Dump of file patterns.exe File Type: EXECUTABLE IMAGE SECTION HEADER #2 .text name 50B1 virtual size 11000 virtual address (00411000 to 004160B0) 6000 size of raw data 1000 file pointer to raw data (00001000 to 00006FFF) 0 file pointer to relocation table 0 file pointer to line numbers 0 number of relocations 0 number of line numbers 60000020 flags Code Execute Read 00411000: CC CC CC CC CC E9 D6 23 00 00 E9 71 24 00 00 E9 ???????#..?q$..? @ILT+11(?good@ios_base@std@@QBE_NXZ): 00411010: 92 0F 00 00 E9 51 30 00 00 E9 02 21 00 00 E9 ED ...?Q0..?.!..?? @ILT+27(_clear): 00411020: 0E 00 00 E9 CC 24 00 00 E9 03 12 00 00 E9 44 30 ...??$..?....?D0 @ILT+43(_IsDebuggerPresent@0): 00411030: 00 00 E9 19 0D 00 00 E9 84 24 00 00 E9 2F 30 00 ..?....?$..?/0. @ILT+59(_WideCharToMultiByte@32): 00411040: 00 E9 3A 10 00 00 E9 95 21 00 00 E9 C0 20 00 00 .?:...?!..?? .. @ILT+75(?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ): 00411050: E9 27 0F 00 00 E9 0A 24 00 00 E9 F9 2F 00 00 E9 ?'...?.$..??/..? @ILT+91(?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z): 00411060: F4 0E 00 00 E9 73 30 00 00 E9 22 26 00 00 E9 33 ?...?s0..?"&..?3 @ILT+107(_SetUnhandledExceptionFilter@4): 00411070: 30 00 00 E9 34 27 00 00 E9 A7 29 00 00 E9 60 30 0..?4'..?)..?`0 @ILT+123(_VirtualQuery@12): 00411080: 00 00 E9 C9 25 00 00 E9 F0 2F 00 00 E9 C1 0E 00 ..??%..??/..??.. @ILT+139(?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z): 00411090: 00 E9 AA 20 00 00 E9 A5 29 00 00 E9 A0 2F 00 00 .? ..?)..?/.. @ILT+155(?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ): 004110A0: E9 19 0F 00 00 E9 DE 2F 00 00 E9 E5 0E 00 00 E9 ?....??/..??...? @ILT+171(@_RTC_CheckStackVars@8): 004110B0: 4C 0F 00 00 E9 B1 0E 00 00 E9 F4 0E 00 00 E9 2D L...?...??...?- @ILT+187(___report_gsfailure): 004110C0: 21 00 00 E9 5A 2F 00 00 E9 D3 26 00 00 E9 E6 2F !..?Z/..??&..??/ @ILT+203(_GetCurrentThreadId@0): 004110D0: 00 00 E9 53 29 00 00 E9 C4 0E 00 00 E9 7D 0E 00 ..?S)..??...?}.. @ILT+219(?width@ios_base@std@@QAEHH@Z): 004110E0: 00 E9 B4 2F 00 00 E9 8B 0E 00 00 E9 80 25 00 00 .?/..?...?.%.. @ILT+235(?width@ios_base@std@@QBEHXZ): 004110F0: E9 99 0E 00 00 E9 C6 1E 00 00 E9 11 11 00 00 E9 ?....??...?....? @ILT+251(__FindPESection): 00411100: 3C 27 00 00 E9 CD 22 00 00 E9 C2 10 00 00 E9 2D <'..??"..??...?- @ILT+267(?_RTC_StackFailure@@YAXPAXPBD@Z): 00411110: 1B 00 00 E9 76 2F 00 00 E9 47 2F 00 00 E9 FA 2E ...?v/..?G/..??. @ILT+283(__crt_debugger_hook): 00411120: 00 00 E9 99 26 00 00 E9 32 2F 00 00 E9 87 0E 00 ..?.&..?2/..?.. @ILT+299(?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ): 00411130: 00 E9 3A 0E 00 00 E9 45 0B 00 00 E9 06 0E 00 00 .?:...?E...?.... @ILT+315(_GetProcessHeap@0): 00411140: E9 91 2F 00 00 E9 56 20 00 00 E9 B1 23 00 00 E9 ?/..?V ..?#..? @ILT+331(_NtCurrentTeb): 00411150: 2C 15 00 00 E9 71 2F 00 00 E9 42 04 00 00 E9 0D ,...?q/..?B...?. @ILT+347(__RTC_SetErrorFunc): 00411160: 20 00 00 E9 C8 22 00 00 E9 DF 0D 00 00 E9 DE 0C ..??"..??...??. @ILT+363(??1_Sentry_base@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@XZ): 00411170: 00 00 E9 1D 2F 00 00 E9 1E 0E 00 00 E9 FF 11 00 ..?./..?....??.. @ILT+379(_mainCRTStartup): 00411180: 00 E9 BA 21 00 00 E9 35 22 00 00 E9 1C 2F 00 00 .?!..?5"..?./.. @ILT+395(___p__commode): 00411190: E9 59 23 00 00 E9 9A 2E 00 00 E9 1F 2F 00 00 E9 ?Y#..?...?./..? @ILT+411(@_RTC_CheckStackVars2@12): 004111A0: 1C 0F 00 00 E9 CD 24 00 00 E9 22 0E 00 00 E9 0D ....??$..?"...?. @ILT+427(_main): 004111B0: 03 00 00 E9 D8 22 00 00 E9 43 0D 00 00 E9 66 2E ...??"..?C...?f. @ILT+443(__controlfp_s): 004111C0: 00 00 E9 FD 2E 00 00 E9 7A 2E 00 00 E9 5D 2E 00 ..??...?z...?].. @ILT+459(__invoke_watson): 004111D0: 00 E9 9A 28 00 00 E9 0B 20 00 00 E9 D2 2E 00 00 .?(..?. ..??... @ILT+475(?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z): 004111E0: E9 7F 0D 00 00 E9 E6 26 00 00 E9 39 10 00 00 E9 ?....??&..?9...? @ILT+491(_HeapAlloc@12): 004111F0: DC 2E 00 00 E9 83 24 00 00 E9 A8 25 00 00 E9 B5 ?...?$..?%..? @ILT+507(__CrtSetCheckCount): 00411200: 25 00 00 E9 4A 2E 00 00 E9 93 2E 00 00 E9 0E 09 %..?J...?...?. @ILT+523(??0sentry@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@AAV12@@Z): 00411210: 00 00 E9 35 2E 00 00 E9 54 22 00 00 E9 61 0D 00 ..?5...?T"..?a.. @ILT+539(?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ): 00411220: 00 E9 5C 24 00 00 E9 57 2E 00 00 E9 10 16 00 00 .?\$..?W...?.... @ILT+555(?flags@ios_base@std@@QBEHXZ): 00411230: E9 53 0D 00 00 E9 76 1B 00 00 E9 31 15 00 00 E9 ?S...?v...?1...? @ILT+571(_exit): 00411240: 6E 25 00 00 E9 47 0B 00 00 E9 EC 2D 00 00 E9 95 n%..?G...??-..? @ILT+587(_FreeLibrary@4): 00411250: 2E 00 00 E9 D8 27 00 00 E9 4F 0D 00 00 E9 6E 1F ...??'..?O...?n. @ILT+603(?_RTC_GetErrorFunc@@YAP6AHHPBDH00ZZPBX@Z): 00411260: 00 00 CC CC CC CC CC CC CC CC CC CC CC CC CC CC ..?????????????? 00411270: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411280: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411290: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004112A0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004112B0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004112C0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004112D0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004112E0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004112F0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411300: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411310: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411320: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411330: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411340: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411350: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411360: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411370: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411380: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411390: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004113A0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004113B0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004113C0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004113D0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004113E0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004113F0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411400: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411410: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411420: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411430: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411440: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411450: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411460: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411470: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411480: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411490: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004114A0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004114B0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? _main: 004114C0: 55 push ebp 004114C1: 8B EC mov ebp,esp 004114C3: 81 EC CC 00 00 00 sub esp,0CCh 004114C9: 53 push ebx 004114CA: 56 push esi 004114CB: 57 push edi 004114CC: 8D BD 34 FF FF FF lea edi,[ebp-0CCh] 004114D2: B9 33 00 00 00 mov ecx,33h 004114D7: B8 CC CC CC CC mov eax,0CCCCCCCCh 004114DC: F3 AB rep stos dword ptr es:[edi] 004114DE: E8 3B FB FF FF call @ILT+27(_clear) 004114E3: 8B F4 mov esi,esp 004114E5: A1 40 A3 41 00 mov eax,dword ptr [__imp_?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z] 004114EA: 50 push eax 004114EB: 68 FC 77 41 00 push offset ??_C@_0BB@DMNBKJPF@Enter?5an?5integer?$AA@ 004114F0: 8B 0D 44 A3 41 00 mov ecx,dword ptr [__imp_?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A] 004114F6: 51 push ecx 004114F7: E8 5D FC FF FF call @ILT+340(??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z) 004114FC: 83 C4 08 add esp,8 004114FF: 8B C8 mov ecx,eax 00411501: FF 15 48 A3 41 00 call dword ptr [__imp_??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z] 00411507: 3B F4 cmp esi,esp 00411509: E8 9B FC FF FF call @ILT+420(__RTC_CheckEsp) 0041150E: 8B F4 mov esi,esp 00411510: 8D 45 F8 lea eax,[ebp-8] 00411513: 50 push eax 00411514: 8B 0D 4C A3 41 00 mov ecx,dword ptr [__imp_?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A] 0041151A: FF 15 2C A3 41 00 call dword ptr [__imp_??