24ea07b9e67d6f0ec48e96de5b37a173_JaffaCakes118

resource
unpack001/qqqngcngr/FireQQ堂外挂/Fire QQ堂4.2外挂/Fire QQ堂4.2外挂.exe
unpack001/qqqngcngr/FireQQ堂外挂/QQ堂4.2下载器.exe
unpack002/$PLUGINSDIR/SimpleFC.dll
unpack002/$_2_/TenioDL/atl80.dll
unpack002/$_2_/TenioDL/msvcp80.dll
unpack002/$_2_/TenioDL/msvcr80.dll
unpack002/$_2_/atl80.dll
unpack002/$_2_/msvcp80.dll
unpack002/$_2_/msvcr80.dll
unpack001/qqqngcngr/QQ堂4.3全能外挂.exe

.rar

qqqngcngr/FireQQ堂外挂/Fire QQ堂4.2外挂/Fire QQ堂4.2外挂.exe

.exe windows:4 windows x86 arch:x86

ae0a5112fe1176f4e5f6e1bc95e4c209

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

FreeLibrary

lstrcatA

GetModuleFileNameA

ExitProcess

LoadLibraryA

GetProcAddress

lstrlenA

advapi32

RegQueryValueExA

RegCloseKey

RegOpenKeyExA

Sections

.text
Size: 1024B - Virtual size: 556B

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 899KB - Virtual size: 899KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

qqqngcngr/FireQQ堂外挂/Fire QQ堂4.2外挂/★使用说明☆.txt

qqqngcngr/FireQQ堂外挂/Fire QQ堂4.2外挂/修复公告!.txt

qqqngcngr/FireQQ堂外挂/Fire QQ堂4.2外挂/脚本/uservar.ini

qqqngcngr/FireQQ堂外挂/Fire QQ堂4.2外挂/脚本/永冬之颠险挂机脚本.ini

qqqngcngr/FireQQ堂外挂/Fire QQ堂4.2外挂/脚本/高仿技术穿泡脚本.exe

.exe windows:4 windows x86 arch:x86

49c5ff6514fe048918a47d3f7b336d1a

Code Sign

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

25/04/2007, 00:00

Not After

09/07/2019, 18:40

Subject

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageMicrosoftCommercialCodeSigning

ExtKeyUsageClientAuth

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

44:be:0c:8b:50:00:24:b4:11:d3:36:2d:e0:b3:5f:1b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

09/07/1999, 18:31

Not After

09/07/2019, 18:40

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

KeyUsageCertSign

KeyUsageCRLSign

43:73:c5:9c:4f:32:a9:e5:b5:d3:de:f1:26:9a:12:0d
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

30/04/2007, 00:00

Not After

29/04/2012, 23:59

Subject

CN=WoSign Time Stamping Signer,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

3c:bc:e2:de:50:f1:13:0c:81:e6:46:c1:79:33:12:72
Certificate

Issuer

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Not Before

06/01/2011, 00:00

Not After

05/01/2014, 23:59

Subject

CN=Fuzhou TianxiaChuangshi Digital Co.\,Ltd.,OU=WoSign Class 3 Code Signing,O=福州天下创世数码有限公司,L=福州市,ST=福建省,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord5864

