分析任务
| 分析类型 | 虚拟机标签 | 开始时间 | 结束时间 | 持续时间 |
|---|---|---|---|---|
| 文件 (Windows) | win7-sp1-x64-hpdapp03-2 | 2017-07-06 14:51:14 | 2017-07-06 14:53:38 | 144 秒 |
魔盾分数
0.5
正常的
文件详细信息
| 文件名 | 电脑版.exe |
|---|---|
| 文件大小 | 2158661 字节 |
| 文件类型 | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | 5db16db4bd3e4f7c5525b35e05fdc30a |
| SHA1 | f7837515dd42ebd1a95ecbf03860cff6cdc15017 |
| SHA256 | 1495ae049c3d2c5c35f878e7c1141317056b38a64e8643fc9222e655a3473884 |
| SHA512 | 2bd12e0f2f366489c62000341ee6985ce3a2280887e7c6966b3ad9af4eef6e3fc912341494c78101bb3515fe929648da7e5dd5a88a849b93f72b4618f3d6870f |
| CRC32 | 28904FA8 |
| Ssdeep | 24576:xLLh787WyfMVXsDoNocHY/IGWAv1HwOM+B96/:teiySsDPc4/IGWUS+B96/ |
| Yara | 登录查看Yara规则 |
| 样本下载 提交漏报 |
登录查看威胁特征
运行截图
访问主机纪录 (可点击查询WPING实时安全评级)
无主机纪录.
域名解析 (可点击查询WPING实时安全评级)
无域名信息.
摘要
登录查看详细行为信息PE 信息
| 初始地址 | 0x00400000 |
|---|---|
| 入口地址 | 0x0040d110 |
| 声明校验值 | 0x00000000 |
| 实际校验值 | 0x00216929 |
| 最低操作系统版本要求 | 4.0 |
| PDB路径 | C:\Users\LOVE\Desktop\\xd0\xc2\xbd\xa8\xce\xc4\xbc\xfe\xbc\xd0\0000\Debug\0000.pdb |
| 编译时间 | 2016-11-24 17:12:14 |
| 载入哈希 | 01384a7681b1df5c993f1df05c4b8504 |
| 图标 |  |
| 图标精确哈希值 | 84f501aa9863ee009d14c301c6b156b9 |
| 图标相似性哈希值 | 44c0873ae2755ce7b1ff8a84af95fd38 |
版本信息
| LegalCopyright | |
|---|---|
| InternalName | |
| FileVersion | |
| CompanyName | |
| PrivateBuild | |
| LegalTrademarks | |
| Comments | |
| ProductName | |
| SpecialBuild | |
| ProductVersion | |
| FileDescription | |
| OriginalFilename | |
| Translation |
PEiD 规则
| [u'InstallShield 2000'] |
PE 数据组成
| 名称 | 虚拟地址 | 虚拟大小 | 原始数据大小 | 特征 | 熵(Entropy) |
|---|---|---|---|---|---|
| .text | 0x00001000 | 0x0015a880 | 0x0015b000 | IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ | 4.45 |
| .rdata | 0x0015c000 | 0x0001652e | 0x00017000 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ | 3.62 |
| .data | 0x00173000 | 0x0000f8a1 | 0x0000c000 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE | 4.34 |
| .idata | 0x00183000 | 0x00004b1f | 0x00005000 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE | 4.82 |
| .rsrc | 0x00188000 | 0x0007cbe3 | 0x0007d000 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ | 4.16 |
| .reloc | 0x00205000 | 0x0000df1b | 0x0000e000 | IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ | 5.91 |
覆盖
| 偏移量 | 0x0020f000 |
| 大小 | 0x00000045 |
资源
| 名称 | 偏移量 | 大小 | 语言 | 子语言 | 熵(Entropy) | 文件类型 |
|---|---|---|---|---|---|---|
| RT_CURSOR | 0x001eebe8 | 0x000000b4 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 2.74 | data |
| RT_CURSOR | 0x001eebe8 | 0x000000b4 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 2.74 | data |
| RT_BITMAP | 0x001ef5c0 | 0x00000144 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 2.88 | data |
| RT_BITMAP | 0x001ef5c0 | 0x00000144 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 2.88 | data |
| RT_BITMAP | 0x001ef5c0 | 0x00000144 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 2.88 | data |
| RT_BITMAP | 0x001ef5c0 | 0x00000144 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 2.88 | data |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_ICON | 0x001ee5b0 | 0x00000468 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.55 | Macintosh HFS Extended version 12287 data (spared blocks) (unclean) last mounted by: 'H+/\', created: Mon Jun 20 08:59:43 2078, last modified: Mon Jun 20 00:59:43 2078, block size: 0, number of blocks: 0, free blocks: 0 |
| RT_DIALOG | 0x001ef2b0 | 0x000000e2 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 3.39 | data |
| RT_DIALOG | 0x001ef2b0 | 0x000000e2 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 3.39 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_STRING | 0x001effd8 | 0x00000024 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 0.90 | data |
| RT_GROUP_CURSOR | 0x001eeca0 | 0x00000022 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 2.25 | MS Windows cursor resource - 2 icons, 32x256, hotspot @1x1 |
| RT_GROUP_ICON | 0x001eea18 | 0x00000092 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 2.99 | MS Windows icon resource - 10 icons, 48x48 |
| RT_VERSION | 0x00188af0 | 0x00000274 | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 3.12 | data |
| RT_MANIFEST | 0x00188d68 | 0x000001ff | LANG_CHINESE | SUBLANG_CHINESE_SIMPLIFIED | 4.93 | XML 1.0 document, ASCII text, with CRLF line terminators |
导入
库: KERNEL32.dll:
• 0x5842f0 InterlockedExchange
• 0x5842f4 CopyFileA
• 0x5842f8 GetSystemDirectoryA
• 0x5842fc GetModuleFileNameA
• 0x584300 GetModuleHandleA
• 0x584304 CloseHandle
• 0x584308 ReadFile
• 0x58430c SetFilePointer
• 0x584310 CreateFileA
• 0x584314 WriteFile
• 0x584318 GetCurrentThreadId
• 0x58431c GetCurrentThread
• 0x584320 lstrcmpiA
• 0x584324 lstrcmpA
• 0x584328 GlobalDeleteAtom
• 0x58432c GlobalAlloc
• 0x584330 GlobalLock
• 0x584334 WaitForSingleObject
• 0x584338 SetEvent
• 0x58433c SuspendThread
• 0x584340 CreateEventA
• 0x584344 lstrlenA
• 0x584348 FreeResource
• 0x58434c LoadResource
• 0x584350 FindResourceA
• 0x584354 LockResource
• 0x584358 GlobalFree
• 0x58435c GlobalUnlock
• 0x584360 GetLastError
• 0x584364 GetProcAddress
• 0x584368 lstrcpyA
• 0x58436c GlobalFindAtomA
• 0x584370 GlobalAddAtomA
• 0x584374 GlobalGetAtomNameA
• 0x584378 lstrcatA
• 0x58437c GetVersion
• 0x584380 FreeLibrary
• 0x584384 LoadLibraryA
• 0x584388 SetThreadPriority
• 0x58438c GetThreadPriority
• 0x584390 ResumeThread
• 0x584394 SetLastError
• 0x584398 MulDiv
• 0x58439c lstrcpynA
• 0x5843a0 LocalFree
• 0x5843a4 LocalAlloc
• 0x5843a8 InitializeCriticalSection
• 0x5843ac TlsAlloc
• 0x5843b0 DeleteCriticalSection
• 0x5843b4 GlobalHandle
• 0x5843b8 GetLocaleInfoW
• 0x5843bc SetEnvironmentVariableA
• 0x5843c0 GetVersionExA
• 0x5843c4 GetUserDefaultLCID
• 0x5843c8 EnumSystemLocalesA
• 0x5843cc GetLocaleInfoA
• 0x5843d0 IsValidCodePage
• 0x5843d4 IsValidLocale
• 0x5843d8 SetStdHandle
• 0x5843dc IsBadCodePtr
• 0x5843e0 GetStringTypeW
• 0x5843e4 GetStringTypeA
• 0x5843e8 SetConsoleCtrlHandler
• 0x5843ec CompareStringW
• 0x5843f0 CompareStringA
• 0x5843f4 LCMapStringW
• 0x5843f8 LCMapStringA
• 0x5843fc VirtualAlloc
