Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: 4672fafeadc32c74d21d13cc3e7ce934 --

Hashes
MD5: 4672fafeadc32c74d21d13cc3e7ce934
SHA1: 65018130032b812e05b953b91102da5a3c880301
SHA256: e75e3702659e4528e1d842a22f85ec03d2f71118c79b6ed9d9b6c0a315dcea12
SSDEEP: 1536:4+kuq2/dP/l9Q4SZM1YJc6PaHMAxHZ1n5:qudd04SZM1YJc6iHMAxHZ15
Details
File Type: 80386
Yara Hits
CuckooSandbox/embedded_win_api | YRP/maldoc_getEIP_method_1 | YRP/domain | YRP/contentis_base64 | YRP/android_meterpreter |
Source
http://103.68.190.250/Sources//Advance/BJWJ/Builds/Full/Objs/Release%20DEBUGCONFIG/UniversalKeyLogger.obj
Strings
		.drectve
.debug$S
.rdata
0@.data
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.rdata
0@.rdata
0@.text
P`.text
P`.text
P`.rdata
0@.rdata
0@.rdata
0@.rdata
0@.rdata
0@.rdata
0@.rdata
0@.rdata
0@.rdata
0@.rdata
0@.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`.text
P`   /DEFAULTLIB:"uuid.lib" /DEFAULTLIB:"uuid.lib" 
e:\Projects\progs\Petrosjan\BJWJ\Builds\Full\Objs\Release DEBUGCONFIG\UniversalKeyLogger.obj
Microsoft (R) Optimizing Compiler
DELETE
UNLINK
CONNECT
OPTIONS
HTTP/1.0
HTTP/1.1
no-cashe
Referer
Accept
User-Agent
Accept-Language
Accept-Encoding
Content-Type
Content-Length
Cookie
Proxy-Connection
Pragma
Transfer-Encoding
Connection
Location
Accept-Ranges
Content-Range
If-Modified-Since
If-None-Match
Cache-Control
chunked
no-store, no-cache, must-revalidate
application/x-www-form-urlencoded
multipart/form-data; boundary=
Keep-Alive
cyberplat
URL.txt
<Click>
. WND = %d 
http://
https://
 IE %s
0x%08X
KeyLogPacker
KeyLogPacker
LogData.txt
KeyLogPacker
ScreenShots\
hWm_mj
Address Band Root
ReBarWindow32
WorkerW
IEFrame
ComboBox
ComboBoxEx32
QhWmwmj
@comp.id	x
@feat.00
.drectve
.debug$S
.rdata
$SG65708
$SG65710
$SG65712
$SG65714
$SG65716
$SG65718 
$SG65720(
$SG657220
$SG657248
$SG65726@
$SG65728H
$SG65730P
$SG65732\
$SG65734h
$SG65736t
$SG65738|
$SG65740
$SG65742
$SG65744
$SG65746
$SG65748
$SG65750
$SG65752
$SG65754
$SG65756
$SG65758
$SG65760
$SG65762
$SG65764$
$SG657660
$SG65768@
$SG65770P
$SG65772d
$SG65774t
$SG65776
$SG65778
$SG65780
$SG65782
$SG65784
$SG65786
$SG65788
$SG65790
$SG65792
$SG65796
$SG65798
$SG65800
$SG65802
$SG65804 
$SG66414,
$SG664160
$SG664188
$SG66420@
$SG66422L
$SG66424P
$SG69013T
$SG69396h
$SG69397
$SG69416
$SG69417
$SG69491
$SG69492
$SG69582