ord3596

ord640

ord6194

ord1640

ord323

ord2405

ord5785

ord1175

ord2096

ord2408

ord5860

ord807

ord2920

ord2012

ord2120

ord554

ord4163

ord1644

ord1146

ord5572

ord2919

ord940

ord941

ord5787

ord4133

ord4297

ord1621

ord4202

ord5856

ord536

ord2452

ord2753

ord1195

ord472

ord5161

ord5162

ord5160

ord4905

ord4742

ord4976

ord4948

ord4358

ord4377

ord4854

ord5287

ord4835

ord491

ord1907

ord4258

ord489

ord768

ord283

ord4478

ord4267

ord2450

ord1908

ord4406

ord3729

ord1690

ord2528

ord5288

ord4439

ord2054

ord4431

ord771

ord804

ord4259

ord4284

ord4715

ord2370

ord6334

ord6877

ord1572

ord1199

ord2575

ord4396

ord3574

ord609

ord556

ord801

ord809

ord2122

ord2639

ord2862

ord3996

ord1168

ord3302

ord2817

ord2065

ord5829

ord3726

ord541

ord3716

ord790

ord2301

ord2358

ord6111

ord926

ord2642

ord3610

ord2411

ord2023

ord4218

ord2578

ord4398

ord3582

ord616

ord656

ord4299

ord859

ord5053

ord4774

ord5981

ord6270

ord613

ord289

ord6358

ord1088

ord4203

ord6449

ord2727

ord6467

ord2730

ord2729

ord1568

ord1180

ord6380

ord3698

ord765

ord2086

ord6283

ord6282

ord6153

ord5645

ord5583

ord6385

ord2393

ord3790

ord2784

ord4278

ord3089

ord2860

ord3797

ord1200

ord1158

ord6883

ord879

ord2740

ord882

ord2801

ord6143

ord1802

ord1934

ord1935

ord6662

ord4673

ord4274

ord6375

ord4486

ord2554

ord2512

ord5731

ord3922

ord1089

ord5199

ord2396

ord3346

ord5300

ord5302

ord2725

ord4079

ord4698

ord5307

ord5289

ord5714

ord4622

ord3738

ord561

ord815

ord4046

ord2145

ord2144

ord6225

ord5231

ord5247

ord2132

ord4601

ord2621

ord1205

ord1134

ord824

ord5435

ord1683

ord1673

ord2628

ord5980

ord2641

ord4122

ord6214

ord6196

ord4298

ord5948

ord3088

ord3875

ord3872

ord3871

ord6198

ord4286

ord4283

ord3137

ord3796

ord5719

ord6092

ord3524

ord4032

ord6095

ord4035

ord2549

ord2433

ord3353

ord3579

ord426

ord726

ord826

ord2820

ord498

ord755

ord470

ord5637

ord5849

ord3475

ord4287

ord2109

ord1008

ord6928

ord4476

ord284

ord6453

ord6663

ord798

ord1997

ord6407

ord5194

ord533

ord4400

ord3630

ord3706

ord5786

ord2582

ord4402

ord3370

ord3640

ord693

ord682

ord4243

ord6907

ord5861

ord3998

ord6007

ord3286

ord6675

ord6888

ord2244

ord6061

ord4981

ord4499

ord1949

ord4034

ord6215

ord6197

ord800

ord2764

ord539

ord5030

ord4242

ord2688

ord4275

ord6055

ord4078

ord1776

ord4407

ord5241

ord2385

ord5163

ord6374

ord4353

ord3798

ord4837

ord4441

ord2648

ord2055

ord6376

ord3749

ord5065

ord1727

ord5261

ord2446

ord5277

ord1988

ord5953

ord3957

ord326

ord3361

ord2827

ord3138

ord683

ord2243

ord3226

ord3631

ord1233

ord5597

ord911

ord3435

ord4187

ord4185

ord909

ord3437

ord396

ord3937

ord698

ord696

ord394

ord2136

ord3005

ord3528

ord5571

ord5579

ord5736

ord5678

ord5794

ord5789

ord5873

ord6172

ord6021

ord6189

ord4330

ord6186

ord5756

ord6192

ord5759

ord2971

ord3619

ord1641

ord2614

ord5788

ord2567

ord2414

ord4277

ord5875

ord3626

ord3693

ord3573

ord3571

ord2859

ord5606

ord2863

ord4083

ord6142

ord2438

ord3654

ord2584

ord4220

ord1862

ord500

ord3701

ord772

ord1574

ord1099

ord686

ord384

ord4160

ord2302

ord795

ord3721

ord6394

ord6383

ord5440

ord5450

ord2379

ord3301

ord6930

ord5710

ord4129

ord6927

ord2777

ord6569

ord4853

ord4710

ord3092

ord6242

ord6696

ord5278

ord850

ord5500

ord6354

ord462

ord1770

ord2726

ord817

ord565

ord5715

ord4699

ord5303

ord1948

ord1601

ord6462

ord743

ord446

ord4003

ord2486

ord4226

ord290

ord2623

ord614

ord1799

ord559

ord5610

ord5862

ord6144

ord812

ord2765

ord3939

ord861

ord6905

ord3874

ord4234

ord324

ord542

ord3597

ord4425

ord5280

ord1775

ord6052

ord4998

ord4376

ord5265

ord353

ord6010

ord2514

ord802

ord641

ord2763

ord5683

ord6648

ord1768

ord537

ord6199

ord6880

ord465

ord857

ord535

ord4467

ord2135

ord366

ord2092

ord674

ord3623

ord4427

ord5252

ord4436

ord1665

ord2649

ord5282

ord5237

ord4077

ord4151

ord2878

ord2879

ord3403

ord5472

ord975

ord5012

ord3350

ord4303

ord5103

ord5100

ord3059

ord2390

ord2723

ord3402

ord5290

ord389

ord268

ord5207

ord1567

ord690

ord2107

ord3811

ord860

ord5216

ord3758

ord3408

ord3227

ord3054

ord3425

ord3880

ord551

ord2818

ord939

msvcrt

_snprintf

strlen

memset

strrchr

isupper

_pctype

_isctype

__mb_cur_max

toupper

??8type_info@@QBEHABV0@@Z

_setmbcp

mbstowcs

_wcslwr

wcsstr

isxdigit

printf

strncmp

_iob

fprintf

calloc

realloc

_strdup

_tempnam

_CxxThrowException

??0exception@@QAE@ABQBD@Z

??1exception@@UAE@XZ

??0exception@@QAE@ABV0@@Z

_mbsnbicmp

_mbspbrk

_ismbcspace

tolower

_mbschr

isspace

_mbstok

_mbsicmp

qsort