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z] 00411520: 3B F4 cmp esi,esp 00411522: E8 82 FC FF FF call @ILT+420(__RTC_CheckEsp) 00411527: 33 C0 xor eax,eax 00411529: 52 push edx 0041152A: 8B CD mov ecx,ebp 0041152C: 50 push eax 0041152D: 8D 15 50 15 41 00 lea edx,ds:[411550h] 00411533: E8 77 FB FF FF call @ILT+171(@_RTC_CheckStackVars@8) 00411538: 58 pop eax 00411539: 5A pop edx 0041153A: 5F pop edi 0041153B: 5E pop esi 0041153C: 5B pop ebx 0041153D: 81 C4 CC 00 00 00 add esp,0CCh 00411543: 3B EC cmp ebp,esp 00411545: E8 5F FC FF FF call @ILT+420(__RTC_CheckEsp) 0041154A: 8B E5 mov esp,ebp 0041154C: 5D pop ebp 0041154D: C3 ret 0041154E: 8B FF mov edi,edi 00411550: 01 00 add dword ptr [eax],eax 00411552: 00 00 add byte ptr [eax],al 00411554: 58 pop eax 00411555: 15 41 00 F8 FF adc eax,0FFF80041h 0041155A: FF 0041155B: FF 04 00 inc dword ptr [eax+eax] 0041155E: 00 00 add byte ptr [eax],al 00411560: 64 15 41 00 64 75 adc eax,75640041h 00411566: 6D ins dword ptr es:[edi],dx 00411567: 6D ins dword ptr es:[edi],dx 00411568: 79 00 jns 0041156A 0041156A: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041157A: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041158A: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041159A: CC CC CC CC CC CC ?????? ??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z: 004115A0: 55 push ebp 004115A1: 8B EC mov ebp,esp 004115A3: 6A FF push 0FFFFFFFFh 004115A5: 68 28 50 41 00 push 415028h 004115AA: 64 A1 00 00 00 00 mov eax,dword ptr fs:[00000000h] 004115B0: 50 push eax 004115B1: 51 push ecx 004115B2: 81 EC 44 01 00 00 sub esp,144h 004115B8: 53 push ebx 004115B9: 56 push esi 004115BA: 57 push edi 004115BB: 8D BD AC FE FF FF lea edi,[ebp-154h] 004115C1: B9 51 00 00 00 mov ecx,51h 004115C6: B8 CC CC CC CC mov eax,0CCCCCCCCh 004115CB: F3 AB rep stos dword ptr es:[edi] 004115CD: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 004115D2: 33 C5 xor eax,ebp 004115D4: 50 push eax 004115D5: 8D 45 F4 lea eax,[ebp-0Ch] 004115D8: 64 A3 00 00 00 00 mov dword ptr fs:[00000000h],eax 004115DE: 89 65 F0 mov dword ptr [ebp-10h],esp 004115E1: C7 45 E8 00 00 00 mov dword ptr [ebp-18h],0 00 004115E8: 8B F4 mov esi,esp 004115EA: 8B 45 0C mov eax,dword ptr [ebp+0Ch] 004115ED: 50 push eax 004115EE: FF 15 10 A3 41 00 call dword ptr [__imp_?length@?$char_traits@D@std@@SAIPBD@Z] 004115F4: 83 C4 04 add esp,4 004115F7: 3B F4 cmp esi,esp 004115F9: E8 AB FB FF FF call @ILT+420(__RTC_CheckEsp) 004115FE: 89 45 DC mov dword ptr [ebp-24h],eax 00411601: 8B 45 08 mov eax,dword ptr [ebp+8] 00411604: 8B 08 mov ecx,dword ptr [eax] 00411606: 8B 55 08 mov edx,dword ptr [ebp+8] 00411609: 03 51 04 add edx,dword ptr [ecx+4] 0041160C: 8B F4 mov esi,esp 0041160E: 8B CA mov ecx,edx 00411610: FF 15 14 A3 41 00 call dword ptr [__imp_?width@ios_base@std@@QBEHXZ] 00411616: 3B F4 cmp esi,esp 00411618: E8 8C FB FF FF call @ILT+420(__RTC_CheckEsp) 0041161D: 85 C0 test eax,eax 0041161F: 7E 48 jle 00411669 00411621: 8B 45 08 mov eax,dword ptr [ebp+8] 00411624: 8B 08 mov ecx,dword ptr [eax] 00411626: 8B 55 08 mov edx,dword ptr [ebp+8] 00411629: 03 51 04 add edx,dword ptr [ecx+4] 0041162C: 8B F4 mov esi,esp 0041162E: 8B CA mov ecx,edx 00411630: FF 15 14 A3 41 00 call dword ptr [__imp_?width@ios_base@std@@QBEHXZ] 00411636: 3B F4 cmp esi,esp 00411638: E8 6C FB FF FF call @ILT+420(__RTC_CheckEsp) 0041163D: 3B 45 DC cmp eax,dword ptr [ebp-24h] 00411640: 7E 27 jle 00411669 00411642: 8B 45 08 mov eax,dword ptr [ebp+8] 00411645: 8B 08 mov ecx,dword ptr [eax] 00411647: 8B 55 08 mov edx,dword ptr [ebp+8] 0041164A: 03 51 04 add edx,dword ptr [ecx+4] 0041164D: 8B F4 mov esi,esp 0041164F: 8B CA mov ecx,edx 00411651: FF 15 14 A3 41 00 call dword ptr [__imp_?width@ios_base@std@@QBEHXZ] 00411657: 3B F4 cmp esi,esp 00411659: E8 4B FB FF FF call @ILT+420(__RTC_CheckEsp) 0041165E: 2B 45 DC sub eax,dword ptr [ebp-24h] 00411661: 89 85 BC FE FF FF mov dword ptr [ebp-144h],eax 00411667: EB 0A jmp 00411673 00411669: C7 85 BC FE FF FF mov dword ptr [ebp-144h],0 00 00 00 00 00411673: 8B 85 BC FE FF FF mov eax,dword ptr [ebp-144h] 00411679: 89 45 D0 mov dword ptr [ebp-30h],eax 0041167C: 8B 45 08 mov eax,dword ptr [ebp+8] 0041167F: 50 push eax 00411680: 8D 4D C0 lea ecx,[ebp-40h] 00411683: E8 85 FB FF FF call @ILT+523(??0sentry@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@AAV12@@Z) 00411688: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 0041168F: 8D 4D C0 lea ecx,[ebp-40h] 00411692: E8 9B F9 FF FF call @ILT+45(??Bsentry@?$basic_ostream@DU?$char_traits@D@std@@@std@@QBE_NXZ) 00411697: 0F B6 C0 movzx eax,al 0041169A: 85 C0 test eax,eax 0041169C: 75 0E jne 004116AC 0041169E: 8B 45 E8 mov eax,dword ptr [ebp-18h] 004116A1: 83 C8 04 or eax,4 004116A4: 89 45 E8 mov dword ptr [ebp-18h],eax 004116A7: E9 C9 02 00 00 jmp 00411975 004116AC: C6 45 FC 01 mov byte ptr [ebp-4],1 004116B0: 8B 45 08 mov eax,dword ptr [ebp+8] 004116B3: 8B 08 mov ecx,dword ptr [eax] 004116B5: 8B 55 08 mov edx,dword ptr [ebp+8] 004116B8: 03 51 04 add edx,dword ptr [ecx+4] 004116BB: 8B F4 mov esi,esp 004116BD: 8B CA mov ecx,edx 004116BF: FF 15 18 A3 41 00 call dword ptr [__imp_?flags@ios_base@std@@QBEHXZ] 004116C5: 3B F4 cmp esi,esp 004116C7: E8 DD FA FF FF call @ILT+420(__RTC_CheckEsp) 004116CC: 89 85 BC FE FF FF mov dword ptr [ebp-144h],eax 004116D2: 8B 85 BC FE FF FF mov eax,dword ptr [ebp-144h] 004116D8: 25 C0 01 00 00 and eax,1C0h 004116DD: 83 F8 40 cmp eax,40h 004116E0: 0F 84 E9 00 00 00 je 004117CF 004116E6: EB 09 jmp 004116F1 004116E8: 8B 45 D0 mov eax,dword ptr [ebp-30h] 004116EB: 83 E8 01 sub eax,1 004116EE: 89 45 D0 mov dword ptr [ebp-30h],eax 004116F1: 83 7D D0 00 cmp dword ptr [ebp-30h],0 004116F5: 0F 8E D4 00 00 00 jle 004117CF 004116FB: 8B 45 08 mov eax,dword ptr [ebp+8] 004116FE: 8B 08 mov ecx,dword ptr [eax] 00411700: 8B 55 08 mov edx,dword ptr [ebp+8] 00411703: 03 51 04 add edx,dword ptr [ecx+4] 00411706: 8B F4 mov esi,esp 00411708: 8B CA mov ecx,edx 0041170A: FF 15 1C A3 41 00 call dword ptr [__imp_?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ] 00411710: 3B F4 cmp esi,esp 00411712: E8 92 FA FF FF call @ILT+420(__RTC_CheckEsp) 00411717: 88 85 BF FE FF FF mov byte ptr [ebp-141h],al 0041171D: 8B 45 08 mov eax,dword ptr [ebp+8] 00411720: 8B 08 mov ecx,dword ptr [eax] 00411722: 8B 55 08 mov edx,dword ptr [ebp+8] 00411725: 03 51 04 add edx,dword ptr [ecx+4] 00411728: 8B F4 mov esi,esp 0041172A: 8B CA mov ecx,edx 0041172C: FF 15 20 A3 41 00 call dword ptr [__imp_?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ] 00411732: 3B F4 cmp esi,esp 00411734: E8 70 FA FF FF call @ILT+420(__RTC_CheckEsp) 00411739: 89 85 B8 FE FF FF mov dword ptr [ebp-148h],eax 0041173F: 8B F4 mov esi,esp 00411741: 8A 85 BF FE FF FF mov al,byte ptr [ebp-141h] 00411747: 50 push eax 00411748: 8B 8D B8 FE FF FF mov ecx,dword ptr [ebp-148h] 0041174E: FF 15 24 A3 41 00 call dword ptr [__imp_?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z] 00411754: 3B F4 cmp esi,esp 00411756: E8 4E FA FF FF call @ILT+420(__RTC_CheckEsp) 0041175B: 89 85 B4 FE FF FF mov dword ptr [ebp-14Ch],eax 00411761: 8B 8D B4 FE FF FF mov ecx,dword ptr [ebp-14Ch] 00411767: 89 8D C4 FE FF FF mov dword ptr [ebp-13Ch],ecx 0041176D: 8B F4 mov esi,esp 0041176F: FF 15 28 A3 41 00 call dword ptr [__imp_?eof@?$char_traits@D@std@@SAHXZ] 00411775: 3B F4 cmp esi,esp 00411777: E8 2D FA FF FF call @ILT+420(__RTC_CheckEsp) 0041177C: 89 85 B0 FE FF FF mov dword ptr [ebp-150h],eax 00411782: 8B 95 B0 FE FF FF mov edx,dword ptr [ebp-150h] 00411788: 89 95 D0 FE FF FF mov dword ptr [ebp-130h],edx 0041178E: 8B F4 mov esi,esp 00411790: 8D 85 C4 FE FF FF lea eax,[ebp-13Ch] 00411796: 50 push eax 00411797: 8D 8D D0 FE FF FF lea ecx,[ebp-130h] 0041179D: 51 push ecx 0041179E: FF 15 30 A3 41 00 call dword ptr [__imp_?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z] 004117A4: 83 C4 08 add esp,8 004117A7: 3B F4 cmp esi,esp 004117A9: E8 FB F9 FF FF call @ILT+420(__RTC_CheckEsp) 004117AE: 88 85 AF FE FF FF mov byte ptr [ebp-151h],al 004117B4: 0F B6 95 AF FE FF movzx edx,byte ptr [ebp-151h] FF 004117BB: 85 D2 test edx,edx 004117BD: 74 0B je 004117CA 004117BF: 8B 45 E8 mov eax,dword ptr [ebp-18h] 004117C2: 83 C8 04 or eax,4 004117C5: 89 45 E8 mov dword ptr [ebp-18h],eax 004117C8: EB 05 jmp 004117CF 004117CA: E9 19 FF FF FF jmp 004116E8 004117CF: 83 7D E8 00 cmp dword ptr [ebp-18h],0 004117D3: 75 59 jne 0041182E 004117D5: 8B 45 08 mov eax,dword ptr [ebp+8] 004117D8: 8B 08 mov ecx,dword ptr [eax] 004117DA: 8B 55 08 mov edx,dword ptr [ebp+8] 004117DD: 03 51 04 add edx,dword ptr [ecx+4] 004117E0: 8B F4 mov esi,esp 004117E2: 8B CA mov ecx,edx 004117E4: FF 15 20 A3 41 00 call dword ptr [__imp_?