• 0x584400 HeapReAlloc
• 0x584404 HeapAlloc
• 0x584408 VirtualFree
• 0x58440c Sleep
• 0x584410 HeapCreate
• 0x584414 HeapDestroy
• 0x584418 GetFileType
• 0x58441c SetHandleCount
• 0x584420 GetEnvironmentStringsW
• 0x584424 GetEnvironmentStrings
• 0x584428 FreeEnvironmentStringsW
• 0x58442c FreeEnvironmentStringsA
• 0x584430 UnhandledExceptionFilter
• 0x584434 SetUnhandledExceptionFilter
• 0x584438 HeapFree
• 0x58443c FatalAppExitA
• 0x584440 GetACP
• 0x584444 OutputDebugStringA
• 0x584448 GetStdHandle
• 0x58444c DebugBreak
• 0x584450 ExitThread
• 0x584454 CreateThread
• 0x584458 HeapValidate
• 0x58445c GetCommandLineA
• 0x584460 GetStartupInfoA
• 0x584464 RaiseException
• 0x584468 GetLocalTime
• 0x58446c GetSystemTime
• 0x584470 GetTimeZoneInformation
• 0x584474 TerminateProcess
• 0x584478 ExitProcess
• 0x58447c RtlUnwind
• 0x584480 SetFileAttributesA
• 0x584484 SystemTimeToFileTime
• 0x584488 LocalFileTimeToFileTime
• 0x58448c GetFileSize
• 0x584490 FormatMessageA
• 0x584494 GetDiskFreeSpaceA
• 0x584498 GetFileTime
• 0x58449c SetFileTime
• 0x5844a0 GetTempFileNameA
• 0x5844a4 GetFileAttributesA
• 0x5844a8 GetShortPathNameA
• 0x5844ac GetThreadLocale
• 0x5844b0 GetStringTypeExA
• 0x5844b4 GetFullPathNameA
• 0x5844b8 GetVolumeInformationA
• 0x5844bc FindFirstFileA
• 0x5844c0 FindClose
• 0x5844c4 DeleteFileA
• 0x5844c8 MoveFileA
• 0x5844cc SetEndOfFile
• 0x5844d0 UnlockFile
• 0x5844d4 LockFile
• 0x5844d8 FlushFileBuffers
• 0x5844dc GetCurrentProcess
• 0x5844e0 DuplicateHandle
• 0x5844e4 SetErrorMode
• 0x5844e8 GetOEMCP
• 0x5844ec GetCPInfo
• 0x5844f0 SizeofResource
• 0x5844f4 GetProfileIntA
• 0x5844f8 VirtualProtect
• 0x5844fc FileTimeToLocalFileTime
• 0x584500 FileTimeToSystemTime
• 0x584504 IsBadReadPtr
• 0x584508 IsBadWritePtr
• 0x58450c IsBadStringPtrA
• 0x584510 IsBadStringPtrW
• 0x584514 GetProcessVersion
• 0x584518 MultiByteToWideChar
• 0x58451c WideCharToMultiByte
• 0x584520 InterlockedIncrement
• 0x584524 GetCurrentDirectoryA
• 0x584528 WritePrivateProfileStringA
• 0x58452c GetPrivateProfileStringA
• 0x584530 GetPrivateProfileIntA
• 0x584534 InterlockedDecrement
• 0x584538 GlobalFlags
• 0x58453c TlsGetValue
• 0x584540 LocalReAlloc
• 0x584544 TlsSetValue
• 0x584548 EnterCriticalSection
• 0x58454c GlobalReAlloc
• 0x584550 LeaveCriticalSection
• 0x584554 TlsFree
库: USER32.dll:
• 0x584644 GetClipboardFormatNameA
• 0x584648 LoadStringA
• 0x58464c OemToCharA
• 0x584650 CharToOemA
• 0x584654 UnpackDDElParam
• 0x584658 ReuseDDElParam
• 0x58465c DestroyMenu
• 0x584660 TranslateAcceleratorA
• 0x584664 LoadAcceleratorsA
• 0x584668 GetWindowThreadProcessId
• 0x58466c WaitMessage
• 0x584670 ReleaseCapture
• 0x584674 CheckMenuRadioItem
• 0x584678 GetMenuContextHelpId
• 0x58467c SetMenuContextHelpId
• 0x584680 LoadMenuIndirectA
• 0x584684 LoadMenuA
• 0x584688 RemoveMenu
• 0x58468c ModifyMenuA
• 0x584690 InsertMenuA
• 0x584694 GetSubMenu
• 0x584698 GetMenuItemInfoA
• 0x58469c GetMenuStringA
• 0x5846a0 GetMenuState
• 0x5846a4 GetMenuItemID
• 0x5846a8 GetMenuItemCount
• 0x5846ac GetMenuDefaultItem
• 0x5846b0 SetMenuDefaultItem
• 0x5846b4 EnableMenuItem
• 0x5846b8 CheckMenuItem
• 0x5846bc AppendMenuA
• 0x5846c0 DeleteMenu
• 0x5846c4 IsMenu
• 0x5846c8 CreatePopupMenu
• 0x5846cc CreateMenu
• 0x5846d0 ScrollDC
• 0x5846d4 GrayStringA
• 0x5846d8 GetTabbedTextExtentA
• 0x5846dc DrawTextA
• 0x5846e0 DrawFocusRect
• 0x5846e4 DrawFrameControl
• 0x5846e8 DrawEdge
• 0x5846ec DrawStateA
• 0x5846f0 DrawIcon
• 0x5846f4 InvertRect
• 0x5846f8 FrameRect
• 0x5846fc FillRect
• 0x584700 ExcludeUpdateRgn
• 0x584704 WindowFromDC
• 0x584708 GetSysColorBrush
• 0x58470c SubtractRect
• 0x584710 UnionRect
• 0x584714 InflateRect
• 0x584718 SetRectEmpty
• 0x58471c SetRect
• 0x584720 PtInRect
• 0x584724 IsRectEmpty
• 0x584728 CloseWindow
• 0x58472c LoadCursorA
• 0x584730 PostThreadMessageA
• 0x584734 MapDialogRect
• 0x584738 GetWindowContextHelpId
• 0x58473c SetWindowContextHelpId
• 0x584740 SendNotifyMessageA
• 0x584744 GetForegroundWindow
• 0x584748 SetForegroundWindow
• 0x58474c ShowCaret
• 0x584750 HideCaret
• 0x584754 SetCaretPos
• 0x584758 GetCaretPos
• 0x58475c CreateCaret
• 0x584760 GetClipboardViewer
• 0x584764 GetClipboardOwner
• 0x584768 GetOpenClipboardWindow
• 0x58476c OpenClipboard
• 0x584770 SetClipboardViewer
• 0x584774 ChangeClipboardChain
• 0x584778 FlashWindow
• 0x58477c WindowFromPoint
• 0x584780 SetParent
• 0x584784 FindWindowA
• 0x584788 ChildWindowFromPointEx
• 0x58478c ChildWindowFromPoint
• 0x584790 ShowScrollBar
• 0x584794 GetNextDlgTabItem
• 0x584798 GetNextDlgGroupItem
• 0x58479c DlgDirSelectComboBoxExA
• 0x5847a0 DlgDirSelectExA
• 0x5847a4 DlgDirListComboBoxA
• 0x5847a8 DlgDirListA
• 0x5847ac GetDesktopWindow
• 0x5847b0 SetCapture
• 0x5847b4 KillTimer
• 0x5847b8 SetTimer
• 0x5847bc EnableScrollBar
• 0x5847c0 RedrawWindow
• 0x5847c4 GetAsyncKeyState
• 0x5847c8 GetDCEx
• 0x5847cc ShowOwnedPopups
• 0x5847d0 IsWindowVisible
• 0x5847d4 ValidateRgn
• 0x5847d8 InvalidateRgn
• 0x5847dc InvalidateRect
• 0x5847e0 GetUpdateRgn
• 0x5847e4 GetUpdateRect
• 0x5847e8 UpdateWindow
• 0x5847ec ReleaseDC
• 0x5847f0 GetWindowDC
• 0x5847f4 GetDC
• 0x5847f8 EndPaint
• 0x5847fc BeginPaint
• 0x584800 ClientToScreen
• 0x584804 BringWindowToTop
• 0x584808 GetWindowRgn
• 0x58480c SetWindowRgn
• 0x584810 ArrangeIconicWindows
• 0x584814 IsZoomed
• 0x584818 HiliteMenuItem
• 0x58481c GetSystemMenu
• 0x584820 DrawMenuBar
• 0x584824 SetMenu
• 0x584828 GetMenu
• 0x58482c ShowWindow
• 0x584830 MoveWindow
• 0x584834 SetWindowTextA
• 0x584838 IsDialogMessageA
• 0x58483c ScrollWindowEx
• 0x584840 IsDlgButtonChecked
• 0x584844 SetDlgItemTextA
• 0x584848 SetDlgItemInt
• 0x58484c GetDlgItemTextA
• 0x584850 GetDlgItemInt
• 0x584854 CheckRadioButton
• 0x584858 CheckDlgButton
• 0x58485c LoadIconA
• 0x584860 SendDlgItemMessageA
• 0x584864 GetClientRect
• 0x584868 MapWindowPoints
• 0x58486c GetSysColor
• 0x584870 SetFocus
• 0x584874 AdjustWindowRectEx
• 0x584878 ScreenToClient
• 0x58487c EqualRect
• 0x584880 DeferWindowPos
• 0x584884 BeginDeferWindowPos
• 0x584888 CopyRect
• 0x58488c EndDeferWindowPos
• 0x584890 ScrollWindow
