBuffer

winmm

mixerGetNumDevs
mixerMessage

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInfo

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stlang.dll
.dll windows:4 windows x86 arch:x86

c7b2f9d120364cd42c54a415a962804d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord2977
ord3142
ord3254
ord4459
ord3131
ord3257
ord2980
ord3076
ord2971
ord3825
ord3826
ord3820
ord3074
ord4075
ord4616
ord4418
ord3733
ord561
ord815
ord3658
ord6868
ord535
ord2810
ord3948
ord538
ord6466
ord927
ord5436
ord1971
ord5446
ord5298
ord2606
ord4273
ord6655
ord4272
ord6279
ord6278
ord2756
ord6867
ord4124
ord826
ord600
ord1571
ord1250
ord1248
ord1563
ord1194
ord1240
ord342
ord1179
ord1570
ord1165
ord1568
ord1173
ord1115
ord5296
ord2910
ord5568
ord825
ord665
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord354
ord540
ord861
ord800
ord922
ord858
ord5180
ord3313
ord823
ord6390
ord5438
ord6379
ord4269
ord269

msvcrt

??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
iswspace
_wcsnicmp
memmove
wcsstr
wcslen
wcsncmp
wcschr
wcscat
__CxxFrameHandler
wcscpy

kernel32

LocalFree
ExpandEnvironmentStringsW
GetSystemDefaultLangID
GetUserDefaultLangID
GetUserDefaultUILanguage
GetModuleFileNameW
GetModuleHandleW
FindResourceW
SizeofResource
LoadResource
LockResource
MultiByteToWideChar
LocalAlloc

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shlwapi

PathFindFileNameW
PathSkipRootW
PathRemoveArgsW
PathParseIconLocationW
PathMakePrettyW
PathCanonicalizeW

Exports

Exports

LocalizeBuffer
LocalizeGetLangID
LocalizeSetLangID
LocalizeString

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stlang64.dll
.dll windows:6 windows x64 arch:x64

0efc5044073c35b51c76bb0d2e6bb4b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\localize\objfre_wnet_amd64\amd64\StLang64.pdb

Imports

mfc42u

ord3468
ord6832
ord2412
ord5815
ord5615
ord6880
ord1388
ord6821
ord4191
ord5804
ord6071
ord2515
ord2559
ord4836
ord6813
ord5980
ord2846
ord624
ord4214
ord4598
ord287
ord2784
ord2629
ord4602
ord4436
ord6886
ord5722
ord4601
ord6705
ord6708
ord2783
ord5979
ord812
ord1586
ord1555
ord1553
ord1577
ord1491
ord1544
ord355
ord1477
ord1585
ord1583
ord1472
ord1416
ord288
ord1082
ord1463
ord5724
ord1063
ord2752
ord659
ord4368
ord5065
ord5730
ord5711
ord6053
ord3049
ord3243
ord3362
ord4815
ord3231
ord3366
ord3052
ord3166
ord3046
ord4082
ord4083
ord4077
ord3164
ord4371
ord5887
ord4983
ord2975
ord6887
ord4770
ord1977
ord5807
ord3916
ord3440
ord5602
ord3830
ord1259
ord1122
ord1264
ord1126
ord620
ord877
ord371
ord1040
ord626

msvcrt

_CxxThrowException
memset
memcpy
??1type_info@@UEAA@XZ
_onexit
_lock
__dllonexit
__C_specific_handler
_amsg_exit
_initterm
malloc
_XcptFilter
__CxxFrameHandler
free
iswspace
_wcsnicmp
wcschr
wcsncmp
memmove
wcsstr
??_V@YAXPEAX@Z
??_U@YAPEAX_K@Z
_unlock

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW

kernel32

ExpandEnvironmentStringsW
VirtualProtect
Sleep
LocalFree
FindResourceW
LocalAlloc
RtlVirtualUnwind
RtlLookupFunctionEntry
GetUserDefaultUILanguage
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
GetModuleFileNameW
MultiByteToWideChar
GetUserDefaultLangID
GetSystemDefaultLangID
LockResource
LoadResource
RtlCaptureContext
SizeofResource

shlwapi

PathParseIconLocationW
PathRemoveArgsW
PathMakePrettyW
PathCanonicalizeW
PathFindFileNameW

Exports

Exports

LocalizeBuffer
LocalizeGetLangID
LocalizeSetLangID
LocalizeString

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/sttray.exe
.exe windows:4 windows x86 arch:x86

6662f7ef0bf040731442c74058ebae0c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

stlang

LocalizeSetLangID
LocalizeString

mfc42u

ord384
ord540
ord567
ord324
ord825
ord2289
ord2355
ord2362
ord2294
ord4229
ord6776
ord2857
ord2088
ord3087
ord4704
ord4847
ord2567
ord4390
ord3569
ord3566
ord640
ord809
ord609
ord323
ord556
ord3658
ord3621
ord2406
ord5781
ord4270
ord4279
ord2371
ord2397
ord5047
ord5977
ord2859
ord3871
ord4128
ord4292
ord5784
ord472
ord283
ord5871
ord2854
ord613
ord1634
ord1633
ord6871
ord289
ord1143
ord2114
ord4155
ord6354
ord1088
ord2559
ord823
ord535
ord5568
ord2910
ord2810
ord538
ord3716
ord3614
ord795
ord2606
ord2855
ord6195
ord3792
ord2746
ord858
ord6193
ord6597
ord942
ord1197
ord922
ord537
ord860
ord2350
ord6330
ord1764
ord6362
ord2405
ord2016
ord4395
ord3634
ord692
ord6451
ord3798
ord2745
ord4119
ord1834
ord4237
ord2715
ord2382
ord3054
ord5094
ord5097
ord4461
ord4298
ord861
ord5006
ord975
ord5468
ord3398
ord2874
ord2873
ord4146
ord4072
ord5233
ord5278
ord2641
ord1658
ord4430
ord5248
ord4421
ord801
ord674
ord541
ord366
ord5857
ord1165
ord4451
ord4407
ord4718
ord4219
ord940
ord4272
ord941
ord536
ord6279
ord6278
ord2755
ord4273
ord2756
ord6867
ord4124
ord925
ord326
ord325
ord755
ord470
ord4199
ord2914
ord3749
ord3748
ord6399
ord3865
ord6191
ord3517
ord5436
ord6379
ord5446
ord6390
ord6376
ord6211
ord2634
ord1941
ord818
ord2144
ord1230
ord2385
ord3805
ord1172
ord4215
ord2576
ord3649
ord2858
ord2430
ord1637
ord920
ord6456
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord4074
ord4692
ord1569
ord5285
ord5710
ord4616
ord3733
ord561
ord815
ord6113
ord2613
ord2717
ord2806
ord5210
ord5949
ord6655
ord641
ord6498
ord800
ord686
ord6732
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord3397
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4392
ord1768
ord4073
ord6051
ord2570
ord4213
ord2015
ord2403
ord3592
ord4419
ord5276
ord4401
ord1767
ord6048
ord2506
ord4992
ord4370
ord5261
ord3345
ord5303

msvcrt

_controlfp
??1type_info@@UAE@XZ
_onexit
_CxxThrowException
__CxxFrameHandler
wcslen
wcsncpy
wcsstr
wcscat
swprintf
wcscpy
_wspawnlp
_wcsnicmp
iswspace
wcscspn
iswalpha
memmove
wcsncmp
wcscmp
swscanf
_ftol
_exit
_XcptFilter
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
?terminate@@YAXXZ
__dllonexit

kernel32

GetModuleHandleW
GetProcAddress
GetVersion
FreeLibrary
LoadLibraryW
GetWindowsDirectoryW
lstrcpyW
WideCharToMultiByte
WinExec
lstrlenW
lstrcatW
GetSystemDirectoryW
Sleep
GetCurrentThreadId
GetExitCodeProcess
WaitForSingleObject
CloseHandle
CreateProcessW
GetStartupInfoW
GetEnvironmentVariableW
SetLastError
InterlockedDecrement
GetModuleFileNameW
GetCurrentDirectoryW
ExpandEnvironmentStringsW
GetFullPathNameW
GetFileAttributesW
LocalFree
GetVersionExW
GetFileAttributesExW

user32

DrawStateW
GetClientRect
CopyRect
FrameRect
InflateRect
GetSysColor
OffsetRect
DrawFocusRect
GetSubMenu
GetWindowRect
TrackPopupMenuEx
ClientToScreen
LoadImageW
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
GetWindowLongW
GetIconInfo
LoadMenuW
FillRect
KillTimer
SetWindowLongW
DestroyIcon
DestroyCursor
DestroyMenu
EnableWindow
SendMessageW
MessageBeep
PostQuitMessage
RedrawWindow
SetActiveWindow
DrawAnimatedRects
SetParent
EnumChildWindows
SystemParametersInfoW
GetCursorPos
TrackPopupMenu
GetMenuItemID
SetMenuDefaultItem
RegisterWindowMessageW
LoadIconW
IsIconic
DrawIcon
BeginDeferWindowPos
EqualRect
DeferWindowPos
EndDeferWindowPos
UpdateWindow
GetClassNameW
IsZoomed
DrawFrameControl
GetSystemMetrics
ModifyMenuW
InsertMenuW
DeleteMenu
CheckMenuItem
FindWindowW
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
SetFocus
GetForegroundWindow
PostMessageW
SetRect
LoadCursorW
CopyIcon
GetDC
ReleaseDC
IsWindow
GetMessagePos
ScreenToClient
PtInRect
WindowFromPoint
SetTimer

gdi32

GetTextExtentPoint32W
CreateFontIndirectW
GetObjectW
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
GetStockObject
DeleteObject

advapi32

RegQueryValueExW
RegQueryValueW
RegOpenKeyExW
CloseServiceHandle
QueryServiceStatus
OpenServiceW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
ConvertStringSecurityDescriptorToSecurityDescriptorW
OpenSCManagerW

shell32

ShellExecuteExW
Shell_NotifyIconW
ShellExecuteW
SHAppBarMessage

comctl32

_TrackMouseEvent
ImageList_GetIcon
ImageList_GetIconSize
ord17
ImageList_ReplaceIcon

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SysFreeString
SetErrorInfo
VariantInit
VariantClear
CreateErrorInfo
VariantChangeType
GetErrorInfo
SysAllocString
SysStringLen
SysAllocStringByteLen
SysStringByteLen

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

shlwapi

PathRemoveFileSpecW
PathRenameExtensionW
PathRemoveExtensionW
PathAddExtensionW
PathFindExtensionW
PathFindFileNameW
PathSkipRootW
PathBuildRootW
PathRemoveBackslashW
PathAddBackslashW
PathRemoveArgsW
PathParseIconLocationW
PathMakePrettyW
PathCanonicalizeW
PathQuoteSpacesW
PathCommonPrefixW
PathGetDriveNumberW
PathRelativePathToW
PathIsRelativeW
PathMatchSpecW
PathCompactPathW
PathCompactPathExW
PathSetDlgItemPathW
PathSearchAndQualifyW
PathFindOnPathW
PathFileExistsW
PathIsDirectoryW
PathIsSystemFolderW
PathUnmakeSystemFolderW
PathMakeSystemFolderW
PathAppendW

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 324KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/sttray64.exe
.exe windows:6 windows x64 arch:x64

4b4ee8fca9afbca28b337619bdf13525

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\stsystray\objfre_wnet_amd64\amd64\sttray64.pdb

Imports

advapi32

RegOpenKeyExW
RegQueryValueW
RegCloseKey
OpenSCManagerW
OpenServiceW
QueryServiceStatus
CloseServiceHandle

kernel32

GetModuleFileNameW
ExpandEnvironmentStringsW
GetVersion
GetProcAddress
lstrcpyW
GetStartupInfoW
Sleep
GetCurrentThreadId
GetSystemDirectoryW
WinExec
GetExitCodeProcess
WaitForSingleObject
CloseHandle
CreateProcessW
lstrcatW
GetVersionExW
LocalFree
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetModuleHandleW
SetUnhandledExceptionFilter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
lstrlenW
WideCharToMultiByte
FreeLibrary
LoadLibraryW
VirtualProtect

gdi32

BitBlt
DeleteObject
DeleteDC
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject

user32

GetWindowLongW
GetCursorPos
TrackPopupMenu
GetMenuItemID
LoadIconW
SendMessageW
EnableWindow
GetClientRect
GetActiveWindow
DrawStateW
LoadImageW
FrameRect
GetNextDlgTabItem
GetSubMenu
GetWindowRect
GetParent
TrackPopupMenuEx
OffsetRect
LoadMenuW
DestroyCursor
ClientToScreen
DrawFocusRect
InflateRect
WindowFromPoint
SetTimer
GetMessagePos
ScreenToClient
SetCursor
DestroyMenu
CopyRect
FillRect
InvalidateRect
DestroyIcon
PtInRect
KillTimer
IsWindow
GetDC
MessageBeep
SetRect
PostMessageW
FindWindowW
ModifyMenuW
InsertMenuW
DeleteMenu
CheckMenuItem
AttachThreadInput
GetWindowThreadProcessId
SetForegroundWindow
SetFocus
GetForegroundWindow
EndDeferWindowPos
UpdateWindow
IsZoomed
DrawFrameControl
BeginDeferWindowPos
EqualRect
GetSystemMetrics
DeferWindowPos
DrawIcon
IsIconic
GetIconInfo
SetMenuDefaultItem
RegisterWindowMessageW
PostQuitMessage
GetSysColor

mfc42u

ord1584
ord5632
ord6328
ord2784
ord2752
ord6510
ord1063
ord659
ord4598
ord6813
ord4836
ord2559
ord2515
ord6071
ord4191
ord1388
ord5615
ord2412
ord3468
ord5722
ord5724
ord4368
ord5065
ord5730
ord5711
ord6053
ord4983
ord3916
ord2842
ord1650
ord1950
ord3820
ord2595
ord4544
ord2449
ord1471
ord4045
ord5425
ord1254
ord1537
ord2178
ord2903
ord6818
ord6632
ord2661
ord3939
ord3937
ord5804
ord6821
ord5815
ord6832
ord2329
ord5702
ord4557
ord4694
ord6812
ord5586
ord2399
ord5077
ord5663
ord4752
ord1777
ord4365
ord6437
ord3177
ord2517
ord2105
ord5406
ord4721
ord5687
ord3761
ord6440
ord1778
ord5712
ord3535
ord4770
ord4771
ord4988
ord4371
ord3164
ord4077
ord4083
ord4082
ord3046
ord3166
ord3052
ord3366
ord3231
ord4815
ord3362
ord3243
ord5245
ord3049
ord1067
ord5699
ord665
ord2140
ord2457
ord5683
ord6887
ord1736
ord5484
ord3933
ord6814
ord2060
ord2670
ord4789
ord626
ord5229
ord1040
ord4017
ord337
ord408
ord852
ord904
ord1126
ord826
ord5467
ord2420
ord2427
ord2906
ord6102
ord1646
ord1441
ord528
ord2408
ord3740
ord1574
ord6131
ord1647
ord4621
ord4442
ord2138
ord286
ord6351
ord3830
ord4131
ord4473
ord6127
ord2898
ord1387
ord6791
ord6243
ord303
ord2586
ord3790
ord4599
ord3742
ord2574
ord2393
ord3743
ord822
ord3862
ord4741
ord4609
ord650
ord1055
ord336
ord851
ord310
ord624
ord2846
ord2975
ord5887
ord620
ord6612
ord1124
ord1259
ord622
ord1499
ord6614
ord2776
ord3894
ord1122
ord1035
ord6767
ord4860
ord4027
ord2775
ord3805
ord4746
ord2024
ord2425
ord6801
ord1774
ord4427
ord6886
ord911
ord387
ord890
ord6880
ord627
ord1041
ord5093
ord6225
ord4759
ord4774
ord5674
ord4784
ord1674
ord2671
ord5704
ord4548
ord5659
ord4364
ord4461
ord4806
ord2919
ord2920
ord3536
ord5839
ord1316
ord5420
ord3481
ord4633
ord4817
ord1463
ord5524
ord5521
ord3141
ord2405
ord1838
ord2750
ord4565
ord5979
ord4436
ord4601
ord6705
ord6708
ord4602
ord2783
ord525
ord984
ord4124
ord6842

msvcrt

wcsncpy
??_V@YAXPEAX@Z
??_U@YAPEAX_K@Z
wcsstr
_CxxThrowException
memset
memcpy
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
__set_app_type
_fmode
_commode
__setusermatherr
_amsg_exit
_initterm
_wcmdln
exit
_cexit
_exit
_XcptFilter
__C_specific_handler
__wgetmainargs
__CxxFrameHandler
memmove
wcsncmp
iswspace
_wcsnicmp
_wspawnlp
swprintf

ole32

CoUninitialize
CoInitialize
CoCreateInstance

oleaut32

SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysStringLen
SysFreeString

shlwapi

PathParseIconLocationW
PathCanonicalizeW
PathFileExistsW
PathRemoveArgsW
PathMakePrettyW

comctl32

_TrackMouseEvent
ImageList_GetIconSize
ImageList_GetIcon
ord17
ImageList_ReplaceIcon

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

shell32

Shell_NotifyIconW
ShellExecuteW
ShellExecuteExW

stlang64

LocalizeSetLangID
LocalizeString

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 322KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stwrt.cat
IDT/WDM/Vista/stwrt.sys
.sys windows:6 windows x86 arch:x86

de1cc2e88e309349a6d7fb7d326cbfb5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\wdm2\objfre_wlh_x86\i386\stwrt.pdb

