├── LICENSE
├── README.md
├── idapython_tools
    ├── 695_to_7
    │   ├── 695_to_7.py
    │   ├── 695_to_7_doc.html
    │   └── README.md
    ├── findcrypt
    │   ├── README.md
    │   ├── consts.py
    │   └── findcrypt.py
    ├── findguid
    │   ├── README.md
    │   ├── findguid.py
    │   └── guid_list
    │   │   ├── class.txt
    │   │   ├── folder.txt
    │   │   ├── interface.txt
    │   │   └── media.txt
    └── hide_junk_code.py
└── theme
    └── forest.clr


/LICENSE:
--------------------------------------------------------------------------------
  1 |                                  Apache License
  2 |                            Version 2.0, January 2004
  3 |                         http://www.apache.org/licenses/
  4 | 
  5 |    TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
  6 | 
  7 |    1. Definitions.
  8 | 
  9 |       "License" shall mean the terms and conditions for use, reproduction,
 10 |       and distribution as defined by Sections 1 through 9 of this document.
 11 | 
 12 |       "Licensor" shall mean the copyright owner or entity authorized by
 13 |       the copyright owner that is granting the License.
 14 | 
 15 |       "Legal Entity" shall mean the union of the acting entity and all
 16 |       other entities that control, are controlled by, or are under common
 17 |       control with that entity. For the purposes of this definition,
 18 |       "control" means (i) the power, direct or indirect, to cause the
 19 |       direction or management of such entity, whether by contract or
 20 |       otherwise, or (ii) ownership of fifty percent (50%) or more of the
 21 |       outstanding shares, or (iii) beneficial ownership of such entity.
 22 | 
 23 |       "You" (or "Your") shall mean an individual or Legal Entity
 24 |       exercising permissions granted by this License.
 25 | 
 26 |       "Source" form shall mean the preferred form for making modifications,
 27 |       including but not limited to software source code, documentation
 28 |       source, and configuration files.
 29 | 
 30 |       "Object" form shall mean any form resulting from mechanical
 31 |       transformation or translation of a Source form, including but
 32 |       not limited to compiled object code, generated documentation,
 33 |       and conversions to other media types.
 34 | 
 35 |       "Work" shall mean the work of authorship, whether in Source or
 36 |       Object form, made available under the License, as indicated by a
 37 |       copyright notice that is included in or attached to the work
 38 |       (an example is provided in the Appendix below).
 39 | 
 40 |       "Derivative Works" shall mean any work, whether in Source or Object
 41 |       form, that is based on (or derived from) the Work and for which the
 42 |       editorial revisions, annotations, elaborations, or other modifications
 43 |       represent, as a whole, an original work of authorship. For the purposes
 44 |       of this License, Derivative Works shall not include works that remain
 45 |       separable from, or merely link (or bind by name) to the interfaces of,
 46 |       the Work and Derivative Works thereof.
 47 | 
 48 |       "Contribution" shall mean any work of authorship, including
 49 |       the original version of the Work and any modifications or additions
 50 |       to that Work or Derivative Works thereof, that is intentionally
 51 |       submitted to Licensor for inclusion in the Work by the copyright owner
 52 |       or by an individual or Legal Entity authorized to submit on behalf of
 53 |       the copyright owner. For the purposes of this definition, "submitted"
 54 |       means any form of electronic, verbal, or written communication sent
 55 |       to the Licensor or its representatives, including but not limited to
 56 |       communication on electronic mailing lists, source code control systems,
 57 |       and issue tracking systems that are managed by, or on behalf of, the
 58 |       Licensor for the purpose of discussing and improving the Work, but
 59 |       excluding communication that is conspicuously marked or otherwise
 60 |       designated in writing by the copyright owner as "Not a Contribution."
 61 | 
 62 |       "Contributor" shall mean Licensor and any individual or Legal Entity
 63 |       on behalf of whom a Contribution has been received by Licensor and
 64 |       subsequently incorporated within the Work.
 65 | 
 66 |    2. Grant of Copyright License. Subject to the terms and conditions of
 67 |       this License, each Contributor hereby grants to You a perpetual,
 68 |       worldwide, non-exclusive, no-charge, royalty-free, irrevocable
 69 |       copyright license to reproduce, prepare Derivative Works of,
 70 |       publicly display, publicly perform, sublicense, and distribute the
 71 |       Work and such Derivative Works in Source or Object form.
 72 | 
 73 |    3. Grant of Patent License. Subject to the terms and conditions of
 74 |       this License, each Contributor hereby grants to You a perpetual,
 75 |       worldwide, non-exclusive, no-charge, royalty-free, irrevocable
 76 |       (except as stated in this section) patent license to make, have made,
 77 |       use, offer to sell, sell, import, and otherwise transfer the Work,
 78 |       where such license applies only to those patent claims licensable
 79 |       by such Contributor that are necessarily infringed by their
 80 |       Contribution(s) alone or by combination of their Contribution(s)
 81 |       with the Work to which such Contribution(s) was submitted. If You
 82 |       institute patent litigation against any entity (including a
 83 |       cross-claim or counterclaim in a lawsuit) alleging that the Work
 84 |       or a Contribution incorporated within the Work constitutes direct
 85 |       or contributory patent infringement, then any patent licenses
 86 |       granted to You under this License for that Work shall terminate
 87 |       as of the date such litigation is filed.
 88 | 
 89 |    4. Redistribution. You may reproduce and distribute copies of the
 90 |       Work or Derivative Works thereof in any medium, with or without
 91 |       modifications, and in Source or Object form, provided that You
 92 |       meet the following conditions:
 93 | 
 94 |       (a) You must give any other recipients of the Work or
 95 |           Derivative Works a copy of this License; and
 96 | 
 97 |       (b) You must cause any modified files to carry prominent notices
 98 |           stating that You changed the files; and
 99 | 
100 |       (c) You must retain, in the Source form of any Derivative Works
101 |           that You distribute, all copyright, patent, trademark, and
102 |           attribution notices from the Source form of the Work,
103 |           excluding those notices that do not pertain to any part of
104 |           the Derivative Works; and
105 | 
106 |       (d) If the Work includes a "NOTICE" text file as part of its
107 |           distribution, then any Derivative Works that You distribute must
108 |           include a readable copy of the attribution notices contained
109 |           within such NOTICE file, excluding those notices that do not
110 |           pertain to any part of the Derivative Works, in at least one
111 |           of the following places: within a NOTICE text file distributed
112 |           as part of the Derivative Works; within the Source form or
113 |           documentation, if provided along with the Derivative Works; or,
114 |           within a display generated by the Derivative Works, if and
115 |           wherever such third-party notices normally appear. The contents
116 |           of the NOTICE file are for informational purposes only and
117 |           do not modify the License. You may add Your own attribution
118 |           notices within Derivative Works that You distribute, alongside
119 |           or as an addendum to the NOTICE text from the Work, provided
120 |           that such additional attribution notices cannot be construed
121 |           as modifying the License.
122 | 
123 |       You may add Your own copyright statement to Your modifications and
124 |       may provide additional or different license terms and conditions
125 |       for use, reproduction, or distribution of Your modifications, or
126 |       for any such Derivative Works as a whole, provided Your use,
127 |       reproduction, and distribution of the Work otherwise complies with
128 |       the conditions stated in this License.
129 | 
130 |    5. Submission of Contributions. Unless You explicitly state otherwise,
131 |       any Contribution intentionally submitted for inclusion in the Work
132 |       by You to the Licensor shall be under the terms and conditions of
133 |       this License, without any additional terms or conditions.
134 |       Notwithstanding the above, nothing herein shall supersede or modify
135 |       the terms of any separate license agreement you may have executed
136 |       with Licensor regarding such Contributions.
137 | 
138 |    6. Trademarks. This License does not grant permission to use the trade
139 |       names, trademarks, service marks, or product names of the Licensor,
140 |       except as required for reasonable and customary use in describing the
141 |       origin of the Work and reproducing the content of the NOTICE file.
142 | 
143 |    7. Disclaimer of Warranty. Unless required by applicable law or
144 |       agreed to in writing, Licensor provides the Work (and each
145 |       Contributor provides its Contributions) on an "AS IS" BASIS,
146 |       WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
147 |       implied, including, without limitation, any warranties or conditions
148 |       of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
149 |       PARTICULAR PURPOSE. You are solely responsible for determining the
150 |       appropriateness of using or redistributing the Work and assume any
151 |       risks associated with Your exercise of permissions under this License.
152 | 
153 |    8. Limitation of Liability. In no event and under no legal theory,
154 |       whether in tort (including negligence), contract, or otherwise,
155 |       unless required by applicable law (such as deliberate and grossly
156 |       negligent acts) or agreed to in writing, shall any Contributor be
157 |       liable to You for damages, including any direct, indirect, special,
158 |       incidental, or consequential damages of any character arising as a
159 |       result of this License or out of the use or inability to use the
160 |       Work (including but not limited to damages for loss of goodwill,
161 |       work stoppage, computer failure or malfunction, or any and all
162 |       other commercial damages or losses), even if such Contributor
163 |       has been advised of the possibility of such damages.
164 | 
165 |    9. Accepting Warranty or Additional Liability. While redistributing
166 |       the Work or Derivative Works thereof, You may choose to offer,
167 |       and charge a fee for, acceptance of support, warranty, indemnity,
168 |       or other liability obligations and/or rights consistent with this
169 |       License. However, in accepting such obligations, You may act only
170 |       on Your own behalf and on Your sole responsibility, not on behalf
171 |       of any other Contributor, and only if You agree to indemnify,
172 |       defend, and hold each Contributor harmless for any liability
173 |       incurred by, or claims asserted against, such Contributor by reason
174 |       of your accepting any such warranty or additional liability.
175 | 
176 |    END OF TERMS AND CONDITIONS
177 | 
178 |    APPENDIX: How to apply the Apache License to your work.
179 | 
180 |       To apply the Apache License to your work, attach the following
181 |       boilerplate notice, with the fields enclosed by brackets "{}"
182 |       replaced with your own identifying information. (Don't include
183 |       the brackets!)  The text should be enclosed in the appropriate
184 |       comment syntax for the file format. We also recommend that a
185 |       file or class name and description of purpose be included on the
186 |       same "printed page" as the copyright notice for easier
187 |       identification within third-party archives.
188 | 
189 |    Copyright {yyyy} {name of copyright owner}
190 | 
191 |    Licensed under the Apache License, Version 2.0 (the "License");
192 |    you may not use this file except in compliance with the License.
193 |    You may obtain a copy of the License at
194 | 
195 |        http://www.apache.org/licenses/LICENSE-2.0
196 | 
197 |    Unless required by applicable law or agreed to in writing, software
198 |    distributed under the License is distributed on an "AS IS" BASIS,
199 |    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
200 |    See the License for the specific language governing permissions and
201 |    limitations under the License.
202 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # IDA
 2 | A place for IDA related stuff.
 3 | 
 4 | ## idapython_tools
 5 | My tiny IDAPython tools.
 6 | 
 7 | ### FindCrypt
 8 | A Python implementation of FindCrypt plugin.
 9 | 
10 | ### 695 to 7
11 | IDAPython API name converter.
12 | 
13 | ### FindGUID
14 | GUID resolver.
15 | 
16 | ### Hide Junk Code
17 | An IDAPython script to hide junk code. Run hide_junk_code.py on IDA.
18 | 
19 | ## theme
20 | IDA's color theme for IDA 6... Should be updated.
21 | 
22 | ## License
23 | Apache License 2.0. See [LICENSE](/LICENSE).
24 | 


--------------------------------------------------------------------------------
/idapython_tools/695_to_7/695_to_7.py:
--------------------------------------------------------------------------------
 1 | import platform, re, os
 2 | import argparse
 3 | 
 4 | if platform.system() == 'Darwin':
 5 |     BC695_FILE = '/Applications/IDA Pro 7.5/ida.app/Contents/MacOS/python/2/idc_bc695.py'
 6 | elif platform.system() == 'Windows':
 7 |     BC695_FILE = 'C:\\Program Files\\IDA Pro 7.5\\python\\2\\idc_bc695.py'
 8 | else:
 9 |     print('[!] Unsupported OS')
10 |     exit()
11 | 
12 | # def AskYN(defval, prompt): return ask_yn(defval, prompt)
13 | # Warning=ida_kernwin.warning
14 | DEF_PATTERNS = [re.compile(r'def ([^\(]+)\(.*\): return ([^\(]+)\(.*\)'),
15 |                 re.compile(r'(.+)=(.+)')]
16 | 
17 | IDAPYTHON_DOC_URL = 'https://www.hex-rays.com/products/ida/support/idapython_docs/toc-everything.html'
18 | IDAPYTHON_DOC_HTML = os.path.join(os.path.dirname(__file__), '695_to_7_doc.html')
19 | 
20 | def main():
21 |     parser = argparse.ArgumentParser(description="IDAPython API name converter")
22 |     parser.add_argument("-o", "--out", action="store", dest="out", help="Specify output file name")
23 |     parser.add_argument("FILE", help="Input IDAPython script")
24 |     args = parser.parse_args()
25 | 
26 |     if args.out:
27 |         out_file = args.out
28 |     else:
29 |         root, ext = os.path.splitext(args.FILE)
30 |         out_file = root + "_new.py"
31 |     
32 |     print('[*] Read {}'.format(BC695_FILE))
33 |     fp = open(BC695_FILE, 'r')
34 |     bc695 = []
35 |     for line in fp.readlines():
36 |         line = line.strip('\n')
37 |         for pattern in DEF_PATTERNS:
38 |             m = re.match(pattern, line)
39 |             if m:
40 |                 bc695.append([m.group(1), m.group(2), line])
41 |                 break
42 |     fp.close()
43 | 
44 |     if os.path.exists(IDAPYTHON_DOC_HTML):
45 |         print('[*] Read {}'.format(IDAPYTHON_DOC_HTML))
46 |         fp = open(IDAPYTHON_DOC_HTML, 'r')
47 |         text = fp.read()
48 |         fp.close()
49 |     else:
50 |         print('[*] Obtain new API name list from {}'.format(IDAPYTHON_DOC_URL))
51 |         import requests
52 |         response = requests.get(IDAPYTHON_DOC_URL)
53 |         text = response.text
54 |         fp = open(IDAPYTHON_DOC_HTML, 'w')
55 |         fp.write(text)
56 |         fp.close()
57 |     html_tag_pattern = re.compile(r"<[^>]*?>")
58 |     new_names = sorted(set(html_tag_pattern.sub("", text).split(' ')), reverse=True)
59 | 
60 |     replace_list = []
61 |     for old, new, line in bc695:
62 |         if new.isdigit() or new.startswith('0x') or len(new.split('.')) == 2:
63 |             replace_list.append([old, new, line])
64 |             continue
65 |         for name in new_names:
66 |             if new in name:
67 |                 replace_list.append([old, name, line])
68 |                 break
69 | 
70 |     print('[*] Convert {}'.format(args.FILE))
71 |     fp = open(args.FILE, 'r')
72 |     data = fp.read()
73 |     fp.close()
74 |     used_modules = []
75 |     flag_modified = False
76 |     for old, new, line in replace_list:
77 |         tmp = re.sub(re.compile(r'([ \n])(idc\.|idaapi\.)*'+old), r'\1'+new, data)
78 |         if data != tmp:
79 |             flag_modified = True
80 |             print(format(line))
81 |             used_modules.append(new.split('.')[0])
82 |             data = tmp
83 |     
84 |     if flag_modified:
85 |         fp = open(out_file, 'w')
86 |         fp.write(data)
87 |         fp.close()
88 |         print('[*] Save converted script as {}'.format(out_file))
89 |         print('[*] The script is using the following modules:\n{}'.format(', '.join(set(used_modules))))
90 |     else:
91 |         print('[*] Nothing to do')
92 | 
93 | if __name__ == "__main__":
94 |     main()


--------------------------------------------------------------------------------
/idapython_tools/695_to_7/README.md:
--------------------------------------------------------------------------------
 1 | # 695 to 7 - IDAPython API name converter
 2 | A Python script to convert IDAPython API names from 6.x to 7.x. Of course, it's not perfect because it only replaces API names by using regex.
 3 | 
 4 | ## How to use
 5 | Execute 695_to_7.py as the following:
 6 | 
 7 | ```
 8 | $ python 695_to_7.py test.py 
 9 | [*] Read /Applications/IDA Pro 7.4/ida.app/Contents/MacOS/python/2/idc_bc695.py
10 | [*] Read 695_to_7_doc.html
11 | [*] Convert test.py
12 | def ScreenEA(): return get_screen_ea()
13 | def AskAddr(defval, prompt): return ida_kernwin.ask_addr(defval, prompt)
14 | def GetOpnd(ea, n): return print_operand(ea, n)
15 | [*] Save converted script as test_new.py
16 | [*] The script is using the following modules:
17 | ida_kernwin, idc
18 | $
19 | $ diff test.py test_new.py
20 | 10,11c10,11
21 | <     start_addr = AskAddr(ScreenEA(), 'Start address')
22 | <     end_addr   = AskAddr(ScreenEA(), 'End address')
23 | ---
24 | >     start_addr = ida_kernwin.ask_addr(ida_kernwin.get_screen_ea(), 'Start address')
25 | >     end_addr   = ida_kernwin.ask_addr(ida_kernwin.get_screen_ea(), 'End address')
26 | 13c13
27 | <         value = GetOpnd(head, 1)
28 | ---
29 | >         value = idc.print_operand(head, 1)
30 | ```
31 | 
32 | The script attempts to download https://www.hex-rays.com/products/ida/support/idapython_docs/toc-everything.html if 695_to_7_doc.html doesn't exist.
33 | 


--------------------------------------------------------------------------------
/idapython_tools/findcrypt/README.md:
--------------------------------------------------------------------------------
 1 | # FindCrypt
 2 | A Python implementation of IDA FindCrypt/FindCrypt2 plugin (see http://www.hexblog.com/?p=28).
 3 | 
 4 | ## How to use
 5 | Execute findcrypt.py on your IDA. Tested on IDA 7.0+ for macOS.