$SG69584
$SG69586
$SG69588 
$SG69590(
$SG695920
$SG695944
$SG69596<
$SG69598@
$SG69599D
$SG69630H
$SG69631T
$SG69728\
$SG69729
$SG69840
$SG69841
$SG69843
$SG69844
$SG70045
$SG70046
$SG70051
$SG70052 
$SG70086(
$SG700870
$SG701064
$SG701138
$SG70194<
$SG70195X
$SG70199`
$SG70200
$SG70211
$SG70212
$SG70222
$SG70223
$SG70556
$SG70557 
$SG70558(
$SG70559D
$SG70728L
$SG70729h
$SG70737p
$SG70738
$SG70761
$SG70781
$SG70797
$SG70798
$SG70801
$SG70809
$SG70810
$SG70840
$SG70841(
$SG709270
$SG70928P
$SG70961`
$SG70962
$SG70989
$SG70997
$SG71002
$SG71003
$SG71034
$SG71035
.rdata
.rdata
.rdata
.rdata
.rdata
.rdata
.rdata
.rdata
.rdata
.rdata
.rdata
.rdata
?Real_DispatchMessageW@KeyLoggerHooks@@3P6GJPAUtagMSG@@@ZA
?Real_PeekMessageA@KeyLoggerHooks@@3P6GHPAUtagMSG@@PAUHWND__@@III@ZA
?Real_PeekMessageW@KeyLoggerHooks@@3P6GHPAUtagMSG@@PAUHWND__@@III@ZA
?Real_ShowWindow@KeyLoggerHooks@@3P6GHPAUHWND__@@H@ZA
?Real_DispatchMessageA@KeyLoggerHooks@@3P6GJPAUtagMSG@@@ZA
?Real_GetClipboardData@KeyLoggerHooks@@3P6GPAXI@ZA
?Real_SetWindowTextW@KeyLoggerHooks@@3P6GHPAUHWND__@@PAD@ZA
?Real_SetFocus@KeyLoggerHooks@@3P6GPAUHWND__@@PAU2@@ZA
?Real_SetWindowTextA@KeyLoggerHooks@@3P6GHPAUHWND__@@PAD@ZA
?KLG@@3UTKeyLoggerInternalData@@A
_URLFileName
?FieldID@@3PADA
?FieldType@@3PADA
?FieldHash@@3PADA
?FieldSHash@@3PADA
?FieldLog@@3PADA
_StrClick
?GlobalKeyLogger@@3PAUTKeyLogger@@A
?KeyLoggerProcess@@3KA
?KeyLoggerApiHooked@@3_NA
?GetLogger@@YAPAUTKeyLogger@@_N@Z
?Hook_SetFocus@KeyLoggerHooks@@YGPAUHWND__@@PAU2@@Z
?__ProcessPeekMessage@KeyLoggerHooks@@YAXPAUtagMSG@@@Z
?Hook_PeekMessageA@KeyLoggerHooks@@YGHPAUtagMSG@@PAUHWND__@@III@Z
?Hook_PeekMessageW@KeyLoggerHooks@@YGHPAUtagMSG@@PAUHWND__@@III@Z
?Hook_DispatchMessageA@KeyLoggerHooks@@YGJPAUtagMSG@@@Z
?Hook_DispatchMessageW@KeyLoggerHooks@@YGJPAUtagMSG@@@Z
?Hook_SetWindowTextW@KeyLoggerHooks@@YGHPAUHWND__@@PA_W@Z
?Hook_GetClipboardData@KeyLoggerHooks@@YGPAXI@Z
?Free@STR@@YAXPAD@Z
?ToAnsi@WSTR@@YAPADPB_WK@Z
?Hook_ShowWindow@KeyLoggerHooks@@YGHPAUHWND__@@H@Z
?m_memset@@YAPAXPAXKK@Z
?HookKeyLoggerApi@KeyLoggerHooks@@YA_NXZ
?HookApi@@YAPAXKKPAX0@Z
?HookApi@@YAPAXKKPAX@Z
?KeyLoggerSubClassingWndProc@@YGJPAUHWND__@@IIJ@Z
?CallOriginalProc@SubClassing@@YAJPAXPAUHWND__@@IIJ@Z
?InternalWndProc@KeyLogger@@YGJPAUHWND__@@IIJ@Z
?IncActionCounter@KeyLogger@@YAXXZ
?FreeEventHandlerItem@@YAXPAX@Z