Imports

ntoskrnl.exe

ZwCreateFile
RtlInitUnicodeString
_vsnprintf
DbgBreakPoint
memset
_purecall
InterlockedIncrement
_aulldiv
_allmul
KeQuerySystemTime
ExSetTimerResolution
IofCompleteRequest
InterlockedDecrement
KeDelayExecutionThread
_aullrem
MmMapLockedPagesSpecifyCache
ExFreePoolWithTag
MmUnmapIoSpace
MmMapIoSpace
ZwReadFile
IoFreeMdl
MmUnlockPages
MmProbeAndLockPages
IoAllocateMdl
memmove
IoOpenDeviceRegistryKey
_snwprintf
ZwEnumerateKey
RtlGUIDFromString
_alldiv
_wcsnicmp
wcsncpy
RtlIsNtDdiVersionAvailable
IoReleaseRemoveLockEx
IoReleaseRemoveLockAndWaitEx
IoAcquireRemoveLockEx
wcsncmp
IoInitializeRemoveLockEx
ObfDereferenceObject
ObReferenceObjectByHandle
ExEventObjectType
ZwQueryInformationFile
RtlFreeUnicodeString
IoRegisterDeviceInterface
IoSetDeviceInterfaceState
IoGetAttachedDeviceReference
IoIsWdmVersionAvailable
KeSetTimer
InterlockedCompareExchange
KeCancelTimer
KeInitializeDpc
KeInitializeTimer
KeInitializeEvent
KeWaitForSingleObject
InterlockedExchange
PsTerminateSystemThread
PsCreateSystemThread
IofCallDriver
IoBuildSynchronousFsdRequest
_aullshr
MmUnmapLockedPages
ZwOpenKey
ZwCreateKey
ZwQueryValueKey
ZwSetValueKey
RtlUnicodeStringToAnsiString
RtlStringFromGUID
KeInitializeMutex
KeReleaseMutex
KeTickCount
KeBugCheckEx
RtlUnwind
ZwWriteFile
ZwClose
memcpy
ExFreePool
KeInitializeSpinLock
KeSetEvent
ExAllocatePoolWithTag

hal

KfRaiseIrql
KfLowerIrql
KeGetCurrentIrql
KfAcquireSpinLock
KfReleaseSpinLock
KeStallExecutionProcessor

portcls.sys

PcNewPort
PcRegisterPhysicalConnection
PcRegisterAdapterPowerManagement
PcAddAdapterDevice
PcInitializeAdapterDriver
PcRegisterSubdevice

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/stwrt64.cat
IDT/WDM/Vista/stwrt64.ini
IDT/WDM/Vista/stwrt64.sys
.sys windows:6 windows x64 arch:x64

b7105efce5d4700189fef4395b2ca2f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\workspaces\pcasw_core_release_2.1.5.0_ecs\hostaudio\wdm2\objfre_wlh_amd64\amd64\stwrt64.pdb

Imports

ntoskrnl.exe

ExAllocatePoolWithTag
RtlInitUnicodeString
KeReleaseSpinLock
ZwCreateFile
ExFreePool
_vsnprintf
ZwClose
ZwQueryInformationFile
ExSetTimerResolution
DbgBreakPoint
IofCompleteRequest
_purecall
KeDelayExecutionThread
MmMapLockedPagesSpecifyCache
ExFreePoolWithTag
ZwReadFile
MmUnmapIoSpace
MmMapIoSpace
IoFreeMdl
MmProbeAndLockPages
MmUnlockPages
IoAllocateMdl
ZwEnumerateKey
RtlGUIDFromString
_snwprintf
IoOpenDeviceRegistryKey
wcsncpy
RtlIsNtDdiVersionAvailable
_wcsnicmp
wcsncmp
IoReleaseRemoveLockAndWaitEx
IoIs32bitProcess
IoReleaseRemoveLockEx
IoInitializeRemoveLockEx
IoAcquireRemoveLockEx
ExEventObjectType
KeAcquireSpinLockRaiseToDpc
ObfDereferenceObject
KeSetEvent
IoRegisterDeviceInterface
IoSetDeviceInterfaceState
RtlFreeUnicodeString
IoGetAttachedDeviceReference
IoIsWdmVersionAvailable
KeInitializeDpc
KeInitializeTimer
KeSetTimer
KeCancelTimer
KeInitializeEvent
PsCreateSystemThread
PsTerminateSystemThread
KeWaitForSingleObject
IofCallDriver
IoBuildSynchronousFsdRequest
MmUnmapLockedPages
ZwSetValueKey
ZwQueryValueKey
ZwOpenKey
ZwCreateKey
RtlStringFromGUID
RtlUnicodeStringToAnsiString
KeReleaseMutex
KeInitializeMutex
KeBugCheckEx
ObReferenceObjectByHandle
ZwWriteFile
__C_specific_handler

hal

KeStallExecutionProcessor

portcls.sys

PcRegisterSubdevice
PcRegisterAdapterPowerManagement
PcAddAdapterDevice
PcInitializeAdapterDriver
PcRegisterPhysicalConnection
PcNewPort

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

PAGE
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/suhlp.exe
.exe windows:5 windows x86 arch:x86

69f40c3b27c32412877000ddf062005f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Workspaces\PCASW_CORE_RELEASE_2.1.5.0_ECS\HostAudio\setuphlp\objfre_w2K_x86\i386\suhlp.pdb

Imports

kernel32

CopyFileA
SetFileAttributesA
lstrcatA
lstrlenA
ExpandEnvironmentStringsA
lstrcpyA
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetModuleFileNameA
GetModuleHandleA
FindClose
FindNextFileA
GetFullPathNameA
FindFirstFileA
lstrcmpiA
lstrcpynA
LocalAlloc
GetLastError
LocalFree
FormatMessageA
GetFileAttributesA
GetVersionExA
GlobalFree
GlobalAlloc
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemWindowsDirectoryA
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
ExitProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetACP
GetOEMCP
GetCPInfo
Sleep
VirtualAlloc
HeapReAlloc
RtlUnwind
InterlockedExchange
VirtualQuery
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
GetSystemInfo

user32

EnumWindows
GetWindowTextA
SendMessageA
CreateWindowExA
UpdateWindow
DestroyWindow
CharLowerA
ShowWindow
IsWindow

setupapi

SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupGetInfInformationA
SetupQueryInfVersionInformationA
CM_Locate_DevNodeA
CM_Reenumerate_DevNode
CM_Get_DevNode_Status
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiGetDeviceInstallParamsA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo

newdev

UpdateDriverForPlugAndPlayDevicesA

shell32

SHGetFolderPathA

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/Vista/suhlp64.exe
.exe windows:5 windows x64 arch:x64

416bda63a08cfcefd9d62706ffdb708e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Workspaces\PCASW_CORE_RELEASE_2.1.5.0_ECS\HostAudio\setuphlp\objfre_wnet_AMD64\amd64\suhlp64.pdb

Imports

kernel32

CopyFileA
SetFileAttributesA
lstrcatA
lstrlenA
lstrcpyA
ExpandEnvironmentStringsA
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetModuleFileNameA
GetModuleHandleA
FindClose
FindNextFileA
GetFullPathNameA
FindFirstFileA
lstrcmpiA
lstrcpynA
LocalAlloc
GetLastError
LocalFree
FormatMessageA
GetFileAttributesA
GetVersionExA
GlobalFree
GlobalAlloc
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemWindowsDirectoryA
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
ExitProcess
WriteFile
GetStdHandle
RtlUnwindEx
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapSetInformation
HeapCreate
GetACP
GetOEMCP
GetCPInfo
Sleep
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery

user32

EnumWindows
GetWindowTextA
SendMessageA
CreateWindowExA
UpdateWindow
DestroyWindow
IsWindow
ShowWindow

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupGetInfInformationA
SetupQueryInfVersionInformationA
CM_Locate_DevNodeA
CM_Reenumerate_DevNode
CM_Get_DevNode_Status
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInstallParamsA

newdev

UpdateDriverForPlugAndPlayDevicesA

shell32

SHGetFolderPathA

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/E_202_XP.INI
IDT/WDM/WinXP/E_206_XP-202.INI
IDT/WDM/WinXP/E_206_XP.INI
IDT/WDM/WinXP/E_92XXD.bld
IDT/WDM/WinXP/STHDA.INF
IDT/WDM/WinXP/STHDA64.INF
IDT/WDM/WinXP/Sthda.ini
IDT/WDM/WinXP/gdiplus.dll
.dll windows:5 windows x86 arch:x86

2a1ab6b72adad6b03d0746b0a5fa55d6

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:9d:aa:11:d3:30:a8:95:60:ac:fa
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

01/07/1999, 07:00

Not After

15/10/2005, 07:00

Subject

CN=Microsoft Windows Verification Intermediate PCA,OU=Copyright (c) 1999 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=WA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:06:51:3f:00:00:00:00:00:35
Certificate

Issuer

CN=Microsoft Windows Verification Intermediate PCA,OU=Copyright (c) 1999 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=WA,C=US

Not Before

30/06/2003, 23:22

Not After

30/08/2004, 23:32

Subject

CN=Microsoft Windows XP Publisher,OU=Copyright (c) 2003 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

4f:11:fb:cd:c0:44:ea:be:51:45:c5:b8:65:ea:1c:b3:ee:fd:20:31
Signer

Actual PE Digest

4f:11:fb:cd:c0:44:ea:be:51:45:c5:b8:65:ea:1c:b3:ee:fd:20:31

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SearchPathA
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
InterlockedExchange
GetCurrentThreadId
InitializeCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
RaiseException
Sleep
CloseHandle
WriteFile
CreateFileA
WaitForSingleObject
SetEvent
lstrcmpiA
CreateThread
CreateEventA
WideCharToMultiByte
MultiByteToWideChar
GetTickCount
GetSystemDefaultLCID
GetProcAddress
GetModuleHandleW
GetACP
GetVersionExA
LoadLibraryA
VirtualQuery
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ExitProcess
GetCommandLineA
GetSystemInfo
HeapReAlloc
HeapFree
VirtualAlloc
IsValidLocale
ConvertDefaultLocale
GetLocaleInfoW
GetModuleFileNameW
GetModuleFileNameA
FindResourceA
LoadResource
LockResource
GetProfileIntA
GetProfileStringA
lstrcmpiW
IsDBCSLeadByteEx
LocalReAlloc
MulDiv
SetLastError
LocalAlloc
LocalFree
GetFileTime
SearchPathW
InterlockedIncrement
GetOEMCP
CreateSemaphoreA
lstrcpyW
lstrcatW
LoadLibraryW
lstrcpyA
lstrcatA
GetSystemDirectoryA
CreateFileMappingW
ReleaseSemaphore
GetProfileSectionA
CreateFileW
SetEndOfFile
SetFilePointer
ReadFile
UnlockFile
GetFileInformationByHandle
LockFile
FlushFileBuffers
GetLastError
VirtualFree
GlobalAlloc
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GlobalLock
GlobalSize
GlobalUnlock
GlobalFree
HeapCreate
GetModuleHandleA
GetSystemDirectoryW
GetWindowsDirectoryA
FreeLibrary
HeapDestroy

user32

ReleaseDC
GetDC
LoadBitmapW
LoadBitmapA
wsprintfW
SystemParametersInfoA
wsprintfA
GetSysColor
UnregisterClassA
DestroyWindow
GetSystemMetrics
DefWindowProcA
CreateWindowExA
RegisterWindowMessageA
RegisterClassA
DispatchMessageA
TranslateMessage
MsgWaitForMultipleObjects
PeekMessageA
GetClientRect
GetDesktopWindow
GetWindowRect
WindowFromDC
CreateIconIndirect
GetIconInfo
ClientToScreen
wvsprintfA
GetDCEx
GetWindowLongA
GetClassLongA

gdi32

GetNearestPaletteIndex
GetDIBColorTable
FillRgn
SetMiterLimit
CreateSolidBrush
StrokePath
GetGraphicsMode
SetPolyFillMode
FillPath
StrokeAndFillPath
GetWindowExtEx
ExtTextOutA
GetTextCharsetInfo
TranslateCharsetInfo
PolylineTo
Polyline
LineTo
GetCurrentPositionEx
ArcTo
SetArcDirection
SelectClipPath
GetPath
CloseFigure
AbortPath
FlattenPath
WidenPath
BeginPath
Ellipse
AngleArc
PolyBezierTo
PolyBezier
RoundRect
PolyDraw
Pie
Chord
Arc
EndPath
OffsetClipRgn
GetRgnBox
CombineRgn
SetPaletteEntries
ResizePalette
ExcludeClipRect
MoveToEx
PlayEnhMetaFile
GetWinMetaFileBits
PlgBlt
BitBlt
OffsetViewportOrgEx
StretchBlt
ScaleViewportExtEx
ScaleWindowExtEx
CombineTransform
SetMapperFlags
CreatePen
CreateDIBitmap
CreatePatternBrush
ExtSelectClipRgn
GetBkMode
GetTextAlign
ModifyWorldTransform
ExtCreateRegion
CreateCompatibleBitmap
GetNearestColor
SetStretchBltMode
StretchDIBits
SetTextAlign
SetTextJustification
PolyPolygon
PlayMetaFileRecord
ExtCreatePen
GetWorldTransform
GetROP2
SetROP2
Rectangle
Polygon
IntersectClipRect
SetBrushOrgEx
GetClipRgn
SelectClipRgn
GetBkColor
GetTextColor
CreatePenIndirect
GetObjectW
DPtoLP
CreateDIBPatternBrushPt
ExtTextOutW
SetBitmapBits
CreateEnhMetaFileW
GdiComment
GetMetaFileW
GetMetaFileA
SaveDC
SetWindowOrgEx
SetViewportOrgEx
SetGraphicsMode
SetWorldTransform
GetEnhMetaFileW
GetEnhMetaFileA
GetEnhMetaFileBits
CopyEnhMetaFileA
CopyMetaFileA
DeleteMetaFile
GetEnhMetaFileHeader
SetMetaFileBitsEx
SetEnhMetaFileBits
CreateEnhMetaFileA
SetMapMode
SetViewportExtEx
SetWindowExtEx
PlayMetaFile
CloseEnhMetaFile
DeleteEnhMetaFile
SetMetaRgn
GetMetaFileBitsEx
EnumMetaFile
EnumEnhMetaFile
PlayEnhMetaFileRecord
RestoreDC
GetStockObject
CreateBitmap
SetTextColor
SetBkColor
SetBkMode
SetDIBits
CreateBrushIndirect
CreatePalette
GetSystemPaletteEntries
GetSystemPaletteUse
GetDeviceCaps
ExtEscape
GetObjectType
GetPixel
SetDIBColorTable
DeleteObject
SelectPalette
GetTextFaceA
GetTextMetricsA
GetTextFaceW
GetTextMetricsW
EnumFontFamiliesExA
EnumFontFamiliesExW
SelectObject
CreateFontIndirectW
CreateFontIndirectA
GetRegionData
DeleteDC
CreateDCA
CreateICA
CreateRectRgn
GetRandomRgn
LPtoDP
PolyPolyline
GetViewportExtEx
GetWindowOrgEx
GetViewportOrgEx
GetMapMode
SetICMMode
Escape
GetDCOrgEx
GetObjectA
GetCurrentObject
GetDIBits
CreateCompatibleDC
CreateDIBSection
RealizePalette
GetPaletteEntries
GdiFlush
PatBlt

ole32

CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal

advapi32

RegSetValueExA
RegCloseKey
RegEnumValueW
RegQueryInfoKeyA
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExA
RegEnumKeyExA
RegEnumKeyExW
RegCreateKeyExA
RegQueryValueExW
RegSetValueExW
RegEnumValueA
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyExW

