#Pa$$w0rD__6678--0peɴ_Set-Up@#[.]7z

resource	yara_rule
static1/unpack001/Resources/Data/info/NEWS.pdf	pdf_with_link_action

resource
unpack001/Resources/Config/MigrationService/legal/bin/WhoUses.exe
unpack001/Resources/Config/MigrationService/legal/bin/wish86.exe
unpack001/Resources/Config/MigrationService/legal/bin/x86_64-w64-mingw32-agrep.exe
unpack001/Resources/Config/MigrationService/msys-pcre-1.dll

#Pa$$w0rD__6678--0peɴ_Set-Up@#.7z

.7z

Password: 6678

Resources/Config/Data/DisplayLanguageNames.en_CA.txt

Resources/Config/Data/Welcome.Python.Debugging.Watch.png

.png

Password: 6678

Resources/Config/Data/bcmod.phpt

Resources/Config/Data/bug46064.phpt

.js

Resources/Config/Data/bug66121.phpt

Resources/Config/Data/bug78034.phpt

Resources/Config/Data/bug79441.phpt

.js

Resources/Config/Data/bz2_filter_compress.phpt

Resources/Config/Data/const.h

Resources/Config/Data/dom002.phpt

Resources/Config/Data/fileobject_getmaxlinelen_basic.phpt

Resources/Config/Data/frontcontroller4.phar.inc

Resources/Config/Data/gh16777_1.phpt

.js

Resources/Config/Data/inheritance003.phpt

Resources/Config/Data/iterator_044.phpt

.js

Resources/Config/Data/jis0208.c

Resources/Config/Data/mysqli_affected_rows.phpt

Resources/Config/Data/php_globals.h

Resources/Config/Data/private_004b.phpt

Resources/Config/Data/scalar_strict_declaration_placement_003.phpt

Resources/Config/Data/schema063.phpt

Resources/Config/Data/typed_properties_050.phpt

Resources/Config/Data/zend_cfg.h

Resources/Config/DisplayLanguageNames.el.txt

Resources/Config/DisplayLanguageNames.pt.txt

Resources/Config/ID_RESERVE.txt

Resources/Config/MigrationService/Microsoft.VisualStudio.DesignTools.DesignerHost.dll

.dll windows:4 windows x86 arch:x86

Password: 6678

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:03:4d:4e:91:a6:1a:28:b0:78:8f:00:00:00:00:03:4d
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/03/2023, 18:43

Not After

14/03/2024, 18:43

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:83:df:42:8d:f3:d0:a2:cf:be:22:37:e2:fb:5a:b2:01:1e:dc:81:44:73:d2:7e:97:ab:ae:23:05:54:86:cf
Signer

Actual PE Digest

39:83:df:42:8d:f3:d0:a2:cf:be:22:37:e2:fb:5a:b2:01:1e:dc:81:44:73:d2:7e:97:ab:ae:23:05:54:86:cf

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

D:\dbs\sh\ddvsm\1002_165500_0\cmd\2o\out\Intermediate\Xaml\designerhost_x86retail_53C7D02F\Release\net472\Microsoft.VisualStudio.DesignTools.DesignerHost.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 643KB - Virtual size: 642KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/MigrationService/WXFSGNPDF.dll

.dll windows:4 windows x86 arch:x86

Password: 6678

dae02f32a21e03ce65412f6e56942daa

Code Sign

f3:03:07:6f:06:2a:78:d8:c6:1b:51:16:a4:9d:36
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

14/05/2019, 00:00

Not After

23/05/2022, 23:59

Subject

CN=Corel Corporation,OU=IT Infrastructure,O=Corel Corporation,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

f3:03:07:6f:06:2a:78:d8:c6:1b:51:16:a4:9d:36
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

14/05/2019, 00:00

Not After

23/05/2022, 23:59

Subject

CN=Corel Corporation,OU=IT Infrastructure,O=Corel Corporation,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

d2:26:fd:53:9e:68:da:98:99:ca:13:1d:6a:4b:3c:b2:fe:e5:a9:b4:d1:aa:fc:47:bf:f9:6e:cd:9b:f3:d1:a4
Signer

Actual PE Digest

d2:26:fd:53:9e:68:da:98:99:ca:13:1d:6a:4b:3c:b2:fe:e5:a9:b4:d1:aa:fc:47:bf:f9:6e:cd:9b:f3:d1:a4

Digest Algorithm

sha256

PE Digest Matches

true

be:a9:7b:1c:2b:71:7a:fa:b5:13:7f:94:8e:20:c6:17:53:de:f7:68
Signer

Actual PE Digest

be:a9:7b:1c:2b:71:7a:fa:b5:13:7f:94:8e:20:c6:17:53:de:f7:68

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

F:\NMC\CURRENT260IL1nightlyBuild15061_final\Libraries\WzWXF\Providers\WzWXFsgnpdf\WXFSGNPDF\WXFSGNPDF\obj\Release\WXFSGNPDF.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 282KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/MigrationService/legal/bin/GitLab.UI.exe

.exe windows:4 windows x86 arch:x86

Password: 6678

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

33:00:00:03:4d:4e:91:a6:1a:28:b0:78:8f:00:00:00:00:03:4d
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/03/2023, 18:43

Not After

14/03/2024, 18:43

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

94:c0:09:b2:5d:71:b1:72:6f:e3:b6:52:a4:e1:f8:e1:30:40:da:10:79:06:67:99:f9:ec:d7:a7:a4:89:4d:72
Signer

Actual PE Digest

94:c0:09:b2:5d:71:b1:72:6f:e3:b6:52:a4:e1:f8:e1:30:40:da:10:79:06:67:99:f9:ec:d7:a7:a4:89:4d:72

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\a\git-credential-manager\git-credential-manager\out\windows\GitLab.UI.Windows\obj\WindowsRelease\net472\GitLab.UI.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/MigrationService/legal/bin/WhoUses.exe

.exe windows:4 windows x64 arch:x64

Password: 6678

515ab8da0d1b13713724aafa738fc97e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

AdjustTokenPrivileges

LookupPrivilegeValueA

OpenProcessToken

libgcc_s_seh-1

_Unwind_Resume

kernel32

CloseHandle

DeleteCriticalSection

DuplicateHandle

EnterCriticalSection

FreeLibrary

GetCurrentProcess

GetCurrentProcessId

GetFullPathNameA

GetLastError

GetModuleHandleA

GetProcAddress

GetVersionExA

InitializeCriticalSection

IsDBCSLeadByteEx

LeaveCriticalSection

LoadLibraryA

MultiByteToWideChar

OpenProcess

QueryDosDeviceA

SetUnhandledExceptionFilter

Sleep

TerminateThread

TlsGetValue

VirtualAlloc

VirtualFree

VirtualProtect

VirtualQuery

WaitForSingleObject

WideCharToMultiByte

msvcrt

__C_specific_handler

___lc_codepage_func

___mb_cur_max_func

__getmainargs

__initenv

__iob_func

__set_app_type

__setusermatherr

_amsg_exit

_beginthread

_cexit

_commode

_errno

_fmode

_initterm

_lock

_onexit

_stricmp

_strnicmp

_strtoi64

_strtoui64

_unlock

abort

calloc

exit

fprintf

fputc

free

fwrite

getc

isspace

isxdigit

localeconv

malloc

memcmp

memcpy

memset

realloc

signal

strcat

strcpy

strerror

strlen

strncmp

strncpy

strtol

strtoul

tolower

ungetc

vfprintf

wcslen

libstdc++-6

_ZNKSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE7compareEPKc

_ZNSdD2Ev

_ZNSo9_M_insertImEERSoT_

_ZNSt6localeC1Ev

_ZNSt6localeD1Ev

_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE10_M_disposeEv

_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE10_M_replaceEyyPKcy

_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_appendEPKcy

_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_assignERKS4_

_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_createERyy

_ZNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEED1Ev

_ZNSt8__detail15_List_node_base7_M_hookEPS0_

_ZNSt8ios_baseC2Ev

_ZNSt8ios_baseD2Ev

_ZNSt9basic_iosIcSt11char_traitsIcEE4initEPSt15basic_streambufIcS1_E

_ZSt16__ostream_insertIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_PKS3_x

_ZSt18_Rb_tree_decrementPSt18_Rb_tree_node_base

_ZSt18_Rb_tree_incrementPSt18_Rb_tree_node_base

_ZSt20__throw_length_errorPKc

_ZSt29_Rb_tree_insert_and_rebalancebPSt18_Rb_tree_node_baseS0_RS_

_ZTTNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEEE

_ZTVN10__cxxabiv117__class_type_infoE

_ZTVN10__cxxabiv120__si_class_type_infoE

_ZTVNSt7__cxx1115basic_stringbufIcSt11char_traitsIcESaIcEEE

_ZTVNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEEE

_ZTVSt15basic_streambufIcSt11char_traitsIcEE

_ZTVSt9basic_iosIcSt11char_traitsIcEE

_ZdaPv

_ZdlPvy

_Znay

_Znwy

__gxx_personality_seh0

user32

EnumWindows

GetWindowTextA

GetWindowThreadProcessId

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.xdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/MigrationService/legal/bin/git-credential-manager.exe

.exe windows:4 windows x86 arch:x86

Password: 6678

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

33:00:00:03:4d:4e:91:a6:1a:28:b0:78:8f:00:00:00:00:03:4d
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/03/2023, 18:43

Not After

14/03/2024, 18:43

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

d9:d9:0c:86:0e:4e:94:35:4b:15:56:8d:3f:3b:ce:24:bc:da:da:c4:4a:06:b6:79:48:c4:62:8b:09:15:73:97
Signer

Actual PE Digest

d9:d9:0c:86:0e:4e:94:35:4b:15:56:8d:3f:3b:ce:24:bc:da:da:c4:4a:06:b6:79:48:c4:62:8b:09:15:73:97

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\a\git-credential-manager\git-credential-manager\out\shared\Git-Credential-Manager\obj\WindowsRelease\net472\win-x86\git-credential-manager.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/MigrationService/legal/bin/wish86.exe

.exe windows:4 windows x64 arch:x64

Password: 6678

c4e380968f76f51c7a4ea05ed50512e6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeleteCriticalSection

EnterCriticalSection

GetLastError

GetStartupInfoW

InitializeCriticalSection

LeaveCriticalSection

SetUnhandledExceptionFilter

Sleep

TlsGetValue

VirtualProtect

VirtualQuery

__C_specific_handler

msvcrt

__argc

__iob_func

__set_app_type

__setusermatherr

__wargv

__wgetmainargs

__winitenv

_amsg_exit

_cexit

_commode

_fmode

_initterm

_onexit

_wcmdln

abort

calloc

exit

fprintf

free

fwrite

malloc

memcpy

setlocale

signal

strlen

strncmp

vfprintf

tcl86

Tcl_CreateInterp

Tcl_FindExecutable

Tcl_Init

Tcl_NewStringObj

Tcl_ObjSetVar2

Tcl_StaticPackage

tk86

Tk_CreateConsoleWindow

Tk_Init

Tk_MainExW

Tk_SafeInit

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 564B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.xdata
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 416B

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/MigrationService/legal/bin/x86_64-w64-mingw32-agrep.exe

.exe windows:4 windows x64 arch:x64

Password: 6678

004f13bd51ff3992934e82b81105725d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DEBUG_STRIPPED

Imports

libtre-5

tre_config

tre_reganexec

tre_regaparams_default

tre_regcomp

tre_regerror

tre_regexec

tre_regnexec

kernel32

DeleteCriticalSection

EnterCriticalSection

GetCurrentProcess

GetCurrentProcessId

GetCurrentThreadId

GetLastError

GetStartupInfoA

GetSystemTimeAsFileTime

GetTickCount

InitializeCriticalSection

LeaveCriticalSection

QueryPerformanceCounter

RtlAddFunctionTable

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

SetUnhandledExceptionFilter

Sleep

TerminateProcess

TlsGetValue

UnhandledExceptionFilter

VirtualProtect

VirtualQuery

msvcrt

__C_specific_handler

__argv

__getmainargs

__initenv

__iob_func

__lconv_init

__set_app_type

__setusermatherr

_acmdln

_amsg_exit

_cexit

_close

_errno

_fmode

_initterm

_onexit

_open

_read

abort

atoi

calloc

exit

fprintf

fputc

free

fwrite

getenv

malloc

memcpy

memmove

realloc

signal

strchr

strcmp

strcpy

strerror

strlen

strncmp

strncpy

strrchr

strstr

vfprintf

libintl-8

__printf__

libintl_bindtextdomain

libintl_fprintf

libintl_gettext

libintl_setlocale

libintl_textdomain

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

Resources/Config/MigrationService/legal/buildinsights-ex.png

.png

Resources/Config/MigrationService/legal/i_filtering_options.png

.png

Resources/Config/MigrationService/msys-pcre-1.dll

.dll windows:4 windows x64 arch:x64

518e24ecd71bebb231f5a2987292c36c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DEBUG_STRIPPED

IMAGE_FILE_DLL

PDB Paths

Imports

msys-2.0

__cxa_atexit

__locale_ctype_ptr

_impure_ptr

calloc

cygwin_internal

dll_dllcrt0

free

malloc

memcmp

memcpy

memmove

memset

msys_detach_dll

posix_memalign

realloc

strchr

strcmp

strlen

strncmp

tolower

toupper

kernel32

GetModuleHandleA

Exports

__gcc_deregister_frame

__gcc_register_frame

_pcre_OP_lengths

_pcre_default_tables

_pcre_find_bracket

_pcre_hspace_list

_pcre_is_newline

_pcre_ord2utf

_pcre_ucd_caseless_sets

_pcre_ucd_records

_pcre_ucd_stage1

_pcre_ucd_stage2

_pcre_ucp_gbtable

_pcre_ucp_gentype

_pcre_utf8_table1

_pcre_utf8_table1_size

_pcre_utf8_table2

_pcre_utf8_table3

_pcre_utf8_table4

_pcre_utt

_pcre_utt_names

_pcre_utt_size

_pcre_valid_utf

_pcre_vspace_list

_pcre_was_newline

_pcre_xclass

pcre_assign_jit_stack

pcre_callout

pcre_compile

pcre_compile2

pcre_config

pcre_copy_named_substring

pcre_copy_substring

pcre_dfa_exec

pcre_exec

pcre_free

pcre_free_study

pcre_free_substring

pcre_free_substring_list

pcre_fullinfo

pcre_get_named_substring

pcre_get_stringnumber

pcre_get_stringtable_entries

pcre_get_substring

pcre_get_substring_list

pcre_jit_free_unused_memory

pcre_jit_stack_alloc

pcre_jit_stack_free

pcre_maketables

pcre_malloc

pcre_pattern_to_host_byte_order

pcre_refcount

pcre_stack_free

pcre_stack_guard

pcre_stack_malloc

pcre_study

pcre_version

Sections

.text
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rdata
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 464B

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/Rapid/bug37456.phpt

Resources/Config/Rapid/bug77664.phpt

Resources/Config/Rapid/exif_imagetype_basic.phpt

Resources/Config/Rapid/imagecharup_basic.png

.png

Resources/Config/Rapid/imagecolorstotal_basic.phpt

Resources/Config/Rapid/mb_strlen_basic.phpt

Resources/Config/Rapid/mysqlnd_debug.c

Resources/Config/Rapid/php_libsodium.h

Resources/Config/Rapid/private_006b.phpt

Resources/Config/Rapid/serialize_globals_var_refs.phpt

Resources/Config/Rapid/shakespeare.p7s

Resources/Config/TableTextServiceTigrinya.txt

Resources/Config/change.txt

.js

Resources/Config/code2.txt

Resources/Config/debugger.txt

Resources/Config/espagnole.flv

Resources/Config/get_dotfiles.txt

Resources/Config/help.ja.txt

Resources/Config/kibitka.htm

Resources/Config/mod_build_trimpath_issue48557.txt

Resources/Config/mod_download_svn.txt

Resources/Config/mod_indirect_main.txt

Resources/Config/mod_patterns.txt

Resources/Config/mozglue.dll

.dll windows:6 windows x86 arch:x86

c713bf0db98003111b03a1ee75c33ba6

Code Sign

4f:82:53:ef:ac:04:95:8e:45:bf:a6:04:be:01:a5:cb
Certificate

Issuer

CN=asymptomatic

Not Before

09/01/2025, 10:44

Not After

09/01/2026, 11:04

Subject

CN=asymptomatic

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

09:c5:cc:f8:bb:66:7d:71:37:aa:c1:59:80:06:cb:31
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

02/11/2023, 08:32

Not After

30/10/2034, 08:32

Subject

CN=Certum Timestamp 2023,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

e:\mozdev\obj-pm-x86-release\mozglue\build\mozglue.pdb

Imports

kernel32

IsDebuggerPresent

OutputDebugStringA

EncodePointer

DecodePointer

CloseHandle

InitializeCriticalSection

EnterCriticalSection

LeaveCriticalSection

GetCurrentProcess

GetCurrentThreadId

FlushInstructionCache

GetSystemInfo

VirtualAllocEx

VirtualProtectEx

CreateFileMappingW

MapViewOfFile

UnmapViewOfFile

GetModuleHandleA

GetModuleHandleW

GetProcAddress

LoadLibraryExA

VerifyVersionInfoA

TerminateProcess

GetEnvironmentVariableA

InitializeSRWLock

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

WriteFile

TlsGetValue

TlsSetValue

VirtualAlloc

VirtualFree

DisableThreadLibraryCalls

DuplicateHandle

GetLastError

SetEvent

WaitForSingleObject

CreateEventA

SignalObjectAndWait

GetCurrentThread

SuspendThread

ResumeThread

GetThreadContext

LocalFree

FormatMessageA

QueryPerformanceCounter

QueryPerformanceFrequency

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

GetProcessTimes

GetSystemTime

GetTickCount64

GetSystemTimeAdjustment

SystemTimeToFileTime

GetSystemTimeAsFileTime

CreateFileW

SearchPathW

TlsAlloc

VerSetConditionMask

GetCurrentProcessId

SetUnhandledExceptionFilter

UnhandledExceptionFilter

IsProcessorFeaturePresent

FreeLibrary

VirtualQuery

VirtualProtect

RaiseException

InitializeSListHead

advapi32

RegOpenKeyExW

RegCloseKey

RegQueryValueExW

msvcp140

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

?setprecision@std@@YA?AU?$_Smanip@_J@1@_J@Z

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Xlength_error@std@@YAXPBD@Z

?_Raise_handler@std@@3P6AXABVexception@stdext@@@ZA

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

vcruntime140

_except_handler4_common

memmove

__std_type_info_destroy_list

strchr

_except_handler3

memcpy

memchr

memset

api-ms-win-crt-runtime-l1-1-0

_errno

strerror

_invoke_watson

_seh_filter_dll

_configure_narrow_argv

_initialize_narrow_environment

_beginthreadex

_register_onexit_function

_execute_onexit_table

_crt_atexit

_cexit

_invalid_parameter_noinfo_noreturn

_initterm

_initterm_e

_initialize_onexit_table

api-ms-win-crt-string-l1-1-0

_strnicmp

isxdigit

strncpy

wcsncpy

_wcsnicmp

wcstok_s

_stricmp

api-ms-win-crt-stdio-l1-1-0

_close

_read

_open

__acrt_iob_func

fclose

__stdio_common_vfprintf

__stdio_common_vsprintf

fflush

_write

_wopen

_lseeki64

fputs

_dup

api-ms-win-crt-filesystem-l1-1-0

_wsplitpath_s

api-ms-win-crt-convert-l1-1-0

_ltoa

_strtoui64

wcstombs

api-ms-win-crt-math-l1-1-0

_fdopen

ceil

_dclass

api-ms-win-crt-heap-l1-1-0

malloc

free

api-ms-win-crt-environment-l1-1-0

getenv

Exports

??0Decimal@blink@@QAE@ABV01@@Z

??0Decimal@blink@@QAE@ABVEncodedData@01@@Z

??0Decimal@blink@@QAE@H@Z

??0Decimal@blink@@QAE@W4Sign@01@H_K@Z

??0SHA1Sum@mozilla@@QAE@XZ

??0TimeStampValue@mozilla@@AAE@_K0_N@Z

??4Decimal@blink@@QAEAAV01@ABV01@@Z

??8Decimal@blink@@QBE_NABV01@@Z

??9Decimal@blink@@QBE_NABV01@@Z

??DDecimal@blink@@QBE?AV01@ABV01@@Z

??GDecimal@blink@@QBE?AV01@ABV01@@Z

??GDecimal@blink@@QBE?AV01@XZ

??GTimeStampValue@mozilla@@QBE_KABV01@@Z

??HDecimal@blink@@QBE?AV01@ABV01@@Z

??KDecimal@blink@@QBE?AV01@ABV01@@Z

??MDecimal@blink@@QBE_NABV01@@Z

??NDecimal@blink@@QBE_NABV01@@Z

??ODecimal@blink@@QBE_NABV01@@Z

??PDecimal@blink@@QBE_NABV01@@Z

??XDecimal@blink@@QAEAAV01@ABV01@@Z

??YDecimal@blink@@QAEAAV01@ABV01@@Z

??YTimeStampValue@mozilla@@QAEAAV01@_J@Z

??ZDecimal@blink@@QAEAAV01@ABV01@@Z

??ZTimeStampValue@mozilla@@QAEAAV01@_J@Z

??_0Decimal@blink@@QAEAAV01@ABV01@@Z

??_FDecimal@blink@@QAEXXZ

?AcquireStackWalkWorkaroundLock@@YAXXZ

?CheckQPC@TimeStampValue@mozilla@@ABE_KABV12@@Z

?ComputeProcessUptime@TimeStamp@mozilla@@CA_KXZ

?CreateDecimalRepresentation@DoubleToStringConverter@double_conversion@@ABEXPBDHHHPAVStringBuilder@2@@Z