_stricmp

atoi

sscanf

__CxxFrameHandler

srand

time

_mbscmp

rand

_itoa

_strnicmp

__set_app_type

_controlfp

__p__fmode

__p__commode

_adjust_fdiv

_getch

__setusermatherr

_initterm

fputc

fclose

fgetc

fseek

fopen

fgets

free

fread

rewind

ftell

malloc

wcscpy

wcslen

_ftol

memmove

_purecall

_mbsnbcpy

atol

sprintf

isdigit

isalpha

strchr

strstr

_mbsstr

isalnum

islower

isprint

_splitpath

fwrite

strncpy

_except_handler3

__dllonexit

_onexit

??1type_info@@UAE@XZ

?terminate@@YAXXZ

_exit

_XcptFilter

exit

_acmdln

__getmainargs

kernel32

Module32First

Module32Next

SetUnhandledExceptionFilter

GlobalReAlloc

GlobalSize

VirtualFree

GetSystemInfo

VirtualQuery

VirtualAlloc

CreateToolhelp32Snapshot

QueryPerformanceCounter

SetLastError

InterlockedExchange

CreateMutexA

ReleaseMutex

IsDBCSLeadByte

ReadProcessMemory

OutputDebugStringA

GetCurrentThread

SuspendThread

QueryPerformanceFrequency

OpenEventA

CopyFileA

FormatMessageA

LocalAlloc

GetFileSize

ReadFile

GlobalFree

GetACP

VirtualProtect

SleepEx

TerminateThread

FileTimeToSystemTime

SetFilePointer

GetFileInformationByHandle

WriteFile

SystemTimeToFileTime

GetLocalTime

LocalFileTimeToFileTime

SetFileTime

TerminateProcess

LCMapStringA

GetStringTypeExA

GetUserDefaultLCID

InterlockedCompareExchange

LocalFree

PulseEvent

ResumeThread

DeleteCriticalSection

TlsAlloc

SetEnvironmentVariableA

TlsSetValue

InitializeCriticalSection

SetEvent

ResetEvent

Beep

IsDebuggerPresent

GlobalAlloc

GlobalLock

GlobalUnlock

GetCurrentDirectoryA

GetFileAttributesExA

InterlockedIncrement

GetCurrentThreadId

WideCharToMultiByte

GetStartupInfoA

OpenProcess

VirtualProtectEx

GetCurrentProcessId

MoveFileA

OpenMutexA

CreateFileMappingA

MapViewOfFile

UnmapViewOfFile

GetFileAttributesA

SizeofResource

SetCurrentDirectoryA

MultiByteToWideChar

GetSystemDirectoryA

InterlockedDecrement

GetModuleFileNameA

GetTempFileNameA

GetProfileStringA

GetPrivateProfileStringA

WriteProfileStringA

CreateFileA

DeviceIoControl

GetProcAddress

CompareStringA

lstrcatA

WinExec

lstrcpyA

GetWindowsDirectoryA

LoadLibraryA

FreeLibrary

lstrcpynA

GetProcessHeap

HeapAlloc

HeapFree

CreateThread

GetExitCodeThread

GetLastError

CreateEventA

CloseHandle

Sleep

EnterCriticalSection

GetModuleHandleA

LeaveCriticalSection

GetCurrentProcess

SetPriorityClass

WritePrivateProfileStringA

GetPrivateProfileIntA

lstrcmpiA

FindResourceA

LoadResource

LockResource

GetCPInfo

lstrlenW

lstrlenA

GetVersion

GetVersionExA

CreateProcessA

WaitForSingleObject

GetTempPathA

CreateDirectoryA

DeleteFileA

IsBadReadPtr

SetFileAttributesA

MoveFileExA

GetTickCount

user32

FrameRect

InflateRect

OffsetRect

DrawFocusRect

ClientToScreen

WindowFromPoint

GetActiveWindow

InvalidateRect

SetCursor

GetNextDlgTabItem

IsMenu

GetWindowLongA

DestroyCursor

PostQuitMessage

GetDlgCtrlID

GrayStringA

TabbedTextOutA

GetSubMenu

LoadBitmapA

GetSysColorBrush

GetMenuStringA

CreateMenu

CreatePopupMenu

GetMenuItemID

GetMenuState

ModifyMenuA

GetMenuItemCount

AppendMenuA

GetSystemMetrics

EnumDisplaySettingsA

OpenClipboard

EmptyClipboard

SetClipboardData

CloseClipboard

GetCapture

CheckMenuItem

GetDC

DrawTextA

ReleaseDC

DrawIconEx

DestroyIcon

GetSysColor

CopyRect

FillRect

DrawEdge

SetRect

GetMenuItemInfoA

SendMessageA

EnableWindow

IsWindow

GetParent

DrawStateA

SystemParametersInfoA

SetWindowLongA

SetWindowPos

KillTimer

SetTimer

PostMessageA

GetDesktopWindow

IsWindowVisible

GetClientRect

GetWindowRect

keybd_event

UnregisterHotKey

RegisterHotKey

SendInput

CallNextHookEx

UnhookWindowsHookEx

SetWindowsHookExA

GetGUIThreadInfo

GetWindowThreadProcessId

ClipCursor

SetCursorPos

MapVirtualKeyA

GetForegroundWindow

GetAsyncKeyState

GetWindowDC

ShowScrollBar

DrawFrameControl

GetClassInfoA

DefWindowProcA

BringWindowToTop

LockWindowUpdate

UpdateWindow

GetFocus

IsRectEmpty

RegisterWindowMessageA

LoadImageA

SetWindowTextA

MessageBoxA

SetActiveWindow

SetForegroundWindow

wsprintfA

SetCapture

ReleaseCapture

PtInRect

CopyIcon

LoadCursorA

LoadMenuA

LoadIconA

DrawIcon

IsIconic

ScreenToClient

GetCursorPos

GetIconInfo

UnregisterClassA

EnumWindows

PostThreadMessageA

ShowWindow

RegisterClassA

CreateWindowExA

GetMessageA

TranslateMessage

RedrawWindow

DispatchMessageA

LoadStringA

gdi32

CreateCompatibleBitmap

GetTextExtentPoint32W

GetTextExtentPoint32A

Ellipse

DeleteDC

DeleteObject

CreateCompatibleDC

SelectObject

CreateDIBSection

SetPixel

GetPixel

GetObjectA

PatBlt

PtVisible

RectVisible

TextOutA

ExtTextOutA

Rectangle

Escape

GetStockObject

SetTextColor

CreateFontIndirectA

CreateSolidBrush

CreatePen

GetBkMode

GetDeviceCaps

CreateRectRgn

GetCurrentObject

