2819dd35cf32c504c2d4b9a20e3e5a9c_JaffaCakes118

resource
2819dd35cf32c504c2d4b9a20e3e5a9c_JaffaCakes118
unpack001/$PLUGINSDIR/System.dll
unpack001/91wanǹ59739.exe
unpack001/kugo.exe
unpack002/$PLUGINSDIR/System.dll
unpack004/$PLUGINSDIR/System.dll

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/kugou7_1173-7.5.30.11857.exe	nsis_installer_1
static1/unpack001/kugou7_1173-7.5.30.11857.exe	nsis_installer_2
static1/unpack002/uninst.exe	nsis_installer_1
static1/unpack002/uninst.exe	nsis_installer_2

.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime

SearchPathA

GetShortPathNameA

GetFullPathNameA

MoveFileA

SetCurrentDirectoryA

GetFileAttributesA

GetLastError

CreateDirectoryA

SetFileAttributesA

Sleep

GetTickCount

CreateFileA

GetFileSize

GetModuleFileNameA

GetCurrentProcess

CopyFileA

ExitProcess

SetFileTime

GetTempPathA

GetCommandLineA

SetErrorMode

LoadLibraryA

lstrcpynA

GetDiskFreeSpaceA

GlobalUnlock

GlobalLock

CreateThread

CreateProcessA

RemoveDirectoryA

GetTempFileNameA

lstrlenA

lstrcatA

GetSystemDirectoryA

GetVersion

CloseHandle

lstrcmpiA

lstrcmpA

ExpandEnvironmentStringsA

GlobalFree

GlobalAlloc

WaitForSingleObject

GetExitCodeProcess

GetModuleHandleA

LoadLibraryExA

GetProcAddress

FreeLibrary

MultiByteToWideChar

WritePrivateProfileStringA

GetPrivateProfileStringA

WriteFile

ReadFile

MulDiv

SetFilePointer

FindClose

FindNextFileA

FindFirstFileA

DeleteFileA

GetWindowsDirectoryA

user32

EndDialog

ScreenToClient

GetWindowRect

EnableMenuItem

GetSystemMenu

SetClassLongA

IsWindowEnabled

SetWindowPos

GetSysColor

GetWindowLongA

SetCursor

LoadCursorA

CheckDlgButton

GetMessagePos

LoadBitmapA

CallWindowProcA

IsWindowVisible

CloseClipboard

SetClipboardData

EmptyClipboard

RegisterClassA

TrackPopupMenu

AppendMenuA

CreatePopupMenu

GetSystemMetrics

SetDlgItemTextA

GetDlgItemTextA

MessageBoxIndirectA

CharPrevA

DispatchMessageA

PeekMessageA

DestroyWindow

CreateDialogParamA

SetTimer

SetWindowTextA

PostQuitMessage

SetForegroundWindow

wsprintfA

SendMessageTimeoutA

FindWindowExA

SystemParametersInfoA

CreateWindowExA

GetClassInfoA

DialogBoxParamA

CharNextA

OpenClipboard

ExitWindowsEx

IsWindow

GetDlgItem

SetWindowLongA

LoadImageA

GetDC

EnableWindow

InvalidateRect

SendMessageA

DefWindowProcA

BeginPaint

GetClientRect

FillRect

DrawTextA

EndPaint

ShowWindow

gdi32

SetBkColor

GetDeviceCaps

DeleteObject

CreateBrushIndirect

CreateFontIndirectA

SetBkMode

SetTextColor

SelectObject

shell32

SHGetPathFromIDListA

SHBrowseForFolderA

SHGetFileInfoA

ShellExecuteA

SHFileOperationA

SHGetSpecialFolderLocation

advapi32

RegQueryValueExA

RegSetValueExA

RegEnumKeyA

RegEnumValueA

RegOpenKeyExA

RegDeleteKeyA

RegDeleteValueA

RegCloseKey

RegCreateKeyExA

comctl32

ImageList_AddMasked

ImageList_Destroy

ord17

ImageList_Create

ole32

CoTaskMemFree

OleInitialize

OleUninitialize

CoCreateInstance

version

GetFileVersionInfoSizeA

GetFileVersionInfoA

VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$PLUGINSDIR/System.dll

.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc

GlobalFree

GlobalSize

GetLastError

lstrcpyA

lstrcpynA

FreeLibrary

lstrcatA

GetProcAddress

LoadLibraryA

GetModuleHandleA

MultiByteToWideChar

lstrlenA

WideCharToMultiByte

VirtualAlloc

VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2

CLSIDFromString

Exports

Alloc

Call

Copy

Free

Get

Int64Op

Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

1.bat

91wanǹ59739.exe

.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

DATA
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IE.ico

Thumbs.db

kugo.exe

.exe windows:4 windows x86 arch:x86

c473d11bb3ff67da8c49594d9642f004

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarSub

_CIcos

_adj_fptan

__vbaVarMove

__vbaFreeVar

_adj_fdiv_m64

__vbaFreeObjList

_adj_fprem1

__vbaStrCat

__vbaSetSystemError

__vbaHresultCheckObj

_adj_fdiv_m32

__vbaObjSet

_adj_fdiv_m16i

__vbaObjSetAddref

_adj_fdivr_m16i

_CIsin

__vbaChkstk

EVENT_SINK_AddRef

__vbaGenerateBoundsError

__vbaVarTstEq

DllFunctionCall

_adj_fpatan

__vbaR4Var

EVENT_SINK_Release

ord600

_CIsqrt

EVENT_SINK_QueryInterface

__vbaExceptHandler

_adj_fprem

_adj_fdivr_m64

__vbaFPException

_CIlog

__vbaNew2

_adj_fdiv_m32i

_adj_fdivr_m32i

_adj_fdivr_m32

_adj_fdiv_r

ord100

__vbaFpI2

_CIatan

_allmul

_CItan

_CIexp

__vbaFreeObj

__vbaFreeStr

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

kugou7_1173-7.5.30.11857.exe

.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

26:cf:6f:8a:41:9c:ad:3b:3b:de:ca:09:2b:cb:a3:fa
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/02/2012, 00:00

Not After

01/02/2015, 23:59

Subject

CN=Guangzhou KuGou Computer Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Guangzhou KuGou Computer Technology Co.\, Ltd.,L=Guangzhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

22:e6:61:df:57:75:a4:b1:25:dc:af:35:05:2c:ba:eb:e5:43:0a:62
Signer

Actual PE Digest

22:e6:61:df:57:75:a4:b1:25:dc:af:35:05:2c:ba:eb:e5:43:0a:62

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime

SearchPathA

GetShortPathNameA

GetFullPathNameA

MoveFileA

SetCurrentDirectoryA

GetFileAttributesA

GetLastError

CreateDirectoryA

SetFileAttributesA

Sleep

GetTickCount

CreateFileA

GetFileSize

GetModuleFileNameA

GetCurrentProcess

CopyFileA

ExitProcess

SetFileTime

GetTempPathA

GetCommandLineA

SetErrorMode

LoadLibraryA

lstrcpynA

GetDiskFreeSpaceA

GlobalUnlock

GlobalLock

CreateThread

CreateProcessA

RemoveDirectoryA

GetTempFileNameA

lstrlenA

lstrcatA

GetSystemDirectoryA

GetVersion

CloseHandle

lstrcmpiA

lstrcmpA

ExpandEnvironmentStringsA

GlobalFree

GlobalAlloc

WaitForSingleObject

GetExitCodeProcess

GetModuleHandleA

LoadLibraryExA

GetProcAddress

FreeLibrary

MultiByteToWideChar

WritePrivateProfileStringA

GetPrivateProfileStringA

WriteFile

ReadFile

MulDiv

SetFilePointer

FindClose

FindNextFileA

FindFirstFileA

DeleteFileA

GetWindowsDirectoryA

user32

EndDialog

ScreenToClient

GetWindowRect

EnableMenuItem

GetSystemMenu

SetClassLongA

IsWindowEnabled

SetWindowPos

GetSysColor

GetWindowLongA

SetCursor

LoadCursorA

CheckDlgButton

GetMessagePos

LoadBitmapA

CallWindowProcA

IsWindowVisible

CloseClipboard

SetClipboardData

EmptyClipboard

RegisterClassA

TrackPopupMenu

AppendMenuA

CreatePopupMenu

GetSystemMetrics

SetDlgItemTextA

GetDlgItemTextA

MessageBoxIndirectA

CharPrevA

DispatchMessageA

PeekMessageA

DestroyWindow

CreateDialogParamA

SetTimer

SetWindowTextA

PostQuitMessage

SetForegroundWindow

wsprintfA

SendMessageTimeoutA

FindWindowExA

SystemParametersInfoA

CreateWindowExA

GetClassInfoA

DialogBoxParamA

CharNextA

OpenClipboard

ExitWindowsEx

IsWindow

GetDlgItem

SetWindowLongA

LoadImageA

GetDC

EnableWindow

InvalidateRect

SendMessageA

DefWindowProcA

BeginPaint

GetClientRect

FillRect

DrawTextA

EndPaint

ShowWindow

gdi32

SetBkColor

GetDeviceCaps

DeleteObject

CreateBrushIndirect

CreateFontIndirectA

SetBkMode

SetTextColor

SelectObject

shell32

SHGetPathFromIDListA

SHBrowseForFolderA

SHGetFileInfoA

ShellExecuteA

SHFileOperationA

SHGetSpecialFolderLocation

advapi32

RegQueryValueExA

RegSetValueExA

RegEnumKeyA

RegEnumValueA

RegOpenKeyExA

RegDeleteKeyA

RegDeleteValueA

RegCloseKey

RegCreateKeyExA

comctl32

ImageList_AddMasked

ImageList_Destroy

ord17

ImageList_Create

ole32

CoTaskMemFree

OleInitialize

OleUninitialize

CoCreateInstance

version

GetFileVersionInfoSizeA

GetFileVersionInfoA

VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 180KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$APPDATA/KuGou8/AddIns/20130506114241454527.png

.png

$APPDATA/KuGou8/AddIns/20130621110119361043.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/0.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/1.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/10.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/11.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/12.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/13.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/14.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/15.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/16.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/17.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/18.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/19.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/2.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/20.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/21.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/22.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/23.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/24.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/25.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/26.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/27.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/28.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/29.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/3.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/30.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/4.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/5.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/6.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/7.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/8.png

.png

$APPDATA/KuGou8/FanxingAvatarRes/0/9.png

.png

$APPDATA/KuGou8/Perfect.SVC

$APPDATA/KuGou8/RadioLocalData.ini

$APPDATA/KuGou8/SkinPic/NewSkin/0acf825ee57de7da97e5c0ec830cce49/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/0acf825ee57de7da97e5c0ec830cce49/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/131e6bdabfc9be39c67efe7d84846699/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/131e6bdabfc9be39c67efe7d84846699/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/4446f31eab069c519073608c8fa4231f/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/4446f31eab069c519073608c8fa4231f/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/651e097fbedc696c5850bda5c846bce6/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/651e097fbedc696c5850bda5c846bce6/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/696a8e75fe9f0772e9ae8f9ded7b339a/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/696a8e75fe9f0772e9ae8f9ded7b339a/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/bd736fe936aa7fd25b8c99cf87c34006/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/bd736fe936aa7fd25b8c99cf87c34006/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/d23cdbe88401ef787dcc0b8f14edc449/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/d23cdbe88401ef787dcc0b8f14edc449/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/e021bcbaebbbb267a71365727b7d6dc4/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/e021bcbaebbbb267a71365727b7d6dc4/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/e2dbf10998041f0d64e6e5d877b52ddb/Thumbnail.jpg

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/e2dbf10998041f0d64e6e5d877b52ddb/back.png