Exports

Exports

GdipAddPathArc
GdipAddPathArcI
GdipAddPathBezier
GdipAddPathBezierI
GdipAddPathBeziers
GdipAddPathBeziersI
GdipAddPathClosedCurve
GdipAddPathClosedCurve2
GdipAddPathClosedCurve2I
GdipAddPathClosedCurveI
GdipAddPathCurve
GdipAddPathCurve2
GdipAddPathCurve2I
GdipAddPathCurve3
GdipAddPathCurve3I
GdipAddPathCurveI
GdipAddPathEllipse
GdipAddPathEllipseI
GdipAddPathLine
GdipAddPathLine2
GdipAddPathLine2I
GdipAddPathLineI
GdipAddPathPath
GdipAddPathPie
GdipAddPathPieI
GdipAddPathPolygon
GdipAddPathPolygonI
GdipAddPathRectangle
GdipAddPathRectangleI
GdipAddPathRectangles
GdipAddPathRectanglesI
GdipAddPathString
GdipAddPathStringI
GdipAlloc
GdipBeginContainer
GdipBeginContainer2
GdipBeginContainerI
GdipBitmapGetPixel
GdipBitmapLockBits
GdipBitmapSetPixel
GdipBitmapSetResolution
GdipBitmapUnlockBits
GdipClearPathMarkers
GdipCloneBitmapArea
GdipCloneBitmapAreaI
GdipCloneBrush
GdipCloneCustomLineCap
GdipCloneFont
GdipCloneFontFamily
GdipCloneImage
GdipCloneImageAttributes
GdipCloneMatrix
GdipClonePath
GdipClonePen
GdipCloneRegion
GdipCloneStringFormat
GdipClosePathFigure
GdipClosePathFigures
GdipCombineRegionPath
GdipCombineRegionRect
GdipCombineRegionRectI
GdipCombineRegionRegion
GdipComment
GdipCreateAdjustableArrowCap
GdipCreateBitmapFromDirectDrawSurface
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipCreateBitmapFromResource
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateCachedBitmap
GdipCreateCustomLineCap
GdipCreateFont
GdipCreateFontFamilyFromName
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCreateFontFromLogfontW
GdipCreateFromHDC
GdipCreateFromHDC2
GdipCreateFromHWND
GdipCreateFromHWNDICM
GdipCreateHBITMAPFromBitmap
GdipCreateHICONFromBitmap
GdipCreateHalftonePalette
GdipCreateHatchBrush
GdipCreateImageAttributes
GdipCreateLineBrush
GdipCreateLineBrushFromRect
GdipCreateLineBrushFromRectI
GdipCreateLineBrushFromRectWithAngle
GdipCreateLineBrushFromRectWithAngleI
GdipCreateLineBrushI
GdipCreateMatrix
GdipCreateMatrix2
GdipCreateMatrix3
GdipCreateMatrix3I
GdipCreateMetafileFromEmf
GdipCreateMetafileFromFile
GdipCreateMetafileFromStream
GdipCreateMetafileFromWmf
GdipCreateMetafileFromWmfFile
GdipCreatePath
GdipCreatePath2
GdipCreatePath2I
GdipCreatePathGradient
GdipCreatePathGradientFromPath
GdipCreatePathGradientI
GdipCreatePathIter
GdipCreatePen1
GdipCreatePen2
GdipCreateRegion
GdipCreateRegionHrgn
GdipCreateRegionPath
GdipCreateRegionRect
GdipCreateRegionRectI
GdipCreateRegionRgnData
GdipCreateSolidFill
GdipCreateStreamOnFile
GdipCreateStringFormat
GdipCreateTexture
GdipCreateTexture2
GdipCreateTexture2I
GdipCreateTextureIA
GdipCreateTextureIAI
GdipDeleteBrush
GdipDeleteCachedBitmap
GdipDeleteCustomLineCap
GdipDeleteFont
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDeleteMatrix
GdipDeletePath
GdipDeletePathIter
GdipDeletePen
GdipDeletePrivateFontCollection
GdipDeleteRegion
GdipDeleteStringFormat
GdipDisposeImage
GdipDisposeImageAttributes
GdipDrawArc
GdipDrawArcI
GdipDrawBezier
GdipDrawBezierI
GdipDrawBeziers
GdipDrawBeziersI
GdipDrawCachedBitmap
GdipDrawClosedCurve
GdipDrawClosedCurve2
GdipDrawClosedCurve2I
GdipDrawClosedCurveI
GdipDrawCurve
GdipDrawCurve2
GdipDrawCurve2I
GdipDrawCurve3
GdipDrawCurve3I
GdipDrawCurveI
GdipDrawDriverString
GdipDrawEllipse
GdipDrawEllipseI
GdipDrawImage
GdipDrawImageI
GdipDrawImagePointRect
GdipDrawImagePointRectI
GdipDrawImagePoints
GdipDrawImagePointsI
GdipDrawImagePointsRect
GdipDrawImagePointsRectI
GdipDrawImageRect
GdipDrawImageRectI
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipDrawLine
GdipDrawLineI
GdipDrawLines
GdipDrawLinesI
GdipDrawPath
GdipDrawPie
GdipDrawPieI
GdipDrawPolygon
GdipDrawPolygonI
GdipDrawRectangle
GdipDrawRectangleI
GdipDrawRectangles
GdipDrawRectanglesI
GdipDrawString
GdipEmfToWmfBits
GdipEndContainer
GdipEnumerateMetafileDestPoint
GdipEnumerateMetafileDestPointI
GdipEnumerateMetafileDestPoints
GdipEnumerateMetafileDestPointsI
GdipEnumerateMetafileDestRect
GdipEnumerateMetafileDestRectI
GdipEnumerateMetafileSrcRectDestPoint
GdipEnumerateMetafileSrcRectDestPointI
GdipEnumerateMetafileSrcRectDestPoints
GdipEnumerateMetafileSrcRectDestPointsI
GdipEnumerateMetafileSrcRectDestRect
GdipEnumerateMetafileSrcRectDestRectI
GdipFillClosedCurve
GdipFillClosedCurve2
GdipFillClosedCurve2I
GdipFillClosedCurveI
GdipFillEllipse
GdipFillEllipseI
GdipFillPath
GdipFillPie
GdipFillPieI
GdipFillPolygon
GdipFillPolygon2
GdipFillPolygon2I
GdipFillPolygonI
GdipFillRectangle
GdipFillRectangleI
GdipFillRectangles
GdipFillRectanglesI
GdipFillRegion
GdipFlattenPath
GdipFlush
GdipFree
GdipGetAdjustableArrowCapFillState
GdipGetAdjustableArrowCapHeight
GdipGetAdjustableArrowCapMiddleInset
GdipGetAdjustableArrowCapWidth
GdipGetAllPropertyItems
GdipGetBrushType
GdipGetCellAscent
GdipGetCellDescent
GdipGetClip
GdipGetClipBounds
GdipGetClipBoundsI
GdipGetCompositingMode
GdipGetCompositingQuality
GdipGetCustomLineCapBaseCap
GdipGetCustomLineCapBaseInset
GdipGetCustomLineCapStrokeCaps
GdipGetCustomLineCapStrokeJoin
GdipGetCustomLineCapType
GdipGetCustomLineCapWidthScale
GdipGetDC
GdipGetDpiX
GdipGetDpiY
GdipGetEmHeight
GdipGetEncoderParameterList
GdipGetEncoderParameterListSize
GdipGetFamily
GdipGetFamilyName
GdipGetFontCollectionFamilyCount
GdipGetFontCollectionFamilyList
GdipGetFontHeight
GdipGetFontHeightGivenDPI
GdipGetFontSize
GdipGetFontStyle
GdipGetFontUnit
GdipGetGenericFontFamilyMonospace
GdipGetGenericFontFamilySansSerif
GdipGetGenericFontFamilySerif
GdipGetHatchBackgroundColor
GdipGetHatchForegroundColor
GdipGetHatchStyle
GdipGetHemfFromMetafile
GdipGetImageAttributesAdjustedPalette
GdipGetImageBounds
GdipGetImageDecoders
GdipGetImageDecodersSize
GdipGetImageDimension
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetImageFlags
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipGetImageThumbnail
GdipGetImageType
GdipGetImageVerticalResolution
GdipGetImageWidth
GdipGetInterpolationMode
GdipGetLineBlend
GdipGetLineBlendCount
GdipGetLineColors
GdipGetLineGammaCorrection
GdipGetLinePresetBlend
GdipGetLinePresetBlendCount
GdipGetLineRect
GdipGetLineRectI
GdipGetLineSpacing
GdipGetLineTransform
GdipGetLineWrapMode
GdipGetLogFontA
GdipGetLogFontW
GdipGetMatrixElements
GdipGetMetafileDownLevelRasterizationLimit
GdipGetMetafileHeaderFromEmf
GdipGetMetafileHeaderFromFile
GdipGetMetafileHeaderFromMetafile
GdipGetMetafileHeaderFromStream
GdipGetMetafileHeaderFromWmf
GdipGetNearestColor
GdipGetPageScale
GdipGetPageUnit
GdipGetPathData
GdipGetPathFillMode
GdipGetPathGradientBlend
GdipGetPathGradientBlendCount
GdipGetPathGradientCenterColor
GdipGetPathGradientCenterPoint
GdipGetPathGradientCenterPointI
GdipGetPathGradientFocusScales
GdipGetPathGradientGammaCorrection
GdipGetPathGradientPath
GdipGetPathGradientPointCount
GdipGetPathGradientPresetBlend
GdipGetPathGradientPresetBlendCount
GdipGetPathGradientRect
GdipGetPathGradientRectI
GdipGetPathGradientSurroundColorCount
GdipGetPathGradientSurroundColorsWithCount
GdipGetPathGradientTransform
GdipGetPathGradientWrapMode
GdipGetPathLastPoint
GdipGetPathPoints
GdipGetPathPointsI
GdipGetPathTypes
GdipGetPathWorldBounds
GdipGetPathWorldBoundsI
GdipGetPenBrushFill
GdipGetPenColor
GdipGetPenCompoundArray
GdipGetPenCompoundCount
GdipGetPenCustomEndCap
GdipGetPenCustomStartCap
GdipGetPenDashArray
GdipGetPenDashCap197819
GdipGetPenDashCount
GdipGetPenDashOffset
GdipGetPenDashStyle
GdipGetPenEndCap
GdipGetPenFillType
GdipGetPenLineJoin
GdipGetPenMiterLimit
GdipGetPenMode
GdipGetPenStartCap
GdipGetPenTransform
GdipGetPenUnit
GdipGetPenWidth
GdipGetPixelOffsetMode
GdipGetPointCount
GdipGetPropertyCount
GdipGetPropertyIdList
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipGetPropertySize
GdipGetRegionBounds
GdipGetRegionBoundsI
GdipGetRegionData
GdipGetRegionDataSize
GdipGetRegionHRgn
GdipGetRegionScans
GdipGetRegionScansCount
GdipGetRegionScansI
GdipGetRenderingOrigin
GdipGetSmoothingMode
GdipGetSolidFillColor
GdipGetStringFormatAlign
GdipGetStringFormatDigitSubstitution
GdipGetStringFormatFlags
GdipGetStringFormatHotkeyPrefix
GdipGetStringFormatLineAlign
GdipGetStringFormatMeasurableCharacterRangeCount
GdipGetStringFormatTabStopCount
GdipGetStringFormatTabStops
GdipGetStringFormatTrimming
GdipGetTextContrast
GdipGetTextRenderingHint
GdipGetTextureImage
GdipGetTextureTransform
GdipGetTextureWrapMode
GdipGetVisibleClipBounds
GdipGetVisibleClipBoundsI
GdipGetWorldTransform
GdipGraphicsClear
GdipImageForceValidation
GdipImageGetFrameCount
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageRotateFlip
GdipImageSelectActiveFrame
GdipInvertMatrix
GdipIsClipEmpty
GdipIsEmptyRegion
GdipIsEqualRegion
GdipIsInfiniteRegion
GdipIsMatrixEqual
GdipIsMatrixIdentity
GdipIsMatrixInvertible
GdipIsOutlineVisiblePathPoint
GdipIsOutlineVisiblePathPointI
GdipIsStyleAvailable
GdipIsVisibleClipEmpty
GdipIsVisiblePathPoint
GdipIsVisiblePathPointI
GdipIsVisiblePoint
GdipIsVisiblePointI
GdipIsVisibleRect
GdipIsVisibleRectI
GdipIsVisibleRegionPoint
GdipIsVisibleRegionPointI
GdipIsVisibleRegionRect
GdipIsVisibleRegionRectI
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipMeasureCharacterRanges
GdipMeasureDriverString
GdipMeasureString
GdipMultiplyLineTransform
GdipMultiplyMatrix
GdipMultiplyPathGradientTransform
GdipMultiplyPenTransform
GdipMultiplyTextureTransform
GdipMultiplyWorldTransform
GdipNewInstalledFontCollection
GdipNewPrivateFontCollection
GdipPathIterCopyData
GdipPathIterEnumerate
GdipPathIterGetCount
GdipPathIterGetSubpathCount
GdipPathIterHasCurve
GdipPathIterIsValid
GdipPathIterNextMarker
GdipPathIterNextMarkerPath
GdipPathIterNextPathType
GdipPathIterNextSubpath
GdipPathIterNextSubpathPath
GdipPathIterRewind
GdipPlayMetafileRecord
GdipPrivateAddFontFile
GdipPrivateAddMemoryFont
GdipRecordMetafile
GdipRecordMetafileFileName
GdipRecordMetafileFileNameI
GdipRecordMetafileI
GdipRecordMetafileStream
GdipRecordMetafileStreamI
GdipReleaseDC
GdipRemovePropertyItem
GdipResetClip
GdipResetImageAttributes
GdipResetLineTransform
GdipResetPageTransform
GdipResetPath
GdipResetPathGradientTransform
GdipResetPenTransform
GdipResetTextureTransform
GdipResetWorldTransform
GdipRestoreGraphics
GdipReversePath
GdipRotateLineTransform
GdipRotateMatrix
GdipRotatePathGradientTransform
GdipRotatePenTransform
GdipRotateTextureTransform
GdipRotateWorldTransform
GdipSaveAdd
GdipSaveAddImage
GdipSaveGraphics
GdipSaveImageToFile
GdipSaveImageToStream
GdipScaleLineTransform
GdipScaleMatrix
GdipScalePathGradientTransform
GdipScalePenTransform
GdipScaleTextureTransform
GdipScaleWorldTransform
GdipSetAdjustableArrowCapFillState
GdipSetAdjustableArrowCapHeight
GdipSetAdjustableArrowCapMiddleInset
GdipSetAdjustableArrowCapWidth
GdipSetClipGraphics
GdipSetClipHrgn
GdipSetClipPath
GdipSetClipRect
GdipSetClipRectI
GdipSetClipRegion
GdipSetCompositingMode
GdipSetCompositingQuality
GdipSetCustomLineCapBaseCap
GdipSetCustomLineCapBaseInset
GdipSetCustomLineCapStrokeCaps
GdipSetCustomLineCapStrokeJoin

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/idtsg.cpl
.dll windows:4 windows x86 arch:x86

bf4fd2dcee37aa451bc2bc85507273ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

stlang

LocalizeSetLangID
LocalizeGetLangID
LocalizeString

winmm

mixerGetDevCapsW
mixerOpen
mixerGetLineInfoW
mixerGetLineControlsW
mixerGetControlDetailsW
mixerSetControlDetails
mixerMessage
mixerClose
PlaySoundW
mixerGetNumDevs

setupapi

SetupDiGetDeviceRegistryPropertyW
SetupDiOpenDevRegKey
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsExW
SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces

rpcrt4

UuidFromStringW

mfc42u

ord6390
ord1808
ord3714
ord2403
ord2015
ord4213
ord2570
ord4392
ord3577
ord5261
ord4370
ord4847
ord4992
ord2506
ord6048
ord1767
ord4401
ord4419
ord793
ord616
ord641
ord324
ord2362
ord2354
ord2294
ord4229
ord5276
ord2634
ord3087
ord6211
ord1197
ord858
ord538
ord2810
ord6330
ord6195
ord5949
ord6107
ord3865
ord2106
ord4704
ord6451
ord755
ord470
ord4688
ord4242
ord4243
ord4240
ord4237
ord4241
ord1637
ord2447
ord4451
ord4718
ord2858
ord4493
ord1130
ord4804
ord4768
ord1173
ord3016
ord4452
ord4494
ord4495
ord4769
ord665
ord1971
ord5438
ord3313
ord5180
ord354
ord1165
ord3592
ord3605
ord656
ord2078
ord5142
ord5764
ord6125
ord6124
ord3568
ord5783
ord4470
ord3711
ord790
ord2637
ord2293
ord6868
ord2756
ord4219
ord3312
ord2081
ord2105
ord6874
ord2070
ord5568
ord2910
ord1899
ord5155
ord5156
ord5154
ord4899
ord4736
ord4970
ord4942
ord4352
ord4371
ord4848
ord5283
ord4829
ord489
ord768
ord2350
ord4253
ord537
ord4294
ord4124
ord6655
ord6375
ord3792
ord1226
ord6153
ord4215
ord2576
ord3649
ord2430
ord6266
ord1172
ord2606
ord4273
ord940
ord942
ord927
ord353
ord1184
ord5674
ord5785
ord5732
ord5819
ord3659
ord996
ord2746
ord415
ord715
ord5637
ord1859
ord2861
ord816
ord562
ord1863
ord384
ord686
ord5603
ord2754
ord897
ord2088
ord2400
ord1635
ord2445
ord941
ord1834
ord2755
ord1854
ord3696
ord500
ord772
ord6138
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord6168
ord5869
ord5790
ord5575
ord5567
ord6057
ord5860
ord3591
ord4272
ord5679
ord3915
ord6190
ord3490
ord1795
ord5856
ord3981
ord2914
ord556
ord1083
ord501
ord807
ord2915
ord2004
ord4158
ord2112
ord554
ord1614
ord4197
ord5852
ord536
ord1192
ord5602
ord2745
ord696
ord1258
ord5638
ord4180
ord5624
ord6466
ord3701
ord5446
ord4018
ord909
ord326
ord2538
ord3810
ord291
ord1109
ord2715
ord2382
ord3054
ord5094
ord5097
ord4461
ord4298
ord3345
ord5006
ord975
ord5468
ord3398
ord2874
ord2873
ord4146
ord4072
ord5233
ord5278
ord2641
ord1658
ord4430
ord1717
ord5252
ord4421
ord706
ord408
ord1857
ord5095
ord2093
ord5098
ord3346
ord976
ord4147
ord2374
ord5279
ord5250
ord2437
ord401
ord674
ord1850
ord2094
ord5469
ord407
ord645
ord1856
ord5248
ord366
ord5801
ord4140
ord5480
ord3227
ord1134
ord1137
ord2144
ord1851
ord4689
ord5935
ord5191
ord1995
ord5726
ord3943
ord2177
ord2176
ord4209
ord3102
ord5612
ord988
ord3439
ord3188
ord4157
ord3348
ord4616
ord6449
ord709
ord411
ord1811
ord3097
ord6150
ord2523
ord4358
ord4052
ord4116
ord2381
ord5077
ord1702
ord1706
ord5230
ord6365
ord5275
ord5244
ord2436
ord331
ord4231
ord6644
ord2706
ord5467
ord1229
ord3864
ord2119
ord2383
ord5096
ord5099
ord4462
ord2875
ord323
ord5280
ord4431
ord5251
ord4422
ord402
ord3638
ord394
ord773
ord3737
ord713
ord818
ord6137
ord414
ord2373
ord6456
ord1230
ord5855
ord6597
ord5600
ord925
ord6307
ord4166
ord922
ord6155
ord6640
ord2776
ord6279
ord6278
ord6867
ord860
ord3716
ord795
ord6374
ord6376
ord6865
ord4667
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord3948
ord3733
ord815
ord561
ord1594
ord2236
ord2372
ord3133
ord3688
ord4118
ord1921
ord2108
ord6115
ord609
ord809
ord640
ord3569
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord3397
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord6379
ord5436
ord535
ord861
ord823
ord6139
ord5857
ord541
ord801
ord2855
ord3614
ord2559
ord472
ord5784
ord4292
ord4128
ord283
ord6193
ord1088
ord6354
ord4155
ord2423
ord2114
ord1143
ord289
ord6871
ord1633
ord1634
ord613
ord2854
ord5871
ord540
ord3871
ord800
ord2859
ord5977
ord5047
ord2371
ord4279
ord2397
ord4270
ord5781
ord2444
ord567
ord4347
ord6370
ord5157
ord2377
ord5237
ord4390
ord1768
ord4073
ord6051
ord2567
ord2406
ord3621
ord3658
ord825
ord3566
ord269
ord826
ord600
ord1571
ord1250
ord1248
ord1563
ord1194
ord1240
ord342

msvcrt

__CxxFrameHandler
_adjust_fdiv
_initterm
_onexit
__dllonexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_except_handler3
memset
iswalpha
wcscspn
iswspace
_wcsnicmp
wcstoul
_CxxThrowException
wcsstr
wcsncmp
wcschr
memmove
swprintf
tolower
_wcsicmp
_wtoi
wcstol
sprintf
wcscat
malloc
wcscmp
calloc
free
wcscpy
wcsncpy
_ftol
wcslen

kernel32

FormatMessageW
LocalAlloc
LocalFree
CreateFileW
DeviceIoControl
CloseHandle
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
GetCommandLineW
GetLocaleInfoW
GetFileAttributesExW
GetFileAttributesW
GetFullPathNameW
ExpandEnvironmentStringsW
GetCurrentDirectoryW
InterlockedDecrement
GetEnvironmentVariableW
MultiByteToWideChar
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetCurrentThreadId
SetLastError
GetTickCount
FreeLibrary
LoadLibraryW
GetProcAddress
MulDiv
GetVersion
lstrlenW
GetLastError
Sleep
GetModuleFileNameW
GetModuleHandleW
FindResourceW
LoadResource
LockResource
GetVersionExW
CallNamedPipeW
LoadLibraryA

