XLBugHandler.dll
Description: XLBugHandler
Authors: Copyright (C) 2022
Version: 4.2.1.15
Architecture: 32-bit
Operating System: Windows
SHA256: 6e10f086a703712cbe8014a8aabdc4f8
File Size: 603.1 KB
Uploaded At: Dec. 2, 2025, 2:41 p.m.
Views: 5
Security Warning
This file has been flagged as potentially dangerous.
Reason: Detected potentially dangerous functions used for process injection: OpenProcess
Exported Functions
- _XL_AddCrashProcess@12 (Ordinal: 1, Address: 0x26b7)
- _XL_AddRuntimeLogfile@4 (Ordinal: 2, Address: 0x41f1)
- _XL_EnableModuleLoadLog@4 (Ordinal: 3, Address: 0x2108)
- _XL_EnableReportAutoRestartApp@8 (Ordinal: 4, Address: 0x3f0d)
- _XL_EnableThreadLog@4 (Ordinal: 5, Address: 0x1eba)
- _XL_EnableXLDoctor@16 (Ordinal: 6, Address: 0x1235)
- _XL_InitBugHandler@20 (Ordinal: 7, Address: 0x468d)
- _XL_IsEnableModuleLoadLog@0 (Ordinal: 8, Address: 0x3cb0)
- _XL_IsEnableThreadLog@0 (Ordinal: 9, Address: 0x1578)
- _XL_RemoveCrashProcess@4 (Ordinal: 10, Address: 0x1a2d)
- _XL_SetAlwaysSendReport@4 (Ordinal: 11, Address: 0x1465)
- _XL_SetBugReportRootDir@4 (Ordinal: 12, Address: 0x37ce)
- _XL_SetBusinessName@4 (Ordinal: 13, Address: 0x3445)
- _XL_SetContinueDefaultFilter@4 (Ordinal: 14, Address: 0x3da5)
- _XL_SetCustomInfo@4 (Ordinal: 15, Address: 0x3b9d)
- _XL_SetExtraInfo@8 (Ordinal: 16, Address: 0x4354)
- _XL_SetPeerID@4 (Ordinal: 17, Address: 0x3161)
- _XL_SetProcessWorkState@4 (Ordinal: 18, Address: 0x4142)
- _XL_SetReportLanguageID@4 (Ordinal: 19, Address: 0x3fa3)
- _XL_SetReportPath@4 (Ordinal: 20, Address: 0x3490)
- _XL_SetReportShowMode@4 (Ordinal: 21, Address: 0x391d)
- _XL_SetRuntimeInfo@8 (Ordinal: 22, Address: 0x4205)
Imported DLLs & Functions
ADVAPI32.dll
- GetTraceEnableLevel (Address: 0x100dd000)
- GetTraceLoggerHandle (Address: 0x100dd004)
- RegCloseKey (Address: 0x100dd014)
- RegisterTraceGuidsW (Address: 0x100dd00c)
- RegOpenKeyW (Address: 0x100dd010)
- RegQueryValueExW (Address: 0x100dd01c)
- TraceEvent (Address: 0x100dd018)
- UnregisterTraceGuids (Address: 0x100dd008)
KERNEL32.dll
- CloseHandle (Address: 0x100dd070)
- CompareStringW (Address: 0x100dd218)
- CopyFileW (Address: 0x100dd0e4)
- CreateEventW (Address: 0x100dd118)
- CreateFileW (Address: 0x100dd06c)
- CreateThread (Address: 0x100dd1f4)
- CreateToolhelp32Snapshot (Address: 0x100dd0fc)
- DecodePointer (Address: 0x100dd16c)
- DeleteCriticalSection (Address: 0x100dd10c)
- EncodePointer (Address: 0x100dd1f0)
- EnterCriticalSection (Address: 0x100dd080)
- EnumSystemLocalesW (Address: 0x100dd22c)
- ExitProcess (Address: 0x100dd204)
- ExitThread (Address: 0x100dd1f8)
- FileTimeToSystemTime (Address: 0x100dd0f0)
- FindClose (Address: 0x100dd254)