 6 | 
 7 | ## Supported constants
 8 | * aPLib: aPLib_magic
 9 | * xxHash32: xxHash32_PRIME32_[1-5]
10 | * xxHash64: xxHash64_PRIME64_[1-5]
11 | * zlib: zinflate_lengthStarts, zinflate_lengthExtraBits, zinflate_distanceStarts, zinflate_distanceExtraBits, zdeflate_lengthCodes
12 | * Adler-32: Adler32_BASE
13 | * Camellia: Camellia_sigma, Camellia_SBOX[1-4]
14 | * DES: DES_ip, DES_fp, DES_ei, DES_sbox[1-8], DES_p32i, DES_pc[1-2]
15 | * AES: Rijndael_sbox, Rijndael_inv_sbox, Rijndael_Te[0-4], Rijndael_Td[0-4]
16 | * Blowfish: Blowfish_P_array, Blowfish_S_boxes
17 | * CRC32: CRC32_m_tab_le, CRC32_m_tab_be
18 | * CRC64: CRC64_ECMA
19 | * FNV-1-32: FNV-1-32_prime, FNV-1-32_offset_basis
20 | * FNV-1-64: FNV-1-64_prime, FNV-1-64_offset_basis
21 | * MD5: MD5_T, MD5_initstate
22 | * RC5_RC6: RC5_RC6_PQ
23 | * Salsa20_ChaCha: Salsa20_ChaCha_sigma, Salsa20_ChaCha_tau
24 | * SHA1: SHA1_H
25 | * SHA224: SHA224_H
26 | * SHA256: SHA256_K, SHA256_H
27 | * SHA512: SHA512_K
28 | * (XX)TEA: (XX)TEA_delta
29 | * VEST: rns_w, rns_f, p5, vest_sbox, vest_f, vest_[4,8,16,32]_structure, provest_[4,8,16,32]
30 | 
31 | ## Todo
32 | 1. Add more constants - I always welcome your pull request :)
33 | 2. Performance improvement
34 | 


--------------------------------------------------------------------------------
/idapython_tools/findcrypt/findcrypt.py:
--------------------------------------------------------------------------------
  1 | import struct, copy
  2 | import idc, idautils, ida_name, ida_bytes, ida_ua
  3 | from consts import non_sparse_consts, sparse_consts, operand_consts
  4 | 
  5 | if 'g_fc_prefix_cmt' not in globals():
  6 |     g_fc_prefix_cmt = "FC: "
  7 | if 'g_fc_prefix_var' not in globals():
  8 |     g_fc_prefix_var = "FC_"
  9 | 
 10 | if idc.BADADDR == 0xFFFFFFFF:
 11 |     digits = 8
 12 | else:
 13 |     digits = 16
 14 | 
 15 | def convert_to_byte_array(const, big_endian=False):
 16 |     byte_array = []
 17 |     if const["size"] == "B":
 18 |         byte_array = const["array"]
 19 |     elif const["size"] == "L":
 20 |         for val in const["array"]:
 21 |             if big_endian:
 22 |                 byte_array += list(map(lambda x:x if type(x) == int else ord(x), struct.pack(">L", val)))
 23 |             else:
 24 |                 byte_array += list(map(lambda x:x if type(x) == int else ord(x), struct.pack("<L", val)))
 25 |     elif const["size"] == "Q":
 26 |         for val in const["array"]:
 27 |             if big_endian:
 28 |                 byte_array += list(map(lambda x:x if type(x) == int else ord(x), struct.pack(">Q", val)))
 29 |             else:
 30 |                 byte_array += list(map(lambda x:x if type(x) == int else ord(x), struct.pack("<Q", val)))
 31 |     return byte_array
 32 | 
 33 | def main():
 34 |     print("[*] loading crypto constants")
 35 |     non_sparse_consts2 = []
 36 |     for const in non_sparse_consts:
 37 |         const["byte_array"] = convert_to_byte_array(const)
 38 |         non_sparse_consts2.append(const)
 39 |         if const["size"] != "B":
 40 |             const = copy.copy(const)
 41 |             const["byte_array"] = convert_to_byte_array(const, big_endian=True)
 42 |             non_sparse_consts2.append(const)
 43 | 
 44 |     for start in idautils.Segments():
 45 |         print("[*] searching for crypto constants in %s" % idc.get_segm_name(start))
 46 |         ea = start
 47 |         while ea < idc.get_segm_end(start):
 48 |             bbbb = list(struct.unpack("BBBB", idc.get_bytes(ea, 4)))
 49 |             for const in non_sparse_consts2:
 50 |                 if bbbb != const["byte_array"][:4]:
 51 |                     continue
 52 |                 if list(map(lambda x:x if type(x) == int else ord(x), idc.get_bytes(ea, len(const["byte_array"])))) == const["byte_array"]:
 53 |                     print(("0x%0" + str(digits) + "X: found const array %s (used in %s)") % (ea, const["name"], const["algorithm"]))
 54 |                     idc.set_name(ea, g_fc_prefix_var + const["name"], ida_name.SN_FORCE)
 55 |                     if const["size"] == "B":
 56 |                         ida_bytes.del_items(ea, 0, len(const["array"]))
 57 |                         idc.create_byte(ea)
 58 |                     elif const["size"] == "L":
 59 |                         ida_bytes.del_items(ea, 0, len(const["array"])*4)
 60 |                         idc.create_dword(ea)
 61 |                     elif const["size"] == "Q":
 62 |                         ida_bytes.del_items(ea, 0, len(const["array"])*8)
 63 |                         idc.create_qword(ea)
 64 |                     idc.make_array(ea, len(const["array"]))
 65 |                     ea += len(const["byte_array"]) - 4
 66 |                     break
 67 |             ea += 4
 68 | 
 69 |         ea = start
 70 |         if idc.get_segm_attr(ea, idc.SEGATTR_TYPE) == idc.SEG_CODE:
 71 |             while ea < idc.get_segm_end(start):
 72 |                 d = ida_bytes.get_dword(ea)
 73 |                 for const in sparse_consts:
 74 |                     if d != const["array"][0]:
 75 |                         continue
 76 |                     tmp = ea + 4
 77 |                     for val in const["array"][1:]:
 78 |                         for i in range(8):
 79 |                             if ida_bytes.get_dword(tmp + i) == val:
 80 |                                 tmp = tmp + i + 4
 81 |                                 break
 82 |                         else:
 83 |                             break
 84 |                     else:
 85 |                         print(("0x%0" + str(digits) + "X: found sparse constants for %s") % (ea, const["algorithm"]))
 86 |                         cmt = idc.get_cmt(idc.prev_head(ea), 0)
 87 |                         if cmt:
 88 |                             idc.set_cmt(idc.prev_head(ea), cmt + ' ' + g_fc_prefix_cmt + const["name"], 0)
 89 |                         else:
 90 |                             idc.set_cmt(idc.prev_head(ea), g_fc_prefix_cmt + const["name"], 0)
 91 |                         ea = tmp
 92 |                         break
 93 |                 ea += 1
 94 | 
 95 |     print("[*] searching for crypto constants in immediate operand")
 96 |     funcs = idautils.Functions()
 97 |     for f in funcs:
 98 |         flags = idc.get_func_flags(f)
 99 |         if (not flags & (idc.FUNC_LIB | idc.FUNC_THUNK)):
100 |             ea = f
101 |             f_end = idc.get_func_attr(f, idc.FUNCATTR_END)
102 |             while (ea < f_end):
103 |                 imm_operands = []
104 |                 insn = ida_ua.insn_t()
105 |                 ida_ua.decode_insn(insn, ea)
106 |                 for i in range(len(insn.ops)):
107 |                     if insn.ops[i].type == ida_ua.o_void:
108 |                         break
109 |                     if insn.ops[i].type == ida_ua.o_imm:
110 |                         imm_operands.append(insn.ops[i].value)
111 |                 if len(imm_operands) == 0:
112 |                     ea = idc.find_code(ea, idc.SEARCH_DOWN)
113 |                     continue
114 |                 for const in operand_consts:
115 |                     if const["value"] in imm_operands:
116 |                         print(("0x%0" + str(digits) + "X: found immediate operand constants for %s") % (ea, const["algorithm"]))
117 |                         cmt = idc.get_cmt(ea, 0)
118 |                         if cmt:
119 |                             idc.set_cmt(ea, cmt + ' ' + g_fc_prefix_cmt + const["name"], 0)
120 |                         else:
121 |                             idc.set_cmt(ea, g_fc_prefix_cmt + const["name"], 0)
122 |                         break
123 |                 ea = idc.find_code(ea, idc.SEARCH_DOWN)
124 |     print("[*] finished")
125 | 
126 | if __name__ == '__main__':
127 |     main()
128 | 


--------------------------------------------------------------------------------
/idapython_tools/findguid/README.md:
--------------------------------------------------------------------------------
 1 | # FindGUID
 2 | An IDAPython script to resolve GUID names like ClassAndInterfaceToNames.py. [ComIDA](https://github.com/airbus-cert/comida) or [COM-Code-Helper](https://github.com/fboldewin/COM-Code-Helper) will be better choices if you want to analyze COM related things only.
 3 | 
 4 | FindGUID supports the following GUID types:
 5 | 
 6 | * Class ID
 7 | * Interface ID
 8 | * Folder ID
 9 | * Media Type
10 | 
11 | ## How to use
12 | Execute findguid.py on your IDA. Tested on IDA 7.6 for macOS/Windows.
13 | 
14 | ## Todo
15 | 1. Additional GUID support
16 | 2. Performance improvement
17 | 


--------------------------------------------------------------------------------
/idapython_tools/findguid/findguid.py:
--------------------------------------------------------------------------------
 1 | import idc, idaapi, ida_search, ida_name, ida_struct, ida_bytes
 2 | import os, binascii, struct
 3 | 
 4 | GUID_LIST_DIR = os.path.join(os.path.dirname(__file__), 'guid_list')
 5 | GUID_LIST= []
 6 | # [name, prefix, filepath]
 7 | GUID_LIST.append(['Class ID', 'CLSID_', os.path.join(GUID_LIST_DIR, 'class.txt')])
 8 | GUID_LIST.append(['Interface ID', 'IID_', os.path.join(GUID_LIST_DIR, 'interface.txt')])
 9 | GUID_LIST.append(['Folder ID', 'FOLDERID_', os.path.join(GUID_LIST_DIR, 'folder.txt')])
10 | GUID_LIST.append(['Media Type', '', os.path.join(GUID_LIST_DIR, 'media.txt')])
11 | 
12 | def get_guid_tid():
13 |     tid = ida_struct.get_struc_id('GUID')
14 |     if tid == idaapi.BADADDR:
15 |         print("[*] create GUID struct")
16 |         tid = ida_struct.add_struc(0xffffffff, 'GUID', 0)
17 |         sptr = ida_struct.get_struc(tid)
18 |         ida_struct.add_struc_member(sptr, 'Data1', 0x0, 0x20000000, None, 4)
19 |         ida_struct.add_struc_member(sptr, 'Data2', 0x4, 0x10000000, None, 2)
20 |         ida_struct.add_struc_member(sptr, 'Data3', 0x6, 0x10000000, None, 2)
21 |         ida_struct.add_struc_member(sptr, 'Data4', 0x8, 0x00000000, None, 8)
22 |     return tid
23 | 
24 | def make_binary_pattern(guid):
25 |     # sample guid: 0F87369F-A4E5-4CFC-BD3E-73E6154572DD
26 |     tmp = guid.split('-')
27 |     data = b''
28 |     data += struct.pack('<L', int(tmp[0], 16))
29 |     data += struct.pack('<H', int(tmp[1], 16))
30 |     data += struct.pack('<H', int(tmp[2], 16))
31 |     data += struct.pack('>H', int(tmp[3], 16))
32 |     data += binascii.a2b_hex(tmp[4])
33 | 
34 |     binary_pattern = ' '.join(map(lambda x:format(x if type(x) == int else ord(x), '02x'), list(data)))
35 |     return binary_pattern
36 | 
37 | def main():
38 |     tid = get_guid_tid()
39 |     for type_name, type_prefix, filepath in GUID_LIST:
40 |         print('[*] scanning {}'.format(type_name))
41 |         fp = open(filepath, 'r')
42 |         for line in fp.readlines():
43 |             line = line.strip()
44 |             if line == "":
45 |                 continue
46 |             guid, guid_name = line.split(' ')
47 |             guid_name = type_prefix + guid_name
48 |             binary_pattern = make_binary_pattern(guid)
49 | 
50 |             ea = 0
51 |             while True:
52 |                 ea = idc.find_binary(ea, ida_search.SEARCH_DOWN | ida_search.SEARCH_NEXT | ida_search.SEARCH_NOSHOW, binary_pattern)
53 |                 if ea == idaapi.BADADDR:
54 |                     break
55 | 
56 |                 idc.del_items(ea, 16, 0)
57 |                 ida_bytes.create_struct(ea, ida_struct.get_struc_size(tid), tid)
58 |                 if idc.set_name(ea, guid_name, ida_name.SN_NOWARN) != 1:
59 |                     for i in range(0, 100):
60 |                         if idc.set_name(ea, guid_name + "_" + str(i), ida_name.SN_NOWARN) == 1:
61 |                             break
62 |                     else:
63 |                         print("[!] 0x{:X}: failed to apply {}".format(ea, guid_name))
64 |                 print("[*] 0x{:X}: {}".format(ea, guid_name))
65 | 
66 |     print("[*] finished")
67 | 
68 | if __name__ == "__main__":
69 |     main()
70 | 


--------------------------------------------------------------------------------
/idapython_tools/findguid/guid_list/class.txt:
--------------------------------------------------------------------------------
   1 | 00000017-0000-0000-C000-000000000046 StdMarshal
   2 | 0000001B-0000-0000-C000-000000000046 IdentityUnmarshal
   3 | 0000001C-0000-0000-C000-000000000046 InProcFreeMarshaler
   4 | 0000030C-0000-0000-C000-000000000046 PSGenObject
   5 | 0000030D-0000-0000-C000-000000000046 PSClientSite
   6 | 0000030E-0000-0000-C000-000000000046 PSClassObject
   7 | 0000030F-0000-0000-C000-000000000046 PSInPlaceActive
   8 | 00000310-0000-0000-C000-000000000046 PSInPlaceFrame
   9 | 00000311-0000-0000-C000-000000000046 PSDragDrop
  10 | 00000312-0000-0000-C000-000000000046 PSBindCtx
  11 | 00000313-0000-0000-C000-000000000046 PSEnumerators
  12 | 00000315-0000-0000-C000-000000000046 Picture_Metafile
  13 | 00000316-0000-0000-C000-000000000046 Picture_Dib
  14 | 00000319-0000-0000-C000-000000000046 Picture_EnhMetafile
  15 | 0000031D-0000-0000-C000-000000000046 DCOMAccessControl
  16 | 00000323-0000-0000-C000-000000000046 StdGlobalInterfaceTable
  17 | 00000328-0000-0000-C000-000000000046 ComBinding
  18 | 00000329-0000-0000-C000-000000000046 StdAsyncActManager
  19 | 0000032B-0000-0000-C000-000000000046 StdEvent
  20 | 0000032C-0000-0000-C000-000000000046 ManualResetEvent
  21 | 0000032D-0000-0000-C000-000000000046 SynchronizeContainer
  22 | 00000330-0000-0000-C000-000000000046 AllClasses
  23 | 00000331-0000-0000-C000-000000000046 LocalMachineClasses
  24 | 00000332-0000-0000-C000-000000000046 CurrentUserClasses
  25 | 0000033A-0000-0000-C000-000000000046 InProcFreeMarshaler