.jpg

$APPDATA/KuGou8/SkinPic/NewSkin/newskin.xml

$APPDATA/KuGou8/SkinPic/Promotion/92f95163b7bca935c66ff1d20dbd25e2.zip

.zip

ĺ.jpg

.jpg

ĺ_img.JPG

.jpg

.JPG

.jpg

_img.JPG

.jpg

غ.JPG

.jpg

غ_img.JPG

.jpg

׷.JPG

.jpg

׷_img.JPG

.jpg

$APPDATA/KuGou8/SkinPic/default/166b36c6c06e895f3dfc9e471c36050b/Thumbnail.jpg

.png

$APPDATA/KuGou8/SkinPic/default/166b36c6c06e895f3dfc9e471c36050b/back.png

.jpg

$APPDATA/KuGou8/SkinPic/default/5cdf715b6736e851f78c86174ff0d839/Thumbnail.jpg

.png

$APPDATA/KuGou8/SkinPic/default/5cdf715b6736e851f78c86174ff0d839/back.png

.jpg

$APPDATA/KuGou8/SkinPic/default/6c34dff5f732331864cdd3ca833cf6d7/Thumbnail.jpg

.png

$APPDATA/KuGou8/SkinPic/default/6c34dff5f732331864cdd3ca833cf6d7/back.png

.jpg

$APPDATA/KuGou8/SkinPic/default/a603a6e27c34c2e078a3f59dffb252ca/Thumbnail.jpg

.png

$APPDATA/KuGou8/SkinPic/default/a603a6e27c34c2e078a3f59dffb252ca/back.png

.jpg

$APPDATA/KuGou8/SkinPic/default/eaf9e4323bb741f3e2a1141468dca8c0/Thumbnail.jpg

.png

$APPDATA/KuGou8/SkinPic/default/eaf9e4323bb741f3e2a1141468dca8c0/back.png

.jpg

$APPDATA/KuGou8/SkinPic/default/skin.xml

$APPDATA/KuGou8/app_option.ini

$APPDATA/KuGou8/app_option.inicfg

$APPDATA/KuGou8/net_option.ini

$APPDATA/KuGou8/net_option.inicfg

$PLUGINSDIR/Cancel.png

.png

$PLUGINSDIR/ChangeFolder.png

.png

$PLUGINSDIR/Close.png

.png

$PLUGINSDIR/CommonRadio.png

.png

$PLUGINSDIR/Complete.png

.png

$PLUGINSDIR/DialogIcon.png

.png

$PLUGINSDIR/DirEditBackImg.png

.png

$PLUGINSDIR/License.png

.png

$PLUGINSDIR/Light.png

.png

$PLUGINSDIR/MsgDlgBg.png

.png

$PLUGINSDIR/SilentClose.png

.png

$PLUGINSDIR/SilentDlgBg.png

.png

$PLUGINSDIR/SilentLight.png

.png

$PLUGINSDIR/SilentProgressbar.png

.png

$PLUGINSDIR/SplitLine.png

.png

$PLUGINSDIR/System.dll

.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc

GlobalFree

GlobalSize

GetLastError

lstrcpyA

lstrcpynA

FreeLibrary

lstrcatA

GetProcAddress

LoadLibraryA

GetModuleHandleA

MultiByteToWideChar

lstrlenA

WideCharToMultiByte

VirtualAlloc

VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2

CLSIDFromString

Exports

Alloc

Call

Copy

Free

Get

Int64Op

Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$PLUGINSDIR/banner.png

.png

$PLUGINSDIR/banner01.png

.png

$PLUGINSDIR/banner02.png

.png

$PLUGINSDIR/banner03.png

.png

$PLUGINSDIR/banner04.png

.png

$PLUGINSDIR/banner05.png

.png

$PLUGINSDIR/bg.png

.png

$PLUGINSDIR/bg01.png

.png

$PLUGINSDIR/bg02.png

.png

$PLUGINSDIR/bg03.png

.png

$PLUGINSDIR/bg04.png

.png

$PLUGINSDIR/bg05.png

.png

$PLUGINSDIR/button.png

.png

$PLUGINSDIR/isx.dll

.dll windows:4 windows x86 arch:x86

5186c47d4154c6438758b97930a667ad

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

26:cf:6f:8a:41:9c:ad:3b:3b:de:ca:09:2b:cb:a3:fa
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/02/2012, 00:00

Not After

01/02/2015, 23:59

Subject

CN=Guangzhou KuGou Computer Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Guangzhou KuGou Computer Technology Co.\, Ltd.,L=Guangzhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

f4:4b:ab:37:42:4a:6a:85:5d:89:51:b3:02:37:5f:df:d7:61:a8:a3
Signer

Actual PE Digest

f4:4b:ab:37:42:4a:6a:85:5d:89:51:b3:02:37:5f:df:d7:61:a8:a3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString

