| filename | procexp.exe | |
|---|---|---|
| size | 2799296 (0x2ab6c0) | |
| md5 | 08454a5469cdf1ffa8b090c61318747e | |
| type | PE32 executable (GUI) Intel 80386, for MS Windows | |
| mimetype | application/x-dosexec | |
| clamav | OK | |
| virustotal | → scan with virustotal.com | |
| histogram | ||
MZ Header
| signature | MZ |
| bytes_in_last_block | 0x90 |
| blocks_in_file | 3 |
| num_relocs | 0 |
| header_paragraphs | 4 |
| min_extra_paragraphs | 0 |
| max_extra_paragraphs | 0xffff |
| ss | 0 |
| sp | 0xb8 |
| checksum | 0 |
| ip | 0 |
| cs | 0 |
| reloc_table_offset | 0x40 |
| overlay_number | 0 |
| reserved0 | 0 |
| oem_id | 0 |
| oem_info | 0 |
| reserved2 | 0 |
| reserved3 | 0 |
| reserved4 | 0 |
| reserved5 | 0 |
| reserved6 | 0 |
| lfanew | 0xe8 |
Rich Header
| lib id | version | times used |
|---|---|---|
| 149 | 30729 | 27 |
| 132 | 21022 | 5 |
| 147 | 30729 | 35 |
| 1 | 0 | 529 |
| 131 | 30729 | 175 |
| 132 | 30729 | 123 |
| 148 | 30729 | 1 |
| 145 | 30729 | 1 |
DOS stub
00000000: 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 |........!..L.!Th| 00000010: 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f |is program canno| 00000020: 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 |t be run in DOS | 00000030: 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 |mode....$.......|
PE Header
Packer / Compiler
Sections
Data Directory
| id | lang | string |
|---|---|---|
| 3 | 1033 | Process |
| 4 | 1033 | PID |
| 5 | 1033 | Priority |
| 6 | 1033 | Threads |
| 7 | 1033 | Cycle CPU Usage |
| 8 | 1033 | GPU |
| 9 | 1033 | Paged Pool |
| 10 | 1033 | Nonpaged Pool |
| 11 | 1033 | Programs (*.exe, *.com, *.bat, *.pif)|*.exe;*.com;*.bat|Executables (*.exe)|*.exe|Command Files (*.com)|*.com|Batch Files (*.bat)|*.bat|Pif Files (*.pif)|*.pif| |
| 12 | 1033 | There is insufficent memory to run the program |
| 13 | 1033 | The file is not a valid executable format |
| 14 | 1033 | Cannot find the specified file |
| 15 | 1033 | Cannot find the specified path |
| 16 | 1033 | Refresh process list |
| 18 | 1033 | Handles |
| 19 | 1033 | User Name |
| 20 | 1033 | Handle |
| 21 | 1033 | Type |
| 22 | 1033 | Name |
| 23 | 1033 | Base |
| 24 | 1033 | Size |
| 25 | 1033 | Version |
| 26 | 1033 | Name |
| 27 | 1033 | Show Unnamed Objects (Ctrl+U) |
| 28 | 1033 | Find (Ctrl+F) |
| 29 | 1033 | View Handles (Ctrl+H) |
| 30 | 1033 | Time |
| 31 | 1033 | Save (Ctrl+S) |
| 32 | 1033 | View DLLs (Ctrl+D) |
| 33 | 1033 | References |
| 34 | 1033 | Parent |
| 35 | 1033 | Window Title |
| 36 | 1033 | Kill Process/Close Handle |
| 37 | 1033 | Properties |
| 38 | 1033 | Description |
| 39 | 1033 | Access |
| 40 | 1033 | Mapping |
| 41 | 1033 | Refresh Now (F5) |
| 42 | 1033 | Description |
| 43 | 1033 | Frame |
| 44 | 1033 | Address |
| 1032 | 1033 | Command Line |
| 1033 | 1033 | Company Name |
| 1037 | 1033 | Share |
| 1039 | 1033 | Service |
| 1042 | 1033 | Description |
| 1044 | 1033 | Display Name |
| 1046 | 1033 | Group |
| 1047 | 1033 | Privilege |
| 1049 | 1033 | Flags |
| 1051 | 1033 | Flags |
| 1052 | 1033 | Handle |
| 1053 | 1033 | Handle or DLL |
| 1054 | 1033 | Show Process Tree |
| 1055 | 1033 | CPU |
| 1056 | 1033 | Session |
| 1057 | 1033 | Variable |
| 1058 | 1033 | Value |
| 1059 | 1033 | Page Faults |
| 1060 | 1033 | Private Bytes |
| 1061 | 1033 | Path |
| 1062 | 1033 | Peak Private Bytes |
| 1063 | 1033 | Working Set |
| 1064 | 1033 | Peak Working Set |
| 1065 | 1033 | Threads |
| 1066 | 1033 | GDI Objects |
| 1067 | 1033 | USER Objects |
| 1068 | 1033 | I/O Reads |
| 1069 | 1033 | I/O Read Bytes |
| 1070 | 1033 | I/O Writes |
| 1071 | 1033 | I/O Write Bytes |
| 1072 | 1033 | I/O Other |
| 1073 | 1033 | I/O Other Bytes |
| 1074 | 1033 | Image Base |
| 1075 | 1033 | Limit |
| 1076 | 1033 | TID |
| 1077 | 1033 | Start Address |
| 1078 | 1033 | Function |
| 1079 | 1033 | User Time |
| 1080 | 1033 | Kernel Time |
| 1086 | 1033 | Start Time |
| 1087 | 1033 | CPU Time |
| 1088 | 1033 | Show Lower Pane (Ctrl+L) |
| 1089 | 1033 | Hide Lower Pane (Ctrl+L) |
| 1090 | 1033 | Show Processes From &All Users |
| 1091 | 1033 | Context Switches |
| 1092 | 1033 | CSwitch Delta |
| 1093 | 1033 | Counter |
| 1094 | 1033 | Methods Jitted |
| 1095 | 1033 | % Time in JIT |
| 1096 | 1033 | AppDomains |
| 1097 | 1033 | Assemblies |
| 1098 | 1033 | Classes Loaded |
| 1099 | 1033 | Total AppDomains |
| 1100 | 1033 | Total Assemblies |
| 1101 | 1033 | Total Classes Loaded |
| 1102 | 1033 | Total Lock Contentions |
| 1103 | 1033 | Heap Bytes |
| 1104 | 1033 | Gen 0 Collections |
| 1105 | 1033 | Gen 1 Collections |
| 1106 | 1033 | Gen 2 Collections |
| 1107 | 1033 | % Time in GC |
| 1108 | 1033 | Allocated Bytes/s |
| 1109 | 1033 | Runtime Checks |
| 1110 | 1033 | Contentions |
| 1111 | 1033 | Path |
| 1112 | 1033 | Find Handle (Ctrl+F) |
| 1113 | 1033 | Find Handle or DLL (Ctrl+F) |
| 1114 | 1033 | Virtual Size |
| 1115 | 1033 | WS Total |
| 1116 | 1033 | WS Private |
| 1118 | 1033 | WS Shared |
| 1179 | 1033 | PF Delta |
| 1180 | 1033 | Desktop Integrity Level |
| 1181 | 1033 | Comment |
| 1182 | 1033 | PROCEXPLORER |
| 1183 | 1033 | Process Explorer |
| 1184 | 1033 | Local Address |
| 1185 | 1033 | Object Address |
| 1186 | 1033 | Remote Address |
| 1187 | 1033 | Verified Signer |
| 1188 | 1033 | State |
| 1189 | 1033 | Protocol |
| 1190 | 1033 | Image Type |
| 1191 | 1033 | CPU History |
| 1192 | 1033 | Private Delta Bytes |
| 1193 | 1033 | Private Bytes History |
| 1194 | 1033 | Share Flags |
| 1195 | 1033 | Cycles |
| 1196 | 1033 | Window Status |
| 1197 | 1033 | Find &Window's Process (drag over window) |
| 1198 | 1033 | System Information (Ctrl+I) |
| 1199 | 1033 | DEP |
| 1200 | 1033 | Cycles Delta |
| 1317 | 1033 | WS Shareable |
| 1326 | 1033 | I/O Delta Reads |
| 1327 | 1033 | I/O Delta Read Bytes |
| 1328 | 1033 | I/O Delta Writes |
| 1329 | 1033 | I/O Delta Write Bytes |
| 1330 | 1033 | I/O History |
| 1332 | 1033 | I/O Delta Other Bytes |
| 1333 | 1033 | I/O Delta Total Bytes |
| 1335 | 1033 | I/O Delta Other |
| 1336 | 1033 | Integrity |
| 1337 | 1033 | Virtualized |
| 1338 | 1033 | ASLR |
| 1339 | 1033 | Memory Priority |
| 1340 | 1033 | I/O Priority |
| 1341 | 1033 | Min Working Set |
| 1342 | 1033 | Max Working Set |
| 1343 | 1033 | Service |
| 1609 | 1033 | Network Receives |
| 1610 | 1033 | Network Delta Receives |
| 1611 | 1033 | Network Sends |
| 1612 | 1033 | Network Delta Sends |
| 1613 | 1033 | Network Other |
| 1614 | 1033 | Network Delta Others |
| 1615 | 1033 | Network History |
| 1616 | 1033 | Network Delta Receive Bytes |
| 1617 | 1033 | Network Receive Bytes |
| 1618 | 1033 | Network Send Bytes |
| 1619 | 1033 | Network Delta Send Bytes |
| 1620 | 1033 | Network Other Bytes |
| 1621 | 1033 | Network Delta Other Bytes |
| 1622 | 1033 | Network Delta Total Bytes |
| 1623 | 1033 | Disk Reads |
| 1624 | 1033 | Disk Delta Reads |
| 1625 | 1033 | Disk Writes |
| 1626 | 1033 | Disk Delta Writes |
| 1627 | 1033 | Disk Other |
| 1628 | 1033 | Disk Delta Others |
| 1629 | 1033 | Disk History |
| 1630 | 1033 | Disk Read Bytes |
| 1631 | 1033 | Disk Delta Read Bytes |
| 1632 | 1033 | Disk Write Bytes |
| 1633 | 1033 | Disk Delta Write Bytes |
| 1634 | 1033 | Disk Other Bytes |
| 1635 | 1033 | Disk Delta Other Bytes |
| 1636 | 1033 | Disk Delta Total Bytes |
| 1637 | 1033 | Tree CPU Usage |
| 1638 | 1033 | Processor |
| 1650 | 1033 | GPU |
| 1651 | 1033 | GPU System Bytes |
| 1652 | 1033 | GPU Dedicated Bytes |
| 1653 | 1033 | GPU Committed Bytes |
| 1654 | 1033 | Package Name |
| 1655 | 1033 | Process Timeline |
| 1656 | 1033 | Autostart Location |
| 1667 | 1033 | DPI Awareness |
| module_name | hint | ord | function_name |
|---|---|---|---|