- FindFirstFileExW (Address: 0x100dd19c)
- FindNextFileW (Address: 0x100dd198)
- FlushFileBuffers (Address: 0x100dd250)
- FlushInstructionCache (Address: 0x100dd148)
- FreeEnvironmentStringsW (Address: 0x100dd060)
- FreeLibrary (Address: 0x100dd0b8)
- FreeLibraryAndExitThread (Address: 0x100dd1fc)
- GetACP (Address: 0x100dd190)
- GetCommandLineA (Address: 0x100dd184)
- GetCommandLineW (Address: 0x100dd068)
- GetConsoleCP (Address: 0x100dd240)
- GetConsoleMode (Address: 0x100dd244)
- GetCPInfo (Address: 0x100dd188)
- GetCurrentDirectoryW (Address: 0x100dd120)
- GetCurrentProcess (Address: 0x100dd08c)
- GetCurrentProcessId (Address: 0x100dd090)
- GetCurrentThread (Address: 0x100dd098)
- GetCurrentThreadId (Address: 0x100dd09c)
- GetDateFormatW (Address: 0x100dd210)
- GetEnvironmentStringsW (Address: 0x100dd15c)
- GetFileSizeEx (Address: 0x100dd248)
- GetFileType (Address: 0x100dd234)
- GetLastError (Address: 0x100dd078)
- GetLocaleInfoW (Address: 0x100dd220)
- GetModuleFileNameW (Address: 0x100dd0bc)
- GetModuleHandleA (Address: 0x100dd0c0)
- GetModuleHandleExW (Address: 0x100dd200)
- GetModuleHandleW (Address: 0x100dd0c4)
- GetOEMCP (Address: 0x100dd18c)
- GetPrivateProfileIntW (Address: 0x100dd180)
- GetPrivateProfileStringW (Address: 0x100dd0dc)
- GetProcAddress (Address: 0x100dd0c8)
- GetProcessHeap (Address: 0x100dd058)
- GetProcessTimes (Address: 0x100dd088)
- GetStartupInfoW (Address: 0x100dd1d8)
- GetStdHandle (Address: 0x100dd230)
- GetStringTypeW (Address: 0x100dd050)
- GetSystemDirectoryW (Address: 0x100dd0b4)
- GetSystemTime (Address: 0x100dd0ac)
- GetSystemTimeAsFileTime (Address: 0x100dd1c0)
- GetTempPathW (Address: 0x100dd124)
- GetThreadContext (Address: 0x100dd0a0)
- GetThreadSelectorEntry (Address: 0x100dd134)
- GetTickCount (Address: 0x100dd0b0)
- GetTimeFormatW (Address: 0x100dd214)
- GetTimeZoneInformation (Address: 0x100dd238)
- GetUserDefaultLCID (Address: 0x100dd228)
- GetVersionExW (Address: 0x100dd128)
- GlobalMemoryStatusEx (Address: 0x100dd0a8)
- HeapAlloc (Address: 0x100dd208)
- HeapFree (Address: 0x100dd20c)
- HeapReAlloc (Address: 0x100dd170)
- HeapSize (Address: 0x100dd168)
- InitializeCriticalSection (Address: 0x100dd108)
- InitializeCriticalSectionAndSpinCount (Address: 0x100dd1a8)
- InitializeSListHead (Address: 0x100dd1dc)
- InterlockedCompareExchange (Address: 0x100dd13c)
- InterlockedFlushSList (Address: 0x100dd1ec)
- InterlockedPushEntrySList (Address: 0x100dd1e8)
- IsDebuggerPresent (Address: 0x100dd1d4)
- IsProcessorFeaturePresent (Address: 0x100dd1d0)
- IsValidCodePage (Address: 0x100dd194)
- IsValidLocale (Address: 0x100dd224)
- LCMapStringW (Address: 0x100dd21c)
- LeaveCriticalSection (Address: 0x100dd084)