user32

TabbedTextOutW
GetMessagePos
GetMenuItemID
WindowFromDC
GetMenuInfo
CopyAcceleratorTableW
MapVirtualKeyW
GetKeyNameTextW
CopyImage
GetMenuItemRect
GetMenuItemInfoW
IsMenu
SetMenuInfo
GetWindowDC
GetMenuItemCount
MonitorFromRect
MonitorFromWindow
GetMonitorInfoW
IsWindow
LoadBitmapW
ModifyMenuW
IsIconic
GetSystemMetrics
DrawIcon
SystemParametersInfoW
SetWindowRgn
LoadIconW
SetWindowPos
wsprintfW
SetRect
PtInRect
LoadCursorW
GetDlgItem
GetFocus
IsChild
MenuItemFromPoint
GetCursorPos
GetMenu
DrawTextW
SetTimer
KillTimer
RegisterWindowMessageW
GetCapture
SetCapture
ReleaseCapture
EnableWindow
FrameRect
LoadMenuW
LoadImageW
GetIconInfo
CreateIconIndirect
GetDC
ReleaseDC
GetSysColor
FillRect
DrawStateW
OffsetRect
GetClientRect
CopyRect
InflateRect
DrawFocusRect
GetWindowRect
GetSubMenu
TrackPopupMenuEx
SetLayeredWindowAttributes
OpenClipboard
PostMessageW
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
SendMessageW
GetWindowLongW
DestroyIcon
EmptyClipboard
SetClipboardData
CloseClipboard
GetNextDlgGroupItem
FindWindowW
DestroyCursor
DestroyMenu
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
SetMenuDefaultItem
UpdateWindow
SetRectEmpty
ChildWindowFromPointEx
GetDlgCtrlID
LoadStringW
SetFocus
ScreenToClient
CreateWindowExW
DefWindowProcW
ValidateRect
BeginPaint
EndPaint
SetMenu
DrawMenuBar
CallNextHookEx
GetClassNameW
SetPropW
CallWindowProcW
GetPropW
RemovePropW
UnhookWindowsHookEx
SetWindowsHookExW
SetWindowLongW
IntersectRect
CreatePopupMenu
DeleteMenu
RemoveMenu
IsRectEmpty
RedrawWindow
GetMenuState
GetDesktopWindow
GetMenuStringW
InsertMenuW
AppendMenuW
GetMenuDefaultItem
DrawEdge
GetSystemMenu
GrayStringW

gdi32

SetBkColor
CreateBitmap
GetDeviceCaps
DeleteObject
StretchBlt
CreateCompatibleDC
CreateDIBSection
ExtCreateRegion
GetBitmapBits
Ellipse
Polyline
SelectObject
BitBlt
DeleteDC
GetObjectW
Arc
Polygon
SelectClipRgn
CreateRectRgn
CombineRgn
CreateRectRgnIndirect
CreateHatchBrush
UnrealizeObject
SetBrushOrgEx
Escape
TextOutW
RectVisible
PtVisible
CreatePen
Rectangle
RoundRect
GetNearestColor
SetWindowOrgEx
CreatePatternBrush
GetCurrentObject
GetTextAlign
GetTextMetricsW
GetLayout
SetTextAlign
MoveToEx
ExtTextOutW
GetTextExtentPointW
GetCurrentPositionEx
GetTextColor
GetTextExtentPoint32W
CreateSolidBrush
PatBlt
CreateFontIndirectW
SetPixel
SetTextColor
CreateCompatibleBitmap
GetStockObject
GetPixel
ExtCreatePen

advapi32

RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyW
RegEnumValueW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegOpenKeyExA
RegCloseKey

shell32

ShellExecuteExW
Shell_NotifyIconW

comctl32

ImageList_GetIconSize
ImageList_AddMasked
ImageList_Replace
ImageList_Add
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_GetImageCount
ImageList_Draw
ord17
_TrackMouseEvent

ole32

CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemFree

oleaut32

SysAllocString
CreateErrorInfo
VariantClear
SafeArrayGetElement
SysStringLen
VariantInit
SysAllocStringLen
GetErrorInfo
SetErrorInfo
VariantChangeType
SysFreeString

gdiplus

GdipSetSmoothingMode
GdipCreateSolidFill
GdipDeleteBrush
GdipDeleteGraphics
GdipFillPath
GdipDeletePath
GdipCreateFromHDC
GdipCreatePath
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdiplusShutdown
GdiplusStartup
GdipCloneBrush
GdipDeletePen
GdipCreatePen1
GdipSetCompositingMode
GdipDrawArcI
GdipFillEllipseI
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromFile
GdipCloneImage
GdipFree
GdipDisposeImage
GdipAlloc

dsound

ord1

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

shlwapi

PathRemoveExtensionW
PathRenameExtensionW
PathRemoveFileSpecW
PathBuildRootW
PathCommonPrefixW
PathGetDriveNumberW
PathRelativePathToW
PathIsRelativeW
PathAddExtensionW
PathCompactPathW
PathCompactPathExW
PathSetDlgItemPathW
PathSearchAndQualifyW
PathFindOnPathW
PathFileExistsW
PathIsDirectoryW
PathIsSystemFolderW
PathUnmakeSystemFolderW
PathMakeSystemFolderW
PathFindExtensionW
PathFindFileNameW
PathSkipRootW
PathAppendW
PathRemoveBackslashW
PathAddBackslashW
PathRemoveArgsW
PathParseIconLocationW
PathQuoteSpacesW
PathCanonicalizeW
PathMatchSpecW
PathMakePrettyW

Exports

Exports

CPlApplet

Sections

.text
Size: 456KB - Virtual size: 452KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7.1MB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/idtsg64.cpl
.dll windows:6 windows x64 arch:x64

5d05d84339f86431591c8e8bf6ad50c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_maint_2.0.8_sdc_sqa\hostaudio\idtsg\objfre_wnet_amd64\amd64\idtsg64.pdb

Imports

mfc42u

ord3099
ord1472
ord2903
ord4565
ord5149
ord4771
ord3892
ord1777
ord6437
ord624
ord4570
ord2517
ord5406
ord2130
ord5245
ord4721
ord4806
ord5687
ord2466
ord1650
ord5093
ord1812
ord1033
ord4807
ord2329
ord4124
ord4851
ord337
ord2376
ord4852
ord852
ord2384
ord5151
ord4557
ord4860
ord2422
ord2023
ord4542
ord5702
ord2589
ord3177
ord4743
ord2661
ord6632
ord5061
ord3751
ord1499
ord4849
ord5196
ord6767
ord1463
ord3761
ord867
ord3774
ord5570
ord6520
ord4826
ord2094
ord6522
ord6110
ord2665
ord2328
ord5980
ord2783
ord4548
ord2129
ord2097
ord6224
ord2087
ord3437
ord2975
ord5887
ord5227
ord5709
ord5246
ord4722
ord4699
ord5352
ord5382
ord5114
ord5304
ord5583
ord5585
ord5584
ord1906
ord549
ord999
ord2371
ord4582
ord622
ord2449
ord4544
ord1471
ord2595
ord3820
ord6817
ord1533
ord6559
ord6691
ord2784
ord4436
ord4623
ord4602
ord1287
ord1284
ord1264
ord1483
ord1860
ord6556
ord5521
ord3647
ord3187
ord3141
ord1436
ord2405
ord2776
ord1433
ord2750
ord4983
ord3341
ord2114
ord5854
ord5972
ord4454
ord3822
ord6151
ord568
ord567
ord2178
ord1005
ord1857
ord6223
ord5839
ord890
ord3823
ord1623
ord1648
ord3879
ord3760
ord2464
ord2456
ord6609
ord1869
ord5676
ord6228
ord5705
ord6448
ord2396
ord5886
ord4462
ord5896
ord1317
ord6138
ord408
ord3482
ord6238
ord904
ord4569
ord6407
ord621
ord3831
ord3872
ord2112
ord6603
ord2780
ord6216
ord1408
ord1815
ord5522
ord4668
ord5935
ord4521
ord312
ord6173
ord6599
ord1195
ord4063
ord434
ord6096
ord344
ord3816
ord6607
ord3809
ord6099
ord1353
ord2551
ord3038
ord2908
ord4559
ord3873
ord5674
ord6021
ord2775
ord929
ord435
ord1865
ord4601
ord1863
ord2740
ord3787
ord2581
ord427
ord1381
ord4774
ord5678
ord387
ord1733
ord940
ord2781
ord4784
ord1006
ord1838
ord1856
ord1674
ord445
ord660
ord2421
ord915
ord5838
ord2671
ord1064
ord2105
ord2455
ord5704
ord5670
ord5659
ord420
ord4364
ord5701
ord4461
ord6806
ord2919
ord6543
ord1562
ord2463
ord856
ord4500
ord5656
ord2920
ord5971
ord1286
ord1862
ord1219
ord1721
ord3536
ord1716
ord5840
ord5503
ord1316
ord2404
ord5420
ord4422
ord3481
ord5957
ord4346
ord4633
ord287
ord4297
ord4705
ord4817
ord1808
ord2536
ord5524
ord5425
ord1537
ord1966
ord6222
ord443
ord938
ord6542
ord5932
ord1262
ord2395
ord4485
ord6738
ord3920
ord2411
ord1259
ord2801
ord5979
ord6705
ord6708
ord6818
ord6816
ord5912
ord3916
ord4214
ord6053
ord5711
ord5730
ord5065
ord4368
ord5724
ord5722
ord3468
ord2412
ord5615
ord1388
ord4191
ord6071
ord2515
ord2559
ord4836
ord6813
ord2752
ord4598
ord5039
ord659
ord1063
ord1606
ord812
ord1586
ord1555
ord1553
ord1577
ord1491
ord1544
ord355
ord1477
ord1585
ord1583
ord1416
ord288
ord1082
ord5077
ord4572
ord6328
ord832
ord1428
ord4571
ord6499
ord5804
ord6821
ord6225
ord6880
ord5815
ord6832
ord6544
ord1041
ord627
ord620
ord4187
ord6511
ord3889
ord1029
ord4752
ord2132
ord1126
ord1035
ord3894
ord1930
ord4424
ord6133
ord6614
ord6015
ord1122
ord2846
ord6076
ord6577
ord984
ord525
ord2394
ord6130
ord3234
ord4014
ord2629
ord2259
ord6886
ord2900
ord3783
ord3166
ord2393
ord1055
ord3046
ord650
ord4082
ord2427
ord4083
ord2420
ord4077
ord4131
ord822
ord3164
ord1040
ord4371
ord626
ord4988
ord3742
ord6243
ord4770
ord665
ord3790
ord1067
ord4599
ord2898
ord303
ord6612
ord6791
ord1387
ord6127
ord3535
ord1647
ord2586
ord6440
ord3743
ord4365
ord1778
ord3830
ord4741
ord4473
ord6351
ord6887
ord5663
ord2442
ord1646
ord2399
ord5586
ord6812
ord4694
ord286
ord4442
ord4621
ord6131
ord1574
ord2138
ord6102
ord2408
ord528
ord2574
ord826
ord310
ord3740
ord4017
ord2906
ord5229
ord5467
ord4789
ord1441
ord2670
ord2060
ord5712
ord6814
ord3933
ord5484
ord1736
ord5683
ord2457
ord2140
ord3049
ord3243
ord5699
ord3362
ord4609
ord4815
ord3862
ord3231
ord3366
ord851
ord3052
ord5525
ord336

msvcrt

memset
memcpy
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
__C_specific_handler
_amsg_exit
_initterm
_XcptFilter
_callnewh
_CxxThrowException
?what@exception@@UEBAPEBDXZ
??0exception@@QEAA@AEBQEBDH@Z
_errno
__CxxFrameHandler
iswspace
_wcsnicmp
wcsstr
wcschr
wcsncmp
memmove
swprintf
tolower
_wcsicmp
??1exception@@UEAA@XZ
_wtoi
sprintf
wcstol
??0exception@@QEAA@XZ
??0exception@@QEAA@AEBV0@@Z
calloc
free
malloc
wcsncpy

atl

ord30

advapi32

RegOpenKeyExA
RegQueryValueExA
RegEnumValueW
RegQueryInfoKeyW
RegSetValueExW
RegCreateKeyExW
RegCloseKey

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
OutputDebugStringA
LocalAlloc
LocalFree
VirtualProtect
GlobalFree
GlobalReAlloc
GlobalUnlock
GlobalLock
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GlobalAlloc
GetCommandLineW
GetLocaleInfoW
ExpandEnvironmentStringsW
MultiByteToWideChar
GetVersionExW
CallNamedPipeW
GetModuleFileNameW
GetModuleHandleW
FindResourceW
LoadResource
LockResource
Sleep
GetLastError
lstrlenW
GetProcAddress
FreeLibrary
GetVersion
GetTickCount
GlobalDeleteAtom
MulDiv
GlobalFindAtomW
GlobalAddAtomW
SetLastError
GetCurrentThreadId
LoadLibraryW
GetCurrentProcessId
LoadLibraryA
CreateFileW
DeviceIoControl
CloseHandle
QueryPerformanceCounter

user32

ModifyMenuW
IsIconic
LoadIconW
DrawIcon
GetPropW
RemovePropW
DrawTextW
CallWindowProcW
GrayStringW
GetClassNameW
GetMenuState
SetPropW
GetMenuInfo
IsRectEmpty
CallNextHookEx
IntersectRect
GetMenuDefaultItem
RedrawWindow
IsWindow
SetWindowLongPtrW
GetMenuItemCount
IsMenu
GetMessagePos
AppendMenuW
SetMenuInfo
WindowFromDC
GetMenuItemRect
SetWindowRgn
GetMenuItemInfoW
CopyAcceleratorTableW
GetMenuStringW
CreatePopupMenu
SetWindowsHookExW
MapVirtualKeyW
GetKeyNameTextW
UnhookWindowsHookEx
CopyImage
TabbedTextOutW
GetWindowDC
GetWindowLongPtrW
ScreenToClient
SetFocus
GetDlgCtrlID
LoadStringW
ChildWindowFromPointEx
SetRectEmpty
SetMenuDefaultItem
UpdateWindow
FindWindowW
AttachThreadInput
GetWindowThreadProcessId
SetForegroundWindow
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SetWindowLongW
SetLayeredWindowAttributes
SystemParametersInfoW
SetWindowPos
GetMenuItemID
LoadBitmapW
ClientToScreen
wsprintfW
SetRect
PtInRect
GetDlgItem
LoadCursorW
IsChild
GetCursorPos
SetTimer
GetMenu
KillTimer
GetSystemMenu
RegisterWindowMessageW
MenuItemFromPoint
GetFocus
DrawEdge
GetNextDlgGroupItem
GetSystemMetrics
ReleaseCapture
SetCapture
GetCapture
GetWindowLongW
GetSysColor
InvalidateRect
DestroyIcon
CopyRect
SetCursor
DestroyMenu
DestroyCursor
LoadMenuW
PostMessageW
TrackPopupMenuEx
SendMessageW
GetSubMenu
DrawStateW
FillRect
GetParent
GetWindowRect
EnableWindow
GetNextDlgTabItem
GetClientRect
ReleaseDC
InflateRect
FrameRect
WindowFromPoint
GetIconInfo
GetDC
OffsetRect
DrawFocusRect
CreateIconIndirect
GetActiveWindow
LoadImageW

ole32

CoUninitialize
CoInitialize
CoCreateInstance
CoTaskMemFree

oleaut32

SysFreeString
SysAllocStringLen
SysStringLen
SysAllocString
VariantClear
SafeArrayGetElement
VariantInit

shlwapi

PathFindFileNameW
PathParseIconLocationW
PathRemoveArgsW
PathMakePrettyW
PathCanonicalizeW
PathFileExistsW

comctl32

_TrackMouseEvent
ImageList_GetImageCount
ImageList_Replace
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_Draw
ImageList_AddMasked
ord17
ImageList_Add

rpcrt4

UuidFromStringW

winmm

mixerSetControlDetails
mixerClose
mixerGetNumDevs
mixerGetControlDetailsW
mixerOpen
mixerGetLineInfoW
mixerGetLineControlsW
PlaySoundW
mixerGetDevCapsW
mixerMessage

setupapi

SetupDiGetDeviceRegistryPropertyW
SetupDiOpenDevRegKey
SetupDiGetClassDevsExW
SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

shell32

ShellExecuteExW
Shell_NotifyIconW

gdiplus

GdipDrawArcI
GdipCreateHBITMAPFromBitmap
GdipCloneImage
GdipSetCompositingMode
GdipFillEllipseI
GdipCreatePen1
GdipDeletePen
GdipCreateBitmapFromFile
GdipDisposeImage
GdiplusStartup
GdipFillPath
GdipSetSmoothingMode
GdiplusShutdown
GdipDeleteBrush
GdipCloneBrush
GdipCreateSolidFill
GdipCreatePath
GdipDeletePath
GdipFree
GdipAlloc
GdipClosePathFigure
GdipCreateFromHDC
GdipDeleteGraphics
GdipAddPathLineI
GdipAddPathArcI

gdi32

ExtCreateRegion
CreateDIBSection
GetBitmapBits
Polygon
SelectClipRgn
SetWindowOrgEx
CreateRectRgnIndirect
TextOutW
CombineRgn
RectVisible
CreateRectRgn
PtVisible
GetCurrentPositionEx
GetTextExtentPointW
SetBrushOrgEx
Escape
ExtTextOutW
MoveToEx
GetLayout
SetTextAlign
GetNearestColor
GetTextMetricsW
GetTextAlign
CreatePatternBrush
GetCurrentObject
UnrealizeObject
PatBlt
Polyline
CreatePen
Rectangle
CreateSolidBrush
GetTextExtentPoint32W
GetTextColor
Arc
RoundRect
ExtCreatePen
CreateFontIndirectW
GetDeviceCaps
StretchBlt
BitBlt
SetBkColor
SelectObject
DeleteObject
CreateCompatibleDC
SetTextColor
DeleteDC
GetPixel
SetPixel
GetObjectW
CreateBitmap
CreateCompatibleBitmap
GetStockObject

dsound

ord1

stlang64

LocalizeString
LocalizeSetLangID
LocalizeGetLangID

Exports

Exports

CPlApplet

Sections

.text
Size: 596KB - Virtual size: 595KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7.1MB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/stacapi.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d7ae2da1b1b40fdddf7a5c759a86b983

