filenameMyCleanPC v6 march 28 2013.exe
size2863256 (0x2bb098)
md535f6ac8eeec528ac24cc49fe4d16c023
typePE32 executable (GUI) Intel 80386, for MS Windows
mimetypeapplication/x-dosexec
clamavOK
virustotal→ scan with virustotal.com
histogram

MZ Header

signatureMZ
bytes_in_last_block0x90
blocks_in_file3
num_relocs0
header_paragraphs4
min_extra_paragraphs0
max_extra_paragraphs0xffff
ss0
sp0xb8
checksum0
ip0
cs0
reloc_table_offset0x40
overlay_number0
reserved00
oem_id0
oem_info0
reserved20
reserved30
reserved40
reserved50
reserved60
lfanew0xe8

Rich Header

lib idversiontimes used
1584021944
17040219214
1754021916
131307292
1473072931
10454
17140219288
154402191
157402191

DOS stub

00000000: 0e 1f ba 0e 00 b4 09 cd  21 b8 01 4c cd 21 54 68  |........!..L.!Th|
00000010: 69 73 20 70 72 6f 67 72  61 6d 20 63 61 6e 6e 6f  |is program canno|
00000020: 74 20 62 65 20 72 75 6e  20 69 6e 20 44 4f 53 20  |t be run in DOS |
00000030: 6d 6f 64 65 2e 0d 0d 0a  24 00 00 00 00 00 00 00  |mode....$.......|

PE Header

SignaturePE
Machine0x14c
NumberOfSections6
TimeDateStamp0x50f83a42
PointerToSymbolTable0
NumberOfSymbols0
SizeOfOptionalHeader0xe0
Characteristics0x102
Magic0x10b
LinkerVersion10.0
SizeOfCode0xea800
SizeOfInitializedData0x1cf600
SizeOfUninitializedData0
AddressOfEntryPoint0x61c68
BaseOfCode0x1000
BaseOfData0xec000
ImageBase0x400000
SectionAlignment0x1000
FileAlignment0x200
OperatingSystemVersion5.1
ImageVersion0.0
SubsystemVersion5.1
Reserved10
SizeOfImage0x2c0000
SizeOfHeaders0x400
CheckSum0x2c21d9
Subsystem2
DllCharacteristics0x8140
SizeOfStackReserve0x100000
SizeOfStackCommit0x1000
SizeOfHeapReserve0x100000
SizeOfHeapCommit0x1000
LoaderFlags0
NumberOfRvaAndSizes0x10

Packer / Compiler

MS Visual C++ v8.0

Sections

namevavsizeraw sizeflags
.text0x10000xea6b40xea800R-X CODE
.rdata0xec0000x459d60x45a00R-- IDATA
.data0x1320000x8b040x5c00RW- IDATA
.tls0x13b00020x200RW- IDATA
.rsrc0x13c0000x16efe00x16f000R-- IDATA
.reloc0x2ab0000x14d800x14e00R-- IDATA DISCARDABLE

Data Directory

typevasize
EXPORT00
IMPORT0x12f9940x12c
RESOURCE0x13c0000x16efe0
EXCEPTION00
SECURITY0x2ba2000xe98
BASERELOC0x2ab0000xc11c
DEBUG00
ARCHITECTURE00
GLOBALPTR00
TLS0x118ac80x18
LOAD_CONFIG0x118a800x40
Bound_IAT00
IAT0xec0000x5ec
Delay_IAT00
CLR_Header00