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ] 004117EA: 3B F4 cmp esi,esp 004117EC: E8 B8 F9 FF FF call @ILT+420(__RTC_CheckEsp) 004117F1: 89 85 BC FE FF FF mov dword ptr [ebp-144h],eax 004117F7: 8B F4 mov esi,esp 004117F9: 8B 45 DC mov eax,dword ptr [ebp-24h] 004117FC: 50 push eax 004117FD: 8B 4D 0C mov ecx,dword ptr [ebp+0Ch] 00411800: 51 push ecx 00411801: 8B 8D BC FE FF FF mov ecx,dword ptr [ebp-144h] 00411807: FF 15 34 A3 41 00 call dword ptr [__imp_?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z] 0041180D: 3B F4 cmp esi,esp 0041180F: E8 95 F9 FF FF call @ILT+420(__RTC_CheckEsp) 00411814: 89 85 B8 FE FF FF mov dword ptr [ebp-148h],eax 0041181A: 8B 95 B8 FE FF FF mov edx,dword ptr [ebp-148h] 00411820: 3B 55 DC cmp edx,dword ptr [ebp-24h] 00411823: 74 09 je 0041182E 00411825: 8B 45 E8 mov eax,dword ptr [ebp-18h] 00411828: 83 C8 04 or eax,4 0041182B: 89 45 E8 mov dword ptr [ebp-18h],eax 0041182E: 83 7D E8 00 cmp dword ptr [ebp-18h],0 00411832: 0F 85 E9 00 00 00 jne 00411921 00411838: EB 09 jmp 00411843 0041183A: 8B 45 D0 mov eax,dword ptr [ebp-30h] 0041183D: 83 E8 01 sub eax,1 00411840: 89 45 D0 mov dword ptr [ebp-30h],eax 00411843: 83 7D D0 00 cmp dword ptr [ebp-30h],0 00411847: 0F 8E D4 00 00 00 jle 00411921 0041184D: 8B 45 08 mov eax,dword ptr [ebp+8] 00411850: 8B 08 mov ecx,dword ptr [eax] 00411852: 8B 55 08 mov edx,dword ptr [ebp+8] 00411855: 03 51 04 add edx,dword ptr [ecx+4] 00411858: 8B F4 mov esi,esp 0041185A: 8B CA mov ecx,edx 0041185C: FF 15 1C A3 41 00 call dword ptr [__imp_?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ] 00411862: 3B F4 cmp esi,esp 00411864: E8 40 F9 FF FF call @ILT+420(__RTC_CheckEsp) 00411869: 88 85 BF FE FF FF mov byte ptr [ebp-141h],al 0041186F: 8B 45 08 mov eax,dword ptr [ebp+8] 00411872: 8B 08 mov ecx,dword ptr [eax] 00411874: 8B 55 08 mov edx,dword ptr [ebp+8] 00411877: 03 51 04 add edx,dword ptr [ecx+4] 0041187A: 8B F4 mov esi,esp 0041187C: 8B CA mov ecx,edx 0041187E: FF 15 20 A3 41 00 call dword ptr [__imp_?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ] 00411884: 3B F4 cmp esi,esp 00411886: E8 1E F9 FF FF call @ILT+420(__RTC_CheckEsp) 0041188B: 89 85 B8 FE FF FF mov dword ptr [ebp-148h],eax 00411891: 8B F4 mov esi,esp 00411893: 8A 85 BF FE FF FF mov al,byte ptr [ebp-141h] 00411899: 50 push eax 0041189A: 8B 8D B8 FE FF FF mov ecx,dword ptr [ebp-148h] 004118A0: FF 15 24 A3 41 00 call dword ptr [__imp_?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z] 004118A6: 3B F4 cmp esi,esp 004118A8: E8 FC F8 FF FF call @ILT+420(__RTC_CheckEsp) 004118AD: 89 85 B4 FE FF FF mov dword ptr [ebp-14Ch],eax 004118B3: 8B 8D B4 FE FF FF mov ecx,dword ptr [ebp-14Ch] 004118B9: 89 8D DC FE FF FF mov dword ptr [ebp-124h],ecx 004118BF: 8B F4 mov esi,esp 004118C1: FF 15 28 A3 41 00 call dword ptr [__imp_?eof@?$char_traits@D@std@@SAHXZ] 004118C7: 3B F4 cmp esi,esp 004118C9: E8 DB F8 FF FF call @ILT+420(__RTC_CheckEsp) 004118CE: 89 85 B0 FE FF FF mov dword ptr [ebp-150h],eax 004118D4: 8B 95 B0 FE FF FF mov edx,dword ptr [ebp-150h] 004118DA: 89 95 E8 FE FF FF mov dword ptr [ebp-118h],edx 004118E0: 8B F4 mov esi,esp 004118E2: 8D 85 DC FE FF FF lea eax,[ebp-124h] 004118E8: 50 push eax 004118E9: 8D 8D E8 FE FF FF lea ecx,[ebp-118h] 004118EF: 51 push ecx 004118F0: FF 15 30 A3 41 00 call dword ptr [__imp_?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z] 004118F6: 83 C4 08 add esp,8 004118F9: 3B F4 cmp esi,esp 004118FB: E8 A9 F8 FF FF call @ILT+420(__RTC_CheckEsp) 00411900: 88 85 AF FE FF FF mov byte ptr [ebp-151h],al 00411906: 0F B6 95 AF FE FF movzx edx,byte ptr [ebp-151h] FF 0041190D: 85 D2 test edx,edx 0041190F: 74 0B je 0041191C 00411911: 8B 45 E8 mov eax,dword ptr [ebp-18h] 00411914: 83 C8 04 or eax,4 00411917: 89 45 E8 mov dword ptr [ebp-18h],eax 0041191A: EB 05 jmp 00411921 0041191C: E9 19 FF FF FF jmp 0041183A 00411921: 8B F4 mov esi,esp 00411923: 6A 00 push 0 00411925: 8B 45 08 mov eax,dword ptr [ebp+8] 00411928: 8B 08 mov ecx,dword ptr [eax] 0041192A: 8B 55 08 mov edx,dword ptr [ebp+8] 0041192D: 03 51 04 add edx,dword ptr [ecx+4] 00411930: 8B CA mov ecx,edx 00411932: FF 15 38 A3 41 00 call dword ptr [__imp_?width@ios_base@std@@QAEHH@Z] 00411938: 3B F4 cmp esi,esp 0041193A: E8 6A F8 FF FF call @ILT+420(__RTC_CheckEsp) 0041193F: EB 2D jmp 0041196E 00411941: 8B F4 mov esi,esp 00411943: 6A 01 push 1 00411945: 6A 04 push 4 00411947: 8B 45 08 mov eax,dword ptr [ebp+8] 0041194A: 8B 08 mov ecx,dword ptr [eax] 0041194C: 8B 55 08 mov edx,dword ptr [ebp+8] 0041194F: 03 51 04 add edx,dword ptr [ecx+4] 00411952: 8B CA mov ecx,edx 00411954: FF 15 3C A3 41 00 call dword ptr [__imp_?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z] 0041195A: 3B F4 cmp esi,esp 0041195C: E8 48 F8 FF FF call @ILT+420(__RTC_CheckEsp) 00411961: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 00411968: B8 75 19 41 00 mov eax,411975h 0041196D: C3 ret 0041196E: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 00411975: 8B F4 mov esi,esp 00411977: 6A 00 push 0 00411979: 8B 45 E8 mov eax,dword ptr [ebp-18h] 0041197C: 50 push eax 0041197D: 8B 4D 08 mov ecx,dword ptr [ebp+8] 00411980: 8B 11 mov edx,dword ptr [ecx] 00411982: 8B 4D 08 mov ecx,dword ptr [ebp+8] 00411985: 03 4A 04 add ecx,dword ptr [edx+4] 00411988: FF 15 3C A3 41 00 call dword ptr [__imp_?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z] 0041198E: 3B F4 cmp esi,esp 00411990: E8 14 F8 FF FF call @ILT+420(__RTC_CheckEsp) 00411995: 8B 45 08 mov eax,dword ptr [ebp+8] 00411998: 89 85 F4 FE FF FF mov dword ptr [ebp-10Ch],eax 0041199E: C7 45 FC FF FF FF mov dword ptr [ebp-4],0FFFFFFFFh FF 004119A5: 8D 4D C0 lea ecx,[ebp-40h] 004119A8: E8 89 F7 FF FF call @ILT+305(??1sentry@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@XZ) 004119AD: 8B 85 F4 FE FF FF mov eax,dword ptr [ebp-10Ch] 004119B3: 52 push edx 004119B4: 8B CD mov ecx,ebp 004119B6: 50 push eax 004119B7: 8D 15 E4 19 41 00 lea edx,ds:[4119E4h] 004119BD: E8 ED F6 FF FF call @ILT+171(@_RTC_CheckStackVars@8) 004119C2: 58 pop eax 004119C3: 5A pop edx 004119C4: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 004119C7: 64 89 0D 00 00 00 mov dword ptr fs:[0],ecx 00 004119CE: 59 pop ecx 004119CF: 5F pop edi 004119D0: 5E pop esi 004119D1: 5B pop ebx 004119D2: 81 C4 54 01 00 00 add esp,154h 004119D8: 3B EC cmp ebp,esp 004119DA: E8 CA F7 FF FF call @ILT+420(__RTC_CheckEsp) 004119DF: 8B E5 mov esp,ebp 004119E1: 5D pop ebp 004119E2: C3 ret 004119E3: 90 nop 004119E4: 01 00 add dword ptr [eax],eax 004119E6: 00 00 add byte ptr [eax],al 004119E8: EC in al,dx 004119E9: 19 41 00 sbb dword ptr [ecx],eax 004119EC: C0 FF FF sar bh,0FFh 004119EF: FF 08 dec dword ptr [eax] 004119F1: 00 00 add byte ptr [eax],al 004119F3: 00 F8 add al,bh 004119F5: 19 41 00 sbb dword ptr [ecx],eax 004119F8: 5F pop edi 004119F9: 4F dec edi 004119FA: 6B 004119FB: 00 004119FC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A0C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A1C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A2C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A3C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A4C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A5C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A6C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A7C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A8C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411A9C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411AAC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411ABC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411ACC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411ADC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411AEC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411AFC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411B0C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411B1C: CC CC CC CC ???? ??0sentry@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@AAV12@@Z: 00411B20: 55 push ebp 00411B21: 8B EC mov ebp,esp 00411B23: 6A FF push 0FFFFFFFFh 00411B25: 68 58 50 41 00 push 415058h 00411B2A: 64 A1 00 00 00 00 mov eax,dword ptr fs:[00000000h] 00411B30: 50 push eax 00411B31: 81 EC CC 00 00 00 sub esp,0CCh 00411B37: 53 push ebx 00411B38: 56 push esi 00411B39: 