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateEventW
InterlockedDecrement
CreateFileW
InitializeCriticalSection
DeleteCriticalSection
SetLastError
OutputDebugStringA
MultiByteToWideChar
lstrlenW
GetShortPathNameW
GetModuleFileNameW
FreeLibrary
lstrlenA
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
lstrcmpiW
lstrcpynW
DisableThreadLibraryCalls
HeapDestroy
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
LoadLibraryW
lstrcpyW
lstrcatW
InterlockedIncrement
GetVersionExW
CreateMutexW
ReleaseMutex
GetCurrentProcess
LocalAlloc
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
SetStdHandle
GetStringTypeW
GetStringTypeA
SetConsoleCtrlHandler
LoadLibraryA
GetOEMCP
GetACP
GetUserDefaultLCID
EnumSystemLocalesA
DeviceIoControl
FormatMessageW
LocalFree
SetEvent
CreateNamedPipeW
ConnectNamedPipe
ReadFile
WriteFile
FlushFileBuffers
DisconnectNamedPipe
CloseHandle
GetTickCount
CreateThread
GetLastError
GetProcAddress
CallNamedPipeW
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
LCMapStringW
LCMapStringA
SetFilePointer
UnhandledExceptionFilter
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
HeapSize
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
RaiseException
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TerminateProcess
Sleep
FatalAppExitA
ExitProcess
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
GetModuleHandleA
GetCurrentThread
TlsGetValue
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetVersion
GetCommandLineA
HeapReAlloc
HeapAlloc
HeapFree
RtlUnwind
WideCharToMultiByte
ExpandEnvironmentStringsW

user32

GetMessageW
SetWindowLongW
CreateWindowExW
RegisterClassW
RegisterDeviceNotificationW
UnregisterDeviceNotification
DefWindowProcW
TranslateMessage
GetWindowLongW
wsprintfW
PostMessageW
CharNextW
DispatchMessageW

advapi32

GetTokenInformation
LookupAccountSidW
RegQueryValueExW
RegEnumValueW
RegQueryInfoKeyW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyExW
RegCloseKey
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
OpenProcessToken

ole32

CoCreateFreeThreadedMarshaler
CoInitializeEx
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
StringFromGUID2
CoCreateInstance

oleaut32

VariantInit
VariantClear
CreateErrorInfo
VariantChangeType
SetErrorInfo
GetErrorInfo
SysFreeString
SysAllocString
SysStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreate
SysAllocStringByteLen
SysStringByteLen
SafeArrayPutElement
SysAllocStringLen
VarUI4FromStr
LoadTypeLi
RegisterTypeLi
LoadRegTypeLi

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
SetupDiGetClassDevsW
SetupDiOpenDeviceInterfaceRegKey
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsExW

winmm

mixerGetDevCapsW
mixerGetNumDevs
mixerGetLineControlsW
mixerGetLineInfoW
mixerOpen
mixerClose
mixerSetControlDetails
mixerGetControlDetailsW
mixerMessage

Exports

Exports

??0CSkpiRegCtrlClass@@QAE@ABV0@@Z
??0CSkpiRegCtrlClass@@QAE@XZ
??1CSkpiRegCtrlClass@@QAE@XZ
??4CSkpiRegCtrlClass@@QAEAAV0@ABV0@@Z
??_7CSkpiRegCtrlClass@@6B@
?FindCharW@CSkpiRegCtrlClass@@IAEHPAGGI@Z
?FormatCommonParams@CSkpiRegCtrlClass@@IAEHW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11PADPAH@Z
?GetAudioPnpPropertyRegSz@CSkpiRegCtrlClass@@IAEJIPAG0PAK@Z
?GetAudioPnpPropertyRegSzOld@CSkpiRegCtrlClass@@IAEHKPAGPAK@Z
?GetDriverSubpathW@CSkpiRegCtrlClass@@UAGJIPAGPAK@Z
?GetKeyValuesHelper@CSkpiRegCtrlClass@@IAEEPAPAUHKEY__@@KPAPAUtagIDT_Storage_Key@@@Z
?GetMixerPath@CSkpiRegCtrlClass@@IAEHIPAGPAK@Z
?GetNextKeyName@CSkpiRegCtrlClass@@IAEJPAPAGPAG@Z
?GetNumSkpiKeyValuesA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PADPAK@Z
?GetNumSkpiKeyValuesW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@1PAK@Z
?GetNumSkpiKeys@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PAK@Z
?GetResultInfo@CSkpiRegCtrlClass@@IAEJPAD@Z
?GetSkpiBinaryA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PAD3PAEPAK@Z
?GetSkpiBinaryW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11PAEPAK@Z
?GetSkpiIntegerA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PAD3PAK@Z
?GetSkpiIntegerW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11PAK@Z
?GetSkpiKeyValuesA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PADPAUtagIDT_Storage_Key@@PAK@Z
?GetSkpiKeyValuesW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@1PAUtagIDT_Storage_Key@@PAK@Z
?GetSkpiKeys@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PAUtagIDT_Storage_Key@@PAK@Z
?GetSkpiPluginBinaryA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD2PAEPAK@Z
?GetSkpiPluginBinaryW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG11PAEPAK@Z
?GetSkpiPluginIntegerA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD2PAK@Z
?GetSkpiPluginIntegerW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG11PAK@Z
?GetSkpiPluginStringA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD22PAK@Z
?GetSkpiPluginStringW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG111PAK@Z
?GetSkpiPresetBinaryA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD2PAEPAK@Z
?GetSkpiPresetBinaryW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG11PAEPAK@Z
?GetSkpiPresetIntegerA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD2PAK@Z
?GetSkpiPresetIntegerW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG11PAK@Z
?GetSkpiPresetStringA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD22PAK@Z
?GetSkpiPresetStringW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG111PAK@Z
?GetSkpiStringA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PAD33PAK@Z
?GetSkpiStringW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@111PAK@Z
?GetSubkeys@CSkpiRegCtrlClass@@IAEEPAPAUHKEY__@@PAGEE01KH@Z
?GetSubkeysHelper@CSkpiRegCtrlClass@@IAEEPAPAUHKEY__@@PAGEPAEEPAPAPAU2@PAPAGKPAKH@Z
?GetSubpathW@CSkpiRegCtrlClass@@IAEHW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11@Z
?GetSubpathWVista@CSkpiRegCtrlClass@@IAEHW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11@Z
?GetSubpathWXP@CSkpiRegCtrlClass@@IAEHW4_IDT_eSkpiStorageSettings@@IW4_IDT_eApoType@@PAG2@Z
?GetSubstringW@CSkpiRegCtrlClass@@IAEHPAGI0K@Z
?GetSubstringW@CSkpiRegCtrlClass@@IAEHPAGII0K@Z
?IsCallerApp@CSkpiRegCtrlClass@@IAEHPAG@Z
?IsUserElevated@CSkpiRegCtrlClass@@IAEHXZ
?IsUserElevatedVista@CSkpiRegCtrlClass@@IAEHXZ
?IsUserElevatedXP@CSkpiRegCtrlClass@@IAEHXZ
?NeedsElevation@CSkpiRegCtrlClass@@IAEHXZ
?PopulateKey@CSkpiRegCtrlClass@@IAEHPAUtagIDT_Storage_Key@@PAGKK@Z
?SendBinaryParams@CSkpiRegCtrlClass@@IAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11PAEK@Z
?SendIntegerParams@CSkpiRegCtrlClass@@IAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11K@Z
?SendStringParams@CSkpiRegCtrlClass@@IAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@111@Z
?SetSkpiBinaryA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PAD3PAEK@Z
?SetSkpiBinaryW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11PAEK@Z
?SetSkpiIntegerA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PAD3K@Z
?SetSkpiIntegerW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@11K@Z
?SetSkpiPluginBinaryA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD2PAEK@Z
?SetSkpiPluginBinaryW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG11PAEK@Z
?SetSkpiPluginIntegerA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD2K@Z
?SetSkpiPluginIntegerW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG11K@Z
?SetSkpiPluginStringA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD22@Z
?SetSkpiPluginStringW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG111@Z
?SetSkpiPresetBinaryA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD2PAEK@Z
?SetSkpiPresetBinaryW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG11PAEK@Z
?SetSkpiPresetIntegerA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD2K@Z
?SetSkpiPresetIntegerW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG11K@Z
?SetSkpiPresetStringA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGPAD22@Z
?SetSkpiPresetStringW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAG111@Z
?SetSkpiStringA@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@PAD33@Z
?SetSkpiStringW@CSkpiRegCtrlClass@@UAGJW4_IDT_eSkpiStorageSettings@@PAGW4_IDT_eApoType@@111@Z
?TrimKeyNameW@CSkpiRegCtrlClass@@IAEJPAG0@Z
?testOfTheDay@CSkpiRegCtrlClass@@UAGJXZ
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 212KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/staco.dll
.dll windows:6 windows x86 arch:x86

cdc2090af116670e5024896b6cf13e53

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_maint_2.0.8_sdc_sqa\hostaudio\install\staco\objfre_wlh_x86\i386\STACO.pdb

Imports

setupapi

SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceInstallParamsA
SetupDiGetDeviceInstanceIdA
SetupDiOpenDevRegKey
SetupDiCreateDevRegKeyA
SetupFindNextLine
SetupDiGetSelectedDriverA
SetupDiGetDriverInfoDetailA
SetupOpenInfFileA
SetupDiGetActualSectionToInstallA
SetupFindFirstLineA
SetupGetStringFieldA
SetupCloseInfFile
SetupDiSetDeviceRegistryPropertyA

kernel32

FindFirstFileA
lstrcmpiA
lstrlenA
DeleteFileA
SetLastError
CloseHandle
GetLastError
WaitForSingleObject
CreateProcessA
lstrcmpA
lstrcpynA
GetPrivateProfileStringA
lstrcatA
LocalFree
FreeLibrary
TerminateProcess
OpenProcess
GetProcAddress
LoadLibraryA
GlobalFree
GlobalAlloc
GetFullPathNameA
Sleep
GetTickCount
HeapFree
HeapAlloc
GetProcessHeap
GetVersionExA
MoveFileExA
GetCommandLineA
RtlUnwind
RaiseException
MoveFileA
GetSystemTimeAsFileTime
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
SetHandleCount
GetStdHandle
GetFileType
SetFileAttributesA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
CopyFileA
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
WriteFile
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
OutputDebugStringA
GetTimeZoneInformation
HeapSize
InitializeCriticalSection
GetModuleHandleW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
SetFilePointer
GetConsoleCP
GetConsoleMode
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
FindNextFileA
FindClose
GetFileAttributesA
CreateDirectoryA
ExpandEnvironmentStringsA
lstrcpyA
GetStartupInfoA
GetCurrentProcessId

user32

CallWindowProcA
PostMessageA
GetWindowRect
FindWindowExA

advapi32

RegDeleteValueA
ConvertStringSecurityDescriptorToSecurityDescriptorA
RegEnumValueA
RegSetValueExA
RegQueryValueExA
RegQueryValueA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA
RegCreateKeyExA

shell32

SHGetFolderPathA

shlwapi

SHGetValueA

Exports

Exports

Stac97CoInstaller

Sections

.text
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/staco64.dll
.dll windows:6 windows x64 arch:x64

0c5f4b715aee04c395e8e2ec82f8d754

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_maint_2.0.8_sdc_sqa\hostaudio\install\staco\objfre_wlh_amd64\amd64\STACO64.pdb

Imports

setupapi

SetupOpenInfFileA
SetupCloseInfFile
SetupFindFirstLineA
SetupDiGetActualSectionToInstallA
SetupDiGetDeviceInstanceIdA
SetupGetStringFieldA
SetupDiOpenDevRegKey
SetupFindNextLine
SetupDiSetDeviceInstallParamsA
SetupDiGetSelectedDriverA
SetupDiSetDeviceRegistryPropertyA
SetupDiGetDriverInfoDetailA
SetupDiCreateDevRegKeyA
SetupDiGetDeviceInstallParamsA

kernel32

lstrcmpiA
CopyFileA
GetFileAttributesA
SetFileAttributesA
ExpandEnvironmentStringsA
FindClose
WaitForSingleObject
lstrcpynA
GetLastError
lstrcatA
SetLastError
lstrcmpA
LocalFree
CreateProcessA
CloseHandle
GetPrivateProfileStringA
LoadLibraryA
GetFullPathNameA
GetVersionExA
GetProcAddress
MoveFileExA
FreeLibrary
OpenProcess
HeapAlloc
GlobalAlloc
GetTickCount
GetProcessHeap
TerminateProcess
GlobalFree
FormatMessageA
HeapFree
Sleep
FlsSetValue
GetCommandLineA
GetVersionExW
MoveFileA
GetSystemTimeAsFileTime
RaiseException
RtlPcToFileHeader
RtlLookupFunctionEntry
RtlUnwindEx
GetModuleHandleW
ExitProcess
EncodePointer
DecodePointer
FlsFree
FlsGetValue
GetCurrentThreadId
FindFirstFileA
FlsAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapSetInformation
HeapCreate
FindNextFileA
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
WriteFile
GetCPInfo
GetACP
GetOEMCP
LCMapStringW
MultiByteToWideChar
OutputDebugStringA
EnterCriticalSection
LeaveCriticalSection
GetTimeZoneInformation
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
LoadLibraryW
GetStringTypeW
VirtualProtect
VirtualAlloc
SetThreadStackGuarantee
GetSystemInfo
VirtualQuery
CreateFileA
SetFilePointer
GetConsoleCP
GetConsoleMode
SetStdHandle
FlushFileBuffers
ReadFile
SetEndOfFile
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
CreateFileW
CreateDirectoryA
lstrcpyA
DeleteFileA
lstrlenA
HeapDestroy

user32

CallWindowProcA
PostMessageA
FindWindowExA
GetWindowRect

advapi32

RegDeleteValueA
RegSetValueExA
RegQueryValueA
RegOpenKeyExA
RegEnumValueA
RegEnumKeyExA
ConvertStringSecurityDescriptorToSecurityDescriptorA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyExA

shell32

SHGetFolderPathA

shlwapi

SHGetValueA

Exports

Exports

Stac97CoInstaller

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/stacsv.exe
.exe windows:4 windows x86 arch:x86

a525f2c9596a6e269997bd3ade1c8c6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegEnumValueA
RegQueryInfoKeyA
CopySid
GetLengthSid
IsValidSid
LookupAccountNameA
GetUserNameA
StartServiceCtrlDispatcherA
ChangeServiceConfig2A
CloseServiceHandle
CreateServiceA
OpenSCManagerA
RegSetValueExA
RegCreateKeyA
DeleteService
QueryServiceStatus
ControlService
OpenServiceA
RegDeleteValueA
StartServiceA
RegisterServiceCtrlHandlerExA
SetServiceStatus
DeregisterEventSource
ReportEventA
RegisterEventSourceA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW

kernel32

Sleep
GetProcAddress
GetModuleHandleA
SetConsoleCtrlHandler
LocalFree
FormatMessageA
GlobalFree
GlobalAlloc
GetStdHandle
AllocConsole
InterlockedDecrement
CallNamedPipeA
MultiByteToWideChar
GetModuleFileNameA
WaitForSingleObject
WaitForMultipleObjects
ResetEvent
SetEvent
CreateThread
CreateEventA
DisconnectNamedPipe
FlushFileBuffers
WriteFile
ReadFile
ConnectNamedPipe
CreateNamedPipeA
ExitThread
CreateMutexA
lstrlenW
WideCharToMultiByte
lstrlenA
LocalAlloc
LoadLibraryA
FreeLibrary
CreateFileA
CreateFileW
DeviceIoControl
SetLastError
GetVersionExA
DebugBreak
CloseHandle
GetLastError
OutputDebugStringA
ReleaseMutex

user32

DestroyWindow
PostMessageA
UnregisterDeviceNotification
RegisterDeviceNotificationA
RegisterClassA
CreateWindowExA
DefWindowProcA
wsprintfA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SafeArrayCreate
GetErrorInfo
SetErrorInfo
SysFreeString
VariantChangeType
CreateErrorInfo
SysStringLen
SysAllocStringByteLen
SysStringByteLen
SysAllocStringLen
VariantInit
SysAllocString
VariantClear
SafeArrayAccessData
SafeArrayUnaccessData

setupapi

SetupDiOpenDevRegKey
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsExA
CM_Reenumerate_DevNode
SetupDiGetDeviceRegistryPropertyA
CM_Locate_DevNodeA
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA

dsound

ord1

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
exit
_CxxThrowException
_XcptFilter
_exit
_onexit
__dllonexit
?terminate@@YAXXZ
_except_handler3
??1type_info@@UAE@XZ
strlen
strcat
_controlfp
free
malloc
calloc
_mbscmp
isalnum
isspace
sprintf
isalpha
_mbsnbcpy
_ftol
_CIasin
strtod
_CIpow
_CIacos
_mbslwr
_mbsicmp
??3@YAXPAX@Z
__CxxFrameHandler
_purecall
??2@YAPAXI@Z
printf
_mbslen
_fdopen
_open_osfhandle
setvbuf
_iob
swprintf
wcsncmp
wcslen
wcscpy
sscanf
_mbsnbcmp
_mbsnbicmp
_strdup
memset
_wcsicmp
wcscat
strcpy

winmm

mixerMessage
mixerGetNumDevs

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/stacsv64.exe
.exe windows:6 windows x64 arch:x64

4c9564365987d5eab3d97610e346d464

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\workspaces\pcasw_core_maint_2.0.8_sdc_sqa\hostaudio\stacsv\objfre_wnet_amd64\amd64\stacsv64.pdb