TLS

raw
start		raw
end		indexcallbkszero
fill		flags
0x53b0000x53b0010x538a280x4ec74000
typenamesizecp
PNG#5000805481252
PNG#5001721521252
XML#400017051252
ICON#0348681252
ICON#173361252
ICON#1230571252
ICON#232401252
ICON#2676241252
ICON#318641252
ICON#3380561252
ICON#48721252
ICON#4169361252
ICON#5354391252
ICON#596401252
ICON#696401252
ICON#642641252
ICON#742641252
ICON#724401252
ICON#824401252
ICON#811281252
ICON#911281252
DIALOG#2016561252
DIALOG#2022321252
STRING#918221252
STRING#3585421252
STRING#36016621252
STRING#36038081252
STRING#36046361252
STRING#36052621252
STRING#36062181252
STRING#38255041252
STRING#38261741252
STRING#3838681252
RCDATA#999910739841252
GROUP_ICON#2161461252
GROUP_ICON#2161181252
VERSION#18161252
MANIFEST#115301252
idlangstring
1281033Stub
1291033Loading embedded configuration
1301033Reading embedded configuration
1311033Error
1321033This product is already installed on your computer. If you still want to install this version, please uninstall the current version first, then try again.
1331033Unable to find the embedded configuration
1341033Getting your personal software configuration
1351033An error occurred while trying to download your software configuration
1361033Reading your software configuration
1371033Installing now. Your software will be ready in a few moments.
1381033I accept the terms of the <a id="eula" href="http://www.ustechsupport.com/eula.html">End-User License Agreement</a> and <a id="privacy" href="http://www.ustechsupport.com/privacy_policy.html">Privacy Policy</a>.
1401033(866) 793-0453
1411033If you would like assistance, please call %1
1421033An error has occurred while downloading your software. Please check your internet connection and try again when you are ready.
1431033Finalizing installation
573451033Ready
576001033Create a new document New
576011033Open an existing document Open
576021033Close the active document Close
576031033Save the active document Save
576041033Save the active document with a new name Save As
576051033Change the printing options Page Setup
576061033Change the printer and printing options Print Setup
576071033Print the active document Print
576091033Display full pages Print Preview
576321033Erase the selection Erase
576331033Erase everything Erase All
576341033Copy the selection and put it on the Clipboard Copy
576351033Cut the selection and put it on the Clipboard Cut
576361033Find the specified text Find
576371033Insert Clipboard contents Paste
576401033Repeat the last action Repeat
576411033Replace specific text with different text Replace
576421033Select the entire document Select All
576431033Undo the last action Undo
576441033Redo the previously undone action Redo
576481033Open another window for the active document New Window
576491033Arrange icons at the bottom of the window Arrange Icons
576501033Arrange windows so they overlap Cascade Windows
576511033Arrange windows as non-overlapping tiles Tile Windows
576521033Arrange windows as non-overlapping tiles Tile Windows
576531033Split the active window into panes Split
576641033Display program information, version number and copyright About
576651033Quit the application; prompts to save documents Exit
576801033Switch to the next window pane Next Pane
576811033Switch back to the previous window pane Previous Pane
611841033Change the window size
611851033Change the window position
611861033Reduce the window to an icon
611871033Enlarge the window to full size
611881033Switch to the next document window
611891033Switch to the previous document window
611901033Close the active window and prompts to save the documents
612021033Restore the window to normal size
612031033Activate Task List
612151033Activate this window
614021033Open this document
module_namehintordfunction_name
KERNEL32.dll675GetVersionExA
KERNEL32.dll549GetNativeSystemInfo
KERNEL32.dll1189SetUnhandledExceptionFilter
KERNEL32.dll531GetModuleFileNameA
KERNEL32.dll449GetCurrentProcessId
KERNEL32.dll334FindResourceW
KERNEL32.dll833LoadResource
KERNEL32.dll852LockResource
KERNEL32.dll1201SizeofResource
KERNEL32.dll840LocalFree
KERNEL32.dll691GlobalAlloc
KERNEL32.dll702GlobalLock
KERNEL32.dll709GlobalUnlock
KERNEL32.dll747InterlockedDecrement
KERNEL32.dll751InterlockedIncrement
KERNEL32.dll532GetModuleFileNameW
KERNEL32.dll870MulDiv
KERNEL32.dll1346lstrcmpW
KERNEL32.dll209DeleteCriticalSection
KERNEL32.dll739InitializeCriticalSectionAndSpinCount
KERNEL32.dll155CreateMutexA
KERNEL32.dll1113SetEvent
KERNEL32.dll82CloseHandle
KERNEL32.dll130CreateEventA
KERNEL32.dll1357lstrlenA
KERNEL32.dll871MultiByteToWideChar
KERNEL32.dll514GetLastError
KERNEL32.dll1267VirtualUnlock
KERNEL32.dll1262VirtualLock
KERNEL32.dll1110SetEnvironmentVariableA
KERNEL32.dll1107SetEndOfFile