  26 | 00000340-0000-0000-C000-000000000046 RemoteUnknownPSFactory
  27 | 00000348-0000-0000-C000-000000000046 AddrControl
  28 | 00021400-0000-0000-C000-000000000046 ShellDesktop
  29 | 00021401-0000-0000-C000-000000000046 ShellLink
  30 | 0002DF01-0000-0000-C000-000000000046 InternetExplorer
  31 | 0002E005-0000-0000-C000-000000000046 StdComponentCategoriesMgr
  32 | 0002E006-0000-0000-C000-000000000046 GblComponentCategoriesMgr
  33 | 0010890E-8789-413C-ADBC-48F5B511B3AF UserNotification
  34 | 0019A09D-1A81-41C5-89EC-D9E737811303 TIMEMotionAnimation
  35 | 004CE610-CCD1-11D0-A9BA-00A0C908DB5E JavaRuntimeConfiguration
  36 | 005023CA-72B1-11D3-9FC4-00C04F79A0A3 CLR_v1_MetaData
  37 | 008FD5DD-6DBB-48E3-991B-2D3ED658516A MailAutoDiscovery
  38 | 00BB2763-6A77-11D0-A535-00C04FD7D062 AutoComplete
  39 | 00BB2764-6A77-11D0-A535-00C04FD7D062 ACLHistory
  40 | 00BB2765-6A77-11D0-A535-00C04FD7D062 ACLMulti
  41 | 00C429C0-0BA9-11D2-A484-00C04F8EFB69 CrBlinds
  42 | 011B3619-FE63-4814-8A84-15A194CE9CE3 MSVidWebDVD
  43 | 01FA60A0-BBFF-11D0-8825-00A0C903B83C CCertEncodeCRLDistInfo
  44 | 03707315-53E9-4B84-82B2-F09025CAD207 NetFirewallV6Manager
  45 | 03C036F1-A186-11D0-824A-00AA005B4383 ACListISF
  46 | 049F2CE6-D996-4721-897A-DB15CE9EB73D DXTIris
  47 | 04B83D62-21AE-11D2-8B33-00600806D9B6 WbemDispA
  48 | 04DF613A-5610-11D4-9EC8-00B0D022DD1F InternetConnectionBeaconService
  49 | 05589FAF-C356-11CE-BF01-00AA0055595A AudioProperties
  50 | 055CB2D7-2969-45CD-914B-76890722F112 MPEG2Component
  51 | 05709878-5195-466C-9E64-487CE3CA20BF LDAPObject
  52 | 05F6FE1A-ECEF-11D0-AAE7-00C04FC9B304 IntDitherer
  53 | 060AF76C-68DD-11D0-8FC1-00C04FD9189D SeekingPassThru
  54 | 0618AA30-6BC4-11CF-BF36-00AA0055595A ModexProperties
  55 | 06A03425-C9EB-11D2-8CAA-0080C739E3E0 HHCollectionWrapper
  56 | 07167665-5011-11CF-BF33-00AA0055595A ModexRenderer
  57 | 079AA557-4A18-424A-8EEE-E39F0A8D41B9 SAXXMLReader
  58 | 07B65360-C445-11CE-AFDE-00AA006C14F4 AVIMIDIRender
  59 | 080D0D78-F421-11D0-A36E-00C04FB950DC Pathname
  60 | 08165EA0-E946-11CF-9C87-00AA005127ED WebCrawlerAgent
  61 | 083863F1-70DE-11D0-BD40-00A0C911CE86 CQzFilterClassManager
  62 | 08B0E5C0-4FCB-11CF-AAA5-00401C608501 BrowserAppletControl
  63 | 08CD963F-7A3E-4F5C-9BD8-D692BB043C5B MSAATextMSAAControl
  64 | 0968E258-16C7-4DBA-AA86-462DD61E31A3 PersistentZoneIdentifier
  65 | 0A75AFCD-4680-11D1-A3B4-00C04FB950DC PostalAddress
  66 | 0A89A860-D7B1-11CE-8350-444553540000 ShellDispatchInproc
  67 | 0A9AE910-85C0-11D0-BD42-00A0C911CE86 AviMuxProptyPage1
  68 | 0AA000AA-F404-11D9-BD7A-0010DC4F8F81 XACTEngine
  69 | 0AA000AB-F404-11D9-BD7A-0010DC4F8F81 XACTAuditionEngine
  70 | 0AA000AC-F404-11D9-BD7A-0010DC4F8F81 XACTDebugEngine
  71 | 0AFACED1-E828-11D1-9187-B532F1E9575D FolderShortcut
  72 | 0BE35200-8F91-11CE-9DE3-00AA004BB851 CFontPropPage
  73 | 0BE35201-8F91-11CE-9DE3-00AA004BB851 CColorPropPage
  74 | 0BE35202-8F91-11CE-9DE3-00AA004BB851 CPicturePropPage
  75 | 0BE35203-8F91-11CE-9DE3-00AA004BB851 StdFont
  76 | 0BE35204-8F91-11CE-9DE3-00AA004BB851 StdPicture
  77 | 0BFCC060-8C1D-11D0-ACCD-00AA0060275C DebugHelper
  78 | 0C0A3666-30C9-11D0-8F20-00805F2CD064 MachineDebugManager
  79 | 0C733A8E-2A1C-11CE-ADE5-00AA0044773D MSDAVTM
  80 | 0C7EFBDE-0303-4C6F-A4F7-31FA2BE5E397 DXTAlphaImageLoader
  81 | 0CB9914C-79CD-47DC-ADB0-327F47CEFB20 FilePlaybackTerminal
  82 | 0CF75D5B-A3A1-4C55-B4FE-9E149C41F66D GPMMapEntryCollection
  83 | 0D04D285-6BEC-11CF-8B97-00AA00476DA6 OldHTMLFormElement
  84 | 0D2E74C4-3C34-11D2-A27E-00C04FC30871 FileSysColumnProvider
  85 | 0D45D530-764B-11D0-A1CA-00AA00C16E65 DsPropertyPages
  86 | 0DAD5531-BF31-43AC-A513-1F8926BBF5EC SafeWia
  87 | 0DE9EAA1-3B84-11D0-9B6D-0000C0781BC3 CDirect3DRMViewportInterpolator
  88 | 0DE9EAA2-3B84-11D0-9B6D-0000C0781BC3 CDirect3DRMFrameInterpolator
  89 | 0DE9EAA3-3B84-11D0-9B6D-0000C0781BC3 CDirect3DRMMeshInterpolator
  90 | 0DE9EAA6-3B84-11D0-9B6D-0000C0781BC3 CDirect3DRMLightInterpolator
  91 | 0DE9EAA7-3B84-11D0-9B6D-0000C0781BC3 CDirect3DRMMaterialInterpolator
  92 | 0DE9EAA8-3B84-11D0-9B6D-0000C0781BC3 CDirect3DRMTextureInterpolator
  93 | 0E5CBF21-D15F-11D0-8301-00AA005B4383 QuickLinks
  94 | 0E6AE022-0C83-11D2-8CD4-00104BC75D9A DXTMetaWormHole
  95 | 0E890F83-5F79-11D1-9043-00C04FD9189D DXSurface
  96 | 0F0F094B-B01C-4091-A14D-DD0CD807711A DirectPlayVoiceTest
  97 | 0F87369F-A4E5-4CFC-BD3E-73E6154572DD TaskScheduler
  98 | 101193C0-0BFE-11D0-AF91-00AA00B67A42 DVDecPropertiesPage
  99 | 107045C5-06E0-11D2-8D6D-00C04F8EF8E0 DXTMetaWater
 100 | 107045C8-06E0-11D2-8D6D-00C04F8EF8E0 DXTMetaLightWipe
 101 | 107045CA-06E0-11D2-8D6D-00C04F8EF8E0 DXTMetaRadialScaleWipe
 102 | 107045CC-06E0-11D2-8D6D-00C04F8EF8E0 DXTMetaWhiteOut
 103 | 107045CF-06E0-11D2-8D6D-00C04F8EF8E0 DXTMetaTwister
 104 | 107045D1-06E0-11D2-8D6D-00C04F8EF8E0 DXTMetaBurnFilm
 105 | 11219420-1768-11D1-95BE-00609797EA4F ShellLinkObject
 106 | 1241400F-4680-11D1-A3B4-00C04FB950DC OctetList
 107 | 12518493-00B2-11D2-9FA5-9E3420524153 MountedVolume
 108 | 127698E4-E730-4E5C-A2B1-21490A70C8A1 CEnroll2
 109 | 129D7E40-C10D-11D0-AFB9-00AA00B67A42 DVMux
 110 | 13709620-C279-11CE-A49E-444553540000 Shell
 111 | 13AA3650-BB6F-11D0-AFB9-00AA00B67A42 DVVideoEnc
 112 | 13D5413C-33B9-11D2-95A7-00C04F8ECB02 AnchorClick
 113 | 13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE WiaProtocol
 114 | 1443904B-34E4-40F6-B30F-6BEB81267B80 SpeechUIServer
 115 | 1461AAC7-6810-11D0-918F-00AA00C18068 SCard
 116 | 1461AACC-6810-11D0-918F-00AA00C18068 SCardDatabase
 117 | 1461AAD1-6810-11D0-918F-00AA00C18068 SCardLocate
 118 | 148BD520-A2AB-11CE-B11F-00AA00530503 CTask
 119 | 148BD52A-A2AB-11CE-B11F-00AA00530503 CTaskScheduler
 120 | 148BD52A-A2AB-11CE-B11F-00AA00530503 TaskSchedulerXP
 121 | 14EB8748-1753-4393-95AE-4F7E7A87AAD6 TIFLoad
 122 | 1559A3C1-102B-11D2-8B82-00A0C93C09B2 CrZigzagPP
 123 | 15F88A55-4680-11D1-A3B4-00C04FB950DC CaseIgnoreList
 124 | 15FB95E0-0F77-11D2-8B82-00A0C93C09B2 CrStretchPP
 125 | 15FFFD13-5140-41B8-B89A-C8D5759CD2B2 UserEventTimerCallback
 126 | 16006700-87AD-11D0-9140-00AA00C16E65 DsFindComputer
 127 | 163BB1E1-6E00-11CF-837A-48DC04C10000 HTMLLocation
 128 | 1643E180-90F5-11CE-97D5-00AA0055595A Colour
 129 | 164484A9-35D9-4FB7-9FAB-48273B96AA1D DXTRadialWipe
 130 | 16911A65-D41D-4431-87F7-E757F4D03BD8 AnimationComposerSiteFactory
 131 | 1698790A-E2B4-11D0-B0B1-00C04FD8DCA6 DsDomainTreeBrowser
 132 | 16B280C5-EE70-11D1-9066-00C04FD9189D DXFade
 133 | 16B280C6-EE70-11D1-9066-00C04FD9189D FadePP
 134 | 16B280C8-EE70-11D1-9066-00C04FD9189D BasicImageEffects
 135 | 16B280C9-EE70-11D1-9066-00C04FD9189D BasicImageEffectsPP
 136 | 17237A20-3ADB-48EC-B182-35291F115790 TIMEFactory
 137 | 178F34B8-A282-11D2-86C5-00C04F8EEA99 MSOButtons
 138 | 17AACA26-5CE0-44FA-8CC0-5259E6483566 GPMSearchCriteria
 139 | 17CCA71B-ECD7-11D0-B908-00A0C9223196 Proxy
 140 | 1820FED0-473E-11D0-A96C-00C04FD705A2 WebViewFolderContents
 141 | 18845040-0FA5-11D1-BA19-00C04FD912D0 HTMLLoadOptions
 142 | 18C628EE-962A-11D2-8D08-00A0C9441E20 Xml2Dex
 143 | 18CBB703-4F47-4DCE-A5DD-3817DDBF8169 GPOReportProvider
 144 | 1958FB12-31E6-47E5-AA49-B23D12C853E6 DXTICMFilterPP
 145 | 19A76FE0-7494-11D0-8816-00A0C903B83C CCertEncodeStringArray
 146 | 1AB4A8C0-6A0B-11D2-AD49-00C04FA31A86 DsDisplaySpecifier
 147 | 1B544C20-FD0B-11CE-8C63-00AA0044B51E AviSplitter
 148 | 1B544C21-FD0B-11CE-8C63-00AA0044B51E AviReader
 149 | 1B544C22-FD0B-11CE-8C63-00AA0044B51E VfwCapture
 150 | 1B544C22-FD0B-11CE-8C63-00AA0044B51F CaptureProperties
 151 | 1BE49F30-0E1B-11D3-9D8E-00C04F72D980 LanguageComponentType
 152 | 1C15D484-911D-11D2-B632-00C04F79498E MSVideoControlAnalogTVTunerDevice
 153 | 1CFC4CDA-1271-11D1-9BD4-00C04FB683FA CCertEncodeAltName
 154 | 1D8A9B47-3A28-4CE2-8A4B-BD34E45BCEEB UPnPDescriptionDocument
 155 | 1DA08500-9EDC-11CF-BC10-00AA00AC74F6 Dither
 156 | 1E54333B-2A00-11D1-8198-0000F87557DB DXLUTBuilder
 157 | 1E651CC0-B199-11D0-8212-00C04FC32C45 MemoryAllocator
 158 | 1E796980-9CC5-11D1-A83F-00C04FC99D61 InternetButtons
 159 | 1E9B00E5-9846-11D1-A1EE-00C04FC2FBE1 SubscriptionThrottler
 160 | 1EBDCF80-A200-11D0-A3A4-00C04FD706EC ShellThumbnailDiskCache
 161 | 1EC2DE53-75CC-11D2-9775-00A0C9B4D50C CorMetaDataDispenserRuntime
 162 | 204810B9-73B2-11D4-BF42-00B0D0118B56 UPnPRegistrar
 163 | 2048EEE6-7FA2-11D0-9E6A-00A0C9138C29 OLEDB_ROWPOSITIONLIBRARY
 164 | 208D2C60-3AEA-1069-A2D7-08002B30309D NetworkPlaces
 165 | 20B1CB23-6968-4EB9-B7D4-A66D00D07CEE FolderViewHost
 166 | 20D04FE0-3AEA-1069-A2D8-08002B30309D MyComputer
 167 | 213052C1-100D-11D2-8B82-00A0C93C09B2 CrBlindPP
 168 | 21D6D48E-A88B-11D0-83DD-00AA003CCABD TAPI
 169 | 21EC2020-3AEA-1069-A2DD-08002B30309D ControlPanel
 170 | 2227A280-3AEA-1069-A2DE-08002B30309D Printers
 171 | 229F5C42-852C-4B30-945F-C522BE9BD386 GPMSitesContainer
 172 | 23E26328-3928-40F2-95E5-93CAD69016EB DXTZigzag
 173 | 24C1F147-3720-4F5B-A9C3-06B4E4F931D2 GPMSOMCollection
 174 | 24DC3975-09BF-4231-8655-3EE71F43837D MSVideoControlVideoRenderer
 175 | 24F14F01-7B1C-11D1-838F-0000F80461CF DocFileColumnProvider
 176 | 24F14F02-7B1C-11D1-838F-0000F80461CF LinkColumnProvider
 177 | 24F97150-6689-11D1-9AA7-00C04FB93A80 ClusAppWiz
 178 | 25336920-03F9-11CF-8FD0-00AA00686F13 HTMLDocument
 179 | 25336921-03F9-11CF-8FD0-00AA00686F13 HTMLPluginDocument
 180 | 25B33660-FD83-11D1-8ADE-444553540001 CompositePP
 181 | 25B33661-FD83-11D1-8ADE-444553540001 ConvolvePP
 182 | 25B33662-FD83-11D1-8ADE-444553540001 LUTBuilderPP
 183 | 25E609E0-B259-11CF-BFC7-444553540000 DirectInput
 184 | 25E609E1-B259-11CF-BFC7-444553540000 DirectInputDevice
 185 | 25E609E4-B259-11CF-BFC7-444553540000 DirectInput8
 186 | 25E609E5-B259-11CF-BFC7-444553540000 DirectInputDevice8
 187 | 266EEE41-6C63-11CF-8A03-00AA006ECB65 TVTunerFilterPropertyPage
 188 | 26C25940-4CA9-11CE-A828-00AA002FEAB5 MPEG1PacketPlayer
 189 | 2721AE20-7E70-11D0-A5D6-28DB04C10000 DVDHWDecodersCategory
 190 | 274FAE1F-3626-11D1-A3A4-00C04FB950DC NameTranslate
 191 | 275C23E2-3747-11D0-9FEA-00AA003F8646 CMultiLanguage
 192 | 2764BCE5-CC39-11D2-B639-00C04F79498E MSVideoControlGenericComposition
 193 | 2824E4BE-4BCC-4CAC-9E60-0E3ED7F12496 GPMStatusMsgCollection
 194 | 286F484D-375E-4458-A272-B138E2F80A6A DirectPlay8Peer
 195 | 2933BF90-7B36-11D2-B20E-00C04F983E60 DOMDocument
 196 | 2933BF91-7B36-11D2-B20E-00C04F983E60 DOMFreeThreadedDocument
 197 | 2933BF94-7B36-11D2-B20E-00C04F983E60 XSLTemplate
 198 | 2A005C05-A5DE-11CF-9E66-00AA00A3F464 SharedProperty
 199 | 2A005C0B-A5DE-11CF-9E66-00AA00A3F464 SharedPropertyGroup
 200 | 2A005C11-A5DE-11CF-9E66-00AA00A3F464 SharedPropertyGroupManager
 201 | 2A54C904-07AA-11D2-8D6D-00C04F8EF8E0 DXTMetaJaws
 202 | 2A54C908-07AA-11D2-8D6D-00C04F8EF8E0 DXTMetaColorFade
 203 | 2A54C90B-07AA-11D2-8D6D-00C04F8EF8E0 DXTMetaFlowMotion
 204 | 2A54C90D-07AA-11D2-8D6D-00C04F8EF8E0 DXTMetaVacuum
 205 | 2A54C911-07AA-11D2-8D6D-00C04F8EF8E0 DXTMetaGriddler
 206 | 2A54C913-07AA-11D2-8D6D-00C04F8EF8E0 DXTMetaGriddler2
 207 | 2A54C915-07AA-11D2-8D6D-00C04F8EF8E0 DXTMetaThreshold
 208 | 2AA2B5FE-B846-4D07-810C-B21EE45320E3 NetProvisioning
 209 | 2BC0EF29-E6BA-11D1-81DD-0000F87557DB DXTConvolution
 210 | 2CE4B5D8-A28F-11D2-86C5-00C04F8EEA99 ToolbarExtButtons
 211 | 2D2307C8-7DB4-40D6-9100-D52AF4F97A5B PassportClientServices
 212 | 2E5E84E9-4049-4244-B728-2D24227157C7 UPnPRemoteEndpointInfo
 213 | 2E7700B7-27C4-437F-9FBF-1E8BE2817566 DXTRandomBars
 214 | 2FE352EA-FD1F-11D2-B1F4-00C04F8EEB3E ShellFolderItem
 215 | 2FE8F810-B2A5-11D0-A787-0000F803ABFC DirectPlayLobby
 216 | 301F77B0-A470-11D0-8821-00A0C903B83C CCertEncodeDateArray
 217 | 3050F241-98B5-11CF-BB82-00AA00BDCE0B HTMLImg
 218 | 3050F245-98B5-11CF-BB82-00AA00BDCE0B HTMLSelectElement
 219 | 3050F246-98B5-11CF-BB82-00AA00BDCE0B HTMLTableCell
 220 | 3050F248-98B5-11CF-BB82-00AA00BDCE0B HTMLAnchorElement
 221 | 3050F249-98B5-11CF-BB82-00AA00BDCE0B HTMLDivPosition
 222 | 3050F24A-98B5-11CF-BB82-00AA00BDCE0B HTMLBody
 223 | 3050F24D-98B5-11CF-BB82-00AA00BDCE0B HTMLOptionElement
 224 | 3050F24E-98B5-11CF-BB82-00AA00BDCE0B HTMLObjectElement
 225 | 3050F251-98B5-11CF-BB82-00AA00BDCE0B HTMLFormElement
 226 | 3050F252-98B5-11CF-BB82-00AA00BDCE0B HTMLHRElement
 227 | 3050F25D-98B5-11CF-BB82-00AA00BDCE0B HTMLEmbed
 228 | 3050F268-98B5-11CF-BB82-00AA00BDCE0B HTMLUnknownElement
 229 | 3050F269-98B5-11CF-BB82-00AA00BDCE0B HTMLUListElement
 230 | 3050F26A-98B5-11CF-BB82-00AA00BDCE0B HTMLTextElement
 231 | 3050F26B-98B5-11CF-BB82-00AA00BDCE0B HTMLTable
 232 | 3050F26C-98B5-11CF-BB82-00AA00BDCE0B HTMLTableCol
 233 | 3050F26D-98B5-11CF-BB82-00AA00BDCE0B HTMLTableRow
 234 | 3050F26E-98B5-11CF-BB82-00AA00BDCE0B HTMLPhraseElement
 235 | 3050F26F-98B5-11CF-BB82-00AA00BDCE0B HTMLParaElement
 236 | 3050F270-98B5-11CF-BB82-00AA00BDCE0B HTMLOListElement
 237 | 3050F271-98B5-11CF-BB82-00AA00BDCE0B HTMLMapElement
 238 | 3050F272-98B5-11CF-BB82-00AA00BDCE0B HTMLListElement
 239 | 3050F273-98B5-11CF-BB82-00AA00BDCE0B HTMLLIElement
 240 | 3050F275-98B5-11CF-BB82-00AA00BDCE0B HTMLMetaElement
 241 | 3050F276-98B5-11CF-BB82-00AA00BDCE0B HTMLBaseElement
 242 | 3050F277-98B5-11CF-BB82-00AA00BDCE0B HTMLLinkElement
 243 | 3050F278-98B5-11CF-BB82-00AA00BDCE0B HTMLIsIndexElement
 244 | 3050F279-98B5-11CF-BB82-00AA00BDCE0B HTMLNextIdElement
 245 | 3050F27A-98B5-11CF-BB82-00AA00BDCE0B HTMLHeaderElement
 246 | 3050F27B-98B5-11CF-BB82-00AA00BDCE0B HTMLFontElement
 247 | 3050F27C-98B5-11CF-BB82-00AA00BDCE0B HTMLDTElement
 248 | 3050F27D-98B5-11CF-BB82-00AA00BDCE0B HTMLDListElement
 249 | 3050F27E-98B5-11CF-BB82-00AA00BDCE0B HTMLDivElement
 250 | 3050F27F-98B5-11CF-BB82-00AA00BDCE0B HTMLDDElement
 251 | 3050F280-98B5-11CF-BB82-00AA00BDCE0B HTMLBRElement
 252 | 3050F281-98B5-11CF-BB82-00AA00BDCE0B HTMLBlockElement
 253 | 3050F282-98B5-11CF-BB82-00AA00BDCE0B HTMLBaseFontElement
 254 | 3050F283-98B5-11CF-BB82-00AA00BDCE0B HTMLAreaElement