SysReAllocStringLen

SysAllocStringLen

GetErrorInfo

SysFreeString

SafeArrayPtrOfIndex

SafeArrayGetUBound

SafeArrayGetLBound

SafeArrayCreate

VariantChangeType

VariantCopy

VariantClear

VariantInit

advapi32

RegQueryValueExA

RegOpenKeyExA

RegCloseKey

RegQueryValueExA

RegOpenKeyExA

RegFlushKey

RegCreateKeyExA

RegCloseKey

OpenThreadToken

OpenProcessToken

GetTokenInformation

FreeSid

EqualSid

AllocateAndInitializeSid

user32

GetKeyboardType

DestroyWindow

LoadStringA

MessageBoxA

CharNextA

CreateWindowExA

WindowFromPoint

WaitMessage

UpdateWindow

UnregisterClassA

UnhookWindowsHookEx

TranslateMessage

TranslateMDISysAccel

TrackPopupMenu

SystemParametersInfoA

ShowWindow

ShowScrollBar

ShowOwnedPopups

SetWindowsHookExA

SetWindowPos

SetWindowPlacement

SetWindowLongW

SetWindowLongA

SetTimer

SetScrollRange

SetScrollPos

SetScrollInfo

SetRect

SetPropA

SetParent

SetMenuItemInfoA

SetMenu

SetForegroundWindow

SetFocus

SetCursor

SetClassLongA

SetCapture

SetActiveWindow

SendMessageW

SendMessageA

ScrollWindow

ScreenToClient

RemovePropA

RemoveMenu

ReleaseDC

ReleaseCapture

RegisterWindowMessageA

RegisterClipboardFormatA

RegisterClassA

RedrawWindow

PtInRect

PostQuitMessage

PostMessageA

PeekMessageW

PeekMessageA

OffsetRect

OemToCharA

MsgWaitForMultipleObjects

MessageBoxA

MapWindowPoints

MapVirtualKeyA

LoadStringA

LoadKeyboardLayoutA

LoadIconA

LoadCursorA

LoadBitmapA

KillTimer

IsZoomed

IsWindowVisible

IsWindowUnicode

IsWindowEnabled

IsWindow

IsRectEmpty

IsIconic

IsDialogMessageW

IsDialogMessageA

IsChild

InvalidateRect

IntersectRect

InsertMenuItemA

InsertMenuA

InflateRect

GetWindowThreadProcessId

GetWindowTextA

GetWindowRect

GetWindowPlacement

GetWindowLongW

GetWindowLongA

GetWindowDC

GetTopWindow

GetSystemMetrics

GetSystemMenu

GetSysColorBrush

GetSysColor

GetSubMenu

GetScrollRange

GetScrollPos

GetScrollInfo

GetPropA

GetParent

GetWindow

GetMessagePos

GetMenuStringA

GetMenuState

GetMenuItemInfoA

GetMenuItemID

GetMenuItemCount

GetMenu

GetLastActivePopup

GetKeyboardState

GetKeyboardLayoutNameA

GetKeyboardLayoutList

GetKeyboardLayout

GetKeyState

GetKeyNameTextA

GetIconInfo

GetForegroundWindow

GetFocus

GetDesktopWindow

GetDCEx

GetDC

GetCursorPos

GetCursor

GetClientRect

GetClassNameA

GetClassLongA

GetClassInfoA

GetCapture

GetActiveWindow

FrameRect

FindWindowA

FillRect

EqualRect

EnumWindows

EnumThreadWindows

EnumChildWindows

EndPaint

EnableWindow

EnableScrollBar

EnableMenuItem

DrawTextA

DrawMenuBar

DrawIconEx

DrawIcon

DrawFrameControl

DrawEdge

DispatchMessageW

DispatchMessageA

DestroyWindow

DestroyMenu

DestroyIcon

DestroyCursor

DeleteMenu

DefWindowProcA

DefMDIChildProcA

DefFrameProcA

CreatePopupMenu

CreateMenu

CreateIcon

ClientToScreen

CheckMenuItem

CallWindowProcA

CallNextHookEx

BeginPaint

CharNextA

CharLowerA

CharUpperBuffA

CharToOemA

AdjustWindowRectEx

ActivateKeyboardLayout

kernel32

GetACP

Sleep

VirtualFree

VirtualAlloc

GetTickCount

QueryPerformanceCounter

GetCurrentThreadId

InterlockedDecrement

InterlockedIncrement

VirtualQuery

WideCharToMultiByte

MultiByteToWideChar

lstrlenA

lstrcpynA

LoadLibraryExA

GetThreadLocale

GetStartupInfoA

GetProcAddress

GetModuleHandleA

GetModuleFileNameA

GetLocaleInfoA

GetCommandLineA

FreeLibrary

FindFirstFileA

FindClose

ExitProcess

ExitThread

CreateThread

CompareStringA

WriteFile

UnhandledExceptionFilter

RtlUnwind

RaiseException

GetStdHandle

TlsSetValue

TlsGetValue

TlsFree

TlsAlloc

LocalFree

LocalAlloc

lstrcpyA

WritePrivateProfileStringA

WriteFile

WaitForSingleObject

VirtualQuery

VirtualAlloc

TerminateProcess

SizeofResource

SetThreadLocale

SetProcessAffinityMask

SetFilePointer

SetFileAttributesA

SetEvent

SetErrorMode

SetEndOfFile

ResumeThread

ResetEvent

RemoveDirectoryA

ReadFile

OutputDebugStringA

OpenProcess

MultiByteToWideChar

MulDiv

MoveFileA

LockResource

LoadResource

LoadLibraryA

LeaveCriticalSection

InitializeCriticalSection

GlobalFindAtomA

GlobalDeleteAtom

GlobalAddAtomA

GetVersionExA

GetVersion

GetTickCount

GetThreadLocale

GetSystemInfo

GetStdHandle

GetProcessAffinityMask

GetProcAddress

GetPrivateProfileStringA

GetModuleHandleA

GetModuleFileNameA

GetLocaleInfoA

GetLocalTime

GetLastError

GetFullPathNameA

GetFileSize

GetFileAttributesA

GetExitCodeThread

GetDriveTypeA

GetDiskFreeSpaceA

GetDateFormatA

GetCurrentThreadId

GetCurrentThread

GetCurrentProcessId

GetCurrentProcess

GetCPInfo

FreeResource

InterlockedIncrement

InterlockedExchange

InterlockedDecrement

FreeLibrary

FormatMessageA

FindResourceA

FindNextFileA

FindFirstFileA

FindClose

FileTimeToLocalFileTime

FileTimeToDosDateTime

EnumCalendarInfoA

EnterCriticalSection

DeviceIoControl

DeleteFileA

DeleteCriticalSection

CreateThread

CreateFileW

CreateFileA

CreateEventA

CreateDirectoryA

CompareStringA

CloseHandle

Sleep

gdi32

UnrealizeObject

StretchBlt

SetWindowOrgEx

SetViewportOrgEx

SetTextColor

SetStretchBltMode

SetROP2

SetPixel

SetDIBColorTable

SetBrushOrgEx

SetBkMode

SetBkColor

SelectPalette

SelectObject

SaveDC

RestoreDC

RectVisible

RealizePalette

PatBlt

MoveToEx

MaskBlt

LineTo

IntersectClipRect

GetWindowOrgEx

GetTextMetricsA

GetTextExtentPoint32A

GetSystemPaletteEntries

GetStockObject

GetRgnBox

GetPixel

GetPaletteEntries

GetObjectA

GetDeviceCaps

GetDIBits

GetDIBColorTable

GetDCOrgEx

GetCurrentPositionEx

GetClipBox

GetBrushOrgEx

GetBitmapBits

ExcludeClipRect

DeleteObject

DeleteDC

CreateSolidBrush

CreatePenIndirect

CreatePalette

CreateHalftonePalette

CreateFontIndirectA

CreateDIBitmap

CreateDIBSection

CreateCompatibleDC

CreateCompatibleBitmap

CreateBrushIndirect

CreateBitmap

BitBlt

version

VerQueryValueA

GetFileVersionInfoSizeA

GetFileVersionInfoA

ole32

CoTaskMemFree

CLSIDFromProgID

StringFromCLSID

CoCreateInstance

CoUninitialize

CoInitialize

CoCreateGuid

wininet

InternetReadFile

InternetOpenUrlW

InternetOpenUrlA

InternetOpenW

InternetOpenA

InternetCloseHandle

HttpQueryInfoA

shfolder

SHGetFolderPathW

shell32

ShellExecuteA

SHGetSpecialFolderPathA

comctl32

_TrackMouseEvent

ImageList_SetIconSize

ImageList_GetIconSize

ImageList_Write

ImageList_Read

ImageList_DragShowNolock

ImageList_DragMove

ImageList_DragLeave

ImageList_DragEnter

ImageList_EndDrag

ImageList_BeginDrag

ImageList_Remove

ImageList_DrawEx

ImageList_Draw

ImageList_GetBkColor

ImageList_SetBkColor

ImageList_Add

ImageList_SetImageCount

ImageList_GetImageCount

ImageList_Destroy

ImageList_Create

iphlpapi

GetAdaptersInfo

Exports

AddFirewallWhiteList

CheckIt

CheckKuGouShortCut

CodeId

DeleteEmptyFolder

DeleteRadioLink

DownloadFile

Encode

FolderIsEmpty

GetBindDescription

GetBindId

GetDefaultMusicPath

GetLocalIpAndMac

GetLocalMacs

GetSetupLogs

GetSetupVersionsAndTime

GetSingerLocalMacs

GetSystemSection

InnoCreateGUID

InstallForceBinds

InstallSelectBind

IsAdvancedVersion

IsIEDefaultBrowser

IsPathLegal

IsProcessRunning

MakeFileWriteAble

ModifyLinkFileName

ModifyRadioLink

MoveFile

OpenURL

ParseBindIni

RemoveFirewallWhiteList

SendBindStatistics

SendDailyActiveStatistics

SendHttpStatistics

SendKG2012UninstallStatistics

SendKG6UninstallStatistics

SendKG7UninstallStatistics

SendKG8UninstallStatistics

SendNetBarStatistics

SendSelectStatistics

SendStatisticsUrl

SendUninstallUserInfoStatistics

SetCurrentAppDataPath

SetGUIDString

SetInstallInfo

SetInstallType

SetWindowPosToRight

StringIndex

UnpinFromStartMenu

XDownloader

xCloseKG

xDecryptCBC

xEncryptCBC

xGetCpuSerial

xGetHDSerial

xGetNetBarID

xGetUseOcxProgress

xGetWindowLong

xKillProcess

xSetWindowLong

xSetXmlAutoRun

xShowWindow

xStrToDateTime

Sections

.text
Size: 457KB - Virtual size: 456KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 19KB

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$PLUGINSDIR/licbg.png

.png

$PLUGINSDIR/nsDialogs.dll

.dll windows:4 windows x86 arch:x86

58e4f7b5d88f65a94186b5270d11ed1e

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

26:cf:6f:8a:41:9c:ad:3b:3b:de:ca:09:2b:cb:a3:fa
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/02/2012, 00:00

Not After

01/02/2015, 23:59

Subject

CN=Guangzhou KuGou Computer Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Guangzhou KuGou Computer Technology Co.\, Ltd.,L=Guangzhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

32:6b:56:26:69:50:e5:3b:4b:61:ef:cb:1f:31:58:b9:60:e9:66:3f
Signer

Actual PE Digest

32:6b:56:26:69:50:e5:3b:4b:61:ef:cb:1f:31:58:b9:60:e9:66:3f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

lstrcpyA

GetFileAttributesA

lstrcmpiA

MulDiv

lstrlenA

HeapFree

GetCurrentDirectoryA

HeapAlloc

HeapReAlloc

GlobalFree

lstrcpynA

GlobalAlloc

GetProcessHeap

SetCurrentDirectoryA

user32

GetWindowRect

GetPropA

DestroyWindow

CallWindowProcA

RemovePropA

DrawFocusRect

GetWindowLongA

DrawTextA

CharNextA

GetDlgItem

SetCursor

LoadCursorA

EndDialog

SetWindowTextA

SetWindowPos

CharPrevA

SetWindowLongA

CreateDialogParamA

MapWindowPoints

DialogBoxParamA

SetPropA

CreateWindowExA

IsWindow

SetTimer

KillTimer

DispatchMessageA

TranslateMessage

GetMessageA

IsDialogMessageA

ShowWindow

wsprintfA

MapDialogRect

SystemParametersInfoA

GetClientRect

SendMessageA

GetWindowTextA

shell32

SHGetPathFromIDListA

SHBrowseForFolderA

gdi32

SetTextColor

comdlg32

GetOpenFileNameA

GetSaveFileNameA

CommDlgExtendedError

ole32

CoTaskMemFree

Exports

AttachMainWin

CloseDlg

Create

CreateControl

CreateDlg

CreateItem

CreateTimer

GetUserData

KillTimer

OnBack

OnChange

OnClick

OnNotify

SelectFileDialog

SelectFolderDialog

SetRTL

SetUserData

Show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$PLUGINSDIR/nsUI.dll

.dll windows:4 windows x86 arch:x86

89dabc453ba171df764d9739be8b503c

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

26:cf:6f:8a:41:9c:ad:3b:3b:de:ca:09:2b:cb:a3:fa
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/02/2012, 00:00

Not After

01/02/2015, 23:59

Subject

CN=Guangzhou KuGou Computer Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Guangzhou KuGou Computer Technology Co.\, Ltd.,L=Guangzhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

56:6c:ed:f4:43:e5:90:26:8b:29:50:71:e2:15:99:f8:45:ba:1b:21
Signer

Actual PE Digest

56:6c:ed:f4:43:e5:90:26:8b:29:50:71:e2:15:99:f8:45:ba:1b:21

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString

SysReAllocStringLen

SysAllocStringLen

SafeArrayPtrOfIndex

SafeArrayGetUBound

SafeArrayGetLBound

SafeArrayCreate

VariantChangeType

VariantCopy

VariantClear

VariantInit

advapi32

RegQueryValueExA

RegOpenKeyExA

RegCloseKey

user32

GetKeyboardType

DestroyWindow

LoadStringA

MessageBoxA

CharNextA

CreateWindowExA

TranslateMessage

ShowWindow

SetWindowPos

SetWindowLongA

SetTimer

SetCursor

SetCapture

SendMessageA

ScreenToClient

ReleaseDC

ReleaseCapture

RedrawWindow

PtInRect

PostMessageA

PeekMessageA

MessageBoxA

LoadStringA

KillTimer

IsWindowVisible

IsWindow

GetWindowRect

GetWindowLongA

GetSystemMetrics

GetSysColor

GetDC

GetCursorPos

GetClientRect

DrawTextA

DispatchMessageA

DestroyWindow

CallWindowProcA

CharNextA

CharToOemA

kernel32

GetACP

Sleep

VirtualFree

VirtualAlloc

GetCurrentThreadId

VirtualQuery

WideCharToMultiByte

MultiByteToWideChar

lstrlenA

lstrcpynA

LoadLibraryExA

GetThreadLocale

GetStartupInfoA

GetProcAddress

GetModuleHandleA

GetModuleFileNameA

GetLocaleInfoA

GetCommandLineA

FreeLibrary

FindFirstFileA

FindClose

ExitProcess

WriteFile

UnhandledExceptionFilter

RtlUnwind

RaiseException

GetStdHandle

TlsSetValue

TlsGetValue

TlsFree

TlsAlloc

LocalFree

LocalAlloc

lstrcpynA

lstrcpyA

WriteFile

VirtualQuery

MulDiv

LoadLibraryA

LeaveCriticalSection

InitializeCriticalSection

GlobalFree

GlobalAlloc

GetVersionExA

GetVersion

GetTickCount

GetThreadLocale

GetStdHandle

GetProcAddress

GetModuleHandleA

GetModuleFileNameA

GetLocaleInfoA

GetLocalTime

GetDiskFreeSpaceA

GetDateFormatA

GetCPInfo

FreeLibrary

FormatMessageA

EnumCalendarInfoA

EnterCriticalSection

DeleteCriticalSection

CompareStringA

gdi32

SetTextColor

SetBkMode

SelectObject

GetDeviceCaps

DeleteObject

CreateFontA

ole32

CoCreateInstance

CoUninitialize

CoInitialize

Exports

AddImgToLayers

ApplyChanges

AttachNSISUI

DetachNSISUI

GetImgChecked

OnAfterShow

OnClick

OnKeyDown

OnKeyUp

OnMouseEnter

OnMouseLeave

ProcessMessages

ResetBtnState

SetBGImage

SetImgAlpha

SetImgBounds

SetImgChecked

SetImgEnabled

SetImgHint

SetImgPosition

SetImgProgressPos

SetImgText

SetImgVisible

StartTransImg

StopTransImg

UninitNSISUI

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 652B

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 20KB

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$PLUGINSDIR/progressbar.png

.png

$PLUGINSDIR/select.png

.png

$SYSDIR/msvcp100.dll

.dll windows:5 windows x86 arch:x86

7a0d9f66efd1839f136ca6896fa52dfa

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21/02/2011, 20:53

Not After

21/05/2012, 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:05:a2:30:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:01

Not After

25/07/2013, 19:11

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:85D3-305C-5BCF,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

bf:b0:fa:8d:3c:66:79:75:e3:a2:ca:10:72:d2:b3:8d:c5:59:ee:76
Signer

Actual PE Digest

bf:b0:fa:8d:3c:66:79:75:e3:a2:ca:10:72:d2:b3:8d:c5:59:ee:76

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

msvcp100.i386.pdb

Imports

msvcr100

rand_s

memset

memmove

fgetc

ungetc

_lock_file

_unlock_file

fflush

setvbuf

memcpy_s

fwrite

fgetpos

_fseeki64

fsetpos

fclose

_fsopen

_wfsopen

fseek

ldexp

wcslen

memchr

memmove_s

sprintf_s

_Strftime

strcspn

setlocale

_realloc_crt

strcmp

_malloc_crt

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

_purecall

strerror

fgetwc

fputwc

ungetwc

__uncaught_exception

towlower

towupper

_create_locale

_ui64toa_s

_free_locale

__pctype_func

_errno

___mb_cur_max_l_func

___lc_codepage_func

___lc_handle_func

__crtCompareStringA

memcmp

___lc_collate_cp_func

__crtLCMapStringA

__iob_func

?Alloc@Concurrency@@YAPAXI@Z

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z

?Yield@Context@Concurrency@@SAXXZ

??1critical_section@Concurrency@@QAE@XZ

??0invalid_link_target@Concurrency@@QAE@PBD@Z

??0message_not_found@Concurrency@@QAE@XZ

??0bad_target@Concurrency@@QAE@XZ

??0invalid_operation@Concurrency@@QAE@PBD@Z

?set@event@Concurrency@@QAEXXZ

?wait@event@Concurrency@@QAEII@Z

??1event@Concurrency@@QAE@XZ

??0event@Concurrency@@QAE@XZ

?Free@Concurrency@@YAXPAX@Z

??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

?_UnderlyingYield@details@Concurrency@@YAXXZ

?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ

?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ

?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ

??1_SpinLock@details@Concurrency@@QAE@XZ

??0_SpinLock@details@Concurrency@@QAE@ACJ@Z

?Log2@details@Concurrency@@YAKI@Z

isupper

_calloc_crt

islower

__crtLCMapStringW

isspace

tolower

strtod

__crtCompareStringW

?terminate@@YAXXZ

_unlock

__dllonexit

_lock

_onexit

_encoded_null

_initterm

_initterm_e

_amsg_exit

__CppXcptFilter

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_except_handler4_common

_crt_debugger_hook

__clean_type_info_names_internal

fputs

fputc

abort

log

??0bad_cast@std@@QAE@ABV01@@Z

??1bad_cast@std@@UAE@XZ

??0bad_cast@std@@QAE@PBD@Z

_Getmonths

_Getdays

malloc

__CxxFrameHandler3

??2@YAPAXI@Z

___mb_cur_max_func

memcpy

strlen

??_V@YAXPAX@Z

_Gettnames

localeconv

free

??0exception@std@@QAE@ABQBD@Z

?what@exception@std@@UBEPBDXZ

??0exception@std@@QAE@ABQBDH@Z

??3@YAXPAX@Z

??0exception@std@@QAE@ABV01@@Z

_CxxThrowException

??1exception@std@@UAE@XZ

??0operation_timed_out@Concurrency@@QAE@XZ

??0exception@std@@QAE@XZ

kernel32

GetCurrentProcessId

GetTickCount

QueryPerformanceCounter

DisableThreadLibraryCalls

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

IsProcessorFeaturePresent

Sleep

GetStringTypeW

InterlockedDecrement

InterlockedIncrement

GetLocaleInfoW

GetCurrentThreadId

WideCharToMultiByte

MultiByteToWideChar

InterlockedExchange

InterlockedCompareExchange

DecodePointer

EncodePointer

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

InitializeCriticalSection

GetSystemTimeAsFileTime

Exports

??0?$_Yarn@D@std@@QAE@ABV01@@Z

??0?$_Yarn@D@std@@QAE@PBD@Z

??0?$_Yarn@D@std@@QAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@DDH@std@@QAE@I@Z