| SHLWAPI.dll | 363 | UrlUnescapeW | |
| SHLWAPI.dll | 13 | ColorRGBToHLS | |
| SHLWAPI.dll | 12 | ColorHLSToRGB | |
| WS2_32.dll | 115 | ||
| WS2_32.dll | 15 | ||
| WS2_32.dll | 56 | ||
| WS2_32.dll | 9 | ||
| WS2_32.dll | 51 | ||
| WS2_32.dll | 8 | ||
| WS2_32.dll | 14 | ||
| MPR.dll | 36 | WNetGetConnectionW | |
| COMCTL32.dll | 133 | PropertySheetW | |
| COMCTL32.dll | 14 | CreateToolbarEx | |
| COMCTL32.dll | 123 | InitCommonControlsEx | |
| COMCTL32.dll | 84 | ImageList_Destroy | |
| COMCTL32.dll | 91 | ImageList_DrawEx | |
| COMCTL32.dll | 77 | ImageList_Add | |
| COMCTL32.dll | 111 | ImageList_ReplaceIcon | |
| COMCTL32.dll | 83 | ImageList_Create | |
| COMCTL32.dll | 17 | ||
| COMCTL32.dll | 12 | CreateStatusWindowW | |
| COMCTL32.dll | 9 | CreatePropertySheetPageW | |
| VERSION.dll | 6 | GetFileVersionInfoW | |
| VERSION.dll | 5 | GetFileVersionInfoSizeW | |
| VERSION.dll | 14 | VerQueryValueW | |
| credui.dll | 10 | CredUIPromptForCredentialsW | |
| SETUPAPI.dll | 342 | SetupDiGetClassDevsW | |
| SETUPAPI.dll | 366 | SetupDiGetDeviceInterfaceDetailW | |
| SETUPAPI.dll | 323 | SetupDiEnumDeviceInterfaces | |
| SETUPAPI.dll | 319 | SetupDiDestroyDeviceInfoList | |
| CRYPT32.dll | 37 | CertDuplicateCertificateContext | |
| CRYPT32.dll | 75 | CertGetNameStringW | |
| KERNEL32.dll | 232 | DuplicateHandle | |
| KERNEL32.dll | 596 | GetProcessWorkingSetSize | |
| KERNEL32.dll | 447 | GetCurrentDirectoryW | |
| KERNEL32.dll | 221 | DeviceIoControl | |
| KERNEL32.dll | 467 | GetDriveTypeW | |
| KERNEL32.dll | 1260 | VirtualFree | |
| KERNEL32.dll | 1257 | VirtualAlloc | |
| KERNEL32.dll | 498 | GetFileTime | |
| KERNEL32.dll | 480 | GetExitCodeThread | |
| KERNEL32.dll | 1297 | WideCharToMultiByte | |
| KERNEL32.dll | 325 | FindNextFileW | |
| KERNEL32.dll | 690 | GlobalAddAtomW | |
| KERNEL32.dll | 627 | GetSystemInfo | |
| KERNEL32.dll | 1223 | TlsGetValue | |
| KERNEL32.dll | 920 | Process32NextW | |
| KERNEL32.dll | 918 | Process32FirstW | |
| KERNEL32.dll | 1224 | TlsSetValue | |
| KERNEL32.dll | 687 | GetWindowsDirectoryW | |
| KERNEL32.dll | 1317 | WriteFile | |
| KERNEL32.dll | 612 | GetStdHandle | |
| KERNEL32.dll | 350 | FormatMessageW | |
| KERNEL32.dll | 507 | GetFullPathNameW | |
| KERNEL32.dll | 496 | GetFileSize | |
| KERNEL32.dll | 282 | ExitThread | |
| KERNEL32.dll | 1221 | TlsAlloc | |
| KERNEL32.dll | 578 | GetPrivateProfileStringW | |
| KERNEL32.dll | 284 | ExpandEnvironmentStringsA | |
| KERNEL32.dll | 828 | LoadLibraryA | |
| KERNEL32.dll | 516 | GetLocaleInfoA | |
| KERNEL32.dll | 739 | InitializeCriticalSectionAndSpinCount | |
| KERNEL32.dll | 474 | GetEnvironmentStringsW | |
| KERNEL32.dll | 353 | FreeEnvironmentStringsW | |
| KERNEL32.dll | 343 | FlushFileBuffers | |
| KERNEL32.dll | 610 | GetStartupInfoA | |
| KERNEL32.dll | 499 | GetFileType | |
| KERNEL32.dll | 1135 | SetHandleCount | |
| KERNEL32.dll | 811 | LCMapStringA | |
| KERNEL32.dll | 617 | GetStringTypeW | |
| KERNEL32.dll | 614 | GetStringTypeA | |
| KERNEL32.dll | 428 | GetConsoleMode | |
| KERNEL32.dll | 410 | GetConsoleCP | |
| KERNEL32.dll | 533 | GetModuleHandleA | |
| KERNEL32.dll | 813 | LCMapStringW | |
| KERNEL32.dll | 778 | IsValidCodePage | |
| KERNEL32.dll | 567 | GetOEMCP | |
| KERNEL32.dll | 360 | GetACP | |
| KERNEL32.dll | 370 | GetCPInfo | |
| KERNEL32.dll | 1222 | TlsFree | |
| KERNEL32.dll | 531 | GetModuleFileNameA | |
| KERNEL32.dll | 281 | ExitProcess | |
| KERNEL32.dll | 717 | HeapCreate | |
| KERNEL32.dll | 611 | GetStartupInfoW | |
| KERNEL32.dll | 453 | GetCurrentThreadId | |
| KERNEL32.dll | 768 | IsDebuggerPresent | |
| KERNEL32.dll | 1189 | SetUnhandledExceptionFilter | |
| KERNEL32.dll | 1235 | UnhandledExceptionFilter | |
| KERNEL32.dll | 181 | CreateThread | |
| KERNEL32.dll | 1048 | RtlUnwind | |
| KERNEL32.dll | 945 | RaiseException | |
| KERNEL32.dll | 724 | HeapSize | |
| KERNEL32.dll | 722 | HeapReAlloc | |
| KERNEL32.dll | 718 | HeapDestroy | |
| KERNEL32.dll | 1357 | lstrlenA | |
| KERNEL32.dll | 1156 | SetProcessWorkingSetSize | |
| KERNEL32.dll | 588 | GetProcessId | |
| KERNEL32.dll | 313 | FindFirstFileW | |
| KERNEL32.dll | 302 | FindClose | |
| KERNEL32.dll | 1149 | SetPriorityClass | |
| KERNEL32.dll | 1216 | TerminateProcess | |
| KERNEL32.dll | 399 | GetComputerNameW | |
| KERNEL32.dll | 518 | GetLocaleInfoW | |
| KERNEL32.dll | 1112 | SetErrorMode | |
| KERNEL32.dll | 1271 | WaitForMultipleObjects | |
| KERNEL32.dll | 659 | GetTickCount | |
| KERNEL32.dll | 703 | GlobalMemoryStatus | |
| KERNEL32.dll | 922 | PulseEvent | |
| KERNEL32.dll | 140 | CreateFileMappingW | |
| KERNEL32.dll | 855 | MapViewOfFile | |
| KERNEL32.dll | 759 | IsBadReadPtr | |
| KERNEL32.dll | 1238 | UnmapViewOfFile | |
| KERNEL32.dll | 935 | QueryPerformanceCounter | |
| KERNEL32.dll | 936 | QueryPerformanceFrequency | |
| KERNEL32.dll | 1039 | ResetEvent | |
| KERNEL32.dll | 676 | GetVersionExW | |
| KERNEL32.dll | 1219 | Thread32First | |
| KERNEL32.dll | 1220 | Thread32Next | |
| KERNEL32.dll | 646 | GetThreadContext | |
| KERNEL32.dll | 830 | LoadLibraryExW | |
| KERNEL32.dll | 1043 | ResumeThread | |
| KERNEL32.dll | 1210 | SuspendThread | |
| KERNEL32.dll | 901 | OpenThread | |
| KERNEL32.dll | 1111 | SetEnvironmentVariableW | |
| KERNEL32.dll | 449 | GetCurrentProcessId | |
| KERNEL32.dll | 214 | DeleteFileW | |
| KERNEL32.dll | 452 | GetCurrentThread | |
| KERNEL32.dll | 1168 | SetThreadAffinityMask | |
| KERNEL32.dll | 1202 | Sleep | |
| KERNEL32.dll | 582 | GetProcessAffinityMask | |
| KERNEL32.dll | 624 | GetSystemDirectoryW | |
| KERNEL32.dll | 563 | GetNumberFormatW | |
| KERNEL32.dll | 960 | ReadFile | |
| KERNEL32.dll | 1126 | SetFilePointer | |
| KERNEL32.dll | 896 | OpenProcess | |
| KERNEL32.dll | 1266 | VirtualQueryEx | |
| KERNEL32.dll | 490 | GetFileAttributesW | |
| KERNEL32.dll | 1053 | SearchPathW | |
| KERNEL32.dll | 285 | ExpandEnvironmentStringsW | |
| KERNEL32.dll | 871 | MultiByteToWideChar | |
| KERNEL32.dll | 1349 | lstrcmpiW | |
| KERNEL32.dll | 1346 | lstrcmpW | |
| KERNEL32.dll | 456 | GetDateFormatW | |
| KERNEL32.dll | 963 | ReadProcessMemory | |
| KERNEL32.dll | 586 | GetProcessHeap | |
| KERNEL32.dll | 715 | HeapAlloc | |
| KERNEL32.dll | 719 | HeapFree | |
| KERNEL32.dll | 476 | GetEnvironmentVariableW | |
| KERNEL32.dll | 870 | MulDiv | |
| KERNEL32.dll | 133 | CreateEventW | |
| KERNEL32.dll | 885 | OpenEventW | |
| KERNEL32.dll | 391 | GetCommandLineW | |
| KERNEL32.dll | 1139 | SetLastError | |
| KERNEL32.dll | 143 | CreateFileW | |
| KERNEL32.dll | 448 | GetCurrentProcess | |
| KERNEL32.dll | 761 | IsBadStringPtrW | |
| KERNEL32.dll | 1358 | lstrlenW | |
| KERNEL32.dll | 633 | GetSystemTimeAsFileTime | |
| KERNEL32.dll | 209 | DeleteCriticalSection | |
| KERNEL32.dll | 292 | FileTimeToLocalFileTime | |
| KERNEL32.dll | 293 | FileTimeToSystemTime | |
| KERNEL32.dll | 663 | GetTimeFormatW | |
| KERNEL32.dll | 631 | GetSystemTime | |
| KERNEL32.dll | 1213 | SystemTimeToFileTime | |
| KERNEL32.dll | 354 | FreeLibrary | |
| KERNEL32.dll | 581 | GetProcAddress | |
| KERNEL32.dll | 831 | LoadLibraryW | |
| KERNEL32.dll | 1273 | WaitForSingleObject | |
| KERNEL32.dll | 1217 | TerminateThread | |
| KERNEL32.dll | 190 | CreateToolhelp32Snapshot | |
| KERNEL32.dll | 859 | Module32FirstW | |
| KERNEL32.dll | 861 | Module32NextW | |
| KERNEL32.dll | 536 | GetModuleHandleW | |
| KERNEL32.dll | 705 | GlobalReAlloc | |
| KERNEL32.dll | 702 | GlobalLock | |
| KERNEL32.dll | 691 | GlobalAlloc | |
| KERNEL32.dll | 709 | GlobalUnlock | |
| KERNEL32.dll | 1113 | SetEvent | |
| KERNEL32.dll | 674 | GetVersion | |
| KERNEL32.dll | 333 | FindResourceExW | |
| KERNEL32.dll | 833 | LoadResource | |
| KERNEL32.dll | 852 | LockResource | |
