Manalyze report for cdcf6b99acbf73b90c3a239944f9e3a8

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2011-Oct-21 03:50:01
Detected languages	Chinese - Taiwan English - United States
Debug artifacts	d:\work\Flash\TdkPacker\2in1 release\W3DStub.pdb
CompanyName	Phoenix Technologies Ltd.
FileDescription	Extractor for Windows
FileVersion	`1, 3, 3, 0`
InternalName	WinExtractor.exe
LegalCopyright	Copyright (C) 2011 Phoenix Technologies Ltd.
OriginalFilename	WinExtractor.exe
ProductName	TDK Packer (Extractor for Windows)
ProductVersion	`1, 3, 3, 0`

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C++ 6.0 - 8.0` `Microsoft Visual C++ 8` `Microsoft Visual C++ 8.0` `MSVC++ v.8 (procedure 1 recognized - h)`
Info	Interesting strings found in the binary:	`Contains domain names: clio.rice.edu command.com`
Malicious	The file headers were tampered with.	`The RICH header checksum is invalid.`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryA LoadLibraryExA GetProcAddress` `Can access the registry: RegEnumKeyA RegSetValueExA RegCreateKeyExA RegQueryValueA RegCloseKey RegDeleteKeyA RegOpenKeyExA RegQueryValueExA RegOpenKeyA` `Possibly launches other programs: CreateProcessA` `Can create temporary files: CreateFileA GetTempPathA` `Uses functions commonly found in keyloggers: GetForegroundWindow CallNextHookEx`
Info	The PE is digitally signed.	`Signer: Dell Inc` `Issuer: Entrust Code Signing CA - OVCS1`
Suspicious	No VirusTotal score.	`This file has never been scanned on VirusTotal.`

Hashes

MD5	`cdcf6b99acbf73b90c3a239944f9e3a8`
SHA1	`2411affdce8042d13734aa7b93f55833918e3777`
SHA256	`a4509fb0898099de270ebabb419393c36859e8dac29c0c40f2e9e458533c4b84`
SHA3	`54a3476bbe3a9123906e6e20a9876d6b0b9e580c57b0f9e3b9d7a6a90616c0b0`
SSDeep	`98304:cuHL4TYhlr+ewyEQ4erTEk9NHjpUmt/7sdq7XMLtNb3il5:cyL4TYh0elXPr/9NHjWA7GG8LtNo`
Imports Hash	`e50fd82bba26d24e58c4dc43b1aed523`

DOS Header

e_magic	`MZ`
e_cblp	`0`
e_cp	`0x2a`
e_crlc	`0x1b`
e_cparhdr	`0x20`
e_minalloc	`0x4b8`
e_maxalloc	`0x5b8`
e_ss	`0x8a8`
e_sp	`0x100`
e_csum	`0`
e_ip	`0x54`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x1fc70`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`4`
TimeDateStamp	2011-Oct-21 03:50:01
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`8.0`
SizeOfCode	`0x27000`
SizeOfInitializedData	`0xf000`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0003146B (Section: .text)`
BaseOfCode	`0x20000`
BaseOfData	`0x47000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x1000`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x5b000`
SizeOfHeaders	`0x20000`
Checksum	`0x42955a`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`411d446cc1b24f7b1c3f5d14c5f44952`
SHA1	`71b3fb6f94f974d60eaecda472e8631f2ea548ff`
SHA256	`e3eb6448cd3c48102e276b7b5ef6f583e5124d421d5ca4760b708be4181610f7`
SHA3	`669aa0640505238b0c7f8065111f796cdc6be585e0de59ccf67c426d3846b381`
VirtualSize	`0x26375`
VirtualAddress	`0x20000`
SizeOfRawData	`0x27000`
PointerToRawData	`0x20000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.59702`

.rdata

MD5	`4f2a32c5fb76a437fb8c6bae9ba35876`
SHA1	`33ab49cdf12681854fe7db97948492bde23d4a3b`
SHA256	`a4f384eb948054ef7528dfc38dba91e3c9cc922fc3d6355336e2c9ff26284ae1`
SHA3	`2462f87fab361a339c2d560af26fe1d903a696a3bf33400e49fad6641bf08ee7`
VirtualSize	`0x7eda`
VirtualAddress	`0x47000`
SizeOfRawData	`0x8000`
PointerToRawData	`0x47000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.11969`

.data

MD5	`547de83c35d89ee2255f05218d885d79`
SHA1	`424ff05722224e58d8a4069d5636d83f40b4a7b5`
SHA256	`b9822cddb35c79a753d9abc37f1e3cb77b755c2085eb984d3dd3ee3fef4b70fa`
SHA3	`b96a5a5743c7a1b8b2ec7dc20ec3fd860b1eb90ab5ddd24bc6a28439c28ae5d9`
VirtualSize	`0x6d5c`
VirtualAddress	`0x4f000`
SizeOfRawData	`0x2000`
PointerToRawData	`0x4f000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`3.92213`