57 push edi 00411B3A: 51 push ecx 00411B3B: 8D BD 28 FF FF FF lea edi,[ebp-0D8h] 00411B41: B9 33 00 00 00 mov ecx,33h 00411B46: B8 CC CC CC CC mov eax,0CCCCCCCCh 00411B4B: F3 AB rep stos dword ptr es:[edi] 00411B4D: 59 pop ecx 00411B4E: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 00411B53: 33 C5 xor eax,ebp 00411B55: 50 push eax 00411B56: 8D 45 F4 lea eax,[ebp-0Ch] 00411B59: 64 A3 00 00 00 00 mov dword ptr fs:[00000000h],eax 00411B5F: 89 4D EC mov dword ptr [ebp-14h],ecx 00411B62: 8B 45 08 mov eax,dword ptr [ebp+8] 00411B65: 50 push eax 00411B66: 8B 4D EC mov ecx,dword ptr [ebp-14h] 00411B69: E8 D6 F6 FF FF call @ILT+575(??0_Sentry_base@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@AAV12@@Z) 00411B6E: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 00411B75: 8B 45 08 mov eax,dword ptr [ebp+8] 00411B78: 8B 08 mov ecx,dword ptr [eax] 00411B7A: 8B 55 08 mov edx,dword ptr [ebp+8] 00411B7D: 03 51 04 add edx,dword ptr [ecx+4] 00411B80: 8B F4 mov esi,esp 00411B82: 8B CA mov ecx,edx 00411B84: FF 15 04 A3 41 00 call dword ptr [__imp_?good@ios_base@std@@QBE_NXZ] 00411B8A: 3B F4 cmp esi,esp 00411B8C: E8 18 F6 FF FF call @ILT+420(__RTC_CheckEsp) 00411B91: 0F B6 C0 movzx eax,al 00411B94: 85 C0 test eax,eax 00411B96: 74 4D je 00411BE5 00411B98: 8B 45 08 mov eax,dword ptr [ebp+8] 00411B9B: 8B 08 mov ecx,dword ptr [eax] 00411B9D: 8B 55 08 mov edx,dword ptr [ebp+8] 00411BA0: 03 51 04 add edx,dword ptr [ecx+4] 00411BA3: 8B F4 mov esi,esp 00411BA5: 8B CA mov ecx,edx 00411BA7: FF 15 08 A3 41 00 call dword ptr [__imp_?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ] 00411BAD: 3B F4 cmp esi,esp 00411BAF: E8 F5 F5 FF FF call @ILT+420(__RTC_CheckEsp) 00411BB4: 85 C0 test eax,eax 00411BB6: 74 2D je 00411BE5 00411BB8: 8B 45 08 mov eax,dword ptr [ebp+8] 00411BBB: 8B 08 mov ecx,dword ptr [eax] 00411BBD: 8B 55 08 mov edx,dword ptr [ebp+8] 00411BC0: 03 51 04 add edx,dword ptr [ecx+4] 00411BC3: 8B F4 mov esi,esp 00411BC5: 8B CA mov ecx,edx 00411BC7: FF 15 08 A3 41 00 call dword ptr [__imp_?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ] 00411BCD: 3B F4 cmp esi,esp 00411BCF: E8 D5 F5 FF FF call @ILT+420(__RTC_CheckEsp) 00411BD4: 8B F4 mov esi,esp 00411BD6: 8B C8 mov ecx,eax 00411BD8: FF 15 0C A3 41 00 call dword ptr [__imp_?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ] 00411BDE: 3B F4 cmp esi,esp 00411BE0: E8 C4 F5 FF FF call @ILT+420(__RTC_CheckEsp) 00411BE5: 8B 45 08 mov eax,dword ptr [ebp+8] 00411BE8: 8B 08 mov ecx,dword ptr [eax] 00411BEA: 8B 55 08 mov edx,dword ptr [ebp+8] 00411BED: 03 51 04 add edx,dword ptr [ecx+4] 00411BF0: 8B F4 mov esi,esp 00411BF2: 8B CA mov ecx,edx 00411BF4: FF 15 04 A3 41 00 call dword ptr [__imp_?good@ios_base@std@@QBE_NXZ] 00411BFA: 3B F4 cmp esi,esp 00411BFC: E8 A8 F5 FF FF call @ILT+420(__RTC_CheckEsp) 00411C01: 8B 4D EC mov ecx,dword ptr [ebp-14h] 00411C04: 88 41 04 mov byte ptr [ecx+4],al 00411C07: C7 45 FC FF FF FF mov dword ptr [ebp-4],0FFFFFFFFh FF 00411C0E: 8B 45 EC mov eax,dword ptr [ebp-14h] 00411C11: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 00411C14: 64 89 0D 00 00 00 mov dword ptr fs:[0],ecx 00 00411C1B: 59 pop ecx 00411C1C: 5F pop edi 00411C1D: 5E pop esi 00411C1E: 5B pop ebx 00411C1F: 81 C4 D8 00 00 00 add esp,0D8h 00411C25: 3B EC cmp ebp,esp 00411C27: E8 7D F5 FF FF call @ILT+420(__RTC_CheckEsp) 00411C2C: 8B E5 mov esp,ebp 00411C2E: 5D pop ebp 00411C2F: C2 04 00 ret 4 00411C32: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411C42: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411C52: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411C62: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411C72: CC CC CC CC CC CC CC CC CC CC CC CC CC CC ?????????????? ??1sentry@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@XZ: 00411C80: 55 push ebp 00411C81: 8B EC mov ebp,esp 00411C83: 6A FF push 0FFFFFFFFh 00411C85: 68 88 50 41 00 push 415088h 00411C8A: 64 A1 00 00 00 00 mov eax,dword ptr fs:[00000000h] 00411C90: 50 push eax 00411C91: 81 EC CC 00 00 00 sub esp,0CCh 00411C97: 53 push ebx 00411C98: 56 push esi 00411C99: 57 push edi 00411C9A: 51 push ecx 00411C9B: 8D BD 28 FF FF FF lea edi,[ebp-0D8h] 00411CA1: B9 33 00 00 00 mov ecx,33h 00411CA6: B8 CC CC CC CC mov eax,0CCCCCCCCh 00411CAB: F3 AB rep stos dword ptr es:[edi] 00411CAD: 59 pop ecx 00411CAE: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 00411CB3: 33 C5 xor eax,ebp 00411CB5: 50 push eax 00411CB6: 8D 45 F4 lea eax,[ebp-0Ch] 00411CB9: 64 A3 00 00 00 00 mov dword ptr fs:[00000000h],eax 00411CBF: 89 4D EC mov dword ptr [ebp-14h],ecx 00411CC2: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 00411CC9: 8B F4 mov esi,esp 00411CCB: FF 15 FC A2 41 00 call dword ptr [__imp_?uncaught_exception@std@@YA_NXZ] 00411CD1: 3B F4 cmp esi,esp 00411CD3: E8 D1 F4 FF FF call @ILT+420(__RTC_CheckEsp) 00411CD8: 0F B6 C0 movzx eax,al 00411CDB: 85 C0 test eax,eax 00411CDD: 75 14 jne 00411CF3 00411CDF: 8B F4 mov esi,esp 00411CE1: 8B 45 EC mov eax,dword ptr [ebp-14h] 00411CE4: 8B 08 mov ecx,dword ptr [eax] 00411CE6: FF 15 00 A3 41 00 call dword ptr [__imp_?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ] 00411CEC: 3B F4 cmp esi,esp 00411CEE: E8 B6 F4 FF FF call @ILT+420(__RTC_CheckEsp) 00411CF3: C7 45 FC FF FF FF mov dword ptr [ebp-4],0FFFFFFFFh FF 00411CFA: 8B 4D EC mov ecx,dword ptr [ebp-14h] 00411CFD: E8 6B F4 FF FF call @ILT+363(??1_Sentry_base@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@XZ) 00411D02: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 00411D05: 64 89 0D 00 00 00 mov dword ptr fs:[0],ecx 00 00411D0C: 59 pop ecx 00411D0D: 5F pop edi 00411D0E: 5E pop esi 00411D0F: 5B pop ebx 00411D10: 81 C4 D8 00 00 00 add esp,0D8h 00411D16: 3B EC cmp ebp,esp 00411D18: E8 8C F4 FF FF call @ILT+420(__RTC_CheckEsp) 00411D1D: 8B E5 mov esp,ebp 00411D1F: 5D pop ebp 00411D20: C3 ret 00411D21: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411D31: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411D41: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ??????????????? ??Bsentry@?$basic_ostream@DU?$char_traits@D@std@@@std@@QBE_NXZ: 00411D50: 55 push ebp 00411D51: 8B EC mov ebp,esp 00411D53: 81 EC CC 00 00 00 sub esp,0CCh 00411D59: 53 push ebx 00411D5A: 56 push esi 00411D5B: 57 push edi 00411D5C: 51 push ecx 00411D5D: 8D BD 34 FF FF FF lea edi,[ebp-0CCh] 00411D63: B9 33 00 00 00 mov ecx,33h 00411D68: B8 CC CC CC CC mov eax,0CCCCCCCCh 00411D6D: F3 AB rep stos dword ptr es:[edi] 00411D6F: 59 pop ecx 00411D70: 89 4D F8 mov dword ptr [ebp-8],ecx 00411D73: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411D76: 8A 40 04 mov al,byte ptr [eax+4] 00411D79: 5F pop edi 00411D7A: 5E pop esi 00411D7B: 5B pop ebx 00411D7C: 8B E5 mov esp,ebp 00411D7E: 5D pop ebp 00411D7F: C3 ret 00411D80: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? ??0_Sentry_base@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@AAV12@@Z: 00411D90: 55 push ebp 00411D91: 8B EC mov ebp,esp 00411D93: 81 EC CC 00 00 00 sub esp,0CCh 00411D99: 53 push ebx 00411D9A: 56 push esi 00411D9B: 57 push edi 00411D9C: 51 push ecx 00411D9D: 8D BD 34 FF FF FF lea edi,[ebp-0CCh] 00411DA3: B9 33 00 00 00 mov ecx,33h 00411DA8: B8 CC CC CC CC mov eax,0CCCCCCCCh 00411DAD: F3 AB rep stos dword ptr es:[edi] 00411DAF: 59 pop ecx 00411DB0: 89 4D F8 mov dword ptr [ebp-8],ecx 00411DB3: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411DB6: 8B 4D 08 mov ecx,dword ptr [ebp+8] 00411DB9: 89 08 mov dword ptr [eax],ecx 00411DBB: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411DBE: 8B 08 mov ecx,dword ptr [eax] 00411DC0: 8B 11 mov edx,dword ptr [ecx] 00411DC2: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411DC5: 8B 08 mov ecx,dword ptr [eax] 00411DC7: 03 4A 04 add ecx,dword ptr [edx+4] 00411DCA: 8B F4 mov esi,esp 00411DCC: FF 15 20 A3 41 00 call dword ptr [__imp_?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ] 00411DD2: 3B F4 cmp esi,esp 00411DD4: E8 D0 F3 FF FF call @ILT+420(__RTC_CheckEsp) 00411DD9: 85 C0 test eax,eax 00411DDB: 74 2F je 00411E0C 00411DDD: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411DE0: 8B 08 mov ecx,dword ptr [eax] 00411DE2: 8B 11 mov edx,dword ptr [ecx] 00411DE4: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411DE7: 8B 08 mov ecx,dword ptr [eax] 00411DE9: 03 4A 04 add ecx,dword ptr [edx+4] 00411DEC: 8B F4 mov esi,esp 00411DEE: FF 15 20 A3 41 00 call dword ptr [__imp_?