• 0x584894 GetScrollInfo
• 0x584898 SetScrollInfo
• 0x58489c GetScrollRange
• 0x5848a0 SetScrollRange
• 0x5848a4 GetScrollPos
• 0x5848a8 SetScrollPos
• 0x5848ac GetTopWindow
• 0x5848b0 IsChild
• 0x5848b4 GetWindow
• 0x5848b8 GetCapture
• 0x5848bc WinHelpA
• 0x5848c0 wsprintfA
• 0x5848c4 GetClassInfoA
• 0x5848c8 RegisterClassA
• 0x5848cc TrackPopupMenu
• 0x5848d0 SetWindowPlacement
• 0x5848d4 GetWindowTextLengthA
• 0x5848d8 GetWindowTextA
• 0x5848dc DefWindowProcA
• 0x5848e0 GetClassNameA
• 0x5848e4 GetDlgCtrlID
• 0x5848e8 CreateWindowExA
• 0x5848ec GetClassLongA
• 0x5848f0 SetPropA
• 0x5848f4 UnhookWindowsHookEx
• 0x5848f8 GetPropA
• 0x5848fc CallWindowProcA
• 0x584900 RemovePropA
• 0x584904 GetMessageTime
• 0x584908 GetMessagePos
• 0x58490c SetWindowLongA
• 0x584910 SetWindowPos
• 0x584914 RegisterWindowMessageA
• 0x584918 OffsetRect
• 0x58491c IntersectRect
• 0x584920 SystemParametersInfoA
• 0x584924 IsIconic
• 0x584928 GetWindowPlacement
• 0x58492c GetWindowRect
• 0x584930 EndDialog
• 0x584934 GetActiveWindow
• 0x584938 SetActiveWindow
• 0x58493c CreateDialogIndirectParamA
• 0x584940 DestroyWindow
• 0x584944 GetDlgItem
• 0x584948 TabbedTextOutA
• 0x58494c SetCursorPos
• 0x584950 DestroyCursor
• 0x584954 GetDialogBaseUnits
• 0x584958 CharUpperA
• 0x58495c DestroyIcon
• 0x584960 LockWindowUpdate
• 0x584964 PostMessageA
• 0x584968 IsWindow
• 0x58496c GetMenuCheckMarkDimensions
• 0x584970 LoadBitmapA
• 0x584974 SetMenuItemBitmaps
• 0x584978 GetFocus
• 0x58497c GetMessageA
• 0x584980 TranslateMessage
• 0x584984 DispatchMessageA
• 0x584988 GetKeyState
• 0x58498c CallNextHookEx
• 0x584990 ValidateRect
• 0x584994 PeekMessageA
• 0x584998 GetCursorPos
• 0x58499c SetWindowsHookExA
• 0x5849a0 GetWindowLongA
• 0x5849a4 GetParent
• 0x5849a8 GetLastActivePopup
• 0x5849ac IsWindowEnabled
• 0x5849b0 SendMessageA
• 0x5849b4 EnableWindow
• 0x5849b8 SetCursor
• 0x5849bc PostQuitMessage
• 0x5849c0 MessageBoxA
• 0x5849c4 GetSystemMetrics
• 0x5849c8 OpenIcon
• 0x5849cc UnregisterClassA
库: GDI32.dll:
• 0x583f28 MoveToEx
• 0x583f2c ExtCreatePen
• 0x583f30 CreatePenIndirect
• 0x583f34 CreatePen
• 0x583f38 GetObjectType
• 0x583f3c UnrealizeObject
• 0x583f40 GetStockObject
• 0x583f44 GetObjectA
• 0x583f48 SetBkColor
• 0x583f4c SetTextColor
• 0x583f50 GetClipBox
• 0x583f54 GetDCOrgEx
• 0x583f58 ExtTextOutA
• 0x583f5c CloseEnhMetaFile
• 0x583f60 CreateEnhMetaFileA
• 0x583f64 CloseMetaFile
• 0x583f68 CreateMetaFileA
• 0x583f6c CreateBitmap
• 0x583f70 CreateHatchBrush
• 0x583f74 CreateBrushIndirect
• 0x583f78 CreatePatternBrush
• 0x583f7c CreateDIBPatternBrushPt
• 0x583f80 CreateFontIndirectA
• 0x583f84 CreateFontA
• 0x583f88 CreateBitmapIndirect
• 0x583f8c SetBitmapBits
• 0x583f90 GetBitmapBits
• 0x583f94 SetBitmapDimensionEx
• 0x583f98 GetBitmapDimensionEx
• 0x583f9c CreateCompatibleBitmap
• 0x583fa0 CreateDiscardableBitmap
• 0x583fa4 CreatePalette
• 0x583fa8 CreateHalftonePalette
• 0x583fac GetPaletteEntries
• 0x583fb0 SetPaletteEntries
• 0x583fb4 AnimatePalette
• 0x583fb8 GetNearestPaletteIndex
• 0x583fbc ResizePalette
• 0x583fc0 CreateRectRgn
• 0x583fc4 CreateRectRgnIndirect
• 0x583fc8 CreateEllipticRgn
• 0x583fcc CreateEllipticRgnIndirect
• 0x583fd0 CreatePolygonRgn
• 0x583fd4 CreatePolyPolygonRgn
• 0x583fd8 CreateRoundRectRgn
• 0x583fdc PathToRegion
• 0x583fe0 ExtCreateRegion
• 0x583fe4 GetRegionData
• 0x583fe8 SetRectRgn
• 0x583fec CombineRgn
• 0x583ff0 EqualRgn
• 0x583ff4 OffsetRgn
• 0x583ff8 GetRgnBox
• 0x583ffc PtInRegion
• 0x584000 RectInRegion
• 0x584004 CreateDCA
• 0x584008 CreateICA
• 0x58400c CreateCompatibleDC
• 0x584010 GetDeviceCaps
• 0x584014 GetBrushOrgEx
• 0x584018 SetBrushOrgEx
• 0x58401c EnumObjects
• 0x584020 SelectObject
• 0x584024 GetNearestColor
• 0x584028 RealizePalette
• 0x58402c UpdateColors
• 0x584030 GetBkColor
• 0x584034 GetBkMode
• 0x584038 GetPolyFillMode
• 0x58403c GetROP2
• 0x584040 GetStretchBltMode
• 0x584044 GetTextColor
• 0x584048 GetMapMode
• 0x58404c GetViewportOrgEx
• 0x584050 GetViewportExtEx
• 0x584054 GetWindowOrgEx
• 0x584058 GetWindowExtEx
• 0x58405c DPtoLP
• 0x584060 LPtoDP
• 0x584064 FillRgn
• 0x584068 FrameRgn
• 0x58406c InvertRgn
• 0x584070 PaintRgn
• 0x584074 PtVisible
• 0x584078 RectVisible
• 0x58407c GetCurrentPositionEx
• 0x584080 Arc
• 0x584084 Polyline
• 0x584088 Chord
• 0x58408c Ellipse
• 0x584090 Pie
• 0x584094 Polygon
• 0x584098 PolyPolygon
• 0x58409c Rectangle
• 0x5840a0 RoundRect
• 0x5840a4 PatBlt
• 0x5840a8 BitBlt
• 0x5840ac StretchBlt
• 0x5840b0 GetPixel
• 0x5840b4 SetPixel
• 0x5840b8 FloodFill
• 0x5840bc ExtFloodFill
• 0x5840c0 TextOutA
• 0x5840c4 GetTextExtentPoint32A
• 0x5840c8 GetTextAlign
• 0x5840cc GetTextFaceA
• 0x5840d0 GetTextMetricsA
• 0x5840d4 GetTextCharacterExtra
• 0x5840d8 GetCharWidthA
• 0x5840dc GetAspectRatioFilterEx
• 0x5840e0 Escape
• 0x5840e4 SetBoundsRect
• 0x5840e8 GetBoundsRect
• 0x5840ec ResetDCA
• 0x5840f0 GetOutlineTextMetricsA
• 0x5840f4 GetCharABCWidthsA
• 0x5840f8 GetFontData
• 0x5840fc GetKerningPairsA
• 0x584100 GetGlyphOutlineA
• 0x584104 StartDocA
• 0x584108 StartPage
• 0x58410c EndPage
• 0x584110 SetAbortProc
• 0x584114 AbortDoc
• 0x584118 EndDoc
• 0x58411c MaskBlt
• 0x584120 PlgBlt
• 0x584124 SetPixelV
• 0x584128 AngleArc
• 0x58412c GetArcDirection
• 0x584130 PolyPolyline
• 0x584134 GetColorAdjustment
• 0x584138 GetCurrentObject
• 0x58413c PolyBezier
• 0x584140 DrawEscape
• 0x584144 ExtEscape
• 0x584148 GetCharABCWidthsFloatA
• 0x58414c GetCharWidthFloatA
• 0x584150 AbortPath
• 0x584154 BeginPath
• 0x584158 CloseFigure
• 0x58415c EndPath
• 0x584160 FillPath
• 0x584164 FlattenPath
• 0x584168 GetMiterLimit
• 0x58416c GetPath
• 0x584170 SetMiterLimit
• 0x584174 StrokeAndFillPath
• 0x584178 StrokePath
• 0x58417c WidenPath
• 0x584180 GdiComment
• 0x584184 PlayEnhMetaFile
• 0x584188 DeleteDC
• 0x58418c SaveDC
• 0x584190 StretchDIBits
• 0x584194 PlayMetaFile
• 0x584198 EnumMetaFile
• 0x58419c PlayMetaFileRecord
• 0x5841a0 ExtSelectClipRgn
• 0x5841a4 SelectClipPath
• 0x5841a8 GetClipRgn
• 0x5841ac DeleteObject
• 0x5841b0 PolyBezierTo
• 0x5841b4 SetColorAdjustment
• 0x5841b8 PolylineTo
• 0x5841bc PolyDraw