?Free@HEAP@@YAXPAX@Z
?CallEvent@KeyLogger@@YAXKPAX@Z
?GetItem@List@@YAPAXPAXK@Z
?Count@List@@YAKPAX@Z
?StopLogging@KeyLogger@@YAXXZ
?IsWindowDialog@KeyLogger@@YA_NPAUHWND__@@@Z
?DoAfterDispatchMessage@KeyLogger@@YAXPAUtagMSG@@_N@Z
?DeleteAllTextData@KeyLogger@@YAXPAUHWND__@@@Z
?GetNonPrintCharText@@YA_NKAAPAD@Z
?New@STR@@YAPADKPADZZ
?New@STR@@YAPADPADK@Z
?ProcessCharMessage2@@YAXPAUtagMSG@@_N@Z
?ProcessCharMessage@@YAXPAUtagMSG@@_N@Z
?ProcessKeyDownMessage@@YAXPAUtagMSG@@@Z
?CHAR_KB@?1??ProcessKeyDownMessage@@YAXPAUtagMSG@@@Z@4QBDB
?SupportChars@?1??ProcessKeyDownMessage@@YAXPAUtagMSG@@@Z@4QBKB
?ProcessMouseMessage@@YAXPAUtagMSG@@@Z
?MemFree@@YAXPAX@Z
?MakeToMem@ScreenShot@@YA_NPAUHWND__@@HHKKPAUTDrawCursorInfo@@AAPAEAAK@Z
?GetWndText@@YAPADPAUHWND__@@@Z
?CompareWndClassNames@@YA_NPAUHWND__@@PAPAD@Z
?StrSame@@YA_NPAD0_NK@Z
?IsIEAdressBar@@YA_NPAUHWND__@@@Z
?IE6Names@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBQADB
?IE7Names@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBQADB
?IE8Names@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBQADB
?Edit@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBDB
?AddressBandRoot@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBDB
?ReBarWindow32@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBDB
?WorkerW@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBDB
?IEFrame@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBDB
?ComboBox@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBDB
?ComboBoxEx32@?3??IsIEAdressBar@@YA_NPAUHWND__@@@Z@4QBDB
?UpdateIEUrl@@YAXPAUHWND__@@PAX_N2@Z
?Free2@STR@@YAXAAPAD@Z
?KeyLoggerEnumJavaAdressBar@@YGHPAUHWND__@@J@Z
?KeyLoggerSearchAddressBarWND@@YAPAUHWND__@@XZ
?GetURLFromJavaProcess@@YAPADXZ
?ProcessSetTextMessage@@YAXPAUHWND__@@KHH_N@Z
?ProcessSetTextMessage@@YAXPAUtagMSG@@_N@Z
?ProcessClipBoardMessage@@YAXPAUtagMSG@@PAUTKeyLogger@@@Z
?ProcessAllMessages@@YAXPAUtagMSG@@_N@Z
?FreeKeyLoggerTextItem@@YAXPAX@Z
?FreeKeyLoggerFilter@@YAXPAX@Z
?Free@List@@YAXPAX@Z
?SetFreeItemMehod@List@@YAXPAXP6AX0@Z@Z
?FreeLoggerSystem@@YAXPAX@Z
?Initialize@KeyLogger@@YAPAUTKeyLogger@@PAD@Z
?MemAlloc@@YAPAXK@Z
?CreateList@SubClassing@@YAPAXXZ
?Create@List@@YAPAXXZ
?GetUniquePID@@YAKXZ
?GetHash@STR@@YAKPADK_N@Z
?ExtractFileNameA@File@@YAPADPAD_N@Z
?Alloc@STR@@YAPADK@Z
?IsEmpty@STR@@YA_NQAD@Z