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ] 00411DF4: 3B F4 cmp esi,esp 00411DF6: E8 AE F3 FF FF call @ILT+420(__RTC_CheckEsp) 00411DFB: 8B F4 mov esi,esp 00411DFD: 8B C8 mov ecx,eax 00411DFF: FF 15 F8 A2 41 00 call dword ptr [__imp_?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ] 00411E05: 3B F4 cmp esi,esp 00411E07: E8 9D F3 FF FF call @ILT+420(__RTC_CheckEsp) 00411E0C: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411E0F: 5F pop edi 00411E10: 5E pop esi 00411E11: 5B pop ebx 00411E12: 81 C4 CC 00 00 00 add esp,0CCh 00411E18: 3B EC cmp ebp,esp 00411E1A: E8 8A F3 FF FF call @ILT+420(__RTC_CheckEsp) 00411E1F: 8B E5 mov esp,ebp 00411E21: 5D pop ebp 00411E22: C2 04 00 ret 4 00411E25: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411E35: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411E45: CC CC CC CC CC CC CC CC CC CC CC ??????????? ??1_Sentry_base@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@XZ: 00411E50: 55 push ebp 00411E51: 8B EC mov ebp,esp 00411E53: 81 EC CC 00 00 00 sub esp,0CCh 00411E59: 53 push ebx 00411E5A: 56 push esi 00411E5B: 57 push edi 00411E5C: 51 push ecx 00411E5D: 8D BD 34 FF FF FF lea edi,[ebp-0CCh] 00411E63: B9 33 00 00 00 mov ecx,33h 00411E68: B8 CC CC CC CC mov eax,0CCCCCCCCh 00411E6D: F3 AB rep stos dword ptr es:[edi] 00411E6F: 59 pop ecx 00411E70: 89 4D F8 mov dword ptr [ebp-8],ecx 00411E73: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411E76: 8B 08 mov ecx,dword ptr [eax] 00411E78: 8B 11 mov edx,dword ptr [ecx] 00411E7A: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411E7D: 8B 08 mov ecx,dword ptr [eax] 00411E7F: 03 4A 04 add ecx,dword ptr [edx+4] 00411E82: 8B F4 mov esi,esp 00411E84: FF 15 20 A3 41 00 call dword ptr [__imp_?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ] 00411E8A: 3B F4 cmp esi,esp 00411E8C: E8 18 F3 FF FF call @ILT+420(__RTC_CheckEsp) 00411E91: 85 C0 test eax,eax 00411E93: 74 2F je 00411EC4 00411E95: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411E98: 8B 08 mov ecx,dword ptr [eax] 00411E9A: 8B 11 mov edx,dword ptr [ecx] 00411E9C: 8B 45 F8 mov eax,dword ptr [ebp-8] 00411E9F: 8B 08 mov ecx,dword ptr [eax] 00411EA1: 03 4A 04 add ecx,dword ptr [edx+4] 00411EA4: 8B F4 mov esi,esp 00411EA6: FF 15 20 A3 41 00 call dword ptr [__imp_?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ] 00411EAC: 3B F4 cmp esi,esp 00411EAE: E8 F6 F2 FF FF call @ILT+420(__RTC_CheckEsp) 00411EB3: 8B F4 mov esi,esp 00411EB5: 8B C8 mov ecx,eax 00411EB7: FF 15 F4 A2 41 00 call dword ptr [__imp_?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ] 00411EBD: 3B F4 cmp esi,esp 00411EBF: E8 E5 F2 FF FF call @ILT+420(__RTC_CheckEsp) 00411EC4: 5F pop edi 00411EC5: 5E pop esi 00411EC6: 5B pop ebx 00411EC7: 81 C4 CC 00 00 00 add esp,0CCh 00411ECD: 3B EC cmp ebp,esp 00411ECF: E8 D5 F2 FF FF call @ILT+420(__RTC_CheckEsp) 00411ED4: 8B E5 mov esp,ebp 00411ED6: 5D pop ebp 00411ED7: C3 ret 00411ED8: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411EE8: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00411EF8: CC CC CC CC CC CC CC CC ???????? _virustj: 00411F00: 33 C0 xor eax,eax 00411F02: 68 B8 11 41 00 push offset @ILT+435(_virustj) 00411F07: 58 pop eax 00411F08: B8 4C 00 00 00 mov eax,4Ch 00411F0D: 89 00 mov dword ptr [eax],eax 00411F0F: C3 ret _clear: 00411F10: 33 C0 xor eax,eax 00411F12: 33 DB xor ebx,ebx 00411F14: B8 00 03 00 00 mov eax,300h 00411F19: BB 4C 00 00 00 mov ebx,4Ch 00411F1E: 89 03 mov dword ptr [ebx],eax 00411F20: 33 C9 xor ecx,ecx 00411F22: B8 4C 00 00 00 mov eax,4Ch 00411F27: 89 19 mov dword ptr [ecx],ebx 00411F29: 33 C0 xor eax,eax 00411F2B: BB 4C 00 00 00 mov ebx,4Ch 00411F30: 89 18 mov dword ptr [eax],ebx 00411F32: 68 B8 11 41 00 push offset @ILT+435(_virustj) 00411F37: C3 ret 00411F38: CC CC CC CC CC CC CC CC CC CC CC CC CC CC ?????????????? ??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z: 00411F46: FF 25 2C A3 41 00 jmp dword ptr [__imp_??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z] ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z: 00411F4C: FF 25 48 A3 41 00 jmp dword ptr [__imp_??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z] ?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z: 00411F52: FF 25 40 A3 41 00 jmp dword ptr [__imp_?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z] ?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z: 00411F58: FF 25 3C A3 41 00 jmp dword ptr [__imp_?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z] ?width@ios_base@std@@QAEHH@Z: 00411F5E: FF 25 38 A3 41 00 jmp dword ptr [__imp_?width@ios_base@std@@QAEHH@Z] ?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z: 00411F64: FF 25 34 A3 41 00 jmp dword ptr [__imp_?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z] ?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z: 00411F6A: FF 25 30 A3 41 00 jmp dword ptr [__imp_?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z] ?eof@?$char_traits@D@std@@SAHXZ: 00411F70: FF 25 28 A3 41 00 jmp dword ptr [__imp_?eof@?$char_traits@D@std@@SAHXZ] ?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z: 00411F76: FF 25 24 A3 41 00 jmp dword ptr [__imp_?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z] ?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ: 00411F7C: FF 25 20 A3 41 00 jmp dword ptr [__imp_?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ] ?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ: 00411F82: FF 25 1C A3 41 00 jmp dword ptr [__imp_?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ] ?flags@ios_base@std@@QBEHXZ: 00411F88: FF 25 18 A3 41 00 jmp dword ptr [__imp_?flags@ios_base@std@@QBEHXZ] ?width@ios_base@std@@QBEHXZ: 00411F8E: FF 25 14 A3 41 00 jmp dword ptr [__imp_?width@ios_base@std@@QBEHXZ] ?length@?$char_traits@D@std@@SAIPBD@Z: 00411F94: FF 25 10 A3 41 00 jmp dword ptr [__imp_?length@?$char_traits@D@std@@SAIPBD@Z] ?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ: 00411F9A: FF 25 0C A3 41 00 jmp dword ptr [__imp_?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ] ?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ: 00411FA0: FF 25 08 A3 41 00 jmp dword ptr [__imp_?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ] ?good@ios_base@std@@QBE_NXZ: 00411FA6: FF 25 04 A3 41 00 jmp dword ptr [__imp_?good@ios_base@std@@QBE_NXZ] ?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ: 00411FAC: FF 25 00 A3 41 00 jmp dword ptr [__imp_?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ] ?uncaught_exception@std@@YA_NXZ: 00411FB2: FF 25 FC A2 41 00 jmp dword ptr [__imp_?uncaught_exception@std@@YA_NXZ] ?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ: 00411FB8: FF 25 F8 A2 41 00 jmp dword ptr [__imp_?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ] ?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ: 00411FBE: FF 25 F4 A2 41 00 jmp dword ptr [__imp_?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ] 00411FC4: CC CC CC CC CC CC CC CC CC CC CC CC ???????????? __RTC_CheckEsp: 00411FD0: 75 01 jne 00411FD3 00411FD2: C3 ret 00411FD3: 55 push ebp 00411FD4: 8B EC mov ebp,esp 00411FD6: 83 EC 00 sub esp,0 00411FD9: 50 push eax 00411FDA: 52 push edx 00411FDB: 53 push ebx 00411FDC: 56 push esi 00411FDD: 57 push edi 00411FDE: 8B 45 04 mov eax,dword ptr [ebp+4] 00411FE1: 6A 00 push 0 00411FE3: 50 push eax 00411FE4: E8 42 F2 FF FF call @ILT+550(?_RTC_Failure@@YAXPAXH@Z) 00411FE9: 83 C4 08 add esp,8 00411FEC: 5F pop edi 00411FED: 5E pop esi 00411FEE: 5B pop ebx 00411FEF: 5A pop edx 00411FF0: 58 pop eax 00411FF1: 8B E5 mov esp,ebp 00411FF3: 5D pop ebp 00411FF4: C3 ret 00411FF5: CC CC CC CC CC CC CC CC CC CC CC ??????????? @_RTC_CheckStackVars@8: 00412000: 55 push ebp 00412001: 8B EC mov ebp,esp 00412003: 51 push ecx 00412004: 53 push ebx 00412005: 56 push esi 00412006: 57 push edi 00412007: 33 FF xor edi,edi 00412009: 8B F2 mov esi,edx 0041200B: 39 3E cmp dword ptr [esi],edi 0041200D: 8B D9 mov ebx,ecx 0041200F: 89 7D FC mov dword ptr [ebp-4],edi 00412012: 7E 44 jle 00412058 00412014: 8B 46 04 mov eax,dword ptr [esi+4] 00412017: 8B 0C 38 mov ecx,dword ptr [eax+edi] 0041201A: 03 C7 add eax,edi 0041201C: 81 7C 19 FC CC CC cmp dword ptr [ecx+ebx-4],0CCCCCCCCh CC CC 00412024: 75 0E jne 00412034 00412026: 8B 50 04 mov edx,dword ptr [eax+4] 00412029: 03 D1 add edx,ecx 0041202B: 81 3C 1A CC CC CC cmp dword ptr [edx+ebx],0CCCCCCCCh CC 00412032: 74 14 je 00412048 00412034: 8B 46 04 mov eax,dword ptr [esi+4] 00412037: 8B 4C 38 08 mov ecx,dword ptr [eax+edi+8] 0041203B: 8B 55 04 mov edx,dword ptr [ebp+4] 0041203E: 51 push ecx 0041203F: 52 push edx 00412040: E8 C9 F0 FF FF call @ILT+267(?