Imports

advapi32

RegEnumValueW
RegCloseKey
RegQueryInfoKeyW
IsValidSid
RegOpenKeyExW
CreateServiceW
RegQueryValueExW
DeregisterEventSource
ReportEventW
RegisterEventSourceW
RegDeleteKeyW
GetLengthSid
CloseServiceHandle
ControlService
DeleteService
LookupAccountNameW
OpenSCManagerW
RegSetValueExW
StartServiceCtrlDispatcherW
GetUserNameW
ChangeServiceConfig2W
StartServiceW
QueryServiceStatus
OpenServiceW
RegDeleteValueW
RegCreateKeyW
RegisterServiceCtrlHandlerExW
SetServiceStatus
CopySid
RegCreateKeyExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl

kernel32

GetLastError
SetConsoleCtrlHandler
GlobalAlloc
GetCommandLineW
Sleep
FormatMessageW
GetVersionExW
GetModuleFileNameW
AllocConsole
LocalFree
GetStdHandle
GetProcAddress
GlobalFree
GetModuleHandleW
ExitThread
CreateMutexW
ConnectNamedPipe
CallNamedPipeW
ReleaseMutex
ReadFile
ResetEvent
CreateEventW
WaitForSingleObject
DisconnectNamedPipe
WaitForMultipleObjects
FlushFileBuffers
SetEvent
WriteFile
CreateThread
CreateNamedPipeW
VirtualProtect
OutputDebugStringW
CloseHandle
OutputDebugStringA
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
SetLastError
CreateFileW
LoadLibraryW
DeviceIoControl
FreeLibrary
LocalAlloc
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter

msvcrt

memmove
memset
memcpy
atan
sqrt
tan
cos
_unlock
__set_app_type
_fmode
_commode
_amsg_exit
_initterm
exit
_cexit
_exit
_XcptFilter
__C_specific_handler
__getmainargs
_callnewh
_CxxThrowException
?what@exception@@UEBAPEBDXZ
??0exception@@QEAA@AEBQEBDH@Z
??1type_info@@UEAA@XZ
_onexit
_errno
__CxxFrameHandler
??0exception@@QEAA@AEBV0@@Z
sscanf
??0exception@@QEAA@XZ
??1exception@@UEAA@XZ
wcsncmp
sprintf
_wcsnicmp
swscanf
_wcsdup
__iob_func
_purecall
_fdopen
setvbuf
wprintf
_open_osfhandle
_wcsicmp
swprintf
wcsncpy
malloc
calloc
isspace
free
wcstod
isalpha
_lock
?terminate@@YAXXZ
__dllonexit
_wcslwr
isalnum
__setusermatherr
pow
asin
sin
exp
log
log10
acos

user32

RegisterDeviceNotificationW
CreateWindowExW
DefWindowProcW
PostMessageW
wsprintfW
RegisterClassW
DestroyWindow
UnregisterDeviceNotification

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

VariantClear
SysAllocStringLen
SafeArrayAccessData
SafeArrayCreate
VariantInit
SysAllocString
SysStringByteLen
SysStringLen
SafeArrayUnaccessData
SysAllocStringByteLen
SysFreeString

setupapi

SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyW
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
CM_Reenumerate_DevNode
SetupDiGetDeviceInterfaceDetailW
CM_Locate_DevNodeW
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW
SetupDiGetClassDevsExW

shell32

CommandLineToArgvW

dsound

ord1

winmm

mixerMessage
mixerGetNumDevs

Sections

.text
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/stapi64x.dll
.dll regsvr32 windows:6 windows x64 arch:x64

fa62f6aa854a1025b0cd3be733772d49

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_maint_2.0.8_sdc_sqa\hostaudio\stacapi\objfre_wnet_amd64\amd64\stapi64x.pdb

Imports

msvcrt

??0exception@@QEAA@AEBQEBDH@Z
?what@exception@@UEBAPEBDXZ
??1exception@@UEAA@XZ
??0exception@@QEAA@AEBV0@@Z
_CxxThrowException
_callnewh
calloc
__C_specific_handler
memset
_XcptFilter
memcpy
memmove
_initterm
_amsg_exit
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
realloc
_unlock
__dllonexit
_lock
sprintf
_onexit
_wcsnicmp
wcsncpy
wcschr
_wtoi
wcsrchr
wcsstr
wcsncmp
??0exception@@QEAA@XZ
_errno
__CxxFrameHandler
_purecall
_resetstkoflw
_wcsicmp
free
malloc
sscanf
swprintf
memcmp

kernel32

GetProcAddress
LocalAlloc
ExpandEnvironmentStringsW
ReleaseMutex
CreateMutexW
LoadLibraryW
GetVersionExW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
WideCharToMultiByte
GetVersionExA
Sleep
VirtualProtect
InitializeCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetModuleHandleW
lstrlenW
FreeLibrary
LeaveCriticalSection
LoadLibraryExW
RaiseException
FindResourceW
LoadResource
DisableThreadLibraryCalls
SizeofResource
lstrcmpiW
MultiByteToWideChar
SetLastError
DeleteCriticalSection
ReadFile
ConnectNamedPipe
CreateNamedPipeW
CreateFileW
CreateThread
GetTickCount
GetLastError
CallNamedPipeW
OutputDebugStringA
WriteFile
FlushFileBuffers
DisconnectNamedPipe
CloseHandle
DeviceIoControl
FormatMessageW
LocalFree
SetEvent
CreateEventW
WaitForSingleObject

user32

DefWindowProcW
GetWindowLongPtrW
UnregisterDeviceNotification
RegisterDeviceNotificationW
DispatchMessageW
TranslateMessage
GetMessageW
wsprintfW
SetWindowLongPtrW
CreateWindowExW
RegisterClassW
UnregisterClassA
PostMessageW
CharNextW

advapi32

GetTokenInformation
RegEnumValueW
LookupAccountSidW
OpenProcessToken
RegQueryValueExW
SetSecurityDescriptorDacl
RegSetValueExW
RegDeleteKeyW
RegCloseKey
RegQueryInfoKeyW
RegOpenKeyExW
InitializeSecurityDescriptor
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW

ole32

CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoUninitialize
CoInitializeEx
CoCreateInstance
CoCreateFreeThreadedMarshaler

oleaut32

VariantClear
SysFreeString
VarUI4FromStr
RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
UnRegisterTypeLi
SysAllocStringLen
SafeArrayPutElement
SysStringLen
SysStringByteLen
SysAllocStringByteLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreate
VariantInit
SysAllocString

winmm

mixerGetControlDetailsW
mixerSetControlDetails
mixerGetDevCapsW
mixerOpen
mixerClose
mixerGetLineInfoW
mixerGetLineControlsW
mixerGetNumDevs
mixerMessage

setupapi

SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiOpenDeviceInterfaceRegKey
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsExW

Exports

Exports

??0CSkpiRegCtrlClass@@QEAA@AEBV0@@Z
??4CSkpiRegCtrlClass@@QEAAAEAV0@AEBV0@@Z
??_7CSkpiRegCtrlClass@@6B@
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/sthda.cat
IDT/WDM/WinXP/sthda.sys
.sys windows:5 windows x86 arch:x86

959301dfa0bc4471acccb6ea152c8ef4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ZwCreateFile
RtlInitUnicodeString
DbgBreakPoint
_purecall
InterlockedIncrement
_aulldiv
_allmul
InterlockedDecrement
KeQuerySystemTime
ExSetTimerResolution
IofCompleteRequest
MmMapLockedPagesSpecifyCache
MmUnmapLockedPages
_aullrem
MmUnmapIoSpace
MmMapIoSpace
IoInitializeRemoveLockEx
IoReleaseRemoveLockAndWaitEx
IoAcquireRemoveLockEx
memmove
IoReleaseRemoveLockEx
_wcsnicmp
wcslen
wcsncmp
_snwprintf
wcsncpy
wcscmp
KeDelayExecutionThread
wcscpy
wcscat
_alldiv
ZwLoadDriver
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
ObfDereferenceObject
ObReferenceObjectByPointer
IoGetDeviceObjectPointer
IoOpenDeviceRegistryKey
RtlAppendUnicodeToString
IoFreeMdl
MmUnlockPages
ZwQueryInformationFile
IoAllocateMdl
_except_handler3
RtlGUIDFromString
ZwEnumerateKey
ObReferenceObjectByHandle
ExEventObjectType
KeSetEvent
RtlFreeUnicodeString
IoRegisterDeviceInterface
IoSetDeviceInterfaceState
IoGetAttachedDeviceReference
IoIsWdmVersionAvailable
KeInitializeDpc
KeInitializeTimer
KeSetTimer
InterlockedCompareExchange
KeCancelTimer
PsCreateSystemThread
InterlockedExchange
PsTerminateSystemThread
IoQueueWorkItem
IoAllocateWorkItem
IoFreeWorkItem
IoBuildSynchronousFsdRequest
_aullshr
ZwOpenKey
ZwCreateKey
ZwQueryValueKey
ZwSetValueKey
RtlQueryRegistryValues
RtlCheckRegistryKey
RtlCreateRegistryKey
RtlWriteRegistryValue
wcsrchr
KeSaveFloatingPointState
KeRestoreFloatingPointState
ZwReadFile
_allshl
RtlUnicodeStringToAnsiString
RtlStringFromGUID
KeInitializeMutex
KeReleaseMutex
ZwWriteFile
ZwClose
ExFreePool
KeInitializeSpinLock
ExAllocatePoolWithTag
MmProbeAndLockPages
_vsnprintf
RtlUnicodeToMultiByteN
DbgPrint
RtlRaiseException

hal

KfRaiseIrql
KfLowerIrql
KfAcquireSpinLock
KfReleaseSpinLock
KeGetCurrentIrql
KeStallExecutionProcessor

portcls.sys

PcRegisterPhysicalConnection
PcNewServiceGroup
PcAddAdapterDevice
PcInitializeAdapterDriver
PcRegisterSubdevice
PcRegisterAdapterPowerManagement
PcNewPort

Sections

.text
Size: 559KB - Virtual size: 559KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

page
Size: 32B - Virtual size: 13B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 374KB - Virtual size: 374KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 340KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/sthda64.cat
IDT/WDM/WinXP/sthda64.ini
IDT/WDM/WinXP/sthda64.sys
.sys windows:5 windows x64 arch:x64

81cf3637f6faff07c9a60482dd6eac39

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Workspaces\PCASW_CORE_MAINT_2.0.8_SDC_SQA\HostAudio\wdm2\objfre_wnet_AMD64\amd64\sthda64.pdb

Imports

ntoskrnl.exe

ExFreePool
KeAcquireSpinLockRaiseToDpc
ZwClose
ZwWriteFile
ZwQueryInformationFile
ZwCreateFile
RtlInitUnicodeString
_vsnprintf
DbgBreakPoint
_purecall
ExSetTimerResolution
IofCompleteRequest
wcsncpy
ZwLoadDriver
IoOpenDeviceRegistryKey
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
ObfDereferenceObject
ObReferenceObjectByPointer
IoGetDeviceObjectPointer
RtlAppendUnicodeToString
KeDelayExecutionThread
_wcsnicmp
IoReleaseRemoveLockEx
IoAcquireRemoveLockEx
MmUnmapIoSpace
MmMapIoSpace
__C_specific_handler
IoFreeMdl
MmUnlockPages
MmMapLockedPagesSpecifyCache
MmProbeAndLockPages
IoAllocateMdl
_snwprintf
ZwEnumerateKey
RtlGUIDFromString
KeReleaseSpinLock
wcsncmp
IoInitializeRemoveLockEx
IoIs32bitProcess
ObReferenceObjectByHandle
ExEventObjectType
KeSetEvent
RtlFreeUnicodeString
IoRegisterDeviceInterface
IoSetDeviceInterfaceState
IoGetAttachedDeviceReference
IoIsWdmVersionAvailable
KeSetTimer
KeCancelTimer
KeInitializeDpc
KeInitializeTimer
IoFreeWorkItem
IoQueueWorkItem
IoAllocateWorkItem
PsTerminateSystemThread
PsCreateSystemThread
IoBuildSynchronousFsdRequest
MmUnmapLockedPages
ExFreePoolWithTag
ZwOpenKey
ZwCreateKey
ZwQueryValueKey
ZwSetValueKey
RtlQueryRegistryValues
RtlCheckRegistryKey
RtlCreateRegistryKey
RtlWriteRegistryValue
wcsrchr
ZwReadFile
RtlUnicodeStringToAnsiString
RtlStringFromGUID
KeInitializeMutex
KeReleaseMutex
IoReleaseRemoveLockAndWaitEx
ExAllocatePoolWithTag
sprintf
RtlRaiseException
DbgPrint

hal

KeStallExecutionProcessor

portcls.sys

PcNewServiceGroup
PcRegisterAdapterPowerManagement
PcAddAdapterDevice
PcInitializeAdapterDriver
PcNewPort
PcRegisterSubdevice
PcRegisterPhysicalConnection

Sections

.text
Size: 908KB - Virtual size: 907KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

page
Size: 512B - Virtual size: 23B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RT_CODE
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 478KB - Virtual size: 478KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/stlang.dll
.dll windows:4 windows x86 arch:x86

c7b2f9d120364cd42c54a415a962804d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42u

ord2717
ord4074
ord4692
ord5303
ord5285
ord5710
ord2977
ord3142
ord3254
ord4459
ord3131
ord3257
ord2980
ord3076
ord2971
ord3825
ord3826
ord3820
ord3074
ord4075
ord4616
ord4418
ord3733
ord561
ord815
ord3658
ord6868
ord535
ord2810
ord3948
ord538
ord6466
ord927
ord5436
ord1971
ord5446
ord5298
ord2606
ord4273
ord6655
ord4272
ord6279
ord6278
ord2756
ord6867
ord4124
ord826
ord600
ord1571
ord1250
ord1248
ord1563
ord1194
ord1240
ord342
ord1179
ord1570
ord1165
ord1568
ord1173
ord1115
ord5296
ord2910
ord5568
ord825
ord665
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord354
ord540
ord861
ord800
ord922
ord858
ord5180
ord3313
ord823
ord6390
ord5438
ord6379
ord4269
ord269

msvcrt

??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
iswspace
_wcsnicmp
memmove
wcsstr
wcslen
wcsncmp
wcschr
wcscat
__CxxFrameHandler
wcscpy

kernel32

LocalFree
ExpandEnvironmentStringsW
GetSystemDefaultLangID
GetUserDefaultLangID
GetUserDefaultUILanguage
GetModuleFileNameW
GetModuleHandleW
FindResourceW
SizeofResource
LoadResource
LockResource
MultiByteToWideChar
LocalAlloc

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shlwapi

PathFindFileNameW
PathSkipRootW
PathRemoveArgsW
PathParseIconLocationW
PathMakePrettyW
PathCanonicalizeW

Exports

Exports

LocalizeBuffer
LocalizeGetLangID
LocalizeSetLangID
LocalizeString

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/stlang64.dll
.dll windows:6 windows x64 arch:x64

0efc5044073c35b51c76bb0d2e6bb4b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\workspaces\pcasw_core_maint_2.0.8_sdc_sqa\hostaudio\localize\objfre_wnet_amd64\amd64\StLang64.pdb

Imports

mfc42u

ord3468
ord6832
ord2412
ord5815
ord5615
ord6880
ord1388
ord6821
ord4191
ord5804
ord6071
ord2515
ord2559
ord4836
ord6813
ord5980
ord2846
ord624
ord4214
ord4598
ord287
ord2784
ord2629
ord4602
ord4436
ord6886
ord5722
ord4601
ord6705
ord6708
ord2783
ord5979
ord812
ord1586
ord1555
ord1553
ord1577
ord1491
ord1544
ord355
ord1477
ord1585
ord1583
ord1472
ord1416
ord288
ord1082
ord1463
ord5724
ord1063
ord2752
ord659
ord4368
ord5065
ord5730
ord5711
ord6053
ord3049
ord3243
ord3362
ord4815
ord3231
ord3366
ord3052
ord3166
ord3046
ord4082
ord4083
ord4077
ord3164
ord4371
ord5887
ord4983
ord2975
ord6887
ord4770
ord1977
ord5807
ord3916
ord3440
ord5602
ord3830
ord1259
ord1122
ord1264
ord1126
ord620
ord877
ord371
ord1040
ord626

msvcrt

_CxxThrowException
memset
memcpy
??1type_info@@UEAA@XZ
_onexit
_lock
__dllonexit
__C_specific_handler
_amsg_exit
_initterm
malloc
_XcptFilter
__CxxFrameHandler
free
iswspace
_wcsnicmp
wcschr
wcsncmp
memmove
wcsstr
??_V@YAXPEAX@Z
??_U@YAPEAX_K@Z
_unlock

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW

kernel32

ExpandEnvironmentStringsW
VirtualProtect
Sleep
LocalFree
FindResourceW
LocalAlloc
RtlVirtualUnwind
RtlLookupFunctionEntry
GetUserDefaultUILanguage
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
GetModuleFileNameW
MultiByteToWideChar
GetUserDefaultLangID
GetSystemDefaultLangID
LockResource
LoadResource
RtlCaptureContext
SizeofResource

shlwapi

PathParseIconLocationW
PathRemoveArgsW
PathMakePrettyW
PathCanonicalizeW
PathFindFileNameW