| KERNEL32.dll | 1201 | SizeofResource | |
| KERNEL32.dll | 334 | FindResourceW | |
| KERNEL32.dll | 747 | InterlockedDecrement | |
| KERNEL32.dll | 751 | InterlockedIncrement | |
| KERNEL32.dll | 738 | InitializeCriticalSection | |
| KERNEL32.dll | 238 | EnterCriticalSection | |
| KERNEL32.dll | 825 | LeaveCriticalSection | |
| KERNEL32.dll | 168 | CreateProcessW | |
| KERNEL32.dll | 82 | CloseHandle | |
| KERNEL32.dll | 514 | GetLastError | |
| KERNEL32.dll | 840 | LocalFree | |
| KERNEL32.dll | 836 | LocalAlloc | |
| KERNEL32.dll | 532 | GetModuleFileNameW | |
| KERNEL32.dll | 1159 | SetStdHandle | |
| KERNEL32.dll | 1306 | WriteConsoleA | |
| KERNEL32.dll | 432 | GetConsoleOutputCP | |
| KERNEL32.dll | 1316 | WriteConsoleW | |
| KERNEL32.dll | 664 | GetTimeZoneInformation | |
| KERNEL32.dll | 136 | CreateFileA | |
| KERNEL32.dll | 1107 | SetEndOfFile | |
| KERNEL32.dll | 97 | CompareStringA | |
| KERNEL32.dll | 100 | CompareStringW | |
| KERNEL32.dll | 1110 | SetEnvironmentVariableA | |
| KERNEL32.dll | 349 | FormatMessageA | |
| USER32.dll | 234 | EnumDisplaySettingsW | |
| USER32.dll | 806 | WaitForInputIdle | |
| USER32.dll | 272 | GetClassLongW | |
| USER32.dll | 392 | GetUpdateRgn | |
| USER32.dll | 391 | GetUpdateRect | |
| USER32.dll | 445 | IntersectRect | |
| USER32.dll | 796 | ValidateRect | |
| USER32.dll | 373 | GetScrollInfo | |
| USER32.dll | 688 | SetScrollInfo | |
| USER32.dll | 625 | ScrollWindowEx | |
| USER32.dll | 476 | IsWindowEnabled | |
| USER32.dll | 294 | GetDlgCtrlID | |
| USER32.dll | 563 | PeekMessageW | |
| USER32.dll | 540 | MsgWaitForMultipleObjects | |
| USER32.dll | 65 | CheckRadioButton | |
| USER32.dll | 702 | SetUserObjectSecurity | |
| USER32.dll | 396 | GetUserObjectSecurity | |
| USER32.dll | 291 | GetDesktopWindow | |
| USER32.dll | 398 | GetWindow | |
| USER32.dll | 635 | SendMessageTimeoutW | |
| USER32.dll | 245 | ExitWindowsEx | |
| USER32.dll | 485 | LoadAcceleratorsW | |
| USER32.dll | 349 | GetMessageW | |
| USER32.dll | 762 | TranslateAcceleratorW | |
| USER32.dll | 461 | IsDialogMessageW | |
| USER32.dll | 764 | TranslateMessage | |
| USER32.dll | 175 | DispatchMessageW | |
| USER32.dll | 99 | CreateDialogParamW | |
| USER32.dll | 298 | GetDlgItemTextW | |
| USER32.dll | 615 | RemoveMenu | |
| USER32.dll | 201 | DrawMenuBar | |
| USER32.dll | 567 | PostQuitMessage | |
| USER32.dll | 200 | DrawIconEx | |
| USER32.dll | 758 | TrackPopupMenu | |
| USER32.dll | 475 | IsWindow | |
| USER32.dll | 264 | GetCapture | |
| USER32.dll | 612 | ReleaseCapture | |
| USER32.dll | 640 | SetCapture | |
| USER32.dll | 195 | DrawEdge | |
| USER32.dll | 611 | RegisterWindowMessageW | |
| USER32.dll | 503 | LoadMenuW | |
| USER32.dll | 442 | InsertMenuW | |
| USER32.dll | 63 | CheckMenuItem | |
| USER32.dll | 106 | CreateMenu | |
| USER32.dll | 64 | CheckMenuRadioItem | |
| USER32.dll | 586 | RedrawWindow | |
| USER32.dll | 736 | ShowWindowAsync | |
| USER32.dll | 659 | SetForegroundWindow | |
| USER32.dll | 249 | FindWindowExW | |
| USER32.dll | 465 | IsIconic | |
| USER32.dll | 402 | GetWindowDC | |
| USER32.dll | 674 | SetMenuItemInfoW | |
| USER32.dll | 158 | DeleteMenu | |
| USER32.dll | 62 | CheckDlgButton | |
| USER32.dll | 462 | IsDlgButtonChecked | |
| USER32.dll | 447 | InvalidateRgn | |
| USER32.dll | 246 | FillRect | |
| USER32.dll | 242 | EnumWindows | |
| USER32.dll | 420 | GetWindowThreadProcessId | |
| USER32.dll | 419 | GetWindowTextW | |
| USER32.dll | 535 | ModifyMenuW | |
| USER32.dll | 748 | SystemParametersInfoW | |
| USER32.dll | 107 | CreatePopupMenu | |
| USER32.dll | 10 | AppendMenuW | |
| USER32.dll | 759 | TrackPopupMenuEx | |
| USER32.dll | 378 | GetSubMenu | |
| USER32.dll | 337 | GetMenuItemCount | |
| USER32.dll | 338 | GetMenuItemID | |
| USER32.dll | 331 | GetMenu | |
| USER32.dll | 214 | EnableMenuItem | |
| USER32.dll | 163 | DestroyIcon | |
| USER32.dll | 644 | SetClassLongW | |
| USER32.dll | 658 | SetFocus | |
| USER32.dll | 699 | SetTimer | |
| USER32.dll | 812 | WindowFromPoint | |
| USER32.dll | 483 | KillTimer | |
| USER32.dll | 411 | GetWindowPlacement | |
| USER32.dll | 506 | LoadStringW | |
| USER32.dll | 250 | FindWindowW | |
| USER32.dll | 493 | LoadIconW | |
| USER32.dll | 495 | LoadImageW | |
| USER32.dll | 589 | RegisterClassExW | |
| USER32.dll | 590 | RegisterClassW | |
| USER32.dll | 709 | SetWindowPlacement | |
| USER32.dll | 785 | UpdateWindow | |
| USER32.dll | 437 | InflateRect | |
| USER32.dll | 715 | SetWindowTextW | |
| USER32.dll | 170 | DialogBoxIndirectParamW | |
| USER32.dll | 149 | DefDlgProcW | |
| USER32.dll | 172 | DialogBoxParamW | |
| USER32.dll | 648 | SetCursor | |
| USER32.dll | 446 | InvalidateRect | |
| USER32.dll | 67 | ChildWindowFromPoint | |
| USER32.dll | 379 | GetSysColor | |
| USER32.dll | 380 | GetSysColorBrush | |
| USER32.dll | 151 | DefFrameProcW | |
| USER32.dll | 153 | DefMDIChildProcW | |
| USER32.dll | 253 | FrameRect | |
| USER32.dll | 289 | GetDC | |
| USER32.dll | 208 | DrawTextW | |
| USER32.dll | 71 | ClientToScreen | |
| USER32.dll | 613 | ReleaseDC | |
| USER32.dll | 103 | CreateIconIndirect | |
| USER32.dll | 521 | MapWindowPoints | |
| USER32.dll | 166 | DestroyWindow | |
| USER32.dll | 110 | CreateWindowExW | |
| USER32.dll | 480 | IsWindowVisible | |
| USER32.dll | 300 | GetFocus | |
| USER32.dll | 363 | GetPropW | |
| USER32.dll | 621 | ScreenToClient | |
| USER32.dll | 274 | GetClassNameW | |
| USER32.dll | 157 | DeferWindowPos | |
| USER32.dll | 13 | BeginDeferWindowPos | |
| USER32.dll | 223 | EnumChildWindows | |
| USER32.dll | 217 | EndDeferWindowPos | |
| USER32.dll | 549 | OffsetRect | |
| USER32.dll | 769 | UnionRect | |
| USER32.dll | 482 | IsZoomed | |
| USER32.dll | 382 | GetSystemMetrics | |
| USER32.dll | 576 | PtInRect | |
| USER32.dll | 14 | BeginPaint | |
| USER32.dll | 198 | DrawFrameControl | |
| USER32.dll | 220 | EndPaint | |
| USER32.dll | 685 | SetPropW | |
| USER32.dll | 30 | CallWindowProcW | |
| USER32.dll | 156 | DefWindowProcW | |
| USER32.dll | 276 | GetClientRect | |
| USER32.dll | 85 | CopyRect | |
| USER32.dll | 406 | GetWindowLongW | |
| USER32.dll | 356 | GetParent | |
| USER32.dll | 735 | ShowWindow | |
| USER32.dll | 708 | SetWindowLongW | |
| USER32.dll | 317 | GetKeyState | |
| USER32.dll | 550 | OpenClipboard | |
| USER32.dll | 213 | EmptyClipboard | |
| USER32.dll | 646 | SetClipboardData | |
| USER32.dll | 73 | CloseClipboard | |
| USER32.dll | 288 | GetCursorPos | |
| USER32.dll | 710 | SetWindowPos | |
| USER32.dll | 566 | PostMessageW | |
| USER32.dll | 636 | SendMessageW | |
| USER32.dll | 533 | MessageBoxW | |
| USER32.dll | 218 | EndDialog | |
| USER32.dll | 295 | GetDlgItem | |
| USER32.dll | 412 | GetWindowRect | |
| USER32.dll | 539 | MoveWindow | |
| USER32.dll | 656 | SetDlgItemTextW | |
| USER32.dll | 491 | LoadCursorW | |
| USER32.dll | 216 | EnableWindow | |
| GDI32.dll | 426 | GetBkMode | |
| GDI32.dll | 79 | CreateRectRgn | |
| GDI32.dll | 425 | GetBkColor | |
| GDI32.dll | 631 | SelectObject | |
| GDI32.dll | 678 | SetTextColor | |
| GDI32.dll | 639 | SetBkMode | |
| GDI32.dll | 629 | SelectClipRgn | |
| GDI32.dll | 80 | CreateRectRgnIndirect | |
| GDI32.dll | 605 | RectInRegion | |
| GDI32.dll | 509 | GetObjectW | |
| GDI32.dll | 525 | GetStockObject | |
| GDI32.dll | 230 | DeleteObject | |
| GDI32.dll | 84 | CreateSolidBrush | |
| GDI32.dll | 227 | DeleteDC | |
| GDI32.dll | 48 | CreateCompatibleDC | |
| GDI32.dll | 53 | CreateDIBSection | |
| GDI32.dll | 19 | BitBlt | |
| GDI32.dll | 638 | SetBkColor | |
| GDI32.dll | 239 | EndDoc | |
| GDI32.dll | 242 | EndPage | |
| GDI32.dll | 690 | StartPage | |
| GDI32.dll | 688 | StartDocW | |
| GDI32.dll | 660 | SetMapMode | |