 255 | 3050F284-98B5-11CF-BB82-00AA00BDCE0B HTMLTitleElement
 256 | 3050F285-98B5-11CF-BB82-00AA00BDCE0B HTMLStyle
 257 | 3050F28A-98B5-11CF-BB82-00AA00BDCE0B HTMLDialog
 258 | 3050F28C-98B5-11CF-BB82-00AA00BDCE0B HTMLScriptElement
 259 | 3050F2AB-98B5-11CF-BB82-00AA00BDCE0B HTMLInputTextElement
 260 | 3050F2AC-98B5-11CF-BB82-00AA00BDCE0B HTMLTextAreaElement
 261 | 3050F2AE-98B5-11CF-BB82-00AA00BDCE0B HTMLInputFileElement
 262 | 3050F2B4-98B5-11CF-BB82-00AA00BDCE0B HTMLInputButtonElement
 263 | 3050F2B9-98B5-11CF-BB82-00AA00BDCE0B HTMLMarqueeElement
 264 | 3050F2BE-98B5-11CF-BB82-00AA00BDCE0B HTMLOptionButtonElement
 265 | 3050F2C4-98B5-11CF-BB82-00AA00BDCE0B HTMLInputImage
 266 | 3050F2C6-98B5-11CF-BB82-00AA00BDCE0B HTMLButtonElement
 267 | 3050F2DF-98B5-11CF-BB82-00AA00BDCE0B HTMLRichtextElement
 268 | 3050F2E4-98B5-11CF-BB82-00AA00BDCE0B HTMLStyleSheet
 269 | 3050F2E9-98B5-11CF-BB82-00AA00BDCE0B HTMLTableSection
 270 | 3050F2EC-98B5-11CF-BB82-00AA00BDCE0B HTMLTableCaption
 271 | 3050F312-98B5-11CF-BB82-00AA00BDCE0B HTMLFrameBase
 272 | 3050F314-98B5-11CF-BB82-00AA00BDCE0B HTMLFrameElement
 273 | 3050F316-98B5-11CF-BB82-00AA00BDCE0B HTMLIFrame
 274 | 3050F317-98B5-11CF-BB82-00AA00BDCE0B HTMLCommentElement
 275 | 3050F31A-98B5-11CF-BB82-00AA00BDCE0B HTMLFrameSetSite
 276 | 3050F32B-98B5-11CF-BB82-00AA00BDCE0B HTMLLabelElement
 277 | 3050F35D-98B5-11CF-BB82-00AA00BDCE0B HTMLScreen
 278 | 3050F370-98B5-11CF-BB82-00AA00BDCE0B HTMLBGsound
 279 | 3050F37D-98B5-11CF-BB82-00AA00BDCE0B HTMLStyleElement
 280 | 3050F37F-98B5-11CF-BB82-00AA00BDCE0B HTMLStyleSheetsCollection
 281 | 3050F38B-98B5-11CF-BB82-00AA00BDCE0B HTMLNoShowElement
 282 | 3050F38D-98B5-11CF-BB82-00AA00BDCE0B HTMLOptionElementFactory
 283 | 3050F38F-98B5-11CF-BB82-00AA00BDCE0B HTMLImageElementFactory
 284 | 3050F391-98B5-11CF-BB82-00AA00BDCE0B HTMLWindowProxy
 285 | 3050F3B3-98B5-11CF-BB82-00AA00BDCE0B CImageBrowsePropertyPage
 286 | 3050F3B4-98B5-11CF-BB82-00AA00BDCE0B CDocBrowsePropertyPage
 287 | 3050F3BB-98B5-11CF-BB82-00AA00BDCE0B CAnchorBrowsePropertyPage
 288 | 3050F3BC-98B5-11CF-BB82-00AA00BDCE0B ResProtocol
 289 | 3050F3CD-98B5-11CF-BB82-00AA00BDCE0B HTMLStyleSheetRulesCollection
 290 | 3050F3CE-98B5-11CF-BB82-00AA00BDCE0B HTMLStyleSheetRule
 291 | 3050F3D0-98B5-11CF-BB82-00AA00BDCE0B HTMLRuleStyle
 292 | 3050F3D4-98B5-11CF-BB82-00AA00BDCE0B HTMLStyleFontFace
 293 | 3050F3D6-98B5-11CF-BB82-00AA00BDCE0B IImgCtx
 294 | 3050F3D9-98B5-11CF-BB82-00AA00BDCE0B MHTMLDocument
 295 | 3050F3DC-98B5-11CF-BB82-00AA00BDCE0B HTMLCurrentStyle
 296 | 3050F3E6-98B5-11CF-BB82-00AA00BDCE0B HTMLSpanFlow
 297 | 3050F3E8-98B5-11CF-BB82-00AA00BDCE0B HTMLFieldSetElement
 298 | 3050F3E9-98B5-11CF-BB82-00AA00BDCE0B HTMLLegendElement
 299 | 3050F3EF-98B5-11CF-BB82-00AA00BDCE0B HTMLFiltersCollection
 300 | 3050F3F5-98B4-11CF-BB82-00AA00BDCE0B HTMLSpanElement
 301 | 3050F3FE-98B5-11CF-BB82-00AA00BDCE0B CMimeTypes
 302 | 3050F3FF-98B5-11CF-BB82-00AA00BDCE0B CPlugins
 303 | 3050F402-98B5-11CF-BB82-00AA00BDCE0B COpsProfile
 304 | 3050F406-98B5-11CF-BB82-00AA00BDCE0B AboutProtocol
 305 | 3050F487-98B5-11CF-BB82-00AA00BDCE0B CPersistDataPeer
 306 | 3050F48A-98B5-11CF-BB82-00AA00BDCE0B CEventObj
 307 | 3050F48E-98B5-11CF-BB82-00AA00BDCE0B CPersistUserData
 308 | 3050F491-98B5-11CF-BB82-00AA00BDCE0B HTMLHtmlElement
 309 | 3050F493-98B5-11CF-BB82-00AA00BDCE0B HTMLHeadElement
 310 | 3050F4B2-98B5-11CF-BB82-00AA00BDCE0B HTMLDOMAttribute
 311 | 3050F4B8-98B5-11CF-BB82-00AA00BDCE0B HTMLGenericElement
 312 | 3050F4BA-98B5-11CF-BB82-00AA00BDCE0B HTMLDOMTextNode
 313 | 3050F4C6-98B5-11CF-BB82-00AA00BDCE0B CPersistShortcut
 314 | 3050F4C8-98B5-11CF-BB82-00AA00BDCE0B CPersistHistory
 315 | 3050F4C9-98B5-11CF-BB82-00AA00BDCE0B CPersistSnapshot
 316 | 3050F4CA-98B5-11CF-BB82-00AA00BDCE0B HTMLAreasCollection
 317 | 3050F4CB-98B5-11CF-BB82-00AA00BDCE0B HTMLElementCollection
 318 | 3050F4CC-98B5-11CF-BB82-00AA00BDCE0B HTMLAttributeCollection
 319 | 3050F4CF-98B5-11CF-BB82-00AA00BDCE0B PeerFactory
 320 | 3050F4D8-98B5-11CF-BB82-00AA00BDCE0B HTMLApplication
 321 | 3050F4FC-98B5-11CF-BB82-00AA00BDCE0B HTCDefaultDispatch
 322 | 3050F4FE-98B5-11CF-BB82-00AA00BDCE0B HTCEventBehavior
 323 | 3050F580-98B5-11CF-BB82-00AA00BDCE0B HTMLUrnCollection
 324 | 3050F5AA-98B5-11CF-BB82-00AA00BDCE0B DOMChildrenCollection
 325 | 3050F5BE-98B5-11CF-BB82-00AA00BDCE0B CDownloadBehavior
 326 | 3050F5C8-98B5-11CF-BB82-00AA00BDCE0B HTADocument
 327 | 3050F5CB-98B5-11CF-BB82-00AA00BDCE0B HTMLAppBehavior
 328 | 3050F5D8-98B5-11CF-BB82-00AA00BDCE0B HTMLInputElement
 329 | 3050F5DD-98B5-11CF-BB82-00AA00BDCE0B HTCDescBehavior
 330 | 3050F5DE-98B5-11CF-BB82-00AA00BDCE0B HTCPropertyBehavior
 331 | 3050F5EB-98B5-11CF-BB82-00AA00BDCE0B ThreadDialogProcParam
 332 | 3050F5F5-98B5-11CF-BB82-00AA00BDCE0B HTCAttachBehavior
 333 | 3050F630-98B5-11CF-BB82-00AA00BDCE0B HTCMethodBehavior
 334 | 3050F64F-98B5-11CF-BB82-00AA00BDCE0B CHtmlArea
 335 | 3050F664-98B5-11CF-BB82-00AA00BDCE0B CLayoutRect
 336 | 3050F667-98B5-11CF-BB82-00AA00BDCE0B HTMLPopup
 337 | 3050F678-98B5-11CF-BB82-00AA00BDCE0B CCombobox
 338 | 3050F686-98B5-11CF-BB82-00AA00BDCE0B CCheckBox
 339 | 3050F688-98B5-11CF-BB82-00AA00BDCE0B CIESelectElement
 340 | 3050F68A-98B5-11CF-BB82-00AA00BDCE0B CScrollBar
 341 | 3050F68C-98B5-11CF-BB82-00AA00BDCE0B CSpinButton
 342 | 3050F68E-98B5-11CF-BB82-00AA00BDCE0B CSliderBar
 343 | 3050F698-98B5-11CF-BB82-00AA00BDCE0B CIEOptionElement
 344 | 3050F69C-98B5-11CF-BB82-00AA00BDCE0B CRadioButton
 345 | 3050F6AA-98B5-11CF-BB82-00AA00BDCE0B HTMLRenderStyle
 346 | 3050F6B0-98B5-11CF-BB82-00AA00BDCE0B CUtilityButton
 347 | 3050F6B3-98B5-11CF-BB82-00AA00BDCE0B CTemplatePrinter
 348 | 3050F6B9-98B5-11CF-BB82-00AA00BDCE0B HTMLNamespaceCollection
 349 | 3050F6BC-98B5-11CF-BB82-00AA00BDCE0B HTMLNamespace
 350 | 3050F6C8-98B5-11CF-BB82-00AA00BDCE0B HTMLDefaults
 351 | 3050F6CD-98B5-11CF-BB82-00AA00BDCE0B CHeaderFooter
 352 | 3050F6D4-98B5-11CF-BB82-00AA00BDCE0B CDeviceRect
 353 | 3050F7EF-98B5-11CF-BB82-00AA00BDCE0B HTMLStyleSheetPage
 354 | 3050F7F1-98B5-11CF-BB82-00AA00BDCE0B HTMLStyleSheetPagesCollection
 355 | 3050F7F6-98B5-11CF-BB82-00AA00BDCE0B FramesCollection
 356 | 3050F80E-98B5-11CF-BB82-00AA00BDCE0B HTMLDOMImplementation
 357 | 3050F819-98B5-11CF-BB82-00AA00BDCE0B HtmlDlgSafeHelper
 358 | 3050F831-98B5-11CF-BB82-00AA00BDCE0B BlockFormats
 359 | 3050F83A-98B5-11CF-BB82-00AA00BDCE0B FontNames
 360 | 3050F83E-98B5-11CF-BB82-00AA00BDCE0B HTMLParamElement
 361 | 30C3B080-30FB-11D0-B724-00AA006C1A01 CoMapMIMEToCLSID
 362 | 3124C396-FB13-4836-A6AD-1317F1713688 SAXXMLReader30
 363 | 32B533BB-EDAE-11D0-BD5A-00AA00B92AF1 ClassInstallFilter
 364 | 32D93FAC-450E-44CF-829C-8B22FF6BDAE1 GPMSOM
 365 | 331F1768-05A9-4DDD-B86E-DAE34DDC998A QueryCancelAutoPlay
 366 | 332B2A56-F86C-47E7-8602-FC42AC8B9920 AnimationComposerFactory
 367 | 334857CC-F934-11D2-BA96-00C04FB6D0D1 DNWithString
 368 | 336475D0-942A-11CE-A870-00AA002FEAB5 MPEG1Splitter
 369 | 33D932E0-0F48-11D2-8B82-00A0C93C09B2 CrRadialWipePP
 370 | 33D9A760-90C8-11D0-BD43-00A0C911CE86 CIcmCoClassManager
 371 | 33D9A761-90C8-11D0-BD43-00A0C911CE86 CAcmCoClassManager
 372 | 33D9A762-90C8-11D0-BD43-00A0C911CE86 CWaveinClassManager
 373 | 34E1C006-99D2-4335-B0B1-CE7B9FE5396C DeviceInfo
 374 | 36ED64E5-7266-4545-8E14-1645EEBA2A90 GPMEnum
 375 | 372796A9-76EC-479D-AD6C-556318ED5F9D GPMAsyncCancel
 376 | 372FCE38-4324-11D0-8810-00A0C903B83C CCertConfig
 377 | 373984C9-B845-449B-91E7-45AC83036ADE XMLSchemaCache
 378 | 37B0353C-A4C8-11D2-B634-00C04F79498E MSVideoControlFilePlaybackDevice
 379 | 37B03543-A4C8-11D2-B634-00C04F79498E MSVideoControlVideoRenderer
 380 | 37B03544-A4C8-11D2-B634-00C04F79498E MSVideoControlAudioRenderer
 381 | 37EABAF0-7FB6-11D0-8817-00A0C903B83C CCertAdmin
 382 | 3855E880-CD9E-4D0C-9EAF-1579283A1888 GPMConstants
 383 | 385A91BC-1E8A-4E4A-A7A6-F4FC1E6CA1BD DXTFilter
 384 | 3901CC3F-84B5-4FA4-BA35-AA8172B8A09B DirectSound8
 385 | 3908C3CD-4478-4536-AF2F-10C25D4EF89A WiaVideo
 386 | 3A04D93B-1EDD-4F3F-A375-A03EC19572C4 DXTMaskFilter
 387 | 3B2B6775-70B6-45AF-8DEA-A209C69559F3 DirectPlay8LobbyClient
 388 | 3BB4118F-DDFD-4D30-A348-9FB5D6BF1AFE TimeCategorizer
 389 | 3C2654C6-7372-4F6B-B310-55D6128F49D2 AlphabeticalCategorizer
 390 | 3C305196-50DB-11D3-9CFE-00C04FD930C5 DirectDraw7
 391 | 3C374A40-BAE4-11CF-BF7D-00AA006946EE CUrlHistory
 392 | 3CEB5509-C1CD-432F-9D8F-65D1E286AA80 PrimaryControlChannel
 393 | 3D813DFE-6C91-4A4E-8F41-04346A841D9C MXXMLWriter30
 394 | 3DAB30ED-8132-40BF-A8BA-7B5057F0CD10 AccountDiscovery
 395 | 3DD53D40-7B8B-11D0-B013-00AA0059CE02 CdlProtocol
 396 | 3E669F1D-9C23-11D1-9053-00C04FD9189D DXSurfaceModifier
 397 | 3E784A01-F3AE-4DC0-9354-9526B9370EBA SAXAttributes30
 398 | 3EFB1800-C2A1-11CF-960C-0080C7C2BA87 JavaExecute
 399 | 3F69F351-0379-11D2-A484-00C04F8EFB69 CrIris
 400 | 40B96610-B522-11D1-B3B4-00AA006EFDE7 MenuToolbarBase
 401 | 4108FA85-3586-11D3-8BD7-00600893B1B6 DirectMusicScriptTrack
 402 | 4125DD96-E03A-4103-8F70-E0597D803B9C AttachmentServices
 403 | 4150F050-BB6F-11D0-AFB9-00AA00B67A42 DVEncPropertiesPage
 404 | 41651BFA-A5C8-11D2-95DF-00C04F8E7A70 PassportEncryption
 405 | 418008F3-CF67-4668-9628-10DC52BE1D08 MPEG2ComponentType
 406 | 418AFB70-F8B8-11CE-AAC6-0020AF0B99A3 QualityProperties
 407 | 421516C1-3CF8-11D2-952A-00C04FA34F05 DXTChroma
 408 | 424B71AF-0695-11D2-A484-00C04F8EFB69 CrRadialWipe
 409 | 429AF92C-A51F-11D2-861E-00C04FA35C89 HostDialogHelper
 410 | 42B07B28-2280-4937-B035-0293FB812781 DXTRedirect
 411 | 43136EB5-D36C-11CF-ADBC-00AA00A80033 NodeManager
 412 | 4315D437-5B8C-11D0-BD3B-00A0C911CE86 CDeviceMoniker
 413 | 435755FF-7397-11D2-9771-00A0C9B4D50C CorMetaDataDispenserReg
 414 | 438DA5E0-F171-11D0-984E-0000F80270F8 trieditTriEditDocument
 415 | 43F8F289-7A20-11D0-8F06-00C04FC295E1 CEnroll
 416 | 44584800-F8EE-11CE-B2D4-00DD01101B85 MOVReader
 417 | 44EC053A-400F-11D0-9DCD-00A0C90391D3 Registrar
 418 | 44F9A03B-A3EC-4F3B-9364-08E0007F21DF TaskSymbol
 419 | 450D8FBA-AD25-11D0-98A8-0800361B1103 MyDocuments
 420 | 4516EC40-8F20-11D0-9B6D-0000C0781BC3 CDirect3DRMProgressiveMesh
 421 | 4516EC41-8F20-11D0-9B6D-0000C0781BC3 CDirect3DRM
 422 | 4516EC43-8F20-11D0-9B6D-0000C0781BC3 CDirectXFile
 423 | 45234E3E-61CC-4311-A3AB-248082554482 PluggableTerminalRegistration
 424 | 458AA3B5-265A-4B75-BC05-9BEA4630CF18 ClrAssemblyLocator
 425 | 4657278A-411B-11D2-839A-00C04FD918D0 DragDropHelper
 426 | 46C166AA-3108-11D4-9348-00C04F8EEB71 HNetCfgMgr
 427 | 46C166AC-3108-11D4-9348-00C04F8EEB71 SharingManagerEnumPublicConnection
 428 | 46C166AD-3108-11D4-9348-00C04F8EEB71 SharingManagerEnumPrivateConnection
 429 | 46C166AE-3108-11D4-9348-00C04F8EEB71 SharingManagerEnumApplicationDefinition
 430 | 46C166AF-3108-11D4-9348-00C04F8EEB71 SharingManagerEnumPortMapping
 431 | 46C166B0-3108-11D4-9348-00C04F8EEB71 SharingApplicationDefinition
 432 | 46C166B1-3108-11D4-9348-00C04F8EEB71 SharingConfiguration
 433 | 46E06680-4BF0-11D1-83EE-00A0C90DC849 NetworkDomain
 434 | 473AA80B-4577-11D1-81A8-0000F87557DB DX2D
 435 | 47B0DFC7-B7A3-11D1-ADC5-006008A5848C DHtmledDEInsertTableParam
 436 | 47D4D946-62E8-11CF-93BC-444553540000 DirectSound
 437 | 480FF4B0-28B2-11D1-BEF7-00C04FBF8FEF DirectMusicCollection
 438 | 489B0CAF-9EC2-4EB7-91F5-B6F71D43DA8C GPMRSOP
 439 | 4955DD33-B159-11D0-8FCF-00AA006BCC59 CActiveIMM
 440 | 4991D34B-80A1-4291-83B6-3328366B9097 BackgroundCopyManager
 441 | 49B2791A-B1AE-4C90-9B8E-E860BA07F889 Application
 442 | 4A03DCB9-6E17-4A39-8845-4EE7DC5331A5 DXTSpiral
 443 | 4A2286E0-7BEF-11CE-9BD9-0000E202599C CMpegAudioCodec
 444 | 4A249B72-FC9A-11D1-8B1E-00600806D9B6 WbemDispDefines
 445 | 4A5869CF-929D-4040-AE03-FCAFC5B9CD42 MSVideoControlStreamBufferEngineSink
 446 | 4ABF5A06-5568-4834-BEE3-327A6D95A685 DXTMatrix
 447 | 4B2E958D-0393-11D1-B1AB-00AA00BA3258 MtsGrp
 448 | 4B77CC94-D255-409B-BC62-370881715A19 GPMStatusMessage
 449 | 4BE0537B-5C19-11D3-8BDC-00600893B1B6 DirectMusicParamControlTrack
 450 | 4C4A5E40-732C-11D0-8816-00A0C903B83C CCertServerExit
 451 | 4CB26C03-FF93-11D0-817E-0000F87557DB DXTaskManager
 452 | 4CCEA634-FBE0-11D1-906A-00C04FD9189D Pixelate
 453 | 4CCEA635-FBE0-11D1-906A-00C04FD9189D PixelatePP
 454 | 4DB880E0-C10D-11D0-AFB9-00AA00B67A42 DVMuxPropertyPage
 455 | 4DD441AD-526D-4A77-9F1B-9841ED802FB0 SAXAttributes
 456 | 4E0680A0-A0A2-11D0-8821-00A0C903B83C CCertEncodeLongArray
 457 | 4E14FBA2-2E22-11D1-9964-00C04FBBB345 CEventSystem
 458 | 4EB31670-9FC6-11CF-AF6E-00AA00B67A42 DVSplitter
 459 | 4EC4272E-2E6F-4EEB-91D0-EBC4D58E8DEE Wia
 460 | 4EFE2452-168A-11D1-BC76-00C04FB9453B CMidiOutClassManager
 461 | 4FA3568E-623F-11CF-AC4A-0000C03825A1 CDirect3DRMDevice
 462 | 4FA3568F-623F-11CF-AC4A-0000C03825A1 CDirect3DRMViewport
 463 | 4FA35690-623F-11CF-AC4A-0000C03825A1 CDirect3DRMFrame
 464 | 4FA35691-623F-11CF-AC4A-0000C03825A1 CDirect3DRMMesh
 465 | 4FA35692-623F-11CF-AC4A-0000C03825A1 CDirect3DRMMeshBuilder
 466 | 4FA35693-623F-11CF-AC4A-0000C03825A1 CDirect3DRMFace
 467 | 4FA35694-623F-11CF-AC4A-0000C03825A1 CDirect3DRMLight
 468 | 4FA35695-623F-11CF-AC4A-0000C03825A1 CDirect3DRMTexture
 469 | 4FA35696-623F-11CF-AC4A-0000C03825A1 CDirect3DRMWrap
 470 | 4FA35697-623F-11CF-AC4A-0000C03825A1 CDirect3DRMMaterial
 471 | 4FA35698-623F-11CF-AC4A-0000C03825A1 CDirect3DRMAnimation
 472 | 4FA35699-623F-11CF-AC4A-0000C03825A1 CDirect3DRMAnimationSet
 473 | 4FA3569A-623F-11CF-AC4A-0000C03825A1 CDirect3DRMUserVisual
 474 | 4FA3569B-623F-11CF-AC4A-0000C03825A1 CDirect3DRMShadow
 475 | 506D89AE-909A-44F7-9444-ABD575896E35 DxtAlphaSetter
 476 | 50B6327F-AFD1-11D2-9CB9-0000F87A369E ADSystemInfo
 477 | 520CCA61-51A5-11D3-9144-00104BA11C5E MSDiscRecorderObj
 478 | 520CCA63-51A5-11D3-9144-00104BA11C5E MSDiscMasterObj
 479 | 521F3D06-C3D0-4511-8617-86B9A783DA77 FileRecordingTerminal
 480 | 538C7B7E-D25E-11D0-9742-00A0C906AF45 DsFindDomainController