.rsrc

MD5	`256099279be5c7ad58543c7fe1a339ad`
SHA1	`ec6a89bbf5d485a51c2c9d7629b4898ba5f89c0d`
SHA256	`7e1af33b62bced0b106118ccffb9b94dce9b1990c09ad252d2c333f6bfd343fc`
SHA3	`403d323a2f8c64b678d6ecfc5cda91e1ded220a36d699335eb1926b0ceec0836`
VirtualSize	`0x4280`
VirtualAddress	`0x56000`
SizeOfRawData	`0x5000`
PointerToRawData	`0x51000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.15192`

Imports

KERNEL32.dll	`CreateFileA` `GetCPInfo` `GetOEMCP` `SetErrorMode` `HeapAlloc` `HeapFree` `HeapReAlloc` `VirtualAlloc` `GetProcessHeap` `GetStartupInfoA` `RtlUnwind` `RaiseException` `ExitProcess` `HeapSize` `TerminateProcess` `UnhandledExceptionFilter` `SetUnhandledExceptionFilter` `IsDebuggerPresent` `SetHandleCount` `GetFileType` `VirtualFree` `HeapDestroy` `HeapCreate` `GetConsoleCP` `GetConsoleMode` `SetEnvironmentVariableA` `SetEnvironmentVariableW` `Sleep` `GetACP` `IsValidCodePage` `FreeEnvironmentStringsA` `GetEnvironmentStrings` `FreeEnvironmentStringsW` `GetEnvironmentStringsW` `QueryPerformanceCounter` `GetTickCount` `GetSystemTimeAsFileTime` `SetStdHandle` `GetConsoleOutputCP` `WriteConsoleW` `LCMapStringA` `LCMapStringW` `GetStringTypeA` `GetStringTypeW` `GetCurrentProcess` `SetEndOfFile` `FlushFileBuffers` `SetFilePointer` `WriteFile` `ReadFile` `GlobalFlags` `GetThreadLocale` `TlsFree` `DeleteCriticalSection` `LocalReAlloc` `TlsSetValue` `TlsAlloc` `InitializeCriticalSection` `GlobalHandle` `GlobalReAlloc` `EnterCriticalSection` `TlsGetValue` `LeaveCriticalSection` `LocalAlloc` `InterlockedIncrement` `InterlockedDecrement` `GetModuleFileNameW` `GlobalGetAtomNameA` `GlobalFindAtomA` `LoadLibraryA` `lstrcmpW` `GetVersionExA` `FreeResource` `WritePrivateProfileStringA` `GlobalAddAtomA` `GlobalDeleteAtom` `GetCurrentThread` `GetCurrentThreadId` `ConvertDefaultLocale` `EnumResourceLanguagesA` `GetLocaleInfoA` `LoadLibraryExA` `lstrcmpA` `FreeLibrary` `GetModuleHandleA` `GetProcAddress` `GlobalFree` `GlobalAlloc` `GlobalLock` `GlobalUnlock` `FormatMessageA` `LocalFree` `MulDiv` `GetCurrentProcessId` `SetLastError` `CompareStringW` `InterlockedExchange` `GetVersion` `lstrlenA` `CompareStringA` `MultiByteToWideChar` `FindResourceA` `LoadResource` `LockResource` `SizeofResource` `WideCharToMultiByte` `CloseHandle` `WaitForSingleObject` `CreateProcessA` `GetLastError` `CreateDirectoryA` `GetTempPathA` `SetCurrentDirectoryA` `GetModuleFileNameA` `GetCommandLineA` `GetCommandLineW` `GetCurrentDirectoryA` `FreeConsole` `GetConsoleScreenBufferInfo` `WriteConsoleA` `GetStdHandle` `AttachConsole`
USER32.dll	`LoadCursorA` `GetSysColorBrush` `ShowWindow` `SetWindowTextA` `IsDialogMessageA` `EndPaint` `BeginPaint` `ReleaseDC` `GetDC` `ClientToScreen` `GrayStringA` `DrawTextExA` `DrawTextA` `TabbedTextOutA` `RegisterWindowMessageA` `SendDlgItemMessageA` `WinHelpA` `GetCapture` `GetClassLongA` `GetClassNameA` `SetPropA` `GetPropA` `RemovePropA` `SetFocus` `GetWindowTextA` `GetForegroundWindow` `GetTopWindow` `UnhookWindowsHookEx` `GetMessageTime` `GetMessagePos` `MapWindowPoints` `SetForegroundWindow` `UpdateWindow` `GetMenu` `CreateWindowExA` `GetClassInfoExA` `GetClassInfoA` `RegisterClassA` `GetSysColor` `AdjustWindowRectEx` `CopyRect` `PtInRect` `GetDlgCtrlID` `DefWindowProcA` `CallWindowProcA` `SetWindowLongA` `SetWindowPos` `SystemParametersInfoA` `GetWindowPlacement` `GetWindowRect` `GetWindow` `GetDesktopWindow` `SetActiveWindow` `CreateDialogIndirectParamA` `MessageBoxA` `DestroyWindow` `IsWindow` `GetDlgItem` `GetNextDlgTabItem` `EndDialog` `SetCursor` `SetWindowsHookExA` `CallNextHookEx` `GetMessageA` `TranslateMessage` `DispatchMessageA` `GetActiveWindow` `IsWindowVisible` `GetKeyState` `UnregisterClassA` `DestroyMenu` `LoadIconA` `PostMessageA` `IsIconic` `SendMessageA` `GetSystemMetrics` `GetClientRect` `DrawIcon` `EnableWindow` `IsWindowEnabled` `GetLastActivePopup` `GetWindowLongA` `GetParent` `GetWindowThreadProcessId` `GetSubMenu` `GetMenuItemCount` `PeekMessageA` `GetCursorPos` `ValidateRect` `PostQuitMessage` `SetMenuItemBitmaps` `GetMenuCheckMarkDimensions` `LoadBitmapA` `GetFocus` `ModifyMenuA` `EnableMenuItem` `CheckMenuItem` `GetMenuState` `GetMenuItemID`
GDI32.dll	`DeleteDC` `GetStockObject` `ScaleWindowExtEx` `SetWindowExtEx` `ScaleViewportExtEx` `SetViewportExtEx` `OffsetViewportOrgEx` `SetViewportOrgEx` `SelectObject` `Escape` `ExtTextOutA` `TextOutA` `RectVisible` `PtVisible` `GetDeviceCaps` `DeleteObject` `SetMapMode` `RestoreDC` `SaveDC` `GetObjectA` `SetBkColor` `SetTextColor` `GetClipBox` `CreateBitmap`
WINSPOOL.DRV	`DocumentPropertiesA` `OpenPrinterA` `ClosePrinter`
ADVAPI32.dll	`RegEnumKeyA` `RegSetValueExA` `RegCreateKeyExA` `RegQueryValueA` `RegCloseKey` `RegDeleteKeyA` `RegOpenKeyExA` `RegQueryValueExA` `RegOpenKeyA`
SHELL32.dll	`SHFileOperationA` `CommandLineToArgvW`
COMCTL32.dll	`InitCommonControlsEx`
SHLWAPI.dll	`PathFindExtensionA` `PathFindFileNameA`
OLEAUT32.dll	`#9` `#12` `#8`
OLEACC.dll (delay-loaded)	`LresultFromObject` `CreateStdAccessibleObject`