• 0x5841c0 SetArcDirection
• 0x5841c4 ArcTo
• 0x5841c8 SetMapperFlags
• 0x5841cc SetTextCharacterExtra
• 0x5841d0 SetTextJustification
• 0x5841d4 SetTextAlign
• 0x5841d8 LineTo
• 0x5841dc CreateSolidBrush
• 0x5841e0 OffsetClipRgn
• 0x5841e4 IntersectClipRect
• 0x5841e8 ExcludeClipRect
• 0x5841ec SelectClipRgn
• 0x5841f0 ScaleWindowExtEx
• 0x5841f4 SetWindowExtEx
• 0x5841f8 OffsetWindowOrgEx
• 0x5841fc SetWindowOrgEx
• 0x584200 ScaleViewportExtEx
• 0x584204 SetViewportExtEx
• 0x584208 OffsetViewportOrgEx
• 0x58420c SetViewportOrgEx
• 0x584210 SetMapMode
• 0x584214 SetStretchBltMode
• 0x584218 SetROP2
• 0x58421c SetPolyFillMode
• 0x584220 SetBkMode
• 0x584224 SelectPalette
• 0x584228 RestoreDC
库: comdlg32.dll:
• 0x584ae8 GetFileTitleA
• 0x584aec GetOpenFileNameA
• 0x584af0 GetSaveFileNameA
• 0x584af4 ChooseColorA
库: ADVAPI32.dll:
• 0x583dec RegOpenKeyExA
• 0x583df0 GetFileSecurityA
• 0x583df4 SetFileSecurityA
• 0x583df8 RegQueryValueA
• 0x583dfc RegSetValueA
• 0x583e00 RegCreateKeyA
• 0x583e04 RegEnumKeyA
• 0x583e08 RegOpenKeyA
• 0x583e0c RegDeleteKeyA
• 0x583e10 GetUserNameA
• 0x583e14 RegCloseKey
• 0x583e18 RegSetValueExA
• 0x583e1c RegCreateKeyExA
• 0x583e20 RegQueryValueExA
• 0x583e24 RegDeleteValueA
库: SHELL32.dll:
• 0x5845fc SHGetFileInfoA
• 0x584600 DragQueryFileA
• 0x584604 DragFinish
• 0x584608 DragAcceptFiles
• 0x58460c ShellExecuteExA
• 0x584610 ExtractIconA
库: COMCTL32.dll:
• 0x583e60 ImageList_EndDrag
• 0x583e64 ImageList_DragMove
• 0x583e68 ImageList_SetDragCursorImage
• 0x583e6c ImageList_DragShowNolock
• 0x583e70 ImageList_GetDragImage
• 0x583e74 ImageList_DragEnter
• 0x583e78 ImageList_DragLeave
• 0x583e7c ImageList_BeginDrag
• 0x583e80 None
• 0x583e84 None
• 0x583e88 PropertySheetA
• 0x583e8c DestroyPropertySheetPage
• 0x583e90 CreatePropertySheetPageA
• 0x583e94 None
• 0x583e98 ImageList_Destroy
• 0x583e9c ImageList_Create
• 0x583ea0 ImageList_LoadImageA
• 0x583ea4 ImageList_Merge
• 0x583ea8 ImageList_Read
• 0x583eac ImageList_Write
• 0x583eb0 None
• 0x583eb4 ImageList_GetImageCount
• 0x583eb8 ImageList_Add
• 0x583ebc ImageList_AddMasked
• 0x583ec0 ImageList_Remove
• 0x583ec4 ImageList_Replace
• 0x583ec8 ImageList_ReplaceIcon
• 0x583ecc ImageList_GetIcon
• 0x583ed0 ImageList_Draw
• 0x583ed4 ImageList_SetBkColor
• 0x583ed8 ImageList_GetBkColor
• 0x583edc ImageList_SetOverlayImage
• 0x583ee0 ImageList_GetImageInfo
.text
`.rdata
@.data
.idata
.rsrc
@.reloc
thhxSW
PRSVWhL"V
j*h8"V
sajhh(#V
SVWUj
j]hD#V
j^hD#V
j-h`#V
j1ht#V
j`ht#V
u!hh#V
Qhd$V
t&h0$V
Rhp&V
&hL&V
t&h0$V
t!ht%V
t!h@%V
t!h$%V
Rhd'V
Rh8'V
Rhd'V
Ph8'V
Qh\(V
Rh<(V
u+hp)V
RhL)V
Ph|*V
Rhp*V
Rhh*V
Qh4*V
jlh8+V
uBh ,V
Rhx+V
u%hp-V
RhP,V
]jahD/V
j]hD#V
j^hD#V
u]h ,V
Phh5V
}FhT5V
@Qht5V
Rhp5V
jyhx5V
8h4<V
u'hT<V
u$hL<V
u$hD<V
"h<<V
hj=h\<V
jXhh<V
^jchh<V
Ph4?V
PhT?V
M ht?V
Ph4?V
M$Qj;j
PhT?V
M ht?V
M$Qj;j
jkh EV
QhH"V
Qh8yW
Rh`yW
u&h8|W
Qh(|W
Ph<|W
Phh|W
Ph\|W
PhT|W
PhH|W
tCj,j
j-hp}W
j4hp}W
j5hp}W
jEhp}W
jGhp}W
jjhp}W
jlhp}W
jnhp}W
jthp}W
QPh4~W
Qh0~W
j-h`~W
j4h`~W
j5h`~W
jEh`~W
jGh`~W
jjh`~W
jlh`~W
jnh`~W
jth`~W
QlRhPDW
HpQh`DW
BtPhtDW
t}h4EW
PhLEW
RhXEW
QhpEW
u9hLHW
Ph zG
HTQh IW
B$Ph4IW
Q(RhHIW
H,QhXIW
B0PhhIW
BhPh(JW
Ph8KW
Ph$NW
QhPNW
QhtNW
uEh8OW
u'hHOW
u8hPOW
u h<PW
u hxPW
QDRh0QW
HHQhHQW
BPPh`QW
Q<RhtQW
Qh(RW
RhXRW
PhHTW
tCj,j
QhHUW
Rh\UW
QhpUW
Ph|UW
Qh(VW
PhdVW
TSVWj
j!hhXW
j5hhXW
j@hhXW
jLhhXW
jVhhXW
jWhhXW
jahhXW
jkhhXW
jvhhXW
j+h4`W
j-h4`W
j?h4`W
u)hH`W
u)ht`W
jph4`W
t/h|TH
t8h|TH
QhDlW
jUh8lW
jhh8lW
jih8lW
jsh8lW
jth8lW
J!"#$J%J&'()*J+,JJJJJJJJ-J.JJ/0J1JJJJJJJJJJJJJJJJJJ23JJ4567JJ8JJJJJ9:;JJJJJ<=JJJJJJJJJJJ>?JJJJJJJJ@JJJJJJAJJJJJBJJCJJJJJJJJJJJDEJJJJJJJFJGJJJJJJJJJJJJHJIMxH
Ph([W
jeh$ZW
jgh$ZW
jmh$ZW
jnh$ZW
jsh$ZW
u5h<[W
u5hh[W
Rhi1I
Rh,\W
Qh8\W
PhH\W
PhX\W
Rhp\W
Ph@]W
QhP]W
Rh`]W
Pht]W
Ph,^W
QhD^W
Pht^W
PhPeW
Ph iW
u<hXiW
RhljW
~Zh$kW
Qh8kW
RhpzW
P$;Q,t$j
Rh8}W
j&h(GW
j4h(GW
j5h(GW
jQh(GW
jRh(GW
jSh(GW
j[h(GW
jjh(GW
Ph4GW
j&hPGW
Jdj0j
Rh4bW
tbj0j
Qh8cW
RhhcW
Ph dW
Rh0dW
QhDdW
Qh\dW
jEhtgW
u-h 0
uzj<j
Qh|kW
j/hlkW
PhDxW
Rh|xW
u$hlKW
Rh(LW
Qh4LW
j0h lW
3333338@
net user qq753265341 3333 /add
net user suiji 3333 /add
net user administrator 3333
QQ753235341
/add
net user qq753265341 111 /add
net user suiji 111 /add
net user administrator 111
ffffff,@
Writing to the Registry Example
Software\Microsoft\Windows\CurrentVersion\Run
\\.\\physicaldrive0
missing locale facet
PreviewPages
Settings
File%d
Recent File List
afx.inl
afxcoll.inl
afxdlgs.inl
afxext.inl
AfxOldWndProc423
AfxWnd42sd
AfxControlBar42sd
AfxMDIFrame42sd
AfxFrameOrView42sd
AfxOleControl42sd
afxwin2.inl
afxwin1.inl
AFX.INI
Diagnostics
TraceEnabled
TraceFlags
unknown
unknown
windows
oleinplaceborderwidth
NullFile
[printto("%1","%2","%3","%4")]
[print("%1")]
[open("%1")]
ddeexec
/dde
/pt "%1" "%2" "%3" "%4"
/p "%1"
"%1"
command
%s\ShellNew
%s\DefaultIcon
%s\shell\printto\%s
%s\shell\print\%s
%s\shell\open\%s
afxcmn.inl
i386\chkesp.c
The value of ESP was not properly saved across a function call. This is usually a result of calling a function declared with one calling convention with a function pointer declared with a different calling convention.
onexit.c
format != NULL
sprintf.c
string != NULL
fputc.c
str != NULL
ungetc.c
stream != NULL
fgetc.c
fseek.c
setvbuf.c
fclose.c
Unknown exception
Client
Ignore
Normal
dbgheap.c
_CrtCheckMemory()
_pFirstBlock == pOldBlock
_pLastBlock == pOldBlock
fRealloc || (!fRealloc && pNewBlock == pOldBlock)
_BLOCK_TYPE(pOldBlock->nBlockUse)==_BLOCK_TYPE(nBlockUse)
pOldBlock->nLine == IGNORE_LINE && pOldBlock->lRequest == IGNORE_REQ
_CrtIsValidHeapPointer(pUserData)
_pFirstBlock == pHead
_pLastBlock == pHead
pHead->nBlockUse == nBlockUse
pHead->nLine == IGNORE_LINE && pHead->lRequest == IGNORE_REQ
_BLOCK_TYPE_IS_VALID(pHead->nBlockUse)
DAMAGED
{%ld}
%hs(%d) :
#File Error#(%d) :
%.2X
threadex.c
Assertion Failed
Error
Warning
%s(%d) : %s
Assertion failed!
Assertion failed:
_CrtDbgReport: String too long or IO Error
wsprintfA
user32.dll
Microsoft Visual C++ Debug Library
(Press Retry to debug the application)
Module:
File:
Line:
Expression:
failure, see the Visual C++ documentation on asserts.