KERNEL32.dll1159SetStdHandle
KERNEL32.dll516GetLocaleInfoA
KERNEL32.dll780IsValidLocale
KERNEL32.dll269EnumSystemLocalesA
KERNEL32.dll748InterlockedExchange
KERNEL32.dll778IsValidCodePage
KERNEL32.dll567GetOEMCP
KERNEL32.dll360GetACP
KERNEL32.dll935QueryPerformanceCounter
KERNEL32.dll474GetEnvironmentStringsW
KERNEL32.dll353FreeEnvironmentStringsW
KERNEL32.dll909PeekNamedPipe
KERNEL32.dll1126SetFilePointer
KERNEL32.dll343FlushFileBuffers
KERNEL32.dll410GetConsoleCP
KERNEL32.dll1135SetHandleCount
KERNEL32.dll518GetLocaleInfoW
KERNEL32.dll768IsDebuggerPresent
KERNEL32.dll1235UnhandledExceptionFilter
KERNEL32.dll1216TerminateProcess
KERNEL32.dll717HeapCreate
KERNEL32.dll454GetDateFormatA
KERNEL32.dll661GetTimeFormatA
KERNEL32.dll181CreateThread
KERNEL32.dll282ExitThread
KERNEL32.dll370GetCPInfo
KERNEL32.dll813LCMapStringW
KERNEL32.dll467GetDriveTypeW
KERNEL32.dll960ReadFile
KERNEL32.dll611GetStartupInfoW
KERNEL32.dll723HeapSetInformation
KERNEL32.dll391GetCommandLineW
KERNEL32.dll307FindFirstFileExA
KERNEL32.dll466GetDriveTypeA
KERNEL32.dll292FileTimeToLocalFileTime
KERNEL32.dll293FileTimeToSystemTime
KERNEL32.dll281ExitProcess
KERNEL32.dll1265VirtualQuery
KERNEL32.dll1263VirtualProtect
KERNEL32.dll1048RtlUnwind
KERNEL32.dll612GetStdHandle
KERNEL32.dll499GetFileType
KERNEL32.dll428GetConsoleMode
KERNEL32.dll191CreateWaitableTimerA
KERNEL32.dll1196SetWaitableTimer
KERNEL32.dll664GetTimeZoneInformation
KERNEL32.dll479GetExitCodeProcess
KERNEL32.dll211DeleteFileA
KERNEL32.dll659GetTickCount
KERNEL32.dll715HeapAlloc
KERNEL32.dll232DuplicateHandle
KERNEL32.dll171CreateSemaphoreA
KERNEL32.dll830LoadLibraryExW
KERNEL32.dll354FreeLibrary
KERNEL32.dll1297WideCharToMultiByte
KERNEL32.dll1273WaitForSingleObject
KERNEL32.dll1022ReleaseSemaphore
KERNEL32.dll586GetProcessHeap
KERNEL32.dll719HeapFree
KERNEL32.dll633GetSystemTimeAsFileTime
KERNEL32.dll350FormatMessageW
KERNEL32.dll1316WriteConsoleW
KERNEL32.dll333FindResourceExW
KERNEL32.dll676GetVersionExW
KERNEL32.dll1139SetLastError
KERNEL32.dll1349lstrcmpiW
KERNEL32.dll1358lstrlenW
KERNEL32.dll100CompareStringW
KERNEL32.dll536GetModuleHandleW
KERNEL32.dll581GetProcAddress
KERNEL32.dll453GetCurrentThreadId
KERNEL32.dll344FlushInstructionCache
KERNEL32.dll825LeaveCriticalSection
KERNEL32.dll238EnterCriticalSection
KERNEL32.dll945RaiseException
KERNEL32.dll1271WaitForMultipleObjects
KERNEL32.dll1213SystemTimeToFileTime
KERNEL32.dll1224TlsSetValue
KERNEL32.dll1039ResetEvent
KERNEL32.dll884OpenEventA
KERNEL32.dll627GetSystemInfo
KERNEL32.dll1223TlsGetValue
KERNEL32.dll1222TlsFree
KERNEL32.dll1221TlsAlloc
KERNEL32.dll349FormatMessageA
KERNEL32.dll492GetFileInformationByHandle
KERNEL32.dll905OutputDebugStringA
KERNEL32.dll1043ResumeThread
KERNEL32.dll396GetComputerNameA
KERNEL32.dll331FindResourceA
KERNEL32.dll1317WriteFile
KERNEL32.dll143CreateFileW
KERNEL32.dll448GetCurrentProcess
KERNEL32.dll667GetUserDefaultLCID
KERNEL32.dll782IsWow64Process
KERNEL32.dll644GetTempPathA
KERNEL32.dll698GlobalFree
KERNEL32.dll745InterlockedCompareExchange
KERNEL32.dll862MoveFileA
KERNEL32.dll124CreateDirectoryA
KERNEL32.dll504GetFullPathNameA
KERNEL32.dll302FindClose
KERNEL32.dll753InterlockedPushEntrySList
KERNEL32.dll136CreateFileA
KERNEL32.dll447GetCurrentDirectoryW
KERNEL32.dll485GetFileAttributesA
KERNEL32.dll202DecodePointer
KERNEL32.dll234EncodePointer
KERNEL32.dll738InitializeCriticalSection
KERNEL32.dll1202Sleep
KERNEL32.dll617GetStringTypeW
KERNEL32.dll724HeapSize
KERNEL32.dll722HeapReAlloc
KERNEL32.dll718HeapDestroy
KERNEL32.dll752InterlockedPopEntrySList
KERNEL32.dll1257VirtualAlloc
KERNEL32.dll1260VirtualFree
KERNEL32.dll772IsProcessorFeaturePresent
KERNEL32.dll831LoadLibraryW
USER32.dll166DestroyWindow
USER32.dll708SetWindowLongW
USER32.dll406GetWindowLongW
USER32.dll331GetMenu
USER32.dll710SetWindowPos
USER32.dll762TranslateAcceleratorW
USER32.dll759TrackPopupMenuEx
USER32.dll276GetClientRect
USER32.dll735ShowWindow
USER32.dll658SetFocus
USER32.dll64CheckMenuRadioItem
USER32.dll525MessageBeep
USER32.dll563PeekMessageW
USER32.dll715SetWindowTextW
USER32.dll216EnableWindow
USER32.dll457IsChild
USER32.dll295GetDlgItem
USER32.dll533MessageBoxW
USER32.dll461IsDialogMessageW
USER32.dll175DispatchMessageW
USER32.dll764TranslateMessage
USER32.dll349GetMessageW
USER32.dll539MoveWindow
USER32.dll71ClientToScreen
USER32.dll447InvalidateRgn
USER32.dll586RedrawWindow
USER32.dll337GetMenuItemCount
USER32.dll10AppendMenuW
USER32.dll3AdjustWindowRectEx
USER32.dll521MapWindowPoints
USER32.dll351GetMonitorInfoW
USER32.dll538MonitorFromWindow
USER32.dll412GetWindowRect
USER32.dll398GetWindow
USER32.dll356GetParent
USER32.dll156DefWindowProcW
USER32.dll291GetDesktopWindow
USER32.dll687SetRectEmpty
USER32.dll748SystemParametersInfoW
USER32.dll164DestroyMenu