??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@GDH@std@@QAE@I@Z

??0?$codecvt@_WDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@D@std@@QAE@PBF_NI@Z

??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@G@std@@QAE@I@Z

??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@_W@std@@QAE@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0Init@ios_base@std@@QAE@XZ

??0_Concurrent_queue_base_v4@details@Concurrency@@IAE@I@Z

??0_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@ABV_Concurrent_queue_base_v4@12@@Z

??0_Container_base12@std@@QAE@ABU01@@Z

??0_Container_base12@std@@QAE@XZ

??0_Init_locks@std@@QAE@XZ

??0_Locimp@locale@std@@AAE@ABV012@@Z

??0_Locimp@locale@std@@AAE@_N@Z

??0_Locinfo@std@@QAE@HPBD@Z

??0_Locinfo@std@@QAE@PBD@Z

??0_Lockit@std@@QAE@H@Z

??0_Lockit@std@@QAE@XZ

??0_Mutex@std@@QAE@W4_Uninitialized@1@@Z

??0_Mutex@std@@QAE@XZ

??0_Runtime_object@details@Concurrency@@QAE@H@Z

??0_Runtime_object@details@Concurrency@@QAE@XZ

??0_Timevec@std@@QAE@ABV01@@Z

??0_Timevec@std@@QAE@PAX@Z

??0_UShinit@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??0agent@Concurrency@@QAE@AAVScheduleGroup@1@@Z

??0agent@Concurrency@@QAE@AAVScheduler@1@@Z

??0agent@Concurrency@@QAE@XZ

??0codecvt_base@std@@QAE@I@Z

??0ctype_base@std@@QAE@I@Z

??0facet@locale@std@@IAE@I@Z

??0id@locale@std@@QAE@I@Z

??0ios_base@std@@IAE@XZ

??0ios_base@std@@QAE@ABV01@@Z

??0time_base@std@@QAE@I@Z

??1?$_Yarn@D@std@@QAE@XZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$codecvt@DDH@std@@MAE@XZ

??1?$codecvt@GDH@std@@MAE@XZ

??1?$codecvt@_WDH@std@@MAE@XZ

??1?$ctype@D@std@@MAE@XZ

??1?$ctype@G@std@@MAE@XZ

??1?$ctype@_W@std@@MAE@XZ

??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1Init@ios_base@std@@QAE@XZ

??1_Concurrent_queue_base_v4@details@Concurrency@@MAE@XZ

??1_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@XZ

??1_Concurrent_vector_base_v4@details@Concurrency@@IAE@XZ

??1_Container_base12@std@@QAE@XZ

??1_Init_locks@std@@QAE@XZ

??1_Locimp@locale@std@@MAE@XZ

??1_Locinfo@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

??1_Mutex@std@@QAE@XZ

??1_Timevec@std@@QAE@XZ

??1_UShinit@std@@QAE@XZ

??1_Winit@std@@QAE@XZ

??1agent@Concurrency@@UAE@XZ

??1codecvt_base@std@@UAE@XZ

??1ctype_base@std@@UAE@XZ

??1facet@locale@std@@UAE@XZ

??1ios_base@std@@UAE@XZ

??1time_base@std@@UAE@XZ

??4?$_Iosb@H@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

??4?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEAAV01@ABV01@@Z

??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEAAV01@ABV01@@Z

??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEAAV01@ABV01@@Z

??4?$numeric_limits@C@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@D@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@E@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@F@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@G@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@H@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@I@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@J@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@K@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@M@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@N@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@O@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@_J@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@_K@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@_N@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@_W@std@@QAEAAV01@ABV01@@Z

??4Init@ios_base@std@@QAEAAV012@ABV012@@Z

??4_Container_base0@std@@QAEAAU01@ABU01@@Z

??4_Container_base12@std@@QAEAAU01@ABU01@@Z

??4_Init_locks@std@@QAEAAV01@ABV01@@Z

??4_Num_base@std@@QAEAAU01@ABU01@@Z

??4_Num_float_base@std@@QAEAAU01@ABU01@@Z

??4_Num_int_base@std@@QAEAAU01@ABU01@@Z

??4_Timevec@std@@QAEAAV01@ABV01@@Z

??4_UShinit@std@@QAEAAV01@ABV01@@Z

??4_Winit@std@@QAEAAV01@ABV01@@Z

??4ios_base@std@@QAEAAV01@ABV01@@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z

??7ios_base@std@@QBE_NXZ

??Bid@locale@std@@QAEIXZ

??Bios_base@std@@QBEPAXXZ

??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$codecvt@DDH@std@@6B@

??_7?$codecvt@GDH@std@@6B@

??_7?$codecvt@_WDH@std@@6B@

??_7?$ctype@D@std@@6B@

??_7?$ctype@G@std@@6B@

??_7?$ctype@_W@std@@6B@

??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7_Locimp@locale@std@@6B@

??_7codecvt_base@std@@6B@

??_7ctype_base@std@@6B@

??_7ios_base@std@@6B@

??_7time_base@std@@6B@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@

??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@

??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_F?$codecvt@DDH@std@@QAEXXZ

??_F?$codecvt@GDH@std@@QAEXXZ

??_F?$codecvt@_WDH@std@@QAEXXZ

??_F?$ctype@D@std@@QAEXXZ

??_F?$ctype@G@std@@QAEXXZ

??_F?$ctype@_W@std@@QAEXXZ

??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F_Locimp@locale@std@@QAEXXZ

??_F_Locinfo@std@@QAEXXZ

??_F_Timevec@std@@QAEXXZ

??_Fcodecvt_base@std@@QAEXXZ

??_Fctype_base@std@@QAEXXZ

??_Ffacet@locale@std@@QAEXXZ

??_Fid@locale@std@@QAEXXZ

??_Ftime_base@std@@QAEXXZ

?NFS_Allocate@details@Concurrency@@YAPAXIIPAX@Z

?NFS_Free@details@Concurrency@@YAXPAX@Z

?NFS_GetLineSize@details@Concurrency@@YAIXZ

?_Addcats@_Locinfo@std@@QAEAAV12@HPBD@Z

?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z

?_Addstd@ios_base@std@@SAXPAV12@@Z

?_Advance@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXXZ

?_Assign@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXABV123@@Z

?_Atexit@@YAXP6AXXZ@Z

?_BADOFF@std@@3_JB

?_C_str@?$_Yarn@D@std@@QBEPBDXZ

?_Callfns@ios_base@std@@AAEXW4event@12@@Z

?_Clocptr@_Locimp@locale@std@@0PAV123@A

?_Decref@facet@locale@std@@QAEPAV123@XZ

?_Donarrow@?$ctype@G@std@@IBEDGD@Z

?_Donarrow@?$ctype@_W@std@@IBED_WD@Z

?_Dowiden@?$ctype@G@std@@IBEGD@Z

?_Dowiden@?$ctype@_W@std@@IBE_WD@Z

?_Empty@?$_Yarn@D@std@@QBE_NXZ

?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z

?_Findarr@ios_base@std@@AAEAAU_Iosarray@12@H@Z

?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDIIII@Z

?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDIIII@Z

?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDIIII@Z

?_GetCombinableSize@details@Concurrency@@YAIXZ

?_GetCurrentThreadId@details@Concurrency@@YAKXZ

?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@GDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z

?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ

?_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ

?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ

?_Getdateorder@_Locinfo@std@@QBEHXZ

?_Getdays@_Locinfo@std@@QBEPBDXZ

?_Getfalse@_Locinfo@std@@QBEPBDXZ

?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z

?_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HABVlocale@2@@Z

?_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HABVlocale@2@@Z

?_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HABVlocale@2@@Z

?_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAAH@Z

?_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAAH@Z

?_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAAH@Z

?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ

?_Getmonths@_Locinfo@std@@QBEPBDXZ

?_Getname@_Locinfo@std@@QBEPBDXZ

?_Getpfirst@_Container_base12@std@@QBEPAPAU_Iterator_base12@2@XZ

?_Getptr@_Timevec@std@@QBEPAXXZ

?_Gettnames@_Locinfo@std@@QBE?AV_Timevec@2@XZ

?_Gettrue@_Locinfo@std@@QBEPBDXZ

?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ

?_Gnavail@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IBE_JXZ

?_Gnavail@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBE_JXZ

?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gndec@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gnpreinc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gnpreinc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Hexdig@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHDDDD@Z

?_Hexdig@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHGGGG@Z

?_Hexdig@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAH_W000@Z

?_Id_cnt@id@locale@std@@0HA

?_Ifmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Ifmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Ifmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Incref@facet@locale@std@@QAEXXZ

Sections

.text
Size: 371KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$SYSDIR/msvcr100.dll

