!This program cannot be run in DOS mode.
`.data
@.reloc
msvcrt.dll
API-MS-Win-Core-ProcessThreads-L1-1-0.dll
KERNEL32.dll
NTDLL.DLL
API-MS-Win-Security-Base-L1-1-0.dll
API-MS-WIN-Service-Core-L1-1-0.dll
API-MS-WIN-Service-winsvc-L1-1-0.dll
RPCRT4.dll
SvchostPushServiceGlobals
ServiceMain
@PRPRh
t`j-Yf;
ole32.dll
CoInitializeEx
CoCreateInstance
CoInitializeSecurity
CLSIDFromString
RPCRT4.dll
API-MS-WIN-Service-winsvc-L1-1-0.dll
API-MS-WIN-Service-Core-L1-1-0.dll
API-MS-Win-Security-Base-L1-1-0.dll
ntdll.dll
KERNEL32.dll
API-MS-Win-Core-ProcessThreads-L1-1-0.dll
msvcrt.dll
__wgetmainargs
_XcptFilter
_initterm
_amsg_exit
__setusermatherr
memcpy
_controlfp
_except_handler4_common
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
_cexit
TerminateProcess
GetCurrentProcess
OpenProcessToken
GetCurrentProcessId
GetCurrentThreadId
LocalAlloc
CloseHandle
DelayLoadFailureHook
GetProcAddress
GetLastError
FreeLibrary
InterlockedCompareExchange
LoadLibraryExA
InterlockedExchange
SetUnhandledExceptionFilter
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
UnhandledExceptionFilter
DeactivateActCtx
LoadLibraryExW
ActivateActCtx
LeaveCriticalSection
lstrcmpW
EnterCriticalSection
RegCloseKey
RegOpenKeyExW
HeapSetInformation
lstrcmpiW
lstrlenW
LCMapStringW
RegQueryValueExW
ReleaseActCtx
CreateActCtxW
ExpandEnvironmentStringsW
GetCommandLineW
ExitProcess
SetProcessAffinityUpdateMode
RegDisablePredefinedCacheEx
InitializeCriticalSection
GetProcessHeap
SetErrorMode
RegisterWaitForSingleObjectEx
LocalFree
HeapFree
WideCharToMultiByte
HeapAlloc
RtlAllocateHeap
RtlLengthRequiredSid
RtlSubAuthoritySid
RtlInitializeSid
RtlCopySid
RtlSubAuthorityCountSid
RtlInitializeCriticalSection
RtlSetProcessIsCritical
RtlImageNtHeader
RtlUnhandledExceptionFilter
EtwEventWrite
EtwEventEnabled
EtwEventRegister
RtlFreeHeap
SetSecurityDescriptorDacl
AddAccessAllowedAce
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
GetTokenInformation
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
StartServiceCtrlDispatcherW
SetServiceStatus
RegisterServiceCtrlHandlerW
RpcMgmtSetServerStackSize
I_RpcMapWin32Status
RpcServerUnregisterIf
RpcMgmtWaitServerListen
RpcMgmtStopServerListening
RpcServerUnregisterIfEx
RpcServerRegisterIf
RpcServerUseProtseqEpW
RpcServerListen
svchost.pdb
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<!-- Copyright (c) Microsoft Corporation -->
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<assemblyIdentity
version="5.1.0.0"
processorArchitecture="x86"
name="Microsoft.Windows.Services.SvcHost"
type="win32"
<description>Host Process for Windows Services</description>
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel
level="asInvoker"
uiAccess="false"
/>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
3&373}3
4$4.4:4L4T4Z4j4
6)6<6D6[6~6/7J7
9L:R:X:]:h:
:N;X;];c;o;u;
=:=?=E=J=O=T=Y=_=g=r=x=
> >(>4>F>N>V>x>
?*?4?=?W?
1'101@1M1W1\1a1u1~1
2!2,222d2p2v2}2
3+383>3D3J3U3\3
5#5.53585=5C5I5N5U5[5n5
6%696?6E6a6p6
7 7'7-757;7C7I7Q7W7_7e7m7s7{7
8$888?8V8\8q8w8}8
9*959:9D9R9v9
?9?N?c?p?v?
161N1[1a1j1
1 262C2
3 3(3;3
5J6Q6a6z6
909@9F9L9R9X9^9d9j9p9v9|9
:=:Y:h:}:
=+=4=;=w=~=
0P4`4p4
5 505`5h5p5x5
Parameters
System\CurrentControlSet\Services
ServiceDllUnloadOnStop
nServiceMain
ServiceManifest
ServiceDll
Software\Microsoft\Windows NT\CurrentVersion\Svchost
SystemCritical
DefaultRpcStackSize
DeferredCoInitializeSecurityServices
CoInitializeSecurityAppID
AuthenticationCapabilities
ImpersonationLevel
AuthenticationLevel
CoInitializeSecurityParam
Software\Microsoft\Windows NT\CurrentVersion\MgdSvchost
ncacn_np
\PIPE\
VS_VERSION_INFO
StringFileInfo
040904B0
CompanyName
Microsoft Corporation
FileDescription
Host Process for Windows Services
FileVersion
6.1.7600.16385 (win7_rtm.090713-1255)
InternalName
svchost.exe
LegalCopyright
Microsoft Corporation. All rights reserved.
OriginalFilename
svchost.exe
ProductName
Microsoft
Windows
Operating System
ProductVersion
6.1.7600.16385
VarFileInfo
Translation