USER32.dll419GetWindowTextW
USER32.dll418GetWindowTextLengthW
USER32.dll621ScreenToClient
USER32.dll785UpdateWindow
USER32.dll446InvalidateRect
USER32.dll476IsWindowEnabled
USER32.dll640SetCapture
USER32.dll773UnregisterClassA
USER32.dll294GetDlgCtrlID
USER32.dll475IsWindow
USER32.dll30CallWindowProcW
USER32.dll576PtInRect
USER32.dll636SendMessageW
USER32.dll208DrawTextW
USER32.dll246FillRect
USER32.dll196DrawFocusRect
USER32.dll648SetCursor
USER32.dll288GetCursorPos
USER32.dll49CharNextW
USER32.dll14BeginPaint
USER32.dll220EndPaint
USER32.dll289GetDC
USER32.dll613ReleaseDC
USER32.dll612ReleaseCapture
USER32.dll264GetCapture
USER32.dll549OffsetRect
USER32.dll300GetFocus
USER32.dll379GetSysColor
USER32.dll491LoadCursorW
USER32.dll274GetClassNameW
USER32.dll99CreateDialogParamW
USER32.dll107CreatePopupMenu
USER32.dll615RemoveMenu
USER32.dll536MonitorFromPoint
USER32.dll674SetMenuItemInfoW
USER32.dll340GetMenuItemInfoW
USER32.dll670SetMenuDefaultItem
USER32.dll506LoadStringW
USER32.dll567PostQuitMessage
USER32.dll110CreateWindowExW
USER32.dll528MessageBoxExW
USER32.dll420GetWindowThreadProcessId
USER32.dll569PostThreadMessageW
USER32.dll503LoadMenuW
USER32.dll485LoadAcceleratorsW
USER32.dll495LoadImageW
USER32.dll160DestroyAcceleratorTable
USER32.dll462IsDlgButtonChecked
USER32.dll62CheckDlgButton
USER32.dll611RegisterWindowMessageW
USER32.dll88CreateAcceleratorTableW
USER32.dll589RegisterClassExW
USER32.dll269GetClassInfoExW
USER32.dll505LoadStringA
GDI32.dll459GetDeviceCaps
GDI32.dll19BitBlt
GDI32.dll47CreateCompatibleBitmap
GDI32.dll53CreateDIBSection
GDI32.dll691StretchBlt
GDI32.dll457GetDIBColorTable
GDI32.dll647SetDIBColorTable
GDI32.dll48CreateCompatibleDC
GDI32.dll525GetStockObject
GDI32.dll227DeleteDC
GDI32.dll678SetTextColor
GDI32.dll639SetBkMode
GDI32.dll509GetObjectW
GDI32.dll631SelectObject
GDI32.dll64CreateFontIndirectW
GDI32.dll230DeleteObject
GDI32.dll84CreateSolidBrush
ADVAPI32.dll677SetEntriesInAclA
ADVAPI32.dll616RegQueryInfoKeyW
ADVAPI32.dll638RegSetValueExW
ADVAPI32.dll584RegDeleteValueW
ADVAPI32.dll580RegDeleteKeyW
ADVAPI32.dll569RegCreateKeyExW
ADVAPI32.dll568RegCreateKeyExA
ADVAPI32.dll637RegSetValueExA
ADVAPI32.dll591RegEnumKeyExW
ADVAPI32.dll622RegQueryValueExW
ADVAPI32.dll560RegCloseKey
ADVAPI32.dll609RegOpenKeyExW
ADVAPI32.dll621RegQueryValueExA
ADVAPI32.dll503OpenProcessToken
ADVAPI32.dll309GetKernelObjectSecurity
ADVAPI32.dll124CreateProcessAsUserW
ADVAPI32.dll694SetSecurityDescriptorDacl
ADVAPI32.dll223DuplicateTokenEx
ADVAPI32.dll371ImpersonateLoggedOnUser
ADVAPI32.dll480MakeAbsoluteSD
ADVAPI32.dll685SetKernelObjectSecurity
ADVAPI32.dll60BuildExplicitAccessWithNameA
ADVAPI32.dll328GetSecurityDescriptorDacl
SHELL32.dll290ShellExecuteW
SHELL32.dll195SHGetFolderPathW
SHELL32.dll191SHGetFolderPathA
ole32.dll6CLSIDFromProgID
ole32.dll8CLSIDFromString
ole32.dll312OleLockRunning
ole32.dll16CoCreateInstance
ole32.dll103CoTaskMemAlloc
ole32.dll134CreateStreamOnHGlobal
ole32.dll306OleInitialize
ole32.dll329OleUninitialize
ole32.dll15CoCreateGuid
ole32.dll62CoInitialize
ole32.dll105CoTaskMemRealloc
ole32.dll104CoTaskMemFree
ole32.dll63CoInitializeEx
ole32.dll38CoGetClassObject
ole32.dll377StringFromGUID2
OLEAUT32.dll277
OLEAUT32.dll161
OLEAUT32.dll162
OLEAUT32.dll420
OLEAUT32.dll9
OLEAUT32.dll8
OLEAUT32.dll2
OLEAUT32.dll4
OLEAUT32.dll7
OLEAUT32.dll6
COMCTL32.dll146_TrackMouseEvent
COMCTL32.dll123InitCommonControlsEx
MSIMG32.dllAlphaBlend
MSIMG32.dll3TransparentBlt
gdiplus.dll290GdipGetImageHeight
gdiplus.dll295GdipGetImagePixelFormat
gdiplus.dll294GdipGetImagePaletteSize
gdiplus.dll293GdipGetImagePalette
gdiplus.dll81GdipCreateBitmapFromStream
gdiplus.dll80GdipCreateBitmapFromScan0
gdiplus.dll43GdipBitmapLockBits
gdiplus.dll46GdipBitmapUnlockBits
gdiplus.dll629GdiplusStartup
gdiplus.dll289GdipGetImageGraphicsContext
gdiplus.dll176GdipDrawImageI
gdiplus.dll54GdipCloneImage
gdiplus.dll152GdipDisposeImage
gdiplus.dll144GdipDeleteGraphics
gdiplus.dll33GdipAlloc
gdiplus.dll237GdipFree
gdiplus.dll628GdiplusShutdown
gdiplus.dll300GdipGetImageWidth
WS2_32.dll57
WS2_32.dll52
WS2_32.dll111
WS2_32.dll116
PSAPI.DLL18GetPerformanceInfo
WINHTTP.dll9WinHttpCrackUrl
WINHTTP.dll22WinHttpReceiveResponse
WINHTTP.dll28WinHttpSetTimeouts
WINHTTP.dll26WinHttpSetOption
WINHTTP.dll13WinHttpGetIEProxyConfigForCurrentUser
WINHTTP.dll23WinHttpSendRequest
WINHTTP.dll31WinHttpWriteData
WINHTTP.dll8WinHttpConnect
WINHTTP.dll7WinHttpCloseHandle
WINHTTP.dll19WinHttpQueryHeaders
WINHTTP.dll18WinHttpQueryDataAvailable
WINHTTP.dll15WinHttpOpen
WINHTTP.dll4WinHttpAddRequestHeaders
WINHTTP.dll21WinHttpReadData
WINHTTP.dll14WinHttpGetProxyForUrl
WINHTTP.dll16WinHttpOpenRequest
msi.dll87
msi.dll112
msi.dll91
msi.dll117
msi.dll160
msi.dll158
msi.dll159
msi.dll8
msi.dll32
msi.dll141