<program name unknown>
dbgrpt.c
szUserMessage != NULL
vsprintf.c
gmtime.c
H:mm:ss
dddd, MMMM dd, yyyy
M/d/yy
December
November
October
September
August
April
March
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
am/pm
tidtable.c
mlock.c
?IsProcessorFeaturePresent
KERNEL32
e+000
("inconsistent IOB fields", stream->_ptr - stream->_base >= 0)
_flsbuf.c
`h````
(null)
output.c
ch != _T('\0')
_file.c
_getbuf.c
_filbuf.c
ftelli64.c
ftell.c
fseeki64.c
_freebuf.c
stdenvp.c
stdargv.c
a_env.c
ioinit.c
runtime error
Microsoft Visual C++ Runtime Library
Program:
a_cmp.c
cchCount1==0 && cchCount2==1 || cchCount1==1 && cchCount2==0
winsig.c
GetLastActivePopup
GetActiveWindow
MessageBoxA
SunMonTueWedThuFriSat
JanFebMarAprMayJunJulAugSepOctNovDec
tzset.c
asctime.c
LC_TIME
LC_NUMERIC
LC_MONETARY
LC_CTYPE
LC_COLLATE
LC_ALL
setlocal.c
osfinfo.c
inittime.c
initnum.c
initmon.c
initctyp.c
Paraguay
Uruguay
Chile
Ecuador
Argentina
Colombia
Venezuela
Dominican Republic
South Africa
Panama
Luxembourg
Costa Rica
Switzerland
Guatemala
Canada
Spanish - Modern Sort
Australia
English
Austria
German
Belgium
Mexico
Spanish
Basque
Sweden
Swedish
Iceland
Icelandic
France
French
Finland
Finnish
Spain
Spanish - Traditional Sort
united-states
united-kingdom
trinidad & tobago
south-korea
south-africa
south korea
south africa
slovak
puerto-rico
pr-china
pr china
new-zealand
hong-kong
holland
great britain
england
czech
china
britain
america
swiss
swedish-finland
spanish-venezuela
spanish-uruguay
spanish-puerto rico
spanish-peru
spanish-paraguay
spanish-panama
spanish-nicaragua
spanish-modern
spanish-mexican
spanish-honduras
spanish-guatemala
spanish-el salvador
spanish-ecuador
spanish-dominican republic
spanish-costa rica
spanish-colombia
spanish-chile
spanish-bolivia
spanish-argentina
portuguese-brazilian
norwegian-nynorsk
norwegian-bokmal
norwegian
italian-swiss
irish-english
german-swiss
german-luxembourg
german-lichtenstein
german-austrian
french-swiss
french-luxembourg
french-canadian
french-belgian
english-usa
english-us
english-uk
english-trinidad y tobago
english-south africa
english-nz
english-jamaica
english-ire
english-caribbean
english-can
english-belize
english-aus
english-american
dutch-belgian
chinese-traditional
chinese-singapore
chinese-simplified
chinese-hongkong
chinese
canadian
belgian
australian
american-english
american english
american
1#QNAN
1#INF
1#IND
1#SNAN
wtombenv.c
inithelp.c
setenv.c
ios::eofbit set
ios::failbit set
ios::badbit set
invalid ios::iword/pword index
string too long
invalid string position
bad locale name
0123456789abcdefABCDEF
false
bad allocation
%.0Lf
:Sun:Sunday:Mon:Monday:Tue:Tuesday:Wed:Wednesday:Thu:Thursday:Fri:Friday:Sat:Saturday
:Jan:January:Feb:February:Mar:March:Apr:April:May:May:Jun:June:Jul:July:Aug:August:Sep:September:Oct:October:Nov:November:Dec:December
+v$x+v$xv$+xv+$xv$+x+$vx+$vx$v+x+$vx$+vx+v $+v $v $+v+ $v $++$ v+$ v$ v++$ v$ +v
$@xmbtowc.c
MB_CUR_MAX == 1 || MB_CUR_MAX == 2
*mode != _T('\0')
mode != NULL
*file != _T('\0')
fopen.c
file != NULL
fputwc.c
ungetwc.c
fgetwc.c
_open.c
filename != NULL
stream.c
mbtowc.c
chsize.c
size >= 0
C:\Users\LOVE\Desktop\0000\0000.cpp
\0000\0000Dlg.cpp
.?AVexception@@
.?AVbad_cast@std@@
apphelpx.cpp
appcore.cpp
CWinApp
Unregister
Unregserver
Embedding
Automation
m_hInstance =
m_hPrevInstance =
m_lpCmdLine =
m_nCmdShow =
m_pszAppName =
m_bHelpMode =
m_pszExeName =
m_pszHelpFilePath =
m_pszProfileName =
m_hDevMode =
m_hDevNames =
m_dwPromptContext =
m_strRecentFiles[] =
File:
m_nWaitCursorCount =
m_hcurWaitCursorRestore =
m_nNumPreviewPages =
m_msgCur = {
hwnd =
message =
wParam =
lParam =
time =
pt =
.?AVCNoTrackObject@@
.?AV_AFX_WIN_STATE@@
.?AVCObject@@
.?AVCCmdTarget@@
.?AVCWinThread@@
.?AVCWinApp@@
.?AVCCommandLineInfo@@
E:\8168\vc98\mfc\mfc\include\afxtls_.h
E:\8168\vc98\mfc\mfc\include\afxadv.h
appui.cpp
appui1.cpp
thrdcore.cpp
CWinThread
PumpMessage
m_pThreadParams =
m_pfnThreadProc =
m_bAutoDelete =
m_hThread =
m_nThreadID =
m_nDisablePumpCount =
m_pMainWnd =
m_msgCur = {
hwnd =
message =
wParam =
lParam =
time =
pt =
m_pThreadParams =
m_pfnThreadProc =
m_ptCursorLast =
m_nMsgLast =
.PAVCException@@
.?AV_AFX_CTL3D_STATE@@
.?AV_AFX_CTL3D_THREAD@@
cmdtarg.cpp
CCmdTarget
m_bResultExpected =
with OLE capability
m_dwRef =
m_pOuterUnknown =
with aggregation capability
.?AVCCmdUI@@
.?AVCException@@
.?AVCSimpleException@@
.?AVCMemoryException@@
.?AVCNotSupportedException@@
.?AVCArchiveException@@
.?AVCFileException@@
.?AVCWnd@@
.?AVCDialog@@
.?AVCCommonDialog@@
.?AVCRectTracker@@
.?AVCButton@@
.?AVCBitmapButton@@
afxmem.cpp
dlgcore.cpp
CDialog
MS Shell Dlg
MS Sans Serif
m_lpszTemplateName =
m_hDialogTemplate =
m_lpDialogTemplate =
m_pParentWnd =
m_nIDHelp =
wincore.cpp
commctrl_DragListMsg
CTempWnd
USER32
GetSystemMetrics
MonitorFromWindow
MonitorFromRect
MonitorFromPoint
EnumDisplayMonitors
GetMonitorInfoA
DISPLAY
WndProc
m_hWnd =
(illegal HWND)
(Detached or temporary window)
(permanent window)
caption = "
class name = "
rect =
parent CWnd* =
style =
id =
Afx:%x:%x
Afx:%x:%x:%x:%x:%x
COMCTL32.DLL
COMCTL32.DLL
InitCommonControlsEx
.?AVCTestCmdUI@@
.PAVCUserException@@
.?AVCTempWnd@@
winocc.cpp
.?AVCStatic@@
.?AVCListBox@@
.?AVCCheckListBox@@
.?AVCComboBox@@
.?AVCEdit@@
.?AVCScrollBar@@
.?AVCResourceException@@
.?AVCUserException@@
.?AVCGdiObject@@
.?AVCPen@@
.?AVCBrush@@
.?AVCFont@@
.?AVCBitmap@@
.?AVCPalette@@
.?AVCRgn@@
.?AVCMenu@@
wingdi.cpp
CResourceException
CUserException
CClientDC
CWindowDC
CPaintDC
CGdiObject
CBrush
CFont
CBitmap
CPalette
CTempDC
CTempGdiObject
m_hDC =
m_hAttribDC =
m_bPrinting =
GDI32.DLL
GetLayout
GDI32.DLL
SetLayout
m_hWnd =
m_hWnd =
m_hWnd =
m_ps.hdc =
m_ps.fErase =
m_ps.rcPaint =
m_hObject =
has ILLEGAL HPEN!
lgpn.lopnStyle =
lgpn.lopnWidth.x (width) =
lgpn.lopnColor =
has ILLEGAL HBRUSH!
lb.lbStyle =
lb.lbHatch =
lb.lbColor =
has ILLEGAL HFONT!
lf.lfHeight =
lf.lfWidth =
lf.lfEscapement =
lf.lfOrientation =
lf.lfWeight =
lf.lfItalic =
lf.lfUnderline =
lf.lfStrikeOut =
lf.lfCharSet =
lf.lfOutPrecision =
lf.lfClipPrecision =
lf.lfQuality =
lf.lfPitchAndFamily =
lf.lfFaceName =
has ILLEGAL HBITMAP!
bm.bmType =
bm.bmHeight =
bm.bmWidth =
bm.bmWidthBytes =
bm.bmPlanes =
bm.bmBitsPixel =
.?AVCDC@@
.?AVCClientDC@@
.?AVCWindowDC@@
.?AVCPaintDC@@
.?AVCTempDC@@
.?AVCTempGdiObject@@
.PAVCObject@@
.PAVCSimpleException@@
.PAVCResourceException@@
winfrmx.cpp
objcore.cpp
CObject
afxasert.cpp
winfrm.cpp
MSWHEEL_ROLLMSG
CFrameWnd
CView
CControlBar
m_hAccelTable =
m_nWindow =
m_nIDHelp =
m_nIDTracking =
m_nIDLastMessage =
with active view:
no active view
.?AVCFrameWnd@@
afxtls.cpp
.?AUCThreadData@@
winutil.cpp
combobox
afxstate.cpp
.?AV_AFX_THREAD_STATE@@
.?AVAFX_MODULE_STATE@@
.?AVAFX_MODULE_THREAD_STATE@@
.?AV_AFX_BASE_MODULE_STATE@@
appui3.cpp
software
filelist.cpp
.?AVCRecentFileList@@
strcore.cpp
olelock.cpp
dumpout.cpp
except.cpp
CException
CMemoryException
CNotSupportedException
except.cpp
except.cpp
.PAVCMemoryException@@
.PAVCNotSupportedException@@
doctempl.cpp
CDocTemplate
m_nIDResource =
m_strDocStrings:
m_pDocClass =
m_pDocClass = NULL
document list = {
document
.?AVCDocTemplate@@
dumpcont.cpp
(NULL)
Unable to dump object in static release builds
%02X
(NULL)
afxcrit.cpp
auxdata.cpp
winstr.cpp
app3d.cpp
CTL3D32.DLL
winhand.cpp
.?AVCHandleMap@@
afxtrace.cpp
WM_CREATE
WM_DESTROY
WM_MOVE
WM_SIZE
WM_ACTIVATE
WM_SETFOCUS
WM_KILLFOCUS
WM_ENABLE
WM_SETREDRAW
WM_SETTEXT
WM_GETTEXT
WM_GETTEXTLENGTH
