CaptureHelper.dll
Description: 腾讯QQ
Authors: Copyright (C) 1999-2023 Tencent. All Rights Reserved
Version: 9.7.17.29215
Architecture: 32-bit
Operating System: Windows NT
SHA256: 24c69f526ba63a7e6536da349bec1a27
File Size: 42.9 KB
Uploaded At: Dec. 2, 2025, 2:48 p.m.
Views: 6
Security Warning
This file has been flagged as potentially dangerous.
Reason: Detected potentially dangerous functions used for process injection: WriteProcessMemory, OpenProcess, CreateRemoteThread, VirtualAllocEx
Exported Functions
- copyFrame (Ordinal: 1, Address: 0x1210)
- startRecord (Ordinal: 2, Address: 0x10b0)
- stopRecord (Ordinal: 3, Address: 0x1130)
Imported DLLs & Functions
d3d10_1.dll
- D3D10CreateDevice1 (Address: 0x61f25144)
dwmapi.dll
- DwmIsCompositionEnabled (Address: 0x61f2514c)
dxgi.dll
- CreateDXGIFactory (Address: 0x61f25154)
KERNEL32.dll
- CloseHandle (Address: 0x61f25038)
- CreateEventA (Address: 0x61f25024)
- CreateRemoteThread (Address: 0x61f25048)
- CreateThread (Address: 0x61f25040)
- CreateToolhelp32Snapshot (Address: 0x61f2505c)
- DecodePointer (Address: 0x61f25098)
- EncodePointer (Address: 0x61f2509c)
- FlushInstructionCache (Address: 0x61f25000)
- GetCurrentProcess (Address: 0x61f25084)
- GetCurrentProcessId (Address: 0x61f2503c)
- GetCurrentThread (Address: 0x61f2501c)
- GetCurrentThreadId (Address: 0x61f2506c)
- GetExitCodeThread (Address: 0x61f25058)
- GetLastError (Address: 0x61f250a0)
- GetModuleFileNameA (Address: 0x61f2500c)
- GetModuleHandleA (Address: 0x61f25010)
- GetProcAddress (Address: 0x61f25028)
- GetSystemTimeAsFileTime (Address: 0x61f25008)
- GetThreadContext (Address: 0x61f25068)
- GetTickCount (Address: 0x61f25070)
- InterlockedCompareExchange (Address: 0x61f2508c)
- InterlockedExchange (Address: 0x61f25094)
- IsDebuggerPresent (Address: 0x61f25078)
- OpenEventA (Address: 0x61f25030)
- OpenProcess (Address: 0x61f25020)
- Process32First (Address: 0x61f25044)
- Process32Next (Address: 0x61f25054)
- QueryPerformanceCounter (Address: 0x61f25074)
- ResetEvent (Address: 0x61f2502c)
- ResumeThread (Address: 0x61f250b4)
- SetEvent (Address: 0x61f25018)
- SetLastError (Address: 0x61f250b8)
- SetThreadContext (Address: 0x61f25064)
- SetUnhandledExceptionFilter (Address: 0x61f2507c)
- Sleep (Address: 0x61f25090)
- SuspendThread (Address: 0x61f250b0)
- TerminateProcess (Address: 0x61f25088)
- UnhandledExceptionFilter (Address: 0x61f25080)
- VirtualAlloc (Address: 0x61f250a4)
- VirtualAllocEx (Address: 0x61f25050)
- VirtualFree (Address: 0x61f250a8)
- VirtualFreeEx (Address: 0x61f2504c)
- VirtualProtect (Address: 0x61f250ac)
- VirtualQuery (Address: 0x61f25004)
- WaitForMultipleObjects (Address: 0x61f25034)
- WaitForSingleObject (Address: 0x61f25014)
- WriteProcessMemory (Address: 0x61f25060)
MSVCP100.dll
- ?_Xlength_error@std@@YAXPBD@Z (Address: 0x61f250c4)
- ?_Xout_of_range@std@@YAXPBD@Z (Address: 0x61f250c0)
MSVCR100.dll
- __clean_type_info_names_internal (Address: 0x61f250d0)
- __CppXcptFilter (Address: 0x61f250f8)
- __CxxFrameHandler3 (Address: 0x61f250ec)
- __dllonexit (Address: 0x61f250e8)
- _amsg_exit (Address: 0x61f250fc)
- _crt_debugger_hook (Address: 0x61f2513c)
- _CxxThrowException (Address: 0x61f25134)
- _encoded_null (Address: 0x61f25138)
- _except_handler4_common (Address: 0x61f250e4)
- _initterm (Address: 0x61f25104)
- _initterm_e (Address: 0x61f25100)
- _lock (Address: 0x61f250dc)
- _malloc_crt (Address: 0x61f2510c)
- _onexit (Address: 0x61f250e0)
- _purecall (Address: 0x61f25130)
- _unlock (Address: 0x61f250d4)
- _wassert (Address: 0x61f25110)
- ?_type_info_dtor_internal_method@type_info@@QAEXXZ (Address: 0x61f250cc)
- ??0exception@std@@QAE@ABQBD@Z (Address: 0x61f2511c)
- ??0exception@std@@QAE@ABV01@@Z (Address: 0x61f25118)
- ??1exception@std@@UAE@XZ (Address: 0x61f25120)
- ??2@YAPAXI@Z (Address: 0x61f25128)
- ??3@YAXPAX@Z (Address: 0x61f2512c)
- ?terminate@@YAXXZ (Address: 0x61f250d8)
- ?what@exception@std@@UBEPBDXZ (Address: 0x61f25124)
- free (Address: 0x61f25108)
- memcpy (Address: 0x61f250f4)
- memmove (Address: 0x61f25114)
- memset (Address: 0x61f250f0)