StringTable 040904b0

CompanyNameUS Tech Support LLC
FileDescriptionMyCleanPC.exe
FileVersion1.0.0.4741
InternalNameUSTSStub
LegalCopyright© 2013, US Tech Support LLC
OriginalFilenameMyCleanPC.exe
ProductNameMyCleanPC.exe Stub Installer
ProductVersion1.0.0.4741
CommentsStub

VS_FIXEDFILEINFO

FileVersion1.0.0.4741
ProductVersion1.0.0.4741
StrucVersion0x10000
FileFlagsMask0x3f
FileFlags0
FileOS4
FileType2
FileSubtype0

Signers (1)

issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Code Signing 2010 CA
serial: 71EE5A8A09540A3A629CC8F4C4EA54CF

Certificates (2)

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            71:ee:5a:8a:09:54:0a:3a:62:9c:c8:f4:c4:ea:54:cf
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Code Signing 2010 CA
        Validity
            Not Before: Jul  9 00:00:00 2012 GMT
            Not After : Jul  9 23:59:59 2013 GMT
        Subject: C=US, ST=California, L=Santa Monica, O=US Tech Support LLC, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=IT, CN=US Tech Support LLC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:58:c1:58:63:32:12:0a:08:5b:d8:5a:bc:5e:
                    06:93:77:0e:9c:b1:ec:1f:46:0e:7d:0a:30:d7:1c:
                    56:86:3f:aa:c4:31:29:a3:9f:f3:c0:06:ad:65:68:
                    82:92:98:ff:0a:20:72:45:c1:49:78:b2:2f:72:03:
                    a0:c8:92:f2:1c:e8:fd:7f:88:61:63:4f:42:9e:62:
                    c4:7a:82:01:94:9a:16:cc:77:bb:5c:66:6e:b7:a9:
                    cc:87:f5:8d:81:f4:3e:16:dc:84:1e:89:c0:56:02:
                    2a:51:46:09:d7:70:b6:cf:47:7c:9b:4d:e1:d7:99:
                    2e:7d:bd:46:1f:94:97:21:a1:92:d5:c9:69:2d:2b:
                    62:a1:f1:04:ed:20:dd:81:37:6a:c5:6e:19:0a:11:
                    22:fe:3a:9a:8a:bf:53:f0:10:bf:4e:c8:9b:5d:10:
                    91:9e:35:8f:4e:c4:63:85:b9:fc:b4:84:38:e4:45:
                    46:d5:29:cc:70:c4:b8:5f:67:aa:2d:c5:d5:29:06:
                    b6:55:b9:aa:bb:37:0e:39:0d:d6:b6:e7:4a:0e:1b:
                    ae:22:52:50:4f:0e:12:2d:b7:d2:96:30:0c:26:10:
                    fb:b5:4d:43:c5:c3:16:72:08:ca:d6:c0:ef:d3:19:
                    8c:57:d0:78:1e:67:67:7f:c4:13:34:d0:2f:03:f3:
                    29:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://csc3-2010-crl.verisign.com/CSC3-2010.crl

            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.113733.1.7.23.3
                  CPS: https://www.verisign.com/rpa

            X509v3 Extended Key Usage: 
                Code Signing
            Authority Information Access: 
                OCSP - URI:http://ocsp.verisign.com
                CA Issuers - URI:http://csc3-2010-aia.verisign.com/CSC3-2010.cer

            X509v3 Authority Key Identifier: 
                keyid:CF:99:A9:EA:7B:26:F4:4B:C9:8E:8F:D7:F0:05:26:EF:E3:D2:A7:9D

            Netscape Cert Type: 
                Object Signing
            1.3.6.1.4.1.311.2.1.27: 
                0.......
    Signature Algorithm: sha1WithRSAEncryption
         b6:d8:ae:72:e1:f2:96:48:e0:2a:08:07:81:e3:6d:38:77:a2:
         82:36:e0:01:e6:9a:90:2b:51:e6:49:0c:00:b0:b5:77:9a:59:
         9c:95:ad:76:2a:84:8f:4c:85:bd:8f:62:28:9f:b9:9e:df:f8:
         ee:89:7c:44:b2:c9:69:dd:38:ce:ca:db:a1:22:9a:7e:be:ab:
         6d:6c:6a:0c:7f:87:05:9e:fe:85:af:3c:27:93:22:f1:6d:aa:
         f3:77:1a:c8:a3:50:d6:c0:58:f9:9f:d9:c3:24:9c:f2:b9:87:
         35:53:a6:8f:be:f4:05:8e:45:1f:3f:ff:06:69:67:f0:b3:bc:
         b6:9a:91:fe:39:33:68:f0:e1:aa:1a:b4:69:01:4e:7a:37:7c:
         ec:81:db:cf:62:2e:e8:38:f4:9a:b4:c8:f2:0e:66:27:09:e4:
         85:78:f0:f8:e7:66:3f:ab:bf:83:1d:2c:70:89:c8:14:18:02:
         f6:90:2c:eb:49:f2:02:20:44:d0:2c:5a:f9:68:65:6c:7c:86:
         f9:35:3b:50:99:13:30:6c:83:9d:7d:41:9c:2d:fc:b1:c8:4a:
         f2:c3:a5:0f:c4:4f:4a:33:34:47:3d:73:c6:13:13:1a:52:80:
         ee:b5:2c:52:84:76:0e:2a:af:9d:d4:ec:8c:01:09:3e:c6:08:
         29:41:d0:6b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=(c) 2006 VeriSign, Inc. - For authorized use only, CN=VeriSign Class 3 Public Primary Certification Authority - G5
        Validity
            Not Before: Feb  8 00:00:00 2010 GMT
            Not After : Feb  7 23:59:59 2020 GMT
        Subject: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Code Signing 2010 CA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f5:23:4b:5e:a5:d7:8a:bb:32:e9:d4:57:f7:ef:
                    e4:c7:26:7e:ad:19:98:fe:a8:9d:7d:94:f6:36:6b:
                    10:d7:75:81:30:7f:04:68:7f:cb:2b:75:1e:cd:1d:
                    08:8c:df:69:94:a7:37:a3:9c:7b:80:e0:99:e1:ee:
                    37:4d:5f:ce:3b:14:ee:86:d4:d0:f5:27:35:bc:25:
                    0b:38:a7:8c:63:9d:17:a3:08:a5:ab:b0:fb:cd:6a:
                    62:82:4c:d5:21:da:1b:d9:f1:e3:84:3b:8a:2a:4f:
                    85:5b:90:01:4f:c9:a7:76:10:7f:27:03:7c:be:ae:
                    7e:7d:c1:dd:f9:05:bc:1b:48:9c:69:e7:c0:a4:3c:
                    3c:41:00:3e:df:96:e5:c5:e4:94:71:d6:55:01:c7:
                    00:26:4a:40:3c:b5:a1:26:a9:0c:a7:6d:80:8e:90:
                    25:7b:cf:bf:3f:1c:eb:2f:96:fa:e5:87:77:c6:b5:
                    56:b2:7a:3b:54:30:53:1b:df:62:34:ff:1e:d1:f4:
                    5a:93:28:85:e5:4c:17:4e:7e:5b:fd:a4:93:99:7f:
                    df:cd:ef:a4:75:ef:ef:15:f6:47:e7:f8:19:72:d8:
                    2e:34:1a:a6:b4:a7:4c:7e:bd:bb:4f:0c:3d:57:f1:
                    30:d6:a6:36:8e:d6:80:76:d7:19:2e:a5:cd:7e:34:
                    2d:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.113733.1.7.23.3
                  CPS: https://www.verisign.com/cps
                  User Notice:
                    Explicit Text: https://www.verisign.com/rpa

