Extracted

• PC X LEGEND BYPASS.exe

  .exe windows:4 windows x86 arch:x86

  29b61e5a552b3a9bc00953de1c93be41

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  SetFileAttributesA

  GetShortPathNameA

  GetFullPathNameA

  MoveFileA

  SetCurrentDirectoryA

  GetFileAttributesA

  GetLastError

  CompareFileTime

  SearchPathA

  Sleep

  GetTickCount

  GetFileSize

  GetModuleFileNameA

  GetCurrentProcess

  CopyFileA

  ExitProcess

  CreateDirectoryA

  lstrcmpiA

  GetCommandLineA

  GetVersion

  SetErrorMode

  lstrcpynA

  GetDiskFreeSpaceA

  GlobalUnlock

  GlobalLock

  CreateThread

  CreateProcessA

  RemoveDirectoryA

  CreateFileA

  GetTempFileNameA

  lstrlenA

  lstrcatA

  GetSystemDirectoryA

  LoadLibraryA

  SetFileTime

  CloseHandle

  GlobalFree

  lstrcmpA

  ExpandEnvironmentStringsA

  GetExitCodeProcess

  GlobalAlloc

  WaitForSingleObject

  GetWindowsDirectoryA

  GetTempPathA

  GetProcAddress

  FindFirstFileA

  FindNextFileA

  DeleteFileA

  SetFilePointer

  ReadFile

  FindClose

  GetPrivateProfileStringA

  WritePrivateProfileStringA

  WriteFile

  MulDiv

  LoadLibraryExA

  GetModuleHandleA

  MultiByteToWideChar

  FreeLibrary

  user32

  GetWindowRect

  EnableMenuItem

  GetSystemMenu

  ScreenToClient

  SetClassLongA

  IsWindowEnabled

  SetWindowPos

  GetSysColor

  GetWindowLongA

  SetCursor

  LoadCursorA

  CheckDlgButton

  GetMessagePos

  LoadBitmapA

  CallWindowProcA

  IsWindowVisible

  CloseClipboard

  SetForegroundWindow

  PostQuitMessage

  RegisterClassA

  EndDialog

  AppendMenuA

  CreatePopupMenu

  GetSystemMetrics

  SetDlgItemTextA

  GetDlgItemTextA

  MessageBoxIndirectA

  CharPrevA

  DispatchMessageA

  PeekMessageA

  EnableWindow

  InvalidateRect

  SendMessageA

  DefWindowProcA

  BeginPaint

  GetClientRect

  FillRect

  DrawTextA

  EndPaint

  SystemParametersInfoA

  CreateWindowExA

  GetClassInfoA

  DialogBoxParamA

  CharNextA

  ExitWindowsEx

  DestroyWindow

  OpenClipboard

  TrackPopupMenu

  SendMessageTimeoutA

  GetDC

  LoadImageA

  GetDlgItem

  FindWindowExA

  IsWindow

  SetClipboardData

  SetWindowLongA

  EmptyClipboard

  SetTimer

  CreateDialogParamA

  wsprintfA

  ShowWindow

  SetWindowTextA

  gdi32

  SelectObject

  SetBkMode

  CreateFontIndirectA

  SetTextColor

  DeleteObject

  GetDeviceCaps

  CreateBrushIndirect

  SetBkColor

  shell32

  SHGetSpecialFolderLocation

  SHGetPathFromIDListA

  SHBrowseForFolderA

  SHGetFileInfoA

  ShellExecuteA

  SHFileOperationA

  advapi32

  RegDeleteValueA

  SetFileSecurityA

  RegOpenKeyExA

  RegDeleteKeyA

  RegEnumValueA

  RegCloseKey

  RegCreateKeyExA

  RegSetValueExA

  RegQueryValueExA

  RegEnumKeyA

  comctl32

  ImageList_Create

  ImageList_Destroy

  ord17

  ImageList_AddMasked

  ole32

  OleUninitialize

  OleInitialize

  CoTaskMemFree

  CoCreateInstance

  Sections

  .text

  Size: 24KB - Virtual size: 23KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 5KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1KB - Virtual size: 151KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .ndata

  Size: - Virtual size: 32KB

  IMAGE_SCN_CNT_UNINITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 46KB - Virtual size: 46KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

• PC X LEGEND BYPASS.exe

  .exe windows:6 windows x64 arch:x64

  bcd9d813e6c710011b95c7c4b4cf19e0

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  PDB Paths

  D:\All Projects\SpeedyBypass C++\SpeedyBypass C++\SpeedyBypass C++\j loader\examples\example_win32_directx11\Release\NONEX BYPASS.pdb