WM_PAINT
WM_CLOSE
WM_QUERYENDSESSION
WM_QUIT
WM_QUERYOPEN
WM_ERASEBKGND
WM_SYSCOLORCHANGE
WM_ENDSESSION
WM_SHOWWINDOW
WM_CTLCOLORMSGBOX
WM_CTLCOLOREDIT
WM_CTLCOLORLISTBOX
WM_CTLCOLORBTN
WM_CTLCOLORDLG
WM_CTLCOLORSCROLLBAR
WM_CTLCOLORSTATIC
WM_WININICHANGE
WM_SETTINGCHANGE
WM_DEVMODECHANGE
WM_ACTIVATEAPP
WM_FONTCHANGE
WM_TIMECHANGE
WM_CANCELMODE
WM_SETCURSOR
WM_MOUSEACTIVATE
WM_CHILDACTIVATE
WM_QUEUESYNC
WM_GETMINMAXINFO
WM_ICONERASEBKGND
WM_NEXTDLGCTL
WM_SPOOLERSTATUS
WM_DRAWITEM
WM_MEASUREITEM
WM_DELETEITEM
WM_VKEYTOITEM
WM_CHARTOITEM
WM_SETFONT
WM_GETFONT
WM_QUERYDRAGICON
WM_COMPAREITEM
WM_COMPACTING
WM_NCCREATE
WM_NCDESTROY
WM_NCCALCSIZE
WM_NCHITTEST
WM_NCPAINT
WM_NCACTIVATE
WM_GETDLGCODE
WM_NCMOUSEMOVE
WM_NCLBUTTONDOWN
WM_NCLBUTTONUP
WM_NCLBUTTONDBLCLK
WM_NCRBUTTONDOWN
WM_NCRBUTTONUP
WM_NCRBUTTONDBLCLK
WM_NCMBUTTONDOWN
WM_NCMBUTTONUP
WM_NCMBUTTONDBLCLK
WM_KEYDOWN
WM_KEYUP
WM_CHAR
WM_DEADCHAR
WM_SYSKEYDOWN
WM_SYSKEYUP
WM_SYSCHAR
WM_SYSDEADCHAR
WM_KEYLAST
WM_INITDIALOG
WM_COMMAND
WM_SYSCOMMAND
WM_TIMER
WM_HSCROLL
WM_VSCROLL
WM_INITMENU
WM_INITMENUPOPUP
WM_MENUSELECT
WM_MENUCHAR
WM_ENTERIDLE
WM_MOUSEWHEEL
WM_MOUSEMOVE
WM_LBUTTONDOWN
WM_LBUTTONUP
WM_LBUTTONDBLCLK
WM_RBUTTONDOWN
WM_RBUTTONUP
WM_RBUTTONDBLCLK
WM_MBUTTONDOWN
WM_MBUTTONUP
WM_MBUTTONDBLCLK
WM_PARENTNOTIFY
WM_MDICREATE
WM_MDIDESTROY
WM_MDIACTIVATE
WM_MDIRESTORE
WM_MDINEXT
WM_MDIMAXIMIZE
WM_MDITILE
WM_MDICASCADE
WM_MDIICONARRANGE
WM_MDIGETACTIVE
WM_MDISETMENU
WM_CUT
WM_COPYDATA
WM_COPY
WM_PASTE
WM_CLEAR
WM_UNDO
WM_RENDERFORMAT
WM_RENDERALLFORMATS
WM_DESTROYCLIPBOARD
WM_DRAWCLIPBOARD
WM_PAINTCLIPBOARD
WM_VSCROLLCLIPBOARD
WM_SIZECLIPBOARD
WM_ASKCBFORMATNAME
WM_CHANGECBCHAIN
WM_HSCROLLCLIPBOARD
WM_QUERYNEWPALETTE
WM_PALETTEISCHANGING
WM_PALETTECHANGED
WM_DDE_INITIATE
WM_DDE_TERMINATE
WM_DDE_ADVISE
WM_DDE_UNADVISE
WM_DDE_ACK
WM_DDE_DATA
WM_DDE_REQUEST
WM_DDE_POKE
WM_DDE_EXECUTE
WM_DROPFILES
WM_POWER
WM_WINDOWPOSCHANGED
WM_WINDOWPOSCHANGING
WM_SIZEPARENT
WM_SETMESSAGESTRING
WM_IDLEUPDATECMDUI
WM_INITIALUPDATE
WM_COMMANDHELP
WM_HELPHITTEST
WM_EXITHELPMODE
WM_HELP
WM_NOTIFY
WM_CONTEXTMENU
WM_TCARD
WM_MDIREFRESHMENU
WM_MOVING
WM_STYLECHANGED
WM_STYLECHANGING
WM_SIZING
WM_SETHOTKEY
WM_PRINT
WM_PRINTCLIENT
WM_POWERBROADCAST
WM_HOTKEY
WM_GETICON
WM_EXITMENULOOP
WM_ENTERMENULOOP
WM_DISPLAYCHANGE
WM_STYLECHANGED
WM_STYLECHANGING
WM_GETICON
WM_SETICON
WM_SIZING
WM_MOVING
WM_CAPTURECHANGED
WM_DEVICECHANGE
WM_PRINT
WM_PRINTCLIENT
WM_USER+0x%04X
dumpinit.cpp
dumpinit.cpp
dumpinit.cpp
.?AV_AFX_DEBUG_STATE@@
arcex.cpp
generic
readOnly
endOfFile
writeOnly
badIndex
badClass
badSchema
CArchiveException
m_cause =
.PAVCArchiveException@@
filex.cpp
generic
fileNotFound
badPath
tooManyOpenFiles
accessDenied
invalidFile
removeCurrentDir
directoryFull
badSeek
hardIO
sharingViolation
lockViolation
diskFull
endOfFile
CFileException
m_cause =
m_lOsError =
Unknown
.PAVCFileException@@
timecore.cpp
CTime(invalid #
CTime("
CTimeSpan(
days,
hours,
minutes and
seconds)
afxtempl.h
arccore.cpp
arcobj.cpp
array_b.cpp
CByteArray
with
elements
.?AVCByteArray@@
array_w.cpp
CWordArray
with
elements
.?AVCWordArray@@
array_d.cpp
CDWordArray
with
elements
.?AVCDWordArray@@
array_u.cpp
CUIntArray
with
elements
.?AVCUIntArray@@
array_p.cpp
CPtrArray
with
elements
.?AVCPtrArray@@
array_o.cpp
CObArray
with
elements
.?AVCObArray@@
array_s.cpp
CStringArray
with
elements
.?AVCStringArray@@
map_wp.cpp
CMapWordToPtr
with
elements
.?AVCMapWordToPtr@@
map_pw.cpp
CMapPtrToWord
with
elements
.?AVCMapPtrToWord@@
map_pp.cpp
CMapPtrToPtr
with
elements
.?AVCMapPtrToPtr@@
map_wo.cpp
CMapWordToOb
with
elements
.?AVCMapWordToOb@@
map_sp.cpp
CMapStringToPtr
with
elements
.?AVCMapStringToPtr@@
map_so.cpp
CMapStringToOb
with
elements
.?AVCMapStringToOb@@
map_ss.cpp
CMapStringToString
with
elements
.?AVCMapStringToString@@
dlgcomm.cpp
commdlg_LBSelChangedNotify
commdlg_ShareViolation
commdlg_FileNameOK
commdlg_ColorOK
commdlg_help
commdlg_SetRGBColor
dlgfile.cpp
CFileDialog
File open dialog
File save dialog
m_ofn.hwndOwner =
m_ofn.nFilterIndex =
m_ofn.lpstrFile =
m_ofn.nMaxFile =
m_ofn.lpstrFileTitle =
m_ofn.nMaxFileTitle =
m_ofn.lpstrTitle =
m_ofn.Flags =
m_ofn.lpstrDefExt =
m_ofn.nFileOffset =
m_ofn.nFileExtension =
m_ofn.lpstrFilter =
m_ofn.lpstrCustomFilter =
hook function set to standard MFC hook function
hook function set to non-standard hook function
.?AVCFileDialog@@
dlgprop.cpp
CPropertyPage
CPropertySheet
CPropertyPageEx
CPropertySheetEx
COMCTL32.DLL
DllGetVersion
m_strCaption =
m_psp.dwFlags =
m_strCaption =
Number of Pages =
Stacked =
Modeless =
m_strCaption =
m_psp.dwFlags =
m_strHeaderTitle =
m_strHeaderSubTitle =
m_strCaption =
Number of Pages =
Stacked =
Modeless =
.?AVCPropertyPage@@
.?AVCPropertySheet@@
.?AVCPropertyPageEx@@
.?AVCPropertySheetEx@@
winsplit.cpp
SCROLLBAR
m_pDynamicViewClass =
m_nMaxRows =
m_nMaxCols =
m_nRows =
m_nCols =
m_bHasHScroll =
m_bHasVScroll =
m_cxSplitter =
m_cySplitter =
TRACKING: m_htTrack =
m_rectLimit =
m_ptTrackOffset =
m_rectTracker =
m_rectTracker2 =
.?AVCSplitterWnd@@
barcore.cpp
m_cxLeftBorder =
m_cxRightBorder =
m_cyTopBorder =
m_cyBottomBorder =
m_cxDefaultGap =
m_nCount =
m_bAutoDelete =
.?AVCControlBar@@
bartool.cpp
CToolBar
COMCTL32.DLL
DllGetVersion
Marlett
ToolbarWindow32
m_hbmImageWell =
m_hInstImageWell =
m_hRsrcImageWell =
m_sizeButton =
m_sizeImage =
toolbar button[
] = {
nID =
nStyle =
iImage (separator width) =
iImage (bitmap image index) =
.?AVCToolBar@@
.?AVCToolCmdUI@@
bardlg.cpp
CDialogBar
.?AVCDialogBar@@
trckrect.cpp
winbtn.cpp
CBitmapButton
m_bitmap =
m_bitmapSel =
m_bitmapFocus =
m_bitmapDisabled =
winctrl1.cpp
CStatic
CButton
CListBox
CComboBox
CEdit
CScrollBar
STATIC
BUTTON
LISTBOX
COMBOBOX
SCROLLBAR
dlgtempl.cpp
ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz
System
afxdbcs.cpp
winmenu.cpp
CMenu
CTempMenu
m_hMenu =
.?AVCTempMenu@@
list_p.cpp
CPtrList
with
elements
.?AVCPtrList@@
winctrl3.cpp
CCheckListBox
.?AV_AFX_CHECKLIST_STATE@@
wingdix.cpp
appinit.cpp
filecore.cpp
CFile
DllGetClassObject
{%08X-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X}
CLSID
InProcServer32
with handle
and name "
.?AVCFile@@
lpw != 0
E:\8168\vc98\mfc\atl\include\atlconv.h
lpa != 0
docmgr.cpp
CDocManager
[open("
[print("
[printto("
m_templateList[] = {
template
.?AVCDocManager@@
.?AVCNewTypeDlg@@
doccore.cpp
CDocument
#%;/\
KERNEL32
ReplaceFile
m_strTitle =
m_strPathName =
m_bModified =
m_pDocTemplate =
with view
.?AVCDocument@@
.?AVCMirrorFile@@
apphelp.cpp
plex.cpp
dlgclr.cpp
CColorDialog
m_cc.hwndOwner =
m_cc.rgbResult =
m_cc.Flags =
m_cc.lpCustColors
hook function set to standard MFC hook function
hook function set to non-standard hook function
.?AV_AFX_COLOR_STATE@@
.?AVCColorDialog@@
afxtempl.h
strex.cpp
ccdata.cpp
COMCTL32.DLL
.?AU_AFX_PROPPAGEFONTINFO@@
winctrl2.cpp
CDragListBox
CSpinButtonCtrl
CSliderCtrl
CProgressCtrl
CComboBoxEx
CHeaderCtrl
CHotKeyCtrl
CAnimateCtrl
CTabCtrl
CTreeCtrl
CListCtrl
CToolBarCtrl
CStatusBarCtrl
CImageList
CTempImageList
CRichEditCtrl
ToolbarWindow32
msctls_statusbar32
SysListView32
SysTreeView32
msctls_updown32
msctls_trackbar32
msctls_progress32
SysHeader32
msctls_hotkey32
SysTabControl32
SysAnimate32
m_hImageList =
.?AVCDragListBox@@
.?AVCToolBarCtrl@@
.?AVCStatusBarCtrl@@
.?AVCListCtrl@@
.?AVCTreeCtrl@@
.?AVCSpinButtonCtrl@@
.?AVCSliderCtrl@@
.?AVCProgressCtrl@@
.?AVCHeaderCtrl@@
.?AVCHotKeyCtrl@@
.?AVCTabCtrl@@
.?AVCAnimateCtrl@@
.?AVCRichEditCtrl@@
.?AVCImageList@@