Delayed Imports

Attributes	`0x1`
Name	`OLEACC.dll`
ModuleHandle	`0x538d4`
DelayImportAddressTable	`0x50f9c`
DelayImportNameTable	`0x4d760`
BoundDelayImportTable	`0x4d79c`
UnloadDelayImportTable	`0`
TimeStamp	`1970-Jan-01 00:00:00`

6

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.02695`
MD5	`cab67e9ca149fb79ab4473998412b951`
SHA1	`2e793d35537bfb5d3f042ed0626d3b119d50519a`
SHA256	`fbeb3be87e80cb8e1d2af3d8140796c1bb80c6c7056f60897088ff9e355c3867`
SHA3	`0e72f5537421764effb2ed98e536358bb7e86eed7b0936e606e8d45559685684`

7

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0xb4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.74274`
MD5	`9fa8a914823ac7e5370652146901f4f1`
SHA1	`eb3224109abb341b6e464d2606fdbed1a7160bc6`
SHA256	`f64ccc0582bc7c66af8b40049e485e8e241335261ec95ace909293ba50b2e4a3`
SHA3	`bb348af06514e27cd1fa21ad524dfd037edcd3b36ef4cc6ab24c4a8ec38995ff`

8

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.34038`
MD5	`d78a341fa7444ba9ccb74ad0c943d0ac`
SHA1	`a3fdcb001587c47b72f06441087455e8027baca1`
SHA256	`652988945185cf5d604d9b48de66288d82d8ed0acdd134398e90d002d2d9fc72`
SHA3	`2ddf8193c735adcec9a83d3a9032dc70796778b1d0c967a43789f1a6bb3da15f`

9

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.34004`
MD5	`07618c451f53db89991c3fb7c567a568`
SHA1	`0d5cd2bb85bb88024b832f68bdbadd1e69938138`
SHA256	`0b0e16c38a3d5a85566e67b1d9a7e720e4dee27e163b06099d3d7dfa5dbed9ee`
SHA3	`f4d98de638008ce348a7ef0cb3feb13207cf5b3eaea4f1ee1d71b3a22397fba4`

10

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.51649`
MD5	`9936fbf67a1d9f755c37852015d09527`
SHA1	`426016ba6a10cc2634ab7357e4223793c51aa304`
SHA256	`368f9cb089d206a8b61251f0c85eeda97ee08a56b33be8579246e964d3af6169`
SHA3	`6bdb1e7d667efe7812e162384a6341edec73311ee7dfcb122adf0cc0f08e7a8f`

11

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.45401`
MD5	`ffacff1dbee315221fd131e951d8e151`
SHA1	`d2eb9800a1f60d3ea7225fec706d809cf477885b`
SHA256	`6440c3a38dcfb81d45bc6be31b776fdae116dd7a2933b407b67132f6cfa0e6eb`
SHA3	`dbe125dd582d83c13a62c87798c900fdc43d97b581935e320c14f9cc761a3868`