 481 | 53934290-628D-11D2-AE0F-006097B01411 DP8SP_IPX
 482 | 53B6AA67-3F56-11D0-916B-00AA00C18068 SCardTypeConv
 483 | 53B6AA6C-3F56-11D0-916B-00AA00C18068 SCardISO7816
 484 | 53C74826-AB99-4D33-ACA4-3117F51D3788 FolderItemsFDF
 485 | 53DEFDE0-9222-11CF-9ED3-00AA004C120C WPObjWPObj
 486 | 5434E72D-6D66-11D1-BB0B-0000F875865A CDirect3DRMClippedVisual
 487 | 5440837F-4BFF-4AE5-A1B1-7722ECC6332A MSAATextAccStore
 488 | 54702535-2606-11D1-999C-0000F8756A10 DXTLabel
 489 | 547A5E8F-9162-4516-A4DF-9DDB9686D846 GPMSecurityInfo
 490 | 549365D0-EC26-11CF-8310-00AA00B505DB ADsDSOObject
 491 | 54A754C0-4BF0-11D1-83EE-00A0C90DC849 NetworkShare
 492 | 54C37CD0-D944-11D0-A9F4-006097942311 StdEncodingFilterFac
 493 | 550DDA30-0541-11D2-9CA9-0060B0EC3D39 XMLDSOControl
 494 | 55136805-B2DE-11D1-B9F2-00A0C98BC547 ShellNameSpace
 495 | 555278E2-05DB-11D1-883A-3C8B00C10000 DXTScale
 496 | 55A8FD00-4288-11D3-9BD1-8A0D61C88835 DirectMusicMarkerTrack
 497 | 55AF4043-2A06-4F72-ABEF-631B44079C76 GPMMigrationTable
 498 | 55D7B852-F6D1-42F2-AA75-8728A1B2D264 SizeCategorizer
 499 | 5602E146-27F6-11D3-94DD-00C04F72DC08 PassportFastAuth
 500 | 56FDF344-FD6D-11D0-958A-006097C9A090 TaskbarList
 501 | 577FAA18-4518-445E-8F70-1473F8CF4BA4 msvidctlMSEventBinder
 502 | 5871A40A-E9C0-46EC-913E-944EF9225A94 GPMPermission
 503 | 58C2B4D0-46E7-11D1-89AC-00A0C9054129 DirectMusicSynth
 504 | 58F1F272-9240-4F51-B6D4-FD63D1618591 PassportWizard
 505 | 593817A0-7DB3-11CF-A2DE-00AA00B93356 DirectDrawClipper
 506 | 59CE6880-ACF8-11CF-B56E-0080C7C4B68A PerformanceProperties
 507 | 59DC47A8-116C-11D3-9D8E-00C04F72D980 Component
 508 | 5AE1DAE0-1461-11D2-A484-00C04F8EFB69 CrWheel
 509 | 5B035261-40F9-11D1-AAEC-00805FC1270E CNetCfg
 510 | 5B4DAE26-B807-11D0-9815-00C04FD91972 MenuBand
 511 | 5C63C1AD-3956-4FF8-8486-40034758315B NetSharingManager
 512 | 5CB66670-D3D4-11CF-ACAB-00A024A55AEF TransactionContextEx
 513 | 5F2759C0-7685-11CF-8B23-00805F6CEF60 AMovie
 514 | 601AC3DC-786A-4EB0-BF40-EE3521E70BFB NetCrawler
 515 | 603D3800-BD81-11D0-A3A5-00C04FD706EC ShellTaskScheduler
 516 | 60664CAF-AF0D-0003-A300-5C7D25FF22A0 ShellLogonUser
 517 | 60664CAF-AF0D-0004-A300-5C7D25FF22A0 ShellLogonEnumUsers
 518 | 60664CAF-AF0D-0005-A300-5C7D25FF22A0 ShellLocalMachine
 519 | 60664CAF-AF0D-0007-A300-5C7D25FF22A0 ShellLogonStatusHost
 520 | 607FD4E8-0A03-11D1-AB1D-00C04FC9B304 IImageDecodeFilter
 521 | 6089A37E-EB8A-482D-BD6F-F9F46904D16D MSAATextAccServerDocMgr
 522 | 613AB92E-16BF-11D2-BCA5-00C04FD929DB IntelliForms
 523 | 61A5D6F3-C131-4C35-BF40-90A50F214122 MailProtocolADEntry
 524 | 61D55F63-98F7-473C-97C7-A08E2F13C955 XmlProviderManager
 525 | 62112AA1-EBE4-11CF-A5FB-0020AFE7292D ShellFolderView
 526 | 623E287E-FC0E-11D1-9A77-0000F8756A10 CrBlurPP
 527 | 623E2880-FC0E-11D1-9A77-0000F8756A10 GradientPP
 528 | 623E2882-FC0E-11D1-9A77-0000F8756A10 DXTGradientD
 529 | 626745D8-0DEA-4062-BF60-CFC5B1CA1286 GPMWMIFilter
 530 | 6295DF27-35EE-11D1-8707-00C04FD93327 SyncMgr
 531 | 62BE5D10-60EB-11D0-BD3B-00A0C911CE86 SystemDeviceEnum
 532 | 62F75052-F3EC-4A64-84FB-AB18E0746ED8 TIMEColorAnimation
 533 | 636B9F10-0C7D-11D1-95B2-0020AFDC7421 DirectMusic
 534 | 63A4B1FC-259A-4A5B-8129-A83B8C9E6F4F DXTStrips
 535 | 63B51F81-C868-11D0-999C-00C04FD655E1 CFSIconOverlayManager
 536 | 645FF040-5081-101B-9F08-00AA002F954E RecycleBin
 537 | 649EEC1E-B579-4E8C-BB3B-4997F8426536 DXTFilterBehavior
 538 | 64AB4BB7-111E-11D1-8F79-00C04FC2FBE1 ShellUIHelper
 539 | 6572EE16-5FE5-4331-BB6D-76A49C56E423 MSAATextAccDictionary
 540 | 65BD0711-24D2-4FF7-9324-ED2E5D3ABAFA MediaDet
 541 | 66182EC4-AFD1-11D2-9CB9-0000F87A369E WinNTSystemInfo
 542 | 667955AD-6B3B-43CA-B949-BC69B5BAFF7F DirectPlay8LobbiedApplication
 543 | 66E4E4FB-F385-4DD0-8D74-A2EFD1BC6178 ShellImageDataFactory
 544 | 6756A641-DE71-11D0-831B-00AA005B4383 ACLMRU
 545 | 6935DB93-21E8-4CCC-BEB9-9FE3C77A297A ACLCustomMRU
 546 | 694AF25F-124D-11D3-91D5-00C04F8EFB69 DXTLightPP
 547 | 69AD4AEE-51BE-439B-A92C-86AE490E8B30 BackgroundCopyQMgr
 548 | 6A01FDA0-30DF-11D0-B724-00AA006C1A01 CoSniffStream
 549 | 6A08CF80-0E18-11CF-A24D-0020AFD79767 ACMWrapper
 550 | 6A370489-BB52-4727-B740-08F494163478 ClusCfgResTypeServices
 551 | 6B33163C-76A5-4B6C-BF21-45DE9CD503A1 PublishingWizard
 552 | 6BC096B1-0CE6-11D1-BAAE-00C04FC2E20D Request
 553 | 6D4A3650-628D-11D2-AE0F-006097B01411 DP8SP_MODEM
 554 | 6D5313C0-8C62-11D1-B2CD-006097DF8C11 ShellFldSetExt
 555 | 6D6B3CD8-1278-11D1-9BD4-00C04FB683FA CCertEncodeBitString
 556 | 6DC3804B-7212-458D-ADB0-9A07E2AE1FA2 RSOPSnapIn
 557 | 6E27C0E7-1D45-4CA7-9BF7-BD6CDDAA1ADC Collection
 558 | 6E33091C-D2F8-4740-B55E-2E11D1477A2C ImageRecompress
 559 | 6E8D4A20-310C-11D0-B79A-00AA003767A7 Line21Decoder
 560 | 6F9942C9-C1B1-4AB5-93DA-6058991DC8F3 AdapterInfo
 561 | 6F9942CA-C1B1-4AB5-93DA-6058991DC8F3 EnumAdapterInfo
 562 | 7007ACD1-3202-11D1-AAD2-00805FC1270E ConnectionCommonUi
 563 | 7007ACD3-3202-11D1-AAD2-00805FC1270E NetConnectionUiUtilities
 564 | 701722E0-8AE3-11CE-A85C-00AA002FEAB5 FileSource
 565 | 7057E952-BD1B-11D1-8919-00C04FC2C836 DocHostUIHandler
 566 | 70E102B0-5556-11CE-97C0-00AA0055595A VideoRenderer
 567 | 710901BE-1050-4CB1-838A-C5CFF259E183 GPMDomain
 568 | 7170F2E0-9BE3-11D0-A009-00AA00B605A4 TerminalManager
 569 | 71E38F91-7E88-11CF-9EDE-0080C78B7F89 AppServer
 570 | 71F96461-78F3-11D0-A18C-00A0C9118956 CrossbarFilterPropertyPage
 571 | 71F96463-78F3-11D0-A18C-00A0C9118956 TVAudioFilterPropertyPage
 572 | 71F96464-78F3-11D0-A18C-00A0C9118956 VideoProcAmpPropertyPage
 573 | 71F96465-78F3-11D0-A18C-00A0C9118956 CameraControlPropertyPage
 574 | 71F96466-78F3-11D0-A18C-00A0C9118956 AnalogVideoDecoderPropertyPage
 575 | 71F96467-78F3-11D0-A18C-00A0C9118956 VideoStreamConfigPropertyPage
 576 | 72D3EDC2-A4C4-11D0-8533-00C04FD8D503 PropertyEntry
 577 | 72EB61E0-8672-4303-9175-F2E4C68B2E7C NamespaceWalker
 578 | 7312498D-E87A-11D1-81E0-0000F87557DB CrBlur
 579 | 743B5D60-628D-11D2-AE0F-006097B01411 DP8SP_SERIAL
 580 | 743F1DC6-5ABA-429F-8BDF-C54D03253DC2 DirectPlay8Client
 581 | 74DC6D28-E820-47D6-A0B8-F08D93D7FA33 GPMWMIFilterCollection
 582 | 74EB2514-E239-11D2-95E9-00C04F8E7A70 PassportFactory
 583 | 75048700-EF1F-11D0-9888-006097DEACF9 ActiveDesktop
 584 | 7542E960-79C7-11D1-88F9-0080C7D771BF CEventSubscription
 585 | 755939E4-E381-11D0-B1C5-00C04FB9386D TrkRestoreParser
 586 | 7658F2A2-0A83-11D2-A484-00C04F8EFB69 CrStretch
 587 | 766BF2AE-D650-11D1-9811-00C04FC31D2E HomePage
 588 | 76F363F2-7E9F-4ED7-A6A7-EE30351B6628 DXTInset
 589 | 78530B75-61F9-11D2-8CAD-00A024580902 AMTimeline
 590 | 78530B78-61F9-11D2-8CAD-00A024580902 IAMTimelineObj
 591 | 78530B7A-61F9-11D2-8CAD-00A024580902 IAMTimelineSrc
 592 | 78A51822-51F4-11D0-8F20-00805F2CD064 ProcessDebugManager
 593 | 79376820-07D0-11CF-A24D-0020AFD79767 DSoundRender
 594 | 797A9BB1-9E49-4E63-AFE1-1B45B9DC8162 UPnPDeviceHostICSSupport
 595 | 7992C6EB-D142-4332-831E-3154C50A8316 WinNTConnectionObject
 596 | 7999FC25-D3C6-11CF-ACAB-00A024A55AEF TransactionContext
 597 | 79BA9E00-B6EE-11D1-86BE-00C04FBF8FEF DirectMusicBand
 598 | 79EAC9E6-BAF9-11CE-8C82-00AA004BA90B MkProtocol
 599 | 79EAC9F1-BAF9-11CE-8C82-00AA004BA90B PSUrlMonProxy
 600 | 79EAC9F2-BAF9-11CE-8C82-00AA004BA90B UrlMkBindCtx
 601 | 7A057325-832D-4DE3-A41F-C780436A4E09 GPMGPOCollection
 602 | 7A42EA29-A2B7-40C4-B091-F6F024AA89BE RTCClient
 603 | 7AB770C7-0E23-4D7A-8AA2-19BFAD479829 ImageProperties
 604 | 7B3181A0-C92F-4567-B0FA-CD9A10ECD7D1 SecondaryControlChannel
 605 | 7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4 InternetSecurityManager
 606 | 7B8A2D95-0AC9-11D1-896C-00C04FB6BFC4 InternetZoneManager
 607 | 7B9E38B0-A97C-11D0-8534-00C04FD8D503 PropertyValue
 608 | 7C476BA2-02B1-48F4-8048-B24619DDC058 ImageList
 609 | 7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F SAXXMLReader40
 610 | 7D559C10-9FE9-11D0-93F7-00AA0059CE02 CDLAgent
 611 | 7D688A77-C613-11D0-999B-00C04FD655E1 OverlayIdentifier_SlowFile
 612 | 7DA2A9C4-0C46-43BD-B04E-D92B1BE27C45 LDAPConnectionObject
 613 | 7E8BC44E-AEFF-11D1-89C2-00C04FB6BFC4 ClientCaps
 614 | 7E99C0A3-F935-11D2-BA96-00C04FB6D0D1 DNWithBinary
 615 | 7EBDAAE0-8120-11CF-899F-00AA00688B10 StockFontPage
 616 | 7EBDAAE1-8120-11CF-899F-00AA00688B10 StockColorPage
 617 | 7EBDAAE2-8120-11CF-899F-00AA00688B10 StockPicturePage
 618 | 7F1899DA-62A6-11D0-A2C6-00C04FD909DD ScopeTree
 619 | 7FC0B86E-5FA7-11D1-BC7C-00C04FD929DB WebCheckOfflineSync
 620 | 7FFE4D08-FBFD-11D1-9A77-0000F8756A10 DXTWipePP
 621 | 809B6661-94C4-49E6-B6EC-3F0F862215AA ComponentsCollection
 622 | 80DE22C4-0F44-11D2-8B82-00A0C93C09B2 CrIrisPP
 623 | 810B5013-E88D-11D2-8BC1-00600893B1B6 DirectMusicScript
 624 | 810E402F-056B-11D2-A484-00C04F8EFB69 CrSlide
 625 | 81397204-F51A-4571-8D7B-DC030521AABD DXTFilterFactory
 626 | 8144B6F5-20A8-444A-B8EE-19DF0BB84BDB StiEventHandler
 627 | 814B9800-1C88-11D1-BAD9-00609744111A VBISurfaces
 628 | 814B9801-1C88-11D1-BAD9-00609744111A VPVBIObject
 629 | 823535A0-0318-11D3-9D8E-00C04F72D980 ComponentType
 630 | 834128A2-51F4-11D0-8F20-00805F2CD064 DefaultDebugSessionProvider
 631 | 83B8BCA6-687C-11D0-A405-00AA0060275C CDebugDocumentHelper
 632 | 83BC5EC0-6F2A-11D0-A1C4-00AA00C16E65 CommonQuery
 633 | 83EE3FE1-57D9-11D0-B932-00A024AB2DBB DsFindObjects
 634 | 83EE3FE2-57D9-11D0-B932-00A024AB2DBB DsFindPeople
 635 | 83EE3FE3-57D9-11D0-B932-00A024AB2DBB DsFindAdvanced
 636 | 853D1540-C1A7-4AA9-A226-4D3BD301146D MXHTMLWriter30
 637 | 8596E5F0-0DA5-11D0-BD21-00A0C911CE86 FileWriter
 638 | 860BB310-5D01-11D0-BD3B-00A0C911CE86 CVidCapClassManager
 639 | 864A1288-354C-4D19-9D68-C2742BB14997 UserEventTimer
 640 | 8652CE55-9E80-11D1-9053-00C04FD9189D DXRasterizer
 641 | 871C5380-42A0-1069-A2EA-08002B30309D Internet
 642 | 8790C947-A30B-11D0-8CAB-00C04FD90F85 TrackFile
 643 | 87F3A1F5-7397-11D2-9771-00A0C9B4D50C CorMetaDataReg
 644 | 8856F961-340A-11D0-A96B-00C04FD705A2 WebBrowser
 645 | 88D969C0-F192-11D4-A65F-0040963251E5 DOMDocument40
 646 | 88D969C1-F192-11D4-A65F-0040963251E5 FreeThreadedDOMDocument40
 647 | 88D969C2-F192-11D4-A65F-0040963251E5 XMLSchemaCache40
 648 | 88D969C3-F192-11D4-A65F-0040963251E5 XSLTemplate40
 649 | 88D969C4-F192-11D4-A65F-0040963251E5 DSOControl40
 650 | 88D969C5-F192-11D4-A65F-0040963251E5 XMLHTTP40
 651 | 88D969C6-F192-11D4-A65F-0040963251E5 ServerXMLHTTP40
 652 | 88D969C8-F192-11D4-A65F-0040963251E5 MXXMLWriter40
 653 | 88D969C9-F192-11D4-A65F-0040963251E5 MXHTMLWriter40
 654 | 88D969CA-F192-11D4-A65F-0040963251E5 SAXAttributes40
 655 | 88D969D5-F192-11D4-A65F-0040963251E5 MXNamespaceManager
 656 | 88D969D6-F192-11D4-A65F-0040963251E5 MXNamespaceManager40
 657 | 8A03567A-63CB-4BA8-BAF6-52119816D1EF MSEnumDiscRecordersObj
 658 | 8A23E65E-31C2-11D0-891C-00A024AB2DBB DsQuery
 659 | 8A667154-F9CB-11D2-AD8A-0060B0575ABC DirectSoundWave
 660 | 8A674B4C-1F63-11D3-B64C-00C04F79498E AnalogRadioTuningSpace
 661 | 8A674B4D-1F63-11D3-B64C-00C04F79498E AnalogTVTuningSpace
 662 | 8C80CE2D-850D-47DA-8ECD-55023562D167 DXTAlphaImageLoaderPP
 663 | 8C975253-5431-4471-B35D-0626C928258A GPMMapEntry
 664 | 8D4B04E1-1331-11d0-81B8-00C04FD85AB4 ImnAccountManager
 665 | 8D91090E-B955-11D1-ADC5-006008A5848C DHtmledDEGetBlockFmtNamesParam
 666 | 8E827C11-33E7-4BC1-B242-8CD9A1C2B304 MergedCategorizer
 667 | 8EBAE7A3-8943-11D1-96B8-00C04FB6E866 BridgeTerminal
 668 | 8F6B0360-B80D-11D0-A9B3-006097942311 DeCompMimeFilter
 669 | 8F92A857-478E-11D1-A3B4-00C04FB950DC Email
 670 | 8FC0B734-A0E1-11d1-A7D3-0000F87571E3 GPESnapIn
 671 | 92101AC0-9287-4206-A3B2-4BDB73D225F6 GPMResult
 672 | 926433E1-7F8F-4BC6-BEC4-8C126C6B7DC4 DXTMotionBlurPP
 673 | 927971F5-0939-11D1-8BE1-00C04FD8D503 LargeInteger
 674 | 9301E380-1F22-11D3-8226-D2FA76255D47 DirectMusicContainer
 675 | 93073C40-0BA5-11D2-A484-00C04F8EFB69 CrInset
 676 | 934A9523-A3CA-4BC5-ADA0-D6D95D979421 DirectPlay8Address
 677 | 94357B53-CA29-4B78-83AE-E8FE7409134F DriveSizeCategorizer
 678 | 944D4C00-DD52-11CE-BF0E-00AA0055595A DirectDrawProperties
 679 | 94CE4B18-B3D3-11D1-B9B4-00C04FD8D5B0 DsFindFrsMembers
 680 | 98AFF3F0-5524-11D0-8812-00A0C903B83C CCertRequest
 681 | 991DA7E5-953F-435B-BE5E-B92A05EDFC42 MSVideoControlStreamBufferSourcetoGeneri
 682 | 995513AF-3027-4B9A-956E-C772B3F78006 DP8SP_BLUETOOTH
 683 | 995C1CF5-54FF-11D3-8BDA-00600893B1B6 DirectMusicLyricsTrack
 684 | 9A43A844-0831-11D1-817F-0000F87557DB DXTComposite
 685 | 9A4A4A51-FB3A-4F4B-9B57-A2912A289769 DXTBlinds
 686 | 9A8EA3B5-572E-4CB3-9EB9-EC689AC575AE HomeNetAutoConfigService
 687 | 9B2719DD-B696-11D0-A489-00C04FD91AC0 SdpConferenceBlob
 688 | 9B8C4620-2C1A-11D0-8493-00A02438AD48 DVDNavigator
 689 | 9BA05971-F6A8-11CF-A442-00A0C90A8F39 ShellFolderViewOC
 690 | 9BA05972-F6A8-11CF-A442-00A0C90A8F39 ShellWindows
 691 | 9C61F46E-0530-11D2-8F98-00C04FB92EB7 DXTMetaRoll
 692 | 9E51E0D0-6E0F-11D2-9601-00C04FA31A86 DsFolderProperties
 693 | 9E77AAC4-35E5-42A1-BDC2-8F3FF399847C MSVideoControlStreamBufferEngineSink
 694 | 9F15266D-D7BA-48F0-93C1-E6895F6FE5AC TaskHandlerStatusPS
 695 | 9F63805A-42A7-4472-BABC-642466C91D59 FlashConfig
 696 | 9F8E6421-3D9B-11D2-952A-00C04FA34F05 DXTGlow
 697 | A07034FD-6CAA-4954-AC3F-97A27216F98A QueryAssociations
 698 | A12D0F7A-1E84-11D1-9BD6-00C04FB683FA CCertView
 699 | A1A2B1C4-0E3A-11D3-9D8E-00C04F72D980 ComponentTypesCollection
 700 | A1BFB370-5A9F-4429-BB72-B13E2FEAEDEF DXTICMFilter
 701 | A1E75357-881A-419E-83E2-BB16DB197C68 WiaLog
 702 | A1F4E726-8CF1-11D1-BF92-0060081ED811 WiaDevMgr
 703 | A2531F45-C67D-11D0-8CB1-00C04FD90F85 TrkForceOwnership
 704 | A2E3074E-6C3D-11D3-B653-00C04F79498E MSVideoControlBDATunerDevice
 705 | A2E30750-6C3D-11D3-B653-00C04F79498E ATSCDigitalBroadcastTuningSpace
 706 | A32552C5-BA61-457A-B59A-A2561E125E33 UPnPDevice
 707 | A3C63918-889D-11D1-83E9-00C04FC2C6D4 ThumbnailUpdater
 708 | A4C23EC3-6B70-4466-9127-550077239978 MXHTMLWriter
 709 | A5062215-4681-11D1-A3B4-00C04FB950DC FaxNumber