?Alloc@HEAP@@YAPAXK@Z
?IsNewProcess@@YA_NAAKPAK@Z
?InitializeInternalWND@KeyLogger@@YAXXZ
?AllocateWND@@YAPAUHWND__@@P6GJPAU1@IIJ@Z@Z
?KeyLoggerGetSystemName@@YAPADPAUTKeyLogger@@@Z
?End@STR@@YAPADPAD@Z
?Start@KeyLogger@@YA_NXZ
?GetKeyLogger@KeyLogger@@YAPAUTKeyLogger@@XZ
?AddStrToBuffer@KeyLogger@@YAXPAUHWND__@@PADK@Z
?StrCalcLength@@YAKPBD@Z
?AddScreenShot@KeyLogger@@YAXPAUHWND__@@_NPAEK@Z
?StrLongToString@@YAPADK@Z
?AddFile@KeyLogger@@YAXPAD0PAXK@Z
?ReadToBufferA@File@@YAPAEPADAAK@Z
?KeyLogger_AddFile@@YAXPAU_WIN32_FIND_DATAA@@PADPAXAA_N@Z
?AddDirectory@KeyLogger@@YAXPAD0@Z
?SearchFiles@@YA_NPAD0_NKPAXP6AXPAU_WIN32_FIND_DATAA@@02AA_N@Z@Z
?SystemByName@KeyLogger@@YAPAUTKeyLogSystem@@PBD@Z
?AddSystem@KeyLogger@@YAPAUTKeyLogSystem@@PBDK@Z
?Add@List@@YAHPAX0@Z
?ActivateSystem@KeyLogger@@YAXPAUTKeyLogSystem@@@Z
?AddFilter@KeyLogger@@YAPAUTKlgWndFilter@@PAUTKeyLogSystem@@_N1PAD2KKK@Z
?AddFilterText@KeyLogger@@YAXPAUTKlgWndFilter@@PAD1@Z
?WriteBuffer@KeyLogger@@YAXXZ
?CanCloseSystem@KeyLogger@@YA_N_N@Z
?CloseFilter@KeyLogger@@YAX_N@Z
?InitializeFileHeader@KeyLogger@@YAXXZ
?SetActiveSystem@KeyLogger@@YA_NPAUTKeyLogSystem@@@Z
?Clear@List@@YAXPAX@Z
?Length@STR@@YAKPAD@Z
?WildCmp@@YA_NPAD0@Z
?SetActiveFilter@KeyLogger@@YA_NPAUTKeyLogSystem@@PAUTKlgWndFilter@@@Z
?SetActiveWnd@KeyLogger@@YA_NPAUHWND__@@K@Z
?IndexOf@List@@YAHPAX0@Z
?MakeScreenShot@KeyLogger@@YAXXZ
?OnTimer@KeyLogger@@YAXXZ
?TicksToKLGTime@KeyLogger@@YAKK@Z
?WriteToFile@KeyLogger@@YA_NPAUHWND__@@PADKPAXK@Z
?pGetLastError@@YAKXZ
?GetKeyLoggerFileName@DataGrabber@@YAPADXZ
?KeyLoggerCheckFileTimeToSend@@YA_NPAX@Z
?CanSendLoggerFile@KeyLogger@@YA_NPADPA_N@Z
?IsProcessLeave@@YA_NH@Z
?ResetFiltersStatus@KeyLogger@@YAXPAUTKeyLogSystem@@@Z
?CheckDialogs@KeyLogger@@YA_NXZ
?Delete@List@@YAXPAXK@Z
?CheckAllFiltersActivated@KeyLogger@@YA_NXZ
?IsDialogsSystem@KeyLogger@@YA_NXZ
?CloseSystem@KeyLogger@@YA_NH@Z
?Remove@List@@YAHPAX0@Z
__imp__PostMessageA@16
?CloseSession@KeyLogger@@YAXXZ
?KLGCompareText@@YA_NPAD0_N@Z
?AnsiLowerCase@STR@@YAXPAD@Z
?DoKeyLoggerFiltrateText@@YA_NPAUHWND__@@_NPAUTWndText@@AAPAD3@Z
?GetWndClassName@@YAPADPAUHWND__@@@Z
?DoKeyLoggerFiltrate@@YA_NPAUHWND__@@KKPAUTKlgWndFilter@@AAPAD2@Z
?KeyLoggerDoFiltrateWnd@@YA_NPAUTKeyLogger@@PAUHWND__@@KKPAPAUTKeyLogSystem@@PAPAUTKlgWndFilter@@PAPAU2@@Z