.dll windows:5 windows x86 arch:x86

5271d5ce8b44dd47bc92563e27585466

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21/02/2011, 20:53

Not After

21/05/2012, 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:02

Not After

25/07/2013, 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

8d:91:f0:a3:ff:41:70:8c:67:d0:ba:79:6d:52:da:88:0c:59:23:cc
Signer

Actual PE Digest

8d:91:f0:a3:ff:41:70:8c:67:d0:ba:79:6d:52:da:88:0c:59:23:cc

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

msvcr100.i386.pdb

Imports

kernel32

EncodePointer

DecodePointer

RaiseException

GetModuleFileNameA

GetModuleFileNameW

GetModuleHandleW

GetProcAddress

ExitProcess

WriteFile

GetStdHandle

GetCurrentThreadId

TlsGetValue

GetCommandLineW

GetCommandLineA

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

LeaveCriticalSection

EnterCriticalSection

ExitThread

CloseHandle

GetLastError

ResumeThread

CreateThread

TlsAlloc

TlsSetValue

TlsFree

InterlockedIncrement

SetLastError

InterlockedDecrement

GetCurrentThread

FindNextFileA

FindFirstFileExA

FindClose

FindNextFileW

FindFirstFileExW

GetLogicalDrives

GetDiskFreeSpaceA

FileTimeToSystemTime

FileTimeToLocalFileTime

SetErrorMode

Sleep

Beep

GetFileAttributesA

SetFileAttributesA

SetEnvironmentVariableA

GetCurrentDirectoryA

SetCurrentDirectoryA

GetCurrentDirectoryW

SetCurrentDirectoryW

GetFullPathNameA

GetDriveTypeW

GetCurrentProcessId

CreateDirectoryA

MoveFileA

RemoveDirectoryA

GetDriveTypeA

DeleteFileA

GetFileAttributesW

SetEnvironmentVariableW

SetFileAttributesW

GetFullPathNameW

CreateDirectoryW

MoveFileW

RemoveDirectoryW

DeleteFileW

GetExitCodeProcess

WaitForSingleObject

CreateProcessA

LoadLibraryA

FreeLibrary

CreateProcessW

ReadFile

DuplicateHandle

GetCurrentProcess

GetSystemTimeAsFileTime

GetTimeZoneInformation

GetLocalTime

WideCharToMultiByte

SetFileTime

LocalFileTimeToFileTime

SystemTimeToFileTime

SetLocalTime

InterlockedPopEntrySList

InterlockedFlushSList

QueryDepthSList

InterlockedPushEntrySList

CreateTimerQueue

CreateTimerQueueTimer

DeleteTimerQueueTimer

SetEvent

CreateEventW

SwitchToThread

SignalObjectAndWait

TryEnterCriticalSection

GetTickCount

VirtualFree

GetVersionExW

SetThreadPriority

VirtualAlloc

GetSystemInfo

GetProcessAffinityMask

VirtualProtect

SetThreadAffinityMask

InitializeSListHead

ReleaseSemaphore

CreateSemaphoreW

WaitForMultipleObjects

GetThreadPriority

LoadLibraryW

SleepEx

OutputDebugStringW

FreeLibraryAndExitThread

GetModuleHandleA

GetThreadTimes

DebugBreak

MultiByteToWideChar

GetStringTypeW

GetCPInfo

GetACP

GetOEMCP

IsValidCodePage

GetTimeFormatA

GetDateFormatA

GetTimeFormatW

GetDateFormatW

RtlUnwind

HeapAlloc

HeapFree

HeapCreate

HeapDestroy

HeapQueryInformation

HeapReAlloc

HeapSize

HeapValidate

HeapCompact

HeapWalk

VirtualQuery

SetHandleCount

GetFileType

GetStartupInfoW

GetFileInformationByHandle

PeekNamedPipe

CreateFileA

CreateFileW

SetFilePointer

GetConsoleCP

GetConsoleMode

FlushFileBuffers

CreatePipe

SetStdHandle

ReadConsoleInputA

SetConsoleMode

PeekConsoleInputA

GetNumberOfConsoleInputEvents

ReadConsoleInputW

WriteConsoleW

ReadConsoleW

SetEndOfFile

GetProcessHeap

InterlockedExchange

LockFile

UnlockFile

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

TerminateProcess

SetConsoleCtrlHandler

GetLocaleInfoW

FreeEnvironmentStringsW

GetEnvironmentStringsW

QueryPerformanceCounter

LCMapStringW

CompareStringW

GetUserDefaultLCID

GetLocaleInfoA

EnumSystemLocalesA

IsValidLocale

IsProcessorFeaturePresent

Exports

$I10_OUTPUT

??0?$_SpinWait@$00@details@Concurrency@@QAE@P6AXXZ@Z

??0?$_SpinWait@$0A@@details@Concurrency@@QAE@P6AXXZ@Z

??0SchedulerPolicy@Concurrency@@QAA@IZZ

??0SchedulerPolicy@Concurrency@@QAE@ABV01@@Z

??0SchedulerPolicy@Concurrency@@QAE@XZ

??0_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ

??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_ReaderWriterLock@details@Concurrency@@QAE@XZ

??0_ReentrantBlockingLock@details@Concurrency@@QAE@XZ

??0_ReentrantLock@details@Concurrency@@QAE@XZ

??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_SpinLock@details@Concurrency@@QAE@ACJ@Z

??0_TaskCollection@details@Concurrency@@QAE@XZ

??0_Timer@details@Concurrency@@IAE@I_N@Z

??0__non_rtti_object@std@@QAE@ABV01@@Z

??0__non_rtti_object@std@@QAE@PBD@Z

??0bad_cast@std@@AAE@PBQBD@Z

??0bad_cast@std@@QAE@ABV01@@Z

??0bad_cast@std@@QAE@PBD@Z

??0bad_target@Concurrency@@QAE@PBD@Z

??0bad_target@Concurrency@@QAE@XZ

??0bad_typeid@std@@QAE@ABV01@@Z

??0bad_typeid@std@@QAE@PBD@Z

??0context_self_unblock@Concurrency@@QAE@PBD@Z

??0context_self_unblock@Concurrency@@QAE@XZ

??0context_unblock_unbalanced@Concurrency@@QAE@PBD@Z

??0context_unblock_unbalanced@Concurrency@@QAE@XZ

??0critical_section@Concurrency@@QAE@XZ

??0default_scheduler_exists@Concurrency@@QAE@PBD@Z

??0default_scheduler_exists@Concurrency@@QAE@XZ

??0event@Concurrency@@QAE@XZ

??0exception@std@@QAE@ABQBD@Z

??0exception@std@@QAE@ABQBDH@Z

??0exception@std@@QAE@ABV01@@Z

??0exception@std@@QAE@XZ

??0improper_lock@Concurrency@@QAE@PBD@Z

??0improper_lock@Concurrency@@QAE@XZ

??0improper_scheduler_attach@Concurrency@@QAE@PBD@Z

??0improper_scheduler_attach@Concurrency@@QAE@XZ

??0improper_scheduler_detach@Concurrency@@QAE@PBD@Z

??0improper_scheduler_detach@Concurrency@@QAE@XZ

??0improper_scheduler_reference@Concurrency@@QAE@PBD@Z

??0improper_scheduler_reference@Concurrency@@QAE@XZ

??0invalid_link_target@Concurrency@@QAE@PBD@Z

??0invalid_link_target@Concurrency@@QAE@XZ

??0invalid_multiple_scheduling@Concurrency@@QAE@PBD@Z

??0invalid_multiple_scheduling@Concurrency@@QAE@XZ

??0invalid_operation@Concurrency@@QAE@PBD@Z

??0invalid_operation@Concurrency@@QAE@XZ

??0invalid_oversubscribe_operation@Concurrency@@QAE@PBD@Z

??0invalid_oversubscribe_operation@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_key@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_key@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_value@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_value@Concurrency@@QAE@XZ

??0message_not_found@Concurrency@@QAE@PBD@Z

??0message_not_found@Concurrency@@QAE@XZ

??0missing_wait@Concurrency@@QAE@PBD@Z

??0missing_wait@Concurrency@@QAE@XZ

??0nested_scheduler_missing_detach@Concurrency@@QAE@PBD@Z

??0nested_scheduler_missing_detach@Concurrency@@QAE@XZ

??0operation_timed_out@Concurrency@@QAE@PBD@Z

??0operation_timed_out@Concurrency@@QAE@XZ

??0reader_writer_lock@Concurrency@@QAE@XZ

??0scheduler_not_attached@Concurrency@@QAE@PBD@Z

??0scheduler_not_attached@Concurrency@@QAE@XZ

??0scheduler_resource_allocation_error@Concurrency@@QAE@J@Z

??0scheduler_resource_allocation_error@Concurrency@@QAE@PBDJ@Z

??0scoped_lock@critical_section@Concurrency@@QAE@AAV12@@Z

??0scoped_lock@reader_writer_lock@Concurrency@@QAE@AAV12@@Z

??0scoped_lock_read@reader_writer_lock@Concurrency@@QAE@AAV12@@Z

??0task_canceled@details@Concurrency@@QAE@PBD@Z

??0task_canceled@details@Concurrency@@QAE@XZ

??0unsupported_os@Concurrency@@QAE@PBD@Z

??0unsupported_os@Concurrency@@QAE@XZ

??1SchedulerPolicy@Concurrency@@QAE@XZ

??1_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ

??1_ReentrantBlockingLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_SpinLock@details@Concurrency@@QAE@XZ

??1_TaskCollection@details@Concurrency@@QAE@XZ

??1_Timer@details@Concurrency@@IAE@XZ

??1__non_rtti_object@std@@UAE@XZ

??1bad_cast@std@@UAE@XZ

??1bad_typeid@std@@UAE@XZ

??1critical_section@Concurrency@@QAE@XZ

??1event@Concurrency@@QAE@XZ

??1exception@std@@UAE@XZ

??1reader_writer_lock@Concurrency@@QAE@XZ

??1scoped_lock@critical_section@Concurrency@@QAE@XZ

??1scoped_lock@reader_writer_lock@Concurrency@@QAE@XZ

??1scoped_lock_read@reader_writer_lock@Concurrency@@QAE@XZ

??1type_info@@UAE@XZ

??2@YAPAXI@Z

??2@YAPAXIHPBDH@Z

??3@YAXPAX@Z

??4?$_SpinWait@$00@details@Concurrency@@QAEAAV012@ABV012@@Z

??4?$_SpinWait@$0A@@details@Concurrency@@QAEAAV012@ABV012@@Z

??4SchedulerPolicy@Concurrency@@QAEAAV01@ABV01@@Z

??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z

??4bad_cast@std@@QAEAAV01@ABV01@@Z

??4bad_typeid@std@@QAEAAV01@ABV01@@Z

??4exception@std@@QAEAAV01@ABV01@@Z

??8type_info@@QBE_NABV0@@Z

??9type_info@@QBE_NABV0@@Z

??_7__non_rtti_object@std@@6B@

??_7bad_cast@std@@6B@

??_7bad_typeid@std@@6B@

??_7exception@@6B@

??_7exception@std@@6B@

??_F?$_SpinWait@$00@details@Concurrency@@QAEXXZ

??_F?$_SpinWait@$0A@@details@Concurrency@@QAEXXZ

??_Fbad_cast@std@@QAEXXZ

??_Fbad_typeid@std@@QAEXXZ

??_U@YAPAXI@Z

??_U@YAPAXIHPBDH@Z

??_V@YAXPAX@Z

?Alloc@Concurrency@@YAPAXI@Z

?Block@Context@Concurrency@@SAXXZ

?Create@CurrentScheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z

?Create@Scheduler@Concurrency@@SAPAV12@ABVSchedulerPolicy@2@@Z

?CreateResourceManager@Concurrency@@YAPAUIResourceManager@1@XZ

?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@XZ

?CurrentContext@Context@Concurrency@@SAPAV12@XZ

?Detach@CurrentScheduler@Concurrency@@SAXXZ

?DisableTracing@Concurrency@@YAJXZ

?EnableTracing@Concurrency@@YAJXZ

?Free@Concurrency@@YAXPAX@Z

?Get@CurrentScheduler@Concurrency@@SAPAVScheduler@2@XZ

?GetExecutionContextId@Concurrency@@YAIXZ

?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ

?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ

?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ

?GetPolicyValue@SchedulerPolicy@Concurrency@@QBEIW4PolicyElementKey@2@@Z

?GetProcessorCount@Concurrency@@YAIXZ

?GetProcessorNodeCount@Concurrency@@YAIXZ

?GetSchedulerId@Concurrency@@YAIXZ

?GetSharedTimerQueue@details@Concurrency@@YAPAXXZ

?Id@Context@Concurrency@@SAIXZ

?Id@CurrentScheduler@Concurrency@@SAIXZ

?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ

?Log2@details@Concurrency@@YAKI@Z

?Oversubscribe@Context@Concurrency@@SAX_N@Z

?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPAX@Z

?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ

?ScheduleGroupId@Context@Concurrency@@SAIXZ

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z

?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QAEXII@Z

?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z

?SetPolicyValue@SchedulerPolicy@Concurrency@@QAEIW4PolicyElementKey@2@I@Z

?VirtualProcessorId@Context@Concurrency@@SAIXZ

?Yield@Context@Concurrency@@SAXXZ

?_Abort@_StructuredTaskCollection@details@Concurrency@@AAEXXZ

?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QAEXPAX@Z

?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Acquire@_ReentrantLock@details@Concurrency@@QAEXXZ

?_Acquire@_ReentrantPPLLock@details@Concurrency@@QAEXPAX@Z

?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_Cancel@_StructuredTaskCollection@details@Concurrency@@QAEXXZ