 710 | A5EA8D20-253D-11D1-B3F1-00AA003761C5 CutListSource
 711 | A5EA8D2F-253D-11D1-B3F1-00AA003761C5 CutListGraphBuilder
 712 | A5EA8D30-253D-11D1-B3F1-00AA003761C5 SimpleCutList
 713 | A5EA8D31-253D-11D1-B3F1-00AA003761C5 VideoFileClip
 714 | A5EA8D32-253D-11D1-B3F1-00AA003761C5 AudioFileClip
 715 | A5EA8D33-253D-11D1-B3F1-00AA003761C5 CutListCacheMemory
 716 | A65B8071-3BFE-4213-9A5B-491DA4461CA7 DxDiagProvider
 717 | A7EE7F34-3BD1-427F-9231-F941E9B7E1FE DXTFilterCollection
 718 | A860CE50-3910-11D0-86FC-00A0C913F750 CoDitherToRGB8
 719 | A8DCF3D5-0780-4EF4-8A83-2CFFAACB8ACE ATSCComponentType
 720 | AA000926-FFBE-11CF-8800-00A0C903B83C CCertServerPolicy
 721 | AA0D4D03-06A3-11D2-8F98-00C04FB92EB7 DXTMetaRipple
 722 | AA0D4D08-06A3-11D2-8F98-00C04FB92EB7 DXTMetaPageTurn
 723 | AA0D4D0A-06A3-11D2-8F98-00C04FB92EB7 DXTMetaLiquid
 724 | AA0D4D0C-06A3-11D2-8F98-00C04FB92EB7 DXTMetaCenterPeel
 725 | AA0D4D0E-06A3-11D2-8F98-00C04FB92EB7 DXTMetaPeelSmall
 726 | AA0D4D10-06A3-11D2-8F98-00C04FB92EB7 DXTMetaPeelPiece
 727 | AA0D4D12-06A3-11D2-8F98-00C04FB92EB7 DXTMetaPeelSplit
 728 | AAF578EB-DC70-11D0-8ED3-00C04FB6809F HandsetTerminal
 729 | AAF578EC-DC70-11D0-8ED3-00C04FB6809F VideoInputTerminal
 730 | AAF578ED-DC70-11D0-8ED3-00C04FB6809F HeadsetTerminal
 731 | AAF578EE-DC70-11D0-8ED3-00C04FB6809F SpeakerphoneTerminal
 732 | AAF578EF-DC70-11D0-8ED3-00C04FB6809F MicrophoneTerminal
 733 | AAF578F0-DC70-11D0-8ED3-00C04FB6809F SpeakersTerminal
 734 | AAF578F1-DC70-11D0-8ED3-00C04FB6809F FileTerminal
 735 | AAF8C6CE-F972-11D0-97EB-00AA00615333 IActiveXSafetyProvider
 736 | AB944620-79C6-11D1-88F9-0080C7D771BF CEventPublisher
 737 | ABBE31D0-6DAE-11D0-BECA-00C04FD940BE SubscriptionMgr
 738 | AC48FFE0-F8C4-11D1-A030-00C04FB6809F RequestMakeCall
 739 | AC680B41-CDA0-11D1-A936-0080C7C575C0 StdJavaComModuleManager
 740 | ACA97E00-0C7D-11D2-A484-00C04F8EFB69 CrSpiral
 741 | AD8E510D-217F-409B-8076-29C5E73B98E8 MSVideoControlStreamBufferEnginePlayback
 742 | ADC6CB82-424C-11D2-952A-00C04FA34F05 DXTAlpha
 743 | ADC6CB86-424C-11D2-952A-00C04FA34F05 DXTDropShadow
 744 | ADC6CB88-424C-11D2-952A-00C04FA34F05 DXTWave
 745 | ADD36AA8-751A-4579-A266-D66F5202CCBB InternetPrintOrdering
 746 | ADE6444B-C91F-4E37-92A4-5BB430A33340 AppEventsDHTMLConnector
 747 | AE1E00AA-3FD5-403C-8A27-2BBDC30CD0E1 UPnPNAT
 748 | AF279B30-86EB-11D1-81BF-0000F87557DB DXTWipe
 749 | AFB40FFD-B609-40A3-9828-F88BBE11E4E3 ServerXMLHTTP30
 750 | AFBA6B42-5692-48EA-8141-DC517DCF0EF1 ServerXMLHTTP
 751 | B005E690-678D-11D1-B758-00A0C90564FE SearchCommand
 752 | B0210780-89CD-11D0-AF08-00A0C925CD16 DirectSoundCapture
 753 | B091E540-83E3-11CF-A713-0020AFD79762 FileTypes
 754 | B0A8F3CF-4333-4BAB-8873-1CCB1CADA48B DriveTypeCategorizer
 755 | B0B71247-4080-11D1-A3AC-00C04FB950DC NetAddress
 756 | B15B8DC0-C7E1-11D0-8680-00AA00BDCB71 SoftDistExt
 757 | B1B77C00-C3E4-11CF-AF79-00AA00B67A42 DVVideoCodec
 758 | B2538919-4080-11D1-A3AC-00C04FB950DC Path
 759 | B2BED2EB-4080-11D1-A3AC-00C04FB950DC Timestamp
 760 | B323F8E0-2E68-11D0-90EA-00AA0060F86C Sti
 761 | B33143CB-4080-11D1-A3AC-00C04FB950DC TypedName
 762 | B3AD3E13-4080-11D1-A3AC-00C04FB950DC Hold
 763 | B3CDAE90-D170-11D0-802B-00C04FD75D13 ChannelMgr
 764 | B3EE7802-8224-4787-A1EA-F0DE16DEABD3 DXTCheckerBoard
 765 | B45FF030-4447-11D2-85DE-00C04FA35C89 SearchAssistantOC
 766 | B4609411-C81C-4CCE-8C76-C6B50C9402C6 UPnPDeviceHostSetup
 767 | B4C8DF59-D16F-4042-80B7-3557A254B7C5 BluetoothConnectionManager
 768 | B5607793-24AC-44C7-82E2-831726AA6CB7 FreeSpaceCategorizer
 769 | B577F070-7EE2-11D0-913F-00AA00C16E65 DsFindPrinter
 770 | B5F8350B-0548-48B1-A6EE-88BD00B4A5E7 CAccPropServices
 771 | B64016F3-C9A2-4066-96F0-BD9563314726 DVBSatelliteTuningSpace
 772 | B75AC000-9BDD-11D0-852C-00C04FD8D503 AccessControlEntry
 773 | B8324185-4050-4220-980A-AB14623E063A WinNTObject
 774 | B85EA052-9BDD-11D0-852C-00C04FD8D503 AccessControlList
 775 | B929818E-F5B0-44DC-8A00-1B5F5F5AA1F0 ClusCfgCreateClusterWizard
 776 | B958F73C-9BDD-11D0-852C-00C04FD8D503 SecurityDescriptor
 777 | B96F67A2-30C2-47E8-BD85-70A2C948B50F DXTGradientWipe
 778 | B9DC4790-4AF1-11D1-8C4C-00C04FD930C5 DirectDrawFactory2
 779 | B9E84FFD-AD3C-40A4-B835-0882EBCBAAA8 UPnPDevices
 780 | B9F3EB85-B781-4AC1-8D90-93A05EE37D7D DirectPlayVoiceClient
 781 | B9F8AC3E-0F71-11D2-B72C-00C04FB6BD3D KsIBasicAudioInterfaceHandler
 782 | BA126AD1-2166-11D1-B1D0-00805FC1270E ConnectionManager
 783 | BA126AD3-2166-11D1-B1D0-00805FC1270E LanConnectionManager
 784 | BA126AE3-2166-11D1-B1D0-00805FC1270E NetConnectionHNetUtil
 785 | BA126AE4-2166-11D1-B1D0-00805FC1270E EAPOLManager
 786 | BA126AE5-2166-11D1-B1D0-00805FC1270E ConnectionManager2
 787 | BA91CE53-BAEB-4F05-861C-0A2A0934F82E TIMESetAnimation
 788 | BAE31F9A-1B81-11D2-A97A-00C04F8ECB02 wfolders
 789 | BAE4D665-4EA1-11D3-8BDA-00600893B1B6 DirectMusicSegmentTriggerTrack
 790 | BB07BACD-CD56-4E63-A8FF-CBF0355FB9F4 EventObjectChange2
 791 | BB44391D-6ABD-422F-9E2E-385C9DFF51FC DxtCompositor
 792 | BB8D141E-C00A-469F-BC5C-ECD814F0BD74 ClusCfgAddNodesWizard
 793 | BB918E32-2A5C-4986-AB40-1686A034390A PluggableSuperclassRegistration
 794 | BBB36F15-408D-4056-8C27-920843D40BE5 DataChannel
 795 | BC9B54AB-7883-4C13-909F-033D03267990 PersistentDataChannel
 796 | BCDE0395-E52F-467C-8E3D-C4579291692E MMDeviceEnumerator
 797 | BEE00010-EE77-11D0-A015-00C04FBBB884 Cor
 798 | BF14A2E4-E88B-4EF5-9740-5AC5D022F8C9 FileRecordingTrack
 799 | BF426F7E-7A5E-44D6-830C-A390EA9462A3 MSAATextDocWrap
 800 | C04D65CF-B70D-11D0-B188-00AA0038C969 CMLangString
 801 | C0542A90-4BF0-11D1-83EE-00A0C90DC849 NetworkServer
 802 | C08AFD90-F2A1-11D1-8455-00A0C91F3880 ShellBrowserWindow
 803 | C0BC4B4A-A406-4EFC-932F-B8546B8100CC UPnPServices
 804 | C1A2E70E-659C-4B1A-940B-F88B0AF9C8A4 GPMClientSideExtension
 805 | C1B3CBF1-886A-11D0-9140-00AA00C16E65 DsFindVolume
 806 | C1B3CBF2-886A-11D0-9140-00AA00C16E65 DsFindContainer
 807 | C1DF9880-5303-42C6-8A3C-0488E1BF7364 GPMGPOLink
 808 | C1F400A0-3F08-11D3-9F0B-006008039E37 MsGrab
 809 | C1F400A4-3F08-11D3-9F0B-006008039E37 NullRenderer
 810 | C3BDF740-0B58-11D2-A484-00C04F8EFB69 CrBarn
 811 | C454B4E0-510F-11D1-998C-00AA00601EA8 CMLStrAttrWStr
 812 | C454B4E1-510F-11D1-998C-00AA00601EA8 CMLStrAttrAStr
 813 | C454B4E2-510F-11D1-998C-00AA00601EA8 CMLStrAttrLocale
 814 | C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1 FileSearchBand
 815 | C4F3D5BF-4809-44E3-84A4-368B6B33B0B4 AutoDiscoveryProvider
 816 | C54515D0-F2E5-4BDD-AA86-1E4F23E480E7 TIMEFilterAnimation
 817 | C54A700D-19B6-4211-BCB0-E8E2475E471E GPMTrustee
 818 | C5702CCC-9B79-11D3-B654-00C04F79498E MSVideoControlInputDeviceCollection
 819 | C5702CCD-9B79-11D3-B654-00C04F79498E MSVideoControlOutputDeviceCollection
 820 | C5702CCE-9B79-11D3-B654-00C04F79498E MSVideoControlVideoRendererDeviceCollect
 821 | C5702CCF-9B79-11D3-B654-00C04F79498E MSVideoControlAudioRendererDeviceCollect
 822 | C5702CD0-9B79-11D3-B654-00C04F79498E MSVideoControlFeatureCollection
 823 | C591103A-B3A8-4D47-A3F7-2AEEE4B8013F DXTMatrixPP
 824 | C5B19592-145E-11D3-9F04-006008039E37 DxtKey
 825 | C5C5C5F0-3ABC-11D6-B25B-00C04FA0C026 XDSToRat
 826 | C5C5C5F1-3ABC-11D6-B25B-00C04FA0C026 EvalRat
 827 | C624BA95-FBCB-4409-8C03-8CCEEC533EF1 UPnPService
 828 | C6365470-F667-11D1-9067-00C04FD9189D DXGradient
 829 | C647B5C0-157C-11D0-BD23-00A0C911CE86 AviMuxProptyPage
 830 | C6A4FE81-1022-11D2-8B82-00A0C93C09B2 CrSpiralPP
 831 | C6B14B32-76AA-4A86-A7AC-5C79AAF58DA7 DVBTuningSpace
 832 | C6CC49B0-CE17-11D0-8833-00A0C903B83C CCertGetConfig
 833 | C733E4AF-576E-11D0-B28C-00C04FD7CD22 StdNotificationMgr
 834 | C733E4B0-576E-11D0-B28C-00C04FD7CD22 WebCheckDefaultProcess
 835 | C733E501-576E-11D0-B28C-00C04FD7CD22 NotificaitonTest1
 836 | C733E502-576E-11D0-B28C-00C04FD7CD22 NotificaitonTest2
 837 | C733E503-576E-11D0-B28C-00C04FD7CD22 NotificaitonTest3
 838 | C733E504-576E-11D0-B28C-00C04FD7CD22 NotificaitonTest4
 839 | C827F149-55C1-4D28-935E-57E47CAED973 WebWizardHost
 840 | C8B522CF-5CF3-11CE-ADE5-00AA0044773D EXTENDEDERRORINFO
 841 | C8B522D0-5CF3-11CE-ADE5-00AA0044773D OLEDB_ENUMERATOR
 842 | C8B522D1-5CF3-11CE-ADE5-00AA0044773D OLEDB_CONVERSIONLIBRARY
 843 | CB4276E6-7D5F-4CF1-9727-629C5E6DB6AE AutomationCompliantScalableRectangle
 844 | CBF47525-98D2-45EA-B843-FD213D932B10 DXTCheckerBoardPP
 845 | CC1101F2-79DC-11D2-8CE6-00A0C9441E20 MediaLocator
 846 | CC6EEFFB-43F6-46C5-9619-51D571967F7D PublishDropTarget
 847 | CC8CEDE1-1003-11D2-8B82-00A0C93C09B2 CrSlidePP
 848 | CD000008-8B95-11D1-82DB-00C04FB1625D SMTPConnector
 849 | CD000009-8B95-11D1-82DB-00C04FB1625D NNTPPostConnector
 850 | CD000010-8B95-11D1-82DB-00C04FB1625D NNTPFinalConnector
 851 | CD000011-8B95-11D1-82DB-00C04FB1625D NNTPEarlyConnector
 852 | CD5D4D76-A818-4F95-B958-7970FD9412CA UmiLDAPQueryObject
 853 | CD8743A1-3736-11D0-9E69-00C04FD7C15B OverlayMixer
 854 | CDA42200-BD88-11D0-BD4E-00A0C911CE86 FilterMapper2
 855 | CDBD8D00-C193-11D0-BD4E-00A0C911CE86 MediaPropertyBag
 856 | CDBEC9C0-7A68-11D1-88F9-0080C7D771BF CEventClass
 857 | CE292861-FC88-11D0-9E69-00C04FD7C15B VPObject
 858 | CEFC65D8-66D8-11D1-8D8C-0000F804B057 ThumbnailFCNHandler
 859 | CF49D4E0-1115-11CE-B03A-0020AF0BA770 AVIDec
 860 | CF92B828-2D44-4B61-B10A-B327AFD42DA8 GPMCSECollection
 861 | CFBFAE00-17A6-11D0-99CB-00C04FD64497 CURLSearchHook
 862 | CFC399AF-D876-11D0-9C10-00C04FC99C8E XMLDocument
 863 | CFCCC7A0-A282-11D1-9082-006008059382 DarwinAppPublisher
 864 | D0056F6C-E2A0-11D0-B1C2-00C04FB9386D TrkRestoreNotify
 865 | D02AAC50-027E-11D3-9D8E-00C04F72D980 SystemTuningSpace
 866 | D0565000-9DF4-11D1-A281-00C04FCA0AA7 EventObjectChange
 867 | D1621129-45C4-41AD-A1D1-AF7EAFABEEDC WiaDefaultUi
 868 | D1C5A1E7-CC47-4E32-BDD2-4B3C5FC50AF5 DXTSlide
 869 | D1EB6D20-8923-11D0-9D97-00A0C90A43CB DirectPlay
 870 | D1FE6762-FC48-11D0-883A-3C8B00C10000 DXTransformFactory
 871 | D2029F40-8AB3-11CF-85FB-00401C608501 JavaProxy
 872 | D2073C44-AB4F-11D0-A732-00A0C9082637 JavaPackageManager
 873 | D2AC2881-B39B-11D1-8704-00600893B1BD DirectMusicPerformance
 874 | D2AC2882-B39B-11D1-8704-00600893B1BD DirectMusicSegment
 875 | D2AC2883-B39B-11D1-8704-00600893B1BD DirectMusicSegmentState
 876 | D2AC2884-B39B-11D1-8704-00600893B1BD DirectMusicGraph
 877 | D2AC2885-B39B-11D1-8704-00600893B1BD DirectMusicTempoTrack
 878 | D2AC2886-B39B-11D1-8704-00600893B1BD DirectMusicSeqTrack
 879 | D2AC2887-B39B-11D1-8704-00600893B1BD DirectMusicSysExTrack
 880 | D2AC2888-B39B-11D1-8704-00600893B1BD DirectMusicTimeSigTrack
 881 | D2AC288A-B39B-11D1-8704-00600893B1BD DirectMusicStyle
 882 | D2AC288B-B39B-11D1-8704-00600893B1BD DirectMusicChordTrack
 883 | D2AC288C-B39B-11D1-8704-00600893B1BD DirectMusicCommandTrack
 884 | D2AC288D-B39B-11D1-8704-00600893B1BD DirectMusicStyleTrack
 885 | D2AC288E-B39B-11D1-8704-00600893B1BD DirectMusicMotifTrack
 886 | D2AC288F-B39B-11D1-8704-00600893B1BD DirectMusicChordMap
 887 | D2AC2890-B39B-11D1-8704-00600893B1BD DirectMusicComposer
 888 | D2AC2892-B39B-11D1-8704-00600893B1BD DirectMusicLoader
 889 | D2AC2894-B39B-11D1-8704-00600893B1BD DirectMusicBandTrack
 890 | D2AC2896-B39B-11D1-8704-00600893B1BD DirectMusicChordMapTrack
 891 | D2AC2897-B39B-11D1-8704-00600893B1BD DirectMusicPatternTrack
 892 | D2AC2898-B39B-11D1-8704-00600893B1BD DirectMusicMuteTrack
 893 | D2CE2994-59B5-4064-B581-4D68486A16C4 GPMGPO
 894 | D34F1810-576E-11D0-B28C-00C04FD7CD22 GLOBAL_BROADCAST
 895 | D34F1811-576E-11D0-B28C-00C04FD7CD22 PROCESS_BROADCAST
 896 | D34F1812-576E-11D0-B28C-00C04FD7CD22 THREAD_BROADCAST
 897 | D3588AB0-0781-11CE-B03A-0020AF0BA770 AVIDoc
 898 | D3588AB1-0781-11CE-B03A-0020AF0BA770 AVIDocWriter
 899 | D3F5B8E6-9B78-4A4C-94EA-CA2397B663D3 DirectPlayVoiceServer
 900 | D48A6EC6-6A4A-11CF-94A7-444553540000 HTMLWindow2
 901 | D48A6EC9-6A4A-11CF-94A7-444553540000 OldHTMLDocument
 902 | D5778AE7-43DE-11D0-9171-00AA00C18068 SCardCmd
 903 | D597CAFE-5B9F-11D1-8DD2-00AA004ABD5E SENS
 904 | D66D6F99-CDAA-11D0-B822-00C04FC9B31F CMLangConvertCharset
 905 | D687A7E0-4BA4-11D2-8ADE-00A0C98E6527 DXTAlphaPP
 906 | D6BDAFB2-9435-491F-BB87-6AA0F0BC31A2 WbemDispA2
 907 | D6FEDB1D-CF21-4BD9-AF3B-C5468E9C6684 MMCVersionInfo
 908 | D76E2820-1563-11CF-AC98-00AA004C0FA9 AVICo
 909 | D7B70EE0-4340-11CF-B063-0020AFC2CD35 DirectDraw
 910 | D82BE2B0-5764-11D0-A96E-00C04FD705A2 ISFBand
 911 | D8A68E5E-2B37-426C-A329-C117C14C429E PendingProxyConnection
 912 | D8BD2030-6FC9-11D0-864F-00AA006809D9 PostAgent
 913 | D912F8CF-0396-4915-884E-FB425D32943B PropertiesUI
 914 | D969A300-E7FF-11D0-A93B-00A0C90F2719 NewMenu
 915 | DA4E3DA0-D07D-11D0-BD50-00A0C911CE86 ActiveMovieCategories
 916 | DA825E1B-6830-43D7-835D-0B5AD82956A2 DirectPlay8Server
 917 | DD13DE77-D3BA-42D4-B5C6-7745FA4E2D4B DXTMotionBlur
 918 | DF0DAEF2-A289-11D1-8697-006008B0E5D2 McastAddressAllocation
 919 | DF3D9C23-AB4E-11D0-A732-00A0C9082637 CodeStoreDB
 920 | E0F158E1-CB04-11D0-BD4E-00A0C911CE86 CWaveOutClassManager
 921 | E126F8FF-A7AF-11D0-B88A-00C04FD424B9 ByteBuffer
 922 | E13EF4E4-D2F2-11D0-9816-00C04FD91972 MenuBandSite
 923 | E2085F28-FEB7-404A-B8E7-E659BDEAAA02 UPnPDeviceFinder
 924 | E2510970-F137-11CE-8B67-00AA00A3F1A6 AviDest
 925 | E2F7AEF7-4971-11D1-A671-006097C9A2E8 MediaStreamTerminal
 926 | E30629D1-27E5-11CE-875D-00608CB78066 AudioRender
 927 | E30629D2-27E5-11CE-875D-00608CB78066 AudioRecord
 928 | E30629D3-27E5-11CE-875D-00608CB78066 TextRender
 929 | E31E87C4-86EA-4940-9B8A-5BD5D179A737 DXTRevealTrans
 930 | E32EF57B-7FDE-4765-9BC5-A1BA9705C44E TIME
 931 | E3A8BDE6-ABCE-11D0-BC4B-00C04FD929DB ChannelAgent
 932 | E3E6AE11-7FDC-40C4-AFBF-1DCEA82862CC DXTRandomBarsPP
 933 | E436EBB0-524F-11CE-9F53-0020AF0BA770 ProtoFilterGraph
 934 | E436EBB1-524F-11CE-9F53-0020AF0BA770 SystemClock
 935 | E436EBB2-524F-11CE-9F53-0020AF0BA770 FilterMapper
 936 | E436EBB3-524F-11CE-9F53-0020AF0BA770 FilterGraph
 937 | E436EBB4-524F-11CE-9F53-0020AF0BA770 FGControl