?FiltrateWnd@KeyLogger@@YA_NPAUHWND__@@KKPAPAUTKeyLogSystem@@PAPAUTKlgWndFilter@@PAPAU2@@Z
?ConnectEventHandler@KeyLogger@@YA_NKP6GXPAUTKeyLogger@@KPAX@Z@Z
?DisconnectEventHandler@KeyLogger@@YAXKP6GXPAUTKeyLogger@@KPAX@Z@Z
?SendLoggerFile@KeyLogger@@YA_NPADPA_N@Z
?SendCab@DataGrabber@@YA_NPAD00PA_N@Z
?CloseCab@@YAXPAX@Z
?SetBankingMode@@YAX_N@Z
?GetCurrentURL@KeyLogger@@YAPADXZ
?SetCurrentURL@KeyLogger@@YAXPAD@Z
?KeyLoggerMakeCasheStr@@YAPADK@Z
?GetProcAddressEx@@YAPAXPADKK@Z
?SendTextLog@KeyLogger@@YA_NPADKK0KPA_N@Z
?Free@Strings@@YAXPAX@Z
?Clear@HTTPResponse@@YAXPAUTHTTPResponseRec@@@Z
?CheckValidPostResult@@YA_NPAUTHTTPResponseRec@@PAD@Z
?Post@CryptHTTP@@YA_NPAD0PAXPAPADPAUTHTTPResponseRec@@_N@Z
?GetMainPassword@@YAPAD_N@Z
?AddURLParam@@YAXPAXPAD1K@Z
?Create@Strings@@YAPAXXZ
?Encode@BASE64@@YAPADPAEK@Z
?GenerateBotID@@YAPADXZ
?GetBotScriptURL@@YAPADKPAD_N@Z
?KeyLoggerGetProcessListFileName@@YAPADXZ
?GetWorkPathInSysDrive@BOT@@YAPADPAD0@Z
?DownloadProcessList@KeyLogger@@YA_NPA_N@Z
?WriteBufferA@File@@YAKPADPAXK@Z
?m_memcpy@@YAPAXPAXPBXH@Z
?KeyLoggerProcListDownloader@@YGKPAX@Z
?StartProcessListDownloader@KeyLogger@@YAXXZ
?StartThread@@YGPAXPAX0@Z
?KeyLoggerSearchHashInStr@@YA_NKPADK@Z
?Pos@STR@@YAHPBD0K_N@Z
?IsSupportProcess@KeyLogger@@YA_NXZ
?DoShowWindow@KeyLogger@@YAXPAUTShowWindowData@@@Z
?DoAfterShowWindow@KeyLogger@@YAXPAUTShowWindowData@@@Z
?__IsShowWndCommand@@YA_NK@Z
?KLGPackerFreeStrBlock@@YAXPAX@Z
?KLGPackerDoInitialize@@YA_NPAUTKeyLogPacker@@PAD@Z
?CreateCab@@YAPAXPBD@Z
?GetTempNameA@File@@YAPADXZ
?Initialize@KLGPacker@@YAPAUTKeyLogPacker@@PAD_N@Z
?Free@KLGPacker@@YAXPAUTKeyLogPacker@@@Z
?KLGPackerPackTextBlocks@@YAXPAUTKeyLogPacker@@@Z
?AddFileToCab@@YA_NPAXPBD1@Z
?KLGPackerDeleteText@@YAXPAUTKeyLogPacker@@PAUHWND__@@@Z
?KLGPackerAddTextData@@YAXPAUTKeyLogPacker@@PAUTLoggerBlockHead@@PAX@Z
?KLGPackerAddImage@@YAXPAUTKeyLogPacker@@PAUTLoggerBlockHead@@PAX@Z
?KLGPackerSetApplicationName@@YAXPAUTKeyLogPacker@@PADK@Z
?DeleteTempFile@@YAXPAUTKeyLogPacker@@@Z
?FileExistsA@@YA_NQAD@Z
?KLGPackerAddFile@@YAXPAUTKeyLogPacker@@PAUTLoggerBlockHead@@PADPAX@Z
?Pack@KLGPacker@@YA_NPAUTKeyLogPacker@@@Z
?GetTextDataFromFile@KLGPacker@@YAPADPADPAUHWND__@@@Z
??$DBGOutMessage@PBDPBDPAUHWND__@@@KEYLOGDEBUGSTRINGS@@YAXPBD0PAUHWND__@@@Z
?MessageEx@Debug@@YAXPADK000ZZ
??$pushargEx@$00$0CFEEHKMG@PAX@@YAPAXPAX@Z