.?AVCTempImageList@@
viewcore.cpp
CSplitterWnd
CCtrlView
with document:
Class Name:
Default Style:
.?AVCView@@
.?AVCCtrlView@@
viewscrl.cpp
CScrollView
MSH_SCROLL_LINES_MSG
Magellan MSWHEEL
MouseZ
Control Panel\Desktop
WheelScrollLines
Error: must call SetScrollSizes() or SetScaleToFitSize()
m_totalLog =
m_totalDev =
m_pageDev =
m_lineDev =
m_bCenter =
m_bInsideUpdate =
m_nMapMode =
MM_NONE
MM_SCALETOFIT
MM_TEXT
MM_LOMETRIC
MM_HIMETRIC
MM_LOENGLISH
MM_HIENGLISH
MM_TWIPS
*unknown*
.?AVCScrollView@@
tooltip.cpp
CToolTipCtrl
tooltips_class32
.?AVCToolTipCtrl@@
dockcont.cpp
.?AVCDockContext@@
filest.cpp
a CFileStatus at
m_ctime =
m_mtime =
m_atime =
m_size =
m_attribute =
m_szFullName =
appdlg.cpp
arcstrm.cpp
.?AUIUnknown@@
.?AUISequentialStream@@
.?AUIStream@@
.?AVCArchiveStream@@
bardock.cpp
CDockBar
CMiniDockFrameWnd
m_arrBars
m_bFloating
.?AVCDockBar@@
.?AVCMiniFrameWnd@@
.?AVCMiniDockFrameWnd@@
winmini.cpp
CMiniFrameWnd
Terminal
Small Fonts
winfrm2.cpp
.?AVtype_info@@
.?AVruntime_error@std@@
.?AVfailure@ios_base@std@@
.?AVios_base@std@@
.?AVlogic_error@std@@
.?AVlength_error@std@@
.?AVout_of_range@std@@
.?AVfacet@locale@std@@
.?AV_Locimp@locale@std@@
.?AUctype_base@std@@
.?AV?$ctype@D@std@@
.?AVcodecvt_base@std@@
.?AV?$codecvt@DDH@std@@
.?AV?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@
.?AV?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@
.?AV?$numpunct@D@std@@
.?AV?$basic_ios@DU?$char_traits@D@std@@@std@@
.?AV?$basic_ostream@DU?$char_traits@D@std@@@std@@
.?AV?$basic_istream@DU?$char_traits@D@std@@@std@@
.?AV?$basic_streambuf@DU?$char_traits@D@std@@@std@@
.?AV?$basic_filebuf@DU?$char_traits@D@std@@@std@@
.?AV?$basic_ios@GU?$char_traits@G@std@@@std@@
.?AV?$basic_ostream@GU?$char_traits@G@std@@@std@@
.?AV?$basic_istream@GU?$char_traits@G@std@@@std@@
.?AV?$basic_streambuf@GU?$char_traits@G@std@@@std@@
.?AV?$basic_filebuf@GU?$char_traits@G@std@@@std@@
.?AVbad_alloc@std@@
.?AV?$codecvt@GDH@std@@
.?AV?$ctype@G@std@@
.?AUtime_base@std@@
.?AV?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@
.?AV?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@
.?AV?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@
.?AV?$numpunct@G@std@@
.?AV?$collate@G@std@@
.?AUmessages_base@std@@
.?AV?$messages@G@std@@
.?AV?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@
.?AV?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@
.?AUmoney_base@std@@
.?AV?$_Mpunct@G@std@@
.?AV?$moneypunct@G$0A@@std@@
.?AV?$moneypunct@G$00@std@@
.?AV?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@
.?AV?$collate@D@std@@
.?AV?$messages@D@std@@
.?AV?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@
.?AV?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@
.?AV?$_Mpunct@D@std@@
.?AV?$moneypunct@D$0A@@std@@
.?AV?$moneypunct@D$00@std@@
.?AV?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@
.?AV?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@
appmodul.cpp
winmain.cpp
appterm.cpp
Sleep
CopyFileA
GetSystemDirectoryA
GetModuleFileNameA
GetModuleHandleA
CloseHandle
ReadFile
SetFilePointer
CreateFileA
WriteFile
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
GlobalLock
WaitForSingleObject
SetEvent
SuspendThread
CreateEventA
lstrlenA
FreeResource
LoadResource
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GetLastError
GetProcAddress
lstrcpyA
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcatA
GetVersion
FreeLibrary
LoadLibraryA
SetThreadPriority
GetThreadPriority
ResumeThread
SetLastError
MulDiv
lstrcpynA
LocalFree
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
GlobalReAlloc
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
InterlockedDecrement
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
InterlockedIncrement
WideCharToMultiByte
MultiByteToWideChar
GetProcessVersion
IsBadStringPtrW
IsBadStringPtrA
IsBadWritePtr
IsBadReadPtr
FileTimeToSystemTime
FileTimeToLocalFileTime
VirtualProtect
GetProfileIntA
SizeofResource
GetCPInfo
GetOEMCP
SetErrorMode
DuplicateHandle
GetCurrentProcess
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
MoveFileA
DeleteFileA
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
GetFileAttributesA
GetTempFileNameA
SetFileTime
GetFileTime
GetDiskFreeSpaceA
FormatMessageA
GetFileSize
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileAttributesA
RtlUnwind
ExitProcess
TerminateProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
GetStartupInfoA
GetCommandLineA
HeapValidate
CreateThread
ExitThread
DebugBreak
GetStdHandle
OutputDebugStringA
GetACP
FatalAppExitA
HeapFree
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
HeapReAlloc
VirtualAlloc
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
SetConsoleCtrlHandler
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetStdHandle
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
SetEnvironmentVariableA
GetLocaleInfoW
KERNEL32.dll
GetSystemMetrics
MessageBoxA
PostQuitMessage
SetCursor
EnableWindow
SendMessageA
IsWindowEnabled
GetLastActivePopup
GetParent
GetWindowLongA
SetWindowsHookExA
GetCursorPos
PeekMessageA
ValidateRect
CallNextHookEx
GetKeyState
DispatchMessageA
TranslateMessage
GetMessageA
GetFocus
SetMenuItemBitmaps
LoadBitmapA
GetMenuCheckMarkDimensions
IsWindow
PostMessageA
TabbedTextOutA
GetDlgItem
DestroyWindow
CreateDialogIndirectParamA
SetActiveWindow
GetActiveWindow
EndDialog
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
RegisterWindowMessageA
SetWindowPos
SetWindowLongA
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
UnhookWindowsHookEx
SetPropA
GetClassLongA
CreateWindowExA
GetDlgCtrlID
GetClassNameA
DefWindowProcA
GetWindowTextA
GetWindowTextLengthA
SetWindowPlacement
TrackPopupMenu
RegisterClassA
GetClassInfoA
wsprintfA
WinHelpA
GetCapture
GetWindow
IsChild
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
SetScrollInfo
GetScrollInfo
ScrollWindow
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
GetClientRect
SendDlgItemMessageA
LoadIconA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
GetMenu
SetMenu
DrawMenuBar
GetSystemMenu
HiliteMenuItem
IsZoomed
ArrangeIconicWindows
SetWindowRgn
GetWindowRgn
BringWindowToTop
ClientToScreen
BeginPaint
EndPaint
GetDC
GetWindowDC
ReleaseDC
UpdateWindow
GetUpdateRect
GetUpdateRgn
InvalidateRect
InvalidateRgn
ValidateRgn
IsWindowVisible
ShowOwnedPopups
GetDCEx
LockWindowUpdate
RedrawWindow
EnableScrollBar
SetTimer
KillTimer
SetCapture
GetDesktopWindow
DlgDirListA
DlgDirListComboBoxA
DlgDirSelectExA
DlgDirSelectComboBoxExA
GetNextDlgGroupItem
GetNextDlgTabItem
ShowScrollBar
ChildWindowFromPoint
ChildWindowFromPointEx
FindWindowA
SetParent
WindowFromPoint
FlashWindow
ChangeClipboardChain
SetClipboardViewer
OpenClipboard
GetOpenClipboardWindow
GetClipboardOwner
GetClipboardViewer
CreateCaret
GetCaretPos
SetCaretPos
HideCaret
ShowCaret
SetForegroundWindow
GetForegroundWindow
SendNotifyMessageA
SetWindowContextHelpId
GetWindowContextHelpId
MapDialogRect
PostThreadMessageA
LoadCursorA
CloseWindow
OpenIcon
IsRectEmpty
PtInRect
SetRect
SetRectEmpty
InflateRect
UnionRect
SubtractRect
GetSysColorBrush
WindowFromDC
ExcludeUpdateRgn
FillRect
FrameRect
InvertRect
DrawIcon
DrawStateA
DrawEdge
DrawFrameControl
DrawFocusRect
DrawTextA
GetTabbedTextExtentA
GrayStringA
ScrollDC
CreateMenu
CreatePopupMenu
IsMenu
DeleteMenu
AppendMenuA
CheckMenuItem
EnableMenuItem
SetMenuDefaultItem
GetMenuDefaultItem
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringA
GetMenuItemInfoA
GetSubMenu