?CreateExponentialRepresentation@DoubleToStringConverter@double_conversion@@ABEXPBDHHPAVStringBuilder@2@@Z

?DllBlocklist_CheckStatus@@YA_NXZ

?DllBlocklist_Initialize@@YAXXZ

?DllBlocklist_SetInXPCOMLoadOnMainThread@@YAX_N@Z

?DllBlocklist_WriteNotes@@YAXPAX@Z

?DoubleToAscii@DoubleToStringConverter@double_conversion@@SAXNW4DtoaMode@12@HPADHPA_NPAH3@Z

?EcmaScriptConverter@DoubleToStringConverter@double_conversion@@SAABV12@XZ

?FramePointerStackWalk@mozilla@@YA_NP6AXIPAX00@ZII0PAPAX0@Z

?HandleSpecialValues@DoubleToStringConverter@double_conversion@@ABE_NNPAVStringBuilder@2@@Z

?HashBytes@mozilla@@YAIPBXI@Z

?IsFloat32Representable@mozilla@@YA_NN@Z

?MozDescribeCodeAddress@@YA_NPAXPAUMozCodeAddressDetails@@@Z

?MozFormatCodeAddress@@YAXPADIIPBXPBD2H2I@Z

?MozFormatCodeAddressDetails@@YAXPADIIPAXPBUMozCodeAddressDetails@@@Z

?MozStackWalk@@YA_NP6AXIPAX00@ZII0I0@Z

?Now@TimeStamp@mozilla@@CA?AV12@_N@Z

?ProcessCreation@TimeStamp@mozilla@@SA?AV12@AA_N@Z

?RecordProcessRestart@TimeStamp@mozilla@@SAXXZ

?ReleaseStackWalkWorkaroundLock@@YAXXZ

?ResolutionInTicks@BaseTimeDurationPlatformUtils@mozilla@@SA_JXZ

?Shutdown@TimeStamp@mozilla@@SAXXZ

?StackWalkInitCriticalAddress@@YAXXZ

?Startup@TimeStamp@mozilla@@SAXXZ

?TicksFromMilliseconds@BaseTimeDurationPlatformUtils@mozilla@@SA_JN@Z

?ToExponential@DoubleToStringConverter@double_conversion@@QBE_NNHPAVStringBuilder@2@@Z

?ToFixed@DoubleToStringConverter@double_conversion@@QBE_NNHPAVStringBuilder@2@@Z

?ToPrecision@DoubleToStringConverter@double_conversion@@QBE_NNHPA_NPAVStringBuilder@2@@Z

?ToSeconds@BaseTimeDurationPlatformUtils@mozilla@@SAN_J@Z

?ToSecondsSigDigits@BaseTimeDurationPlatformUtils@mozilla@@SAN_J@Z

?ToShortestIeeeNumber@DoubleToStringConverter@double_conversion@@ABE_NNPAVStringBuilder@2@W4DtoaMode@12@@Z

?TryAcquireStackWalkWorkaroundLock@@YA_NXZ

?Unused@mozilla@@3Uunused_t@1@B

?abs@Decimal@blink@@QBE?AV12@XZ

?alignOperands@Decimal@blink@@CA?AUAlignedOperands@12@ABV12@0@Z

?avx2_enabled@sse_private@mozilla@@3_NA

?avx_enabled@sse_private@mozilla@@3_NA

?ceil@Decimal@blink@@QBE?AV12@XZ

?compareTo@Decimal@blink@@ABE?AV12@ABV12@@Z

?compress@LZ4@Compression@mozilla@@SAIPBDIPAD@Z

?compressLimitedOutput@LZ4@Compression@mozilla@@SAIPBDIPADI@Z

?decompress@LZ4@Compression@mozilla@@SA_NPBDIPADIPAI@Z

?decompress@LZ4@Compression@mozilla@@SA_NPBDPADI@Z

?decompressPartial@LZ4@Compression@mozilla@@SA_NPBDIPADIPAI@Z

?finish@SHA1Sum@mozilla@@QAEXAAY0BE@E@Z

?floor@Decimal@blink@@QBE?AV12@XZ

?fromDouble@Decimal@blink@@SA?AV12@N@Z

?fromString@Decimal@blink@@SA?AV12@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

?gChaosFeatures@detail@mozilla@@3W4ChaosFeature@2@A

?gChaosModeCounter@detail@mozilla@@3V?$Atomic@I$01X@2@A

?gTwoCharEscapes@detail@mozilla@@3QBDB

?infinity@Decimal@blink@@SA?AV12@W4Sign@12@@Z

?kBase10MaximalLength@DoubleToStringConverter@double_conversion@@2HB

?mmx_enabled@sse_private@mozilla@@3_NA

?mozalloc_abort@@YAXQBD@Z

?mozalloc_handle_oom@@YAXI@Z

?mozalloc_set_oom_abort_handler@@YAXP6AXI@Z@Z

?nan@Decimal@blink@@SA?AV12@XZ

?remainder@Decimal@blink@@QBE?AV12@ABV12@@Z

?round@Decimal@blink@@QBE?AV12@XZ

?sse3_enabled@sse_private@mozilla@@3_NA

?sse4_1_enabled@sse_private@mozilla@@3_NA

?sse4_2_enabled@sse_private@mozilla@@3_NA

?sse4a_enabled@sse_private@mozilla@@3_NA

?ssse3_enabled@sse_private@mozilla@@3_NA

?toDouble@Decimal@blink@@QBENXZ

?toString@Decimal@blink@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ

?toString@Decimal@blink@@QBE_NPADI@Z

?update@SHA1Sum@mozilla@@QAEXPBXI@Z

?zero@Decimal@blink@@SA?AV12@W4Sign@12@@Z

MOZ_CrashOOL

MOZ_CrashPrintf

MOZ_Z_adler32

MOZ_Z_adler32_combine

MOZ_Z_compress

MOZ_Z_compress2

MOZ_Z_compressBound

MOZ_Z_crc32

MOZ_Z_crc32_combine

MOZ_Z_deflate

MOZ_Z_deflateBound

MOZ_Z_deflateCopy

MOZ_Z_deflateEnd

MOZ_Z_deflateInit2_

MOZ_Z_deflateInit_

MOZ_Z_deflateParams

MOZ_Z_deflatePending

MOZ_Z_deflatePrime

MOZ_Z_deflateReset

MOZ_Z_deflateResetKeep

MOZ_Z_deflateSetDictionary

MOZ_Z_deflateSetHeader

MOZ_Z_deflateTune

MOZ_Z_get_crc_table

MOZ_Z_gzbuffer

MOZ_Z_gzclearerr

MOZ_Z_gzclose

MOZ_Z_gzclose_r

MOZ_Z_gzclose_w

MOZ_Z_gzdirect

MOZ_Z_gzdopen

MOZ_Z_gzeof

MOZ_Z_gzerror

MOZ_Z_gzflush

MOZ_Z_gzgetc_

MOZ_Z_gzgets

MOZ_Z_gzoffset

MOZ_Z_gzoffset64

MOZ_Z_gzopen

MOZ_Z_gzopen64

MOZ_Z_gzopen_w

MOZ_Z_gzprintf

MOZ_Z_gzputc

MOZ_Z_gzputs

MOZ_Z_gzread

MOZ_Z_gzrewind

MOZ_Z_gzseek

MOZ_Z_gzseek64

MOZ_Z_gzsetparams

MOZ_Z_gztell

MOZ_Z_gztell64

MOZ_Z_gzungetc

MOZ_Z_gzvprintf

MOZ_Z_gzwrite

MOZ_Z_inflate

MOZ_Z_inflateBack

MOZ_Z_inflateBackEnd

MOZ_Z_inflateBackInit_

MOZ_Z_inflateCopy

MOZ_Z_inflateEnd

MOZ_Z_inflateGetDictionary

MOZ_Z_inflateGetHeader

MOZ_Z_inflateInit2_

MOZ_Z_inflateInit_

MOZ_Z_inflateMark

MOZ_Z_inflatePrime

MOZ_Z_inflateReset

MOZ_Z_inflateReset2

MOZ_Z_inflateResetKeep

MOZ_Z_inflateSetDictionary

MOZ_Z_inflateSync

MOZ_Z_inflateSyncPoint

MOZ_Z_inflateUndermine

MOZ_Z_uncompress

MOZ_Z_uncompress2

MOZ_Z_zError

MOZ_Z_zlibCompileFlags

MOZ_Z_zlibVersion

_HeapAlloc@12

_HeapFree@12

_HeapReAlloc@16

_aligned_free

_aligned_malloc

_expand

_malloc_message

_malloc_options

_msize

_recalloc

_strdup

_wcsdup

adler32_z

calloc

crc32_z

deflateGetDictionary

free

frex

gMozCrashReason

gMozillaPoisonBase

gMozillaPoisonSize

gMozillaPoisonValue

gzfread

gzfwrite

gzgetc

inflateCodesUsed

inflateValidate

jemalloc_free_dirty_pages

jemalloc_purge_freed_pages

jemalloc_stats

malloc

malloc_good_size

malloc_usable_size

mozPoisonValueInit

moz_malloc_size_of

moz_malloc_usable_size

moz_xcalloc

moz_xmalloc

moz_xrealloc

moz_xstrdup

posix_memalign

realloc

strdup

strndup

wcsdup

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/msvcp140.dll

.dll windows:6 windows x86 arch:x86

f593ff04f9974b184d6ead7e4e3e6cf5

Code Sign

33:00:00:02:55:18:1d:a4:2e:e0:86:fc:15:00:00:00:00:02:55
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/09/2021, 18:33

Not After

01/09/2022, 18:33

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

e6:14:54:e3:0d:21:7c:ec:df:3d:f8:f1:92:4e:25:e8:88:6d:22:c7:7e:8a:d7:06:c0:c4:8c:71:88:92:9f:9c
Signer

Actual PE Digest

e6:14:54:e3:0d:21:7c:ec:df:3d:f8:f1:92:4e:25:e8:88:6d:22:c7:7e:8a:d7:06:c0:c4:8c:71:88:92:9f:9c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\a\_work\1\s\\binaries\x86ret\bin\i386\\msvcp140.i386.pdb

Imports

vcruntime140

_except_handler4_common

__current_exception_context

memcmp

__uncaught_exceptions

__uncaught_exception

memchr

memmove

__std_terminate

_purecall

memset

memcpy

__CxxFrameHandler3

_CxxThrowException

__AdjustPointer

__current_exception

__std_exception_destroy

__std_type_info_destroy_list

__std_exception_copy

api-ms-win-crt-heap-l1-1-0

realloc

calloc

free

_callnewh

malloc

api-ms-win-crt-runtime-l1-1-0

abort

_register_onexit_function

_initialize_onexit_table

_initialize_narrow_environment

_initterm_e

_configure_narrow_argv

_seh_filter_dll

_initterm

_errno

_endthreadex

_beginthreadex

terminate

_set_new_handler

_invalid_parameter_noinfo_noreturn

_cexit

_execute_onexit_table

_crt_atexit

api-ms-win-crt-string-l1-1-0

isxdigit

isalnum

tolower

__strncnt

wcsnlen

isupper

iswxdigit

iswspace

wcscpy_s

isspace

isdigit

iswalnum

_wcsdup

iswdigit

islower

strcspn

api-ms-win-crt-locale-l1-1-0

_unlock_locales

___lc_locale_name_func

___lc_codepage_func

localeconv

__pctype_func

setlocale

_lock_locales

___mb_cur_max_func

___lc_collate_cp_func

api-ms-win-crt-stdio-l1-1-0

fputs

fgetwc

fputwc

ungetwc

fseek

_fsopen

_wfsopen

fwrite

__acrt_iob_func

_get_stream_buffer_pointers

fclose

fflush

fgetc

fgetpos

fputc

fread

fsetpos

_fseeki64

__stdio_common_vsprintf_s

setvbuf

ungetc

api-ms-win-crt-filesystem-l1-1-0

_wrmdir

_unlock_file

_wremove

_wchdir

_lock_file

_wrename

api-ms-win-crt-time-l1-1-0

_W_Getmonths

_W_Getdays

_W_Gettnames

_Wcsftime

_Gettnames

_Getmonths

_Getdays

_Strftime

api-ms-win-crt-environment-l1-1-0

_wgetcwd

api-ms-win-crt-math-l1-1-0

frexp

copysign

_CIpow

_CIlog

ldexp

copysignf

api-ms-win-crt-convert-l1-1-0

btowc

strtof

strtod

api-ms-win-crt-utility-l1-1-0

rand_s

kernel32

SubmitThreadpoolWork

CompareStringEx

MultiByteToWideChar

GetCPInfo

WideCharToMultiByte

LCMapStringEx

GetLocaleInfoEx

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

CreateDirectoryW

CreateFileW

FindClose

FindFirstFileExW

FindNextFileW

GetDiskFreeSpaceExW

GetFileAttributesExW

GetFileInformationByHandle

SetEndOfFile

InitializeSListHead

GetCurrentProcessId

TerminateProcess

GetCurrentProcess

SetUnhandledExceptionFilter

UnhandledExceptionFilter

IsDebuggerPresent

GetFileInformationByHandleEx

GetProcAddress

GetModuleHandleW

CloseThreadpoolWait

SetThreadpoolWait

CreateThreadpoolWait

CloseThreadpoolTimer

WaitForThreadpoolTimerCallbacks

SetThreadpoolTimer

CreateThreadpoolTimer

GetTickCount64

GetSystemTimeAsFileTime

GetCurrentProcessorNumber

FlushProcessWriteBuffers

CreateSemaphoreExW

CreateEventExW

SetFileInformationByHandle

InitOnceExecuteOnce

GetStringTypeW

QueryPerformanceFrequency

QueryPerformanceCounter

GetModuleHandleExW

CloseThreadpoolWork

RaiseException

CreateThreadpoolWork

FreeLibraryWhenCallbackReturns

IsProcessorFeaturePresent

RtlCaptureStackBackTrace

DeleteCriticalSection

TryEnterCriticalSection

InitializeCriticalSectionEx

LeaveCriticalSection

EnterCriticalSection

InitializeSRWLock

GetNativeSystemInfo

GetExitCodeThread

GetCurrentThreadId

SwitchToThread

Sleep

WaitForSingleObjectEx

SleepConditionVariableSRW

SleepConditionVariableCS

WakeAllConditionVariable

WakeConditionVariable

InitializeConditionVariable

FormatMessageA

LocalFree

DecodePointer

EncodePointer

CreateSymbolicLinkW

CreateHardLinkW

CopyFileW

GetLastError

CloseHandle

AreFileApisANSI

GetTempPathW

SetFileTime

SetFilePointerEx

SetFileAttributesW

Exports

??$_Getvals@_W@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z

??$_Getvals@_W@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z

??$_Getvals@_W@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z

??0?$_Yarn@D@std@@QAE@ABV01@@Z

??0?$_Yarn@D@std@@QAE@PBD@Z

??0?$_Yarn@D@std@@QAE@XZ

??0?$_Yarn@G@std@@QAE@ABV01@@Z

??0?$_Yarn@G@std@@QAE@PBG@Z

??0?$_Yarn@G@std@@QAE@XZ

??0?$_Yarn@_W@std@@QAE@ABV01@@Z

??0?$_Yarn@_W@std@@QAE@PB_W@Z

??0?$_Yarn@_W@std@@QAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$codecvt@DDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@DDU_Mbstatet@@@std@@QAE@I@Z

??0?$codecvt@GDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@GDU_Mbstatet@@@std@@QAE@I@Z

??0?$codecvt@_SDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@_SDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@KW4_Codecvt_mode@1@I@Z

??0?$codecvt@_SDU_Mbstatet@@@std@@QAE@I@Z

??0?$codecvt@_UDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@_UDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@KW4_Codecvt_mode@1@I@Z

??0?$codecvt@_UDU_Mbstatet@@@std@@QAE@I@Z

??0?$codecvt@_WDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@_WDU_Mbstatet@@@std@@QAE@I@Z

??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@D@std@@QAE@PBF_NI@Z

??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@G@std@@QAE@I@Z

??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@_W@std@@QAE@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0Init@ios_base@std@@QAE@XZ

??0_Facet_base@std@@QAE@ABV01@@Z

??0_Facet_base@std@@QAE@XZ

??0_Init_locks@std@@QAE@XZ

??0_Locimp@locale@std@@AAE@ABV012@@Z

??0_Locimp@locale@std@@AAE@_N@Z

??0_Locinfo@std@@QAE@HPBD@Z

??0_Locinfo@std@@QAE@PBD@Z

??0_Lockit@std@@QAE@H@Z

??0_Lockit@std@@QAE@XZ

??0_Timevec@std@@QAE@ABV01@@Z

??0_Timevec@std@@QAE@PAX@Z

??0_UShinit@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??0codecvt_base@std@@QAE@I@Z

??0ctype_base@std@@QAE@I@Z

??0facet@locale@std@@IAE@I@Z

??0id@locale@std@@QAE@I@Z

??0ios_base@std@@IAE@XZ

??0task_continuation_context@Concurrency@@AAE@XZ

??0time_base@std@@QAE@I@Z

??1?$_Yarn@D@std@@QAE@XZ

??1?$_Yarn@G@std@@QAE@XZ

??1?$_Yarn@_W@std@@QAE@XZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$codecvt@DDU_Mbstatet@@@std@@MAE@XZ

??1?$codecvt@GDU_Mbstatet@@@std@@MAE@XZ

??1?$codecvt@_SDU_Mbstatet@@@std@@MAE@XZ

??1?$codecvt@_UDU_Mbstatet@@@std@@MAE@XZ

??1?$codecvt@_WDU_Mbstatet@@@std@@MAE@XZ

??1?$ctype@D@std@@MAE@XZ

??1?$ctype@G@std@@MAE@XZ

??1?$ctype@_W@std@@MAE@XZ

??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1Init@ios_base@std@@QAE@XZ

??1_Facet_base@std@@UAE@XZ

??1_Init_locks@std@@QAE@XZ

??1_Locimp@locale@std@@MAE@XZ

??1_Locinfo@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

??1_Timevec@std@@QAE@XZ

??1_UShinit@std@@QAE@XZ

??1_Winit@std@@QAE@XZ

??1codecvt_base@std@@UAE@XZ

??1ctype_base@std@@UAE@XZ

??1facet@locale@std@@MAE@XZ

??1ios_base@std@@UAE@XZ

??1time_base@std@@UAE@XZ

??4?$_Iosb@H@std@@QAEAAV01@$$QAV01@@Z

??4?$_Iosb@H@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

??4?$_Yarn@G@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@G@std@@QAEAAV01@PBG@Z