?_Cancel@_TaskCollection@details@Concurrency@@QAEXXZ

?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IAEXXZ

?_ConcRT_Assert@details@Concurrency@@YAXPBD0H@Z

?_ConcRT_CoreAssert@details@Concurrency@@YAXPBD0H@Z

?_ConcRT_DumpMessage@details@Concurrency@@YAXPB_WZZ

?_ConcRT_Trace@details@Concurrency@@YAXHPB_WZZ

?_Copy_str@exception@std@@AAEXPBD@Z

?_DoYield@?$_SpinWait@$00@details@Concurrency@@IAEXXZ

?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ

?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QAE_NXZ

?_IsCanceling@_TaskCollection@details@Concurrency@@QAE_NXZ

?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z

?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z

?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IAEKXZ

?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IAEKXZ

?_Release@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Release@_NonReentrantPPLLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantPPLLock@details@Concurrency@@QAEXXZ

?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_Reset@?$_SpinWait@$00@details@Concurrency@@IAEXXZ

?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ

?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z

?_RunAndWait@_TaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z

?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z

?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z

?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QAEXI@Z

?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QAEXI@Z

?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IAE_NXZ

?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IAE_NXZ

?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ

?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QAE_NXZ

?_SpinYield@Context@Concurrency@@SAXXZ

?_Start@_Timer@details@Concurrency@@IAEXXZ

?_Stop@_Timer@details@Concurrency@@IAEXXZ

?_Tidy@exception@std@@AAEXXZ

?_Trace_ppl_function@Concurrency@@YAXABU_GUID@@EW4ConcRT_EventType@1@@Z

?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QAE_NXZ

?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QAE_NXZ

?_TryAcquire@_ReentrantLock@details@Concurrency@@QAE_NXZ

?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QAE_NXZ

?_Type_info_dtor@type_info@@CAXPAV1@@Z

?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z

?_UnderlyingYield@details@Concurrency@@YAXXZ

?_ValidateExecute@@YAHP6GHXZ@Z

?_ValidateRead@@YAHPBXI@Z

?_ValidateWrite@@YAHPAXI@Z

?_Value@_SpinCount@details@Concurrency@@SAIXZ

?__ExceptionPtrAssign@@YAXPAXPBX@Z

?__ExceptionPtrCompare@@YA_NPBX0@Z

?__ExceptionPtrCopy@@YAXPAXPBX@Z

?__ExceptionPtrCopyException@@YAXPAXPBX1@Z

?__ExceptionPtrCreate@@YAXPAX@Z

?__ExceptionPtrCurrentException@@YAXPAX@Z

?__ExceptionPtrDestroy@@YAXPAX@Z

?__ExceptionPtrRethrow@@YAXPBX@Z

?_inconsistency@@YAXXZ

?_invalid_parameter@@YAXPBG00II@Z

?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z

?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z

?_open@@YAHPBDHH@Z

?_query_new_handler@@YAP6AHI@ZXZ

?_query_new_mode@@YAHXZ

?_set_new_handler@@YAP6AHI@ZH@Z

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

?_set_new_mode@@YAHH@Z

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z

?_sopen@@YAHPBDHHH@Z

?_type_info_dtor_internal_method@type_info@@QAEXXZ

?_wopen@@YAHPB_WHH@Z

?_wsopen@@YAHPB_WHHH@Z

?before@type_info@@QBEHABV1@@Z

?get_error_code@scheduler_resource_allocation_error@Concurrency@@QBEJXZ

?lock@critical_section@Concurrency@@QAEXXZ

?lock@reader_writer_lock@Concurrency@@QAEXXZ

?lock_read@reader_writer_lock@Concurrency@@QAEXXZ

?name@type_info@@QBEPBDPAU__type_info_node@@@Z

?native_handle@critical_section@Concurrency@@QAEAAV12@XZ

?raw_name@type_info@@QBEPBDXZ

?reset@event@Concurrency@@QAEXXZ

?set@event@Concurrency@@QAEXXZ

?set_new_handler@@YAP6AXXZP6AXXZ@Z

?set_terminate@@YAP6AXXZH@Z

?set_terminate@@YAP6AXXZP6AXXZ@Z

?set_unexpected@@YAP6AXXZH@Z

?set_unexpected@@YAP6AXXZP6AXXZ@Z

?swprintf@@YAHPAGIPBGZZ

?swprintf@@YAHPA_WIPB_WZZ

?terminate@@YAXXZ

?try_lock@critical_section@Concurrency@@QAE_NXZ

?try_lock@reader_writer_lock@Concurrency@@QAE_NXZ

?try_lock_read@reader_writer_lock@Concurrency@@QAE_NXZ

?unexpected@@YAXXZ

?unlock@critical_section@Concurrency@@QAEXXZ

?unlock@reader_writer_lock@Concurrency@@QAEXXZ

?vswprintf@@YAHPA_WIPB_WPAD@Z

?wait@Concurrency@@YAXI@Z

?wait@event@Concurrency@@QAEII@Z

?wait_for_multiple@event@Concurrency@@SAIPAPAV12@I_NI@Z

?what@exception@std@@UBEPBDXZ

_CIacos

_CIasin

_CIatan

_CIatan2

_CIcos

_CIcosh

_CIexp

_CIfmod

_CIlog

_CIlog10

_CIpow

_CIsin

_CIsinh

_CIsqrt

_CItan

_CItanh

_CRT_RTC_INIT

_CRT_RTC_INITW

_CreateFrameInfo

_CxxThrowException

_EH_prolog

_FindAndUnlinkFrame

_Getdays

_Getmonths

_Gettnames

_HUGE

_IsExceptionObjectToBeDestroyed

_NLG_Dispatch2

_NLG_Return

_NLG_Return2

_Strftime

_XcptFilter

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__CppXcptFilter

__CxxCallUnwindDelDtor

__CxxCallUnwindDtor

__CxxCallUnwindStdDelDtor

__CxxCallUnwindVecDtor

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxLongjmpUnwind

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__STRINGTOLD

__STRINGTOLD_L

__TypeMatch

___fls_getvalue@4

___fls_setvalue@8

___lc_codepage_func

___lc_collate_cp_func

___lc_handle_func

___mb_cur_max_func

___mb_cur_max_l_func

___setlc_active_func

___unguarded_readlc_active_add_func

__argc

__argv

__badioinfo

__clean_type_info_names_internal

__control87_2

__create_locale

__crtCompareStringA

__crtCompareStringW

__crtLCMapStringA

__crtLCMapStringW

__daylight

__dllonexit

__doserrno

__dstbias

__fpecode

__free_locale

__get_current_locale

__get_flsindex

__get_tlsindex

__getmainargs

__initenv

__iob_func

__isascii

__iscsym

__iscsymf

__iswcsym

__iswcsymf

__lconv

__lconv_init

__libm_sse2_acos

__libm_sse2_acosf

__libm_sse2_asin

__libm_sse2_asinf

__libm_sse2_atan

__libm_sse2_atan2

__libm_sse2_atanf

__libm_sse2_cos

__libm_sse2_cosf

__libm_sse2_exp

__libm_sse2_expf

__libm_sse2_log

__libm_sse2_log10

__libm_sse2_log10f

__libm_sse2_logf

__libm_sse2_pow

__libm_sse2_powf

__libm_sse2_sin

__libm_sse2_sinf

__libm_sse2_tan

__libm_sse2_tanf

__mb_cur_max

__p___argc

__p___argv

__p___initenv

__p___mb_cur_max

__p___wargv

__p___winitenv

__p__acmdln

__p__commode

__p__daylight

__p__dstbias

__p__environ

__p__fmode

__p__iob

__p__mbcasemap

__p__mbctype

__p__pctype

__p__pgmptr

__p__pwctype

__p__timezone

__p__tzname

__p__wcmdln

__p__wenviron

__p__wpgmptr

__pctype_func

__pioinfo

__pwctype_func

__pxcptinfoptrs

__report_gsfailure

__set_app_type

__set_flsgetvalue

__setlc_active

__setusermatherr

__strncnt

__swprintf_l

__sys_errlist

__sys_nerr

__threadhandle

__threadid

__timezone

__toascii

__tzname

__unDName

__unDNameEx

__unDNameHelper

__uncaught_exception

__unguarded_readlc_active

__vswprintf_l

__wargv

__wcserror

__wcserror_s

__wcsncnt

__wgetmainargs

__winitenv

_abnormal_termination

_abs64

_access

_access_s

_acmdln

_aligned_free

_aligned_malloc

_aligned_msize

_aligned_offset_malloc

_aligned_offset_realloc

_aligned_offset_recalloc

_aligned_realloc

_aligned_recalloc

_amsg_exit

_assert

_atodbl

_atodbl_l

_atof_l

_atoflt

_atoflt_l

_atoi64

_atoi64_l

_atoi_l

_atol_l

_atoldbl

_atoldbl_l

_beep

_beginthread

_beginthreadex

_byteswap_uint64

_byteswap_ulong

_byteswap_ushort

_c_exit

_cabs

_callnewh

_calloc_crt

_cexit

_cgets

_cgets_s

_cgetws

_cgetws_s

_chdir

_chdrive

_chgsign

_chkesp

_chmod

_chsize

_chsize_s

_clearfp

_close

_commit

_commode

_configthreadlocale

_control87

_controlfp

_controlfp_s

_copysign

_cprintf

_cprintf_l

_cprintf_p

Sections

.text
Size: 709KB - Virtual size: 708KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

ArtistList.bin

AudioQuality.exe

.exe windows:5 windows x86 arch:x86

4b390f4a66ce791d2d2d422dcba64a8b

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

26:cf:6f:8a:41:9c:ad:3b:3b:de:ca:09:2b:cb:a3:fa
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/02/2012, 00:00

Not After

01/02/2015, 23:59

Subject

CN=Guangzhou KuGou Computer Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Guangzhou KuGou Computer Technology Co.\, Ltd.,L=Guangzhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

94:00:64:4b:88:65:15:23:a7:84:b9:fd:b1:38:60:5b:87:c5:7c:92
Signer

Actual PE Digest

94:00:64:4b:88:65:15:23:a7:84:b9:fd:b1:38:60:5b:87:c5:7c:92

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\AutoBuild7\Kugou7\aqi\Release\aqi.pdb

Imports

kernel32

FreeLibrary

InterlockedIncrement

InterlockedDecrement

LoadLibraryW

GetModuleFileNameW

GetProcAddress

WideCharToMultiByte

MultiByteToWideChar

InterlockedCompareExchange

InterlockedExchange

GetStringTypeW

Sleep

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

EncodePointer

DecodePointer

GetLastError

HeapFree

GetCommandLineW

HeapSetInformation

RtlUnwind

HeapAlloc

LCMapStringW

GetCPInfo

RaiseException

TerminateProcess

GetCurrentProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

HeapCreate

IsProcessorFeaturePresent

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

GetModuleHandleW

SetLastError

GetCurrentThreadId

SetHandleCount

GetStdHandle

InitializeCriticalSectionAndSpinCount

GetFileType

GetStartupInfoW

ExitProcess

ReadFile

SetFilePointer

WriteFile

GetConsoleCP

GetConsoleMode

FlushFileBuffers

GetLocaleInfoW

CloseHandle

FreeEnvironmentStringsW

GetEnvironmentStringsW

QueryPerformanceCounter

GetTickCount

GetCurrentProcessId

GetSystemTimeAsFileTime

HeapSize

GetACP

GetOEMCP

IsValidCodePage

GetUserDefaultLCID

GetLocaleInfoA

EnumSystemLocalesA

IsValidLocale

HeapReAlloc

SetStdHandle

WriteConsoleW

CreateFileW

SetEndOfFile

GetProcessHeap

AreFileApisANSI

LocalFree

FormatMessageA

GetTimeFormatA

GetDateFormatA

CompareStringW

GetTimeZoneInformation

SetEnvironmentVariableA

Sections

.text
Size: 230KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

CrashReporter.exe

.exe windows:5 windows x86 arch:x86

1336b6c2055c42d1b1df1cbbfddf2d47

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

26:cf:6f:8a:41:9c:ad:3b:3b:de:ca:09:2b:cb:a3:fa
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/02/2012, 00:00

Not After

01/02/2015, 23:59

Subject

CN=Guangzhou KuGou Computer Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Guangzhou KuGou Computer Technology Co.\, Ltd.,L=Guangzhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