 938 | E436EBB5-524F-11CE-9F53-0020AF0BA770 AsyncReader
 939 | E436EBB6-524F-11CE-9F53-0020AF0BA770 URLReader
 940 | E436EBB7-524F-11CE-9F53-0020AF0BA770 PersistMonikerPID
 941 | E436EBB8-524F-11CE-9F53-0020AF0BA770 FilterGraphNoThread
 942 | E4BBD160-4269-11CE-838D-00AA0055595A MPEG1Doc
 943 | E4BCAC13-7F99-4908-9A8E-74E3BF24B6E1 DirectSoundCapture8
 944 | E4C1D9A2-CBF7-48BD-9A69-34A55E0D8941 DirectPlay8NATResolver
 945 | E5CB7A31-7512-11D2-89CE-0080C792E5D8 CorMetaDataDispenser
 946 | E6C45109-442C-4585-BE44-F5D2884E544A Item
 947 | E6E73D20-0C8A-11D2-A484-00C04F8EFB69 CrZigzag
 948 | E6FB5E20-DE35-11CF-9C87-00AA005127ED WebCheck
 949 | E70C92A9-4BFD-11d1-8A95-00C04FB951F3 StoreNamespace
 950 | E71B4063-3E59-11D2-952A-00C04FA34F05 DXTShadow
 951 | E773F1AF-3A65-4866-857D-846FC9C4598A StgFolder
 952 | E88E5DE0-BD3E-11CF-AAFA-00AA00B6015C VirusScan
 953 | E9218AE7-9E91-11D1-BF60-0080C7846BC0 SdoMachine
 954 | E9225296-C759-11D1-A02B-00C04FB6809F DispatchMapper
 955 | EA502722-A23D-11d1-A7D3-0000F87571E3 GroupPolicyObject
 956 | EAB22AC3-30C1-11CF-A7EB-0000C05BAE0B WebBrowser_V1
 957 | EB8F035B-70DB-4A9F-9676-37C25994E9DC GPMBackupCollection
 958 | EBFE7BA0-628D-11D2-AE0F-006097B01411 DP8SP_TCPIP
 959 | EC7E0760-4C76-11D2-8ADE-00A0C98E6527 DXTChromaPP
 960 | EC7E0761-4C76-11D2-8ADE-00A0C98E6527 DXTDropShadowPP
 961 | EC7E0764-4C76-11D2-8ADE-00A0C98E6527 DXTGlowPP
 962 | EC7E0765-4C76-11D2-8ADE-00A0C98E6527 DXTShadowPP
 963 | EC9BA17D-60B5-462B-A6D8-14B89057E22A DXTBarn
 964 | ECABAFAA-7F19-11D2-978E-0000F8757E2A ActivityUnmarshal
 965 | ECABAFAB-7F19-11D2-978E-0000F8757E2A SecurityEnvoy
 966 | ECABAFAC-7F19-11D2-978E-0000F8757E2A TransactionUnmarshal
 967 | ECABAFAD-7F19-11D2-978E-0000F8757E2A NonRootTransactionEnvoy
 968 | ECABAFAE-7F19-11D2-978E-0000F8757E2A sca
 969 | ECABAFAF-7F19-11D2-978E-0000F8757E2A CFAct
 970 | ECABAFB0-7F19-11D2-978E-0000F8757E2A obja
 971 | ECABAFB1-7F19-11D2-978E-0000F8757E2A stapa
 972 | ECABAFB2-7F19-11D2-978E-0000F8757E2A vca
 973 | ECABAFB3-7F19-11D2-978E-0000F8757E2A UserContextProperty
 974 | ECABAFB4-7F19-11D2-978E-0000F8757E2A AssociationUnmarshal
 975 | ECABAFB5-7F19-11D2-978E-0000F8757E2A PoolMgr
 976 | ECABAFB6-7F19-11D2-978E-0000F8757E2A ObjPoolAct
 977 | ECABAFB7-7F19-11D2-978E-0000F8757E2A CtorAct
 978 | ECABAFB8-7F19-11D2-978E-0000F8757E2A ObjectConstruct
 979 | ECABAFB9-7F19-11D2-978E-0000F8757E2A TrackerServer
 980 | ECABAFBA-7F19-11D2-978E-0000F8757E2A AppTracker
 981 | ECABAFBB-7F19-11D2-978E-0000F8757E2A ClassTracker
 982 | ECABAFBC-7F19-11D2-978E-0000F8757E2A EventServer
 983 | ECABAFBE-7F19-11D2-978E-0000F8757E2A NtaHelper
 984 | ECABAFBF-7F19-11D2-978E-0000F8757E2A ComLceEventDispatcher
 985 | ECABAFC0-7F19-11D2-978E-0000F8757E2A cfw
 986 | ECABAFC1-7F19-11D2-978E-0000F8757E2A ClerksCollection
 987 | ECABAFC2-7F19-11D2-978E-0000F8757E2A Recorder
 988 | ECABAFC3-7F19-11D2-978E-0000F8757E2A QCListener
 989 | ECABAFC4-7F19-11D2-978E-0000F8757E2A Integrator
 990 | ECABAFC5-7F19-11D2-978E-0000F8757E2A Player
 991 | ECABAFC6-7F19-11D2-978E-0000F8757E2A NewMoniker
 992 | ECABAFC7-7F19-11D2-978E-0000F8757E2A QueueMoniker
 993 | ECABAFC9-7F19-11D2-978E-0000F8757E2A QCQueueAdmin
 994 | ECABAFCA-7F19-11D2-978E-0000F8757E2A DLQListenerStarter
 995 | ECABAFCB-7F19-11D2-978E-0000F8757E2A QCMarshalInterceptor
 996 | ECABAFCC-7F19-11D2-978E-0000F8757E2A PartitionPropertyUnmarshal
 997 | ECABAFCD-7F19-11D2-978E-0000F8757E2A TrkInfoCollUnmarshal
 998 | ECABAFCE-7F19-11D2-978E-0000F8757E2A TrkInfoObjUnmarshal
 999 | ECABAFCF-7F19-11D2-978E-0000F8757E2A ComEventRegistrar
1000 | ECABAFD0-7F19-11D2-978E-0000F8757E2A SoapAct
1001 | ECABAFD3-7F19-11D2-978E-0000F8757E2A ObjectWrapperUnmarshaler
1002 | ECABB0A4-7F19-11D2-978E-0000F8757E2A SecurityCertificate
1003 | ECABB0A5-7F19-11D2-978E-0000F8757E2A SecurityIdentity
1004 | ECABB0A6-7F19-11D2-978E-0000F8757E2A SecurityCallers
1005 | ECABB0A7-7F19-11D2-978E-0000F8757E2A SecurityCallContext
1006 | ECABB0A8-7F19-11D2-978E-0000F8757E2A GetSecurityCallContextAppObject
1007 | ECABB0A9-7F19-11D2-978E-0000F8757E2A Dummy30040732
1008 | ECABB0AA-7F19-11D2-978E-0000F8757E2A ByotServerEx
1009 | ECABB0AB-7F19-11D2-978E-0000F8757E2A COMEvents
1010 | ECABB0AC-7F19-11D2-978E-0000F8757E2A CoMTSLocator
1011 | ECABB0AD-7F19-11D2-978E-0000F8757E2A ComThreadEvents
1012 | ECABB0AE-7F19-11D2-978E-0000F8757E2A ComUserEvent
1013 | ECABB0AF-7F19-11D2-978E-0000F8757E2A ComAppEvents
1014 | ECABB0B0-7F19-11D2-978E-0000F8757E2A ComInstanceEvents
1015 | ECABB0B1-7F19-11D2-978E-0000F8757E2A ComTransactionEvents
1016 | ECABB0B2-7F19-11D2-978E-0000F8757E2A ComMethodEvents
1017 | ECABB0B3-7F19-11D2-978E-0000F8757E2A ComObjectEvents
1018 | ECABB0B4-7F19-11D2-978E-0000F8757E2A ComResourceEvents
1019 | ECABB0B5-7F19-11D2-978E-0000F8757E2A ComSecurityEvents
1020 | ECABB0B6-7F19-11D2-978E-0000F8757E2A ComObjectPoolEvents
1021 | ECABB0B7-7F19-11D2-978E-0000F8757E2A ComObjectPoolEvents2
1022 | ECABB0B8-7F19-11D2-978E-0000F8757E2A ComObjectConstructionEvents
1023 | ECABB0B9-7F19-11D2-978E-0000F8757E2A ComActivityEvents
1024 | ECABB0BA-7F19-11D2-978E-0000F8757E2A ComIdentityEvents
1025 | ECABB0BB-7F19-11D2-978E-0000F8757E2A ComQCEvents
1026 | ECABB0BC-7F19-11D2-978E-0000F8757E2A ComExceptionEvents
1027 | ECABB0BD-7F19-11D2-978E-0000F8757E2A CRMClerk
1028 | ECABB0BE-7F19-11D2-978E-0000F8757E2A CRMRecoveryClerk
1029 | ECABB0BF-7F19-11D2-978E-0000F8757E2A MessageMover
1030 | ECABB0C0-7F19-11D2-978E-0000F8757E2A DispenserManager
1031 | ECABB0C1-7F19-11D2-978E-0000F8757E2A LBEvents
1032 | ECABB0C2-7F19-11D2-978E-0000F8757E2A ComCRMEvents
1033 | ECABB0C3-7F19-11D2-978E-0000F8757E2A ComServiceEvents
1034 | ECABB0C4-7F19-11D2-978E-0000F8757E2A ProcessDump
1035 | ECABB0C5-7F19-11D2-978E-0000F8757E2A PartitionMoniker
1036 | ECABB0C6-7F19-11D2-978E-0000F8757E2A ComSystemAppEventData
1037 | ECABB0C7-7F19-11D2-978E-0000F8757E2A SoapMoniker
1038 | ECABB0C8-7F19-11D2-978E-0000F8757E2A CServiceConfig
1039 | ECABB0C9-7F19-11D2-978E-0000F8757E2A ServicePool
1040 | ECABB0CA-7F19-11D2-978E-0000F8757E2A ServicePoolConfig
1041 | ED1A54B8-5EFA-482A-93C0-8AD86F0D68C3 GPMBackup
1042 | ED8C108E-4349-11D2-91A4-00C04F7969E8 XMLHTTPRequest
1043 | EE0B9CA0-A81E-11D3-9BD1-0080C7150A74 DirectMusicAudioPathConfig
1044 | EED36461-9EA5-11D3-9BD1-0080C7150A74 DirectMusicWaveTrack
1045 | EF24F689-14F8-4D92-B4AF-D7B1F0E70FD4 AppDomainHelper
1046 | EFD01300-160F-11D2-BB2E-00805FF7EFCA CScriptErrorList
1047 | EFEA471A-44FD-4862-9292-0C58D46E1F3A CLR_v2_MetaData
1048 | F0285374-DFF1-11D3-B433-00C04F8ECD78 ConsolePower
1049 | F088DE73-BDD0-4E3C-81F8-6D32F4FE9D28 DXTStretch
1050 | F0975AFE-5C7F-11D2-8B74-00104B2AFB41 WbemAdsWMIDSExtension
1051 | F1029E5B-CB5B-11D0-8D59-00C04FD91AC0 Rendezvous
1052 | F12456C0-4C9E-11D2-8ADE-00A0C98E6527 DXTWavePP
1053 | F17E8672-C3B4-11D1-870B-00600893B1BD DirectMusicSignPostTrack
1054 | F1ABE2B5-C073-4DBA-B6EB-FD7A5111DD8F WiaAutoPlayDropTarget
1055 | F1E752C3-FD72-11D0-AEF6-00C04FB6DD2C MMCDocConfig
1056 | F270C64A-FFB8-4AE4-85FE-3A75E5347966 ADsSecurityUtility
1057 | F2A69DB7-DA2C-4352-9066-86FEE6DACAC9 TaskHandlerPS
1058 | F2E60701-2631-11D1-89F1-00A0C90D061E ClusterReferenceObject
1059 | F3364BA0-65B9-11CE-A9BA-00AA004AE837 ShellFSFolder
1060 | F5078F19-C551-11D3-89B9-0000F81FE221 XMLParser
1061 | F5078F1B-C551-11D3-89B9-0000F81FE221 DOMDocument26
1062 | F5078F1C-C551-11D3-89B9-0000F81FE221 FreeThreadedDOMDocument26
1063 | F5078F1D-C551-11D3-89B9-0000F81FE221 XMLSchemaCache26
1064 | F5078F1E-C551-11D3-89B9-0000F81FE221 XMLHTTP26
1065 | F5078F1F-C551-11D3-89B9-0000F81FE221 DSOControl26
1066 | F5078F20-C551-11D3-89B9-0000F81FE221 XMLParser26
1067 | F5078F21-C551-11D3-89B9-0000F81FE221 XSLTemplate26
1068 | F5078F31-C551-11D3-89B9-0000F81FE221 XMLParser30
1069 | F5078F32-C551-11D3-89B9-0000F81FE221 DOMDocument30
1070 | F5078F33-C551-11D3-89B9-0000F81FE221 FreeThreadedDOMDocument30
1071 | F5078F34-C551-11D3-89B9-0000F81FE221 XMLSchemaCache30
1072 | F5078F35-C551-11D3-89B9-0000F81FE221 XMLHTTP30
1073 | F5078F36-C551-11D3-89B9-0000F81FE221 XSLTemplate30
1074 | F5078F39-C551-11D3-89B9-0000F81FE221 DSOControl30
1075 | F515306D-0156-11D2-81EA-0000F87557DB CrEmboss
1076 | F515306E-0156-11D2-81EA-0000F87557DB CrEngrave
1077 | F5694708-88FE-4B35-BABF-E56162D5FBC8 GPM
1078 | F5D1BADF-4080-11D1-A3AC-00C04FB950DC ReplicaPointer
1079 | F60AD0A0-E5E1-45CB-B51A-E15B9F8B2934 TrayBandSiteService
1080 | F618C514-DFB8-11D1-A2CF-00805FC79235 COMAdminCatalog
1081 | F618C515-DFB8-11D1-A2CF-00805FC79235 COMAdminCatalogObject
1082 | F618C516-DFB8-11D1-A2CF-00805FC79235 COMAdminCatalogCollection
1083 | F6D90F11-9C73-11D3-B32E-00C04F990BB4 DOMDocument2
1084 | F6D90F12-9C73-11D3-B32E-00C04F990BB4 FreeThreadedDOMDocument
1085 | F6D90F14-9C73-11D3-B32E-00C04F990BB4 DSOControl
1086 | F6D90F16-9C73-11D3-B32E-00C04F990BB4 XMLHTTP
1087 | F6ED581A-49A5-47E2-B771-FD8DC02B6259 GPMGPOLinksCollection
1088 | F7438990-D6EB-11D0-82A6-00AA00B5CA1B VideoWindowTerm
1089 | F7A4F1DA-96C3-4BCF-BEB3-1D9FFDE89EE9 ComCacheCleanup
1090 | F7F4A1B6-8E87-452F-A2D7-3077F508DBC0 DXTRandomDissolve
1091 | F8383852-FCD3-11D1-A6B9-006097DF5BD4 ProgressDialog
1092 | F8388A40-D5BB-11D0-BE5A-0080C706568E InfTee
1093 | F8ADE1D3-49DF-4B75-9005-EF9508E6A337 ApplicationGatewayServices
1094 | F9769A06-7ACA-4E39-9CFB-97BB35F0E77E AuxiliaryInputsTuningSpace
1095 | F99D135A-C07C-449E-965C-7DBB7C554A51 TIMEAnimation
1096 | F9EFBEC2-4302-11D2-952A-00C04FA34F05 DXTLight
1097 | FA7C375B-66A7-4280-879D-FD459C84BB02 MSVidWebDVDAdm
1098 | FA9F6180-1464-11D2-A484-00C04F8EFB69 CrWheelPP
1099 | FB8F0821-0164-101B-84ED-08002B2EC713 PersistPropset
1100 | FB8F0822-0164-101B-84ED-08002B2EC713 ConvertVBX
1101 | FBEB8A05-BEEE-4442-804E-409D6C4515E9 CDBurn
1102 | FBF23B40-E3F0-101B-8488-00AA003E56F8 InternetShortcut
1103 | FC220AD8-A72A-4EE8-926E-0B7AD152A020 MXXMLWriter
1104 | FC47060E-6153-4B34-B975-8E4121EB7F3C DirectPlay8ThreadPool
1105 | FC4886B3-A40F-11D1-AA88-00AA00BA3258 MtsVbHelper
1106 | FC48CC30-4F3E-4FA1-803B-AD0E196A83B1 MSAATextAccClientDocMgr
1107 | FCAD7436-F151-4110-B97E-32BD607FBDB8 CrBarnPP
1108 | FCBF906F-4080-11D1-A3AC-00C04FB950DC BackLink
1109 | FCC152B7-F372-11D0-8E00-00C04FD7C08B DvdGraphBuilder
1110 | FCE4A59D-0F21-4AFA-B859-E6D0C62CD10C GPMBackupDir
1111 | FD853CDD-7F86-11d0-8252-00C04FD85AB4 IMimeAllocator
1112 | FE1290F0-CFBD-11CF-A330-00AA00C16E65 MicrosoftDS
1113 | FEA4300C-7959-4147-B26A-2377B9E7A91D DirectSoundFullDuplex
1114 | FEB50740-7BEF-11CE-9BD9-0000E202599C CMpegVideoCodec
1115 | FEC0B7EE-7AEC-4067-9EE1-FACFB7CE9AF9 DXTStripsPP
1116 | FECEAAA3-8405-11CF-8BA1-00AA00476DA6 HTMLHistory
1117 | FECEAAA6-8405-11CF-8BA1-00AA00476DA6 HTMLNavigator
1118 | FEF10FA2-355E-4E06-9381-9B24D7F7CC88 FolderItem
1119 | FFB8655F-81B9-4FCE-B89C-9A6BA76D13E7 HWShellExecute
1120 | 


--------------------------------------------------------------------------------
/idapython_tools/findguid/guid_list/folder.txt:
--------------------------------------------------------------------------------
  1 | 008CA0B1-55B4-4C56-B8A8-4DE4B299D3BE AccountPictures
  2 | 00BCFC5A-ED94-4e48-96A1-3F6217F21990 RoamingTiles
  3 | 0139D44E-6AFE-49F2-8690-3DAFCAE6FFB8 CommonPrograms
  4 | 0482AF6C-08F1-4C34-8C90-E17EC98B1E17 PublicUserTiles
  5 | 054FAE61-4DD8-4787-80B6-090220C4B700 GameTasks
  6 | 0762D272-C50A-4BB0-A382-697DCD729B80 UserProfiles
  7 | 0AC0837C-BBF8-452A-850D-79D08E667CA7 ComputerFolder
  8 | 0F214138-B1D3-4a90-BBA9-27CBC0C5389A SyncSetupFolder
  9 | 15CA69B3-30EE-49C1-ACE1-6B5EC372AFB5 SamplePlaylists
 10 | 1777F761-68AD-4D8A-87BD-30B759FA33DD Favorites
 11 | 18989B1D-99B5-455B-841C-AB7C74E4DDFC Videos
 12 | 190337D1-B8CA-4121-A639-6D472D16972A SearchHome
 13 | 1A6FDBA2-F42D-4358-A798-B74D745926C5 RecordedTVLibrary
 14 | 1AC14E77-02E7-4E5D-B744-2EB1AE5198B7 System
 15 | 1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE Libraries
 16 | 1E87508D-89C2-42F0-8A7E-645A0F50CA58 AppsFolder
 17 | 2112AB0A-C86A-4FFE-A368-0DE96E47012E MusicLibrary
 18 | 2400183A-6185-49FB-A2D8-4A392A602BA3 PublicVideos
 19 | 289A9A43-BE44-4057-A41B-587A76D7E7F9 SyncResultsFolder
 20 | 2A00375E-224C-49DE-B8D1-440DF7EF3DDC LocalizedResourcesDir
 21 | 2B0F765D-C0E9-4171-908E-08A611B84FF6 Cookies
 22 | 2C36C0AA-5812-4b87-BFD0-4CD0DFB19B39 OriginalImages
 23 | 3214FAB5-9757-4298-BB61-92A9DEAA44FF PublicMusic
 24 | 33E28130-4E1E-4676-835A-98395C3BC3BB Pictures
 25 | 352481E8-33BE-4251-BA85-6007CAEDCF9D InternetCache
 26 | 374DE290-123F-4565-9164-39C4925E467B Downloads
 27 | 3D644C9B-1FB8-4f30-9B45-F670235F79C0 PublicDownloads
 28 | 3EB685DB-65F9-4CF6-A03A-E3EF65729F3D RoamingAppData
 29 | 43668BF8-C14E-49B2-97C9-747784D784B7 SyncManagerFolder
 30 | 48DAF80B-E6CF-4F4E-B800-0E69D84EE384 PublicLibraries
 31 | 491E922F-5643-4AF4-A7EB-4E7A138D8174 VideosLibrary
 32 | 4C5C32FF-BB9D-43b0-B5B4-2D72E54EAAA4 SavedGames
 33 | 4D9F7874-4E0C-4904-967B-40B0D20C3E4B InternetFolder
 34 | 4bfefb45-347d-4006-a5be-ac0cb0567192 ConflictFolder
 35 | 52528A6B-B9E3-4ADD-B60D-588C2DBA842D HomeGroup
 36 | 52a4f021-7b75-48a9-9f6b-4b87a210bc8f QuickLaunch
 37 | 56784854-C6CB-462b-8169-88E350ACB882 Contacts
 38 | 5CD7AEE2-2219-4A67-B85D-6C9CE15660CB UserProgramFiles
 39 | 5CE4A5E9-E4EB-479D-B89F-130C02886155 DeviceMetadataStore
 40 | 5E6C858F-0E22-4760-9AFE-EA3317B67173 Profile
 41 | 625B53C3-AB48-4EC1-BA1F-A1EF4146FC19 StartMenu
 42 | 62AB5D82-FDC1-4DC3-A9DD-070D1D495D97 ProgramData
 43 | 69D2CF90-FC33-4FB7-9A0C-EBB0F0FCB43C PhotoAlbums
 44 | 6D809377-6AF0-444b-8957-A3773F02200E ProgramFilesX64
 45 | 6F0CD92B-2E97-45D1-88FF-B0D186B8DEDD ConnectionsFolder
 46 | 724EF170-A42D-4FEF-9F26-B60E846FBA4F AdminTools
 47 | 76FC4E2D-D6AD-4519-A663-37BD56068185 PrintersFolder
 48 | 7B0DB17D-9CD2-4A93-9733-46CC89022E7C DocumentsLibrary
 49 | 7B396E54-9EC5-4300-BE0A-2482EBAE1A26 SidebarDefaultParts
 50 | 7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E ProgramFilesX86