12

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.34864`
MD5	`fa681900dd51c997aa67a2c5a4704099`
SHA1	`b48ebfd25835cb260b5e4f8e7085ea3da102c48a`
SHA256	`9882a8462ce9de3cc9a5d0ca48c8c4f7ca97f1f846f0c10e6655e33c9734b152`
SHA3	`157fb750ffc808227ced340c81ed1c1c1e15b05dd0e831678b871515870e0a8b`

13

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.34505`
MD5	`0a12283479aa8a8677dd27bb0f584a34`
SHA1	`63679153c4d14fc591d1286cc98ff5044a5b589d`
SHA256	`322e92d75b3fec9e16b81466f4cf111d298b80812d5b238f4ee032c025a02050`
SHA3	`d6fc5e08b9d51b2cc80c1a2a34ca495e28edd0ca1bc65f317958b773c675de7e`

14

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.34864`
MD5	`d0293b6f84ea96f2662fa2f8e2fd44de`
SHA1	`240ad776d40208f067dda60701affa3d162cb3bb`
SHA256	`8db6df648274a0fc3d28430367216e1c17c364ca613066cbb0e133637e92ba62`
SHA3	`d92c1c2bfba803073152e14d6846474d13ccef3f04aa8670540389efa7c7d995`

15

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.31114`
MD5	`49ca9d25ceb458297ddf84fff64c8d55`
SHA1	`fbd6d992b7e2a59c9e24372ea8d30a5dcdbd46f9`
SHA256	`f9c81ce9b4176b305c554a15f0ca2b98b11be76c1f13ef22169999aa07e9612f`
SHA3	`03f7002b636940864ef7d399ba60fb8de3f455da32f311ee39cdf6602c5d348b`

16

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.33609`
MD5	`27fc5529ad790189bbf410c7e3a70fb7`
SHA1	`ea2456c9b26f884a7f7abb051f460ec98cb9451c`
SHA256	`601635482a9b1864ea0c61ce0282c5c9fe1d014aa95dbb4f60770f1c2b6df3da`
SHA3	`24ab306744896452b2a7f7055c97671ab0aad3965342b3d0cead7a6cb640238d`

17

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.81313`
MD5	`858a63dc597812b0885e8a8f9689227c`
SHA1	`0a816cd0e6f10038f43bde278eb613f1c7281b33`
SHA256	`2bf742d2beb4c56dd6eb68347dd8ee28da85bed9e6d165b36c6edb91da01d5d6`
SHA3	`6974d714fd124f0de87b6f088039e52bcf3123b5e6ae24c7c61864b70b894963`

18

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.81491`
MD5	`ff43eaab521694d0356618a92cd83b55`
SHA1	`f1ed8d456a5a3d87d1a8349e992c99e22bf3624e`
SHA256	`cfc4ff9e46fbb61f61b68f36adc6593b137233d1cbaa50fe37e5653f0cb20396`
SHA3	`7069692bfbe0c043b33390a40f8033c3d0aa3092c3b1ca1b01fc899dc760ec48`

19

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.10016`
MD5	`4bfaa5ad112338fc90bf84b1ba21859d`
SHA1	`f175fb276720b4f98bc75dd3edc8c53ed563bdf4`
SHA256	`c4a6e3a7a346baecb09a0c49268eb44f388382a7866a4e912b53d48fa3b34c26`
SHA3	`eb1f5efadebebc4b756ef49661343ee08641f53184ad8ee83e33d6665028a00d`

20

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.97052`
MD5	`654a61b5fd300aaf86c52a3c48035005`
SHA1	`e16bdc1b4309abd682e2d0b52aaf370a77ad6a86`
SHA256	`f273e554605a89aa0994c9d42bc2569be3db5b19b2900dacb30f3218ed1174a0`
SHA3	`50582dc2bd6d1a2632564b2d3c6fdc1877e401924754069bc2dfccf3e2896340`

21

Type	`RT_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.22699`
MD5	`b6946159ef4680b2b03d58bdf3dc83f6`
SHA1	`b949690a6e071a1fe43cb83a15d5104d1fa9fe0d`
SHA256	`ebaf4bcc0f0d7ca9a3458ea52520d2dd10811069241940b9b2e79ac1a4c3ca5c`
SHA3	`4b1152fe0fd4581cc8716682bff8f14d7c903ab6b5414d52876bd37fc58eb0c5`

30994

Type	`RT_BITMAP`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0xb8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.23666`
MD5	`8cf65be17e506ff24c2177078f88b56e`
SHA1	`3e397dc7597caeb844df0ea760b64231c8ce3dbf`
SHA256	`e7c0005285d1ab59732d5f99f77a9bdd6342b01cf44437ebd7a07611a227e272`
SHA3	`7da4c7aab356574679f0f9107740f01647864c846c04f699deef67577fd6aded`
Preview

30996

Type	`RT_BITMAP`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x144`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.87621`
MD5	`5a9c81cdbf480cf01daa71ba0e233c5f`
SHA1	`28e04c01584654e1974347d1baa462b2784e9c47`
SHA256	`abdf36bde89a26349f5741c17c235dacea88d441d8662ba16a598dc50c3c4864`
SHA3	`99dec83590ac444359a5a6f8924dae5615d93f4df527e10a8a61319ce3a5beaf`
Preview