_RTC_StackFailure@@YAXPAXPBD@Z) 00412045: 83 C4 08 add esp,8 00412048: 8B 45 FC mov eax,dword ptr [ebp-4] 0041204B: 83 C0 01 add eax,1 0041204E: 83 C7 0C add edi,0Ch 00412051: 3B 06 cmp eax,dword ptr [esi] 00412053: 89 45 FC mov dword ptr [ebp-4],eax 00412056: 7C BC jl 00412014 00412058: 5F pop edi 00412059: 5E pop esi 0041205A: 5B pop ebx 0041205B: 8B E5 mov esp,ebp 0041205D: 5D pop ebp 0041205E: C3 ret 0041205F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041206F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041207F: CC ? @_RTC_AllocaHelper@12: 00412080: 55 push ebp 00412081: 8B EC mov ebp,esp 00412083: 56 push esi 00412084: 8B F1 mov esi,ecx 00412086: 85 F6 test esi,esi 00412088: 74 21 je 004120AB 0041208A: 85 D2 test edx,edx 0041208C: 74 1D je 004120AB 0041208E: 53 push ebx 0041208F: 8B 5D 08 mov ebx,dword ptr [ebp+8] 00412092: 85 DB test ebx,ebx 00412094: 74 14 je 004120AA 00412096: 57 push edi 00412097: B0 CC mov al,0CCh 00412099: 8B FE mov edi,esi 0041209B: 8B CA mov ecx,edx 0041209D: F3 AA rep stos byte ptr es:[edi] 0041209F: 8B 03 mov eax,dword ptr [ebx] 004120A1: 89 46 04 mov dword ptr [esi+4],eax 004120A4: 89 56 0C mov dword ptr [esi+0Ch],edx 004120A7: 89 33 mov dword ptr [ebx],esi 004120A9: 5F pop edi 004120AA: 5B pop ebx 004120AB: 5E pop esi 004120AC: 5D pop ebp 004120AD: C2 04 00 ret 4 004120B0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? @_RTC_CheckStackVars2@12: 004120C0: 55 push ebp 004120C1: 8B EC mov ebp,esp 004120C3: 51 push ecx 004120C4: 53 push ebx 004120C5: 56 push esi 004120C6: 57 push edi 004120C7: 8B F2 mov esi,edx 004120C9: 33 FF xor edi,edi 004120CB: 3B F7 cmp esi,edi 004120CD: 8B D9 mov ebx,ecx 004120CF: 74 4F je 00412120 004120D1: 39 3E cmp dword ptr [esi],edi 004120D3: 89 7D FC mov dword ptr [ebp-4],edi 004120D6: 7E 48 jle 00412120 004120D8: 8B 46 04 mov eax,dword ptr [esi+4] 004120DB: 8B 0C 38 mov ecx,dword ptr [eax+edi] 004120DE: 03 C7 add eax,edi 004120E0: BA CC CC CC CC mov edx,0CCCCCCCCh 004120E5: 39 54 19 FC cmp dword ptr [ecx+ebx-4],edx 004120E9: 75 0A jne 004120F5 004120EB: 8B 40 04 mov eax,dword ptr [eax+4] 004120EE: 03 C1 add eax,ecx 004120F0: 39 14 18 cmp dword ptr [eax+ebx],edx 004120F3: 74 19 je 0041210E 004120F5: 8B 4E 04 mov ecx,dword ptr [esi+4] 004120F8: 8B 54 0F 08 mov edx,dword ptr [edi+ecx+8] 004120FC: 8B 45 04 mov eax,dword ptr [ebp+4] 004120FF: 52 push edx 00412100: 50 push eax 00412101: E8 08 F0 FF FF call @ILT+267(?_RTC_StackFailure@@YAXPAXPBD@Z) 00412106: 83 C4 08 add esp,8 00412109: BA CC CC CC CC mov edx,0CCCCCCCCh 0041210E: 8B 45 FC mov eax,dword ptr [ebp-4] 00412111: 83 C0 01 add eax,1 00412114: 83 C7 0C add edi,0Ch 00412117: 3B 06 cmp eax,dword ptr [esi] 00412119: 89 45 FC mov dword ptr [ebp-4],eax 0041211C: 7C BA jl 004120D8 0041211E: EB 05 jmp 00412125 00412120: BA CC CC CC CC mov edx,0CCCCCCCCh 00412125: 8B 75 08 mov esi,dword ptr [ebp+8] 00412128: 33 FF xor edi,edi 0041212A: 85 F6 test esi,esi 0041212C: 8B C6 mov eax,esi 0041212E: 74 5C je 0041218C 00412130: 8B 40 04 mov eax,dword ptr [eax+4] 00412133: 83 C7 01 add edi,1 00412136: 85 C0 test eax,eax 00412138: 75 F6 jne 00412130 0041213A: 85 F6 test esi,esi 0041213C: 74 4E je 0041218C 0041213E: 8B FF mov edi,edi 00412140: 39 16 cmp dword ptr [esi],edx 00412142: 75 0F jne 00412153 00412144: 39 56 14 cmp dword ptr [esi+14h],edx 00412147: 75 0A jne 00412153 00412149: 39 56 18 cmp dword ptr [esi+18h],edx 0041214C: 75 05 jne 00412153 0041214E: 39 56 1C cmp dword ptr [esi+1Ch],edx 00412151: 74 13 je 00412166 00412153: 8B 4D 04 mov ecx,dword ptr [ebp+4] 00412156: 57 push edi 00412157: 56 push esi 00412158: 51 push ecx 00412159: E8 D7 F0 FF FF call @ILT+560(?_RTC_AllocaFailure@@YAXPAXPAU_RTC_ALLOCA_NODE@@H@Z) 0041215E: 83 C4 0C add esp,0Ch 00412161: BA CC CC CC CC mov edx,0CCCCCCCCh 00412166: 8B 46 0C mov eax,dword ptr [esi+0Ch] 00412169: 39 54 30 FC cmp dword ptr [eax+esi-4],edx 0041216D: 74 13 je 00412182 0041216F: 8B 4D 04 mov ecx,dword ptr [ebp+4] 00412172: 57 push edi 00412173: 56 push esi 00412174: 51 push ecx 00412175: E8 BB F0 FF FF call @ILT+560(?_RTC_AllocaFailure@@YAXPAXPAU_RTC_ALLOCA_NODE@@H@Z) 0041217A: 83 C4 0C add esp,0Ch 0041217D: BA CC CC CC CC mov edx,0CCCCCCCCh 00412182: 8B 76 04 mov esi,dword ptr [esi+4] 00412185: 83 EF 01 sub edi,1 00412188: 85 F6 test esi,esi 0041218A: 75 B4 jne 00412140 0041218C: 5F pop edi 0041218D: 5E pop esi 0041218E: 5B pop ebx 0041218F: 8B E5 mov esp,ebp 00412191: 5D pop ebp 00412192: C2 04 00 ret 4 00412195: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004121A5: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004121B5: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004121C5: CC CC CC CC CC CC CC CC CC CC CC ??????????? __RTC_InitBase: 004121D0: 80 3D 70 91 41 00 cmp byte ptr ds:[419170h],0 00 004121D7: 75 1F jne 004121F8 004121D9: 6A 00 push 0 004121DB: 6A 01 push 1 004121DD: 6A 00 push 0 004121DF: 6A 00 push 0 004121E1: 6A 00 push 0 004121E3: C6 05 70 91 41 00 mov byte ptr ds:[419170h],1 01 004121EA: E8 E7 EF FF FF call @ILT+465(__CRT_RTC_INITW) 004121EF: 50 push eax 004121F0: E8 50 EF FF FF call @ILT+320(__RTC_SetErrorFuncW) 004121F5: 83 C4 18 add esp,18h 004121F8: C3 ret 004121F9: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412209: CC CC CC CC CC CC CC ??????? __RTC_Shutdown: 00412210: 6A 01 push 1 00412212: 6A 01 push 1 00412214: 6A 00 push 0 00412216: 6A 00 push 0 00412218: 6A 00 push 0 0041221A: E8 B7 EF FF FF call @ILT+465(__CRT_RTC_INITW) 0041221F: 83 C4 14 add esp,14h 00412222: C3 ret 00412223: CC CC CC CC CC ????? ___CxxFrameHandler3: 00412228: FF 25 FC A3 41 00 jmp dword ptr [__imp____CxxFrameHandler3] 0041222E: CC CC ?? @__security_check_cookie@4: 00412230: 3B 0D 10 90 41 00 cmp ecx,dword ptr [___security_cookie] 00412236: 75 02 jne 0041223A 00412238: F3 C3 rep ret 0041223A: E9 7F EE FF FF jmp @ILT+187(___report_gsfailure) 0041223F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041224F: CC ? 00412250: 55 push ebp 00412251: 8B EC mov ebp,esp 00412253: E8 38 04 00 00 call 00412690 00412258: A3 80 91 41 00 mov dword ptr ds:[00419180h],eax 0041225D: 6A 01 push 1 0041225F: FF 15 DC A3 41 00 call dword ptr [__imp____set_app_type] 00412265: 83 C4 04 add esp,4 00412268: 6A FF push 0FFFFFFFFh 0041226A: FF 15 E0 A3 41 00 call dword ptr [__imp___encode_pointer] 00412270: 83 C4 04 add esp,4 00412273: A3 A8 95 41 00 mov dword ptr [___onexitend],eax 00412278: A1 A8 95 41 00 mov eax,dword ptr [___onexitend] 0041227D: A3 B8 95 41 00 mov dword ptr [___onexitbegin],eax 00412282: FF 15 E4 A3 41 00 call dword ptr [__imp____p__fmode] 00412288: 8B 0D 7C 95 41 00 mov ecx,dword ptr [__fmode] 0041228E: 89 08 mov dword ptr [eax],ecx 00412290: FF 15 E8 A3 41 00 call dword ptr [__imp____p__commode] 00412296: 8B 15 78 95 41 00 mov edx,dword ptr [__commode] 0041229C: 89 10 mov dword ptr [eax],edx 0041229E: A1 EC A3 41 00 mov eax,dword ptr [__imp___adjust_fdiv] 004122A3: 8B 08 mov ecx,dword ptr [eax] 004122A5: 89 0D BC 95 41 00 mov dword ptr [__adjust_fdiv],ecx 004122AB: E8 03 EF FF FF call @ILT+430(__RTC_Initialize) 004122B0: E8 55 ED FF FF call @ILT+5(__setargv) 004122B5: 83 3D 50 90 41 00 cmp dword ptr [___defaultmatherr],0 00 004122BC: 75 0E jne 004122CC 004122BE: 68 17 12 41 00 push offset @ILT+530(__matherr) 004122C3: FF 15 F0 A3 41 00 call dword ptr [__imp____setusermatherr] 004122C9: 83 C4 04 add esp,4 004122CC: E8 34 ED FF FF call @ILT+0(__setdefaultprecision) 004122D1: 83 3D 4C 90 41 00 cmp dword ptr [___globallocalestatus],0FFFFFFFFh FF 004122D8: 75 0B jne 004122E5 004122DA: 6A FF push 0FFFFFFFFh 004122DC: FF 15 F4 A3 41 00 call dword ptr [__imp___configthreadlocale] 004122E2: 83 C4 04 add esp,4 004122E5: 33 C0 xor eax,eax 004122E7: 5D pop ebp 004122E8: C3 ret 004122E9: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004122F9: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412309: CC CC CC CC CC CC CC ??????? 