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            1.3.6.1.5.5.7.1.12: 
                0_.].[0Y0W0U..image/gif0!0.0...+..............k...j.H.,{..0%.#http://logo.verisign.com/vslogo.gif
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.verisign.com/pca3-g5.crl

            Authority Information Access: 
                OCSP - URI:http://ocsp.verisign.com

            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, Code Signing
            X509v3 Subject Alternative Name: 
                DirName:/CN=VeriSignMPKI-2-8
            X509v3 Subject Key Identifier: 
                CF:99:A9:EA:7B:26:F4:4B:C9:8E:8F:D7:F0:05:26:EF:E3:D2:A7:9D
            X509v3 Authority Key Identifier: 
                keyid:7F:D3:65:A7:C2:DD:EC:BB:F0:30:09:F3:43:39:FA:02:AF:33:31:33

    Signature Algorithm: sha1WithRSAEncryption
         56:22:e6:34:a4:c4:61:cb:48:b9:01:ad:56:a8:64:0f:d9:8c:
         91:c4:bb:cc:0c:e5:ad:7a:a0:22:7f:df:47:38:4a:2d:6c:d1:
         7f:71:1a:7c:ec:70:a9:b1:f0:4f:e4:0f:0c:53:fa:15:5e:fe:
         74:98:49:24:85:81:26:1c:91:14:47:b0:4c:63:8c:bb:a1:34:
         d4:c6:45:e8:0d:85:26:73:03:d0:a9:8c:64:6d:dc:71:92:e6:
         45:05:60:15:59:51:39:fc:58:14:6b:fe:d4:a4:ed:79:6b:08:
         0c:41:72:e7:37:22:06:09:be:23:e9:3f:44:9a:1e:e9:61:9d:
         cc:b1:90:5c:fc:3d:d2:8d:ac:42:3d:65:36:d4:b4:3d:40:28:
         8f:9b:10:cf:23:26:cc:4b:20:cb:90:1f:5d:8c:4c:34:ca:3c:
         d8:e5:37:d6:6f:a5:20:bd:34:eb:26:d9:ae:0d:e7:c5:9a:f7:
         a1:b4:21:91:33:6f:86:e8:58:bb:25:7c:74:0e:58:fe:75:1b:
         63:3f:ce:31:7c:9b:8f:1b:96:9e:c5:53:76:84:5b:9c:ad:91:
         fa:ac:ed:93:ba:5d:c8:21:53:c2:82:53:63:af:12:0d:50:87:
         11:1b:3d:54:52:96:8a:2c:9c:3d:92:1a:08:9a:05:2e:c7:93:
         a5:48:91:d3
pkcs7-signedData
  • 1
    • SHA1: nil
    • 1.3.6.1.4.1.311.2.1.4
      • #0
        • 1.3.6.1.4.1.311.2.1.15
          • : 
            00 3c 00 3c 00 3c 00 4f  00 62 00 73 00 6f 00 6c  |.<.<.<.O.b.s.o.l|
00 65 00 74 00 65 00 3e  00 3e 00 3e              |.e.t.e.>.>.>    |
        • SHA1
          • 7e f1 8c 89 d6 3a b1 75  d9 2d 55 e7 59 e7 43 2a  |~....:.u.-U.Y.C*|
a6 54 11 96                                       |.T..            |
    • Certificates
      • Certificate #0
        • 2
          • 71:EE:5A:8A:09:54:0A:3A:62:9C:C8:F4:C4:EA:54:CF
          • RSA-SHA1: nil
          • Issuer
            • C: US
            • O: VeriSign, Inc.
            • OU: VeriSign Trust Network
            • OU: Terms of use at https://www.verisign.com/rpa (c)10
            • CN: VeriSign Class 3 Code Signing 2010 CA
          • 2012-07-09 00:00:00 UTC: 2013-07-09 23:59:59 UTC
          • Subject
            • C: US
            • ST: California
            • L: Santa Monica
            • O: US Tech Support LLC
            • OU: Digital ID Class 3 - Microsoft Software Validation v2
            • OU: IT
            • CN: US Tech Support LLC
          • #5
            • rsaEncryption: nil
            • AF:58:C1:58:63:32:12:0A:08:5B:D8:5A:BC:5E:06:93:
              77:0E:9C:B1:EC:1F:46:0E:7D:0A:30:D7:1C:56:86:3F:
              AA:C4:31:29:A3:9F:F3:C0:06:AD:65:68:82:92:98:FF:
              0A:20:72:45:C1:49:78:B2:2F:72:03:A0:C8:92:F2:1C:
              E8:FD:7F:88:61:63:4F:42:9E:62:C4:7A:82:01:94:9A:
              16:CC:77:BB:5C:66:6E:B7:A9:CC:87:F5:8D:81:F4:3E:
              16:DC:84:1E:89:C0:56:02:2A:51:46:09:D7:70:B6:CF:
              47:7C:9B:4D:E1:D7:99:2E:7D:BD:46:1F:94:97:21:A1:
              92:D5:C9:69:2D:2B:62:A1:F1:04:ED:20:DD:81:37:6A:
              C5:6E:19:0A:11:22:FE:3A:9A:8A:BF:53:F0:10:BF:4E:
              C8:9B:5D:10:91:9E:35:8F:4E:C4:63:85:B9:FC:B4:84:
              38:E4:45:46:D5:29:CC:70:C4:B8:5F:67:AA:2D:C5:D5:
              29:06:B6:55:B9:AA:BB:37:0E:39:0D:D6:B6:E7:4A:0E:
              1B:AE:22:52:50:4F:0E:12:2D:B7:D2:96:30:0C:26:10:
              FB:B5:4D:43:C5:C3:16:72:08:CA:D6:C0:EF:D3:19:8C:
              57:D0:78:1E:67:67:7F:C4:13:34:D0:2F:03:F3:29:4F              : 0x010001
          • X509v3 extensions
            • basicConstraints