GetBkColor

SetBkColor

CreateBitmap

CreateRectRgnIndirect

CreateDCA

GetDIBits

SetDIBits

BitBlt

advapi32

RegQueryValueExA

RegQueryValueA

ControlService

StartServiceA

OpenServiceA

DeleteService

OpenSCManagerA

CreateServiceA

CloseServiceHandle

RegOpenKeyA

RegCreateKeyA

RegDeleteKeyA

RegCreateKeyExA

RegSetValueExA

RegOpenKeyExA

RegDeleteValueA

RegCloseKey

shell32

Shell_NotifyIconA

SHGetSpecialFolderPathA

ShellExecuteExA

ShellExecuteA

comctl32

ImageList_GetBkColor

ImageList_SetBkColor

ImageList_Draw

ImageList_GetImageCount

ImageList_GetIcon

ImageList_AddMasked

ImageList_ReplaceIcon

_TrackMouseEvent

ImageList_GetImageInfo

ole32

ProgIDFromCLSID

StgOpenStorageOnILockBytes

CreateILockBytesOnHGlobal

StgCreateDocfile

CoTaskMemFree

CoInitializeEx

OleRun

CLSIDFromProgID

CLSIDFromString

CoUninitialize

CoCreateInstance

CoInitialize

StringFromCLSID

oleaut32

GetErrorInfo

SysFreeString

VariantClear

VariantInit

SysAllocString

VariantCopy

SafeArrayCreateVector

SafeArrayPutElement

SysAllocStringByteLen

SysStringLen

SysAllocStringLen

LoadTypeLi

urlmon

URLDownloadToFileA

shlwapi

SHDeleteKeyA

ws2_32

setsockopt

WSASocketA

WSAGetLastError

WSAWaitForMultipleEvents

WSAEventSelect

shutdown

WSARecv

WSAEnumNetworkEvents

htonl

closesocket

ntohs

ntohl

htons

gethostbyname

inet_ntoa

inet_addr

WSAConnect

WSASend

psapi

EnumProcessModules

rpcrt4

RpcStringFreeA

UuidToStringA

UuidCreate

imagehlp

MakeSureDirectoryPathExists

wininet

InternetSetOptionA

uxtheme

SetThemeAppProperties

winmm

timeGetTime

PlaySoundA

msvcp60

?what@runtime_error@std@@UBEPBDXZ

??1logic_error@std@@UAE@XZ

??0bad_exception@std@@QAE@ABV01@@Z

??1bad_exception@std@@UAE@XZ

??_7bad_exception@std@@6B@

??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z

?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IID@Z

??Nstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??Ostd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z

??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z

?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z

??0runtime_error@std@@QAE@ABV01@@Z

??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z

??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z

??_7runtime_error@std@@6B@

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z

?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z

?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z

?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

?_Xlen@std@@YAXXZ

?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z

?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z

?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ

?_Xran@std@@YAXXZ

??0Init@ios_base@std@@QAE@XZ

??1Init@ios_base@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??1_Winit@std@@QAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

??1ios_base@std@@UAE@XZ

??1locale@std@@QAE@XZ

??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@

??1_Lockit@std@@QAE@XZ

??0_Lockit@std@@QAE@XZ

??0logic_error@std@@QAE@ABV01@@Z

??0out_of_range@std@@QAE@ABV01@@Z

??1out_of_range@std@@UAE@XZ

??_7out_of_range@std@@6B@

?clear@ios_base@std@@QAEXH_N@Z

?_Stinit@?1??_Init@?$basic_filebuf@DU?$char_traits@D@std@@@std@@IAEXPAU_iobuf@@W4_Initfl@23@@Z@4HA

?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z

?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z

?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z

??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ

??1?$basic_filebuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ

?close@?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEPAV12@XZ

?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?open@?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEPAV12@PBDH@Z

??_7?$basic_ifstream@DU?$char_traits@D@std@@@std@@6B@

?_Init@?$basic_filebuf@DU?$char_traits@D@std@@@std@@IAEXPAU_iobuf@@W4_Initfl@12@@Z

??_7?$basic_filebuf@DU?$char_traits@D@std@@@std@@6B@

??0locale@std@@QAE@XZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

?init@?$basic_ios@DU?$char_traits@D@std@@@std@@IAEXPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@_N@Z

??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@

??_8?$basic_ifstream@DU?$char_traits@D@std@@@std@@7B@

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHPBD@Z

??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z

?what@logic_error@std@@UBEPBDXZ

??0logic_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z

??_7logic_error@std@@6B@

?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PAD0PBD1@Z

?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEPADXZ

?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z

??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??1runtime_error@std@@UAE@XZ