??4?$_Yarn@_W@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@_W@std@@QAEAAV01@PB_W@Z

??4?$basic_iostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_iostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_istream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_istream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_ostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_ostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEAAV01@ABV01@@Z

??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEAAV01@ABV01@@Z

??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEAAV01@ABV01@@Z

??4Init@ios_base@std@@QAEAAV012@ABV012@@Z

??4_Crt_new_delete@std@@QAEAAU01@$$QAU01@@Z

??4_Crt_new_delete@std@@QAEAAU01@ABU01@@Z

??4_Facet_base@std@@QAEAAV01@ABV01@@Z

??4_Init_locks@std@@QAEAAV01@ABV01@@Z

??4_Timevec@std@@QAEAAV01@ABV01@@Z

??4_UShinit@std@@QAEAAV01@ABV01@@Z

??4_Winit@std@@QAEAAV01@ABV01@@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z

??7ios_base@std@@QBE_NXZ

??Bid@locale@std@@QAEIXZ

??Bios_base@std@@QBE_NXZ

??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$codecvt@DDU_Mbstatet@@@std@@6B@

??_7?$codecvt@GDU_Mbstatet@@@std@@6B@

??_7?$codecvt@_SDU_Mbstatet@@@std@@6B@

??_7?$codecvt@_UDU_Mbstatet@@@std@@6B@

??_7?$codecvt@_WDU_Mbstatet@@@std@@6B@

??_7?$ctype@D@std@@6B@

??_7?$ctype@G@std@@6B@

??_7?$ctype@_W@std@@6B@

??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7_Facet_base@std@@6B@

??_7_Locimp@locale@std@@6B@

??_7codecvt_base@std@@6B@

??_7ctype_base@std@@6B@

??_7facet@locale@std@@6B@

??_7ios_base@std@@6B@

??_7time_base@std@@6B@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@

??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@

??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_F?$codecvt@DDU_Mbstatet@@@std@@QAEXXZ

??_F?$codecvt@GDU_Mbstatet@@@std@@QAEXXZ

??_F?$codecvt@_SDU_Mbstatet@@@std@@QAEXXZ

??_F?$codecvt@_UDU_Mbstatet@@@std@@QAEXXZ

??_F?$codecvt@_WDU_Mbstatet@@@std@@QAEXXZ

??_F?$ctype@D@std@@QAEXXZ

??_F?$ctype@G@std@@QAEXXZ

??_F?$ctype@_W@std@@QAEXXZ

??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F_Locinfo@std@@QAEXXZ

??_F_Timevec@std@@QAEXXZ

??_Fcodecvt_base@std@@QAEXXZ

??_Fctype_base@std@@QAEXXZ

??_Ffacet@locale@std@@QAEXXZ

??_Fid@locale@std@@QAEXXZ

??_Ftime_base@std@@QAEXXZ

?CaptureCallstack@platform@details@Concurrency@@YAIPAPAXII@Z

?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ

?GetNextAsyncId@platform@details@Concurrency@@YAIXZ

?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AAEXXZ

?_Addcats@_Locinfo@std@@QAEAAV12@HPBD@Z

?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z

?_Addstd@ios_base@std@@SAXPAV12@@Z

?_Assign@_ContextCallback@details@Concurrency@@AAEXPAX@Z

?_Atexit@@YAXP6AXXZ@Z

?_BADOFF@std@@3_JB

?_C_str@?$_Yarn@D@std@@QBEPBDXZ

?_C_str@?$_Yarn@G@std@@QBEPBGXZ

?_C_str@?$_Yarn@_W@std@@QBEPB_WXZ

?_CallInContext@_ContextCallback@details@Concurrency@@QBEXV?$function@$$A6AXXZ@std@@_N@Z

?_Callfns@ios_base@std@@AAEXW4event@12@@Z

?_Capture@_ContextCallback@details@Concurrency@@AAEXXZ

?_Clocptr@_Locimp@locale@std@@0PAV123@A

?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ

?_Donarrow@?$ctype@G@std@@IBEDGD@Z

?_Donarrow@?$ctype@_W@std@@IBED_WD@Z

?_Dowiden@?$ctype@G@std@@IBEGD@Z

?_Dowiden@?$ctype@_W@std@@IBE_WD@Z

?_Empty@?$_Yarn@D@std@@QBE_NXZ

?_Empty@?$_Yarn@G@std@@QBE_NXZ

?_Empty@?$_Yarn@_W@std@@QBE_NXZ

?_Execute_once@std@@YAHAAUonce_flag@1@P6GHPAX1PAPAX@Z1@Z

?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z

?_Findarr@ios_base@std@@AAEAAU_Iosarray@12@H@Z

?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDI@Z

?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDI@Z

?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDI@Z

?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@GDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_SDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_UDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z

?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ

?_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ

?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ

?_Getdateorder@_Locinfo@std@@QBEHXZ

?_Getdays@_Locinfo@std@@QBEPBDXZ

?_Getfalse@_Locinfo@std@@QBEPBDXZ

?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z

?_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HABVlocale@2@@Z

?_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HABVlocale@2@@Z

?_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HABVlocale@2@@Z

?_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAAHABV?$ctype@D@2@@Z

?_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAAHABV?$ctype@G@2@@Z

?_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAAHABV?$ctype@_W@2@@Z

?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ

?_Getmonths@_Locinfo@std@@QBEPBDXZ

?_Getname@_Locinfo@std@@QBEPBDXZ

?_Getptr@_Timevec@std@@QBEPAXXZ

?_Gettnames@_Locinfo@std@@QBE?AV_Timevec@2@XZ

?_Gettrue@_Locinfo@std@@QBEPBDXZ

?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ

?_Gnavail@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IBE_JXZ

?_Gnavail@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBE_JXZ

?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gndec@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gnpreinc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gnpreinc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Id_cnt@id@locale@std@@0HA

?_Ifmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Ifmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Ifmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Incref@facet@locale@std@@UAEXXZ

?_Index@ios_base@std@@0HA

Sections

.text
Size: 390KB - Virtual size: 389KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/querytest.txt

Resources/Config/tagtests.txt

Resources/Config/test_vendor.txt

.js

Resources/Config/vcruntime140.dll

.dll windows:6 windows x86 arch:x86

2262054530b5f8bbeb0c4e3a111a37eb

Code Sign

33:00:00:02:55:18:1d:a4:2e:e0:86:fc:15:00:00:00:00:02:55
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/09/2021, 18:33

Not After

01/09/2022, 18:33

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

1c:6c:fe:48:d3:59:ba:dd:35:43:71:c0:c6:c1:b1:b5:66:74:ff:ce:da:3e:b9:77:39:2a:e0:03:87:66:af:76
Signer

Actual PE Digest

1c:6c:fe:48:d3:59:ba:dd:35:43:71:c0:c6:c1:b1:b5:66:74:ff:ce:da:3e:b9:77:39:2a:e0:03:87:66:af:76

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\a\_work\1\s\\binaries\x86ret\bin\i386\\vcruntime140.i386.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

terminate

abort

api-ms-win-crt-heap-l1-1-0

calloc

malloc

free

api-ms-win-crt-string-l1-1-0

strcpy_s

strncmp

wcsncmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

__stdio_common_vsprintf_s

api-ms-win-crt-convert-l1-1-0

atol

kernel32

LeaveCriticalSection

TerminateProcess

GetCurrentProcess

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCurrentProcessId

QueryPerformanceCounter

IsProcessorFeaturePresent

GetModuleHandleW

GetModuleFileNameW

LoadLibraryExW

GetProcAddress

FreeLibrary

TlsFree

RtlUnwind

VirtualQuery

EncodePointer

InterlockedPushEntrySList

InterlockedFlushSList

RaiseException

EnterCriticalSection

TlsGetValue

DeleteCriticalSection

GetLastError

SetLastError

InitializeCriticalSectionAndSpinCount

TlsAlloc

TlsSetValue

Exports

_CreateFrameInfo

_CxxThrowException

_EH_prolog

_FindAndUnlinkFrame

_IsExceptionObjectToBeDestroyed

_NLG_Dispatch2

_NLG_Return

_NLG_Return2

_SetWinRTOutOfMemoryExceptionCallback

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxLongjmpUnwind

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__GetPlatformExceptionInfo

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__TypeMatch

__current_exception

__current_exception_context

__intrinsic_setjmp

__processing_throw

__report_gsfailure

__std_exception_copy

__std_exception_destroy

__std_terminate

__std_type_info_compare

__std_type_info_destroy_list

__std_type_info_hash

__std_type_info_name

__telemetry_main_invoke_trigger

__telemetry_main_return_trigger

__unDName

__unDNameEx

__uncaught_exception

__uncaught_exceptions

__vcrt_GetModuleFileNameW

__vcrt_GetModuleHandleW

__vcrt_InitializeCriticalSectionEx

__vcrt_LoadLibraryExW

_chkesp

_except_handler2

_except_handler3

_except_handler4_common

_get_purecall_handler

_get_unexpected

_global_unwind2

_is_exception_typeof

_local_unwind2

_local_unwind4

_longjmpex

_purecall

_seh_longjmp_unwind

_seh_longjmp_unwind4

_set_purecall_handler

_set_se_translator

_setjmp3

longjmp

memchr

memcmp

memcpy

memmove

memset

set_unexpected

strchr

strrchr

strstr

unexpected

wcschr

wcsrchr

wcsstr

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Config/work_prune.txt

Resources/Data/Config/DisplayLanguageNames.de_CH.txt

Resources/Data/Config/DisplayLanguageNames.el_GR_PREEURO.txt

Resources/Data/Config/code6.txt

Resources/Data/Config/custom-hg-hello.txt

Resources/Data/Config/example.com_noroot_v1.0.1.txt

Resources/Data/Config/github.com_dmitshur-test_modtest5_v0.5.0-alpha.txt

Resources/Data/Config/mod_convert_glide.txt

Resources/Data/Config/mod_run_issue52331.txt

Resources/Data/Config/msg_30.txt

.eml

Resources/Data/Config/test_vendor.txt

.js

Resources/Data/Config/todo.txt

Resources/Data/Config/work_use_issue55952.txt

Resources/Data/DOMCharacterData_data_error_002.phpt

.js

Resources/Data/Microsoft.Azure.ActiveDirectory.GraphClient.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:00:70:f4:18:bf:23:21:fc:50:9d:00:00:00:00:00:70
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

20/03/2015, 17:32

Not After

20/06/2016, 17:32

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:F528-3777-8A76,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/06/2015, 17:42

Not After

04/09/2016, 17:42

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

5e:de:6d:6c:75:e6:b4:46:e8:c6:bd:38:7b:26:8e:f5:11:aa:4d:83
Signer

Actual PE Digest

5e:de:6d:6c:75:e6:b4:46:e8:c6:bd:38:7b:26:8e:f5:11:aa:4d:83

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

x:\bt\541172\repo\src\dev\RestServices\GraphClientLibrary\Version1.5s\obj\amd64\Microsoft.Azure.ActiveDirectory.GraphClient.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 536KB - Virtual size: 536KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Data/add_007.phpt

.js

Resources/Data/array_multisort_basic2.phpt

Resources/Data/bug47254.phpt

Resources/Data/bug75420.7.phpt

Resources/Data/bug76601-reload-child-signals.phpt

Resources/Data/const.h

Resources/Data/cpu_usage.png

.png

Resources/Data/create_new_phar_b.phpt

Resources/Data/dom_test.inc

.ps1

Resources/Data/ftp_mlsd_missing_directory.phpt

Resources/Data/htwj

Resources/Data/info/Comparisons.pdf

.pdf

Resources/Data/info/DIC Swatch ReadMe.pdf

.pdf

Resources/Data/info/Design-issues.pdf

.pdf

Resources/Data/info/How-To CFF Extension.pdf

.pdf

Resources/Data/info/Introduction.pdf

.pdf

Resources/Data/info/NEWS.pdf

.pdf

Resources/Data/info/approximate.pdf

.pdf

Resources/Data/info/compete.pdf

.pdf

Resources/Data/info/concordance.pdf

.pdf

Resources/Data/info/population.pdf

.pdf

Resources/Data/info/tiedtimes.pdf

.pdf

Resources/Data/info/timedep.pdf

.pdf

Resources/Data/info/viewports.pdf

.pdf

Resources/Data/maddisAsm_.bpl

.dll windows:5 windows x86 arch:x86

22531f752b354d949452fbdf15d6da72

Code Sign

8b:a1:f1:72:fd:50:ba:8d:4c:11:b7:4f:fa:c8:a2:82
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/03/2021, 00:00

Not After

24/03/2024, 23:59

Subject

CN=IObit CO.\, LTD,O=IObit CO.\, LTD,POSTALCODE=610042,STREET=No. 605\, 6th Floor\, Unit 1\, Building 1+STREET=45 Renmin South Road,L=Chengdu Shi,ST=Sichuan Sheng,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

8b:a1:f1:72:fd:50:ba:8d:4c:11:b7:4f:fa:c8:a2:82
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/03/2021, 00:00

Not After

24/03/2024, 23:59

Subject

CN=IObit CO.\, LTD,O=IObit CO.\, LTD,POSTALCODE=610042,STREET=No. 605\, 6th Floor\, Unit 1\, Building 1+STREET=45 Renmin South Road,L=Chengdu Shi,ST=Sichuan Sheng,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

97:54:65:bc:6d:2d:fe:cd:12:15:a8:43:26:3e:63:d6:0e:1b:86:0f:3b:97:8e:c8:5f:ff:f5:fa:00:3e:4e:f3
Signer

Actual PE Digest

97:54:65:bc:6d:2d:fe:cd:12:15:a8:43:26:3e:63:d6:0e:1b:86:0f:3b:97:8e:c8:5f:ff:f5:fa:00:3e:4e:f3

Digest Algorithm

sha256

PE Digest Matches

true

86:63:ac:7d:5b:62:b0:c2:2d:7d:9a:db:47:eb:76:77:23:b6:90:72
Signer

Actual PE Digest

86:63:ac:7d:5b:62:b0:c2:2d:7d:9a:db:47:eb:76:77:23:b6:90:72

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

IMAGE_FILE_BYTES_REVERSED_HI

Imports

rtl120.bpl

@System@initialization$qqrv

@System@Finalization$qqrv

@System@UnregisterModule$qqrp17System@TLibModule

@System@RegisterModule$qqrp17System@TLibModule

@System@@DynArrayClear$qqrrpvpv

@System@@DynArraySetLength$qqrv

@System@@DynArrayHigh$qqrv

@System@@DynArrayLength$qqrv

@System@@Dispose$qqrpvt1

@System@@New$qqripv

@System@@CopyRecord$qqrv

@System@@Finalize$qqrpvt1

@System@@FinalizeRecord$qqrpvt1

@System@@UStrLen$qqrx20System@UnicodeString

@System@@LStrFromUStr$qqrr27System@%AnsiStringT$us$i0$%x20System@UnicodeStringus

@System@@UStrArrayClr$qqrpvi

@System@@UStrClr$qqrpv

@System@@LStrSetLength$qqrv

@System@@LStrInsert$qqrv

@System@@LStrDelete$qqrv

@System@@UniqueStringA$qqrr27System@%AnsiStringT$us$i0$%

@System@@LStrToPChar$qqrx27System@%AnsiStringT$us$i0$%

@System@@LStrAddRef$qqrpv

@System@@LStrCatN$qqrv

@System@@LStrCat3$qqrv

@System@@LStrCat$qqrv

@System@@PCharLen$qqrpc

@System@@LStrLen$qqrx27System@%AnsiStringT$us$i0$%

@System@@LStrFromString$qqrr27System@%AnsiStringT$us$i0$%rx28System@%SmallString$iuc$255%us

@System@@LStrFromPWChar$qqrr27System@%AnsiStringT$us$i0$%pbus

@System@@LStrFromPChar$qqrr27System@%AnsiStringT$us$i0$%pcus

@System@@EnsureAnsiString$qqrr27System@%AnsiStringT$us$i0$%us

@System@@LStrFromPCharLen$qqrr27System@%AnsiStringT$us$i0$%pcius

@System@@LStrLAsg$qqrpvpxv

@System@@LStrAsg$qqrpvpxv

@System@@LStrArrayClr$qqrpvi

@System@@LStrClr$qqrpv

@System@@RunError$qqruc

@System@@Halt0$qqrv

@System@@PackageUnload$qqrpx23System@PackageInfoTablep17System@TLibModule

@System@@PackageLoad$qqrpx23System@PackageInfoTablep17System@TLibModule

@System@@DoneExcept$qqrv

@System@@HandleAutoException$qqrv

@System@@HandleFinally$qqrv

@System@@HandleOnException$qqrv

@System@@HandleAnyException$qqrv

@System@TObject@ClassName$qqrv

@System@@_CToPasStr$qqrp28System@%SmallString$iuc$255%pxc

@System@@FillChar$qqrpvib

@System@Move$qqrpxvpvi

@$xp$17System@AnsiString

@$xp$7Integer

kernel32

TlsSetValue

TlsGetValue

TlsFree

TlsAlloc

LocalFree

LocalAlloc

FreeLibrary

VirtualQuery

VirtualProtect

GetVersion

GetProcAddress

GetModuleHandleA

GetModuleHandleW

GetModuleFileNameA

GetCurrentThreadId

GetCurrentProcessId

FreeLibrary

madbasic_.bpl

@Madtools@initialization$qqrv

@Madtools@Finalization$qqrv

@Madtools@GetImageProcName$qqruipvo

@Madtools@GetImageProcAddress$qqruix27System@%AnsiStringT$us$i0$%o

@Madtools@GetSizeOfImage$qqrp17_IMAGE_NT_HEADERS

@Madtools@GetImageNtHeaders$qqrui

@Madtools@FindModule$qqrpvruir27System@%AnsiStringT$us$i0$%

@Madtools@FindModuleA

@Madstrings@initialization$qqrv

@Madstrings@Finalization$qqrv

@Madstrings@AnsiToWideEx$qqrx27System@%AnsiStringT$us$i0$%o

@Madstrings@DecryptStr$qqrx27System@%AnsiStringT$us$i0$%

@Madstrings@IntToHexExA$qqrjic

@Madstrings@IntToHexExA$qqruiic

@Madstrings@IntToStrExA$qqrjic

@Madstrings@IntToStrExA$qqruiic

@Madstrings@IntToHexExA$qqriic

@Madstrings@IntToStrExA$qqriic

@Madstrings@CNtDll

@Madstrings@ErrorCodeToStrA

@Madstrings@SubStrA

@Madstrings@SubStrCountA

@Madstrings@FillStrA

@Madstrings@PosStrA

@Madstrings@ReplaceStrA

Exports

@$xp$23Maddisasm@TFunctionInfo

@$xp$27Maddisasm@_TFunctionInfo@_1

@$xp$27Maddisasm@_TFunctionInfo@_2

@$xp$27Maddisasm@_TFunctionInfo@_3

@$xp$27Maddisasm@_TFunctionInfo@_4

@GetPackageInfoTable

@Maddisasm@BcbInitExceptBlockLDTC

@Maddisasm@CErrorStr_BadFunction

@Maddisasm@CErrorStr_CodeNotInterceptable

@Maddisasm@CErrorStr_DoubleHook

@Maddisasm@CErrorStr_InvalidCode

@Maddisasm@CErrorStr_UnknownTarget

@Maddisasm@CKernel32

@Maddisasm@CKernelbase

@Maddisasm@CReadProcessMemory

@Maddisasm@CWriteProcessMemory

@Maddisasm@EndTryRead$qqrui

@Maddisasm@Finalization$qqrv

@Maddisasm@GetExportDirectory$qqrpvruirp30Madtools@TImageExportDirectory

@Maddisasm@GetLineNumber

@Maddisasm@GetProcNameFromMapFile

@Maddisasm@IsBadReadPtrEx$qqrpvuiui

@Maddisasm@KernelProc$qqrx27System@%AnsiStringT$us$i0$%o

@Maddisasm@Magic$qqrv

@Maddisasm@Magic95$qqrv

@Maddisasm@NtProc$qqrx27System@%AnsiStringT$us$i0$%o

@Maddisasm@ParseCode$qqrpv

@Maddisasm@ParseCode$qqrpvr27System@%AnsiStringT$us$i0$%

@Maddisasm@ParseCode_$qqrpvui

@Maddisasm@ParseFunction$qqrpv

@Maddisasm@ParseFunction$qqrpvr27System@%AnsiStringT$us$i0$%

@Maddisasm@ParseFunctionEx$qqrpvr27System@%AnsiStringT$us$i0$%t1io

@Maddisasm@ParseFunction_$qqrpvuit1t1t1t1t1

@Maddisasm@SolveW9xDebugMode$qqrpv

@Maddisasm@StartTryRead$qqrv

@Maddisasm@TryRead$qqrpvt1uiui

@Maddisasm@TryWrite$qqrpvt1ui

@Maddisasm@initialization$qqrv

@Maddisasm@kernel32handle$qqrv

@Maddisasm@ntdllhandle$qqrv

@Maddisasm_@@GetPackageInfoTable$qqrv

@Maddisasm_@@PackageLoad$qqrv

@Maddisasm_@@PackageUnload$qqrv

@Maddisasm_@initialization$qqrv

Finalize

Initialize

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 28B

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 35B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Resources/Data/madexcept_.bpl