 51 | 7D1D3A04-DEBB-4115-95CF-2F29DA2920DA SavedSearches
 52 | 82A5EA35-D9CD-47C5-9629-E15D2F714E6E CommonStartup
 53 | 82A74AEB-AEB4-465C-A014-D097EE346D63 ControlPanelFolder
 54 | 859EAD94-2E85-48AD-A71A-0969CB56A6CD SampleVideos
 55 | 8983036C-27C0-404B-8F08-102D10DCFD74 SendTo
 56 | 8AD10C31-2ADB-4296-A8F7-E4701232C972 ResourceDir
 57 | 905E63B6-C1BF-494E-B29C-65B732D3D21A ProgramFiles
 58 | 9274BD8D-CFD1-41C3-B35E-B13F55A758F4 PrintHood
 59 | 98EC0E18-2098-4D44-8644-66979315A281 SEARCH_MAPI
 60 | 9B74B6A3-0DFD-4f11-9E78-5F7800F2E772 HomeGroupCurrentUser
 61 | 9E3995AB-1F9C-4F13-B827-48B24B6C7174 UserPinned
 62 | 9E52AB10-F80D-49DF-ACB8-4330F5687855 CDBurning
 63 | A302545D-DEFF-464b-ABE8-61C8648D939B UsersLibraries
 64 | A305CD99-F527-492B-8B1A-7E76FA98D6E4 AppUpdates
 65 | A3918781-E5F2-4890-B3D9-A7E54332328C ApplicationShortcuts
 66 | A4115719-D62E-491D-AA7C-E74B8BE3B067 CommonStartMenu
 67 | A520A1A4-1780-4FF6-BD18-167343C5AF16 LocalAppDataLow
 68 | A63293E8-664E-48DB-A079-DF759E0509F7 Templates
 69 | A75D362E-50FC-4fb7-AC2C-A8BEAA314493 SidebarParts
 70 | A77F5D77-2E2B-44C3-A6A2-ABA601054A51 Programs
 71 | A990AE9F-A03B-4E80-94BC-9912D7504104 PicturesLibrary
 72 | AAA8D5A5-F1D6-4259-BAA8-78E7EF60835E RoamedTileImages
 73 | AE50C081-EBD2-438A-8655-8A092E34987A Recent
 74 | B250C668-F57D-4EE1-A63C-290EE7D1AA1F SampleMusic
 75 | B4BFCC3A-DB2C-424C-B029-7FE99A87C641 Desktop
 76 | B6EBFB86-6907-413C-9AF7-4FC2ABF07CC5 PublicPictures
 77 | B7534046-3ECB-4C18-BE4E-64CD4CB7D6AC RecycleBinFolder
 78 | B7BEDE81-DF94-4682-A7D8-57A52620B86F Screenshots
 79 | B94237E7-57AC-4347-9151-B08C6C32D1F7 CommonTemplates
 80 | B97D20BB-F46A-4C97-BA10-5E3608430854 Startup
 81 | BCB5256F-79F6-4CEE-B725-DC34E402FD46 ImplicitAppShortcuts
 82 | BCBD3057-CA5C-4622-B42D-BC56DB0AE516 UserProgramFilesCommon
 83 | BFB9D5E0-C6A9-404C-B2B2-AE6DB6AF4968 Links
 84 | C1BAE2D0-10DF-4334-BEDD-7AA20B227A9D CommonOEMLinks
 85 | C4AA340D-F20F-4863-AFEF-F87EF2E6BA25 PublicDesktop
 86 | C5ABBF53-E17F-4121-8900-86626FC2C973 NetHood
 87 | C870044B-F49E-4126-A9C3-B52A1FF411E8 Ringtones
 88 | CAC52C1A-B53D-4edc-92D7-6B2E8AC19434 Games
 89 | D0384E7D-BAC3-4797-8F14-CBA229B392B5 CommonAdminTools
 90 | D20BEEC4-5CA8-4905-AE3B-BF251EA09B53 NetworkFolder
 91 | D65231B0-B2F1-4857-A4CE-A8E7C6EA7D27 SystemX86
 92 | D9DC8A3B-B784-432E-A781-5A1130A75963 History
 93 | DE61D971-5EBC-4F02-A3A9-6C82895E5C04 AddNewPrograms
 94 | DE92C1C7-837F-4F69-A3BB-86E631204A23 Playlists
 95 | DE974D24-D9C6-4D3E-BF91-F4455120B917 ProgramFilesCommonX86
 96 | DEBF2536-E1A8-4c59-B6A2-414586476AEA PublicGameTasks
 97 | DF7266AC-9274-4867-8D55-3BD661DE872D ChangeRemovePrograms
 98 | DFDF76A2-C82A-4D63-906A-5644AC457385 Public
 99 | E555AB60-153B-4D17-9F04-A5FE99FC15EC PublicRingtones
100 | EE32E446-31CA-4ABA-814F-A5EBD2FD6D5E SEARCH_CSC
101 | F1B32785-6FBA-4FCF-9D55-7B8E7F157091 LocalAppData
102 | F38BF404-1D43-42F2-9305-67DE0B28FC23 Windows
103 | F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F UsersFiles
104 | F7F1ED05-9F6D-47A2-AAAE-29D317C6F066 ProgramFilesCommon
105 | FD228CB7-AE11-4AE3-864C-16F3910AB8FE Fonts
106 | 


--------------------------------------------------------------------------------
/idapython_tools/findguid/guid_list/media.txt:
--------------------------------------------------------------------------------
 1 | 00000000-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_Base
 2 | 00000001-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_PCM
 3 | 00000009-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_DRM
 4 | 0000000A-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMSP1
 5 | 00000055-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_MP3
 6 | 00000130-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_ACELPnet
 7 | 00000161-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMAudioV8
 8 | 00000162-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMAudioV9
 9 | 00000163-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMAudio_Lossless
10 | 05589f80-c356-11ce-bf01-00aa0055595a WMFORMAT_VideoInfo
11 | 05589f81-c356-11ce-bf01-00aa0055595a WMFORMAT_WaveFormatEx
12 | 1d4a45f2-e5f6-4b44-8388-f0ae5c0e0c37 MEDIASUBTYPE_VIDEOIMAGE
13 | 30323449-0000-0010-8000-00AA00389B71 MEDIASUBTYPE_I420
14 | 31313259-0000-0010-8000-00AA00389B71 MEDIASUBTYPE_YV12
15 | 3153534D-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_MSS1
16 | 31564D57-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMV1
17 | 32323450-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_P422
18 | 32505657-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WVP2
19 | 3253344D-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_M4S2
20 | 3253534D-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_MSS2
21 | 32564D57-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMV2
22 | 32595559-0000-0010-8000-00AA00389B71 MEDIASUBTYPE_YUY2
23 | 3334504D-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_MP43
24 | 33564D57-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMV3
25 | 34A50FD8-8AA5-4386-81FE-A0EFE0488E31 WMMEDIATYPE_Image
26 | 39555659-0000-0010-8000-00AA00389B71 MEDIASUBTYPE_YVU9
27 | 41564D57-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMVA
28 | 50564D57-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_WMVP
29 | 5334504D-0000-0010-8000-00AA00389B71 WMMEDIASUBTYPE_MP4S
30 | 55595659-0000-0010-8000-00AA00389B71 MEDIASUBTYPE_YVYU
31 | 56555949-0000-0010-8000-00AA00389B71 MEDIASUBTYPE_IYUV
32 | 59565955-0000-0010-8000-00AA00389B71 MEDIASUBTYPE_UYVY
33 | 5C8510F2-DEBE-4ca7-BBA5-F07A104F8DFF WMFORMAT_Script
34 | 73636d64-0000-0010-8000-00AA00389B71 WMMEDIATYPE_Script
35 | 73646976-0000-0010-8000-00AA00389B71 WMMEDIATYPE_Video
36 | 73647561-0000-0010-8000-00AA00389B71 WMMEDIATYPE_Audio
37 | 776257d4-c627-41cb-8f81-7ac7ff1c40cc WMMEDIASUBTYPE_WebStream
38 | 82f38a70-c29f-11d1-97ad-00a0c95ea850 WMSCRIPTTYPE_TwoStrings
39 | 9BBA1EA7-5AB2-4829-BA57-0940209BCF3E WMMEDIATYPE_Text
40 | D9E47579-930E-4427-ADFC-AD80F290E470 WMMEDIATYPE_FileTransfer
41 | da1e6b13-8359-4050-b398-388e965bf00c WMFORMAT_WebStream
42 | e06d8026-db46-11cf-b4d1-00805f6cbbea WMMEDIASUBTYPE_MPEG2_VIDEO
43 | e06d80e3-db46-11cf-b4d1-00805f6cbbea WMFORMAT_MPEG2Video
44 | e436eb78-524f-11ce-9f53-0020af0ba770 MEDIASUBTYPE_RGB1
45 | e436eb79-524f-11ce-9f53-0020af0ba770 MEDIASUBTYPE_RGB4
46 | e436eb7a-524f-11ce-9f53-0020af0ba770 MEDIASUBTYPE_RGB8
47 | e436eb7b-524f-11ce-9f53-0020af0ba770 MEDIASUBTYPE_RGB565
48 | e436eb7c-524f-11ce-9f53-0020af0ba770 MEDIASUBTYPE_RGB555
49 | e436eb7d-524f-11ce-9f53-0020af0ba770 MEDIASUBTYPE_RGB24
50 | e436eb7e-524f-11ce-9f53-0020af0ba770 MEDIASUBTYPE_RGB32
51 | 


--------------------------------------------------------------------------------
/idapython_tools/hide_junk_code.py:
--------------------------------------------------------------------------------
 1 | import idc, idaapi, idautils, ida_bytes, ida_search, ida_segment
 2 | #import time
 3 | 
 4 | junk_patterns_x86 = []
 5 | junk_patterns_x64 = []
 6 | 
 7 | # .text:100046E4 004 90                                      nop
 8 | # .text:100046E5 004 48                                      dec     eax
 9 | # .text:100046E6 004 40                                      inc     eax
10 | # .text:100046E7 004 90                                      nop
11 | junk_patterns_x86.append(['90 48 40 90', 4])
12 | junk_patterns_x86.append(['90 40 48 90', 4])
13 | 
14 | def get_code_segments():
15 |     segments = []
16 |     for ea in idautils.Segments():
17 |         s = ida_segment.getseg(ea)
18 |         if ida_segment.get_segm_class(s) == 'CODE':
19 |             segments.append(s)
20 |     return segments
21 | 
22 | def main():
23 |     print('[*] start debfuscation')
24 | 
25 |     for s in get_code_segments():
26 |         print('[*] try to deobfuscate {} section'.format(ida_segment.get_segm_name(s)))
27 | 
28 |         if s.use32():
29 |             junk_patterns = junk_patterns_x86
30 |         elif s.use64():
31 |             junk_patterns = junk_patterns_x64
32 |         else:
33 |             print('[!] unsupported arch')
34 | 
35 |         print('[*] replace junk code to nop')
36 |         for pattern, pattern_len in junk_patterns:
37 |             addr_from = idc.find_binary(s.start_ea, ida_search.SEARCH_DOWN, pattern)
38 |             while addr_from != idaapi.BADADDR and addr_from < s.end_ea:
39 |                 ida_bytes.patch_bytes(addr_from, '\x90'*pattern_len)
40 |                 addr_from = idc.find_binary(addr_from+pattern_len, ida_search.SEARCH_DOWN, pattern)
41 | 
42 |         print('[*] hide nop code')
43 |         addr_from = ida_search.find_text(s.start_ea, 0, 0, 'nop', ida_search.SEARCH_CASE|ida_search.SEARCH_DOWN)
44 |         while addr_from != idaapi.BADADDR and addr_from < s.end_ea:
45 |             func_offset = idc.get_func_off_str(addr_from) 
46 |             if type(func_offset) == str and func_offset.find('+') == -1:
47 |                 addr_from = ida_search.find_text(idc.next_head(addr_from), 0, 0, 'nop', ida_search.SEARCH_CASE|ida_search.SEARCH_DOWN)
48 |             else:
49 |                 i = 0
50 |                 while True:
51 |                     if ida_bytes.get_byte(addr_from+i) == 0x90:
52 |                         i += 1
53 |                     else:
54 |                         break
55 |                 if i >= 3:
56 |                     idc.add_hidden_range(addr_from, addr_from+i, 'nop', None, None, 0xFFFFFFFF)
57 |                     print("%08X" % addr_from)
58 |                 addr_from = ida_search.find_text(idc.next_head(addr_from+i), 0, 0, 'nop', ida_search.SEARCH_CASE|ida_search.SEARCH_DOWN)
59 | 
60 |         #print('[*] renanlyze')
61 |         #idc.del_items(s.start_ea, size=s.size())
62 |         #time.sleep(1)
63 |         #idc.plan_and_wait(s.start_ea, s.end_ea)
64 |     print('[*] done')
65 | 
66 | if __name__ == '__main__':
67 |     main()
68 | 


--------------------------------------------------------------------------------
/theme/forest.clr:
--------------------------------------------------------------------------------
  1 | [DISASM]
  2 | 000000	 //
  3 | cccccc	 //Default color
  4 | 99f0a0	 //Regular comment
  5 | b3b3b3	 //Repeatable comment
  6 | b3b3b3	 //Automatic comment
  7 | f5f5f5	 //Instruction
  8 | 336699	 //Dummy Data Name
  9 | 00ff00	 //Regular Data Name
 10 | acefaf	 //Demangled Name
 11 | f5f5f5	 //Punctuation
 12 | 6699cc	 //Char constant in instruction
 13 | 00ff00	 //String constant in instruction
 14 | 6699cc	 //Numeric constant in instruction
 15 | 6699cc	 //Void operand
 16 | 008000	 //Code reference
 17 | 336699	 //Data reference
 18 | 0000ff	 //Code reference to tail byte
 19 | 0000ff	 //Data reference to tail byte
 20 | 0000ff	 //Error or problem
 21 | c0c0c0	 //Line prefix
 22 | 005600	 //Binary line prefix bytes
 23 | acefaf	 //Extra line
 24 | 00ff55	 //Alternative operand
 25 | 999999	 //Hidden name
 26 | 66ccff	 //Library function name
 27 | 6699cc	 //Local variable name
 28 | f5f5f5	 //Dummy code name
 29 | 00ff00	 //Assembler directive
 30 | 6699cc	 //Macro
 31 | 6699cc	 //String constant in data directive
 32 | 00b400	 //Char constant in data directive
 33 | 6699cc	 //Numeric constant in data directive
 34 | f5f5f5	 //Keywords
 35 | f5f5f5	 //Register name
 36 | 0080ff	 //Imported name
 37 | f5f5f5	 //Segment name
 38 | 408000	 //Dummy unknown name
 39 | 00ff00	 //Regular code name
 40 | 999999	 //Regular unknown name
 41 | 00ff55	 //Collapsed line
 42 | 000000	 //Max color number
 43 | 000000	 //Line prefix: library function
 44 | 00ff00	 //Line prefix: regular function
 45 | 66ccff	 //Line prefix: instruction
 46 | f5f5f5	 //Line prefix: data
 47 | 008000	 //Line prefix: unexplored
 48 | 336699	 //Line prefix: externs
 49 | 999999	 //Line prefix: current item
 50 | 0080ff	 //Line prefix: current line
 51 | 000000	 //Punctuation
 52 | 00ff00	 //Opcode bytes
 53 | 000000	 //Manual operand
 54 | [NAVBAR]
 55 | 66ccff	 //Library function
 56 | 00ff55	 //Regular function
 57 | 008000	 //Instruction
 58 | 004080	 //Data item
 59 | 666666	 //Unexplored
 60 | 0080ff	 //External symbol
 61 | 5b5bff	 //Errors
 62 | 000600	 //Gaps
 63 | f5f5f5	 //Cursor
 64 | f5f5f5	 //Address
 65 | [DEBUG]
 66 | 00ff00	 //Current IP
 67 | 0080ff	 //Current IP (Enabled)
 68 | 004080	 //Current IP (Disabled)
 69 | 008000	 //Current IP (Unavailible)
 70 | 0000ff	 //Address
 71 | 004080	 //Address (Enabled)
 72 | b3b3b3	 //Address (Disabled)
 73 | b3b3b3	 //Address (Unavailible)
 74 | 000000	 //Registers
 75 | 004080	 //Registers (Changed)
 76 | 0080ff	 //Registers (Edited)
 77 | [ARROW]
 78 | ffffff	 //Jump in current function
 79 | 236cff	 //Jump external to function
 80 | 00ff00	 //Jump under the cursor
 81 | 008000	 //Jump target
 82 | ff4040	 //Register target
 83 | [GRAPH]
 84 | f5f5f5	 //Top color
 85 | acefaf	 //Bottom color
 86 | f5f5f5	 //Normal title
 87 | 00ff00	 //Selected title
 88 | cfcfa0	 //Current title
 89 | 00ffff	 //Group frame
 90 | 000000	 //Node shadow
 91 | ffffcc	 //Highlight color 1
 92 | ccffcc	 //Highlight color 2
 93 | 0000ff	 //Foreign node
 94 | ff0000	 //Normal edge
 95 | 008000	 //Yes edge
 96 | 0000ff	 //No edge
 97 | ff00ff	 //Highlighted edge
 98 | ffff00	 //Current edge
 99 | [MISC]
100 | f5f5f5	 //Message text
101 | 000000	 //Message background
102 | 404080	 //Patched bytes
103 | 0080ff	 //Unsaved changes
104 | [OTHER]
105 | 66ffcc	 //Highlight color
106 | 000000	 //Hint color
107 | [SYNTAX]
108 | ff0000	0	0	 //Keyword 1
109 | 800080	0	0	 //Keyword 2
110 | 0000ff	0	0	 //Keyword 3
111 | 00008b	0	0	 //String
112 | 006400	0	1	 //Comment
113 | ff0000	1	0	 //Preprocessor
114 | 8b8b00	1	0	 //Number
115 | 


--------------------------------------------------------------------------------