?_Doraise@runtime_error@std@@MBEXXZ

Exports

?interfaceMap@CCustomControlSite@@1UAFX_INTERFACEMAP@@B

ANTLR3_TREE_ADAPTORDebugNew

ANTLR3_TREE_ADAPTORNew

QMScriptLexerNew

QMScriptLexerNewSSD

QMScriptParserNew

QMScriptParserNewSSD

antlr3ArboretumNew

antlr3BaseRecognizerNew

antlr3BaseTreeAdaptorInit

antlr3BaseTreeNew

antlr3BitsetCopy

antlr3BitsetList

antlr3BitsetLoad

antlr3BitsetNew

antlr3BitsetOf

antlr3BitsetSetAPI

antlr3CommonTokenDebugStreamSourceNew

antlr3CommonTokenNew

antlr3CommonTokenStreamNew

antlr3CommonTokenStreamSourceNew

antlr3CommonTreeNew

antlr3CommonTreeNewFromToken

antlr3EnumNew

antlr3ExceptionNew

antlr3Hash

antlr3HashTableNew

antlr3IntStreamNew

antlr3IntTrieNew

antlr3LexerNew

antlr3LexerNewStream

antlr3ListNew

antlr3MTExceptionNew

antlr3NewAsciiStringCopyStream

antlr3NewAsciiStringInPlaceStream

antlr3NewUCS2StringInPlaceStream

antlr3ParserNew

antlr3ParserNewStream

antlr3ParserNewStreamDbg

antlr3RecognitionExceptionNew

antlr3RewriteRuleNODEStreamNewAE

antlr3RewriteRuleNODEStreamNewAEE

antlr3RewriteRuleNODEStreamNewAEV

antlr3RewriteRuleSubtreeStreamNewAE

antlr3RewriteRuleSubtreeStreamNewAEE

antlr3RewriteRuleSubtreeStreamNewAEV

antlr3RewriteRuleTOKENStreamNewAE

antlr3RewriteRuleTOKENStreamNewAEE

antlr3RewriteRuleTOKENStreamNewAEV

antlr3SetCTAPI

antlr3SetTokenAPI

antlr3SetVectorApi

antlr3StackNew

antlr3StringFactoryNew

antlr3TokenFactoryNew

antlr3TokenStreamNew

antlr3TopoNew

antlr3UCS2StringFactoryNew

antlr3VectorFactoryNew

antlr3VectorNew

antlr3dfapredict

antlr3dfaspecialStateTransition

antlr3dfaspecialTransition

fillBufferExt

Sections

.text
Size: 740KB - Virtual size: 738KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 336KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024KB - Virtual size: 1020KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

qqqngcngr/FireQQ堂外挂/Fire QQ堂4.2外挂/脚本/高仿技术穿泡脚本.ini

qqqngcngr/FireQQ堂外挂/QQ堂4.2下载器.exe

.exe windows:5 windows x86 arch:x86

b729b61eb1515fcf7b3e511e4e66258b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime

CompareFileTime

SearchPathW

GetShortPathNameW

GetFullPathNameW

MoveFileW

SetCurrentDirectoryW

GetFileAttributesW

GetLastError

CreateDirectoryW

SetFileAttributesW

Sleep

GetTickCount

CreateFileW

GetFileSize

GetModuleFileNameW

GetCurrentProcess

CopyFileW

ExitProcess

GetWindowsDirectoryW

GetTempPathW

GetCommandLineW

SetErrorMode

CloseHandle

lstrlenW

lstrcpynW

GetDiskFreeSpaceW

GlobalUnlock

GlobalLock

CreateThread

LoadLibraryW

CreateProcessW

lstrcmpiA

GetTempFileNameW

lstrcatW

GetProcAddress

LoadLibraryA

GetModuleHandleA

OpenProcess

lstrcpyW

GetVersionExW

GetSystemDirectoryW

GetVersion

lstrcpyA

RemoveDirectoryW

lstrcmpiW

lstrcmpW

ExpandEnvironmentStringsW

GlobalAlloc

WaitForSingleObject

GetExitCodeProcess

GlobalFree

GetModuleHandleW

LoadLibraryExW

FreeLibrary

WritePrivateProfileStringW

GetPrivateProfileStringW

WideCharToMultiByte

MulDiv

lstrlenA

WriteFile

ReadFile

MultiByteToWideChar

SetFilePointer

FindClose

FindNextFileW

FindFirstFileW

DeleteFileW

lstrcpynA

user32

ScreenToClient

GetMessagePos

CallWindowProcW

IsWindowVisible

LoadBitmapW

CloseClipboard

SetClipboardData

EmptyClipboard

OpenClipboard

TrackPopupMenu

GetWindowRect

AppendMenuW

CreatePopupMenu

GetSystemMetrics

EndDialog

EnableMenuItem

GetSystemMenu

SetClassLongW

IsWindowEnabled

SetWindowPos

DialogBoxParamW

CheckDlgButton

CreateWindowExW

SystemParametersInfoW

RegisterClassW

SetDlgItemTextW

GetDlgItemTextW

MessageBoxIndirectW

CharNextA

CharUpperW

CharPrevW

DispatchMessageW

PeekMessageW

wsprintfA

DestroyWindow

CreateDialogParamW

SetTimer

SetWindowTextW

PostQuitMessage

SetForegroundWindow

ShowWindow

wsprintfW

SendMessageTimeoutW

LoadCursorW

SetCursor

GetWindowLongW

GetSysColor

CharNextW

GetClassInfoW

ExitWindowsEx

FindWindowExW

GetDlgItem

SetWindowLongW

LoadImageW

GetDC

EnableWindow

InvalidateRect

SendMessageW

DefWindowProcW

BeginPaint

GetClientRect

FillRect

DrawTextW

EndPaint

IsWindow

gdi32

SetBkColor

GetDeviceCaps

DeleteObject

CreateBrushIndirect

CreateFontIndirectW

SetBkMode

SetTextColor

SelectObject

shell32

SHBrowseForFolderW

SHGetPathFromIDListW

SHGetFileInfoW

ShellExecuteW

SHFileOperationW

SHGetSpecialFolderLocation

advapi32

RegEnumKeyW

RegOpenKeyExW

RegCloseKey

RegDeleteKeyW

RegDeleteValueW

RegCreateKeyExW

RegSetValueExW

RegQueryValueExW

RegEnumValueW

comctl32

ImageList_AddMasked

ImageList_Destroy

ord17

ImageList_Create

ole32

CoTaskMemFree

OleInitialize

OleUninitialize

CoCreateInstance

version

GetFileVersionInfoSizeW

GetFileVersionInfoW

VerQueryValueW

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 409KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 580KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$PLUGINSDIR/SimpleFC.dll