.dll windows:5 windows x86 arch:x86

2a873ab64f922b5d3d6841d9d0c267c9

Code Sign

8b:a1:f1:72:fd:50:ba:8d:4c:11:b7:4f:fa:c8:a2:82
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/03/2021, 00:00

Not After

24/03/2024, 23:59

Subject

CN=IObit CO.\, LTD,O=IObit CO.\, LTD,POSTALCODE=610042,STREET=No. 605\, 6th Floor\, Unit 1\, Building 1+STREET=45 Renmin South Road,L=Chengdu Shi,ST=Sichuan Sheng,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

8b:a1:f1:72:fd:50:ba:8d:4c:11:b7:4f:fa:c8:a2:82
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/03/2021, 00:00

Not After

24/03/2024, 23:59

Subject

CN=IObit CO.\, LTD,O=IObit CO.\, LTD,POSTALCODE=610042,STREET=No. 605\, 6th Floor\, Unit 1\, Building 1+STREET=45 Renmin South Road,L=Chengdu Shi,ST=Sichuan Sheng,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

11:4b:76:4e:2b:41:cb:1b:95:70:54:99:38:8d:f2:a8:cc:5c:4d:40:25:65:05:6f:f0:03:9d:90:17:ce:d8:12
Signer

Actual PE Digest

11:4b:76:4e:2b:41:cb:1b:95:70:54:99:38:8d:f2:a8:cc:5c:4d:40:25:65:05:6f:f0:03:9d:90:17:ce:d8:12

Digest Algorithm

sha256

PE Digest Matches

true

51:74:ae:ed:65:ef:35:43:6d:9a:4d:f2:bf:a2:f3:d7:2c:39:12:67
Signer

Actual PE Digest

51:74:ae:ed:65:ef:35:43:6d:9a:4d:f2:bf:a2:f3:d7:2c:39:12:67

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

IMAGE_FILE_BYTES_REVERSED_HI

Imports

rtl120.bpl

@System@initialization$qqrv

@System@Finalization$qqrv

@System@LoadResString$qqrp20System@TResStringRec

@System@FreeMemory$qpv

@System@TInterfacedObject@_Release$qqsv

@System@TInterfacedObject@_AddRef$qqsv

@System@TInterfacedObject@QueryInterface$qqsrx5_GUIDpv

@System@TInterfacedObject@NewInstance$qqrv

@System@TInterfacedObject@BeforeDestruction$qqrv

@System@TInterfacedObject@AfterConstruction$qqrv

@System@@IntfAddRef$qqrx45System@%DelphiInterface$t17System@IInterface%

@System@@IntfCast$qqrr45System@%DelphiInterface$t17System@IInterface%x45System@%DelphiInterface$t17System@IInterface%rx5_GUID

@System@@IntfCopy$qqrr45System@%DelphiInterface$t17System@IInterface%x45System@%DelphiInterface$t17System@IInterface%

@System@@IntfClear$qqrr45System@%DelphiInterface$t17System@IInterface%

@System@UnregisterModule$qqrp17System@TLibModule

@System@RegisterModule$qqrp17System@TLibModule

@System@FindResourceHInstance$qqrui

@System@@DynArrayAddRef$qqrv

@System@@DynArrayAsg$qqrv

@System@@DynArrayClear$qqrrpvpv

@System@@DynArrayCopyRange$qqrpvt1iirpv

@System@@DynArrayCopy$qqrpvt1rpv

@System@@DynArraySetLength$qqrv

@System@@DynArrayHigh$qqrv

@System@@DynArrayLength$qqrv

@System@@_llshl$qqrv

@System@@_llmod$qqrv

@System@@_lldiv$qqrv

@System@@_llmul$qqrv

@System@@CopyRecord$qqrv

@System@@Finalize$qqrpvt1

@System@@FinalizeArray$qqrpvt1ui

@System@@FinalizeRecord$qqrpvt1

@System@@InitializeRecord$qqrpvt1

@System@@UniqueStringU$qqrr20System@UnicodeString

@System@@Write0UString$qqrr15System@TTextRecx20System@UnicodeString

@System@@UStrInsert$qqrx20System@UnicodeStringr20System@UnicodeStringi

@System@@UStrDelete$qqrr20System@UnicodeStringii

@System@@UStrCopy$qqrx20System@UnicodeStringii

@System@@UStrEqual$qqrv

@System@@UStrCatN$qqrv

@System@@UStrCat3$qqrr20System@UnicodeStringx20System@UnicodeStringt2

@System@@UStrCat$qqrr20System@UnicodeStringx20System@UnicodeString

@System@@UStrSetLength$qqrr20System@UnicodeStringi

@System@@UStrLen$qqrx20System@UnicodeString

@System@@UStrFromString$qqrr20System@UnicodeStringrx28System@%SmallString$iuc$255%

@System@@WStrFromUStr$qqrr17System@WideStringx20System@UnicodeString

@System@@UStrFromWStr$qqrr20System@UnicodeStringx17System@WideString

@System@@LStrFromUStr$qqrr27System@%AnsiStringT$us$i0$%x20System@UnicodeStringus

@System@@UStrFromLStr$qqrr20System@UnicodeStringx27System@%AnsiStringT$us$i0$%

@System@@UStrFromWArray$qqrr20System@UnicodeStringpbi

@System@@UStrFromArray$qqrr20System@UnicodeStringpci

@System@@UStrFromPWChar$qqrr20System@UnicodeStringpb

@System@@UStrFromWChar$qqrr20System@UnicodeStringb

@System@@UStrFromPWCharLen$qqrr20System@UnicodeStringpbi

@System@@UStrToPWChar$qqrx20System@UnicodeString

@System@@UStrLAsg$qqrr20System@UnicodeStringx20System@UnicodeString

@System@@UStrAsg$qqrr20System@UnicodeStringx20System@UnicodeString

@System@@UStrArrayClr$qqrpvi

@System@@UStrClr$qqrpv

@System@@UStrAddRef$qqrpv

@System@@WStrClr$qqrpv

@System@@Write0LString$qqrr15System@TTextRecx27System@%AnsiStringT$us$i0$%

@System@@LStrSetLength$qqrv

@System@@LStrInsert$qqrv

@System@@LStrDelete$qqrv

@System@@LStrCopy$qqrv

@System@@UniqueStringA$qqrr27System@%AnsiStringT$us$i0$%

@System@@LStrToPChar$qqrx27System@%AnsiStringT$us$i0$%

@System@@LStrAddRef$qqrpv

@System@@LStrEqual$qqrv

@System@@LStrCatN$qqrv

@System@@LStrCat3$qqrv

@System@@LStrCat$qqrv

@System@@PCharLen$qqrpc

@System@@LStrLen$qqrx27System@%AnsiStringT$us$i0$%

@System@@LStrFromArray$qqrr27System@%AnsiStringT$us$i0$%pcius

@System@@LStrFromString$qqrr27System@%AnsiStringT$us$i0$%rx28System@%SmallString$iuc$255%us

@System@@LStrFromPWChar$qqrr27System@%AnsiStringT$us$i0$%pbus

@System@@LStrFromPChar$qqrr27System@%AnsiStringT$us$i0$%pcus

@System@@LStrFromChar$qqrr27System@%AnsiStringT$us$i0$%cus

@System@@EnsureAnsiString$qqrr27System@%AnsiStringT$us$i0$%us

@System@@EnsureUnicodeString$qqrr20System@UnicodeString

@System@@LStrFromPCharLen$qqrr27System@%AnsiStringT$us$i0$%pcius

@System@@LStrLAsg$qqrpvpxv

@System@@LStrAsg$qqrpvpxv

@System@@LStrArrayClr$qqrpvi

@System@@LStrClr$qqrpv

@System@BeginThread$qqrpvuipqqrpv$it1uirui

@System@@RunError$qqruc

@System@@Halt$qqri

@System@@Halt0$qqrv

@System@@PackageUnload$qqrpx23System@PackageInfoTablep17System@TLibModule

@System@@PackageLoad$qqrpx23System@PackageInfoTablep17System@TLibModule

@System@@TryFinallyExit$qqrv

@System@@DoneExcept$qqrv

@System@@RaiseAgain$qqrv

@System@@RaiseExcept$qqrv

@System@@HandleAutoException$qqrv

@System@@HandleFinally$qqrv

@System@@HandleOnException$qqrv

@System@@HandleAnyException$qqrv

@System@@BeforeDestruction$qqrp14System@TObjectzc

@System@@AfterConstruction$qqrp14System@TObject

@System@@ClassDestroy$qqrp14System@TObject

@System@@ClassCreate$qqrp17System@TMetaClasso

@System@TObject@Dispatch$qqrpv

@System@TObject@BeforeDestruction$qqrv

@System@TObject@AfterConstruction$qqrv

@System@TObject@DefaultHandler$qqrpv

@System@TObject@ToString$qqrv

@System@TObject@SafeCallException$qqrp14System@TObjectpv

@System@TObject@ClassInfo$qqrv

@System@@IsClass$qqrp14System@TObjectp17System@TMetaClass

@System@TObject@GetHashCode$qqrv

@System@TObject@Equals$qqrp14System@TObject

@System@TObject@Free$qqrv

@System@TObject@$bdtr$qqrv

@System@TObject@$bctr$qqrv

@System@TObject@InstanceSize$qqrv

@System@TObject@FreeInstance$qqrv

@System@TObject@NewInstance$qqrv

@System@TObject@ClassName$qqrv

@System@TObject@ClassType$qqrv

@System@@WriteLn$qqrr15System@TTextRec

@System@@FillChar$qqrpvib

@System@@ROUND$qqrv

@System@Get8087CW$qqrv

@System@Set8087CW$qqrus

@System@ParamCount$qqrv

@System@Move$qqrpxvpvi

@System@@_IOTest$qqrv

@System@RaiseList$qqrv

@System@AcquireExceptionObject$qqrv

@System@ExceptObject$qqrv

@System@GetMemoryManager$qqrr23System@TMemoryManagerEx

@System@GetMemoryManager$qqrr21System@TMemoryManager

@System@@ReallocMem$qqrrpvi

@System@@FreeMem$qqrpv

@System@@GetMem$qqri

@System@DebugHook

@System@Output

@System@IsMultiThread

@System@IsConsole

@System@ErrorAddr

@System@IsLibrary

@System@MainThreadID

@System@RaiseExceptionProc

@System@ExceptObjProc

@System@TInterfacedObject@

@$xp$17System@IInterface

@$xp$14System@TObject

@System@TObject@

@$xp$17System@AnsiString

@$xp$13System@string

@$xp$8Cardinal

@$xp$7Integer

@$xp$7Boolean

@Activex@Succeeded$qqrl

@Sysconst@_SModuleAccessViolation

@Sysconst@_SExternalException

@Sysconst@_SWriteAccess

@Sysconst@_SReadAccess

@Sysconst@_SPrivilege

@Sysconst@_SControlC

@Sysconst@_SStackOverflow

@Sysconst@_SUnderflow

@Sysconst@_SOverflow

@Sysconst@_SZeroDivide

@Sysconst@_SInvalidOp

@Sysconst@_SIntOverflow

@Sysconst@_SRangeError

@Sysconst@_SDivByZero

@Typinfo@initialization$qqrv

@Typinfo@Finalization$qqrv

@Typinfo@GetInt64Prop$qqrp14System@TObjectp17Typinfo@TPropInfo

@Typinfo@GetVariantProp$qqrp14System@TObjectp17Typinfo@TPropInfo

@Typinfo@GetFloatProp$qqrp14System@TObjectp17Typinfo@TPropInfo

@Typinfo@GetUnicodeStrProp$qqrp14System@TObjectp17Typinfo@TPropInfo

@Typinfo@GetWideStrProp$qqrp14System@TObjectp17Typinfo@TPropInfo

@Typinfo@GetStrProp$qqrp14System@TObjectp17Typinfo@TPropInfo

@Typinfo@GetOrdProp$qqrp14System@TObjectp17Typinfo@TPropInfo

@Typinfo@GetPropList$qqrp17Typinfo@TTypeInfo46System@%Set$t17Typinfo@TTypeKind$iuc$0$iuc$18%p50System@%StaticArray$p17Typinfo@TPropInfoi$i16380$%o

@Typinfo@GetEnumName$qqrp17Typinfo@TTypeInfoi

@Typinfo@GetTypeData$qqrp17Typinfo@TTypeInfo

@Sysutils@initialization$qqrv

@Sysutils@Finalization$qqrv

@Sysutils@FloatToStr$qqrg

@Variants@initialization$qqrv

@Variants@Finalization$qqrv

@Variants@@VarAdd$qqrr8TVarDatarx8TVarData

@Variants@@VarFromUStr$qqrr8TVarDatax20System@UnicodeString

@Variants@@VarToUStr$qqrr20System@UnicodeStringrx8TVarData

@Variants@@VarClr$qqrr8TVarData

@Varutils@initialization$qqrv

@Varutils@Finalization$qqrv

kernel32

TlsSetValue

TlsGetValue

TlsFree

TlsAlloc

LocalFree

LocalAlloc

FreeLibrary

lstrcmpiW

WriteFile

WaitForSingleObject

VirtualQuery

VirtualProtect

VirtualFree

VirtualAlloc

UnmapViewOfFile

TerminateThread

TerminateProcess

SystemTimeToFileTime

SuspendThread

Sleep

SizeofResource

SetUnhandledExceptionFilter

SetThreadPriority

SetLastError

SetFilePointer

SetFileAttributesA

SetFileAttributesW

SetEvent

SetErrorMode

SetEndOfFile

ResumeThread

ResetEvent

RemoveDirectoryA

RemoveDirectoryW

ReleaseMutex

ReadProcessMemory

ReadFile

RaiseException

QueryPerformanceFrequency

QueryPerformanceCounter

OpenProcess

OpenFileMappingA

OpenFileMappingW

MapViewOfFile

LockResource

LocalSize

LocalFree

LocalAlloc

LoadResource

LoadLibraryA

LoadLibraryW

LeaveCriticalSection

IsBadReadPtr

InitializeCriticalSection

GlobalUnlock

GlobalMemoryStatus

GlobalLock

GlobalFree

GlobalAlloc

GetWindowsDirectoryA

GetVersion

GetTickCount

GetThreadPriority

GetThreadContext

GetTempPathA

GetTempPathW

GetSystemTime

GetSystemDirectoryW

GetProcAddress

GetPriorityClass

GetModuleHandleA

GetModuleHandleW

GetModuleFileNameA

GetModuleFileNameW

GetLocaleInfoA

GetLocaleInfoW

GetLocalTime

GetLastError

GetFileSize

GetFileAttributesA

GetFileAttributesW

GetDiskFreeSpaceA

GetCurrentThreadId

GetCurrentThread

GetCurrentProcessId

GetCurrentProcess

GetCurrentDirectoryA

GetCurrentDirectoryW

GetComputerNameA

GetComputerNameW

GetCommandLineA

GetCommandLineW

FreeResource

InterlockedIncrement

InterlockedDecrement

FreeLibrary

FlushInstructionCache

FindResourceA

FindResourceW

FindNextFileA

FindNextFileW

FindFirstFileA

FindFirstFileW

FindClose

FileTimeToSystemTime

FileTimeToLocalFileTime

FileTimeToDosDateTime

ExpandEnvironmentStringsA

ExpandEnvironmentStringsW

ExitThread

ExitProcess

EnterCriticalSection

DuplicateHandle

DeleteFileA

DeleteFileW

DeleteCriticalSection

CreateThread

CreateProcessA

CreateProcessW

CreatePipe

CreateMutexA

CreateMutexW

CreateFileMappingA

CreateFileMappingW

CreateFileA

CreateFileW

CreateEventA

CreateEventW

CreateDirectoryA

CreateDirectoryW

CopyFileA

CopyFileW

CloseHandle

Beep

RtlUnwind

user32

CreateWindowExA

CreateWindowExW

WindowFromPoint

TranslateMessage

SystemParametersInfoW

ShowWindow

SetWindowTextA

SetWindowTextW

SetWindowPos

SetWindowLongA

SetWindowLongW

SetTimer

SetRect

SetForegroundWindow

SetFocus

SetCursor

SetClipboardData

SetCapture

SetActiveWindow

SendMessageTimeoutA

SendMessageA

SendMessageW

ScreenToClient

RemoveMenu

ReleaseDC

ReleaseCapture

RegisterWindowMessageW

RegisterClassA

RegisterClassW

PostThreadMessageA

PostThreadMessageW

PostQuitMessage

PostMessageA

PostMessageW

PeekMessageA

PeekMessageW

OpenClipboard

OffsetRect

MessageBoxA

MessageBoxW

MessageBeep

LoadImageA

LoadImageW

LoadCursorW

KillTimer

IsWindowVisible

IsWindowUnicode

IsWindowEnabled

IsWindow

IsIconic

IsDialogMessageW

InvalidateRect

InflateRect

GetWindowThreadProcessId

GetWindowTextA

GetWindowTextW

GetWindowRect

GetWindowPlacement

GetWindowLongA

GetWindowLongW

GetWindowDC

GetSystemMetrics

GetSystemMenu

GetSysColorBrush

GetSysColor

GetWindow

GetMessageA

GetMessageW

GetKeyState

GetIconInfo

GetFocus

GetDC

GetCursorPos

GetCursor

GetClientRect

GetClassNameA

GetCapture

FrameRect

FindWindowA

FillRect

EnumWindows

EndPaint

EnableWindow

EmptyClipboard

DrawTextA

DrawTextW

DrawIconEx

DrawFrameControl

DrawFocusRect

DispatchMessageW

DestroyWindow

DefWindowProcA

DefWindowProcW

CloseClipboard

CallWindowProcA

CallWindowProcW

BringWindowToTop

BeginPaint

AttachThreadInput

gdi32

TextOutA

TextOutW

StartPage

StartDocA

StartDocW

SetTextColor

SetMapMode

SetBkMode

SetBkColor

SelectObject

SelectClipRgn

MoveToEx

LineTo

GetTextMetricsW

GetTextFaceA

GetTextExtentPoint32A

GetTextExtentPoint32W

GetStockObject

GetRgnBox

GetObjectW

GetDeviceCaps

GdiFlush

EndPage

EndDoc

DeleteObject

DeleteDC

CreateSolidBrush

CreateRectRgnIndirect

CreatePen

CreateFontA

CreateFontW

CreateDIBSection

CreateDCW

CreateCompatibleDC

CombineRgn

BitBlt

advapi32

SetSecurityDescriptorDacl

RegSetValueExA

RegSetValueExW

RegQueryValueExA

RegQueryValueExW

RegQueryInfoKeyA

RegOpenKeyExA

RegOpenKeyExW

RegEnumKeyA

RegDeleteValueA

RegDeleteValueW

RegCreateKeyExA

RegCreateKeyExW

RegCloseKey

OpenProcessToken

InitializeSecurityDescriptor

GetUserNameA

GetUserNameW

GetTokenInformation

FreeSid

AllocateAndInitializeSid

madbasic_.bpl

@Madtypes@MadException@$bdtr$qqrv

@Madtypes@MadException@Create$qqrx20System@UnicodeString

@$xp$21Madtypes@MadException

@Madtypes@MadException@

@Madtypes@MadException@CleanUpStackInfoProc

@$xp$25Madtypes@TDAUnicodeString

@$xp$22Madtypes@TDAAnsiString

@$xp$22Madtypes@TDANativeUInt

@$xp$19Madtypes@TDAInteger

@$xp$20Madtypes@TDACardinal

@$xp$20Madtypes@TDASmallInt

@Madstrings@initialization$qqrv

@Madstrings@Finalization$qqrv

@Madstrings@ExtractFileExtW$qqrx20System@UnicodeString

@Madstrings@ExtractFileDriveW$qqrx20System@UnicodeString

@Madstrings@ExtractFilePathW$qqrx20System@UnicodeString

@Madstrings@ExtractFileNameW$qqrx20System@UnicodeString

@Madstrings@IsValidIdentW$qqrx20System@UnicodeStringo

@Madstrings@EncodeUtf8$qqrx20System@UnicodeString

@Madstrings@DecodeUtf8$qqrx27System@%AnsiStringT$us$i0$%

@Madstrings@ErrorCodeToStrW$qqrui

@Madstrings@SizeToStrW$qqrj

@Madstrings@IntToHexExW$qqruiib

@Madstrings@IntToStrExW$qqrjib

@Madstrings@IntToStrExW$qqruiib

@Madstrings@IntToHexExW$qqriib

@Madstrings@IntToStrExW$qqriib

@Madstrings@IntToHexExA$qqrjic

@Madstrings@IntToHexExA$qqruiic

@Madstrings@IntToStrExA$qqruiic

@Madstrings@IntToHexExA$qqriic

@Madstrings@IntToStrExA$qqriic

@Madstrings@PosNotCharsW$qqrrx29System@%Set$tc$iuc$0$iuc$255%x20System@UnicodeStringuiui