1

Type	`RT_ICON`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.10741`
MD5	`1fbe70134f4e33dc39ec1bb21decb1a1`
SHA1	`deb32acc84cca2796ab4d3ffb8bd9da451d7cb52`
SHA256	`6d18d61a556b263104bb11b2c5180bfcbd9e9ec38496f96942e285d25fda278e`
SHA3	`a4c403f8b91d9a9b82629b75ada1cba961057cbcb5f9e8730de877bdf9bc8425`

2

Type	`RT_ICON`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.41354`
MD5	`84115385335545765bcfca596ec36bdd`
SHA1	`254e804200c1ea86a483f363fe772d6005fd9607`
SHA256	`09b720b8cfa4fbbd76735eb9c077085193564e2f77ab47da598889f5014733ac`
SHA3	`3e64f6b2e51c893cfb1e0eb427eea577f3b527b38a915dddcb88c334a4652323`

102

Type	`RT_DIALOG`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0xb6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.12493`
MD5	`9208e622157901bed60f3293f362aa9c`
SHA1	`099989bedf658610f2e3be87da2af169a45e47ac`
SHA256	`27a936475877f276388f2797d558a6c9e17108ae008aaac7e586e8a8279a59f1`
SHA3	`a963cf02bb4d69b7b288e150306ea8598801f43c58a896e958e4e1440e414ccf`

30721

Type	`RT_DIALOG`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0xe8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06676`
MD5	`ad7b15160c8bf80910606d417f40fef5`
SHA1	`9752acb8e012635c4356f7f2a20191d656b53faf`
SHA256	`6e113fd8e9f3156ae68251c6076beb9b59fe29e589d06398e7019802521f69d3`
SHA3	`50c74f1eeba91cb4ecc237c0b18cd2f6c0e2b6064e8d13ce1a779160c03b5d48`

30734

Type	`RT_DIALOG`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x34`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.41669`
MD5	`72723d63b211c60717138184c1675b66`
SHA1	`ecd2be6587bb32a080e51b5c3f3a816e8b637c85`
SHA256	`4cf716efaf68e0cb2ec45ec55d291050b5712b05653cae68edbb999f803d2a98`
SHA3	`6031fa1100e39d04c89ed42890fe9833adb0503fe1857940533b7356aec9d306`

3841

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x82`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.81705`
MD5	`8bb814f43734537868736a6df5dcc012`
SHA1	`3ae7a8f8678bc2aed76f745960730097032389b6`
SHA256	`d91dc4e26fd86def5ee907c72f32457bea07d21fa618012245f641d08501548d`
SHA3	`73fabbc3aad03738eda288b6d45b076e7f94f1ff8de37df5ac4d6e7dc7a48f98`

3842

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x2a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`0.960953`
MD5	`0131ce1c2237957b6926d5097b0af63d`
SHA1	`2ce37b98065cc4de92e99eb0777e0e1159102068`
SHA256	`05e0d5787611ed4f643733e3e6e62d00f426422b5d3e443ceebac22e9d294bc4`
SHA3	`9ee7bcb02f48332a4fac72465297312ef9c765b03edf2ab24a4b3de0840bda6c`

3843

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x192`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.08561`
MD5	`4878b41966ae4b4804e54b73c2ce749d`
SHA1	`96f81fde159fde9de106ae79c72a5ff33888240e`
SHA256	`66f1747ba4c17f6fca44818ed98445f01645651c120e72f558245e2df6949d35`
SHA3	`388adbbc3c6a6643ab1951eeffb44f27991ae18f30d4d58e4b3cfe105f9a0906`

3857

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x4e2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.26139`
MD5	`a9e50c9388d7cdac902c23acec7aa23c`
SHA1	`d54e8c937a904c58112c0fd868012f1808bc7def`
SHA256	`d036e1af5639fb867f5035330e81788bbc24eff762610e3f6bba5d78903a845a`
SHA3	`d6269db5a679dd9690f84a835d71985ba4651061b49478a4df8690ece671a473`

3858

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x31a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.02531`
MD5	`e3a0d53a85f1f4fb647a1ae27e97b22e`
SHA1	`402c9fb29b0531f57ab05b9951429fe0b3a4b3f2`
SHA256	`c054645d86387fd491743027e6c2284d6a7262f6aced9321cbc1465cef2b6b1f`
SHA3	`fbda24a136d74488bb95bdd2e8f3a50b89a1f969239952685c4fe12cb093df63`

3859

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x2dc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.16997`
MD5	`8e2ac8a2e85ae2a4a7d1b1fec0c30687`
SHA1	`e8ad7766b7c342e2721e21c0d7f0c222ee8720e9`
SHA256	`c1bc5318a82ea1a1809618040026851947f6aa5171d904a9e60966f4551ca1a3`
SHA3	`b12ff47988f4fe62a2460361df0144ad3366d59e0ffa2b6f38b3469d7b24fc79`