| GDI32.dll | 459 | GetDeviceCaps | |
| GDI32.dll | 542 | GetTextExtentPoint32W | |
| GDI32.dll | 312 | ExtTextOutW | |
| GDI32.dll | 676 | SetTextAlign | |
| GDI32.dll | 617 | RestoreDC | |
| GDI32.dll | 607 | Rectangle | |
| GDI32.dll | 75 | CreatePen | |
| GDI32.dll | 671 | SetROP2 | |
| GDI32.dll | 624 | SaveDC | |
| GDI32.dll | 47 | CreateCompatibleBitmap | |
| GDI32.dll | 566 | LineTo | |
| GDI32.dll | 570 | MoveToEx | |
| GDI32.dll | 550 | GetTextMetricsW | |
| GDI32.dll | 599 | Polyline | |
| GDI32.dll | 64 | CreateFontIndirectW | |
| COMDLG32.dll | 8 | FindTextW | |
| COMDLG32.dll | 14 | GetSaveFileNameW | |
| COMDLG32.dll | 21 | PrintDlgW | |
| COMDLG32.dll | 3 | ChooseFontW | |
| COMDLG32.dll | 12 | GetOpenFileNameW | |
| COMDLG32.dll | 1 | ChooseColorW | |
| ADVAPI32.dll | 507 | OpenServiceW | |
| ADVAPI32.dll | 608 | RegOpenKeyExA | |
| ADVAPI32.dll | 621 | RegQueryValueExA | |
| ADVAPI32.dll | 623 | RegQueryValueW | |
| ADVAPI32.dll | 641 | RegUnLoadKeyW | |
| ADVAPI32.dll | 616 | RegQueryInfoKeyW | |
| ADVAPI32.dll | 602 | RegLoadKeyW | |
| ADVAPI32.dll | 371 | ImpersonateLoggedOnUser | |
| ADVAPI32.dll | 656 | RevertToSelf | |
| ADVAPI32.dll | 592 | RegEnumKeyW | |
| ADVAPI32.dll | 399 | LookupAccountNameW | |
| ADVAPI32.dll | 405 | LookupPrivilegeNameW | |
| ADVAPI32.dll | 713 | StartServiceW | |
| ADVAPI32.dll | 92 | ControlService | |
| ADVAPI32.dll | 87 | CloseServiceHandle | |
| ADVAPI32.dll | 552 | QueryServiceStatus | |
| ADVAPI32.dll | 389 | IsValidSecurityDescriptor | |
| ADVAPI32.dll | 551 | QueryServiceObjectSecurity | |
| ADVAPI32.dll | 703 | SetServiceObjectSecurity | |
| ADVAPI32.dll | 483 | MapGenericMask | |
| ADVAPI32.dll | 96 | ControlTraceW | |
| ADVAPI32.dll | 715 | StartTraceW | |
| ADVAPI32.dll | 89 | CloseTrace | |
| ADVAPI32.dll | 685 | SetKernelObjectSecurity | |
| ADVAPI32.dll | 309 | GetKernelObjectSecurity | |
| ADVAPI32.dll | 505 | OpenSCManagerW | |
| ADVAPI32.dll | 124 | CreateProcessAsUserW | |
| ADVAPI32.dll | 564 | RegConnectRegistryW | |
| ADVAPI32.dll | 283 | FlushTraceW | |
| ADVAPI32.dll | 108 | ConvertSidToStringSidW | |
| ADVAPI32.dll | 32 | AllocateAndInitializeSid | |
| ADVAPI32.dll | 706 | SetTokenInformation | |
| ADVAPI32.dll | 334 | GetSecurityInfo | |
| ADVAPI32.dll | 374 | InitializeAcl | |
| ADVAPI32.dll | 540 | ProcessTrace | |
| ADVAPI32.dll | 511 | OpenTraceW | |
| ADVAPI32.dll | 560 | RegCloseKey | |
| ADVAPI32.dll | 622 | RegQueryValueExW | |
| ADVAPI32.dll | 609 | RegOpenKeyExW | |
| ADVAPI32.dll | 31 | AdjustTokenPrivileges | |
| ADVAPI32.dll | 407 | LookupPrivilegeValueW | |
| ADVAPI32.dll | 503 | OpenProcessToken | |
| ADVAPI32.dll | 580 | RegDeleteKeyW | |
| ADVAPI32.dll | 638 | RegSetValueExW | |
| ADVAPI32.dll | 572 | RegCreateKeyW | |
| ADVAPI32.dll | 569 | RegCreateKeyExW | |
| ADVAPI32.dll | 584 | RegDeleteValueW | |
| ADVAPI32.dll | 612 | RegOpenKeyW | |
| ADVAPI32.dll | 548 | QueryServiceConfigW | |
| ADVAPI32.dll | 594 | RegEnumValueW | |
| ADVAPI32.dll | 118 | CopySid | |
| ADVAPI32.dll | 310 | GetLengthSid | |
| ADVAPI32.dll | 401 | LookupAccountSidW | |
| ADVAPI32.dll | 263 | EqualSid | |
| ADVAPI32.dll | 343 | GetSidSubAuthority | |
| ADVAPI32.dll | 344 | GetSidSubAuthorityCount | |
| ADVAPI32.dll | 341 | GetSidIdentifierAuthority | |
| ADVAPI32.dll | 390 | IsValidSid | |
| ADVAPI32.dll | 346 | GetTokenInformation | |
| ADVAPI32.dll | 413 | LsaClose | |
| ADVAPI32.dll | 427 | LsaFreeMemory | |
| ADVAPI32.dll | 420 | LsaEnumerateAccountRights | |
| ADVAPI32.dll | 445 | LsaOpenPolicy | |
| ADVAPI32.dll | 288 | FreeSid | |
| ADVAPI32.dll | 699 | SetSecurityInfo | |
| ADVAPI32.dll | 16 | AddAccessAllowedAce | |
| ADVAPI32.dll | 22 | AddAce | |
| ADVAPI32.dll | 291 | GetAce | |
| SHELL32.dll | 207 | SHGetMalloc | |
| SHELL32.dll | 189 | SHGetFileInfoW | |
| SHELL32.dll | 223 | SHGetSpecialFolderLocation | |
| SHELL32.dll | 123 | SHBrowseForFolderW | |
| SHELL32.dll | 215 | SHGetPathFromIDListW | |
| SHELL32.dll | 289 | ShellExecuteExW | |
| SHELL32.dll | 302 | Shell_NotifyIconW | |
| SHELL32.dll | 290 | ShellExecuteW | |
| ole32.dll | 16 | CoCreateInstance | |
| ole32.dll | 62 | CoInitialize | |
| ole32.dll | 108 | CoUninitialize | |
| ole32.dll | 99 | CoSetProxyBlanket | |
| ole32.dll | 104 | CoTaskMemFree | |
| OLEAUT32.dll | 19 | ||
| OLEAUT32.dll | 149 | ||
| OLEAUT32.dll | 4 | ||
| OLEAUT32.dll | 150 | ||
| OLEAUT32.dll | 20 | ||
| OLEAUT32.dll | 2 | ||
| OLEAUT32.dll | 7 | ||
| OLEAUT32.dll | 6 | ||
| OLEAUT32.dll | 9 | ||
| OLEAUT32.dll | 8 | ||
| OLEAUT32.dll | 25 | ||
| OLEAUT32.dll | 12 | ||
| OLEAUT32.dll | 16 | ||
| OLEAUT32.dll | 24 | ||
| OLEAUT32.dll | 23 | ||
| PSAPI.DLL | 16 | GetModuleFileNameExW |
StringTable 040904e4
| CompanyName | Sysinternals - www.sysinternals.com |
| FileDescription | Sysinternals Process Explorer |
| FileVersion | 15.40 |
| InternalName | Process Explorer |
| LegalCopyright | Copyright © 1998-2013 Mark Russinovich |
| LegalTrademarks | Copyright (C) 1998-2013 Mark Russinovich |
| OriginalFilename | Procexp.exe |
| ProductName | Process Explorer |
| ProductVersion | 15.40 |
VS_FIXEDFILEINFO
| FileVersion | 15.40.0.0 |
| ProductVersion | 15.40.0.0 |
| StrucVersion | 0x10000 |
| FileFlagsMask | 0x3f |
| FileFlags | 8 |
| FileOS | 4 |
| FileType | 1 |
| FileSubtype | 0 |
Signers (1)
issuer: /C=US/ST=Washington/L=Redmond/O=Microsoft Corporation/CN=Microsoft Code Signing PCA
serial: 33000000B011AF0A8BD03B9FDD0001000000B0
Certificates (4)
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:00:00:00:33:e5:27:86:a3:0e:4a:2a:80:00:00:00:00:00:33
Signature Algorithm: sha1WithRSAEncryption
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Time-Stamp PCA
Validity
Not Before: Mar 27 20:08:23 2013 GMT
Not After : Jun 27 20:08:23 2014 GMT
Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, OU=MOPR, OU=nCipher DSE ESN:F528-3777-8A76, CN=Microsoft Time-Stamp Service
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ca:de:ca:19:0f:1f:96:56:82:5f:d8:42:32:d4:
08:6d:b6:9d:c0:c2:ed:7c:38:ab:58:33:ad:6b:81:
50:b8:88:21:0a:5d:af:97:2d:90:5a:c7:c3:2e:b2:
4c:d4:63:74:58:fd:df:c5:89:54:d0:0b:cc:fd:9c:
84:11:79:ac:a3:21:22:6d:33:e0:ae:de:25:40:45:
92:4e:0d:63:08:2b:8b:37:dd:4f:07:6a:dc:2a:cf:
10:5a:8f:57:5d:9d:3d:fa:17:63:02:c6:70:3e:bb:
22:ed:5b:b1:f7:32:ba:e4:71:bc:79:ff:f8:cb:e9:
57:3f:74:7b:e6:f2:7d:7c:57:58:2f:ac:d2:0e:a8:
d9:88:d9:40:1f:3a:22:41:e2:09:26:02:a0:cc:e5:
25:ce:8c:67:83:df:46:f8:85:4d:c3:da:66:1e:c7:
73:7e:3b:b4:76:17:a6:a5:a0:a0:74:55:a8:e5:60:
18:41:62:38:c7:65:46:ab:04:16:66:56:ea:f9:a6:
cb:42:cf:5d:54:64:2f:81:f8:cf:38:00:0f:10:6b:
e1:83:2e:8d:3e:48:ec:49:56:4a:ec:9a:69:f4:cb:
0f:10:fb:07:34:4a:62:6c:01:8d:6e:c7:20:84:ca:
5c:d1:63:99:1e:8e:5d:ec:0f:a5:16:48:aa:6b:de:
21:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:58:1B:3E:ED:C5:F1:06:93:BE:31:3D:36:B4:AC:0B:5D:32:F0:81
X509v3 Authority Key Identifier:
23:34:F8:D9:52:46:70:0A:ED:40:FB:76:FB:B3:2B:B0:C3:35:B3:0F
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.microsoft.com/pki/crl/products/MicrosoftTimeStampPCA.crl
Authority Information Access:
CA Issuers - URI:http://www.microsoft.com/pki/certs/MicrosoftTimeStampPCA.crt
X509v3 Extended Key Usage:
Time Stamping
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
02:ff:e3:8c:03:ea:ef:7e:38:b9:b9:7c:9f:3b:52:83:a4:fa:
23:38:d4:03:b8:6a:59:b5:ea:e0:6f:88:03:f4:6f:51:6a:95:
3a:75:85:e8:1c:dc:07:c5:4e:9d:1b:a8:ce:24:47:14:24:4f:
35:77:b1:9c:bc:27:7b:8f:5d:4f:fc:06:8b:97:97:f9:29:9b:
f7:40:1d:52:81:8e:76:48:03:7e:f2:9b:17:b7:ae:d9:5b:22:
91:63:3b:32:5f:35:fb:c6:91:3c:cc:ef:0e:99:80:3e:06:91:
38:13:7a:0c:4c:be:33:db:bf:ed:ad:41:c6:7c:1b:24:7c:13:
dc:0a:fc:4b:8a:20:05:1d:09:89:91:39:07:4e:21:4e:de:6c:
7c:70:bb:ab:f1:20:8e:f8:98:78:60:dc:8b:94:cf:65:be:96:
90:0f:a0:9c:84:ed:5c:b5:7c:41:a0:61:2d:bd:43:67:65:1a:
2a:82:d4:a7:8a:59:f7:32:e3:a3:e7:c5:8d:b2:22:bb:92:28:
d8:b0:8c:53:8f:68:47:47:a1:d8:01:b0:f1:61:15:c4:17:a1:
2d:e3:3a:6c:4f:6f:af:3d:ee:de:29:b0:44:cb:c3:92:67:ba:
00:ce:0f:8e:11:ef:d1:02:82:31:49:94:98:9d:51:48:78:ad:
1d:d6:40:b6
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Signature Algorithm: sha1WithRSAEncryption
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Code Signing PCA
Validity
Not Before: Jan 24 22:33:39 2013 GMT
Not After : Apr 24 22:33:39 2014 GMT
Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, OU=MOPR, CN=Microsoft Corporation
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:e8:af:5c:a2:20:0d:f8:28:7c:bc:05:7b:7f:ad:
ee:eb:76:ac:28:53:3f:3a:db:40:7d:b3:8e:33:e6:
57:3f:a5:51:15:34:54:a5:cf:b4:8b:a9:3f:a8:37:
e1:2d:50:ed:35:16:4e:ef:4d:7a:db:13:76:88:b0:
2c:f0:59:5c:a9:eb:e1:d7:29:75:e4:1b:85:27:9b:
f3:f8:2d:9e:41:36:2b:0b:40:fb:be:3b:ba:b9:5c:
75:93:16:52:4b:ca:33:c5:37:b0:f3:eb:7e:a8:f5:
41:15:5c:08:65:1d:21:37:f0:2c:ba:22:0b:10:b1:
10:9d:77:22:85:84:7c:4f:b9:1b:90:b0:f5:a3:fe:
8b:f4:0c:9a:4e:a0:f5:c9:0a:21:e2:aa:e3:01:36:
47:fd:2f:82:6a:81:03:f5:a9:35:dc:94:57:9d:fb:
4b:d4:0e:82:db:38:8f:12:fe:e3:d6:7a:74:88:64:
e1:62:c4:25:2e:2a:ae:9d:18:1f:0e:1e:b6:c2:af:
24:b4:0e:50:bc:de:1c:93:5c:49:a6:79:b5:b6:db:
ce:f9:70:7b:28:01:84:b8:2a:29:cf:bf:a9:05:05:
e1:e0:0f:71:4d:fd:ad:5c:23:83:29:eb:c7:c5:4a:
c8:e8:27:84:d3:7e:c6:43:0b:95:00:05:b1:4f:65:
71:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
Code Signing
X509v3 Subject Key Identifier:
59:71:A6:5A:33:4D:DA:98:07:80:FF:84:1E:BE:87:F9:72:32:41:F2
X509v3 Subject Alternative Name:
DirName:/OU=MOPR/serialNumber=31595\+4faf0b71-ad37-4aa3-a671-76bc052344ad
X509v3 Authority Key Identifier:
CB:11:E8:CA:D2:B4:16:58:01:C9:37:2E:33:16:16:B9:4C:9A:0A:1F
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.microsoft.com/pki/crl/products/MicCodSigPCA_08-31-2010.crl
Authority Information Access:
CA Issuers - URI:http://www.microsoft.com/pki/certs/MicCodSigPCA_08-31-2010.crt
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
31:d7:6e:2a:12:57:33:81:d5:9d:c6:eb:f9:3a:d4:44:4d:08:
9e:ee:5e:df:6a:5b:b7:79:cf:02:9c:bc:76:68:9e:90:a1:9c:
0b:c3:7f:a2:8c:f1:4d:ba:95:39:fb:0d:e0:e1:9b:f4:5d:24:
0f:1b:8d:88:15:3a:7c:db:ad:ce:b3:c9:6c:ba:39:2c:45:7d:
24:11:54:26:30:0d:0d:ff:47:ea:03:07:e5:e4:66:5d:2c:7b:
9d:1d:a9:10:fa:1c:b0:74:f2:4f:69:6b:9e:a9:24:84:da:ed:
96:a0:df:73:a4:ef:6a:1a:ac:4b:62:9e:f1:7c:c0:14:7f:48:
cd:4d:b2:44:f9:f0:3c:93:6d:42:d8:e8:7c:e6:17:a0:9b:68:
68:09:28:f9:02:97:ef:11:03:ba:67:52:ad:c1:e9:b3:73:a6:
d2:63:cd:4a:e2:3e:e4:f3:4e:fd:ff:a1:e0:bb:02:13:3b:5d:
20:de:55:3f:a3:ae:90:40:31:38:75:28:5e:04:a9:46:6d:e6:
f5:7a:79:40:bd:1f:cd:e8:45:d5:ae:e2:5d:3e:f5:75:c7:e6:
66:63:60:cc:d5:9a:84:87:8d:24:30:f7:ef:34:d0:63:1d:b1:
42:67:4a:0e:4b:bf:3a:0e:ef:b6:95:3a:a7:38:e4:25:92:08:
a6:88:66:82
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:33:26:1a:00:00:00:00:00:31
Signature Algorithm: sha1WithRSAEncryption
Issuer: DC=com, DC=microsoft, CN=Microsoft Root Certificate Authority
Validity
Not Before: Aug 31 22:19:32 2010 GMT
Not After : Aug 31 22:29:32 2020 GMT
Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Code Signing PCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b2:72:59:5c:19:30:64:bf:1d:9a:60:20:20:42:
99:76:53:6c:3e:1b:d6:6f:cc:cb:f1:ea:6b:fe:97:
16:10:e0:df:3a:74:83:1a:b7:2f:a0:32:ec:ff:de:
c2:42:4e:23:d5:72:00:db:35:57:0a:89:ca:ae:20:
49:f4:f0:68:ac:4d:4b:8d:a5:bd:79:4b:71:9b:47:
07:da:fd:25:df:9d:75:88:cf:aa:73:44:7f:d7:81:
db:f3:bd:f2:36:a4:c9:5c:45:dc:af:ad:3d:e0:28:
68:97:1a:a7:a5:72:73:56:f1:17:94:e4:fd:35:94:
72:a0:d6:76:5f:1e:77:45:83:85:38:16:d0:73:5b:
05:ba:67:52:8d:a5:b2:69:2f:da:19:0b:fe:92:74:
29:e2:76:2f:54:dd:14:30:59:f8:d2:8d:62:fd:cb:
c9:5f:46:31:50:b9:27:13:e4:40:30:cf:72:29:10:
28:22:c7:37:4e:3d:a0:32:3d:90:cd:a1:38:06:85:
5c:4e:56:82:28:2a:05:32:b7:4b:d7:4f:63:e7:d2:
2d:62:f1:45:3d:e7:ac:08:00:f6:46:a1:9e:d1:5b:
8c:26:53:e8:7a:aa:4a:f2:46:cf:37:3c:38:9e:b4:
77:5c:a5:17:9e:8d:cb:11:8f:56:3c:c1:ac:09:5f:
03:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
CB:11:E8:CA:D2:B4:16:58:01:C9:37:2E:33:16:16:B9:4C:9A:0A:1F
X509v3 Key Usage:
Digital Signature, Certificate Sign, CRL Sign
1.3.6.1.4.1.311.21.1:
.....
1.3.6.1.4.1.311.21.2:
....1N.&....`;.1o.<..-
1.3.6.1.4.1.311.20.2:
.
.S.u.b.C.A
X509v3 Authority Key Identifier:
0E:AC:82:60:40:56:27:97:E5:25:13:FC:2A:E1:0A:53:95:59:E4:A4
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.microsoft.com/pki/crl/products/microsoftrootcert.crl
Authority Information Access:
CA Issuers - URI:http://www.microsoft.com/pki/certs/MicrosoftRootCert.crt
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
59:39:3e:7f:26:46:af:eb:6f:40:b1:32:b5:6a:eb:0e:2f:6e:
a8:49:f7:eb:5f:75:ed:4c:3b:2d:d7:43:ad:0b:fe:cb:e9:2d:
31:a3:23:cc:7c:50:98:80:21:5d:ac:3d:2f:4c:ba:a2:a8:56:
9c:e3:70:bb:b8:b4:f8:79:b5:49:72:f7:3e:ea:41:7f:ca:e1:
0c:17:69:cb:a5:9c:20:2d:fa:0b:50:c4:56:cd:2d:e3:4a:d2:
bc:70:e7:a8:0d:a2:03:a5:56:e0:b8:8a:4b:57:f2:95:42:9c:
f1:f3:ef:ee:e3:86:1f:34:3c:b8:56:9a:f0:53:23:85:2a:a4:
82:1c:93:e2:94:07:1d:f2:e2:4e:f8:8c:a1:ca:e8:13:a5:91:
4e:c8:1b:d2:8f:72:95:2a:71:6d:9b:1a:f8:1c:f0:53:d6:67:
cc:22:ff:5c:1d:cd:a2:8c:bd:27:b2:79:63:56:44:a2:51:cd:
f9:e9:a3:58:56:dd:9b:02:45:44:2f:5f:f4:da:ae:d4:82:32:
6e:fc:a4:95:13:e4:eb:69:e7:a9:a2:2c:be:c8:2b:10:0e:65:
8e:99:db:f5:a2:fa:12:26:09:65:38:94:f1:7a:1f:4a:bb:d1:
e1:56:e8:d0:78:96:18:5c:c9:35:16:5f:dd:93:1d:49:8e:2d:
be:ad:34:44:1c:ee:10:15:1a:00:5d:dd:35:5b:21:ce:98:c7:
09:ee:85:0e:8c:4f:6d:0e:13:4e:3d:7c:29:48:9c:72:d1:f3:
6c:ca:c1:ec:70:a3:57:92:57:7d:94:8d:a0:1b:48:03:5a:f7:
cf:a3:67:0a:74:a5:36:ed:2d:2f:17:c8:e6:72:37:12:f4:6f:
b1:3c:67:82:f9:52:b2:8d:33:16:65:1e:0e:8a:dd:10:de:64:
f4:6f:ce:46:d4:d3:17:e9:79:c4:04:b4:d3:fb:2c:df:1f:8a:
9e:ac:0a:fb:13:27:40:ad:e4:f9:e1:a9:7f:46:bb:07:60:47:
65:60:40:4e:b0:42:ec:4e:ed:b3:76:79:d8:0a:34:09:6d:1c:
80:31:1f:e2:0e:54:dd:e5:a1:fb:e5:47:10:ad:64:98:ff:50:
16:2e:7c:bf:05:21:7a:e2:95:41:27:69:c3:93:8f:95:c9:8d:
d8:9b:21:ae:0d:5c:9c:f0:a2:ae:86:68:83:0c:6a:2d:bb:76:
6b:00:1d:96:ad:f2:16:7b:f6:16:83:24:b9:88:cf:6a:a8:47:
31:2f:9a:dc:e3:71:3d:d7:00:7e:62:47:d1:ce:88:c9:b8:18:
fa:0e:72:8d:c1:a3:3d:af:02:40:6a:ff:69:9b:96:e2:10:a8:
10:b4:37:50:08:d6:c3:3d
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:16:68:34:00:00:00:00:00:1c
Signature Algorithm: sha1WithRSAEncryption
Issuer: DC=com, DC=microsoft, CN=Microsoft Root Certificate Authority
Validity
Not Before: Apr 3 12:53:09 2007 GMT
Not After : Apr 3 13:03:09 2021 GMT
Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Time-Stamp PCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:9f:a1:6c:b1:df:db:48:92:2a:7c:6b:2e:19:e1:
bd:e2:e3:c5:99:51:23:50:ad:ce:dd:18:4e:24:0f:
ee:d1:a7:d1:4c:ad:74:30:20:11:eb:07:d5:54:95:
15:49:94:1b:42:92:ae:98:5c:30:26:da:00:6b:e8:
7b:bd:ec:89:07:0f:f7:0e:04:98:f0:89:cc:1f:cb:
33:24:87:9d:f2:f4:67:1c:2c:fc:7b:e7:88:1d:ea:
e7:4e:a3:a1:c1:23:53:ca:8d:fa:45:cf:09:d0:5e:
af:d0:b0:42:04:a2:f9:a6:6c:93:67:d7:28:dc:46:
53:b0:86:d0:e5:28:46:2e:27:ac:86:4f:55:52:0c:
e4:03:2c:fb:6a:90:90:30:6e:87:f3:59:30:9d:fa:
7e:d6:97:b3:e8:21:97:7e:f8:d2:13:f3:08:b7:53:
6d:52:b4:45:90:9f:48:00:4a:47:66:11:27:29:66:
a8:97:e4:d3:06:81:4a:a2:f9:84:a7:11:47:14:09:
82:9f:84:ed:55:78:fe:01:9a:1d:50:08:85:00:10:
30:46:ed:b7:de:23:46:bb:c4:2d:54:9f:af:1e:78:
41:31:77:cc:9b:df:3b:83:93:a1:61:02:b5:1d:0d:
b1:fc:f7:9b:b2:01:ce:22:4b:54:ff:f9:05:c3:c2:
20:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
23:34:F8:D9:52:46:70:0A:ED:40:FB:76:FB:B3:2B:B0:C3:35:B3:0F
X509v3 Key Usage:
Digital Signature, Certificate Sign, CRL Sign
1.3.6.1.4.1.311.21.1:
...