@Madstrings@PosText$qqrx20System@UnicodeStringt1uiui

@Madstrings@PosStr$qqrx20System@UnicodeStringt1uiui

@Madstrings@BooleanToCharW$qqro

@Madstrings@CopyR$qqrx20System@UnicodeStringui

@Madstrings@RetDelete$qqrx20System@UnicodeStringuiui

@Madstrings@SubTextExistsW

@Madstrings@SubStrExistsW

@Madstrings@SubStrW

@Madstrings@SubStrCountW

@Madstrings@FormatSubStrsW

@Madstrings@StrToIntExW

@Madstrings@FillStrW

@Madstrings@PosCharsW

@Madstrings@PosTextIs1W

@Madstrings@PosStrIs1W

@Madstrings@PosTextW

@Madstrings@PosStrW

@Madstrings@CompareTextW

@Madstrings@IsTextEqualW

@Madstrings@LowStrW

@Madstrings@LowCharW

@Madstrings@UpStrW

@Madstrings@KeepW

@Madstrings@RetDeleteW

@Madstrings@ReplaceTextW

@Madstrings@ReplaceStrW

@Madstrings@KillStrW

@Madstrings@KillCharsW

@Madstrings@KillCharW

@Madstrings@RetTrimStrW

@Madstrings@TrimStrW

@Madstrings@SubStrA

@Madstrings@SubStrCountA

@Madstrings@StrToIntExA

@Madstrings@PosStrIs1A

@Madstrings@PosPCharA

@Madstrings@PosTextA

@Madstrings@PosStrA

@Madstrings@IsTextEqualA

@Madstrings@UpStrA

@Madstrings@UpCharA

@Madstrings@ReplaceTextA

@Madstrings@ReplaceStrA

@Madstrings@RetTrimStrA

@Madstrings@TrimStrA

@Madtools@initialization$qqrv

@Madtools@Finalization$qqrv

@Madtools@InitTryExceptFinally$qqrv

@Madtools@TickDif$qqrui

@Madtools@IsBadReadPtr2$qqrpvui

@Madtools@UnmangleW$qqrr20System@UnicodeStringt1

@Madtools@ResToStr$qqruipbx20System@UnicodeString

@Madtools@GetImageProcNameW$qqruipvo

@Madtools@GetImageProcAddress$qqruix27System@%AnsiStringT$us$i0$%o

@Madtools@GetImageExportDirectory$qqrui

@Madtools@GetImageNtHeaders$qqrui

@Madtools@DelMsgHandler$qqrpqqrp6HWND__uiiiri$vuiui

@Madtools@AddMsgHandler$qqrpqqrp6HWND__uiiiri$vuiui

@Madtools@MsgHandlerWindow$qqrui

@Madtools@MethodToProcedure$qqrp14System@TObjectpvi

@Madtools@GetFileVersionStr$qqrx20System@UnicodeString

@Madtools@GetFreeSystemResources$qqrus

@Madtools@OS$qqrv

@Madtools@HideLeak_

@Madtools@FindModuleA

@Madtools@GetFileVersionStrW

@Madtools@GetLongFileNameW

@Madtools@GetShortFileNameW

@Madtools@GetLongFileNameA

@$xp$12Madtools@TOS

@Madzip@Zip$qqrx20System@UnicodeStringpx20System@UnicodeStringxix45System@%DynamicArray$t20System@UnicodeString%

@Madzip@UpdateCrc32$qqruipxvi

@Madzip@Uncompress$qqrx27System@%AnsiStringT$us$i0$%

@Madzip@Compress$qqrx27System@%AnsiStringT$us$i0$%o

@Madzip@Compress$qqrpvt1ii

@Madcrypt@Encode$qqrx27System@%AnsiStringT$us$i0$%

@Madcrypt@Encode$qqrpvi

@Madcrypt@OldDecrypt$qqrr27System@%AnsiStringT$us$i0$%x27System@%AnsiStringT$us$i0$%

@Madcrypt@OldEncrypt$qqrr27System@%AnsiStringT$us$i0$%x27System@%AnsiStringT$us$i0$%

@Madcrypt@Decrypt$qqrr27System@%AnsiStringT$us$i0$%x27System@%AnsiStringT$us$i0$%j

@Madcrypt@DecodeA

maddisasm_.bpl

@Maddisasm@initialization$qqrv

@Maddisasm@Finalization$qqrv

@Maddisasm@TryRead$qqrpvt1uiui

@Maddisasm@EndTryRead$qqrui

@Maddisasm@StartTryRead$qqrv

@Maddisasm@Magic95$qqrv

@Maddisasm@Magic$qqrv

@Maddisasm@ParseFunctionEx$qqrpvr27System@%AnsiStringT$us$i0$%t1io

@Maddisasm@ParseFunction$qqrpv

@Maddisasm@ParseFunction_$qqrpvuit1t1t1t1t1

@Maddisasm@ParseCode_$qqrpvui

@Maddisasm@ParseCode$qqrpv

@Maddisasm@BcbInitExceptBlockLDTC

@Maddisasm@GetLineNumber

@Maddisasm@GetProcNameFromMapFile

@$xp$23Maddisasm@TFunctionInfo

@$xp$27Maddisasm@_TFunctionInfo@_3

comctl32

ImageList_Destroy

ImageList_Create

InitCommonControls

comdlg32

PrintDlgW

GetSaveFileNameA

GetSaveFileNameW

shell32

ShellExecuteExA

ShellExecuteA

SHGetPathFromIDListA

SHGetSpecialFolderLocation

SHGetMalloc

wsock32

WSACleanup

WSAStartup

WSAGetLastError

gethostbyname

socket

setsockopt

sendto

send

select

recvfrom

recv

ioctlsocket

inet_addr

htons

connect

closesocket

bind

Exports

@$xp$19Madexcept@IMEFields

@$xp$19Madexcept@TMEButton

@$xp$19Madexcept@TMEDupDef

@$xp$19Madexcept@TSyncType

@$xp$19Madmapfile@TMapFile

@$xp$20Madmapfile@TMfPublic

@$xp$21Madexcept@IMESettings

@$xp$21Madexcept@TExceptType

@$xp$21Madmapfile@TMfSegment

@$xp$21Madnvbitmap@INVBitmap

@$xp$22Madexcept@IMEException

@$xp$22Madexcept@Madexcept__1

@$xp$22Madexcept@Madexcept__2

@$xp$22Madexcept@TExceptPhase

@$xp$22Madmapfile@TSymTagEnum

@$xp$22Madnvassistant@INVEdit

@$xp$22Madnvassistant@INVForm

@$xp$22Madnvassistant@INVItem

@$xp$22Madnvbitmap@TPngFormat

@$xp$23Madexcept@TExceptAction

@$xp$23Madexcept@TExceptSource

@$xp$23Madmapfile@_TMapFile@_1

@$xp$23Madmapfile@_TMapFile@_2

@$xp$23Madmapfile@_TMapFile@_3

@$xp$23Madnvassistant@INVImage

@$xp$23Madnvassistant@INVLabel

@$xp$24Madexcept@IMEAttachments

@$xp$24Madexcept@TExceptEventOO

@$xp$24Madexcept@TMEShowSetting

@$xp$24Madnvassistant@INVButton

@$xp$24Madnvassistant@TNVAction

@$xp$24Madstacktrace@TStackItem

@$xp$25Madstacktrace@TStackTrace

@$xp$26Madnvassistant@INVCheckBox

@$xp$26Madnvassistant@TOutputType

@$xp$27Madexcept@IMEModuleSettings

@$xp$27Madnvassistant@INVAssistant

@$xp$28Madstacktrace@BcbTermination

@$xp$29Madnvassistant@TNVModalResult

@$xp$29Madnvprgralert@IProgressAlert

@$xp$30Madexcept@TBugReportCallbackOO

@$xp$30Madexcept@TExceptActionEventOO

@GetPackageInfoTable

@Maddumpobj@DumpObj$qqrp14System@TObject

@Maddumpobj@Finalization$qqrv

@Maddumpobj@initialization$qqrv

@Madexcept@AddCmdLineToBugRep

@Madexcept@AmHttpServer

@Madexcept@AmOnline$qqro

@Madexcept@AutoSaveBugReport$qqrx20System@UnicodeStringx49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@AutoSendBugReport$qqrx20System@UnicodeStringx49System@%DelphiInterface$t21Madnvbitmap@INVBitmap%x49System@%DelphiInterface$t21Madexcept@IMESettings%o

@Madexcept@BcbCallTerminate

@Madexcept@BcbExceptionHandler

@Madexcept@BcbHelper_GetIntraWebVersion$qqrpv

@Madexcept@BcbInitExceptBlockLDTC

@Madexcept@BcbOrgMalloc

@Madexcept@BcbPTerminate

@Madexcept@BcbThrowExceptionLDTC

@Madexcept@BcbVclClearEH

@Madexcept@BugReportHtml

@Madexcept@BugZillaUpload$qqrx27System@%AnsiStringT$us$i0$%ouix20System@UnicodeStringt4t4t4t4t4t4t4t4t4t4t4x52System@%DelphiInterface$t24Madexcept@IMEAttachments%p6HWND__oox49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@CGIApp_TCGIApplication_CGIHandleException

@Madexcept@CMadExceptVersionString

@Madexcept@CalibrateCode$qqrv

@Madexcept@CalibrateData

@Madexcept@CheckBugTracker$qqri27System@%AnsiStringT$us$i0$%ouix20System@UnicodeStringt5t5t5t5rotatatatar45System@%DynamicArray$t20System@UnicodeString%tftftftf

@Madexcept@CheckExceptParams$qqrrp14System@TObjectrpvr27System@%AnsiStringT$us$i0$%rp8_CONTEXT

@Madexcept@CheckHttpUpload$qqrx27System@%AnsiStringT$us$i0$%ouix20System@UnicodeStringt4rot6t6

@Madexcept@CheckSmtpClient$qqrx27System@%AnsiStringT$us$i0$%oouix20System@UnicodeStringt5rot7t7t7t7t7r20System@UnicodeString

@Madexcept@Classes_CheckSynchronize

@Madexcept@ClearLeaks$qqroo

@Madexcept@CloseAntiFreeze$qqrv

@Madexcept@CloseAppExitCode

@Madexcept@CloseApplication$qqrv

@Madexcept@CloseExceptionView$qqrp14System@TObject

@Madexcept@CrashOnOverrun

@Madexcept@CreateBugReport$qqr21Madexcept@TExceptTypep14System@TObjectpvuiuiuip8_CONTEXTox55System@%DelphiInterface$t27Madexcept@IMEModuleSettings%23Madexcept@TExceptSourcet2uix27System@%AnsiStringT$us$i0$%p25Madtypes@TExceptionRecord

@Madexcept@CreateExceptionView$qqrp6HWND__rx11Types@TRectrp6HWND__

@Madexcept@CustomizeSimpleMsgBox

@Madexcept@DecryptPassword$qqrx20System@UnicodeStringt1x27System@%AnsiStringT$us$i0$%

@Madexcept@DefaultBugReportHtml$qqrx20System@UnicodeStringx49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@DelphiDebugMm

@Madexcept@DetectConsole

@Madexcept@DisAsmFunc

@Madexcept@DontAddDots

@Madexcept@DontHookThreads$qqrv

@Madexcept@DontPrettifyExceptMsg

@Madexcept@DontReformatExcMsg

@Madexcept@DontUseProxy

@Madexcept@DumbStackTrace

@Madexcept@Ebp$qqrv

@Madexcept@EnableRedirection

@Madexcept@Esp$qqrv

@Madexcept@ExceptionBoxHeight

@Madexcept@ExceptionBoxWidth

@Madexcept@ExpandVars$qqruir20System@UnicodeStringx20System@UnicodeStringt3t3t3

@Madexcept@ExtractBugReportHeaderField$qqrx20System@UnicodeStringt1

@Madexcept@FMX_TApplication_HandleException

@Madexcept@FMX_TApplication_ShowException

@Madexcept@FillClipboard$qqrx20System@UnicodeString

@Madexcept@Finalization$qqrv

@Madexcept@FinalizeMadExcept$qqrv

@Madexcept@FogBugzUpload$qqrx27System@%AnsiStringT$us$i0$%ouix20System@UnicodeStringt4t4t4t4t4t4t4t4t4t4t4t4x52System@%DelphiInterface$t24Madexcept@IMEAttachments%x47System@%DelphiInterface$t19Madexcept@IMEFields%p6HWND__oox49SystevH6auFUwE84qPbye8egXAw

@Madexcept@FollowRedirect

@Madexcept@ForceUtf8

@Madexcept@FormatExceptMessage$qqrx20System@UnicodeString

@Madexcept@Forms_TApplication_HandleException

@Madexcept@Forms_TApplication_ShowException

@Madexcept@Get9xResourceReport$qqrv

@Madexcept@GetAllocatedMemory$qqrv

@Madexcept@GetAttachments$qqrx52System@%DelphiInterface$t24Madexcept@IMEAttachments%p6HWND__oox49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@GetCpuCount$qqrv

@Madexcept@GetCpuName$qqrv

@Madexcept@GetCrashStackTrace$qqrooop49System@%DynamicArray$t24Madstacktrace@TStackItem%x57System@%DelphiInterface$t29Madnvprgralert@IProgressAlert%opuit7pop45System@%DynamicArray$t20System@UnicodeString%

@Madexcept@GetDisplayModeString$qqrv

@Madexcept@GetExceptBoxHandle$qqrv

@Madexcept@GetLargestFreeBlock$qqrv

@Madexcept@GetLeakCallstack$qqrj

@Madexcept@GetLeakReport$qqrooo

@Madexcept@GetMemoryStatus$qqrv

@Madexcept@GetOsLanguageString$qqrv

@Madexcept@GetOsVersionString$qqrv

@Madexcept@GetProgramUpTime$qqrv

@Madexcept@GetSpecialFolderW$qqrio

@Madexcept@GetSystemUpTime$qqrv

@Madexcept@GetTSClientName$qqrv

@Madexcept@GetThreadCreatorAddr$qqrui

@Madexcept@GetThreadInfos$qqruiruit2t2t2r8_CONTEXTriro

@Madexcept@GetThreadList$qqrv

@Madexcept@GetThreadName$qqrui

@Madexcept@GetThreadStackTrace$qqruiooop49System@%DynamicArray$t24Madstacktrace@TStackItem%x57System@%DelphiInterface$t29Madnvprgralert@IProgressAlert%opuit8pop45System@%DynamicArray$t20System@UnicodeString%

@Madexcept@HandleContactForm$qqr50System@%DelphiInterface$t22Madnvassistant@INVForm%24Madnvassistant@TNVAction50System@%DelphiInterface$t22Madnvassistant@INVItem%50System@%DelphiInterface$t22Madexcept@IMEException%

@Madexcept@HandleException$qqr21Madexcept@TExceptTypep14System@TObjectpvouiuip8_CONTEXT23Madexcept@TExceptSourcet2uip20System@UnicodeString

@Madexcept@HandleScreenshotForm$qqr50System@%DelphiInterface$t22Madnvassistant@INVForm%24Madnvassistant@TNVAction50System@%DelphiInterface$t22Madnvassistant@INVItem%50System@%DelphiInterface$t22Madexcept@IMEException%

@Madexcept@HiddenAutoMailing

@Madexcept@HideInitializationLeaks$qqrv

@Madexcept@HideLeak$qqrp17System@TMetaClassi

@Madexcept@HideLeak$qqrpv

@Madexcept@HideLeak$qqrui

@Madexcept@HideLeak$qqrx20System@UnicodeString

@Madexcept@HookThreads$qqrv

@Madexcept@HttpExtensionProcNext

@Madexcept@HttpUpload$qqrx27System@%AnsiStringT$us$i0$%ouix20System@UnicodeStringt4x52System@%DelphiInterface$t24Madexcept@IMEAttachments%x47System@%DelphiInterface$t19Madexcept@IMEFields%t4p6HWND__oox49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@HttpUploadTimeout

@Madexcept@HyperJumpCallstack$qqrx20System@UnicodeString

@Madexcept@ISAPIApp_TISAPIApplication_ISAPIHandleException

@Madexcept@IgnoreSmtpCert

@Madexcept@ImNotFrozen$qqrv

@Madexcept@ImportBugReport$qqrx20System@UnicodeString

@Madexcept@InitAntiFreeze$qqrv

@Madexcept@InstallUnhandledExceptionFilter$qqrv

@Madexcept@IsThreadSuspended$qqruiui

@Madexcept@IsTrueUnicodeString$qqrx20System@UnicodeString

@Madexcept@IsUserAdmin$qqrv

@Madexcept@LastHttpErrorNo

@Madexcept@LastHttpErrorStr

@Madexcept@LastHttpPostReply

@Madexcept@LastMantisIssueId

@Madexcept@LastRedirectURL

@Madexcept@MESettings$qqrpv

@Madexcept@MESettings$qqrui

@Madexcept@MESettings$qqrv

@Madexcept@MantisUpload$qqrx27System@%AnsiStringT$us$i0$%ouix20System@UnicodeStringt4t4t4t4t4t4t4t4t4t4t4x52System@%DelphiInterface$t24Madexcept@IMEAttachments%p6HWND__oox49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@MxLookup$qqr27System@%AnsiStringT$us$i0$%

@Madexcept@NameThread$qqruix20System@UnicodeString

@Madexcept@NewAttachments$qqrv

@Madexcept@NewException$qqr21Madexcept@TExceptTypep14System@TObjectpvouiuiuip8_CONTEXTx55System@%DelphiInterface$t27Madexcept@IMEModuleSettings%23Madexcept@TExceptSourcet2uix27System@%AnsiStringT$us$i0$%op25Madtypes@TExceptionRecord