              • nil
            • keyUsage: true, 0x80
            • crlDistributionPoints: http://csc3-2010-crl.verisign.com/CSC3-2010.crl
            • certificatePolicies
              • 2.16.840.1.113733.1.7.23.3
                • id-qt-cps: https://www.verisign.com/rpa
            • extendedKeyUsage: codeSigning
            • authorityInfoAccess
              • #0
                • OCSP: http://ocsp.verisign.com
                • caIssuers: http://csc3-2010-aia.verisign.com/CSC3-2010.cer
            • authorityKeyIdentifier: 
              cf 99 a9 ea 7b 26 f4 4b  c9 8e 8f d7 f0 05 26 ef  |....{&.K......&.|
e3 d2 a7 9d                                       |....            |
            • nsCertType: 0x10
            • 1.3.6.1.4.1.311.2.1.27
              • false: true
        • RSA-SHA1: 
          b6 d8 ae 72 e1 f2 96 48  e0 2a 08 07 81 e3 6d 38  |...r...H.*....m8|
77 a2 82 36 e0 01 e6 9a  90 2b 51 e6 49 0c 00 b0  |w..6.....+Q.I...|
b5 77 9a 59 9c 95 ad 76  2a 84 8f 4c 85 bd 8f 62  |.w.Y...v*..L...b|
28 9f b9 9e df f8 ee 89  7c 44 b2 c9 69 dd 38 ce  |(.......|D..i.8.|
ca db a1 22 9a 7e be ab  6d 6c 6a 0c 7f 87 05 9e  |...".~..mlj.....|
fe 85 af 3c 27 93 22 f1  6d aa f3 77 1a c8 a3 50  |...<'.".m..w...P|
d6 c0 58 f9 9f d9 c3 24  9c f2 b9 87 35 53 a6 8f  |..X....$....5S..|
be f4 05 8e 45 1f 3f ff  06 69 67 f0 b3 bc b6 9a  |....E.?..ig.....|
91 fe 39 33 68 f0 e1 aa  1a b4 69 01 4e 7a 37 7c  |..93h.....i.Nz7||
ec 81 db cf 62 2e e8 38  f4 9a b4 c8 f2 0e 66 27  |....b..8......f'|
09 e4 85 78 f0 f8 e7 66  3f ab bf 83 1d 2c 70 89  |...x...f?....,p.|
c8 14 18 02 f6 90 2c eb  49 f2 02 20 44 d0 2c 5a  |......,.I.. D.,Z|
f9 68 65 6c 7c 86 f9 35  3b 50 99 13 30 6c 83 9d  |.hel|..5;P..0l..|
7d 41 9c 2d fc b1 c8 4a  f2 c3 a5 0f c4 4f 4a 33  |}A.-...J.....OJ3|
34 47 3d 73 c6 13 13 1a  52 80 ee b5 2c 52 84 76  |4G=s....R...,R.v|
0e 2a af 9d d4 ec 8c 01  09 3e c6 08 29 41 d0 6b  |.*.......>..)A.k|
      • Certificate #1
        • 2
          • 52:00:E5:AA:25:56:FC:1A:86:ED:96:C9:D4:4B:33:C7
          • RSA-SHA1: nil
          • Issuer
            • C: US
            • O: VeriSign, Inc.
            • OU: VeriSign Trust Network
            • OU: (c) 2006 VeriSign, Inc. - For authorized use only
            • CN: VeriSign Class 3 Public Primary Certification Authority - G5
          • 2010-02-08 00:00:00 UTC: 2020-02-07 23:59:59 UTC
          • Subject
            • C: US
            • O: VeriSign, Inc.
            • OU: VeriSign Trust Network
            • OU: Terms of use at https://www.verisign.com/rpa (c)10
            • CN: VeriSign Class 3 Code Signing 2010 CA
          • #5
            • rsaEncryption: nil
            • F5:23:4B:5E:A5:D7:8A:BB:32:E9:D4:57:F7:EF:E4:C7:
              26:7E:AD:19:98:FE:A8:9D:7D:94:F6:36:6B:10:D7:75:
              81:30:7F:04:68:7F:CB:2B:75:1E:CD:1D:08:8C:DF:69:
              94:A7:37:A3:9C:7B:80:E0:99:E1:EE:37:4D:5F:CE:3B:
              14:EE:86:D4:D0:F5:27:35:BC:25:0B:38:A7:8C:63:9D:
              17:A3:08:A5:AB:B0:FB:CD:6A:62:82:4C:D5:21:DA:1B:
              D9:F1:E3:84:3B:8A:2A:4F:85:5B:90:01:4F:C9:A7:76:
              10:7F:27:03:7C:BE:AE:7E:7D:C1:DD:F9:05:BC:1B:48:
              9C:69:E7:C0:A4:3C:3C:41:00:3E:DF:96:E5:C5:E4:94:
              71:D6:55:01:C7:00:26:4A:40:3C:B5:A1:26:A9:0C:A7:
              6D:80:8E:90:25:7B:CF:BF:3F:1C:EB:2F:96:FA:E5:87:
              77:C6:B5:56:B2:7A:3B:54:30:53:1B:DF:62:34:FF:1E:
              D1:F4:5A:93:28:85:E5:4C:17:4E:7E:5B:FD:A4:93:99:
              7F:DF:CD:EF:A4:75:EF:EF:15:F6:47:E7:F8:19:72:D8:
              2E:34:1A:A6:B4:A7:4C:7E:BD:BB:4F:0C:3D:57:F1:30:
              D6:A6:36:8E:D6:80:76:D7:19:2E:A5:CD:7E:34:2D:89              : 0x010001
          • X509v3 extensions
            • basicConstraints
              • true
              • true: 0
            • certificatePolicies
              • 2.16.840.1.113733.1.7.23.3
                • #0
                  • id-qt-cps: https://www.verisign.com/cps
                  • id-qt-unotice: https://www.verisign.com/rpa
            • keyUsage: true, 6
            • 1.3.6.1.5.5.7.1.12