.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

IMAGE_FILE_BYTES_REVERSED_HI

Exports

AddApplication

AddPort

AdvAddRule

AdvExistsRule

AdvRemoveRule

AllowDisallowExceptionsNotAllowed

AllowDisallowIcmpInboundEchoRequest

AllowDisallowIcmpInboundMaskRequest

AllowDisallowIcmpInboundRouterRequest

AllowDisallowIcmpInboundTimestampRequest

AllowDisallowIcmpOutboundDestinationUnreachable

AllowDisallowIcmpOutboundPacketTooBig

AllowDisallowIcmpOutboundParameterProblem

AllowDisallowIcmpOutboundSourceQuench

AllowDisallowIcmpOutboundTimeExceeded

AllowDisallowIcmpRedirect

AreExceptionsNotAllowed

AreNotificationsEnabled

EnableDisableApplication

EnableDisableFirewall

EnableDisableNotifications

EnableDisablePort

IsApplicationAdded

IsApplicationEnabled

IsFirewallEnabled

IsFirewallServiceRunning

IsIcmpTypeAllowed

IsPortAdded

IsPortEnabled

RemoveApplication

RemovePort

RestoreDefaults

StartStopFirewallService

Sections

CODE
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

DATA
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$_2_/Microsoft.VC80.ATL.manifest

.xml

$_2_/Microsoft.VC80.CRT.manifest

$_2_/MiniQQDL.exe

.exe windows:4 windows x86 arch:x86

856996029e43a947f5dc780678aa3175

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

21/05/2009, 00:00

Not After

20/05/2019, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

5d:06:88:f9:04:0a:d5:22:87:fc:32:ad:ec:eb:85:b0
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Not Before

26/01/2010, 00:00

Not After

25/01/2013, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Tencent Technology(Shenzhen) Company Limited,L=shenzhen,ST=guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

53:7f:2e:db:a0:02:85:5d:0b:04:a9:a3:22:75:84:3d:91:77:9c:b3
Signer

Actual PE Digest

53:7f:2e:db:a0:02:85:5d:0b:04:a9:a3:22:75:84:3d:91:77:9c:b3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

PDB Paths

g:\code\TenioDL_MiniDown_Fix\src\GameDownloader\newui\GameDown\bin\QQGameDown.pdb

Imports

comctl32

_TrackMouseEvent

InitCommonControlsEx

kernel32

LockResource

LoadResource

FindResourceW

GetCurrentProcessId

GetTickCount

QueryPerformanceCounter

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

GetStartupInfoW

InterlockedCompareExchange

SizeofResource

GetSystemTimeAsFileTime

FindFirstFileW

ExpandEnvironmentStringsW

GetProcAddress

CloseHandle

UnlockFile

WriteFile

LockFile

SetFilePointer

ReadFile

CreateFileA

MultiByteToWideChar

GetModuleFileNameA

lstrlenA

GetCurrentThread

FreeResource

GlobalLock

GlobalUnlock

FreeLibrary

LoadLibraryW

CreateDirectoryW

GetModuleFileNameW

InterlockedExchange

GetVersionExW

GetFileAttributesW

GetCommandLineW

CreateMutexW

GetLastError

GetPrivateProfileStringW

GetPrivateProfileIntW

lstrcpynW

lstrlenW

lstrcatW

WideCharToMultiByte

GetModuleHandleW

GetLocalTime

GetCurrentThreadId

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

InitializeCriticalSection

GlobalAlloc

Sleep

GlobalFree

user32

SystemParametersInfoW

GetSystemMetrics

DrawFocusRect

GetParent

ClientToScreen

DefWindowProcW

RegisterClassExW

ScreenToClient

SetWindowLongW

GetWindowLongW

IntersectRect

CreateWindowExW

InvalidateRect

GetWindowDC

GetCapture

SetCapture

GetWindow

RedrawWindow

GetActiveWindow

SetWindowRgn

IsZoomed

WindowFromPoint

EndDialog

CreateDialogParamW

DialogBoxParamW

EnumThreadWindows

DrawIcon

ReleaseCapture

InflateRect

CallNextHookEx

UnhookWindowsHookEx

SetWindowsHookExW

GetClassInfoW

IsWindowVisible

FindWindowExW

IsIconic

ShowWindow

LoadCursorW

TranslateMessage

SetCursor

GetWindowTextW

GetMenuState

GetSystemMenu

GetClassInfoExW

DrawIconEx

GetMessageW

SetRect

LoadImageW

PostQuitMessage

GetWindowRect

GetClassNameW

DrawAnimatedRects

EnumChildWindows

MessageBoxW

PostMessageW

DestroyWindow

IsWindow

FlashWindow

SetWindowPos

CallWindowProcW

SetWindowTextW

RegisterWindowMessageW

SetFocus

CheckDlgButton

SetDlgItemInt

GetDlgItem

SendDlgItemMessageW

EndPaint

GetClientRect

BeginPaint

EnableWindow

IsDlgButtonChecked

GetDlgItemInt

SetTimer

KillTimer

LoadIconW

DestroyMenu

TrackPopupMenu

GetCursorPos

GetSubMenu

LoadMenuW

PtInRect

ReleaseDC

GetDC

DrawTextW

MapWindowPoints

OffsetRect

FindWindowA

SendMessageTimeoutW

SendMessageW

UpdateWindow

BringWindowToTop

SetForegroundWindow

FindWindowW

DispatchMessageW

gdi32

CreateSolidBrush

SetBkMode

SetTextColor

GetStockObject

GetTextExtentPoint32W

SelectObject

LineTo

CreatePen

MoveToEx

RoundRect

SelectClipRgn

CreateRectRgnIndirect

ExtTextOutW

SetBkColor

Rectangle

DeleteDC

BitBlt

CreateCompatibleDC

StretchBlt

CreateCompatibleBitmap

GetClipBox

CreateDIBSection

ExcludeClipRect

CreateRectRgn

CreateRoundRectRgn

CombineRgn

CreateFontIndirectW

DeleteObject

advapi32

RegDeleteKeyW

RegQueryValueExW

RegOpenKeyExW

RegDeleteValueW

AccessCheck

RegCreateKeyExW

RegSetValueExW

GetFileSecurityW

ImpersonateSelf

OpenThreadToken

RevertToSelf

MapGenericMask

RegCloseKey

shell32

Shell_NotifyIconW

SHGetMalloc

SHBrowseForFolderW

ShellExecuteW

SHGetPathFromIDListW

ole32

CreateStreamOnHGlobal

CoFreeLibrary

CoLoadLibrary

oleaut32

SafeArrayUnaccessData

SysAllocString

SysFreeString

SysStringLen

SafeArrayAccessData

msvcp80

??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z

??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z

??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_WI@Z

?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z

?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z

?replace@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IIABV12@@Z

?rend@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$reverse_iterator@V?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@XZ