@Madexcept@NewFields$qqrv

@Madexcept@NoOnlineCheck

@Madexcept@OnExceptBoxCreate

@Madexcept@OnExceptBoxDestroy

@Madexcept@OpenThread$qqruiui

@Madexcept@PatchAPI$qqrx27System@%AnsiStringT$us$i0$%t1pvrpvt3o

@Madexcept@PatchInt$qqrpvi

@Madexcept@PatchJmp$qqrpvt1

@Madexcept@PatchPtr$qqrpvt1t1

@Madexcept@PauseFreezeCheck$qqro

@Madexcept@PauseMadExcept$qqro

@Madexcept@PauseMeEventually$qqrv

@Madexcept@Ping$qqrx27System@%AnsiStringT$us$i0$%

@Madexcept@Plugins

@Madexcept@PrintBugReport$qqrx20System@UnicodeStringp6HWND__x49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@ProcessMainThreadId

@Madexcept@ProxyBypass

@Madexcept@ProxyPassword

@Madexcept@ProxyServer

@Madexcept@ProxyUserName

@Madexcept@PutAssisIntoBugReport$qqrx55System@%DelphiInterface$t27Madnvassistant@INVAssistant%x50System@%DelphiInterface$t22Madexcept@IMEException%

@Madexcept@Qforms_TApplication_HandleException

@Madexcept@Qforms_TApplication_ShowException

@Madexcept@RegDelVal$qqrp6HKEY__x20System@UnicodeStringt2

@Madexcept@RegReadStr$qqrp6HKEY__x20System@UnicodeStringt2

@Madexcept@RegWriteStr$qqrp6HKEY__x20System@UnicodeStringt2t2

@Madexcept@RegisterBugReportPlugin$qqrx20System@UnicodeStringt1pqqrv$20System@UnicodeStringo

@Madexcept@RegisterBugReportPlugin$qqrx20System@UnicodeStringt1pqqrv$27System@%AnsiStringT$us$i0$%o

@Madexcept@RegisterBugReportPlugin$qqrx20System@UnicodeStringt1pqqrx50System@%DelphiInterface$t22Madexcept@IMEException%$20System@UnicodeStringo

@Madexcept@RegisterBugReportPlugin$qqrx20System@UnicodeStringt1pqqrx50System@%DelphiInterface$t22Madexcept@IMEException%$27System@%AnsiStringT$us$i0$%o

@Madexcept@RegisterExceptActionHandler$qqrpqqr23Madexcept@TExceptActionx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v19Madexcept@TSyncType

@Madexcept@RegisterExceptActionHandler$qqrynpqqr23Madexcept@TExceptActionx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v19Madexcept@TSyncType

@Madexcept@RegisterExceptionHandler$qqrpqqrx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v19Madexcept@TSyncType22Madexcept@TExceptPhase

@Madexcept@RegisterExceptionHandler$qqrynpqqrx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v19Madexcept@TSyncType22Madexcept@TExceptPhase

@Madexcept@RegisterHiddenExceptionHandler$qqrpqqrx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v19Madexcept@TSyncType

@Madexcept@RegisterHiddenExceptionHandler$qqrynpqqrx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v19Madexcept@TSyncType

@Madexcept@RelativeToAbsolute$qqrx20System@UnicodeString

@Madexcept@ReportLeaks

@Madexcept@ReportLeaksNow$qqro

@Madexcept@RequireAuthenticSsl

@Madexcept@ResetFpuMode

@Madexcept@RestartApplication$qqrx20System@UnicodeStringo

@Madexcept@SaveBugReport$qqrx20System@UnicodeStringp6HWND__x49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@SendBugReport$qqrx20System@UnicodeStringx49System@%DelphiInterface$t21Madnvbitmap@INVBitmap%p6HWND__x49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@SendMapiMail$qqrx20System@UnicodeStringt1t1x52System@%DelphiInterface$t24Madexcept@IMEAttachments%p6HWND__oox49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@SendShellMail$qqrx20System@UnicodeStringt1t1

@Madexcept@SendSmtpMail$qqrx20System@UnicodeStringt1t1t1t1x52System@%DelphiInterface$t24Madexcept@IMEAttachments%x27System@%AnsiStringT$us$i0$%t1t1uioop6HWND__oox49System@%DelphiInterface$t21Madexcept@IMESettings%

@Madexcept@SetDebugMmAlignment$qqri

@Madexcept@SetFreezeTimeout$qqrui

@Madexcept@SetLeakReportFile$qqrx20System@UnicodeString

@Madexcept@SetTopmost$qqrp6HWND__o

@Madexcept@ShowBugReportKey

@Madexcept@ShowLeakProgressWindow$qqro

@Madexcept@ShowLeakReport$qqrx20System@UnicodeString

@Madexcept@ShowNoLeaksWindow$qqro

@Madexcept@ShowOuterExceptDetails

@Madexcept@SmtpComputerName

@Madexcept@SmtpMailFrom

@Madexcept@SmtpReplyTo

@Madexcept@SmtpServerPort

@Madexcept@SmtpTimeout

@Madexcept@StartLeakChecking$qqro

@Madexcept@StopLeakChecking$qqro

@Madexcept@SysUtils_AnsiStrAlloc

@Madexcept@SysUtils_Exception_Destroy

@Madexcept@SysUtils_Exception_GetStackTrace

@Madexcept@SysUtils_Exception_RaisingException

@Madexcept@SysUtils_InitializePackage

@Madexcept@SysUtils_LoadPackage

@Madexcept@SysUtils_ShowException

@Madexcept@SysUtils_WideStrAlloc

@Madexcept@System_ExceptionHandler

@Madexcept@System_FinalizeUnits

@Madexcept@System_InitUnits

@Madexcept@System_runErrMsg

@Madexcept@ThisIsNoLeak$qqrpv

@Madexcept@ThisIsNoLeak$qqrui

@Madexcept@UnpatchAPI$qqrpvt1t1o

@Madexcept@UnregisterBugReportPlugin$qqrx20System@UnicodeString

@Madexcept@UnregisterExceptActionHandler$qqrpqqr23Madexcept@TExceptActionx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v

@Madexcept@UnregisterExceptActionHandler$qqrynpqqr23Madexcept@TExceptActionx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v

@Madexcept@UnregisterExceptionHandler$qqrpqqrx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v

@Madexcept@UnregisterExceptionHandler$qqrynpqqrx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v

@Madexcept@UnregisterHiddenExceptionHandler$qqrpqqrx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v

@Madexcept@UnregisterHiddenExceptionHandler$qqrynpqqrx50System@%DelphiInterface$t22Madexcept@IMEException%ro$v

@Madexcept@UpdateExceptionView$qqrp14System@TObjectx50System@%DelphiInterface$t22Madexcept@IMEException%

@Madexcept@WasRestarted

@Madexcept@initialization$qqrv

@Madexcept@madTraceProcess$qqsi

@Madexcept_@@GetPackageInfoTable$qqrv

@Madexcept_@@PackageLoad$qqrv

@Madexcept_@@PackageUnload$qqrv

@Madexcept_@initialization$qqrv

@Madlinkdisasm@Finalization$qqrv

@Madlinkdisasm@initialization$qqrv

@Madlisthardware@Finalization$qqrv

@Madlisthardware@GetHardwareList$qqrv

@Madlisthardware@initialization$qqrv

@Madlistmodules@Finalization$qqrv

@Madlistmodules@GetModuleList$qqrv

@Madlistmodules@initialization$qqrv

@Madlistprocesses@Finalization$qqrv

@Madlistprocesses@GetProcessList$qqrv

@Madlistprocesses@initialization$qqrv

@Madmapfile@CMapFileStreamDescriptor

@Madmapfile@Finalization$qqrv

@Madmapfile@FindMapFile$qqrpv

@Madmapfile@GetMapFileAddress$qqrx20System@UnicodeStringt1t1

@Madmapfile@GetMapFileInfos$qqrpvr20System@UnicodeStringt2t2rpvri

@Madmapfile@GetMyProcName$qqro

@Madmapfile@ImportMapFile$qqrx27System@%AnsiStringT$us$i0$%

@Madmapfile@LoadMapFile$qqrx20System@UnicodeStringo

@Madmapfile@LoadMapFileEx$qqrx20System@UnicodeStringo

@Madmapfile@SymCleanup

@Madmapfile@SymEnumLines

@Madmapfile@SymEnumSymbols

@Madmapfile@SymGetModuleInfo64

@Madmapfile@SymInitialize

@Madmapfile@SymLoadModuleEx

@Madmapfile@SymUnloadModule64

@Madmapfile@TMapFile@

@Madmapfile@TMapFile@$bctr$qqrox27System@%AnsiStringT$us$i0$%x20System@UnicodeStringuioo

@Madmapfile@TMapFile@Export$qqrooo

@Madmapfile@TMapFile@FindAddress$qqrx20System@UnicodeStringt1

@Madmapfile@TMapFile@FindLine$qqrpv

@Madmapfile@TMapFile@FindLine$qqrpvrpv

@Madmapfile@TMapFile@FindPublic$qqri

@Madmapfile@TMapFile@FindPublic$qqrox20System@UnicodeStringt2o

@Madmapfile@TMapFile@FindPublic$qqrpv

@Madmapfile@TMapFile@FindSegment$qqri

@Madmapfile@TMapFile@FindSegment$qqropv

@Madmapfile@TMapFile@Line_NewItem$qqripvo

@Madmapfile@TMapFile@Public_NewItem$qqro20System@UnicodeStringuio

@Madmapfile@TMapFile@Segment_NewItem$qqroouiui20System@UnicodeStringoo

@Madmapfile@initialization$qqrv

@Madnvassistant@CreateAssistant$qqrx20System@UnicodeStringpx27System@%AnsiStringT$us$i0$%xix45System@%DelphiInterface$t17System@IInterface%

@Madnvassistant@Finalization$qqrv

@Madnvassistant@HandleContactFormProc

@Madnvassistant@HandleExceptionHelper

@Madnvassistant@HandleScreenshotFormProc

@Madnvassistant@LoadAssistant$qqruix20System@UnicodeStringpx20System@UnicodeStringxix45System@%DelphiInterface$t17System@IInterface%

@Madnvassistant@OnAssistantCreate

@Madnvassistant@initialization$qqrv

@Madnvbitmap@Finalization$qqrv

@Madnvbitmap@LoadBitmap$qqrx20System@UnicodeString

@Madnvbitmap@ScreenShot$qqro

@Madnvbitmap@initialization$qqrv

@Madnvprgralert@Finalization$qqrv

@Madnvprgralert@NewProgressAlert$qqrx20System@UnicodeStringuit1

@Madnvprgralert@initialization$qqrv

@Madstacktrace@BcbTermination@

@Madstacktrace@BcbTermination@$bctr$qqrx20System@UnicodeString

@Madstacktrace@FastMM_LogStackTrace$qqrpvipcoooo

@Madstacktrace@Finalization$qqrv

@Madstacktrace@InternalError$qqrx20System@UnicodeStringoo

@Madstacktrace@PrepareStackTrace$qqruiuiuip8_CONTEXTpvo

@Madstacktrace@StackAddrToStr$qqrpvoo

@Madstacktrace@StackTrace$qqrooop49System@%DynamicArray$t24Madstacktrace@TStackItem%p8_CONTEXTpvoouiuit6ppvtctc57System@%DelphiInterface$t29Madnvprgralert@IProgressAlert%uioo27System@%AnsiStringT$us$i0$%popuitltkp45System@%DynamicASKuXo+q15gvF0I9owRkH7g

@Madstacktrace@initialization$qqrv

Finalize

Initialize

madTraceProcess

Sections

.text
Size: 337KB - Virtual size: 336KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 328B

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.edata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Resources/Data/magic_methods_014.phpt

Resources/Data/msenvico.dll

.dll windows:6 windows x64 arch:x64

Code Sign

33:00:00:03:4e:b5:3c:7a:c1:84:6f:eb:2b:00:00:00:00:03:4e
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/03/2023, 18:43

Not After

14/03/2024, 18:43

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

f0:f2:91:eb:b3:05:d4:71:70:e1:7e:2e:00:7e:2b:d5:e1:12:7c:59:14:5b:38:2e:c2:d6:21:77:f8:c2:1e:e2
Signer

Actual PE Digest

f0:f2:91:eb:b3:05:d4:71:70:e1:7e:2e:00:7e:2b:d5:e1:12:7c:59:14:5b:38:2e:c2:d6:21:77:f8:c2:1e:e2

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

Sections

.rdata
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 672KB - Virtual size: 672KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Resources/Data/php_libmagic.h

Resources/Data/readonly_class_missing_type1.phpt

Resources/Data/rncr

Resources/Data/serialization_objects_009.phpt

.js

Resources/Data/session_set_save_handler_variation4.phpt

Resources/Data/skipLazyInitialization_default.phpt

.js

Resources/Data/x64/ExporterHost.dll

.dll windows:5 windows x64 arch:x64

94643dc82cbe43c11dbcb075c29b0942

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

6c:59:ef:a9:e1:00:e1:0e:e3:06:ba:8f:e0:29:25:59
Certificate

Issuer

Not Before

07/06/2012, 00:00

Not After

06/06/2022, 23:59

Subject

CN=Symantec Class 3 Extended Validation Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

35:a8:4f:a5:03:f8:9b:49:83:96:bb:48:91:68:a5:80
Certificate

Issuer

CN=Symantec Class 3 Extended Validation Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

14/01/2014, 00:00

Not After

07/01/2016, 23:59

Subject

SERIALNUMBER=2748129,CN=Adobe Systems Incorporated,OU=Photoshop\, Bridge - SHA256,O=Adobe Systems Incorporated,L=San Jose,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

44:09:5a:b7:20:fe:9a:86:e8:bb:a3:b7:16:ca:b5:b7:ea:b4:dd:94
Signer

Actual PE Digest

44:09:5a:b7:20:fe:9a:86:e8:bb:a3:b7:16:ca:b5:b7:ea:b4:dd:94

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

D:\DynamicLinkMediaServer8\releases\2014.03\dynamiclinkmediaserver\Targets\Win\Release\64\ExporterHost.pdb

Imports

boost_system

?system_category@system@boost@@YAAEBVerror_category@12@XZ

dvacore

?ThrowError@config@dvacore@@YAXW4ErrorLevel@12@PEBDKJ_NAEBVReplacementValue@12@333@Z

??1ReplacementValue@config@dvacore@@QEAA@XZ

?BreakAfterAssertDialog@debug@dvacore@@YA_NAEA_NPEBDPEBE1J1_N@Z

?IsDebuggerAttached@debug@dvacore@@YA_NXZ

?AsString@Guid@utility@dvacore@@QEBA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@XZ

??0?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@AEBV01@@Z

??0oUTF8StringStream@dvacore@@QEAA@XZ

??6?$basic_ostream@EU?$char_traits@E@std@@@std@@QEAAAEAV01@H@Z

?str@?$basic_ostringstream@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEBA?AV?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@2@XZ

??_DoUTF8StringStream@dvacore@@QEAAXXZ

??0ReplacementValue@config@dvacore@@QEAA@XZ

?BreakAfterContractDialog@debug@dvacore@@YA_NPEBD00J@Z

??1RecursiveMutex@threads@dvacore@@QEAA@XZ

??0RecursiveMutex@threads@dvacore@@QEAA@XZ

?compare@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEBAHAEBV12@@Z

??Y?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAAEAV01@AEBV01@@Z

?reserve@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAX_K@Z

??_DoUTF16StringStream@dvacore@@QEAAXXZ

?str@?$basic_ostringstream@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEBA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@2@XZ

??0oUTF16StringStream@dvacore@@QEAA@XZ

?NumberToString@utility@dvacore@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@N_K0V?$Flags@G@12@J@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@$$QEAV01@@Z

?AsciiToUTF16@utility@dvacore@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@PEBD_K@Z

??0?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@PEBE@Z

?UTF8to16@utility@dvacore@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEBV?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@4@PEAW4UnicodeErrorCode@12@PEA_K@Z

?append@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAAEAV12@AEBV12@@Z

?insert@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAAEAV12@_KAEBV12@@Z

?InternationalizeNum@utility@dvacore@@YAXAEAV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

??4?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAAEAV01@$$QEAV01@@Z

?Get@Localizer@config@dvacore@@SAPEAV123@XZ

?_Myptr@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEBAPEBGXZ

?Open@Gate@threads@dvacore@@QEAAXXZ

?Close@Gate@threads@dvacore@@QEAAXXZ

??0Gate@threads@dvacore@@QEAA@_N@Z

??1Gate@threads@dvacore@@QEAA@XZ

?c_str@?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEBAPEBEXZ

?UTF16to8@utility@dvacore@@YA?AV?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@4@@Z

?ReturnTemporarySingleThreadedExecutor@threads@dvacore@@YAXAEBV?$shared_ptr@VAsyncThreadedExecutor@threads@dvacore@@@boost@@@Z

?EnableSleep@utility@dvacore@@YAXPEAXW4SleepType@12@@Z

?Trace@debug@dvacore@@YAXPEBE@Z

?GetCurrentThreadID@threads@dvacore@@YAKXZ

?TraceEnabled@debug@dvacore@@YA_NPEBEJ_N@Z

?TraceChangeCount@debug@dvacore@@YAHXZ

?DisableSleep@utility@dvacore@@YAPEAXW4SleepType@12@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

?BorrowTemporarySingleThreadedExecutor@threads@dvacore@@YA?AV?$shared_ptr@VAsyncThreadedExecutor@threads@dvacore@@@boost@@XZ

??1Dir@filesupport@dvacore@@QEAA@XZ

?FullPath@File@filesupport@dvacore@@QEBA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@XZ

??EFileIterator@Dir@filesupport@dvacore@@QEAA?AV0123@H@Z

??1File@filesupport@dvacore@@QEAA@XZ

?GetExtension@File@filesupport@dvacore@@QEBA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@_N@Z

??DFileIterator@Dir@filesupport@dvacore@@QEAA?AVFile@23@XZ

??1FileIterator@Dir@filesupport@dvacore@@QEAA@XZ

??9FileIterator@Dir@filesupport@dvacore@@QEBA_NAEBV0123@@Z

?EndFiles@Dir@filesupport@dvacore@@QEBA?AVFileIterator@123@XZ

?ToLowerCase@utility@dvacore@@YAXAEAV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

?BeginFiles@Dir@filesupport@dvacore@@QEBA?AVFileIterator@123@_NPEAV?$function@$$A6A_NXZ@boost@@0V?$shared_ptr@V?$function@$$A6A_NAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@0@Z@boost@@@6@@Z

?Exists@Dir@filesupport@dvacore@@QEBA_NXZ

??0Dir@filesupport@dvacore@@QEAA@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

??EDirIterator@Dir@filesupport@dvacore@@QEAA?AV0123@H@Z

?FullPath@Dir@filesupport@dvacore@@QEBA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@XZ

??DDirIterator@Dir@filesupport@dvacore@@QEAA?AV123@XZ

??1DirIterator@Dir@filesupport@dvacore@@QEAA@XZ

??9DirIterator@Dir@filesupport@dvacore@@QEBA_NAEBV0123@@Z

?EndSubdirs@Dir@filesupport@dvacore@@QEBA?AVDirIterator@123@XZ

?BeginSubdirs@Dir@filesupport@dvacore@@QEBA?AVDirIterator@123@_NPEAV?$function@$$A6A_NXZ@boost@@V?$shared_ptr@V?$function@$$A6A_NAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@0@Z@boost@@@6@@Z

??4Dir@filesupport@dvacore@@QEAAAEAV012@AEBV012@@Z

??0Dir@filesupport@dvacore@@QEAA@AEBV012@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

?Parent@Dir@filesupport@dvacore@@QEBA?AV123@XZ

?AllUserPluginsDir@commondirs@filesupport@dvacore@@YA?AVDir@23@XZ

?CreateDynamic@ImmutableString@utility@dvacore@@SA?AV123@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