- LoadLibraryA (Address: 0x100dd0d0)
- LoadLibraryExW (Address: 0x100dd0cc)
- LoadLibraryW (Address: 0x100dd0d4)
- MultiByteToWideChar (Address: 0x100dd0f4)
- OpenProcess (Address: 0x100dd0a4)
- OutputDebugStringW (Address: 0x100dd17c)
- Process32FirstW (Address: 0x100dd100)
- Process32NextW (Address: 0x100dd104)
- QueryPerformanceCounter (Address: 0x100dd1a0)
- QueryPerformanceFrequency (Address: 0x100dd1a4)
- RaiseException (Address: 0x100dd1e0)
- ReadConsoleW (Address: 0x100dd164)
- ReadFile (Address: 0x100dd160)
- ReadProcessMemory (Address: 0x100dd130)
- ResetEvent (Address: 0x100dd1c4)
- ResumeThread (Address: 0x100dd144)
- RtlUnwind (Address: 0x100dd1e4)
- SetConsoleCtrlHandler (Address: 0x100dd054)
- SetEndOfFile (Address: 0x100dd174)
- SetEnvironmentVariableW (Address: 0x100dd05c)
- SetErrorMode (Address: 0x100dd07c)
- SetEvent (Address: 0x100dd110)
- SetFilePointerEx (Address: 0x100dd24c)
- SetLastError (Address: 0x100dd12c)
- SetStdHandle (Address: 0x100dd0d8)
- SetThreadContext (Address: 0x100dd14c)
- SetUnhandledExceptionFilter (Address: 0x100dd074)
- SuspendThread (Address: 0x100dd154)
- SwitchToThread (Address: 0x100dd1ac)
- SystemTimeToTzSpecificLocalTime (Address: 0x100dd0ec)
- TerminateProcess (Address: 0x100dd094)
- TlsAlloc (Address: 0x100dd1b0)
- TlsFree (Address: 0x100dd1bc)
- TlsGetValue (Address: 0x100dd1b4)
- TlsSetValue (Address: 0x100dd1b8)
- UnhandledExceptionFilter (Address: 0x100dd1cc)
- VerifyVersionInfoW (Address: 0x100dd0e8)
- VerSetConditionMask (Address: 0x100dd064)
- VirtualAlloc (Address: 0x100dd158)
- VirtualFree (Address: 0x100dd150)
- VirtualProtect (Address: 0x100dd140)
- VirtualQuery (Address: 0x100dd138)
- WaitForMultipleObjects (Address: 0x100dd11c)
- WaitForSingleObject (Address: 0x100dd114)
- WaitForSingleObjectEx (Address: 0x100dd1c8)
- WideCharToMultiByte (Address: 0x100dd0f8)
- WriteConsoleW (Address: 0x100dd178)
- WriteFile (Address: 0x100dd23c)
- WritePrivateProfileStringW (Address: 0x100dd0e0)
PSAPI.DLL
- GetModuleBaseNameW (Address: 0x100dd2f0)
- GetPerformanceInfo (Address: 0x100dd2ec)
- GetProcessMemoryInfo (Address: 0x100dd2f4)
- QueryWorkingSet (Address: 0x100dd2f8)
SHELL32.dll
- SHCreateDirectoryExW (Address: 0x100dd328)
- ShellExecuteW (Address: 0x100dd32c)
SHLWAPI.dll
- PathAppendW (Address: 0x100dd368)
- PathCombineW (Address: 0x100dd364)
- PathFileExistsW (Address: 0x100dd35c)
- PathFindFileNameW (Address: 0x100dd360)
VERSION.dll
- GetFileVersionInfoSizeW (Address: 0x100dd3a0)
- GetFileVersionInfoW (Address: 0x100dd398)
- VerQueryValueW (Address: 0x100dd39c)
WININET.dll
- InternetCloseHandle (Address: 0x100dd3d0)
- InternetOpenA (Address: 0x100dd3d8)
- InternetOpenUrlA (Address: 0x100dd3d4)