00412310: 55 push ebp 00412311: 8B EC mov ebp,esp 00412313: 68 37 10 41 00 push offset @ILT+50(__RTC_Terminate) 00412318: E8 65 ED FF FF call @ILT+125(_atexit) 0041231D: 83 C4 04 add esp,4 00412320: A1 84 95 41 00 mov eax,dword ptr [__newmode] 00412325: A3 88 91 41 00 mov dword ptr ds:[00419188h],eax 0041232A: 68 88 91 41 00 push 419188h 0041232F: 8B 0D 80 95 41 00 mov ecx,dword ptr [__dowildcard] 00412335: 51 push ecx 00412336: 68 78 91 41 00 push 419178h 0041233B: 68 7C 91 41 00 push 41917Ch 00412340: 68 74 91 41 00 push 419174h 00412345: FF 15 D4 A3 41 00 call dword ptr [__imp____getmainargs] 0041234B: 83 C4 14 add esp,14h 0041234E: A3 84 91 41 00 mov dword ptr ds:[00419184h],eax 00412353: 83 3D 84 91 41 00 cmp dword ptr ds:[419184h],0 00 0041235A: 7D 0A jge 00412366 0041235C: 6A 08 push 8 0041235E: E8 91 EE FF FF call @ILT+495(__amsg_exit) 00412363: 83 C4 04 add esp,4 00412366: 5D pop ebp 00412367: C3 ret 00412368: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412378: CC CC CC CC CC CC CC CC ???????? _mainCRTStartup: 00412380: 55 push ebp 00412381: 8B EC mov ebp,esp 00412383: E8 E1 EC FF FF call @ILT+100(___security_init_cookie) 00412388: E8 13 00 00 00 call 004123A0 0041238D: 5D pop ebp 0041238E: C3 ret 0041238F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041239F: CC ? 004123A0: 55 push ebp 004123A1: 8B EC mov ebp,esp 004123A3: 6A FE push 0FFFFFFFEh 004123A5: 68 88 8B 41 00 push 418B88h 004123AA: 68 96 10 41 00 push offset @ILT+145(__except_handler4) 004123AF: 64 A1 00 00 00 00 mov eax,dword ptr fs:[00000000h] 004123B5: 50 push eax 004123B6: 83 C4 E4 add esp,0FFFFFFE4h 004123B9: 53 push ebx 004123BA: 56 push esi 004123BB: 57 push edi 004123BC: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 004123C1: 31 45 F8 xor dword ptr [ebp-8],eax 004123C4: 33 C5 xor eax,ebp 004123C6: 50 push eax 004123C7: 8D 45 F0 lea eax,[ebp-10h] 004123CA: 64 A3 00 00 00 00 mov dword ptr fs:[00000000h],eax 004123D0: 89 65 E8 mov dword ptr [ebp-18h],esp 004123D3: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 004123DA: C7 45 DC 00 00 00 mov dword ptr [ebp-24h],0 00 004123E1: E8 69 ED FF FF call @ILT+331(_NtCurrentTeb) 004123E6: 8B 40 04 mov eax,dword ptr [eax+4] 004123E9: 89 45 E0 mov dword ptr [ebp-20h],eax 004123EC: C7 45 E4 00 00 00 mov dword ptr [ebp-1Ch],0 00 004123F3: 6A 00 push 0 004123F5: 8B 4D E0 mov ecx,dword ptr [ebp-20h] 004123F8: 51 push ecx 004123F9: 68 A4 95 41 00 push offset ___native_startup_lock 004123FE: FF 15 50 A2 41 00 call dword ptr [__imp__InterlockedCompareExchange@12] 00412404: 89 45 DC mov dword ptr [ebp-24h],eax 00412407: 83 7D DC 00 cmp dword ptr [ebp-24h],0 0041240B: 74 1E je 0041242B 0041240D: 8B 55 DC mov edx,dword ptr [ebp-24h] 00412410: 3B 55 E0 cmp edx,dword ptr [ebp-20h] 00412413: 75 09 jne 0041241E 00412415: C7 45 E4 01 00 00 mov dword ptr [ebp-1Ch],1 00 0041241C: EB 0D jmp 0041242B 0041241E: 68 E8 03 00 00 push 3E8h 00412423: FF 15 4C A2 41 00 call dword ptr [__imp__Sleep@4] 00412429: EB C8 jmp 004123F3 0041242B: 83 3D 94 95 41 00 cmp dword ptr [___native_startup_state],1 01 00412432: 75 0C jne 00412440 00412434: 6A 1F push 1Fh 00412436: E8 B9 ED FF FF call @ILT+495(__amsg_exit) 0041243B: 83 C4 04 add esp,4 0041243E: EB 4B jmp 0041248B 00412440: 83 3D 94 95 41 00 cmp dword ptr [___native_startup_state],0 00 00412447: 75 38 jne 00412481 00412449: C7 05 94 95 41 00 mov dword ptr [___native_startup_state],1 01 00 00 00 00412453: 68 18 76 41 00 push offset ___xi_z 00412458: 68 0C 73 41 00 push offset ___xi_a 0041245D: E8 F1 ED FF FF call @ILT+590(__initterm_e) 00412462: 83 C4 08 add esp,8 00412465: 85 C0 test eax,eax 00412467: 74 16 je 0041247F 00412469: C7 45 D4 FF 00 00 mov dword ptr [ebp-2Ch],0FFh 00 00412470: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 00412477: 8B 45 D4 mov eax,dword ptr [ebp-2Ch] 0041247A: E9 53 01 00 00 jmp 004125D2 0041247F: EB 0A jmp 0041248B 00412481: C7 05 90 91 41 00 mov dword ptr ds:[419190h],1 01 00 00 00 0041248B: 83 3D 94 95 41 00 cmp dword ptr [___native_startup_state],1 01 00412492: 75 1C jne 004124B0 00412494: 68 08 72 41 00 push offset ___xc_z 00412499: 68 00 70 41 00 push offset ___xc_a 0041249E: E8 2F EC FF FF call @ILT+205(__initterm) 004124A3: 83 C4 08 add esp,8 004124A6: C7 05 94 95 41 00 mov dword ptr [___native_startup_state],2 02 00 00 00 004124B0: 83 3D 94 95 41 00 cmp dword ptr [___native_startup_state],2 02 004124B7: 74 22 je 004124DB 004124B9: 68 28 78 41 00 push offset ??_C@_1FA@DALEHHGL@?$AA_?$AA_?$AAn?$AAa?$AAt?$AAi?$AAv?$AAe?$AA_?$AAs?$AAt?$AAa?$AAr?$AAt?$AAu?$AAp?$AA_?$AAs?$AAt?$AAa?$AAt?$AAe?$AA?5?$AA?$DN?$AA?$DN?$AA?5?$AA_?$AA_?$AAi?$AAn?$AAi?$AAt@ 004124BE: 6A 00 push 0 004124C0: 68 03 02 00 00 push 203h 004124C5: 68 10 78 41 00 push offset ??_C@_1BC@OHPNMDKE@?$AAc?$AAr?$AAt?$AAe?$AAx?$AAe?$AA?4?$AAc?$AA?$AA@ 004124CA: 6A 02 push 2 004124CC: FF 15 00 A4 41 00 call dword ptr [__imp___CrtDbgReportW] 004124D2: 83 C4 14 add esp,14h 004124D5: 83 F8 01 cmp eax,1 004124D8: 75 01 jne 004124DB 004124DA: CC int 3 004124DB: 83 7D E4 00 cmp dword ptr [ebp-1Ch],0 004124DF: 75 0D jne 004124EE 004124E1: 6A 00 push 0 004124E3: 68 A4 95 41 00 push offset ___native_startup_lock 004124E8: FF 15 B0 A2 41 00 call dword ptr [__imp__InterlockedExchange@8] 004124EE: 83 3D C8 95 41 00 cmp dword ptr [___dyn_tls_init_callback],0 00 004124F5: 74 1D je 00412514 004124F7: 68 C8 95 41 00 push offset ___dyn_tls_init_callback 004124FC: E8 E4 EC FF FF call @ILT+480(__IsNonwritableInCurrentImage) 00412501: 83 C4 04 add esp,4 00412504: 85 C0 test eax,eax 00412506: 74 0C je 00412514 00412508: 6A 00 push 0 0041250A: 6A 02 push 2 0041250C: 6A 00 push 0 0041250E: FF 15 C8 95 41 00 call dword ptr [___dyn_tls_init_callback] 00412514: 6A 01 push 1 00412516: FF 15 BC A3 41 00 call dword ptr [__imp___CrtSetCheckCount] 0041251C: 83 C4 04 add esp,4 0041251F: 8B 0D C0 A3 41 00 mov ecx,dword ptr [__imp____initenv] 00412525: 8B 15 78 91 41 00 mov edx,dword ptr ds:[419178h] 0041252B: 89 11 mov dword ptr [ecx],edx 0041252D: A1 78 91 41 00 mov eax,dword ptr ds:[00419178h] 00412532: 50 push eax 00412533: 8B 0D 7C 91 41 00 mov ecx,dword ptr ds:[41917Ch] 00412539: 51 push ecx 0041253A: 8B 15 74 91 41 00 mov edx,dword ptr ds:[419174h] 00412540: 52 push edx 00412541: E8 68 EC FF FF call @ILT+427(_main) 00412546: 83 C4 0C add esp,0Ch 00412549: A3 8C 91 41 00 mov dword ptr ds:[0041918Ch],eax 0041254E: 83 3D 80 91 41 00 cmp dword ptr ds:[419180h],0 00 00412555: 75 0C jne 00412563 00412557: A1 8C 91 41 00 mov eax,dword ptr ds:[0041918Ch] 0041255C: 50 push eax 0041255D: FF 15 C4 A3 41 00 call dword ptr [__imp__exit] 00412563: 83 3D 90 91 41 00 cmp dword ptr ds:[419190h],0 00 0041256A: 75 06 jne 00412572 0041256C: FF 15 C8 A3 41 00 call dword ptr [__imp___cexit] 00412572: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 00412579: EB 52 jmp 004125CD 0041257B: 8B 4D EC mov ecx,dword ptr [ebp-14h] 0041257E: 8B 11 mov edx,dword ptr [ecx] 00412580: 8B 02 mov eax,dword ptr [edx] 00412582: 89 45 D8 mov dword ptr [ebp-28h],eax 00412585: 8B 4D EC mov ecx,dword ptr [ebp-14h] 00412588: 51 push ecx 00412589: 8B 55 D8 mov edx,dword ptr [ebp-28h] 0041258C: 52 push edx 0041258D: E8 67 EC FF FF call @ILT+500(__XcptFilter) 00412592: 83 C4 08 add esp,8 00412595: C3 ret 00412596: 8B 65 E8 mov esp,dword ptr [ebp-18h] 00412599: 8B 45 D8 mov eax,dword ptr [ebp-28h] 0041259C: A3 8C 91 41 00 mov dword ptr ds:[0041918Ch],eax 004125A1: 83 3D 80 91 41 00 cmp dword ptr ds:[419180h],0 00 004125A8: 75 0D jne 004125B7 004125AA: 8B 0D 8C 91 41 00 mov ecx,dword ptr ds:[41918Ch] 004125B0: 51 push ecx 004125B1: FF 15 D0 A3 41 00 call dword ptr [__imp___exit] 004125B7: 83 3D 90 91 41 00 cmp dword ptr ds:[419190h],0 00 004125BE: 75 06 jne 004125C6 004125C0: FF 15 C8 A3 41 00 call dword ptr [__imp___cexit] 004125C6: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 004125CD: A1 8C 91 41 00 mov eax,dword ptr ds:[0041918Ch] 004125D2: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 004125D5: 64 89 0D 00 00 00 mov dword ptr fs:[0],ecx 00 004125DC: 59 pop ecx 004125DD: 5F pop edi 004125DE: 5E pop esi 004125DF: 5B pop ebx 004125E0: 8B E5 mov esp,ebp 004125E2: 5D pop ebp 004125E3: C3 ret 004125E4: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004125F4: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412604: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412614: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412624: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412634: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412644: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412654: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412664: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412674: CC CC CC CC CC CC CC CC CC CC CC CC ???????????? _NtCurrentTeb: 00412680: 55 push ebp 00412681: 8B EC mov ebp,esp 00412683: 64 A1 18 00 00 00 mov eax,dword ptr fs:[00000018h] 00412689: 5D pop ebp 0041268A: C3 ret 0041268B: CC CC CC CC CC ????? 