??0ImmutableString@utility@dvacore@@QEAA@AEBV012@@Z

??0?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@AEBV01@@Z

??6?$basic_ostream@EU?$char_traits@E@std@@@std@@QEAAAEAV01@I@Z

??0?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@$$QEAV01@@Z

??0?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@PEBE_K@Z

??4?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEAAAEAV01@AEBV01@@Z

?CreateDynamic@ImmutableString@utility@dvacore@@SA?AV123@AEBV?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@@Z

?flush@?$basic_ostream@EU?$char_traits@E@std@@@std@@QEAAAEAV12@XZ

?_Osfx@?$basic_ostream@EU?$char_traits@E@std@@@std@@QEAAXXZ

?setstate@?$basic_ios@EU?$char_traits@E@std@@@std@@QEAAXH_N@Z

??6?$basic_ostream@EU?$char_traits@E@std@@@std@@QEAAAEAV01@J@Z

??_DUTF8StringStream@dvacore@@QEAAXXZ

?str@?$basic_stringstream@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEBA?AV?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@2@XZ

??0UTF8StringStream@dvacore@@QEAA@XZ

??_DiUTF16StringStream@dvacore@@QEAAXXZ

??0iUTF16StringStream@dvacore@@QEAA@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

?erase@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAAEAV12@_K0@Z

?find_first_not_of@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEBA_KAEBV12@_K@Z

?resize@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAX_K@Z

?find_last_not_of@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEBA_KAEBV12@_K@Z

?npos@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@2_KB

?Dispose@SmallBlockAllocator@utility@dvacore@@YAXPEAX_K@Z

?Allocate@SmallBlockAllocator@utility@dvacore@@YAPEAX_K@Z

?substr@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEBA?AV12@_K0@Z

?find_first_of@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEBA_KAEBV12@_K@Z

?Allocate@RecycledMemory@utility@dvacore@@QEAAX_K@Z

?Create@RecycledMemory@utility@dvacore@@SA?AV?$shared_ptr@VRecycledMemory@utility@dvacore@@@boost@@_K@Z

?size@?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEBA_KXZ

?InternalHiddenFilterWindowsSEHException@exceptions@utility@dvacore@@YAJKPEBDK0@Z

??4?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAAEAV01@PEBG@Z

?RegisterCommand@CommandRegistry@console@dvacore@@YAXAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@0P6APEAVCommand@23@00@Z@Z

??1?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@XZ

??4?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAAAEAV01@AEBV01@@Z

??0?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@XZ

??0?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@PEBG@Z

??0Guid@utility@dvacore@@QEAA@PEBD@Z

?CreateStatic@ImmutableString@utility@dvacore@@SA?AV123@PEBD@Z

??1ImmutableString@utility@dvacore@@QEAA@XZ

?Lock@RecursiveMutex@threads@dvacore@@QEBAXPEBD@Z

?Unlock@RecursiveMutex@threads@dvacore@@QEBAXXZ

?sNullString@ImmutableString@utility@dvacore@@0QBEB

?PassThrough@Gate@threads@dvacore@@QEBA_NH@Z

??1?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@QEAA@XZ

dvamediatypes

?kFrameRate_VideoNTSC@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_VideoPAL@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_Film24@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_23976@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_Video15@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_Video12_5@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_Video12@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_Video10@dvamediatypes@@3VFrameRate@1@B

?AddFrames@TickTime@dvamediatypes@@QEAAX_JAEBVFrameRate@2@@Z

?ToFrame64@TickTime@dvamediatypes@@QEBA_JAEBVFrameRate@2@@Z

?kTime_Invalid@dvamediatypes@@3VTickTime@1@B

??HTickTime@dvamediatypes@@QEBA?AV01@AEBV01@@Z

?kTime_Max@dvamediatypes@@3VTickTime@1@B

??YTickTime@dvamediatypes@@QEAAAEAV01@AEBV01@@Z

?ToFrame32@TickTime@dvamediatypes@@QEBAJAEBVFrameRate@2@@Z

??0PixelAspectRatio@dvamediatypes@@QEAA@XZ

?kPixelAspectRatio_DVNTSC@dvamediatypes@@3VPixelAspectRatio@1@B

?kFrameRate_Audio48000@dvamediatypes@@3VFrameRate@1@B

??0PixelAspectRatio@dvamediatypes@@QEAA@AEBV01@@Z

??4PixelAspectRatio@dvamediatypes@@QEAAAEAV01@AEBV01@@Z

??0PixelAspectRatio@dvamediatypes@@QEAA@KK@Z

?kPixelFormatProperties_Invalid@dvamediatypes@@3UPixelFormatProperties@1@B

?kPixelFormatProperties_Any@dvamediatypes@@3UPixelFormatProperties@1@B

?GuessNameForProperties@dvamediatypes@@YA?AW4PixelFormatName@1@UPixelFormatProperties@1@@Z

?kPixelFormat_Any@dvamediatypes@@3UPixelFormat@1@B

?Select4444PixelFormat@dvamediatypes@@YA?AUPixelFormat@1@U21@W4RenderQuality@1@@Z

?kFrameRate_Video30@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_VideoPAL_HD@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_VideoNTSC_HD@dvamediatypes@@3VFrameRate@1@B

?kFrameRate_Video60@dvamediatypes@@3VFrameRate@1@B

?GetNumerator@PixelAspectRatio@dvamediatypes@@QEBAKXZ

?GetDenominator@PixelAspectRatio@dvamediatypes@@QEBAKXZ

??GTickTime@dvamediatypes@@QEBA?AV01@AEBV01@@Z

?CreateLegacy51ChannelLayout@dvamediatypes@@YA?AV?$vector@UAudioChannelDescription@dvamediatypes@@V?$allocator@UAudioChannelDescription@dvamediatypes@@@std@@@std@@XZ

?CreateStereoChannelLayout@dvamediatypes@@YA?AV?$vector@UAudioChannelDescription@dvamediatypes@@V?$allocator@UAudioChannelDescription@dvamediatypes@@@std@@@std@@XZ

?CreateMonoChannelLayout@dvamediatypes@@YA?AV?$vector@UAudioChannelDescription@dvamediatypes@@V?$allocator@UAudioChannelDescription@dvamediatypes@@@std@@@std@@XZ

?CreateMultichannelLayout@dvamediatypes@@YA?AV?$vector@UAudioChannelDescription@dvamediatypes@@V?$allocator@UAudioChannelDescription@dvamediatypes@@@std@@@std@@H@Z

?kTime_Zero@dvamediatypes@@3VTickTime@1@B

?kPixelFormat_VUYA_4444_8u@dvamediatypes@@3UPixelFormat@1@B

adobexmp

ord67

ord62

ord78

ord64

ord65

ord79

ord80

ord81

ord82

ord84

ord83

ord85

ord86

ord87

ord91

ord93

ord123

ord94

ord95

ord96

ord97

ord98

ord99

ord100

ord102

ord108

ord109

ord105

ord110

ord111

ord112

ord113

ord114

ord115

ord117

ord118

ord119

ord120

ord104

ord15

ord16

ord17

ord20

ord21

ord22

ord23

ord63

ord37

ord126

ord125

ord124

ord58

ord53

ord52

ord59

ord57

ord56

ord55

ord54

ord51

ord60

ord39

ord38

ord49

ord48

ord45

ord44

ord43

ord42

ord41

ord40

ord36

ord35

ord34

ord33

ord32

ord31

ord47

ord30

ord29

ord28

ord27

ord26

ord25

ord24

ord19

ord18

ord14

ord13

ord11

ord10

ord103

ord116

ord106

ord101

ord92

ord90

ord89

ord88

ord77

ord76

ord75

ord74

ord73

ord72

ord71

ord70

ord69

ord68

ord66

ord50

ord61

ord4

ord107

ord1

ord2

ord3

ord5

ord6

ord7

ord8

ord9

ord46

adobexmpfiles

ord6

ord17

ord1

ord2

ord4

ord5

ord7

ord15

ord16

ord18

ord25

ord8

ord11

ord13

ord14

ord19

ord20

ord21

ord22

ord23

ord10

ord12

ord24

ord3

ord9

kernel32

CloseHandle

CreateEventA

TlsAlloc

GetLastError

PostQueuedCompletionStatus

TlsFree

LeaveCriticalSection

EnterCriticalSection

SetEvent

SwitchToThread

GetTickCount

QueryPerformanceCounter

QueryPerformanceFrequency

Sleep

EncodePointer

DecodePointer

TerminateProcess

GetCurrentProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

DisableThreadLibraryCalls

GetCurrentThreadId

GetCurrentProcessId

GetSystemTimeAsFileTime

gdi32

DeleteObject

oleaut32

SysFreeString

prm

?GetApplicationType@PRM@@YA?AW4ApplicationType@1@XZ

aslfoundation

?Create@File@ASL@@QEAAHAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@W4Type@FileAccessFlags@2@W45FileShareModeFlags@2@W45FileCreateDispositionFlags@2@W45FileAttributesFlags@2@_N@Z

?GetFilePointer@File@ASL@@QEBAHAEA_J@Z

?SetFilePointer@File@ASL@@QEAAH_JW4Type@FilePointerMoveMethod@2@@Z

?Close@File@ASL@@QEAAXXZ

?Dispose@Allocator@ASL@@SAXPEAX_K@Z

?Allocate@Allocator@ASL@@SAPEAX_K@Z

??1File@ASL@@QEAA@XZ

??0File@ASL@@QEAA@XZ

??0Exception@ASL@@QEAA@XZ

??1Exception@ASL@@UEAA@XZ

?what@Exception@ASL@@UEBAPEBDXZ

?MakeStdString@ASL@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@3@@Z

?CreateClassInstanceRef@ASL@@YA?AV?$InterfaceRef@UASLUnknown@ASL@@U12@@1@AEBVGuid@utility@dvacore@@@Z

?CodePageMultiByteToUnicode16@StringUtils@ASL@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@4@@Z

?ASLGetClassCategories@@YAXAEAV?$vector@VGuid@utility@dvacore@@V?$allocator@VGuid@utility@dvacore@@@std@@@std@@@Z

?RegisterASLClass@ClassFactory@ASL@@SAHAEBVGuid@utility@dvacore@@PEBD1P6AXAEAV?$InterfaceRef@UASLUnknown@ASL@@U12@@2@@ZP6AXAEAV?$vector@VGuid@utility@dvacore@@V?$allocator@VGuid@utility@dvacore@@@std@@@std@@@Z@Z

?AddResult@AutomationDataCollector@ASL@@QEAAXAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEBU?$pair@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V12@@4@@Z

?kResultsTag@AutomationDataCollector@ASL@@2V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@A

?MakeString@ASL@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@PEBD@Z

?Instance@AutomationDataCollector@ASL@@SAPEAV12@XZ

?kSuccessTag@AutomationDataCollector@ASL@@2V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@A

?Delete@File@ASL@@SAHAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

?GetDrivePart@PathUtils@ASL@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEBV34@@Z

?GetDirectoryPart@PathUtils@ASL@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEBV34@@Z

?GetFilePart@PathUtils@ASL@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEBV34@@Z

?kErrorTag@AutomationDataCollector@ASL@@2V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@A

?SetStringValue@RegistryKey@ASL@@QEAAHAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@0@Z

?SetUInt32Value@RegistryKey@ASL@@QEAAHAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@I@Z

?GetStringValue@RegistryKey@ASL@@QEAAHAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEAV34@@Z

?GetUInt32Value@RegistryKey@ASL@@QEAAHAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEAI@Z

?ToMultiByte@StringUtils@ASL@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@4@@Z

?GetCPUCount@SystemInfo@ASL@@YAIXZ

?GetTotalPhysicalMemory@SystemInfo@ASL@@YA_KXZ

?MakePath@PathUtils@ASL@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEBV34@000@Z

?SplitPath@PathUtils@ASL@@YAXAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@PEAV34@111@Z

?Write@File@ASL@@QEAAHPEBXIAEAI@Z

aslmessaging

?HashMessageTypeNameToMessageID@ASL@@YAIPEBD@Z

?RegisterUniqueStation@StationRegistry@ASL@@YA?AVImmutableString@utility@dvacore@@XZ

?DisposeStation@StationRegistry@ASL@@YAXAEBVImmutableString@utility@dvacore@@@Z

?RegisterStation@StationRegistry@ASL@@YAXAEBVImmutableString@utility@dvacore@@P6APEAVStation@2@0@Z@Z

?PostMessageToUIThread@StationUtils@ASL@@YAXAEBVImmutableString@utility@dvacore@@AEBVMessage@2@_N@Z

memory

PrDisposePtr

PrNewPtrClear

PrNewPtr

mediafoundation

?DoStressTest@ModuleStressTester@MF@@YAHHW4StressType@12@H@Z

?GetMediaManager@MF@@YA?AV?$InterfaceRef@UIMediaManager@MF@@U12@@ASL@@XZ

?kMediaType_Video@MF@@3VGuid@utility@dvacore@@B

?kMediaType_Audio@MF@@3VGuid@utility@dvacore@@B

backend

?kProjectSettingsClassID@BE@@3VGuid@utility@dvacore@@B

?CreateFileMedia@MediaFactory@BE@@YAHV?$InterfaceRef@UIMediaInfo@BE@@U12@@ASL@@AEBVBinaryData@MF@@AEBV?$map@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V12@U?$less@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@2@V?$STLAllocator@U?$pair@$$CBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V12@@std@@@SmallBlockAllocator@utility@dvacore@@@std@@AEBVFrameRate@dvamediatypes@@_N4H_KAEAV?$InterfaceRef@UIMedia@BE@@U12@@4@@Z

?CreateMasterClip@MasterClipFactory@BE@@YA?AV?$InterfaceRef@UIMasterClip@BE@@U12@@ASL@@AEAV?$vector@V?$InterfaceRef@UIMedia@BE@@U12@@ASL@@V?$allocator@V?$InterfaceRef@UIMedia@BE@@U12@@ASL@@@std@@@std@@AEBW4TimeDisplay@dvamediatypes@@@Z

?kXMLFileWriterClassID@BE@@3VGuid@utility@dvacore@@B

?kXMLFileReaderClassID@BE@@3VGuid@utility@dvacore@@B

?GetMedia@MasterClipUtils@BE@@YA?AV?$InterfaceRef@UIMedia@BE@@U12@@ASL@@AEBV?$InterfaceRef@UIMasterClip@BE@@U12@@4@I@Z

?kMediaType_Video@BE@@3VGuid@utility@dvacore@@B

?kMediaType_Audio@BE@@3VGuid@utility@dvacore@@B

?CreateSequence@SequenceFactory@BE@@YA?AV?$InterfaceRef@UISequence@BE@@U12@@ASL@@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEBVFrameRate@dvamediatypes@@AEBV?$ParamRect@VCRect@@@4@AEBVPixelAspectRatio@8@AEBW4FieldType@8@1AEBW4AudioChannelType@MF@@AEBHV?$InterfaceRef@UISourceFactory@BE@@U12@@4@V?$InterfaceRef@UIVideoPreviewCompileSettings@BE@@U12@@4@_N@Z

?kCompoundActionClassID@BE@@3VGuid@utility@dvacore@@B

?CreateVideoClipTrack@TrackFactory@BE@@YA?AV?$InterfaceRef@UIClipTrack@BE@@U12@@ASL@@AEBVFrameRate@dvamediatypes@@@Z

?CreateAudioClipTrack@TrackFactory@BE@@YA?AV?$InterfaceRef@UIClipTrack@BE@@U12@@ASL@@W4AudioChannelType@MF@@HAEBVFrameRate@dvamediatypes@@V?$InterfaceRef@UISourceFactory@BE@@U12@@4@@Z

?CreateSelection@TrackItemSelectionFactory@BE@@YA?AV?$InterfaceRef@UITrackItemSelection@BE@@U12@@ASL@@V?$InterfaceRef@UIMasterClip@BE@@U12@@4@VFrameRate@dvamediatypes@@V?$InterfaceRef@UISourceFactory@BE@@U12@@4@_NW4Type@TrackItemSelectionMode@2@@Z

?Result@Conversion@BE@@SAXPEBDAEAH@Z

?GetBackend@BE@@YA?AV?$InterfaceRef@UIBackend@BE@@U12@@ASL@@XZ

?SerializeToSink@ISerializeable@BE@@UEBAXAEAVIDictionarySink@2@@Z

?Result@Conversion@BE@@SAXPEBDAEAV?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@@Z

?Result@Conversion@BE@@SAXPEBDAEA_N@Z

?Result@Conversion@BE@@SAXPEBDAEAI@Z

?Result@Conversion@BE@@SAXPEBDAEAN@Z

?Result@Conversion@BE@@SAXPEBDAEA_J@Z

?ReadPoint@DataReader@BE@@QEAAHAEBVImmutableString@utility@dvacore@@AEAV?$ParamPoint@VCPoint@@@ASL@@@Z

?kDataDelimiterUTF8@BE@@3V?$basic_string@EU?$char_traits@E@std@@V?$STLAllocator@E@SmallBlockAllocator@utility@dvacore@@@std@@B

videoframe

?CopyFrame@VideoFrameManipulators@VF@@YAHV?$InterfaceRef@UIVideoFrame@MF@@U12@@ASL@@0W4RenderQuality@dvamediatypes@@@Z

HistogramToPalette

?SDKToBEPixelFormat@VF@@YA?AUPixelFormat@dvamediatypes@@W4PrPixelFormat@@@Z

Histogram32Hist

?GetVideoFrameFromPPix@VF@@YA?AV?$InterfaceRef@UIVideoFrame@MF@@U12@@ASL@@PEAPEAUPPix@@@Z

?GetPPixHandFrameMapping@VF@@YA?AV?$InterfaceRef@UASLUnknown@ASL@@U12@@ASL@@PEAPEAUPPix@@@Z

?CreateVideoFrame@VF@@YAHAEAV?$InterfaceRef@UIVideoFrame@MF@@U12@@ASL@@UPixelFormat@dvamediatypes@@IIAEBVPixelAspectRatio@5@_N3@Z

?NewPPixFromVideoFrame@VF@@YAPEAPEAUPPix@@V?$InterfaceRef@UIVideoFrame@MF@@U12@@ASL@@@Z

?DisposePPixFromVideoFrame@VF@@YAXPEAPEAUPPix@@@Z

ReducePixelsHist

pluginsupport

?SDKToBEAudioSampleType@ML@@YA?AW4AudioSampleType@MF@@W4PrAudioSampleType@@@Z

?RegisterPluginModuleFactory@ML@@YAXAEBVGuid@utility@dvacore@@V?$InterfaceRef@UIPluginModuleFactory@ML@@U12@@ASL@@@Z

?ShowPluginCrashReportDialog@ML@@YAXPEBDAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

?SDKToBEAudioChannelType@ML@@YA?AW4AudioChannelType@MF@@W4PrAudioChannelType@@@Z

?SetSequence@TimelineSuiteObject@ML@@QEAAXV?$InterfaceRef@UISequence@BE@@U12@@ASL@@@Z

?SetMarkerOwner@TimelineSuiteObject@ML@@QEAAXV?$InterfaceRef@UIMarkerOwner@BE@@U12@@ASL@@@Z

??0TimelineSuiteObject@ML@@QEAA@XZ

?RemoveIDFromInstanceIDMap@ML@@YAXH@Z

?CreateUniqueCallbackInstanceID@ML@@YAHV?$InterfaceRef@UASLUnknown@ASL@@U12@@ASL@@@Z

?GetSequence@TimelineSuiteObject@ML@@QEAA?AV?$InterfaceRef@UISequence@BE@@U12@@ASL@@XZ

?BEToSDKFieldType@ML@@YAHW4FieldType@dvamediatypes@@@Z

?GetRefFromCallbackInstanceID@ML@@YA?AV?$InterfaceRef@UASLUnknown@ASL@@U12@@ASL@@H@Z

sweetpeasupport

?Allocate@SDKString@ML@@YAXAEBVImmutableString@utility@dvacore@@AEAUPrSDKString@@@Z