X509v3 Authority Key Identifier:
keyid:0E:AC:82:60:40:56:27:97:E5:25:13:FC:2A:E1:0A:53:95:59:E4:A4
DirName:/DC=com/DC=microsoft/CN=Microsoft Root Certificate Authority
serial:79:AD:16:A1:4A:A0:A5:AD:4C:73:58:F4:07:13:2E:65
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.microsoft.com/pki/crl/products/microsoftrootcert.crl
Authority Information Access:
CA Issuers - URI:http://www.microsoft.com/pki/certs/MicrosoftRootCert.crt
X509v3 Extended Key Usage:
Time Stamping
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
10:97:8a:c3:5c:03:44:36:dd:e9:b4:ad:77:db:ce:79:51:4d:
01:b1:2e:74:71:5b:6d:0c:13:ab:ce:be:7b:8f:b8:2e:d4:12:
a2:8c:6d:62:b8:57:02:cb:4e:20:13:50:99:dd:7a:40:e2:57:
bb:af:58:9a:1c:e1:1d:01:86:ac:bb:78:f2:8b:d0:ec:3b:01:
ee:e2:be:8f:0a:05:c8:8d:48:e2:f0:53:15:dd:4f:ab:92:e4:
e7:8d:6a:d5:80:c1:e6:94:f2:06:2f:85:03:e9:91:2a:24:22:
70:fb:f6:fc:e4:78:99:2e:0d:f7:07:e2:70:bc:18:4e:9d:8e:
6b:0a:72:95:b8:a1:39:9c:67:2d:c5:51:0e:ea:62:5c:3f:16:
98:8b:20:3f:e2:07:1a:32:f9:cc:31:4a:76:31:3d:2b:72:0b:
c8:ea:70:3d:ff:85:0a:13:df:c2:0a:61:8e:f0:d7:b8:17:eb:
4e:8b:7f:c5:35:2b:5e:a3:bf:eb:bc:7d:0b:42:7b:d4:53:72:
21:ee:30:ca:bb:78:65:5c:5b:01:17:0a:14:0e:d2:da:14:98:
f5:3c:b9:66:58:b3:2d:2f:e7:f9:85:86:cc:51:56:e8:9d:70:
94:6c:ac:39:4c:d4:f6:79:bf:aa:18:7a:62:29:ef:a2:9b:29:
34:06:77:1a:62:c9:3d:1e:6d:1f:82:f0:0b:c7:2c:bb:cf:43:
b3:e5:f9:ec:7d:b5:e3:a4:a8:74:35:b8:4e:c5:71:23:12:26:
76:0b:3c:52:8c:71:5a:46:43:14:bc:b3:b3:b0:4d:67:c8:9f:
42:ff:80:79:21:80:9e:15:30:66:e8:42:12:5e:1a:c8:9e:22:
21:d0:43:e9:2b:e9:bb:f4:48:cc:2c:d4:d8:32:80:4c:26:2a:
48:24:5f:5a:ea:56:ef:a6:de:99:9d:ca:3a:6f:bd:81:27:74:
06:11:ee:76:21:bf:9b:82:c1:27:54:b6:b1:6a:3d:89:a1:76:
61:b4:6e:a1:13:a6:bf:aa:47:f0:12:6f:fd:8a:32:6c:b2:fe:
df:51:c8:8c:23:c9:66:bd:9d:1d:87:12:64:02:3d:2d:af:59:
8f:b8:e4:21:e5:b5:b0:ca:63:b4:78:54:05:d4:41:2e:50:ac:
94:b0:a5:78:ab:b3:a0:96:75:1a:d9:92:87:13:75:22:2f:32:
a8:08:6e:a0:5b:8c:25:bf:a0:ef:84:ca:21:d6:eb:1e:4f:c9:
9a:ee:49:e0:f7:01:65:6f:89:0b:7d:c8:69:c8:e6:6e:ea:a7:
97:ce:31:29:ff:0e:c5:5b:5c:d8:4d:1b:a1:d8:fa:2f:9e:3f:
2e:55:16:6b:c9:13:a3:fd
pkcs7-signedData
- 1
- SHA1: nil
- 1.3.6.1.4.1.311.2.1.4
- #0
- 1.3.6.1.4.1.311.2.1.15
- :
- SHA1
1f 88 38 df 46 4f 67 08 6e 13 38 56 a1 4f 20 3c |..8.FOg.n.8V.O <| 05 37 b5 d3 |.7.. |
- 1.3.6.1.4.1.311.2.1.15
- #0
- unnamed
- Certificate #0
- 2
- 33:00:00:00:33:E5:27:86:A3:0E:4A:2A:80:00:00:00:
00:00:33 - RSA-SHA1: nil
- Issuer
- C: US
- ST: Washington
- L: Redmond
- O: Microsoft Corporation
- CN: Microsoft Time-Stamp PCA
- 2013-03-27 20:08:23 UTC: 2014-06-27 20:08:23 UTC
- Subject
- C: US
- ST: Washington
- L: Redmond
- O: Microsoft Corporation
- OU: MOPR
- OU: nCipher DSE ESN:F528-3777-8A76
- CN: Microsoft Time-Stamp Service
- #5
- rsaEncryption: nil
- CA:DE:CA:19:0F:1F:96:56:82:5F:D8:42:32:D4:08:6D:
B6:9D:C0:C2:ED:7C:38:AB:58:33:AD:6B:81:50:B8:88:
21:0A:5D:AF:97:2D:90:5A:C7:C3:2E:B2:4C:D4:63:74:
58:FD:DF:C5:89:54:D0:0B:CC:FD:9C:84:11:79:AC:A3:
21:22:6D:33:E0:AE:DE:25:40:45:92:4E:0D:63:08:2B:
8B:37:DD:4F:07:6A:DC:2A:CF:10:5A:8F:57:5D:9D:3D:
FA:17:63:02:C6:70:3E:BB:22:ED:5B:B1:F7:32:BA:E4:
71:BC:79:FF:F8:CB:E9:57:3F:74:7B:E6:F2:7D:7C:57:
58:2F:AC:D2:0E:A8:D9:88:D9:40:1F:3A:22:41:E2:09:
26:02:A0:CC:E5:25:CE:8C:67:83:DF:46:F8:85:4D:C3:
DA:66:1E:C7:73:7E:3B:B4:76:17:A6:A5:A0:A0:74:55:
A8:E5:60:18:41:62:38:C7:65:46:AB:04:16:66:56:EA:
F9:A6:CB:42:CF:5D:54:64:2F:81:F8:CF:38:00:0F:10:
6B:E1:83:2E:8D:3E:48:EC:49:56:4A:EC:9A:69:F4:CB:
0F:10:FB:07:34:4A:62:6C:01:8D:6E:C7:20:84:CA:5C:
D1:63:99:1E:8E:5D:EC:0F:A5:16:48:AA:6B:DE:21:2F: 0x010001
- #6
- subjectKeyIdentifier:
00 58 1b 3e ed c5 f1 06 93 be 31 3d 36 b4 ac 0b |.X.>......1=6...| 5d 32 f0 81 |]2.. |
- authorityKeyIdentifier:
23 34 f8 d9 52 46 70 0a ed 40 fb 76 fb b3 2b b0 |#4..RFp..@.v..+.| c3 35 b3 0f |.5.. |
- crlDistributionPoints: http://crl.microsoft.com/pki/crl/products/MicrosoftTimeStampPCA.crl
- authorityInfoAccess
- caIssuers: http://www.microsoft.com/pki/certs/MicrosoftTimeStampPCA.crt
- extendedKeyUsage: timeStamping
- subjectKeyIdentifier:
- 33:00:00:00:33:E5:27:86:A3:0E:4A:2A:80:00:00:00:
- RSA-SHA1:
02 ff e3 8c 03 ea ef 7e 38 b9 b9 7c 9f 3b 52 83 |.......~8..|.;R.| a4 fa 23 38 d4 03 b8 6a 59 b5 ea e0 6f 88 03 f4 |..#8...jY...o...| 6f 51 6a 95 3a 75 85 e8 1c dc 07 c5 4e 9d 1b a8 |oQj.:u......N...| ce 24 47 14 24 4f 35 77 b1 9c bc 27 7b 8f 5d 4f |.$G.$O5w...'{.]O| fc 06 8b 97 97 f9 29 9b f7 40 1d 52 81 8e 76 48 |......)..@.R..vH| 03 7e f2 9b 17 b7 ae d9 5b 22 91 63 3b 32 5f 35 |.~......[".c;2_5| fb c6 91 3c cc ef 0e 99 80 3e 06 91 38 13 7a 0c |...<.....>..8.z.| 4c be 33 db bf ed ad 41 c6 7c 1b 24 7c 13 dc 0a |L.3....A.|.$|...| fc 4b 8a 20 05 1d 09 89 91 39 07 4e 21 4e de 6c |.K. .....9.N!N.l| 7c 70 bb ab f1 20 8e f8 98 78 60 dc 8b 94 cf 65 ||p... ...x`....e| be 96 90 0f a0 9c 84 ed 5c b5 7c 41 a0 61 2d bd |........\.|A.a-.| 43 67 65 1a 2a 82 d4 a7 8a 59 f7 32 e3 a3 e7 c5 |Cge.*....Y.2....| 8d b2 22 bb 92 28 d8 b0 8c 53 8f 68 47 47 a1 d8 |.."..(...S.hGG..| 01 b0 f1 61 15 c4 17 a1 2d e3 3a 6c 4f 6f af 3d |...a....-.:lOo.=| ee de 29 b0 44 cb c3 92 67 ba 00 ce 0f 8e 11 ef |..).D...g.......| d1 02 82 31 49 94 98 9d 51 48 78 ad 1d d6 40 b6 |...1I...QHx...@.|
- 2
- Certificate #1
- 2
- 33:00:00:00:B0:11:AF:0A:8B:D0:3B:9F:DD:00:01:00:
00:00:B0 - RSA-SHA1: nil
- Issuer
- C: US
- ST: Washington
- L: Redmond
- O: Microsoft Corporation
- CN: Microsoft Code Signing PCA
- 2013-01-24 22:33:39 UTC: 2014-04-24 22:33:39 UTC
- Subject
- C: US
- ST: Washington
- L: Redmond
- O: Microsoft Corporation
- OU: MOPR
- CN: Microsoft Corporation
- #5
- rsaEncryption: nil
- E8:AF:5C:A2:20:0D:F8:28:7C:BC:05:7B:7F:AD:EE:EB:
76:AC:28:53:3F:3A:DB:40:7D:B3:8E:33:E6:57:3F:A5:
51:15:34:54:A5:CF:B4:8B:A9:3F:A8:37:E1:2D:50:ED:
35:16:4E:EF:4D:7A:DB:13:76:88:B0:2C:F0:59:5C:A9:
EB:E1:D7:29:75:E4:1B:85:27:9B:F3:F8:2D:9E:41:36:
2B:0B:40:FB:BE:3B:BA:B9:5C:75:93:16:52:4B:CA:33:
C5:37:B0:F3:EB:7E:A8:F5:41:15:5C:08:65:1D:21:37:
F0:2C:BA:22:0B:10:B1:10:9D:77:22:85:84:7C:4F:B9:
1B:90:B0:F5:A3:FE:8B:F4:0C:9A:4E:A0:F5:C9:0A:21:
E2:AA:E3:01:36:47:FD:2F:82:6A:81:03:F5:A9:35:DC:
94:57:9D:FB:4B:D4:0E:82:DB:38:8F:12:FE:E3:D6:7A:
74:88:64:E1:62:C4:25:2E:2A:AE:9D:18:1F:0E:1E:B6:
C2:AF:24:B4:0E:50:BC:DE:1C:93:5C:49:A6:79:B5:B6:
DB:CE:F9:70:7B:28:01:84:B8:2A:29:CF:BF:A9:05:05:
E1:E0:0F:71:4D:FD:AD:5C:23:83:29:EB:C7:C5:4A:C8:
E8:27:84:D3:7E:C6:43:0B:95:00:05:B1:4F:65:71:C5: 0x010001
- #6
- extendedKeyUsage: codeSigning
- subjectKeyIdentifier:
59 71 a6 5a 33 4d da 98 07 80 ff 84 1e be 87 f9 |Yq.Z3M..........| 72 32 41 f2 |r2A. |
- subjectAltName
- #0
- OU: MOPR
- serialNumber: 31595+4faf0b71-ad37-4aa3-a671-76bc052344ad
- #0
- authorityKeyIdentifier:
cb 11 e8 ca d2 b4 16 58 01 c9 37 2e 33 16 16 b9 |.......X..7.3...| 4c 9a 0a 1f |L... |
- crlDistributionPoints: http://crl.microsoft.com/pki/crl/products/MicCodSigPCA_08-31-2010.crl
- authorityInfoAccess
- caIssuers: http://www.microsoft.com/pki/certs/MicCodSigPCA_08-31-2010.crt
- 33:00:00:00:B0:11:AF:0A:8B:D0:3B:9F:DD:00:01:00:
- RSA-SHA1:
31 d7 6e 2a 12 57 33 81 d5 9d c6 eb f9 3a d4 44 |1.n*.W3......:.D| 4d 08 9e ee 5e df 6a 5b b7 79 cf 02 9c bc 76 68 |M...^.j[.y....vh| 9e 90 a1 9c 0b c3 7f a2 8c f1 4d ba 95 39 fb 0d |..........M..9..| e0 e1 9b f4 5d 24 0f 1b 8d 88 15 3a 7c db ad ce |....]$.....:|...| b3 c9 6c ba 39 2c 45 7d 24 11 54 26 30 0d 0d ff |..l.9,E}$.T&0...| 47 ea 03 07 e5 e4 66 5d 2c 7b 9d 1d a9 10 fa 1c |G.....f],{......| b0 74 f2 4f 69 6b 9e a9 24 84 da ed 96 a0 df 73 |.t.Oik..$......s| a4 ef 6a 1a ac 4b 62 9e f1 7c c0 14 7f 48 cd 4d |..j..Kb..|...H.M| b2 44 f9 f0 3c 93 6d 42 d8 e8 7c e6 17 a0 9b 68 |.D..<.mB..|....h| 68 09 28 f9 02 97 ef 11 03 ba 67 52 ad c1 e9 b3 |h.(.......gR....| 73 a6 d2 63 cd 4a e2 3e e4 f3 4e fd ff a1 e0 bb |s..c.J.>..N.....| 02 13 3b 5d 20 de 55 3f a3 ae 90 40 31 38 75 28 |..;] .U?...@18u(| 5e 04 a9 46 6d e6 f5 7a 79 40 bd 1f cd e8 45 d5 |^..Fm..zy@....E.| ae e2 5d 3e f5 75 c7 e6 66 63 60 cc d5 9a 84 87 |..]>.u..fc`.....| 8d 24 30 f7 ef 34 d0 63 1d b1 42 67 4a 0e 4b bf |.$0..4.c..BgJ.K.| 3a 0e ef b6 95 3a a7 38 e4 25 92 08 a6 88 66 82 |:....:.8.%....f.|
- 2
- #2
- 2
- 61:33:26:1A:00:00:00:00:00:31
- RSA-SHA1: nil
- #2
- DC: com
- DC: microsoft
- CN: Microsoft Root Certificate Authority
- 2010-08-31 22:19:32 UTC: 2020-08-31 22:29:32 UTC
- Subject
- C: US
- ST: Washington
- L: Redmond
- O: Microsoft Corporation
- CN: Microsoft Code Signing PCA
- #5
- rsaEncryption: nil
- B2:72:59:5C:19:30:64:BF:1D:9A:60:20:20:42:99:76:
53:6C:3E:1B:D6:6F:CC:CB:F1:EA:6B:FE:97:16:10:E0:
DF:3A:74:83:1A:B7:2F:A0:32:EC:FF:DE:C2:42:4E:23:
D5:72:00:DB:35:57:0A:89:CA:AE:20:49:F4:F0:68:AC:
4D:4B:8D:A5:BD:79:4B:71:9B:47:07:DA:FD:25:DF:9D:
75:88:CF:AA:73:44:7F:D7:81:DB:F3:BD:F2:36:A4:C9:
5C:45:DC:AF:AD:3D:E0:28:68:97:1A:A7:A5:72:73:56:
F1:17:94:E4:FD:35:94:72:A0:D6:76:5F:1E:77:45:83:
85:38:16:D0:73:5B:05:BA:67:52:8D:A5:B2:69:2F:DA:
19:0B:FE:92:74:29:E2:76:2F:54:DD:14:30:59:F8:D2:
8D:62:FD:CB:C9:5F:46:31:50:B9:27:13:E4:40:30:CF:
72:29:10:28:22:C7:37:4E:3D:A0:32:3D:90:CD:A1:38:
06:85:5C:4E:56:82:28:2A:05:32:B7:4B:D7:4F:63:E7:
D2:2D:62:F1:45:3D:E7:AC:08:00:F6:46:A1:9E:D1:5B:
8C:26:53:E8:7A:AA:4A:F2:46:CF:37:3C:38:9E:B4:77:
5C:A5:17:9E:8D:CB:11:8F:56:3C:C1:AC:09:5F:03:D3: 0x010001
- X509v3 extensions
- basicConstraints: true, true
- subjectKeyIdentifier:
cb 11 e8 ca d2 b4 16 58 01 c9 37 2e 33 16 16 b9 |.......X..7.3...| 4c 9a 0a 1f |L... |
- keyUsage: 0x86
- 1.3.6.1.4.1.311.21.1: 0x010001
- 1.3.6.1.4.1.311.21.2:
fd d1 31 4e d3 26 8a 95 e1 98 60 3b a8 31 6f a6 |..1N.&....`;.1o.| 3c bc d8 2d |<..- |
- 1.3.6.1.4.1.311.20.2:
00 53 00 75 00 62 00 43 00 41 |.S.u.b.C.A |
- authorityKeyIdentifier:
0e ac 82 60 40 56 27 97 e5 25 13 fc 2a e1 0a 53 |...`@V'..%..*..S| 95 59 e4 a4 |.Y.. |
- crlDistributionPoints: http://crl.microsoft.com/pki/crl/products/microsoftrootcert.crl
- authorityInfoAccess
- caIssuers: http://www.microsoft.com/pki/certs/MicrosoftRootCert.crt
- RSA-SHA1:
59 39 3e 7f 26 46 af eb 6f 40 b1 32 b5 6a eb 0e |Y9>.&F..o@.2.j..| 2f 6e a8 49 f7 eb 5f 75 ed 4c 3b 2d d7 43 ad 0b |/n.I.._u.L;-.C..| fe cb e9 2d 31 a3 23 cc 7c 50 98 80 21 5d ac 3d |...-1.#.|P..!].=| 2f 4c ba a2 a8 56 9c e3 70 bb b8 b4 f8 79 b5 49 |/L...V..p....y.I| 72 f7 3e ea 41 7f ca e1 0c 17 69 cb a5 9c 20 2d |r.>.A.....i... -| fa 0b 50 c4 56 cd 2d e3 4a d2 bc 70 e7 a8 0d a2 |..P.V.-.J..p....| 03 a5 56 e0 b8 8a 4b 57 f2 95 42 9c f1 f3 ef ee |..V...KW..B.....| e3 86 1f 34 3c b8 56 9a f0 53 23 85 2a a4 82 1c |...4<.V..S#.*...| 93 e2 94 07 1d f2 e2 4e f8 8c a1 ca e8 13 a5 91 |.......N........| 4e c8 1b d2 8f 72 95 2a 71 6d 9b 1a f8 1c f0 53 |N....r.*qm.....S| d6 67 cc 22 ff 5c 1d cd a2 8c bd 27 b2 79 63 56 |.g.".\.....'.ycV| 44 a2 51 cd f9 e9 a3 58 56 dd 9b 02 45 44 2f 5f |D.Q....XV...ED/_| f4 da ae d4 82 32 6e fc a4 95 13 e4 eb 69 e7 a9 |.....2n......i..| a2 2c be c8 2b 10 0e 65 8e 99 db f5 a2 fa 12 26 |.,..+..e.......&| 09 65 38 94 f1 7a 1f 4a bb d1 e1 56 e8 d0 78 96 |.e8..z.J...V..x.| 18 5c c9 35 16 5f dd 93 1d 49 8e 2d be ad 34 44 |.\.5._...I.-..4D| 1c ee 10 15 1a 00 5d dd 35 5b 21 ce 98 c7 09 ee |......].5[!.....| 85 0e 8c 4f 6d 0e 13 4e 3d 7c 29 48 9c 72 d1 f3 |...Om..N=|)H.r..| 6c ca c1 ec 70 a3 57 92 57 7d 94 8d a0 1b 48 03 |l...p.W.W}....H.| 5a f7 cf a3 67 0a 74 a5 36 ed 2d 2f 17 c8 e6 72 |Z...g.t.6.-/...r| 37 12 f4 6f b1 3c 67 82 f9 52 b2 8d 33 16 65 1e |7..o.