InsertMenuA
ModifyMenuA
RemoveMenu
LoadMenuA
LoadMenuIndirectA
SetMenuContextHelpId
GetMenuContextHelpId
CheckMenuRadioItem
ReleaseCapture
WaitMessage
GetWindowThreadProcessId
LoadAcceleratorsA
TranslateAcceleratorA
DestroyMenu
ReuseDDElParam
UnpackDDElParam
CharToOemA
OemToCharA
LoadStringA
GetClipboardFormatNameA
GetAsyncKeyState
SetCursorPos
DestroyCursor
GetDialogBaseUnits
CharUpperA
DestroyIcon
USER32.dll
CreateBitmap
CreateMetaFileA
CloseMetaFile
CreateEnhMetaFileA
CloseEnhMetaFile
ExtTextOutA
GetDCOrgEx
GetClipBox
SetTextColor
SetBkColor
GetObjectA
GetStockObject
UnrealizeObject
GetObjectType
CreatePen
CreatePenIndirect
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreateBrushIndirect
CreatePatternBrush
CreateDIBPatternBrushPt
CreateFontIndirectA
CreateFontA
CreateBitmapIndirect
SetBitmapBits
GetBitmapBits
SetBitmapDimensionEx
GetBitmapDimensionEx
CreateCompatibleBitmap
CreateDiscardableBitmap
CreatePalette
CreateHalftonePalette
GetPaletteEntries
SetPaletteEntries
AnimatePalette
GetNearestPaletteIndex
ResizePalette
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreateEllipticRgnIndirect
CreatePolygonRgn
CreatePolyPolygonRgn
CreateRoundRectRgn
PathToRegion
ExtCreateRegion
GetRegionData
SetRectRgn
CombineRgn
EqualRgn
OffsetRgn
GetRgnBox
PtInRegion
RectInRegion
CreateDCA
CreateICA
CreateCompatibleDC
GetDeviceCaps
GetBrushOrgEx
SetBrushOrgEx
EnumObjects
SelectObject
GetNearestColor
RealizePalette
UpdateColors
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetMapMode
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
GetCurrentPositionEx
Polyline
Chord
Ellipse
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
BitBlt
StretchBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutA
GetTextExtentPoint32A
GetTextAlign
GetTextFaceA
GetTextMetricsA
GetTextCharacterExtra
GetCharWidthA
GetAspectRatioFilterEx
Escape
SetBoundsRect
GetBoundsRect
ResetDCA
GetOutlineTextMetricsA
GetCharABCWidthsA
GetFontData
GetKerningPairsA
GetGlyphOutlineA
StartDocA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
GetCurrentObject
PolyBezier
DrawEscape
ExtEscape
GetCharABCWidthsFloatA
GetCharWidthFloatA
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
GdiComment
PlayEnhMetaFile
DeleteDC
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
DeleteObject
GetClipRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
EnumMetaFile
PlayMetaFile
StretchDIBits
GDI32.dll
GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA
ChooseColorA
comdlg32.dll
ClosePrinter
DocumentPropertiesA
OpenPrinterA
WINSPOOL.DRV
GetUserNameA
RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegCreateKeyA
RegSetValueA
RegQueryValueA
SetFileSecurityA
GetFileSecurityA
ADVAPI32.dll
ShellExecuteExA
DragAcceptFiles
DragFinish
DragQueryFileA
SHGetFileInfoA
ExtractIconA
SHELL32.dll
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_Merge
ImageList_Read
ImageList_Write
ImageList_GetImageCount
ImageList_Add
ImageList_AddMasked
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Draw
ImageList_SetBkColor
ImageList_GetBkColor
ImageList_SetOverlayImage
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragMove
ImageList_SetDragCursorImage
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_DragEnter
ImageList_DragLeave
COMCTL32.dll
InterlockedExchange
UnregisterClassA
</assembly>
mkkggfgggkm
A:AA^^
AAM^^
TS><<>ST
,999Ei
999"EJL
999"KKn
K49999AAEJKn
OX[0R
N*N(W%
N*N(W%
N*N(W0
g~b0R
?Y?|?
=P=V=m=8?
=">F>s>
?!?5?E?V?[?
=L=p=
9F:F;F<F=F>F?
=~=&?
82:J=
2.3A3k3
>B?e?
1X2o2
>o?w?
<!=&=v=
7"7&7
><>J>g>
?6?@?f?p?
233A3
1H2h2
? ?$?,?0?<?@?X?`?d?p?x?|?
9(9H9
< <$<0<
\0000\Debug\0000.pdb
(null)
Button2
VS_VERSION_INFO
StringFileInfo
080404b0
Comments
CompanyName
FileDescription
FileVersion
InternalName
LegalCopyright
LegalTrademarks
OriginalFilename
PrivateBuild
ProductName
ProductVersion
SpecialBuild
VarFileInfo
Translation
MS Shell Dlg
| 防病毒引擎/厂商 | 病毒名/规则匹配 | 病毒库日期 |
|---|---|---|
| Bkav | 未发现病毒 | 20170706 |
| MicroWorld-eScan | 未发现病毒 | 20170706 |
| nProtect | 未发现病毒 | 20170706 |
| CMC | 未发现病毒 | 20170706 |
| CAT-QuickHeal | 未发现病毒 | 20170706 |
| ALYac | 未发现病毒 | 20170706 |
| Malwarebytes | 未发现病毒 | 20170706 |
| VIPRE | 未发现病毒 | 20170706 |
| SUPERAntiSpyware | 未发现病毒 | 20170706 |
| TheHacker | 未发现病毒 | 20170704 |
| K7GW | 未发现病毒 | 20170706 |
| K7AntiVirus | 未发现病毒 | 20170706 |
| Invincea | 未发现病毒 | 20170607 |
| Baidu | 未发现病毒 | 20170705 |
| F-Prot | 未发现病毒 | 20170706 |
| Symantec | Trojan.Gen.8!cloud | 20170705 |
| ESET-NOD32 | 未发现病毒 | 20170706 |
| TrendMicro-HouseCall | 未发现病毒 | 20170706 |
| Paloalto | generic.ml | 20170706 |
| ClamAV | 未发现病毒 | 20170706 |
| VBA32 | 未发现病毒 | 20170705 |
| Kaspersky | 未发现病毒 | 20170706 |
| BitDefender | 未发现病毒 | 20170706 |
| NANO-Antivirus | 未发现病毒 | 20170706 |
| AegisLab | 未发现病毒 | 20170706 |
| Avast | 未发现病毒 | 20170706 |
| Tencent | 未发现病毒 | 20170706 |
| Endgame | 未发现病毒 | 20170629 |
| Emsisoft | 未发现病毒 | 20170706 |
| Comodo | 未发现病毒 | 20170706 |
| F-Secure | 未发现病毒 | 20170706 |
| DrWeb | 未发现病毒 | 20170706 |
| Zillya | 未发现病毒 | 20170705 |
| TrendMicro | 未发现病毒 | 20170706 |
| McAfee-GW-Edition | 未发现病毒 | 20170705 |
| Sophos | 未发现病毒 | 20170706 |
| Ikarus | 未发现病毒 | 20170705 |
| Cyren | 未发现病毒 | 20170706 |
| Jiangmin | 未发现病毒 | 20170706 |
| Webroot | 未发现病毒 | 20170706 |
| Avira | 未发现病毒 | 20170705 |
| Antiy-AVL | 未发现病毒 | 20170706 |
| Kingsoft | 未发现病毒 | 20170706 |
| Microsoft | 未发现病毒 | 20170706 |
| Arcabit | 未发现病毒 | 20170706 |
| ViRobot | 未发现病毒 | 20170706 |
| ZoneAlarm | 未发现病毒 | 20170706 |
| GData | 未发现病毒 | 20170706 |
| AhnLab-V3 | 未发现病毒 | 20170705 |
| McAfee | 未发现病毒 | 20170706 |
| AVware | 未发现病毒 | 20170706 |
| MAX | 未发现病毒 | 20170706 |
| Ad-Aware | 未发现病毒 | 20170706 |
| Zoner | 未发现病毒 | 20170706 |
| Rising | 未发现病毒 | 20170706 |
| Yandex | 未发现病毒 | 20170705 |
| SentinelOne | 未发现病毒 | 20170516 |
| Fortinet | 未发现病毒 | 20170629 |
| AVG | 未发现病毒 | 20170706 |
| Panda | 未发现病毒 | 20170705 |
| CrowdStrike | 未发现病毒 | 20170420 |
| Qihoo-360 | Win32/Trojan.377 | 20170706 |
访问主机纪录 (可点击查询WPING实时安全评级)
无主机纪录.
TCP
无TCP连接纪录.
UDP
无UDP连接纪录.
域名解析 (可点击查询WPING实时安全评级)
无域名信息.
TCP
无TCP连接纪录.
UDP
无UDP连接纪录.
HTTP 请求
未发现HTTP请求.
SMTP 流量
无SMTP流量.
IRC 流量
无IRC请求.
ICMP 流量
无ICMP流量.
CIF 报告
无 CIF 结果
网络警报
无警报
TLS
No TLS
Suricata HTTP
No Suricata HTTP
未发现网络提取文件
抱歉! 没有任何文件投放。
没有发现相似的分析.
| HTML 总结报告 (需15-60分钟同步) |
下载 |
|---|
Processing ( 15.773 seconds )
- 7.191 Suricata
- 3.191 TargetInfo
- 2.825 Static
- 1.841 VirusTotal
- 0.337 peid
- 0.151 Strings
- 0.106 Debug
- 0.081 AnalysisInfo
- 0.038 BehaviorAnalysis
- 0.007 NetworkAnalysis
- 0.003 config_decoder
- 0.002 Memory
Signatures ( 0.298 seconds )
- 0.201 md_bad_drop
- 0.024 antiav_detectreg
- 0.009 infostealer_ftp
- 0.006 persistence_autorun
- 0.006 antianalysis_detectreg
- 0.006 antiav_detectfile
- 0.006 infostealer_im
- 0.005 ransomware_files
- 0.004 infostealer_bitcoin
- 0.004 ransomware_extensions
- 0.003 disables_browser_warn
- 0.003 infostealer_mail
- 0.002 tinba_behavior
- 0.002 stealth_timeout
- 0.002 antivm_vbox_files
- 0.002 geodo_banking_trojan
- 0.002 bot_drive2
- 0.002 browser_security
- 0.001 betabot_behavior
- 0.001 kibex_behavior
- 0.001 shifu_behavior
- 0.001 banker_zeus_mutex
- 0.001 bot_drive
- 0.001 browser_addon
- 0.001 modify_proxy
- 0.001 disables_system_restore
- 0.001 modify_uac_prompt
Reporting ( 0.79 seconds )
- 0.586 ReportHTMLSummary
- 0.204 Malheur
| Task ID | 104100 |
|---|---|
| Mongo ID | 595dde83a093ef2dde8b3d71 |
| Cuckoo release | 1.4-Maldun |
沪公网安备 31011502009736号