?SDKCallback_GetSPBasicSuite@SweetPeaSupport@ML@@YAPEAUSPBasicSuite@@XZ

?Deallocate@SDKString@ML@@YA_NAEBUPrSDKString@@@Z

?RegisterSuite@SweetPeaSupport@ML@@YAHPEBDHPEBX@Z

audiosupport

?Initialize@AudioSupport@ML@@YAHXZ

?Shutdown@AudioSupport@ML@@YAHXZ

importerhost

?Initialize@ImporterHost@@YAHXZ

?Shutdown@ImporterHost@@YAHXZ

?Create@ImporterFactory@ML@@SA?AV?$InterfaceRef@VImporterFactory@ML@@UIPluginModuleFactory@2@@ASL@@XZ

?WaitForPendingMedia@ConformUtils@ML@@SA_NAEBV?$InterfaceRef@UISequence@BE@@U12@@ASL@@AEBV?$InterfaceRef@UIProgress@BE@@U12@@4@@Z

?GenerateNumberedFileName@NumberedStills@ML@@SAXAEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@HHAEAV34@@Z

?Create@FileObject@ML@@SA?AV?$InterfaceRef@VFileObject@ML@@UIFile@BE@@@ASL@@AEBV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@Z

videorenderer

?Shutdown@VideoRenderer@ML@@YAHXZ

?Initialize@VideoRenderer@ML@@YAHXZ

msvcp100

??1_Lockit@std@@QEAA@XZ

??0id@locale@std@@QEAA@_K@Z

?_Xlength_error@std@@YAXPEBD@Z

?_Xout_of_range@std@@YAXPEBD@Z

?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ

?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

?exceptions@ios_base@std@@QEAAXH@Z

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z

?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z

?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z

?_BADOFF@std@@3_JB

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ

?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ

?good@ios_base@std@@QEBA_NXZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ

?uncaught_exception@std@@YA_NXZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

?width@ios_base@std@@QEAA_J_J@Z

?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z

?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ

?flags@ios_base@std@@QEBAHXZ

?width@ios_base@std@@QEBA_JXZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z

?_Decref@facet@locale@std@@QEAAPEAV123@XZ

?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@I@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@H@Z

?rdbuf@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAPEAV?$basic_streambuf@GU?$char_traits@G@std@@@2@XZ

?_Incref@facet@locale@std@@QEAAXXZ

?_Getcat@?$ctype@G@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

??Bid@locale@std@@QEAA_KXZ

?id@?$ctype@G@std@@2V0locale@2@A

??0_Lockit@std@@QEAA@H@Z

?_Swap_all@_Container_base0@std@@QEAAXAEAU12@@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@M@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@_N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@_J@Z

?widen@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAGD@Z

?put@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV12@G@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAI@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAH@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAM@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAN@Z

?fail@ios_base@std@@QEBA_NXZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z

?flush@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV12@XZ

?tie@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAPEAV?$basic_ostream@GU?$char_traits@G@std@@@2@XZ

?_Osfx@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAXXZ

?setstate@?$basic_ios@GU?$char_traits@G@std@@@std@@QEAAXH_N@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@N@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z

?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z

?getloc@ios_base@std@@QEBA?AVlocale@2@XZ

?widen@?$ctype@G@std@@QEBAGD@Z

?fill@?$basic_ios@GU?$char_traits@G@std@@@std@@QEBAGXZ

?sputc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAAGG@Z

?sputn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAA_JPEBG_J@Z

?_Orphan_all@_Container_base0@std@@QEAAXXZ

msvcr100

__clean_type_info_names_internal

__crt_debugger_hook

?_type_info_dtor_internal_method@type_info@@QEAAXXZ

??3@YAXPEAX@Z

_purecall

__CxxFrameHandler3

_mktime64

_CxxThrowException

??0exception@std@@QEAA@AEBV01@@Z

??0exception@std@@QEAA@AEBQEBD@Z

?what@exception@std@@UEBAPEBDXZ

??1exception@std@@UEAA@XZ

??0exception@std@@QEAA@AEBQEBDH@Z

memcpy

memmove

??2@YAPEAX_K@Z

?raw_name@type_info@@QEBAPEBDXZ

??8type_info@@QEBA_NAEBV0@@Z

signal

clock

??_V@YAXPEAX@Z

??0exception@std@@QEAA@XZ

memcpy_s

__RTDynamicCast

memset

??0bad_cast@std@@QEAA@PEBD@Z

??1bad_cast@std@@UEAA@XZ

??0bad_cast@std@@QEAA@AEBV01@@Z

_snprintf

sprintf

strncpy

__C_specific_handler

__CppXcptFilter

_amsg_exit

_encoded_null

free

_initterm_e

_initterm

_malloc_crt

?terminate@@YAXXZ

_onexit

_unlock

__dllonexit

_lock

ws2_32

WSAStartup

WSACleanup

Exports

?AddChangedParamToList@ChangedParamUtils@ML@@YAXAEAV?$vector@V?$InterfaceRef@UIChangedParam@ML@@U12@@ASL@@V?$allocator@V?$InterfaceRef@UIChangedParam@ML@@U12@@ASL@@@std@@@std@@V?$InterfaceRef@UIExporterParamContainer@MF@@U12@@ASL@@V?$InterfaceRef@UIExporterParam@MF@@U12@@6@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@4@3_NAEAH@Z

?FindMatchSourceParam@MatchSource@ML@@YA?AV?$InterfaceRef@UIExporterParam@MF@@U12@@ASL@@AEBV?$InterfaceRef@UIExporterParamContainer@MF@@U12@@4@@Z

?FindOrCreateMatchSourceParam@MatchSource@ML@@YA?AV?$InterfaceRef@UIExporterParam@MF@@U12@@ASL@@AEBV?$InterfaceRef@UIExporterParamContainer@MF@@U12@@4@AEA_N@Z

?GetAcousticModelFilePath@SpeechUtils@ML@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V34@@Z

?GetDictionaryFilePath@SpeechUtils@ML@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V34@@Z

?GetLanguageModels@SpeechUtils@ML@@YAXV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEAV?$vector@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V?$allocator@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@2@@4@@Z

?GetMatchSourceFlags@MatchSource@ML@@YA?AV?$Flags@K@utility@dvacore@@AEBV?$InterfaceRef@UIExporterParam@MF@@U12@@ASL@@@Z

?GetMatchSourceFlags@MatchSource@ML@@YA?AV?$Flags@K@utility@dvacore@@AEBV?$InterfaceRef@UIExporterParamContainer@MF@@U12@@ASL@@@Z

?GetNormalizeFilePath@SpeechUtils@ML@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V34@@Z

?GetSpeakerIDs@SpeechUtils@ML@@YAXV?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@AEAV?$vector@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V?$allocator@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@2@@4@@Z

?GetSupportedLanguages@SpeechUtils@ML@@YAXAEAV?$vector@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@V?$allocator@V?$basic_string@GU?$char_traits@G@std@@V?$STLAllocator@G@SmallBlockAllocator@utility@dvacore@@@std@@@2@@std@@@Z

?Initialize@ExporterHost@ML@@YAHXZ

?MatchSourceBinaryDataToFlags@MatchSource@ML@@YA?AV?$Flags@K@utility@dvacore@@AEBVBinaryData@MF@@@Z

?MatchSourceFlagsToBinaryData@MatchSource@ML@@YA?AVBinaryData@MF@@V?$Flags@K@utility@dvacore@@@Z

?Shutdown@ExporterHost@ML@@YAHXZ

Sections

.text
Size: 690KB - Virtual size: 690KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 333KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Data/x64/KeccakSponge.h

Resources/Data/x64/Microsoft.VisualStudio.Search.Implementation.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:03:4e:b5:3c:7a:c1:84:6f:eb:2b:00:00:00:00:03:4e
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/03/2023, 18:43

Not After

14/03/2024, 18:43

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

bf:cc:1d:36:19:83:fd:e6:f7:90:08:ef:76:ce:26:dd:b2:3c:1a:36:19:e9:49:4c:1d:0c:72:ed:e5:2e:bb:53
Signer

Actual PE Digest

bf:cc:1d:36:19:83:fd:e6:f7:90:08:ef:76:ce:26:dd:b2:3c:1a:36:19:e9:49:4c:1d:0c:72:ed:e5:2e:bb:53

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

D:\dbs\sh\ddvsm\1002_165500_0\cmd\40\out\Intermediate\env\searchimpl_x86retail_99402868\Release\net472\Microsoft.VisualStudio.Search.Implementation.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 214KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Data/x64/Microsoft.VisualStudio.VisualC.Utilities.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:03:4e:b5:3c:7a:c1:84:6f:eb:2b:00:00:00:00:03:4e
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/03/2023, 18:43

Not After

14/03/2024, 18:43

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

84:fb:d2:36:df:a3:39:c9:18:b1:d7:95:a8:4a:a5:a7:93:50:6c:f6:ba:50:49:f0:3e:6b:95:26:bc:db:bf:79
Signer

Actual PE Digest

84:fb:d2:36:df:a3:39:c9:18:b1:d7:95:a8:4a:a5:a7:93:50:6c:f6:ba:50:49:f0:3e:6b:95:26:bc:db:bf:79

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

D:\dbs\sh\ddvsm\0818_204058\cmd\o\out\Intermediate\vc\microsoft.visualstudio.visualc.utilities_x86retail_207E352F\Release\net472\Microsoft.VisualStudio.VisualC.Utilities.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resources/Data/x64/SplFileObject_fgetcsv_escape_error.phpt

.js

Resources/Data/x64/array_access_006.phpt

Resources/Data/x64/bug25922.phpt

Resources/Data/x64/bug65510.phpt

Resources/Data/x64/bug74269.phpt

Resources/Data/x64/missingrepo.txt

Resources/Data/x64/pcjr.testfile

Resources/Data/x64/pdo_mysql_stmt_closecursor_empty.phpt

.js

Resources/Data/x64/phar_oo_006.phpt

.js

Resources/Data/x64/posix_getsid_basic.phpt

Resources/Data/x64/r4_groupH_simple_rpcenc_017w.phpt

Resources/Data/x64/schema041.phpt

Resources/Data/x64/ssa_bug_008.phpt

Resources/Data/x64/template_cloning.phpt

Resources/Data/x64/try_multicatch_007.phpt

.js

Resources/Data/x64/x86/T33.phpt

Resources/Data/x64/x86/bug64007.phpt

.js

Resources/Data/x64/x86/bug72094.phpt

Resources/Data/x64/x86/foreachLoop.001.phpt

.ps1

Resources/Data/x64/x86/fpm_scoreboard.h

Resources/Data/x64/x86/frontcontroller16.phpt

Resources/Data/x64/x86/gh12908.phpt

Resources/Data/x64/x86/gh13991.phpt

Resources/Data/x64/x86/htwj

Resources/Data/x64/x86/indirectFcall.phpt

.js

Resources/Data/x64/x86/make_s390x_sysv_elf_gas.S

Resources/Data/x64/x86/openssl_password.phpt

Resources/Data/x64/x86/openssl_verify_basic.phpt

Resources/Data/x64/x86/shadow_core.phpt

Resources/Data/x64/x86/userstreams_003.phpt

Resources/Data/x64/zend_vm_opcodes.c

Resources/Data/zend_ini_scanner_defs.h

Resources/htwj

Resources/maddisAsm_.bpl

.dll windows:5 windows x86 arch:x86

22531f752b354d949452fbdf15d6da72

Code Sign

8b:a1:f1:72:fd:50:ba:8d:4c:11:b7:4f:fa:c8:a2:82
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/03/2021, 00:00

Not After

24/03/2024, 23:59

Subject

CN=IObit CO.\, LTD,O=IObit CO.\, LTD,POSTALCODE=610042,STREET=No. 605\, 6th Floor\, Unit 1\, Building 1+STREET=45 Renmin South Road,L=Chengdu Shi,ST=Sichuan Sheng,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

8b:a1:f1:72:fd:50:ba:8d:4c:11:b7:4f:fa:c8:a2:82
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/03/2021, 00:00

Not After

24/03/2024, 23:59

Subject

CN=IObit CO.\, LTD,O=IObit CO.\, LTD,POSTALCODE=610042,STREET=No. 605\, 6th Floor\, Unit 1\, Building 1+STREET=45 Renmin South Road,L=Chengdu Shi,ST=Sichuan Sheng,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

97:54:65:bc:6d:2d:fe:cd:12:15:a8:43:26:3e:63:d6:0e:1b:86:0f:3b:97:8e:c8:5f:ff:f5:fa:00:3e:4e:f3
Signer

Actual PE Digest

97:54:65:bc:6d:2d:fe:cd:12:15:a8:43:26:3e:63:d6:0e:1b:86:0f:3b:97:8e:c8:5f:ff:f5:fa:00:3e:4e:f3

Digest Algorithm

sha256

PE Digest Matches

true

86:63:ac:7d:5b:62:b0:c2:2d:7d:9a:db:47:eb:76:77:23:b6:90:72
Signer

Actual PE Digest

86:63:ac:7d:5b:62:b0:c2:2d:7d:9a:db:47:eb:76:77:23:b6:90:72

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

IMAGE_FILE_BYTES_REVERSED_HI

Imports

rtl120.bpl

@System@initialization$qqrv

@System@Finalization$qqrv

@System@UnregisterModule$qqrp17System@TLibModule

@System@RegisterModule$qqrp17System@TLibModule

@System@@DynArrayClear$qqrrpvpv

@System@@DynArraySetLength$qqrv

@System@@DynArrayHigh$qqrv

@System@@DynArrayLength$qqrv

@System@@Dispose$qqrpvt1

@System@@New$qqripv

@System@@CopyRecord$qqrv

@System@@Finalize$qqrpvt1

@System@@FinalizeRecord$qqrpvt1

@System@@UStrLen$qqrx20System@UnicodeString

@System@@LStrFromUStr$qqrr27System@%AnsiStringT$us$i0$%x20System@UnicodeStringus

@System@@UStrArrayClr$qqrpvi

@System@@UStrClr$qqrpv

@System@@LStrSetLength$qqrv

@System@@LStrInsert$qqrv

@System@@LStrDelete$qqrv

@System@@UniqueStringA$qqrr27System@%AnsiStringT$us$i0$%

@System@@LStrToPChar$qqrx27System@%AnsiStringT$us$i0$%

@System@@LStrAddRef$qqrpv

@System@@LStrCatN$qqrv

@System@@LStrCat3$qqrv

@System@@LStrCat$qqrv

@System@@PCharLen$qqrpc

@System@@LStrLen$qqrx27System@%AnsiStringT$us$i0$%

@System@@LStrFromString$qqrr27System@%AnsiStringT$us$i0$%rx28System@%SmallString$iuc$255%us

@System@@LStrFromPWChar$qqrr27System@%AnsiStringT$us$i0$%pbus

@System@@LStrFromPChar$qqrr27System@%AnsiStringT$us$i0$%pcus

@System@@EnsureAnsiString$qqrr27System@%AnsiStringT$us$i0$%us

@System@@LStrFromPCharLen$qqrr27System@%AnsiStringT$us$i0$%pcius

@System@@LStrLAsg$qqrpvpxv

@System@@LStrAsg$qqrpvpxv

@System@@LStrArrayClr$qqrpvi

@System@@LStrClr$qqrpv

@System@@RunError$qqruc

@System@@Halt0$qqrv

@System@@PackageUnload$qqrpx23System@PackageInfoTablep17System@TLibModule

@System@@PackageLoad$qqrpx23System@PackageInfoTablep17System@TLibModule

@System@@DoneExcept$qqrv

@System@@HandleAutoException$qqrv

@System@@HandleFinally$qqrv

@System@@HandleOnException$qqrv

@System@@HandleAnyException$qqrv

@System@TObject@ClassName$qqrv

@System@@_CToPasStr$qqrp28System@%SmallString$iuc$255%pxc

@System@@FillChar$qqrpvib

@System@Move$qqrpxvpvi

@$xp$17System@AnsiString

@$xp$7Integer

kernel32

TlsSetValue

TlsGetValue

TlsFree

TlsAlloc

LocalFree

LocalAlloc

FreeLibrary

VirtualQuery

VirtualProtect

GetVersion

GetProcAddress

GetModuleHandleA

GetModuleHandleW

GetModuleFileNameA

GetCurrentThreadId

GetCurrentProcessId

FreeLibrary

madbasic_.bpl

@Madtools@initialization$qqrv

@Madtools@Finalization$qqrv

@Madtools@GetImageProcName$qqruipvo

@Madtools@GetImageProcAddress$qqruix27System@%AnsiStringT$us$i0$%o

@Madtools@GetSizeOfImage$qqrp17_IMAGE_NT_HEADERS

@Madtools@GetImageNtHeaders$qqrui

@Madtools@FindModule$qqrpvruir27System@%AnsiStringT$us$i0$%

@Madtools@FindModuleA

@Madstrings@initialization$qqrv

@Madstrings@Finalization$qqrv

@Madstrings@AnsiToWideEx$qqrx27System@%AnsiStringT$us$i0$%o

@Madstrings@DecryptStr$qqrx27System@%AnsiStringT$us$i0$%

@Madstrings@IntToHexExA$qqrjic

@Madstrings@IntToHexExA$qqruiic

@Madstrings@IntToStrExA$qqrjic

@Madstrings@IntToStrExA$qqruiic

@Madstrings@IntToHexExA$qqriic

@Madstrings@IntToStrExA$qqriic

@Madstrings@CNtDll

@Madstrings@ErrorCodeToStrA

@Madstrings@SubStrA

@Madstrings@SubStrCountA

@Madstrings@FillStrA

@Madstrings@PosStrA

@Madstrings@ReplaceStrA

Exports

@$xp$23Maddisasm@TFunctionInfo

@$xp$27Maddisasm@_TFunctionInfo@_1

@$xp$27Maddisasm@_TFunctionInfo@_2

@$xp$27Maddisasm@_TFunctionInfo@_3

@$xp$27Maddisasm@_TFunctionInfo@_4

@GetPackageInfoTable

@Maddisasm@BcbInitExceptBlockLDTC

@Maddisasm@CErrorStr_BadFunction

@Maddisasm@CErrorStr_CodeNotInterceptable

@Maddisasm@CErrorStr_DoubleHook

@Maddisasm@CErrorStr_InvalidCode

@Maddisasm@CErrorStr_UnknownTarget

@Maddisasm@CKernel32

@Maddisasm@CKernelbase

@Maddisasm@CReadProcessMemory

@Maddisasm@CWriteProcessMemory

@Maddisasm@EndTryRead$qqrui

@Maddisasm@Finalization$qqrv

@Maddisasm@GetExportDirectory$qqrpvruirp30Madtools@TImageExportDirectory

@Maddisasm@GetLineNumber

@Maddisasm@GetProcNameFromMapFile

@Maddisasm@IsBadReadPtrEx$qqrpvuiui

@Maddisasm@KernelProc$qqrx27System@%AnsiStringT$us$i0$%o

@Maddisasm@Magic$qqrv

@Maddisasm@Magic95$qqrv

@Maddisasm@NtProc$qqrx27System@%AnsiStringT$us$i0$%o

@Maddisasm@ParseCode$qqrpv

@Maddisasm@ParseCode$qqrpvr27System@%AnsiStringT$us$i0$%

@Maddisasm@ParseCode_$qqrpvui

@Maddisasm@ParseFunction$qqrpv

@Maddisasm@ParseFunction$qqrpvr27System@%AnsiStringT$us$i0$%

@Maddisasm@ParseFunctionEx$qqrpvr27System@%AnsiStringT$us$i0$%t1io

@Maddisasm@ParseFunction_$qqrpvuit1t1t1t1t1

@Maddisasm@SolveW9xDebugMode$qqrpv

@Maddisasm@StartTryRead$qqrv

@Maddisasm@TryRead$qqrpvt1uiui

@Maddisasm@TryWrite$qqrpvt1ui

@Maddisasm@initialization$qqrv

@Maddisasm@kernel32handle$qqrv

@Maddisasm@ntdllhandle$qqrv

@Maddisasm_@@GetPackageInfoTable$qqrv

@Maddisasm_@@PackageLoad$qqrv

@Maddisasm_@@PackageUnload$qqrv

@Maddisasm_@initialization$qqrv

Finalize

Initialize

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 28B

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 35B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Resources/madexcept_.bpl