3860

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x8a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.71087`
MD5	`5988b72b85cd1c121906b20e7526fdf2`
SHA1	`45efa4995e9c25a32e3f47a15b63a813cc6e8fc4`
SHA256	`35b5abb90316b4017d5531e031cbf15bae6e8dd46f6dd221701693a22a7795be`
SHA3	`afa115b83c9f9b2f16ce1e14424b4e2cf6216cbcee84835e0b5cec4a23510a93`

3865

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0xac`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.63903`
MD5	`5fbbd2a5f564e043553889eec9147920`
SHA1	`2ddafabdf2bf5b62090419f07f731c4d02f0d987`
SHA256	`1b8660b0c53b94f3e029de58e56d08c8097a080244e9dc65d4155a9b603820d8`
SHA3	`1a90cf149f1fc5cfa9cd3f82f9a079ec48c7f7ce76dc4be601e538ae5c052ab9`

3866

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0xde`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.87807`
MD5	`a0838b75a6ffc345212d18178663bb7d`
SHA1	`a90a0eccdf4cc4c50f430195695a3b65adefe5e8`
SHA256	`31bff9afbf08a8869318cd946a1d73a4425afefc5693c6e06671bde1e86de1dc`
SHA3	`ad576d2bedb8e173fb207310f244bee3ad8c898a2101cb67da930fadf80ec7d0`

3867

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x4c4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.23259`
MD5	`f2cb4a170c1677e5a01e7be62eb9cb0d`
SHA1	`2dd9a30c267d734a1b6da203ac4ddf4512ce30bf`
SHA256	`36db380991291cac5c99e42332efda20210f63985544d95e8fa6ef85bf2bdf8e`
SHA3	`2a1b4ca5a692c8deed0fef985b009b14ce015981e2b6bcf1469bba5700456504`

3868

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x264`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.09466`
MD5	`22bc73fe721ab70d0af71b166577d914`
SHA1	`3f6f9d5eacc66775e33fa6644ffcb06e141b8955`
SHA256	`7f51554313c6765ba649783a942064cdfe6f5a70248a6f56840f71969f87ced0`
SHA3	`a37cc4b7ff7538179044beda7e177e62d1691994b518d2151622c975b5f282ef`

3869

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x2c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.07875`
MD5	`4b18eed800e2806db8e0aacb95fd54f2`
SHA1	`8b09634f818d6823f6466717f3863cbb466d97c1`
SHA256	`0714c554acd308b38c3d6319f7e470f76a16d712f696545eacac2bdc725dfb95`
SHA3	`067dea0fda55e331beab407da1e0e79a9d71fe8a8d0c965384d459ce0a8d499a`

3887

Type	`RT_STRING`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x42`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.95964`
MD5	`c65b487f823c0a91a2eec94148eb1ff6`
SHA1	`3fd26a7911c5c5d45d0dfc94dfd2fd11a1fd1574`
SHA256	`1f1b61a7f04edc3691a6c9350132b09929d5bfa1c900f6ff500e55c5ebc63212`
SHA3	`e89fdaf864b56d3012a7c4518ff3db5dee97ab11fa819b22076973a8f607d95f`

30977

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x22`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.25451`
Detected Filetype	Cursor file
MD5	`e648f4a90f716b6cd5469766e73d8c7a`
SHA1	`1b65b1b0d103631e6b215afbaaf979283a1d9973`
SHA256	`01b1735b2f7a0eade419baef8c3558aa38fc873d13ee872816a6bc65af24f542`
SHA3	`65fae8695c89e12556639397eb6280c22b821af99fe8f2db259e7e12bd4cb5c1`
Preview

30998

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`22a9b94eda22d068a6823a72268fdada`
SHA1	`7923c0aa606f67498391ecdb828292fcc3bc3ed6`
SHA256	`a2f0549cca7170ae03ba042464efe62365fba38c20049e439871c9e5ce0f914f`
SHA3	`565227501bdf04ce5d2afeb14e48062d4cdd6de7b76c62d26a15f6e4a34ba5c1`
Preview

30999

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`b3dbdfe1835416bbc3f5065baca9aca9`
SHA1	`334d5af1355f6a13c35be4ad16e76baaecf209f1`
SHA256	`ec26c438d10e3e84ec855c47f07a176e6c11bbfae1557d526490711b80f087fe`
SHA3	`2409b439f48a139d3764b226eda46c6a629d5bd208991369ae0c85e37c17c71d`
Preview

31000

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`d1c93cf23f34157f8c97800528b9bb99`
SHA1	`ab9e40c42ad0de11e11fdde5de49bd0adaa9bc2b`
SHA256	`8a495f17bc472bfc5e6923d9efa687848fac027ad60694f9c3f10a4f7b194924`
SHA3	`10b44e07ad4f8d644f73b4d71370ae8c337e8bfdac89efebff20378ad61e0758`
Preview

31001

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`5df05404b0dab444d7bc0fe0bee0d519`
SHA1	`ecbc2591eaf234bcc87df4731b5e26266728ff6d`
SHA256	`28b8110695851e5280ff55cb78507b03e8b74dd370b8e122179c82b56f7e5f37`
SHA3	`f18323f0f4e67af79d43a527df26273c9f7e53e73b1ba51cd426cff3412927d2`
Preview