  Imports

  d3dx11_43

  D3DX11CreateShaderResourceViewFromMemory

  d3d11

  D3D11CreateDeviceAndSwapChain

  d3dcompiler_43

  D3DCompile

  kernel32

  FormatMessageA

  LocalFree

  EnterCriticalSection

  LeaveCriticalSection

  SleepEx

  GetSystemDirectoryA

  VerifyVersionInfoA

  MoveFileExA

  WaitForSingleObjectEx

  GetEnvironmentVariableA

  GetStdHandle

  GetFileType

  PeekNamedPipe

  WaitForMultipleObjects

  SetLastError

  QueryFullProcessImageNameW

  CreateFileA

  GetFileSizeEx

  AllocConsole

  ReadFile

  AcquireSRWLockExclusive

  WakeAllConditionVariable

  SleepConditionVariableSRW

  RtlCaptureContext

  RtlLookupFunctionEntry

  RtlVirtualUnwind

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  TerminateProcess

  IsProcessorFeaturePresent

  IsDebuggerPresent

  GetStartupInfoW

  GetCurrentProcessId

  GetCurrentThreadId

  GetSystemTimeAsFileTime

  InitializeSListHead

  OutputDebugStringW

  GetTickCount

  ReadProcessMemory

  Beep

  VirtualProtectEx

  CreateThread

  CloseHandle

  Process32Next

  Sleep

  CreateToolhelp32Snapshot

  OpenProcess

  OutputDebugStringA

  WriteProcessMemory

  Process32First

  QueryPerformanceCounter

  FreeLibrary

  VerSetConditionMask

  GetProcAddress

  HeapAlloc

  HeapReAlloc

  HeapFree

  GetProcessHeap

  MapViewOfFile

  UnmapViewOfFile

  CreateFileMappingA

  CreateFileW

  GetLastError

  GetModuleHandleW

  QueryPerformanceFrequency

  LoadLibraryA

  GetModuleHandleA

  GlobalUnlock

  WideCharToMultiByte

  GlobalLock

  GlobalFree

  GlobalAlloc

  MultiByteToWideChar

  HeapDestroy

  HeapSize

  InitializeCriticalSectionEx

  DeleteCriticalSection

  GetCurrentProcess

  ReleaseSRWLockExclusive

  VirtualQueryEx

  VirtualProtect

  CreateFileMappingW

  GetModuleFileNameA

  user32

  CreateWindowExW

  GetSystemMetrics

  UnregisterClassW

  RegisterClassExW

  ShowWindow

  MessageBoxA

  MoveWindow

  DestroyWindow

  TranslateMessage

  LoadIconA

  PeekMessageA

  PostQuitMessage

  FindWindowA

  UpdateWindow

  DispatchMessageA

  DefWindowProcA

  LoadCursorA

  ScreenToClient

  GetCapture

  ClientToScreen

  TrackMouseEvent

  GetForegroundWindow

  SetCapture

  SetCursor

  GetClientRect

  IsWindowUnicode

  ReleaseCapture

  SetCursorPos

  GetCursorPos

  OpenClipboard

  GetWindowRect

  CloseClipboard

  EmptyClipboard

  GetClipboardData

  SetClipboardData

  GetKeyState

  shell32

  ShellExecuteA

  msvcp140

  ??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ

  ?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ

  ?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ

  ?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z

  ?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z

  ??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ

  ?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

  ?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z

  ?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z

  ?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

  ?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

  ?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

  ?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z

  ?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

  ?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z

  ?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

  ??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

  ??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z

  ?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

  ?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

  ?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

  ?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

  ??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ

  ??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ

  ?_Xlength_error@std@@YAXPEBD@Z

  ?_Xout_of_range@std@@YAXPEBD@Z

  ?_Xbad_function_call@std@@YAXXZ

  ?setf@ios_base@std@@QEAAHHH@Z

  ?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAADD@Z

  ?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z

  ?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z

  ?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

  imm32

  ImmSetCompositionWindow

  ImmReleaseContext

  ImmGetContext

  ImmSetCandidateWindow