??$DBGOutMessage@PBDPBDPAD@KEYLOGDEBUGSTRINGS@@YAXPBD0PAD@Z
??$pushargEx@$00$0PFALIHC@PAX@@YAPAXPAX@Z
??$pushargEx@$02$0GOOJJPIG@PAUHWND__@@@@YAPAXPAUHWND__@@@Z
??$DBGOutMessage@PBDPBD@KEYLOGDEBUGSTRINGS@@YAXPBD0@Z
??$pushargEx@$02$0MGMOJLIK@PAUHWND__@@IIJ@@YAPAXPAUHWND__@@IIJ@Z
??$pushargEx@$00$0GJCGABFC@@@YAPAXXZ
??$pushargEx@$02$0MPKKNHLP@PAUHWND__@@@@YAPAXPAUHWND__@@@Z
??$pushargEx@$00$0OHEPFHOO@HHPA_WHPADHHH@@YAPAXHHPA_WHPADHHH@Z
??$pushargEx@$02$0FEDNPFAF@PAUHWND__@@PAUtagPOINT@@@@YAPAXPAUHWND__@@PAUtagPOINT@@@Z
??$pushargEx@$02$0GNHHGNFH@@@YAPAXXZ
??$pushargEx@$02$0EIEAAHM@PAUHWND__@@PADK@@YAPAXPAUHWND__@@PADK@Z
??$pushargEx@$02$0FJJCKFPC@PAUHWND__@@@@YAPAXPAUHWND__@@@Z
??$pushargEx@$02$0KOIKFFDC@PAUHWND__@@P6GHPAU1@J@ZJ@@YAPAXPAUHWND__@@P6GH0J@ZJ@Z
??$pushargEx@$02$0LBGBLPJG@H@@YAPAXH@Z
??$pushargEx@$02$0GKNPMHJF@PAUHWND__@@@@YAPAXPAUHWND__@@@Z
??$pushargEx@$02$0IOHKOIBI@H@@YAPAXH@Z
??$pushargEx@$02$0PAOMCCBC@@@YAPAXXZ
??$pushargEx@$00$0HHEDJDOI@HPADH@@YAPAXHPADH@Z
??$pushargEx@$00$0KEFLDHAK@@@YAPAXXZ
??$pushargEx@$02$0ENJMOFFH@PAUHWND__@@HHH@@YAPAXPAUHWND__@@HHH@Z
??$pushargEx@$00$0IPIPBBE@PADJHKHHK@@YAPAXPADJHKHHK@Z
??$pushargEx@$00$0DNJJHCPF@H@@YAPAXH@Z
??$pushargEx@$00$0PDPNBMD@PAXPAUTKLGFileHeader@@IPAKH@@YAPAXPAXPAUTKLGFileHeader@@IPAKH@Z
??$pushargEx@$00$0OPEIOADK@PAXHHH@@YAPAXPAXHHH@Z
??$pushargEx@$00$0PDPNBMD@PAXPAUTLoggerBlockHead@@IPAKH@@YAPAXPAXPAUTLoggerBlockHead@@IPAKH@Z
??$pushargEx@$00$0PDPNBMD@PAXPADKPAKH@@YAPAXPAXPADKPAKH@Z
??$pushargEx@$00$0PDPNBMD@PAXPAXKPAKH@@YAPAXPAX0KPAKH@Z
??$pushargEx@$00$0HCDOLANF@PAX@@YAPAXPAX@Z
??$pushargEx@$00$0KOBHMAHB@PAXPAU_FILETIME@@PAU1@PAU1@@@YAPAXPAXPAU_FILETIME@@11@Z
??$pushargEx@$00$0GJFBOJCK@PAU_FILETIME@@@@YAPAXPAU_FILETIME@@@Z
??$pushargEx@$00$0IPIPBBE@PADKHHHHH@@YAPAXPADKHHHHH@Z
??$pushargEx@$00$0EIHPOBGL@PAXPAUTKLGFileHeader@@IPAKH@@YAPAXPAXPAUTKLGFileHeader@@IPAKH@Z
??$pushargEx@$00$0DNJJHCPF@K@@YAPAXK@Z
??$pushargEx@$00$0IBPAPANP@PAD@@YAPAXPAD@Z
??$pushargEx@$00$0IPIPBBE@PADJHHHHH@@YAPAXPADJHHHHH@Z
??$DBGOutMessage@PBDPBDK@KEYLOGDEBUGSTRINGS@@YAXPBD0K@Z
??$pushargEx@$00$0PDPNBMD@PAXPBDHPAKH@@YAPAXPAXPBDHPAKH@Z
??$pushargEx@$00$0EIHPOBGL@PAXPAUTLoggerBlockHead@@KPAKH@@YAPAXPAXPAUTLoggerBlockHead@@KPAKH@Z
??$pushargEx@$00$0EIHPOBGL@PAXPADKPAKH@@YAPAXPAXPADKPAKH@Z
??$pushargEx@$00$0EIHPOBGL@PAXPAEKPAKH@@YAPAXPAXPAEKPAKH@Z