31002

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`87f676ebb80763bfd77a413c2fb00f0d`
SHA1	`23736a18a1d4330cb9ea762fb7deaef881b6ec2c`
SHA256	`da738753c27f2708bd2257f8cac3385a4ccb0df1341b76acfda07fa980cfb4bd`
SHA3	`d90e5655540ffc0671429e2c3ff78ba0f7a100727622de4185f897a4aa996c3b`
Preview

31003

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`e6a3323fcb21bc5b90ee077f41a24061`
SHA1	`91e468b891f8306afeb6ac33bc31d67efb2cbe9d`
SHA256	`a92f60b25322592e7ddd13d88e4006c097666f4d87c8cb0c21ffdccd53b31d78`
SHA3	`ffc4266780334ccca3790e5f703fab0a138d252e16d1ad1145c1929f51d31d38`
Preview

31004

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`1cd71148c4a650e298e26668e22c3733`
SHA1	`5aeaabee3ae2ad999e9ed91c85119a42c83473c6`
SHA256	`4ecc7f2578fd7b137c04f85ffcbd67d6eab0bc8b1df4246cebd2a2aa517f3c60`
SHA3	`89ccb4ca5392e186b8eeb9848f78a12843e40792c3500e104225869bf9be1894`
Preview

31005

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`ebb32ed08b06ab16f79c997b7963c57c`
SHA1	`c87e290caff3cf222d5ec678a51927ff22637949`
SHA256	`9c17b4621412d6ded24a76aed74d4425ae61f86b6d4092ca1e28ca66b7c71399`
SHA3	`fb70f94bf4a64a26f2d83b588fe2a233796083fd03aae7835387aeba2646b847`
Preview

31006

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`446e8ff2a515c84d93ca4cbcf405d300`
SHA1	`98de0236185240e011430a5dd8e262ed8f991ec2`
SHA256	`ef309b720f166673cad840a88e7636e9161ad91415cc7c176010cebba07757e5`
SHA3	`d345fed6ee7f3afa40aba48106f47450bde6ac4c3d47db78cbfb11e4368be613`
Preview

31007

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`1529a8ec9965ecf3256d6d4550712406`
SHA1	`9bd0fc7e667f3d49f5098ecc2bff01987f3e1503`
SHA256	`12a5b9052dd16bed260343bc4352d436167c991c54497c5af441304646549386`
SHA3	`0799f15ab0007d5497ea80dbae86635472c9d085ffbb6c095b71d1e8acebc81b`
Preview

31008

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`8e242da1769c2307f276e393dec0e7d9`
SHA1	`da604259954e8cda5931a679e081bfad9a9fd772`
SHA256	`ee63d4681e7622067fd29005c6cc67b456031eb723c7239f05f1cb097af0ef98`
SHA3	`e6021bdef60731a607f9445b3c004fcdac812f44b42aeb8e32fee72204be4572`
Preview

31009

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`8408eef234acfcac8a26e706cc35d85c`
SHA1	`5ecdc1e1be3f1e941b1ca11b45943aafe135c517`
SHA256	`3f02dcac38fffe306e1825846e2bc0458ee712696310d051e3a69ebda8330cc3`
SHA3	`0406ff4480e84661d58a225cdf84931c95f7ebf6fea388a3cb6bedbc0343b421`
Preview

31010

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`79bc23c45190436b2c51ff2941fa8720`
SHA1	`0a8234176fad8831709703a0a34337a08987a983`
SHA256	`b328fe22a904a2e7e1341a95dbf00e2fdffc9ab350bc64c5ee348d3007c2b479`
SHA3	`b897f30ec85dad865a74be84cd616e0066da486befd0983d87e2b6f5d66a6c6b`
Preview

31011

Type	`RT_GROUP_CURSOR`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`1e219dd609ce399df95ba7af59ef113f`
SHA1	`436a16dd20d5e3ec42342a4d005a664cd227f517`
SHA256	`8f51832638675f16ec5f251ab59251b3f85d84e5129025d44c45b3191b331c58`
SHA3	`9e44adcf523bb484f416a99197d947211027feae6b6665b457883e548218befd`
Preview

128

Type	`RT_GROUP_ICON`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x22`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.24722`
Detected Filetype	Icon file
MD5	`948abbc6cf8161acf53163f7bce7ff00`
SHA1	`65692e012a372ea2d5018e2206a601d62cb86990`
SHA256	`0b20709283b49b828909764dbc524cd41ebca3767d9e82f491aba85b19720c5d`
SHA3	`1049175f667216c51fef3cac864c0aabce7545ca06fc7d66730fa62da89b994c`

1 (#2)

Type	`RT_VERSION`
Language	Chinese - Taiwan
Codepage	Latin 1 / Western European
Size	`0x370`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.42873`
MD5	`d25890b4f2f4a8f3d9379e61daa8dca6`
SHA1	`bc22385ada1e6d20f404665156d1fd0d540e8e75`
SHA256	`f14dba7732f2150a4382b507f1006be352a683fd53667cb741a949c311c076c1`
SHA3	`dfa2188c4a6f1196f184984a27f2900ad55be8112cc75df4127aaf0d29b6cb30`