- 2
- #3
- 2
- 61:16:68:34:00:00:00:00:00:1C
- RSA-SHA1: nil
- #2
- DC: com
- DC: microsoft
- CN: Microsoft Root Certificate Authority
- 2007-04-03 12:53:09 UTC: 2021-04-03 13:03:09 UTC
- Subject
- C: US
- ST: Washington
- L: Redmond
- O: Microsoft Corporation
- CN: Microsoft Time-Stamp PCA
- #5
- rsaEncryption: nil
- 9F:A1:6C:B1:DF:DB:48:92:2A:7C:6B:2E:19:E1:BD:E2:
E3:C5:99:51:23:50:AD:CE:DD:18:4E:24:0F:EE:D1:A7:
D1:4C:AD:74:30:20:11:EB:07:D5:54:95:15:49:94:1B:
42:92:AE:98:5C:30:26:DA:00:6B:E8:7B:BD:EC:89:07:
0F:F7:0E:04:98:F0:89:CC:1F:CB:33:24:87:9D:F2:F4:
67:1C:2C:FC:7B:E7:88:1D:EA:E7:4E:A3:A1:C1:23:53:
CA:8D:FA:45:CF:09:D0:5E:AF:D0:B0:42:04:A2:F9:A6:
6C:93:67:D7:28:DC:46:53:B0:86:D0:E5:28:46:2E:27:
AC:86:4F:55:52:0C:E4:03:2C:FB:6A:90:90:30:6E:87:
F3:59:30:9D:FA:7E:D6:97:B3:E8:21:97:7E:F8:D2:13:
F3:08:B7:53:6D:52:B4:45:90:9F:48:00:4A:47:66:11:
27:29:66:A8:97:E4:D3:06:81:4A:A2:F9:84:A7:11:47:
14:09:82:9F:84:ED:55:78:FE:01:9A:1D:50:08:85:00:
10:30:46:ED:B7:DE:23:46:BB:C4:2D:54:9F:AF:1E:78:
41:31:77:CC:9B:DF:3B:83:93:A1:61:02:B5:1D:0D:B1:
FC:F7:9B:B2:01:CE:22:4B:54:FF:F9:05:C3:C2:20:0B: 0x010001
- X509v3 extensions
- basicConstraints: true, true
- subjectKeyIdentifier:
23 34 f8 d9 52 46 70 0a ed 40 fb 76 fb b3 2b b0 |#4..RFp..@.v..+.| c3 35 b3 0f |.5.. |
- keyUsage: 0x86
- 1.3.6.1.4.1.311.21.1: 0
- authorityKeyIdentifier
0e ac 82 60 40 56 27 97 e5 25 13 fc 2a e1 0a 53 |...`@V'..%..*..S| 95 59 e4 a4 |.Y.. |
- #0
- DC: com
- DC: microsoft
- CN: Microsoft Root Certificate Authority
79 ad 16 a1 4a a0 a5 ad 4c 73 58 f4 07 13 2e 65 |y...J...LsX....e|
- #0
- crlDistributionPoints: http://crl.microsoft.com/pki/crl/products/microsoftrootcert.crl
- authorityInfoAccess
- caIssuers: http://www.microsoft.com/pki/certs/MicrosoftRootCert.crt
- extendedKeyUsage: timeStamping
- RSA-SHA1:
10 97 8a c3 5c 03 44 36 dd e9 b4 ad 77 db ce 79 |....\.D6....w..y| 51 4d 01 b1 2e 74 71 5b 6d 0c 13 ab ce be 7b 8f |QM...tq[m.....{.| b8 2e d4 12 a2 8c 6d 62 b8 57 02 cb 4e 20 13 50 |......mb.W..N .P| 99 dd 7a 40 e2 57 bb af 58 9a 1c e1 1d 01 86 ac |..z@.W..X.......| bb 78 f2 8b d0 ec 3b 01 ee e2 be 8f 0a 05 c8 8d |.x....;.........| 48 e2 f0 53 15 dd 4f ab 92 e4 e7 8d 6a d5 80 c1 |H..S..O.....j...| e6 94 f2 06 2f 85 03 e9 91 2a 24 22 70 fb f6 fc |..../....*$"p...| e4 78 99 2e 0d f7 07 e2 70 bc 18 4e 9d 8e 6b 0a |.x......p..N..k.| 72 95 b8 a1 39 9c 67 2d c5 51 0e ea 62 5c 3f 16 |r...9.g-.Q..b\?.| 98 8b 20 3f e2 07 1a 32 f9 cc 31 4a 76 31 3d 2b |.. ?...2..1Jv1=+| 72 0b c8 ea 70 3d ff 85 0a 13 df c2 0a 61 8e f0 |r...p=.......a..| d7 b8 17 eb 4e 8b 7f c5 35 2b 5e a3 bf eb bc 7d |....N...5+^....}| 0b 42 7b d4 53 72 21 ee 30 ca bb 78 65 5c 5b 01 |.B{.Sr!.0..xe\[.| 17 0a 14 0e d2 da 14 98 f5 3c b9 66 58 b3 2d 2f |.........<.fX.-/| e7 f9 85 86 cc 51 56 e8 9d 70 94 6c ac 39 4c d4 |.....QV..p.l.9L.| f6 79 bf aa 18 7a 62 29 ef a2 9b 29 34 06 77 1a |.y...zb)...)4.w.| 62 c9 3d 1e 6d 1f 82 f0 0b c7 2c bb cf 43 b3 e5 |b.=.m.....,..C..| f9 ec 7d b5 e3 a4 a8 74 35 b8 4e c5 71 23 12 26 |..}....t5.N.q#.&| 76 0b 3c 52 8c 71 5a 46 43 14 bc b3 b3 b0 4d 67 |v.
- 2
- Certificate #0
- Signer
- 1
- unnamed
- #0
- C: US
- ST: Washington
- L: Redmond
- O: Microsoft Corporation
- CN: Microsoft Code Signing PCA
- 33:00:00:00:B0:11:AF:0A:8B:D0:3B:9F:DD:00:01:00:
00:00:B0
- #0
- SHA1: nil
- #3
- contentType: 1.3.6.1.4.1.311.2.1.4
- 1.3.6.1.4.1.311.2.1.11: msCodeInd
- messageDigest:
43 05 a6 30 73 62 af 8a 2b 00 d2 6a f0 6b 8a 43 |C..0sb..+..j.k.C| cc 33 6a 8a |.3j. |
- 1.3.6.1.4.1.311.2.1.12
00 53 00 79 00 73 00 69 00 6e 00 74 00 65 00 72 |.S.y.s.i.n.t.e.r| 00 6e 00 61 00 6c 00 73 00 20 00 55 00 74 00 69 |.n.a.l.s. .U.t.i| 00 6c 00 69 00 74 00 69 00 65 00 73 |.l.i.t.i.e.s |
: http://technet.microsoft.com/sysinternals
- rsaEncryption:
e1 25 8a 82 7d cf 2c 28 bb 8c c3 d5 54 79 4c 60 |.%..}.,(....TyL`| 32 8d bd a1 dd 22 cb 0e a0 a7 ce b0 b1 b7 9c 09 |2...."..........| 60 a7 22 93 12 ba 81 a3 df 5d d1 58 18 04 45 7b |`."......].X..E{| 99 ee 6a ef 74 16 ab e2 10 91 28 70 ad d7 9b 44 |..j.t.....(p...D| b5 60 d0 ac 39 1c cc 4b cc 1c 48 84 57 19 67 4e |.`..9..K..H.W.gN| eb 86 f6 f4 23 36 e6 96 f5 a1 d3 de 54 31 47 f4 |....#6......T1G.| 48 dd df 4e 6b 6d 11 d5 83 1f c6 e2 ae 0b cb 3f |H..Nkm.........?| ff 96 2f 6f e7 8c c3 a5 5c 74 7e 74 c6 69 cf 94 |../o....\t~t.i..| cd 4e 6c b5 9f 46 3b fb 3f 81 f4 25 65 75 d4 4a |.Nl..F;.?..%eu.J| 7a 0d 2c 69 a8 8f 44 d0 d0 6e 9e 89 5d a7 95 f1 |z.,i..D..n..]...| b6 a9 12 c4 a3 f9 e9 5d 59 e2 43 20 f9 ca 1e 24 |.......]Y.C ...$| 1f a9 b3 6e eb 28 87 3a d0 f7 40 58 50 ab 42 40 |...n.(.:..@XP.B@| 57 ad 21 c1 a1 ff 75 64 a5 01 1e 9a de 4d 28 02 |W.!...ud.....M(.| e3 ad 87 7b 3b bb 76 5b f1 51 90 8e a3 b7 32 3a |...{;.v[.Q....2:| 87 ed 03 64 d5 50 6f ab 98 39 7a 15 5b 79 52 25 |...d.Po..9z.[yR%| 0d b4 e6 95 ac 23 80 72 82 9b b8 9e 97 0d 2a 37 |.....#.r......*7| - countersignature
- 1
- unnamed
- #0
- C: US
- ST: Washington
- L: Redmond
- O: Microsoft Corporation
- CN: Microsoft Time-Stamp PCA
- 33:00:00:00:33:E5:27:86:A3:0E:4A:2A:80:00:00:00:
00:00:33
- #0
- SHA1: nil
- #2
- contentType: pkcs7-data
- signingTime: 2013-07-31 20:08:11 UTC
- messageDigest:
a0 30 5d 79 47 fe c7 a9 22 3e 4f 3d ab 9c 9a ce |.0]yG...">O=....| a0 a5 ad e1 |.... |
- RSA-SHA1:
9f 21 05 95 95 40 98 08 a7 02 00 d4 3b 54 db fc |.!...@......;T..| d5 20 ef 31 8e 3e 86 2c 2d 55 16 7c 9a 7e 04 df |. .1.>.,-U.|.~..| 19 c5 ef fc 9c fd f4 2b 07 95 a4 b1 78 b0 73 8c |.......+....x.s.| b6 42 e7 63 1e 7e e7 01 5b de 63 33 11 ca 13 47 |.B.c.~..[.c3...G| 03 14 e5 d5 7f f5 cc 89 b3 0a 4b 06 97 c8 59 7c |..........K...Y|| 1e f9 30 f2 42 0c 3a 83 3a e0 de df d4 76 6f 12 |..0.B.:.:....vo.| eb 13 1c bf 26 7c dc 38 bd 67 db 2f f3 f3 5e d8 |....&|.8.g./..^.| 0d 14 3c f4 bd 7d f6 8d de 28 19 59 8e e6 a1 ad |..<..}...(.Y....| 1d ed 8c 2a f9 1f 6e 40 57 01 d1 87 c4 e7 40 cb |...*..n@W.....@.| ee 10 5f cb 72 5d 51 3f 0c e3 05 d3 7b 9b 69 2a |.._.r]Q?....{.i*| 91 78 b9 41 6b 3e a3 0a 5e e4 b5 8f f5 e4 0d a8 |.x.Ak>..^.......| a6 73 02 94 bf 27 d3 d0 de 31 d7 10 29 d0 ad 91 |.s...'...1..)...| dc 93 14 a0 65 50 f8 71 62 b3 d6 1c dc 23 e5 29 |....eP.qb....#.)| d1 37 d4 33 ea cf ed 6e 6b a7 d5 fb ab 90 f6 fb |.7.3...nk.......| e4 dc 76 49 b7 29 f4 19 d8 5c 1c 73 9d c5 a2 04 |..vI.)...\.s....| 6f 6f 49 b2 10 d7 1f ee 13 81 96 60 80 e3 b5 1c |ooI........`....|
- unnamed
- 1
| offset | size | type | comment | |
|---|---|---|---|---|
| 0 | 2792448 | EXE | 07/30/2013 16:00:49 | # |
| 15c1 | 15 | HTM | # | |
| 2a9c00 | 6848 | PKCS7 | Authenticode Signature | # |
 |
| Please donate some bucks to keep this site up and running: | |
| Ko-fi | |
|---|---|
| Yandex.Money | |
| Thank you! | |
everything is OK