?rbegin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$reverse_iterator@V?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@XZ

??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z

??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIPBD@Z

?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z

??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z

??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z

?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHABV12@@Z

?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z

?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z

?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z

??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z

?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ

?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ

?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z

?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcr80

_controlfp_s

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_crt_debugger_hook

_except_handler4_common

__set_app_type

__p__fmode

__p__commode

_adjust_fdiv

__setusermatherr

_configthreadlocale

_initterm_e

_initterm

_wcmdln

exit

_XcptFilter

_exit

_cexit

__wgetmainargs

_amsg_exit

_decode_pointer

_onexit

_lock

_encode_pointer

__dllonexit

_unlock

?terminate@@YAXXZ

wcsncpy

_wcsicmp

toupper

wcschr

_wcsdup

printf

fread

sprintf

??_V@YAXPAX@Z

wcstok

vswprintf_s

wcsrchr

__argc

__wargv

memcpy

malloc

free

_snwprintf

_vsnwprintf

_vsnprintf

fopen

_snprintf

fwrite

fflush

fclose

strrchr

_splitpath

strncat

strncpy

memmove_s

??2@YAPAXI@Z

vsprintf_s

??0exception@std@@QAE@ABV01@@Z

_CxxThrowException

_purecall

??0exception@std@@QAE@XZ

??1exception@std@@UAE@XZ

?what@exception@std@@UBEPBDXZ

??0exception@std@@QAE@ABQBD@Z

tolower

??3@YAXPAX@Z

_invalid_parameter_noinfo

memset

__CxxFrameHandler3

_invoke_watson

gdiplus

GdipCreateFontFamilyFromName

GdipDeleteFontFamily

GdipDeleteFont

GdipDisposeImage

GdipGetImageWidth

GdipGetImageHeight

GdipGetImagePixelFormat

GdipCreateBitmapFromFile

GdipCreateBitmapFromFileICM

GdipCreateHBITMAPFromBitmap

GdipBitmapLockBits

GdipBitmapUnlockBits

GdipCreateSolidFill

GdipSetStringFormatAlign

GdipSetStringFormatTrimming

GdipCreateFromHDC

GdipDrawString

GdipDrawImageRectRectI

GdipCreateFont

GdipCloneBitmapAreaI

GdipCloneBrush

GdipCloneImage

GdipLoadImageFromFile

GdipLoadImageFromFileICM

GdipImageGetFrameDimensionsCount

GdipImageGetFrameDimensionsList

GdipImageGetFrameCount

GdipImageSelectActiveFrame

GdipGetPropertyItemSize

GdipGetPropertyItem

GdipDrawImageRectI

GdipLoadImageFromStreamICM

GdipDeleteGraphics

GdipDeleteStringFormat

GdipCreateStringFormat

GdipDeleteBrush

GdipAlloc

GdipFree

GdiplusShutdown

GdiplusStartup

Sections

.text
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 13B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$_2_/TenioDL/Microsoft.VC80.ATL.manifest

.xml

$_2_/TenioDL/Microsoft.VC80.CRT.manifest

$_2_/TenioDL/TNProxy.dll

.dll regsvr32 windows:4 windows x86 arch:x86

3e1312f81e1880a7089194f148e0d58e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0d:55:f9:95:e6:cd:a7:e4:0d:b8:62:9e:5a:f1:5e:48
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

26/02/2007, 00:00

Not After

26/02/2008, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Shenzhen R&D Center,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

5a:40:e0:b2:03:2a:9d:8a:a2:ea:27:80:4e:77:3c:8f:ab:8c:9a:ef
Signer

Actual PE Digest

5a:40:e0:b2:03:2a:9d:8a:a2:ea:27:80:4e:77:3c:8f:ab:8c:9a:ef

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection

InterlockedDecrement

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSection

LoadLibraryA

InterlockedIncrement

GetProcAddress

FreeLibrary

GetTickCount

CloseHandle

Sleep

TlsSetValue

TlsFree

TlsAlloc

TlsGetValue

ws2_32

htonl

sendto

connect

htons

ntohs

ntohl

gethostbyname

WSAStartup

WSACleanup

select

closesocket

ioctlsocket

setsockopt

socket

bind

recvfrom

recv

send

getpeername

listen

accept

inet_ntoa

__WSAFDIsSet

WSAGetLastError

gethostname

inet_addr

msvcrt

_adjust_fdiv

_onexit

malloc

_initterm

__dllonexit

_CxxThrowException

??1type_info@@UAE@XZ

strcmp

memmove

isdigit

fgetc

_ftol

atoi

strncpy

strstr

free

calloc

memset

rand

srand

strcpy

memcpy

_beginthreadex

strlen

time

_iob

fputc

sprintf

printf

_purecall

__CxxFrameHandler

??3@YAXPAX@Z

??2@YAPAXI@Z

msvcp60

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z

??1Init@ios_base@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??0Init@ios_base@std@@QAE@XZ