Exports

Exports

LocalizeBuffer
LocalizeGetLangID
LocalizeSetLangID
LocalizeString

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/sttray.exe
.exe windows:4 windows x86 arch:x86

cc8473b07ddc84567debef5df9f27502

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

stlang

LocalizeSetLangID
LocalizeString

mfc42u

ord861
ord384
ord540
ord567
ord324
ord825
ord2289
ord2355
ord2362
ord2294
ord4229
ord6776
ord2857
ord2088
ord3087
ord4704
ord4847
ord2567
ord4390
ord3569
ord3566
ord640
ord809
ord609
ord323
ord556
ord3658
ord3621
ord2406
ord5781
ord4270
ord4279
ord2371
ord2397
ord5047
ord5977
ord2859
ord3871
ord4128
ord4292
ord5784
ord472
ord283
ord5871
ord2854
ord613
ord1634
ord1633
ord6871
ord289
ord1143
ord2114
ord4155
ord6354
ord1088
ord2559
ord823
ord535
ord5568
ord2910
ord2810
ord538
ord3716
ord3614
ord795
ord2606
ord2855
ord6195
ord3792
ord2746
ord858
ord6193
ord6597
ord942
ord1197
ord922
ord537
ord860
ord2350
ord6330
ord1764
ord6362
ord2405
ord2016
ord4395
ord3634
ord692
ord6451
ord3798
ord2745
ord4119
ord1834
ord4237
ord2715
ord2382
ord3054
ord5094
ord5097
ord641
ord4298
ord3345
ord5006
ord975
ord5468
ord3398
ord2874
ord2873
ord4146
ord4072
ord5233
ord5278
ord2641
ord1658
ord4430
ord5248
ord4421
ord801
ord674
ord541
ord366
ord5857
ord1165
ord4451
ord4407
ord4718
ord4219
ord940
ord4272
ord941
ord536
ord6279
ord6278
ord2755
ord4273
ord2756
ord6867
ord4124
ord925
ord326
ord325
ord755
ord470
ord4199
ord2914
ord3749
ord3748
ord6399
ord3865
ord6191
ord3517
ord5436
ord6379
ord5446
ord6390
ord6376
ord6211
ord2634
ord1941
ord818
ord2144
ord1230
ord2385
ord3805
ord1172
ord4215
ord2576
ord3649
ord2858
ord2430
ord1637
ord920
ord6456
ord4269
ord6371
ord4480
ord2546
ord2504
ord5727
ord3917
ord1089
ord5193
ord2388
ord3341
ord5296
ord5298
ord1569
ord4692
ord5303
ord5285
ord5710
ord4616
ord3733
ord561
ord815
ord6113
ord2613
ord2717
ord5949
ord6655
ord6498
ord800
ord686
ord6732
ord4418
ord4621
ord4075
ord3074
ord3820
ord3826
ord3825
ord3397
ord2971
ord3076
ord2980
ord3257
ord3131
ord4459
ord3254
ord3142
ord2977
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4392
ord1768
ord4073
ord6051
ord2570
ord4213
ord2015
ord2403
ord3592
ord4419
ord5276
ord4401
ord1767
ord6048
ord2506
ord4992
ord4370
ord5261
ord4461
ord4074

msvcrt

_controlfp
??1type_info@@UAE@XZ
_onexit
_CxxThrowException
__CxxFrameHandler
wcslen
wcsncpy
wcsstr
wcscat
swprintf
wcscpy
_wspawnlp
_wcsnicmp
iswspace
wcscspn
iswalpha
memmove
wcsncmp
wcscmp
swscanf
_ftol
_exit
_XcptFilter
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
?terminate@@YAXXZ
__dllonexit

kernel32

GetModuleHandleW
GetProcAddress
GetVersion
FreeLibrary
LoadLibraryW
GetWindowsDirectoryW
lstrcpyW
WideCharToMultiByte
WinExec
lstrlenW
lstrcatW
Sleep
GetCurrentThreadId
GetExitCodeProcess
WaitForSingleObject
CloseHandle
CreateProcessW
GetStartupInfoW
GetEnvironmentVariableW
SetLastError
InterlockedDecrement
GetModuleFileNameW
GetCurrentDirectoryW
ExpandEnvironmentStringsW
GetFullPathNameW
GetFileAttributesW
LocalFree
GetVersionExW
GetFileAttributesExW

user32

DrawStateW
GetClientRect
CopyRect
FrameRect
InflateRect
GetSysColor
OffsetRect
DrawFocusRect
GetSubMenu
GetWindowRect
TrackPopupMenuEx
ClientToScreen
LoadImageW
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
GetWindowLongW
GetIconInfo
LoadMenuW
FillRect
KillTimer
SetWindowLongW
DestroyIcon
DestroyCursor
DestroyMenu
EnableWindow
SendMessageW
MessageBeep
PostQuitMessage
RedrawWindow
SetActiveWindow
DrawAnimatedRects
SetParent
EnumChildWindows
SystemParametersInfoW
GetCursorPos
TrackPopupMenu
GetMenuItemID
SetMenuDefaultItem
RegisterWindowMessageW
LoadIconW
IsIconic
DrawIcon
BeginDeferWindowPos
EqualRect
DeferWindowPos
EndDeferWindowPos
UpdateWindow
GetClassNameW
IsZoomed
DrawFrameControl
GetSystemMetrics
ModifyMenuW
InsertMenuW
DeleteMenu
CheckMenuItem
FindWindowW
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
SetFocus
GetForegroundWindow
PostMessageW
SetRect
LoadCursorW
CopyIcon
GetDC
ReleaseDC
IsWindow
GetMessagePos
ScreenToClient
PtInRect
WindowFromPoint
SetTimer

gdi32

GetTextExtentPoint32W
CreateFontIndirectW
GetObjectW
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
GetStockObject

advapi32

RegQueryValueExW
RegQueryValueW
RegOpenKeyExW
CloseServiceHandle
QueryServiceStatus
OpenServiceW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
ConvertStringSecurityDescriptorToSecurityDescriptorW
OpenSCManagerW

shell32

ShellExecuteExW
Shell_NotifyIconW
ShellExecuteW
SHAppBarMessage

comctl32

_TrackMouseEvent
ImageList_GetIcon
ImageList_GetIconSize
ord17
ImageList_ReplaceIcon

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SysFreeString
SetErrorInfo
VariantInit
VariantClear
CreateErrorInfo
VariantChangeType
GetErrorInfo
SysAllocString
SysStringLen
SysAllocStringByteLen
SysStringByteLen

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

shlwapi

PathRemoveFileSpecW
PathRenameExtensionW
PathRemoveExtensionW
PathAddExtensionW
PathFindExtensionW
PathFindFileNameW
PathSkipRootW
PathBuildRootW
PathRemoveBackslashW
PathAddBackslashW
PathRemoveArgsW
PathParseIconLocationW
PathMakePrettyW
PathCanonicalizeW
PathQuoteSpacesW
PathCommonPrefixW
PathGetDriveNumberW
PathRelativePathToW
PathIsRelativeW
PathMatchSpecW
PathCompactPathW
PathCompactPathExW
PathSetDlgItemPathW
PathSearchAndQualifyW
PathFindOnPathW
PathFileExistsW
PathIsDirectoryW
PathIsSystemFolderW
PathUnmakeSystemFolderW
PathMakeSystemFolderW
PathAppendW

Sections

.text
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 324KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/sttray64.exe
.exe windows:6 windows x64 arch:x64

9f620e4cbce0e33c12e4966a231c2470

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\workspaces\pcasw_core_maint_2.0.8_sdc_sqa\hostaudio\stsystray\objfre_wnet_amd64\amd64\sttray64.pdb

Imports

advapi32

RegOpenKeyExW
RegQueryValueW
RegCloseKey
OpenSCManagerW
OpenServiceW
QueryServiceStatus
CloseServiceHandle

kernel32

GetVersionExW
GetProcAddress
lstrcpyW
ExpandEnvironmentStringsW
GetModuleFileNameW
Sleep
GetCurrentThreadId
GetExitCodeProcess
WinExec
WaitForSingleObject
CloseHandle
CreateProcessW
GetStartupInfoW
lstrcatW
GetVersion
LocalFree
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetModuleHandleW
SetUnhandledExceptionFilter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
lstrlenW
WideCharToMultiByte
FreeLibrary
LoadLibraryW
VirtualProtect

gdi32

BitBlt
DeleteObject
DeleteDC
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject

user32

GetWindowLongW
RegisterWindowMessageW
LoadIconW
SendMessageW
EnableWindow
GetClientRect
GetActiveWindow
DrawStateW
LoadImageW
FrameRect
GetNextDlgTabItem
GetSubMenu
GetWindowRect
GetParent
TrackPopupMenuEx
OffsetRect
LoadMenuW
DestroyCursor
ClientToScreen
DrawFocusRect
InflateRect
WindowFromPoint
SetTimer
GetMessagePos
ScreenToClient
SetCursor
DestroyMenu
CopyRect
FillRect
InvalidateRect
DestroyIcon
PtInRect
KillTimer
IsWindow
GetDC
MessageBeep
SetRect
GetWindowThreadProcessId
SetForegroundWindow
SetFocus
GetForegroundWindow
PostMessageW
FindWindowW
ModifyMenuW
InsertMenuW
DeleteMenu
CheckMenuItem
AttachThreadInput
BeginDeferWindowPos
EqualRect
GetSystemMetrics
DeferWindowPos
EndDeferWindowPos
UpdateWindow
IsZoomed
DrawFrameControl
IsIconic
DrawIcon
GetIconInfo
SetMenuDefaultItem
GetCursorPos
TrackPopupMenu
GetMenuItemID
PostQuitMessage
GetSysColor

mfc42u

ord1584
ord6813
ord4836
ord2559
ord2515
ord6071
ord4191
ord1388
ord5615
ord2412
ord3468
ord5722
ord5724
ord4368
ord5065
ord5730
ord5711
ord6053
ord4983
ord3916
ord6328
ord2784
ord2752
ord6510
ord1063
ord659
ord4598
ord2449
ord1471
ord4045
ord5425
ord1254
ord1537
ord2178
ord2903
ord1650
ord1950
ord3820
ord2595
ord4544
ord2661
ord6818
ord6632
ord6842
ord4124
ord984
ord525
ord3939
ord2329
ord5702
ord4557
ord4694
ord6812
ord5586
ord2399
ord5077
ord5663
ord4752
ord1777
ord4365
ord6437
ord3177
ord2517
ord2105
ord5406
ord4721
ord5687
ord3761
ord6440
ord1778
ord5712
ord3535
ord4770
ord4771
ord4988
ord4371
ord3164
ord4077
ord4083
ord4082
ord3046
ord3166
ord3052
ord3366
ord3231
ord4815
ord3362
ord3243
ord5245
ord3049
ord1067
ord5699
ord665
ord2140
ord2457
ord5683
ord6887
ord1736
ord5484
ord3933
ord6814
ord2060
ord2670
ord4789
ord626
ord5229
ord1040
ord4017
ord337
ord408
ord852
ord904
ord1126
ord826
ord5467
ord2420
ord2427
ord2906
ord6102
ord1646
ord1441
ord528
ord2408
ord3740
ord1574
ord6131
ord1647
ord4621
ord4442
ord2138
ord286
ord6351
ord3830
ord4131
ord4473
ord6127
ord2898
ord1387
ord6791
ord6243
ord303
ord2586
ord3790
ord4599
ord3742
ord2574
ord2393
ord3743
ord822
ord3862
ord4741
ord4609
ord650
ord1055
ord336
ord851
ord310
ord624
ord2846
ord2975
ord5887
ord620
ord6612
ord1124
ord1259
ord622
ord1499
ord6614
ord2776
ord3894
ord1122
ord1035
ord6767
ord4860
ord4027
ord2775
ord3805
ord4746
ord2024
ord2425
ord6801
ord1774
ord4427
ord6886
ord911
ord4806
ord2919
ord2920
ord3536
ord5839
ord1316
ord5420
ord3481
ord1463
ord4633
ord4817
ord5524
ord5521
ord3141
ord2405
ord2750
ord1838
ord4565
ord387
ord890
ord6880
ord627
ord1041
ord5093
ord6225
ord4759
ord4774
ord5674
ord4784
ord1674
ord2671
ord5704
ord4548
ord5659
ord4364
ord4461
ord4601
ord6705
ord6708
ord4602
ord2783
ord5979
ord4436
ord6832
ord5815
ord6821
ord5804
ord3937

msvcrt

wcsncpy
??_V@YAXPEAX@Z
??_U@YAPEAX_K@Z
wcsstr
_CxxThrowException
memset
memcpy
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
__set_app_type
_fmode
_commode
__setusermatherr
_amsg_exit
_initterm
_wcmdln
exit
_cexit
_exit
_XcptFilter
__C_specific_handler
__wgetmainargs
__CxxFrameHandler
_wcsnicmp
memmove
wcsncmp
iswspace
swprintf
_wspawnlp

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysStringLen
SysFreeString

shlwapi

PathCanonicalizeW
PathFileExistsW
PathMakePrettyW
PathRemoveArgsW
PathParseIconLocationW
PathFindFileNameW

comctl32

_TrackMouseEvent
ImageList_GetIconSize
ImageList_GetIcon
ord17
ImageList_ReplaceIcon

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

shell32

Shell_NotifyIconW
ShellExecuteW
ShellExecuteExW

stlang64

LocalizeSetLangID
LocalizeString

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 322KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/suhlp.exe
.exe windows:5 windows x86 arch:x86

69f40c3b27c32412877000ddf062005f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Workspaces\PCASW_CORE_MAINT_2.0.8_SDC_SQA\HostAudio\setuphlp\objfre_w2K_x86\i386\suhlp.pdb

Imports

kernel32

CopyFileA
SetFileAttributesA
lstrcatA
lstrlenA
ExpandEnvironmentStringsA
lstrcpyA
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetModuleFileNameA
GetModuleHandleA
FindClose
FindNextFileA
GetFullPathNameA
FindFirstFileA
lstrcmpiA
lstrcpynA
LocalAlloc
GetLastError
LocalFree
FormatMessageA
GetFileAttributesA
GetVersionExA
GlobalFree
GlobalAlloc
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemWindowsDirectoryA
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
ExitProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetACP
GetOEMCP
GetCPInfo
Sleep
VirtualAlloc
HeapReAlloc
RtlUnwind
InterlockedExchange
VirtualQuery
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
GetSystemInfo

user32

EnumWindows
GetWindowTextA
SendMessageA
CreateWindowExA
UpdateWindow
DestroyWindow
CharLowerA
ShowWindow
IsWindow

setupapi

SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupGetInfInformationA
SetupQueryInfVersionInformationA
CM_Locate_DevNodeA
CM_Reenumerate_DevNode
CM_Get_DevNode_Status
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiGetDeviceInstallParamsA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo

newdev

UpdateDriverForPlugAndPlayDevicesA

shell32

SHGetFolderPathA

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/WDM/WinXP/suhlp64.exe
.exe windows:5 windows x64 arch:x64

416bda63a08cfcefd9d62706ffdb708e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Workspaces\PCASW_CORE_MAINT_2.0.8_SDC_SQA\HostAudio\setuphlp\objfre_wnet_AMD64\amd64\suhlp64.pdb

Imports

kernel32

CopyFileA
SetFileAttributesA
lstrcatA
lstrlenA
lstrcpyA
ExpandEnvironmentStringsA
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetModuleFileNameA
GetModuleHandleA
FindClose
FindNextFileA
GetFullPathNameA
FindFirstFileA
lstrcmpiA
lstrcpynA
LocalAlloc
GetLastError
LocalFree
FormatMessageA
GetFileAttributesA
GetVersionExA
GlobalFree
GlobalAlloc
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemWindowsDirectoryA
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
ExitProcess
WriteFile
GetStdHandle
RtlUnwindEx
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapSetInformation
HeapCreate
GetACP
GetOEMCP
GetCPInfo
Sleep
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery

user32

EnumWindows
GetWindowTextA
SendMessageA
CreateWindowExA
UpdateWindow
DestroyWindow
IsWindow
ShowWindow

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupGetInfInformationA
SetupQueryInfVersionInformationA
CM_Locate_DevNodeA
CM_Reenumerate_DevNode
CM_Get_DevNode_Status
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInstallParamsA

newdev

UpdateDriverForPlugAndPlayDevicesA

shell32

SHGetFolderPathA

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/data1.cab
IDT/data1.hdr
IDT/data2.cab
IDT/engine32.cab
.cab
DotNetInstaller.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IKernel.dll
.dll regsvr32 windows:4 windows x86 arch:x86

756a1f72ca97df5c7f54ff3fae40400a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetPrivateProfileStringA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
Sleep
CreateProcessA
lstrcmpA
GetDiskFreeSpaceA
CreateFileA
QueryPerformanceFrequency
CreateEventA
SetFilePointer
ReadFile
SystemTimeToFileTime
GetSystemTime
FileTimeToDosDateTime
FileTimeToLocalFileTime
GetFileSize
GetFileTime
CompareStringA
CompareStringW
GetVersionExA
WriteFile
LocalFileTimeToFileTime
DosDateTimeToFileTime
LoadLibraryExA
SearchPathA
FreeLibrary
WaitForSingleObject
GetTempPathA
GetWindowsDirectoryA
GetTickCount
GetCurrentProcessId
GetVersion
GetPrivateProfileSectionA
GetShortPathNameA
DisableThreadLibraryCalls
InitializeCriticalSection
HeapDestroy
DeleteCriticalSection
SetEvent
LockResource
LoadResource
SizeofResource
FindResourceA
SetFileAttributesA
RemoveDirectoryA
SetFileTime
GetCurrentProcess
WritePrivateProfileStringA
GetSystemDirectoryA
WinExec
MoveFileExA
IsBadWritePtr
IsBadReadPtr
GetPrivateProfileSectionNamesA
WritePrivateProfileSectionA
OpenEventA
MoveFileA
ResetEvent
DeleteFileA
GetPrivateProfileIntA
CopyFileA
FlushFileBuffers
SetStdHandle
CreateDirectoryA
GetFileAttributesA
FindFirstFileA
SetLastError
lstrcmpiA
FindClose
FindNextFileA
CloseHandle
GlobalLock
GlobalAlloc
GlobalUnlock
GlobalFree
InterlockedDecrement
LocalFree
InterlockedIncrement
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
lstrlenW
WideCharToMultiByte
lstrcpyA
MultiByteToWideChar
lstrlenA
GetLastError
LoadLibraryA
ExitProcess
GetStringTypeW
GetStringTypeA
IsBadCodePtr
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
HeapCreate
GetEnvironmentVariableA
LCMapStringW
LCMapStringA
TlsGetValue
TlsFree
TlsAlloc
GetCommandLineA
ExitThread
TlsSetValue
GetCurrentThreadId
CreateThread
HeapFree
HeapAlloc
RaiseException
RtlUnwind
QueryPerformanceCounter
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
VirtualProtect
VirtualQuery
GetCurrentThread
lstrcpynA
GetLocalTime
lstrcatA
InterlockedExchange
HeapReAlloc
HeapSize
GetOEMCP
GetACP
GetCPInfo
SetUnhandledExceptionFilter
TerminateProcess

user32

LoadStringA
wsprintfA
CharUpperA
GetDesktopWindow
PostThreadMessageA
PeekMessageA
CharLowerBuffA
DispatchMessageA
TranslateMessage
GetMessageA
MessageBoxA
ExitWindowsEx
MsgWaitForMultipleObjects

advapi32

SetFileSecurityA
OpenSCManagerA
OpenServiceA
ControlService
QueryServiceStatus
DeleteService
CloseServiceHandle
RegEnumValueA
RegConnectRegistryA
RegDeleteValueA
RegQueryInfoKeyA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyA
GetFileSecurityA
IsValidSecurityDescriptor
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
OpenThreadToken
RegQueryValueA