              • image/gif
                • SHA1: 
                  8f e5 d3 1a 86 ac 8d 8e  6b c3 cf 80 6a d4 48 18  |........k...j.H.|
2c 7b 19 2e                                       |,{..            |
                • http://logo.verisign.com/vslogo.gif
            • crlDistributionPoints: http://crl.verisign.com/pca3-g5.crl
            • authorityInfoAccess
              • OCSP: http://ocsp.verisign.com
            • extendedKeyUsage
              • clientAuth: codeSigning
            • subjectAltName
              • CN: VeriSignMPKI-2-8
            • subjectKeyIdentifier: 
              cf 99 a9 ea 7b 26 f4 4b  c9 8e 8f d7 f0 05 26 ef  |....{&.K......&.|
e3 d2 a7 9d                                       |....            |
            • authorityKeyIdentifier: 
              7f d3 65 a7 c2 dd ec bb  f0 30 09 f3 43 39 fa 02  |..e......0..C9..|
af 33 31 33                                       |.313            |
        • RSA-SHA1: 
          56 22 e6 34 a4 c4 61 cb  48 b9 01 ad 56 a8 64 0f  |V".4..a.H...V.d.|
d9 8c 91 c4 bb cc 0c e5  ad 7a a0 22 7f df 47 38  |.........z."..G8|
4a 2d 6c d1 7f 71 1a 7c  ec 70 a9 b1 f0 4f e4 0f  |J-l..q.|.p...O..|
0c 53 fa 15 5e fe 74 98  49 24 85 81 26 1c 91 14  |.S..^.t.I$..&...|
47 b0 4c 63 8c bb a1 34  d4 c6 45 e8 0d 85 26 73  |G.Lc...4..E...&s|
03 d0 a9 8c 64 6d dc 71  92 e6 45 05 60 15 59 51  |....dm.q..E.`.YQ|
39 fc 58 14 6b fe d4 a4  ed 79 6b 08 0c 41 72 e7  |9.X.k....yk..Ar.|
37 22 06 09 be 23 e9 3f  44 9a 1e e9 61 9d cc b1  |7"...#.?D...a...|
90 5c fc 3d d2 8d ac 42  3d 65 36 d4 b4 3d 40 28  |.\.=...B=e6..=@(|
8f 9b 10 cf 23 26 cc 4b  20 cb 90 1f 5d 8c 4c 34  |....#&.K ...].L4|
ca 3c d8 e5 37 d6 6f a5  20 bd 34 eb 26 d9 ae 0d  |.<..7.o. .4.&...|
e7 c5 9a f7 a1 b4 21 91  33 6f 86 e8 58 bb 25 7c  |......!.3o..X.%||
74 0e 58 fe 75 1b 63 3f  ce 31 7c 9b 8f 1b 96 9e  |t.X.u.c?.1|.....|
c5 53 76 84 5b 9c ad 91  fa ac ed 93 ba 5d c8 21  |.Sv.[........].!|
53 c2 82 53 63 af 12 0d  50 87 11 1b 3d 54 52 96  |S..Sc...P...=TR.|
8a 2c 9c 3d 92 1a 08 9a  05 2e c7 93 a5 48 91 d3  |.,.=.........H..|
    • Signer
      • 1
      • unnamed
        • #0
          • C: US
          • O: VeriSign, Inc.
          • OU: VeriSign Trust Network
          • OU: Terms of use at https://www.verisign.com/rpa (c)10
          • CN: VeriSign Class 3 Code Signing 2010 CA
        • 71:EE:5A:8A:09:54:0A:3A:62:9C:C8:F4:C4:EA:54:CF
      • SHA1: nil
      • #3
        • 1.3.6.1.4.1.311.2.1.12
          • nil
        • contentType: 1.3.6.1.4.1.311.2.1.4
        • 1.3.6.1.4.1.311.2.1.11: msCodeInd
        • messageDigest: 
          b6 e2 77 44 66 76 de 1c  0b b5 83 61 19 3c 3a c0  |..wDfv.....a.<:.|
80 90 72 fa                                       |..r.            |
      • rsaEncryption: 
        92 20 8a f3 3d f7 be 6a  47 2e 4d dc 5c b0 72 b4  |. ..=..jG.M.\.r.|
5b 18 55 e0 09 e9 eb 30  d9 30 c5 28 d2 ce 41 08  |[.U....0.0.(..A.|
72 5e 5c 4c bc c9 8c a6  05 cb 8e 76 65 74 41 98  |r^\L.......vetA.|
38 1d 7d 1d 94 ad 8d 36  d8 a1 c8 81 73 86 13 f3  |8.}....6....s...|
69 f8 a9 ce cb c2 92 b5  87 bf b4 e5 9c ef e8 a1  |i...............|
df 48 e8 02 6a d2 f2 eb  bd bc 52 2d 0c ba 84 ef  |.H..j.....R-....|
cc 1a 6b cc 80 d1 22 e9  c4 fd 0a 95 2d 3d 7e e8  |..k...".....-=~.|
f0 e5 c8 d3 1d cf ad e4  34 bb e7 b8 19 d9 f4 ea  |........4.......|
da ba f6 ef a5 15 87 61  b2 ad a4 82 26 87 d7 a8  |.......a....&...|
7a 33 0f 37 63 aa b5 5e  d1 e8 12 0b f9 e1 44 82  |z3.7c..^......D.|
a0 81 81 79 a2 76 a5 21  9b e1 b4 55 e9 50 5d 51  |...y.v.!...U.P]Q|
7a 04 91 ff c4 32 50 d1  9a a1 da bd c8 7a f3 c8  |z....2P......z..|
4c a5 1e 3c 6a 11 20 84  a3 ac ea 9d 88 a2 a9 bd  |L..
offsetsizetypecomment
02859520EXE01/17/2013 17:52:02#
15c115HTM#
136b4080548PNG(711 x 332)#
14a5e472152PNG(711 x 332)#
15c66834868PNG(256 x 256)#
166b4423057PNG(256 x 256)#
18bba835439PNG(256 x 256)#
2ba2003736PKCS7Authenticode Signature#
offset:( 0x )size:( 0x )hotkeys:-=[]<>, offset/size fields are also editable







[?] ignoring invalid PEdump::BITMAPINFOHEADER
[?] can't find file_offset of VA 0x138a28