8c:33:0a:a2:7f:4c:df:a1:ee:9f:3b:f9:5a:d5:89:dd:98:89:88:92
Signer

Actual PE Digest

8c:33:0a:a2:7f:4c:df:a1:ee:9f:3b:f9:5a:d5:89:dd:98:89:88:92

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent

WaitForSingleObject

CreateEventW

GetTickCount

WritePrivateProfileStringW

ReadFile

GetFileSize

DeleteFileW

CreateFileW

GetModuleHandleW

CloseHandle

GetProcAddress

GetLastError

WideCharToMultiByte

AreFileApisANSI

MultiByteToWideChar

SetUnhandledExceptionFilter

UnhandledExceptionFilter

TerminateProcess

GetStartupInfoW

HeapSetInformation

InterlockedExchange

DecodePointer

EncodePointer

TlsFree

TlsAlloc

IsDebuggerPresent

Sleep

InterlockedExchangeAdd

LocalFree

GetVersionExW

GetNativeSystemInfo

GetSystemTimeAsFileTime

QueryPerformanceCounter

GetWindowsDirectoryW

GetSystemDirectoryW

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionAndSpinCount

GetCurrentProcessId

ReleaseMutex

GetCurrentThreadId

GetModuleFileNameW

FormatMessageA

CreateProcessW

SetFilePointer

CreateMutexW

InterlockedCompareExchange

GetFileAttributesExW

RemoveDirectoryW

SetLastError

GetCurrentDirectoryW

GetTempPathW

GetFileAttributesW

WriteFile

GetCurrentProcess

IsProcessorFeaturePresent

msvcp100

??1_Locimp@locale@std@@MAE@XZ

??0_Locimp@locale@std@@AAE@ABV012@@Z

?id@?$codecvt@_WDH@std@@2V0locale@2@A

?_Id_cnt@id@locale@std@@0HA

?_Locimp_Addfac@_Locimp@locale@std@@CAXPAV123@PAVfacet@23@I@Z

?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

??1?$codecvt@_WDH@std@@MAE@XZ

?do_length@?$codecvt@_WDH@std@@MBEHABHPBD1I@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?_Xfunc@tr1@std@@YAXXZ

?uncaught_exception@std@@YA_NXZ

?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

?_BADOFF@std@@3_JB

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1_Lockit@std@@QAE@XZ

??0_Lockit@std@@QAE@H@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?is@?$ctype@_W@std@@QBE_NF_W@Z

?_Decref@facet@locale@std@@QAEPAV123@XZ

?_Incref@facet@locale@std@@QAEXXZ

??Bid@locale@std@@QAEIXZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z

?id@?$ctype@_W@std@@2V0locale@2@A

?_Init@locale@std@@CAPAV_Locimp@12@XZ

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

shlwapi

PathFileExistsW

wininet

InternetConnectW

InternetCrackUrlW

InternetOpenW

InternetGetConnectedState

InternetCloseHandle

InternetSetStatusCallbackW

HttpSendRequestW

HttpQueryInfoW

HttpOpenRequestW

InternetReadFile

msvcr100

strerror

memset

_controlfp_s

_invoke_watson

_except_handler4_common

?_type_info_dtor_internal_method@type_info@@QAEXXZ

?terminate@@YAXXZ

_crt_debugger_hook

__set_app_type

_fmode

_commode

__setusermatherr

_configthreadlocale

_initterm_e

_initterm

_wcmdln

exit

_XcptFilter

_cexit

__wgetmainargs

_amsg_exit

_onexit

_lock

__dllonexit

_unlock

__CxxFrameHandler3

ferror

fopen

malloc

_exit

wcscat_s

fprintf

wcsrchr

__iob_func

_localtime64_s

free

wcschr

_vsnwprintf_s

_vscwprintf

_time64

fread

fflush

??0bad_cast@std@@QAE@ABV01@@Z

??0bad_cast@std@@QAE@PBD@Z

??1bad_cast@std@@UAE@XZ

ldiv

fwrite

fclose

_vsnwprintf

_purecall

atoi

__wargv

__argc

fread_s

ftell

_CxxThrowException

memcpy

??3@YAXPAX@Z

memcpy_s

??_V@YAXPAX@Z

??2@YAPAXI@Z

_wcsicmp

fseek

_wfopen_s

memmove

??0exception@std@@QAE@ABQBD@Z

?what@exception@std@@UBEPBDXZ

??0exception@std@@QAE@ABV01@@Z

??1exception@std@@UAE@XZ

user32

MessageBoxW

shell32

SHGetFolderPathW

SHFileOperationW

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IEBox.exe

.exe windows:5 windows x86 arch:x86

3f1bb338ef17456770c2201164e5b23d

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

26:cf:6f:8a:41:9c:ad:3b:3b:de:ca:09:2b:cb:a3:fa
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/02/2012, 00:00

Not After

01/02/2015, 23:59

Subject

CN=Guangzhou KuGou Computer Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Guangzhou KuGou Computer Technology Co.\, Ltd.,L=Guangzhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

2a:4a:6f:da:51:b2:49:ba:99:bf:32:2f:3a:0d:c6:32:af:d4:67:ae
Signer

Actual PE Digest

2a:4a:6f:da:51:b2:49:ba:99:bf:32:2f:3a:0d:c6:32:af:d4:67:ae

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\BuilderSystem\Workspace_7530\Sources\KuGou\branches\release_7530\bin\IEBox.pdb

Imports

dbghelp

SymInitialize

SymSetOptions

SymGetLineFromAddr64

StackWalk64

MiniDumpWriteDump

SymGetModuleBase64

SymFromAddr

SymFunctionTableAccess64

psapi

GetModuleBaseNameW

QueryWorkingSet

GetModuleInformation

GetModuleBaseNameA

EnumProcessModules

GetMappedFileNameW

GetProcessMemoryInfo

version

GetFileVersionInfoSizeW

VerQueryValueW

GetFileVersionInfoW

urlmon

CoInternetSetFeatureEnabled

wininet

InternetGetCookieA

HttpQueryInfoW

InternetCloseHandle

HttpSendRequestW

InternetConnectW

InternetGetConnectedState

HttpOpenRequestW

InternetReadFile

InternetSetStatusCallbackW

InternetOpenW

InternetCrackUrlW

kernel32

GetModuleFileNameW

CreateFileW

RaiseException

GetPrivateProfileIntW

VirtualProtect

GetCurrentThreadId

DeleteFileW

GetCurrentProcessId

InterlockedCompareExchange

GetPrivateProfileStringW

InterlockedDecrement

LeaveCriticalSection

FlushInstructionCache

SetLastError

EnterCriticalSection

LoadLibraryW

GetProcAddress

FindResourceW

FreeLibrary

LoadResource

LoadLibraryExW

GlobalLock

GetModuleHandleW

GlobalAlloc

InitializeCriticalSectionAndSpinCount

SizeofResource

MulDiv

TerminateProcess

lstrcmpW

MultiByteToWideChar

lstrlenW

GlobalUnlock

lstrcmpiW

DeleteCriticalSection

GlobalFree

WritePrivateProfileStringW

GetExitCodeProcess

GetVersionExW

GetCurrentThread

GetCurrentProcess

InterlockedIncrement

SetUnhandledExceptionFilter

CreateProcessW

SetErrorMode

GetFileSize

CloseHandle

CreateEventW

GetLastError

AreFileApisANSI

InterlockedPopEntrySList

IsProcessorFeaturePresent

InterlockedPushEntrySList

lstrlenA

UnhandledExceptionFilter

GetStartupInfoW

WideCharToMultiByte

GetProcessHeap

HeapFree

HeapAlloc

GetEnvironmentVariableA

WaitForMultipleObjects

ResetEvent

RtlCaptureStackBackTrace

GetDiskFreeSpaceExW

GlobalMemoryStatusEx

CreateIoCompletionPort

PostQueuedCompletionStatus

GetQueuedCompletionStatus

TlsFree

TlsAlloc

TlsSetValue

TlsGetValue

GetWindowsDirectoryW

GetSystemDirectoryW

GetNativeSystemInfo

GetFileInformationByHandle

FlushFileBuffers

SetFileTime

SetFilePointerEx

SetEndOfFile

InterlockedExchange

LocalFree

GetCommandLineW

ResumeThread

DuplicateHandle

CreateToolhelp32Snapshot

HeapSetInformation

Process32NextW

CreatePipe

GetSystemInfo

GetProcessId

Process32FirstW

GetProcessHeaps

AttachConsole

GetTickCount

SetEvent

WaitForSingleObject

WriteFile

VirtualFree

CreateDirectoryW

GetLogicalDriveStringsW

CompareFileTime

TzSpecificLocalTimeToSystemTime

FileTimeToSystemTime

QueryPerformanceFrequency

GetTempFileNameW

FindFirstFileW

MapViewOfFile

UnmapViewOfFile

GetSystemTimeAsFileTime

QueryPerformanceCounter

SystemTimeToFileTime

SystemTimeToTzSpecificLocalTime

GetStdHandle

AssignProcessToJobObject

OpenProcess

GetProcessTimes

VirtualQueryEx

SetHandleInformation

GetProcessIoCounters

AllocConsole

SetPriorityClass

InterlockedExchangeAdd

ReleaseMutex

OutputDebugStringA

GetModuleHandleA

FormatMessageA

SetFilePointer

CreateMutexW

ExpandEnvironmentStringsW

TryEnterCriticalSection

CreateThread

IsDebuggerPresent

Sleep

FileTimeToLocalFileTime

GetFileAttributesExW

GetFileTime

FindNextFileW

QueryDosDeviceW

RemoveDirectoryW

SetCurrentDirectoryW

CreateFileMappingW

FindClose

VirtualAlloc

GetLongPathNameW

GetCurrentDirectoryW

GetTempPathW

ReadFile

ReplaceFileW

GetFileAttributesW

CopyFileW

MoveFileExW

user32

UnregisterClassA

SetTimer

LoadCursorW

CallWindowProcW

RegisterClassExW

SetWindowLongW

CreateWindowExW

DefWindowProcW

DispatchMessageW

GetClassInfoExW

MoveWindow

GetWindow

RedrawWindow

GetDesktopWindow

MessageBoxW

SetCapture

KillTimer

WaitMessage

GetQueueStatus

CallMsgFilterW

PeekMessageW

MsgWaitForMultipleObjectsEx

WaitForInputIdle

wsprintfW

SystemParametersInfoW

CharUpperW

SetWindowTextW

SendMessageW

ReleaseCapture

IsWindow

SetWindowPos

GetKeyState

GetClassInfoW

RegisterClassW

GetWindowThreadProcessId

WindowFromPoint

InflateRect

OffsetRect

SetRect

EndPaint

ClientToScreen

DestroyWindow

GetWindowTextLengthW

DestroyAcceleratorTable

ScreenToClient

PostQuitMessage

CharNextW

RegisterWindowMessageW

FillRect

IsChild

GetDlgItem

UnregisterClassW

PostMessageW

GetFocus

GetParent

InvalidateRgn

GetClientRect

CreateAcceleratorTableW

SetFocus

BeginPaint

GetDC

TranslateMessage

InvalidateRect

GetWindowLongW

GetWindowTextW

GetClassNameW

ReleaseDC

GetSysColor

gdi32

GetDeviceCaps

GetStockObject

BitBlt

GetObjectW

CreateCompatibleDC

CreateSolidBrush

DeleteObject

DeleteDC

CreateCompatibleBitmap

SelectObject

advapi32

GetTraceEnableFlags

RegSetValueExW

RegCloseKey

RegEnumKeyExW

ConvertSidToStringSidW

CreateProcessAsUserW

GetTokenInformation

GetSidSubAuthorityCount

GetSidSubAuthority

RegOpenKeyExW

RegDeleteValueW

RegDeleteKeyW

RegQueryInfoKeyW

RegCreateKeyExW

OpenProcessToken

RegNotifyChangeKeyValue

RegEnumValueW

RegQueryValueExW

TraceEvent

GetTraceLoggerHandle

UnregisterTraceGuids

GetTraceEnableLevel

RegisterTraceGuidsW

ole32

CoCreateInstance

CoTaskMemRealloc

CLSIDFromProgID

CLSIDFromString

PropVariantClear

CreateStreamOnHGlobal

StringFromGUID2

OleInitialize

OleUninitialize

CoInitialize

CoTaskMemFree

CoGetClassObject

CoTaskMemAlloc

OleLockRunning

CoUninitialize

oleaut32

SysAllocString

SysStringByteLen

SysFreeString

SysStringLen

VariantClear

LoadTypeLi

VariantInit

SysAllocStringLen

OleCreateFontIndirect

VarUI4FromStr

LoadRegTypeLi

CreateErrorInfo

SetErrorInfo

VariantChangeType

GetErrorInfo

DispCallFunc

SysAllocStringByteLen

plugin

?SendControlMessage@PluginIPCGuest@plugin@@QAEXHPBCH@Z

?SendMessageToHost@PluginIPCGuest@plugin@@QAE_NHHHPBCHPACPAH@Z

??1PluginIPCGuest@plugin@@QAE@XZ

??0PluginIPCGuest@plugin@@QAE@XZ

?KeepAlive@PluginIPCGuest@plugin@@QAEXXZ

?Stop@PluginIPCGuest@plugin@@QAEXXZ

?Start@PluginIPCGuest@plugin@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