shell32

SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

CoTaskMemFree
ProgIDFromCLSID
WriteClassStm
OleLoadFromStream
CreateStreamOnHGlobal
StgCreateDocfile
StgOpenStorage
StringFromCLSID
CoLoadLibrary
CoCreateGuid
CLSIDFromString
CoUninitialize
CoMarshalInterThreadInterfaceInStream
CoInitialize
CoGetInterfaceAndReleaseStream
CoCreateInstance
StringFromGUID2
OleSaveToStream

oleaut32

LoadTypeLi
RegisterTypeLi
SafeArrayGetDim
SafeArrayCopy
SafeArrayGetUBound
SafeArrayGetLBound
SysAllocStringByteLen
SysStringByteLen
SafeArrayCreate
SafeArrayGetElement
SafeArrayDestroy
SafeArrayPutElement
VariantChangeType
LoadRegTypeLi
SysReAllocStringLen
CreateErrorInfo
SetErrorInfo
VariantInit
VariantCopyInd
VariantCopy
SysAllocStringLen
SysAllocString
SysStringLen
SysFreeString
VariantClear
GetErrorInfo

rpcrt4

UuidFromStringA
UuidCreate

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 532KB - Virtual size: 530KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ISProBE9x.tlb
ISProBENT.tlb
IScript.dll
.dll regsvr32 windows:4 windows x86 arch:x86

e5680d97fbdcfbc806a623ad2c50cbac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrlenA
DisableThreadLibraryCalls
GetModuleFileNameA
InitializeCriticalSection
DeleteCriticalSection
GetShortPathNameA
GetModuleHandleA
lstrlenW
lstrcmpiA
HeapDestroy
CloseHandle
UnmapViewOfFile
ReadFile
CreateFileA
EnterCriticalSection
CreateEventA
GetFileSize
FindClose
FindFirstFileA
GetFileAttributesA
WaitForSingleObject
SetEvent
FreeLibrary
LoadLibraryA
GetProcAddress
LeaveCriticalSection
MultiByteToWideChar
InterlockedDecrement
FlushFileBuffers
LocalFree
InterlockedIncrement
FormatMessageA
WideCharToMultiByte
SetLastError
QueryPerformanceFrequency
GetLastError
SetStdHandle
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
GetCPInfo
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
HeapSize
HeapReAlloc
GetCurrentProcess
TerminateProcess
TlsGetValue
TlsFree
TlsAlloc
Sleep
InterlockedExchange
GetLocalTime
GetCurrentProcessId
GetVersion
GetWindowsDirectoryA
lstrcatA
lstrcpynA
WriteFile
SetFilePointer
CompareStringA
CompareStringW
GetVersionExA
MapViewOfFile
CreateFileMappingA
VirtualQuery
VirtualProtect
SearchPathA
lstrcpyA
ResetEvent
GetTickCount
QueryPerformanceCounter
SystemTimeToFileTime
RaiseException
RtlUnwind
CreateThread
GetCurrentThreadId
TlsSetValue
ExitThread
GetCommandLineA
HeapFree
HeapAlloc
ExitProcess
SetUnhandledExceptionFilter

user32

PostThreadMessageA
CharLowerBuffA
DispatchMessageA
wsprintfA
LoadStringA
GetDesktopWindow
MsgWaitForMultipleObjects
PeekMessageA
GetMessageA
TranslateMessage

advapi32

RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyA
RegQueryValueA
RegEnumKeyExA

ole32

StringFromCLSID
CoCreateInstance
CLSIDFromProgID
CoGetInterfaceAndReleaseStream
CoUninitialize
CoMarshalInterThreadInterfaceInStream
CoInitialize
ProgIDFromCLSID
CoTaskMemFree

oleaut32

VariantInit
VariantClear
GetErrorInfo
VariantCopy
SysStringByteLen
SysAllocStringByteLen
DispGetParam
VariantCopyInd
SafeArrayCreate
SafeArrayGetElement
SafeArrayPutElement
LoadRegTypeLi
CreateErrorInfo
SetErrorInfo
SafeArrayRedim
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetDim
SysAllocStringLen
SafeArrayDestroy
SysFreeString
SysStringLen
SysReAllocStringLen
VariantChangeType
SysAllocString

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetMalloc

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IUser.dll
.dll regsvr32 windows:4 windows x86 arch:x86

569d6add8e94bd7301b1c15d67fed0b0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
HeapDestroy
GetTickCount
lstrcpyA
EnterCriticalSection
LeaveCriticalSection
FlushFileBuffers
SetStdHandle
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
GetCPInfo
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
GetEnvironmentVariableA
lstrlenW
GetShortPathNameA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
HeapSize
HeapReAlloc
TerminateProcess
ExitProcess
HeapAlloc
TlsGetValue
TlsFree
TlsAlloc
TlsSetValue
RaiseException
HeapFree
GetCommandLineA
RtlUnwind
WaitForSingleObject
ReadFile
InitializeCriticalSection
DisableThreadLibraryCalls
lstrcmpiA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetCurrentProcess
FlushInstructionCache
InterlockedDecrement
InterlockedIncrement
GetCurrentThreadId
GetModuleHandleA
GetModuleFileNameA
lstrcatA
LoadLibraryA
GetProcAddress
GlobalFree
GlobalAlloc
GlobalLock
GetEnvironmentStrings
GlobalUnlock
SetLastError
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
GetFileAttributesA
GetLastError
GetEnvironmentStringsW
GetVersionExA
CompareStringW
CompareStringA
CloseHandle
SetFilePointer
CreateFileA
WriteFile
lstrcpynA
FindFirstFileA
FindClose
GetWindowsDirectoryA
GetVersion
Sleep
InterlockedExchange
GetLocalTime
GetCurrentProcessId

user32

wsprintfA
ScreenToClient
GetWindowRect
CopyRect
OffsetRect
DrawTextA
GetDlgCtrlID
GetDlgItemTextA
GetWindowDC
EnumChildWindows
IntersectRect
GetClassNameA
MessageBeep
BeginPaint
EndPaint
SendMessageA
UpdateWindow
GetWindow
SystemParametersInfoA
MapWindowPoints
CreateDialogIndirectParamA
GetWindowPlacement
ClientToScreen
GetSystemMetrics
SetFocus
SetDlgItemTextA
GetParent
InvalidateRect
DialogBoxParamA
GetSystemMenu
RemoveMenu
LoadStringA
AppendMenuA
GetClientRect
GetClassInfoExA
RegisterClassExA
GetWindowTextLengthA
GetWindowTextA
CallWindowProcA
DefWindowProcA
CreateWindowExA
LoadIconA
ShowWindow
SetWindowRgn
IsIconic
DestroyWindow
GetDesktopWindow
EnableWindow
SetCapture
LoadCursorA
SetCursor
ReleaseCapture
SetWindowTextA
IsWindow
GetDC
ReleaseDC
GetWindowLongA
SetWindowLongA
SetWindowPos
MoveWindow
GetDlgItem
GetSysColor
FillRect

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
GetObjectA
BitBlt
DeleteDC
DeleteMetaFile
GetTextExtentPoint32A
GetStockObject
Rectangle
CreateRectRgn
GetDeviceCaps
CreateFontIndirectA
CreateSolidBrush
DeleteObject
SaveDC
SelectObject
SetBkMode
SetTextColor
TextOutA
RestoreDC
EnumFontFamiliesExA

advapi32

RegSetValueExA
RegEnumKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyA

ole32

StringFromCLSID
CoTaskMemFree
ProgIDFromCLSID

oleaut32

GetErrorInfo
CreateErrorInfo
SetErrorInfo
SysReAllocStringLen
SysStringLen
SysAllocStringLen
LoadRegTypeLi
SysAllocString
SysFreeString

winmm

sndPlaySoundA
mciSendCommandA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ctor.dll
.dll regsvr32 windows:4 windows x86 arch:x86

61cdbca8ee8bf07c986e768398ee2479

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileA
CopyFileA
HeapAlloc
GetSystemInfo
GetVersionExA
HeapCreate
SetLastError
GetLastError
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
InterlockedIncrement
EnterCriticalSection
InterlockedDecrement
CompareStringA
CompareStringW
GetShortPathNameA
CreateEventA
HeapDestroy
LoadLibraryA
lstrcatA
DeleteFileA
GetTempPathA
GetWindowsDirectoryA
GetTickCount
GetFileAttributesA
GetTempFileNameA
GetCurrentProcessId
GetSystemDirectoryA
DebugBreak
HeapReAlloc
HeapFree
GetCurrentThread
GetVersion
GetPrivateProfileIntA
GetPrivateProfileStringA
LoadLibraryExA
FreeLibrary
DisableThreadLibraryCalls
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
CreateProcessA
CloseHandle
Sleep
lstrlenA
lstrcpyA
GetModuleFileNameA
GetModuleHandleA
lstrcmpiA
GetProcAddress
GetCurrentProcess

user32

WaitForInputIdle
CharUpperA
MessageBoxA
LoadStringA
PeekMessageA
MsgWaitForMultipleObjects
CharNextA
wsprintfA

advapi32

RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyA
RegQueryValueExA
RegDeleteValueA
RegQueryInfoKeyA
RegCloseKey
RegDeleteKeyA
FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
RegOpenKeyExA

ole32

GetRunningObjectTable
CreateItemMoniker
CoTaskMemFree
StringFromCLSID
CoCreateGuid
CoCreateInstance
CLSIDFromString
CoReleaseMarshalData
ProgIDFromCLSID
CoMarshalInterThreadInterfaceInStream
CoLoadLibrary

oleaut32

CreateErrorInfo
GetErrorInfo
SetErrorInfo
VariantChangeType
VariantCopy
LoadTypeLi
VariantClear
SysStringLen
SysAllocStringLen
SysAllocString
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
LaunchSetup

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iKernel.rgs
objectps.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d00bdfbf9f57dcbb8a80a384e93f5c3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls
RtlUnwind

rpcrt4

NdrOleAllocate
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_CountRefs
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Invoke
CStdStubBuffer_Disconnect
CStdStubBuffer_Connect
CStdStubBuffer_AddRef
CStdStubBuffer_QueryInterface
IUnknown_Release_Proxy
IUnknown_AddRef_Proxy
IUnknown_QueryInterface_Proxy
NdrProxyErrorHandler
NdrClearOutParameters
NdrProxyFreeBuffer
NdrPointerUnmarshall
NdrConvert
NdrProxySendReceive
NdrOleFree
NdrProxyGetBuffer
NdrSimpleStructBufferSize
RpcRaiseException
NdrProxyInitialize
NdrPointerFree
NdrPointerMarshall
NdrStubGetBuffer
NdrPointerBufferSize
NdrSimpleStructUnmarshall
NdrStubInitialize
NdrInterfacePointerMarshall
NdrInterfacePointerBufferSize
NdrInterfacePointerFree
NdrInterfacePointerUnmarshall
NdrDllGetClassObject
NdrDllCanUnloadNow
NdrCStdStubBuffer_Release
NdrDllRegisterProxy
NdrDllUnregisterProxy
NdrSimpleStructMarshall

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.orpc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 4KB - Virtual size: 834B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IDT/layout.bin
IDT/old1uninstall.iss
IDT/olduninstall.iss
IDT/setup.bmp
IDT/setup.exe
.exe windows:4 windows x86 arch:x86

d3a35c815738cd0a7a55b0310b01bacf

Code Sign

01
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

01/08/1996, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

1f:9a:e0
Certificate

Issuer

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Not Before

16/02/2004, 18:24

Not After

11/02/2005, 00:05

Subject

CN=InstallShield Software Corporation,OU=Research and Development,O=InstallShield Software Corporation,L=Schaumburg,ST=Illinois,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

0a
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

06/08/2003, 00:00

Not After

05/08/2013, 23:59

Subject

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA
VerInstallFileA

kernel32

LoadResource
FindResourceA
GetModuleHandleA
SetErrorMode
CreateDirectoryA
GetModuleFileNameA
CreateFileA
InterlockedIncrement
InterlockedDecrement
QueryPerformanceFrequency
CreateEventA
CloseHandle
WriteFile
Sleep
ReadFile
FreeLibrary
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
lstrcmpA
FindFirstFileA
GetTempPathA
LeaveCriticalSection
EnterCriticalSection
CreateThread
GetWindowsDirectoryA
GetTickCount
GetFileAttributesA
GetTempFileNameA
CreateMutexA
WaitForSingleObject
ReleaseMutex
InitializeCriticalSection
DeleteCriticalSection
lstrlenW
LockResource
OpenEventA
CreateProcessA
GetCurrentThreadId
HeapAlloc
GetSystemInfo
HeapCreate
GetFileSize
lstrcpynA
lstrcatA
WritePrivateProfileStringA
SetFilePointer
GetShortPathNameA
GetProcAddress
LoadLibraryA
GetSystemDefaultLangID
MoveFileA
FindResourceExA
HeapDestroy
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SizeofResource
GetVersion
GetStartupInfoA
ExitProcess
GetCommandLineA
DebugBreak
HeapReAlloc
HeapFree
VirtualQuery
VirtualProtect
SearchPathA
ResetEvent
QueryPerformanceCounter
SystemTimeToFileTime
GetCurrentProcess
GetCurrentThread
IsBadReadPtr
RtlUnwind
lstrcpyA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
GetVersionExA
CompareStringW
CompareStringA
WideCharToMultiByte
lstrlenA
GetLastError
SetLastError
lstrcmpiA
GetPrivateProfileIntA
GetPrivateProfileStringA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetEvent

user32

MoveWindow
KillTimer
DestroyWindow
GetWindowTextA
SetTimer
SetWindowRgn
GetDesktopWindow
DialogBoxIndirectParamA
SetActiveWindow
LoadStringA
SetWindowTextA
GetDlgItem
SendMessageA
SetDlgItemTextA
LoadIconA
GetWindowRect
SystemParametersInfoA
SetWindowPos
wsprintfA
MsgWaitForMultipleObjects
PeekMessageA
CharLowerBuffA
MessageBoxA
EndDialog
CharNextA
CharUpperA
PostThreadMessageA
CreateDialogIndirectParamA
SetForegroundWindow
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
GetDC
ReleaseDC
ShowWindow
ScreenToClient

gdi32

GetTextExtentPoint32A
LPtoDP
DeleteObject
CreateFontIndirectA
GetObjectA

advapi32

RegCreateKeyExA
GetTokenInformation
AllocateAndInitializeSid
OpenThreadToken
EqualSid
FreeSid
RegCloseKey
RegOpenKeyExA
RegSetValueExA
OpenProcessToken
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyA
RegQueryValueA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

ole32

CoCreateGuid
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject
StringFromCLSID
CoTaskMemFree
StringFromGUID2
GetRunningObjectTable
CoTaskMemAlloc
CoMarshalInterThreadInterfaceInStream
CoReleaseMarshalData
CoInitialize
CoGetInterfaceAndReleaseStream
CoUninitialize

oleaut32

RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
SysFreeString
VariantCopy
SysAllocStringLen
SysAllocString
SysStringLen
VariantClear

lz32

LZOpenFileA
LZCopy
LZClose

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IDT/setup.ibt
IDT/setup.inx
IDT/setup.iss
IDT/www.x-drivers.ru.url
InstallerDU-2.4.3.1734.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 900KB - Virtual size: 904KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88Certificate

Extended Key Usages

Key Usages

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40Certificate

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6Certificate

Extended Key Usages

Key Usages

61:0e:7d:a7:00:00:00:00:00:48Certificate

Extended Key Usages

Key Usages

79:77:6f:bb:8f:77:d0:48:d4:3c:ac:8d:1a:79:98:41:41:44:8d:ffSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

advapi32

user32

ntdll

comctl32

shell32

Sections

.text Size: 30KB - Virtual size: 30KB

.data Size: 512B - Virtual size: 68KB

.rsrc Size: 714KB - Virtual size: 2KB

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88Certificate

Extended Key Usages

Key Usages

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40Certificate

6a:0b:99:4f:c0:00:0c:ab:11:d8:22:ef:7d:6c:79:7eCertificate

Extended Key Usages

Key Usages

61:05:87:58:00:03:00:00:00:5aCertificate

Extended Key Usages

Key Usages

2f:9f:8f:6e:18:d7:2a:6e:b5:bf:4c:b3:6f:0c:05:67:03:16:33:7cSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

advapi32

user32

ntdll

comctl32

shell32

Sections

.text Size: 30KB - Virtual size: 30KB

.data Size: 512B - Virtual size: 68KB

.rsrc Size: 505KB - Virtual size: 3KB

092eb6daba2f17cbda102fd1a32acd00

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88Certificate

Extended Key Usages

Key Usages

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40Certificate

6a:0b:99:4f:c0:00:0c:ab:11:d8:22:ef:7d:6c:79:7eCertificate

Extended Key Usages

Key Usages

61:05:87:58:00:03:00:00:00:5aCertificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

61:0e:7d:a7:00:00:00:00:00:48
Certificate

79:77:6f:bb:8f:77:d0:48:d4:3c:ac:8d:1a:79:98:41:41:44:8d:ff
Signer

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 512B - Virtual size: 68KB

.rsrc
Size: 714KB - Virtual size: 2KB

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

6a:0b:99:4f:c0:00:0c:ab:11:d8:22:ef:7d:6c:79:7e
Certificate

61:05:87:58:00:03:00:00:00:5a
Certificate

2f:9f:8f:6e:18:d7:2a:6e:b5:bf:4c:b3:6f:0c:05:67:03:16:33:7c
Signer

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 512B - Virtual size: 68KB

.rsrc
Size: 505KB - Virtual size: 3KB

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

6a:0b:99:4f:c0:00:0c:ab:11:d8:22:ef:7d:6c:79:7e
Certificate

61:05:87:58:00:03:00:00:00:5a
Certificate

a6:e6:ac:67:89:c4:e4:83:60:bf:98:a6:f2:b0:62:fd:bb:1b:18:37
Signer

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 512B - Virtual size: 68KB

.rsrc
Size: 698KB - Virtual size: 6KB

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

6a:0b:99:4f:c0:00:0c:ab:11:d8:22:ef:7d:6c:79:7e
Certificate

61:05:87:58:00:03:00:00:00:5a
Certificate

95:7b:73:0b:11:d4:6c:0e:da:f1:98:19:67:e8:84:dd:16:30:bd:32
Signer

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 512B - Virtual size: 68KB

.rsrc
Size: 696KB - Virtual size: 3KB

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

61:0e:7d:a7:00:00:00:00:00:48
Certificate

0e:f2:cf:0e:e3:89:d2:a7:bb:45:eb:b0:5f:79:84:e0:86:9b:e4:75
Signer