  dwmapi

  DwmExtendFrameIntoClientArea

  normaliz

  IdnToAscii

  wldap32

  ord26

  ord301

  ord27

  ord200

  ord22

  ord41

  ord32

  ord50

  ord33

  ord30

  ord79

  ord45

  ord60

  ord211

  ord46

  ord35

  ord217

  ord143

  crypt32

  CertGetCertificateChain

  CertFreeCertificateChainEngine

  CertCreateCertificateChainEngine

  CryptQueryObject

  CertGetNameStringA

  CertFindExtension

  CertAddCertificateContextToStore

  CryptDecodeObjectEx

  PFXImportCertStore

  CryptStringToBinaryA

  CertFreeCertificateContext

  CertFindCertificateInStore

  CertEnumCertificatesInStore

  CertCloseStore

  CertFreeCertificateChain

  CertOpenStore

  ws2_32

  listen

  WSAGetLastError

  bind

  connect

  getsockname

  ntohl

  gethostname

  closesocket

  sendto

  recv

  recvfrom

  freeaddrinfo

  getaddrinfo

  select

  __WSAFDIsSet

  ioctlsocket

  getsockopt

  htonl

  accept

  WSACleanup

  WSAStartup

  WSAIoctl

  getpeername

  WSASetLastError

  socket

  setsockopt

  ntohs

  htons

  send

  rpcrt4

  UuidToStringA

  UuidCreate

  RpcStringFreeA

  psapi

  GetModuleInformation

  userenv

  UnloadUserProfile

  vcruntime140_1

  __CxxFrameHandler4

  vcruntime140

  __std_terminate

  __std_exception_destroy

  __std_exception_copy

  strstr

  strrchr

  longjmp

  memcpy

  memmove

  memset

  memchr

  memcmp

  _CxxThrowException

  strchr

  __intrinsic_setjmp

  __C_specific_handler

  __current_exception

  __current_exception_context

  api-ms-win-crt-stdio-l1-1-0

  _wfopen

  __stdio_common_vsprintf

  __p__commode

  _lseeki64

  fflush

  fread

  __stdio_common_vsscanf

  fclose

  feof

  _read

  fputs

  fopen

  _write

  _close

  _open

  __stdio_common_vfprintf

  ftell

  _popen

  _pclose

  fgets

  fputc

  __acrt_iob_func

  fseek

  _set_fmode

  fwrite

  api-ms-win-crt-utility-l1-1-0

  rand

  qsort

  api-ms-win-crt-string-l1-1-0

  strcmp

  strncmp

  _strdup

  strncpy

  strpbrk

  isupper

  strcspn

  strspn

  tolower

  api-ms-win-crt-heap-l1-1-0

  malloc

  _set_new_mode

  calloc

  free

  realloc

  _callnewh

  _msize

  api-ms-win-crt-runtime-l1-1-0

  _errno

  _resetstkoflw

  strerror

  __sys_nerr

  _invalid_parameter_noinfo

  exit

  _invalid_parameter_noinfo_noreturn

  _wassert

  _beginthreadex

  _getpid

  _register_thread_local_exe_atexit_callback

  _c_exit

  system

  _exit

  _initterm_e

  _initterm

  _get_narrow_winmain_command_line

  _set_app_type

  _seh_filter_exe

  _cexit

  _crt_atexit

  _register_onexit_function

  _initialize_onexit_table

  _initialize_narrow_environment

  _configure_narrow_argv

  terminate

  api-ms-win-crt-convert-l1-1-0

  strtoul

  atoi

  strtol

  strtoull

  strtod

  strtoll

  api-ms-win-crt-math-l1-1-0

  _dclass

  acosf

  fmodf

  cos

  __setusermatherr

  pow

  ceilf

  powf

  sqrtf

  roundf

  sin

  sinf

  cosf

  api-ms-win-crt-filesystem-l1-1-0

  _unlink

  _stat64

  _fstat64

  _access

  api-ms-win-crt-locale-l1-1-0

  localeconv

  _configthreadlocale

  api-ms-win-crt-multibyte-l1-1-0

  _mbsicmp

  api-ms-win-crt-time-l1-1-0

  _time64

  _gmtime64

  advapi32

  CryptDestroyKey

  AddAccessAllowedAce

  GetLengthSid

  GetTokenInformation

  InitializeAcl

  IsValidSid

  SetSecurityInfo

  CopySid

  ConvertSidToStringSidA

  CryptAcquireContextA

  CryptReleaseContext

  CryptGetHashParam

  CryptGenRandom

  CryptCreateHash

  CryptHashData

  CryptEncrypt

  CryptImportKey

  OpenProcessToken

  CryptDestroyHash

  Sections

  .text

  Size: 1.1MB - Virtual size: 1.1MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 315KB - Virtual size: 315KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 691KB - Virtual size: 695KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 51KB - Virtual size: 50KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 512B - Virtual size: 488B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 572KB - Virtual size: 576KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

• Realtek HD Audio Universal Service.exe

  .exe windows:4 windows x86 arch:x86

  f34d5f2d4577ed6d9ceec516c1f5a744

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  mscoree

  _CorExeMain

  Sections

  .text

  Size: 51KB - Virtual size: 50KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