?RemoveObserver@PluginIPCGuest@plugin@@QAEXPAVPluginEventObserver@2@@Z

?AddObserver@PluginIPCGuest@plugin@@QAEXPAVPluginEventObserver@2@@Z

?SetPluginChannelConnected@PluginIPCGuest@plugin@@QAEXPAUPluginChannelConnected@2@@Z

?SetPluginChannelError@PluginIPCGuest@plugin@@QAEXPAUPluginChannelError@2@@Z

?SetPluginControl@PluginIPCGuest@plugin@@QAEXPAUPluginControl@2@@Z

?ReplyControlMessage@PluginIPCGuest@plugin@@QAEXHPBCH@Z

msvcp100

?do_length@?$codecvt@_WDH@std@@MBEHABHPBD1I@Z

??1?$codecvt@_WDH@std@@MAE@XZ

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Xlength_error@std@@YAXPBD@Z

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

?_Xfunc@tr1@std@@YAXXZ

?id@?$ctype@_W@std@@2V0locale@2@A

?id@?$ctype@D@std@@2V0locale@2@A

?_Xout_of_range@std@@YAXPBD@Z

??1_Lockit@std@@QAE@XZ

??0_Lockit@std@@QAE@H@Z

?uncaught_exception@std@@YA_NXZ

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Init@locale@std@@CAPAV_Locimp@12@XZ

??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@

?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE_W_W@Z

?imbue@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE?AVlocale@2@ABV32@@Z

?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z

?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QAE?AVlocale@2@ABV32@@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WD@Z

?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WXZ

?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z

?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z

?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ

?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z

?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ

?pbase@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ

?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ

?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z

?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ

?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z

?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ

?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ

?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ

?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ

?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ

?clear@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z

?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?pbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z

?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z

?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ

?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ

?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z

?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z

?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z

?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ

?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ

??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ

?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z

??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ

?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z

?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ

?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z

?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z

?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z

?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ

?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ

?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ

?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ

??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

?getloc@ios_base@std@@QBE?AVlocale@2@XZ

?width@ios_base@std@@QAE_J_J@Z

?width@ios_base@std@@QBE_JXZ

?precision@ios_base@std@@QAE_J_J@Z

?flags@ios_base@std@@QAEHH@Z

?flags@ios_base@std@@QBEHXZ

?exceptions@ios_base@std@@QAEXH@Z

?good@ios_base@std@@QBE_NXZ

?rdstate@ios_base@std@@QBEHXZ

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?narrow@?$ctype@_W@std@@QBED_WD@Z

?widen@?$ctype@_W@std@@QBE_WD@Z

?tolower@?$ctype@_W@std@@QBE_W_W@Z

?is@?$ctype@_W@std@@QBE_NF_W@Z

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?narrow@?$ctype@D@std@@QBEDDD@Z

?widen@?$ctype@D@std@@QBEDD@Z

?is@?$ctype@D@std@@QBE_NFD@Z

?_Decref@facet@locale@std@@QAEPAV123@XZ

?_Incref@facet@locale@std@@QAEXXZ

??Bid@locale@std@@QAEIXZ

?_Orphan_all@_Container_base0@std@@QAEXXZ

?max@?$numeric_limits@_J@std@@SA_JXZ

?max@?$numeric_limits@I@std@@SAIXZ

?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z

?_BADOFF@std@@3_JB

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

?_Orphan_all@_Container_base12@std@@QAEXXZ

??1_Container_base12@std@@QAE@XZ

??0_Container_base12@std@@QAE@XZ

?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

?min@?$numeric_limits@_J@std@@SA_JXZ

?max@?$numeric_limits@H@std@@SAHXZ

?min@?$numeric_limits@H@std@@SAHXZ

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z

?_Swap_all@_Container_base12@std@@QAEXAAU12@@Z

?set_new_handler@std@@YAP6AXXZP6AXXZ@Z

?sync_with_stdio@ios_base@std@@SA_N_N@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?id@?$codecvt@DDH@std@@2V0locale@2@A

??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@

?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Locimp_Addfac@_Locimp@locale@std@@CAXPAV123@PAVfacet@23@I@Z

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ

?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ

?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z

?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

?gcount@?$basic_istream@DU?$char_traits@D@std@@@std@@QBE_JXZ

?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ

?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?bad@ios_base@std@@QBE_NXZ

?eof@ios_base@std@@QBE_NXZ

?always_noconv@codecvt_base@std@@QBE_NXZ

?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ

?id@?$numpunct@D@std@@2V0locale@2@A

?c_str@?$_Yarn@D@std@@QBEPBDXZ

??0facet@locale@std@@IAE@I@Z

??1facet@locale@std@@UAE@XZ

?_Gettrue@_Locinfo@std@@QBEPBDXZ

?_Getfalse@_Locinfo@std@@QBEPBDXZ

?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ

?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ

??1_Locinfo@std@@QAE@XZ

??0_Locinfo@std@@QAE@PBD@Z

?toupper@?$ctype@_W@std@@QBE_W_W@Z

?_Id_cnt@id@locale@std@@0HA

?id@?$codecvt@_WDH@std@@2V0locale@2@A

??0_Locimp@locale@std@@AAE@ABV012@@Z

??1_Locimp@locale@std@@MAE@XZ

?in@?$codecvt@_WDH@std@@QBEHAAHPBD1AAPBDPA_W3AAPA_W@Z

?out@?$codecvt@_WDH@std@@QBEHAAHPB_W1AAPB_WPAD3AAPAD@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z

msvcr100

fwrite

fclose

??2@YAPAXI@Z

??1bad_cast@std@@UAE@XZ

??0bad_cast@std@@QAE@PBD@Z

??0bad_cast@std@@QAE@ABV01@@Z

??0exception@std@@QAE@XZ

??8type_info@@QBE_NABV0@@Z

memmove

_set_purecall_handler

signal

memchr

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

_purecall

_set_abort_behavior

_set_invalid_parameter_handler

_CxxThrowException

fseek

exit

swprintf_s

_recalloc

abort

wcsncpy_s

free

malloc

wcsstr

printf

memcpy_s

?terminate@@YAXXZ

_fsopen

_wfsopen

rand

srand

_wfullpath

_time64

ldiv

isspace

_errno

iswspace

wcschr

_strnicmp

tolower

_vscprintf

_localtime64_s

__iob_func

fflush

wcsrchr

fprintf

wcscat_s

_write

_finite

wcsncmp

_wcsicmp

_exit

setvbuf

_open_osfhandle

realloc

_fdopen

fputc

_unlock_file

ungetc

fgetpos

_fseeki64

fgetc

fsetpos

_chsize

_lock_file

fread

_fileno

ftell

_vscwprintf

_vsnwprintf_s

ceil

strchr

_mktime64

isalpha

atoi

isalnum

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z

wcscpy_s

__CxxFrameHandler3

_unlock

__dllonexit

_lock

_onexit

_amsg_exit

__wgetmainargs

_cexit

_XcptFilter

_wcmdln

_initterm

_initterm_e

_configthreadlocale

__setusermatherr

_commode

_fmode

__set_app_type

_vsnprintf_s

_crt_debugger_hook

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_except_handler4_common

_invoke_watson

_controlfp_s

_vsnwprintf

??_V@YAXPAX@Z

??0exception@std@@QAE@ABV01@@Z

??0exception@std@@QAE@ABQBD@Z

??1exception@std@@UAE@XZ

?what@exception@std@@UBEPBDXZ

_wfopen_s

_CIlog

memset

memmove_s

memcpy

strerror

strlen

strcpy

strcmp

sprintf

floor

_CIexp

??3@YAXPAX@Z

shlwapi

PathAddBackslashW

SHStrDupW

PathFileExistsW

ws2_32

inet_addr

WSAStartup

freeaddrinfo

WSACleanup

dnsapi

DnsFree

DnsQuery_W

comctl32

InitCommonControlsEx

winmm

timeEndPeriod

timeBeginPeriod

timeGetTime

userenv

CreateEnvironmentBlock

DestroyEnvironmentBlock

iphlpapi

GetNetworkParams

shell32

SHChangeNotify

SHFileOperationW

CommandLineToArgvW

SHGetFolderPathW

ShellExecuteW

Sections

.text
Size: 802KB - Virtual size: 801KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 245KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

KGDaemon.exe

.exe windows:5 windows x86 arch:x86

b485e9fc73e93f687a7a1f301c7d7143

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

26:cf:6f:8a:41:9c:ad:3b:3b:de:ca:09:2b:cb:a3:fa
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/02/2012, 00:00

Not After

01/02/2015, 23:59

Subject

CN=Guangzhou KuGou Computer Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Guangzhou KuGou Computer Technology Co.\, Ltd.,L=Guangzhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

31:87:39:ff:50:54:d0:d9:de:d0:9f:8d:c1:3b:f0:4a:06:c6:fd:89
Signer

Actual PE Digest

31:87:39:ff:50:54:d0:d9:de:d0:9f:8d:c1:3b:f0:4a:06:c6:fd:89

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\BuilderSystem\Workspace_7530\Sources\KuGou\branches\release_7530\bin\KGDaemon.pdb

Imports

kernel32

CreateFileMappingW

FlushViewOfFile

UnmapViewOfFile

MapViewOfFile

GetCurrentProcessId

CloseHandle

CreateToolhelp32Snapshot

Process32NextW

Process32FirstW

GetWindowsDirectoryW

GetSystemDirectoryW

GetLastError

CreateFileW

OutputDebugStringW

GetCurrentDirectoryW

GetTempPathW

GetFileAttributesW

WaitForSingleObject

CreateMutexW

WideCharToMultiByte

AreFileApisANSI

MultiByteToWideChar

SetUnhandledExceptionFilter

UnhandledExceptionFilter

TerminateProcess

DecodePointer

EncodePointer

GetStartupInfoW

HeapSetInformation

InterlockedExchange

LocalFree

InterlockedExchangeAdd

GetProcAddress

GetVersionExW

GetModuleHandleW

GetCurrentProcess

GetNativeSystemInfo

TlsFree

TlsAlloc

ReleaseMutex

SetLastError

GetModuleFileNameW

WriteFile

FormatMessageA

GetTickCount

CreateProcessW

SetFilePointer

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionAndSpinCount

GetCurrentThreadId

IsDebuggerPresent

Sleep

GetSystemTimeAsFileTime

InterlockedCompareExchange

QueryPerformanceCounter

IsProcessorFeaturePresent

user32

MessageBoxW

DestroyWindow

SetTimer

GetMessageW

PostQuitMessage

PostMessageW

KillTimer

LoadCursorW

TranslateMessage

GetForegroundWindow

RegisterClassExW

ShowWindow

IsWindow

CreateWindowExW

UpdateWindow

DefWindowProcW

GetWindowThreadProcessId

DispatchMessageW

shell32

SHGetFolderPathW

SHGetSpecialFolderPathW