1 (#3)

Type	`RT_MANIFEST`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x135`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.73611`
MD5	`92f3a9f02d0131665dfbf43178074163`
SHA1	`ba06eef437b8e0f863845b97c4520049dc15600f`
SHA256	`3eabe5c61601019c882f1ed98db32940c81f7902450446faf8f464dd0e44e23c`
SHA3	`814014b5834bcd20ed640de2d917542f64c17ceccb8c1586ef2c35ee53fa43d5`

String Table contents

Open
Save As
All Files (.)
Untitled
an unnamed file
&Hide
No error message is available.
An unsupported operation was attempted.
A required resource was unavailable.
Out of memory.
An unknown error has occurred.
An invalid argument was encountered.
Invalid filename.
Failed to open document.
Failed to save document.
Save changes to %1?
Failed to create empty document.
The file is too large to open.
Could not start print job.
Failed to launch help.
Internal application error.
Command failed.
Insufficient memory to perform operation.
System registry entries have been removed and the INI file (if any) was deleted.
Not all of the system registry entries (or INI file) were removed.
This program requires the file %s, which was not found on this system.
This program is linked to the missing export %s in the file %s. This machine may have an incompatible version of %s.
Please enter an integer.
Please enter a number.
Please enter an integer between %1 and %2.
Please enter a number between %1 and %2.
Please enter no more than %1 characters.
Please select a button.
Please enter an integer between 0 and 255.
Please enter a positive integer.
Please enter a date and/or time.
Please enter a currency.
Please enter a GUID.
Please enter a time.
Please enter a date.
Unexpected file format.
%1
Cannot find this file.
Please verify that the correct path and file name are given.
Destination disk drive is full.
Unable to read from %1, it is opened by someone else.
Unable to write to %1, it is read-only or opened by someone else.
An unexpected error occurred while reading %1.
An unexpected error occurred while writing %1.
%1: %2
Continue running script?
Dispatch exception: %1
Unable to read write-only property.
Unable to write read-only property.
Unable to load mail system support.
Mail system DLL is invalid.
Send Mail failed to send message.
No error occurred.
An unknown error occurred while accessing %1.
%1 was not found.
%1 contains an invalid path.
%1 could not be opened because there are too many open files.
Access to %1 was denied.
An invalid file handle was associated with %1.
%1 could not be removed because it is the current directory.
%1 could not be created because the directory is full.
Seek failed on %1
A hardware I/O error was reported while accessing %1.
A sharing violation occurred while accessing %1.
A locking violation occurred while accessing %1.
Disk full while accessing %1.
An attempt was made to access %1 past its end.
No error occurred.
An unknown error occurred while accessing %1.
An attempt was made to write to the reading %1.
An attempt was made to access %1 past its end.
An attempt was made to read from the writing %1.
%1 has a bad format.
%1 contained an unexpected object.
%1 contains an incorrect schema.
pixels
Uncheck
Check
Mixed

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	1.3.3.0
ProductVersion	1.3.3.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	English - United States
CompanyName	Phoenix Technologies Ltd.
FileDescription	Extractor for Windows
FileVersion (#2)	1, 3, 3, 0
InternalName	WinExtractor.exe
LegalCopyright	Copyright (C) 2011 Phoenix Technologies Ltd.
OriginalFilename	WinExtractor.exe
ProductName	TDK Packer (Extractor for Windows)
ProductVersion (#2)	1, 3, 3, 0

Resource LangID	Chinese - Taiwan

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2011-Oct-21 03:50:01
Version	`0.0`
SizeofData	`73`
AddressOfRawData	`0x4add0`
PointerToRawData	`0x4add0`
Referenced File	d:\work\Flash\TdkPacker\2in1 release\W3DStub.pdb

TLS Callbacks

Load Configuration

Size	`0x48`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x44fab8`
SEHandlerTable	`0x44bf30`
SEHandlerCount	`56`

RICH Header

XOR Key	`0x684313fb`
Unmarked objects	`0`
126 (50327)	`1`
C objects (VS2008 SP1 build 30729)	`7`
Imports (VS2008 SP1 build 30729)	`23`
Total imports	`515`
ASM objects (VS2012 build 50727 / VS2005 build 50727)	`25`
C objects (VS2012 build 50727 / VS2005 build 50727)	`156`
C++ objects (VS2012 build 50727 / VS2005 build 50727)	`140`
114 (VS2012 build 50727 / VS2005 build 50727)	`9`
Resource objects (VS2012 build 50727 / VS2005 build 50727)	`1`
Linker (VS2012 build 50727 / VS2005 build 50727)	`1`

cdcf6b99acbf73b90c3a239944f9e3a8

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.rdata

.data

.rsrc

Imports

Delayed Imports

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

30994

30996

1

2

102

30721

30734

3841

3842

3843

3857

3858

3859

3860

3865

3866

3867

3868

3869

3887

30977

30998

30999

31000

31001

31002

31003

31004

31005

31006

31007

31008

31009

31010

31011

128

1 (#2)

1 (#3)

String Table contents

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

TLS Callbacks

Load Configuration

RICH Header

Errors