?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ

?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z

??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z

??1?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

??0_Lockit@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB

?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z

?setw@std@@YA?AU?$_Smanip@H@1@H@Z

??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??1_Winit@std@@QAE@XZ

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z

??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

iphlpapi

GetAdaptersInfo

GetIfEntry

wininet

InternetGetConnectedState

Exports

DllCanUnloadNow

DllGetClassObject

DllRegisterServer

DllUnregisterServer

Sections

.text
Size: 300KB - Virtual size: 297KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$_2_/TenioDL/TenioDL.dll

.dll windows:4 windows x86 arch:x86

848268aaaa874f41af142042665fbcad

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

21/05/2009, 00:00

Not After

20/05/2019, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

5d:06:88:f9:04:0a:d5:22:87:fc:32:ad:ec:eb:85:b0
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Not Before

26/01/2010, 00:00

Not After

25/01/2013, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Tencent Technology(Shenzhen) Company Limited,L=shenzhen,ST=guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

5c:14:6f:b7:49:23:d3:fc:ce:29:56:8e:19:1c:40:5b:ec:8e:a0:c4
Signer

Actual PE Digest

5c:14:6f:b7:49:23:d3:fc:ce:29:56:8e:19:1c:40:5b:ec:8e:a0:c4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

f:\temp\p2papp\Release\TenioDL_DLL.pdb

Imports

imm32

ImmAssociateContext

ws2_32

connect

__WSAFDIsSet

closesocket

send

recv

ioctlsocket

ntohl

WSACleanup

WSAStartup

ntohs

htons

htonl

WSAGetLastError

inet_addr

gethostname

inet_ntoa

gethostbyname

socket

select

kernel32

GetLocaleInfoA

GetThreadLocale

InterlockedCompareExchange

UnhandledExceptionFilter

IsDebuggerPresent

QueryPerformanceCounter

GetProcAddress

MultiByteToWideChar

GetModuleFileNameA

lstrlenA

WideCharToMultiByte

GetCurrentThreadId

OutputDebugStringA

GetModuleHandleA

InitializeCriticalSectionAndSpinCount

GetLocalTime

GetCurrentProcessId

GetLastError

VirtualQuery

DeleteFileA

TerminateProcess

EnterCriticalSection

LeaveCriticalSection

GetLongPathNameA

CreateFileA

CreateDirectoryA

OpenProcess

WriteFile

SetFilePointer

FindClose

GetPrivateProfileStringA

FindFirstFileA

FindNextFileA

DeleteCriticalSection

lstrlenW

WritePrivateProfileStringA

InterlockedDecrement

CloseHandle

CreateProcessA

WaitForSingleObject

Sleep

SetEvent

ResetEvent

CreateNamedPipeA

SetNamedPipeHandleState

GetOverlappedResult

CreateEventA

ConnectNamedPipe

WaitForSingleObjectEx

CancelIo

ReadFile

WaitNamedPipeA

LoadLibraryA

GetWindowsDirectoryA

FreeLibrary

CreateProcessW

DuplicateHandle

HeapAlloc

WriteProcessMemory

SetUnhandledExceptionFilter

InitializeCriticalSection

VirtualAllocEx

GetProcessHeap

SearchPathW

GetCurrentProcess

GetModuleFileNameW

SetErrorMode

HeapFree

InterlockedExchange

GetTickCount

GetFileAttributesA

CopyFileA

SleepEx

GetVersionExA

GetSystemTimeAsFileTime

GlobalAlloc

GlobalFree

GetACP

user32

TranslateMessage

MsgWaitForMultipleObjects

GetWindowLongA

SetWindowLongA

wsprintfW

DestroyWindow

SendMessageA

CreateWindowExA

CloseWindow

DispatchMessageA

PostMessageA

RegisterClassA

KillTimer

DefWindowProcA

SetTimer

UnregisterClassA

PeekMessageA

shell32

SHGetSpecialFolderPathA

ole32

CoCreateInstance

CLSIDFromProgID

CoCreateGuid

CoInitialize

CoUninitialize

StringFromGUID2

CoFreeLibrary

CoLoadLibrary

oleaut32

SysFreeString

SysStringLen

SysAllocStringLen

GetErrorInfo

SysAllocString

VariantClear

msvcr80

??_V@YAXPAX@Z

printf

_splitpath

??2@YAPAXI@Z

strncpy_s

_time64

_mbsrchr

strcat_s

_invalid_parameter_noinfo

_access

_localtime64_s

strcpy_s

_vsnprintf_s

_purecall

_strnicmp

strchr

_splitpath_s

sprintf_s

_mbschr

tolower

strftime

?what@exception@std@@UBEPBDXZ

??1exception@std@@UAE@XZ

_mbsicmp

??0exception@std@@QAE@XZ

??0exception@std@@QAE@ABQBD@Z

_snprintf_s

??0exception@std@@QAE@ABV01@@Z

_mbsnbcpy

fprintf

__iob_func

wcsncpy

strncpy

_vsnwprintf_s

free

_strdup

memmove_s

rand

srand

_beginthreadex

_endthreadex

_mbsnbcat

realloc

malloc

calloc

ceil

fclose

toupper

fopen

fwrite

_mbsnbcmp

memset

memcpy

_wassert

strstr

strnlen

memmove

fread

ferror

ftell

fseek

_unlock

__dllonexit

_encode_pointer

_lock

_onexit

_decode_pointer

_malloc_crt

_encoded_null

_initterm

_initterm_e

_amsg_exit

_adjust_fdiv

__CppXcptFilter

_crt_debugger_hook

?terminate@@YAXXZ

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_except_handler4_common

__clean_type_info_names_internal

??3@YAXPAX@Z

__CxxFrameHandler3

_CxxThrowException

strspn

atoi

memchr

??_U@YAPAXI@Z

_CIsqrt