00412690: 55 push ebp 00412691: 8B EC mov ebp,esp 00412693: 83 EC 14 sub esp,14h 00412696: C7 45 FC 00 00 40 mov dword ptr [ebp-4],400000h 00 0041269D: 8B 45 FC mov eax,dword ptr [ebp-4] 004126A0: 0F B7 08 movzx ecx,word ptr [eax] 004126A3: 81 F9 4D 5A 00 00 cmp ecx,5A4Dh 004126A9: 74 07 je 004126B2 004126AB: 33 C0 xor eax,eax 004126AD: E9 87 00 00 00 jmp 00412739 004126B2: 8B 55 FC mov edx,dword ptr [ebp-4] 004126B5: 8B 45 FC mov eax,dword ptr [ebp-4] 004126B8: 03 42 3C add eax,dword ptr [edx+3Ch] 004126BB: 89 45 F8 mov dword ptr [ebp-8],eax 004126BE: 8B 4D F8 mov ecx,dword ptr [ebp-8] 004126C1: 81 39 50 45 00 00 cmp dword ptr [ecx],4550h 004126C7: 74 04 je 004126CD 004126C9: 33 C0 xor eax,eax 004126CB: EB 6C jmp 00412739 004126CD: 8B 55 F8 mov edx,dword ptr [ebp-8] 004126D0: 83 C2 18 add edx,18h 004126D3: 89 55 F4 mov dword ptr [ebp-0Ch],edx 004126D6: 8B 45 F4 mov eax,dword ptr [ebp-0Ch] 004126D9: 0F B7 08 movzx ecx,word ptr [eax] 004126DC: 89 4D EC mov dword ptr [ebp-14h],ecx 004126DF: 81 7D EC 0B 01 00 cmp dword ptr [ebp-14h],10Bh 00 004126E6: 74 0B je 004126F3 004126E8: 81 7D EC 0B 02 00 cmp dword ptr [ebp-14h],20Bh 00 004126EF: 74 22 je 00412713 004126F1: EB 44 jmp 00412737 004126F3: 8B 55 F4 mov edx,dword ptr [ebp-0Ch] 004126F6: 83 7A 5C 0E cmp dword ptr [edx+5Ch],0Eh 004126FA: 77 04 ja 00412700 004126FC: 33 C0 xor eax,eax 004126FE: EB 39 jmp 00412739 00412700: 8B 45 F4 mov eax,dword ptr [ebp-0Ch] 00412703: 33 C9 xor ecx,ecx 00412705: 83 B8 D0 00 00 00 cmp dword ptr [eax+0D0h],0 00 0041270C: 0F 95 C1 setne cl 0041270F: 8B C1 mov eax,ecx 00412711: EB 26 jmp 00412739 00412713: 8B 55 F4 mov edx,dword ptr [ebp-0Ch] 00412716: 89 55 F0 mov dword ptr [ebp-10h],edx 00412719: 8B 45 F0 mov eax,dword ptr [ebp-10h] 0041271C: 83 78 6C 0E cmp dword ptr [eax+6Ch],0Eh 00412720: 77 04 ja 00412726 00412722: 33 C0 xor eax,eax 00412724: EB 13 jmp 00412739 00412726: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 00412729: 33 C0 xor eax,eax 0041272B: 83 B9 E0 00 00 00 cmp dword ptr [ecx+0E0h],0 00 00412732: 0F 95 C0 setne al 00412735: EB 02 jmp 00412739 00412737: 33 C0 xor eax,eax 00412739: 8B E5 mov esp,ebp 0041273B: 5D pop ebp 0041273C: C3 ret 0041273D: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041274D: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041275D: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041276D: CC CC CC ??? _DebuggerKnownHandle: 00412770: 68 04 10 00 00 push 1004h 00412775: E8 16 00 00 00 call 00412790 0041277A: 83 C4 04 add esp,4 0041277D: C3 ret 0041277E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041278E: CC CC ?? 00412790: 55 push ebp 00412791: 8B EC mov ebp,esp 00412793: 6A FE push 0FFFFFFFEh 00412795: 68 A8 8B 41 00 push 418BA8h 0041279A: 68 96 10 41 00 push offset @ILT+145(__except_handler4) 0041279F: 64 A1 00 00 00 00 mov eax,dword ptr fs:[00000000h] 004127A5: 50 push eax 004127A6: 83 EC 24 sub esp,24h 004127A9: 53 push ebx 004127AA: 56 push esi 004127AB: 57 push edi 004127AC: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 004127B1: 31 45 F8 xor dword ptr [ebp-8],eax 004127B4: 33 C5 xor eax,ebp 004127B6: 50 push eax 004127B7: 8D 45 F0 lea eax,[ebp-10h] 004127BA: 64 A3 00 00 00 00 mov dword ptr fs:[00000000h],eax 004127C0: 89 65 E8 mov dword ptr [ebp-18h],esp 004127C3: 33 C0 xor eax,eax 004127C5: 88 45 E7 mov byte ptr [ebp-19h],al 004127C8: C7 45 CC 01 10 00 mov dword ptr [ebp-34h],1001h 00 004127CF: 8B 4D 08 mov ecx,dword ptr [ebp+8] 004127D2: 89 4D D0 mov dword ptr [ebp-30h],ecx 004127D5: 8D 55 E7 lea edx,[ebp-19h] 004127D8: 89 55 D4 mov dword ptr [ebp-2Ch],edx 004127DB: 89 45 FC mov dword ptr [ebp-4],eax 004127DE: 8D 4D CC lea ecx,[ebp-34h] 004127E1: 51 push ecx 004127E2: 6A 06 push 6 004127E4: 50 push eax 004127E5: 68 88 13 6D 40 push 406D1388h 004127EA: FF 15 54 A2 41 00 call dword ptr [__imp__RaiseException@16] 004127F0: EB 07 jmp 004127F9 004127F2: 83 C8 FF or eax,0FFFFFFFFh 004127F5: C3 ret 004127F6: 8B 65 E8 mov esp,dword ptr [ebp-18h] 004127F9: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 00412800: 0F B6 45 E7 movzx eax,byte ptr [ebp-19h] 00412804: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 00412807: 64 89 0D 00 00 00 mov dword ptr fs:[0],ecx 00 0041280E: 59 pop ecx 0041280F: 5F pop edi 00412810: 5E pop esi 00412811: 5B pop ebx 00412812: 8B E5 mov esp,ebp 00412814: 5D pop ebp 00412815: C3 ret 00412816: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412826: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412836: CC CC CC CC CC CC CC CC CC CC ?????????? ?_RTC_Failure@@YAXPAXH@Z: 00412840: 55 push ebp 00412841: 8B EC mov ebp,esp 00412843: 8B 45 0C mov eax,dword ptr [ebp+0Ch] 00412846: 83 F8 04 cmp eax,4 00412849: 77 24 ja 0041286F 0041284B: 8B 0C 85 18 90 41 mov ecx,dword ptr ?_RTC_ErrorLevels@@3PAHA[eax*4] 00 00412852: 83 F9 FF cmp ecx,0FFFFFFFFh 00412855: 8B 14 85 2C 90 41 mov edx,dword ptr [eax*4+41902Ch] 00 0041285C: 74 0F je 0041286D 0041285E: 52 push edx 0041285F: 50 push eax 00412860: 8B 45 08 mov eax,dword ptr [ebp+8] 00412863: 51 push ecx 00412864: 50 push eax 00412865: E8 46 00 00 00 call 004128B0 0041286A: 83 C4 10 add esp,10h 0041286D: 5D pop ebp 0041286E: C3 ret 0041286F: 8B 15 40 90 41 00 mov edx,dword ptr ds:[419040h] 00412875: 52 push edx 00412876: B8 05 00 00 00 mov eax,5 0041287B: 50 push eax 0041287C: 8B 45 08 mov eax,dword ptr [ebp+8] 0041287F: B9 01 00 00 00 mov ecx,1 00412884: 51 push ecx 00412885: 50 push eax 00412886: E8 25 00 00 00 call 004128B0 0041288B: 83 C4 10 add esp,10h 0041288E: 5D pop ebp 0041288F: C3 ret 00412890: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004128A0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004128B0: 55 push ebp 004128B1: 8B EC mov ebp,esp 004128B3: 81 EC 3C 0E 00 00 sub esp,0E3Ch 004128B9: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 004128BE: 33 C5 xor eax,ebp 004128C0: 89 45 FC mov dword ptr [ebp-4],eax 004128C3: 53 push ebx 004128C4: 56 push esi 004128C5: 8B 75 14 mov esi,dword ptr [ebp+14h] 004128C8: 57 push edi 004128C9: 8B 7D 08 mov edi,dword ptr [ebp+8] 004128CC: 57 push edi 004128CD: 89 B5 C4 F1 FF FF mov dword ptr [ebp-0E3Ch],esi 004128D3: C7 85 CC F1 FF FF mov dword ptr [ebp-0E34h],0 00 00 00 00 004128DD: E8 64 E7 FF FF call @ILT+65(?_RTC_GetErrorFuncW@@YAP6AHHPB_WH00ZZPBX@Z) 004128E2: 8B D8 mov ebx,eax 004128E4: 83 C4 04 add esp,4 004128E7: 85 DB test ebx,ebx 004128E9: 75 0F jne 004128FA 004128EB: 57 push edi 004128EC: E8 6C E9 FF FF call @ILT+603(?_RTC_GetErrorFunc@@YAP6AHHPBDH00ZZPBX@Z) 004128F1: 83 C4 04 add esp,4 004128F4: 89 85 CC F1 FF FF mov dword ptr [ebp-0E34h],eax 004128FA: 6A 00 push 0 004128FC: 6A 00 push 0 004128FE: 6A FF push 0FFFFFFFFh 00412900: 56 push esi 00412901: 8B 35 64 A2 41 00 mov esi,dword ptr [__imp__MultiByteToWideChar@24] 00412907: 6A 00 push 0 00412909: 68 E9 FD 00 00 push 0FDE9h 0041290E: FF D6 call esi 00412910: 3D 00 02 00 00 cmp eax,200h 00412915: 73 2C jae 00412943 00412917: 8B 8D C4 F1 FF FF mov ecx,dword ptr [ebp-0E3Ch] 0041291D: 50 push eax 0041291E: 8D 85 D4 F1 FF FF lea eax,[ebp-0E2Ch] 00412924: 50 push eax 00412925: 6A FF push 0FFFFFFFFh 00412927: 51 push ecx 00412928: 6A 00 push 0 0041292A: 68 E9 FD 00 00 push 0FDE9h 0041292F: FF D6 call esi 00412931: 85 C0 test eax,eax 00412933: 74 0E je 00412943 00412935: 8D 95 D4 F1 FF FF lea edx,[ebp-0E2Ch] 0041293B: 89 95 D0 F1 FF FF mov dword ptr [ebp-0E30h],edx 00412941: EB 0A jmp 0041294D 00412943: C7 85 D0 F1 FF FF mov dword ptr [ebp-0E30h],offset ??_C@_1GM@OLMCBDMB@?$AAR?$AAu?$AAn?$AAt?$AAi?$AAm?$AAe?$AA?5?$AAC?$AAh?$AAe?$AAc?$AAk?$AA?5?$AAE?$AAr?$AAr?$AAo?$AAr?$AA?4?$AA?6?$AA?$AN?$AA?5?$AAU?$AAn?$AAa?$AAb?$AAl?$AAe?$AA?5?$AAt?$AAo@ F0 7C 41 00 0041294D: 68 02 10 00 00 push 1002h 00412952: E8 39 FE FF FF call 00412790 00412957: 8B 75 10 mov esi,dword ptr [ebp+10h] 0041295A: 83 C4 04 add esp,4 0041295D: 85 C0 test eax,eax 0041295F: 74 25 je 00412986 00412961: 8B 85 D0 F1 FF FF mov eax,dword ptr [ebp-0E30h] 00412967: 8B 0C B5 AC 7B 41 mov ecx,dword ptr [esi*4+417BACh] 00 0041296E: 50 push eax 0041296F: 57 push edi 00412970: 51 push ecx 00412971: 56 push esi 00412972: E8 09 02 00 00 call 00412B80 00412977: 83 C4 10 add esp,10h 0041297A: 85 C0 test eax,eax 0041297C: 0F 85 52 01 00 00 jne 00412AD4 00412982: 32 C0 xor al,al 00412984: EB 02 jmp 00412988 00412986: B0 01 mov al,1 00412988: 83 BD CC F1 FF FF cmp dword ptr [ebp-0E34h],0 00 0041298F: 75 08 jne 00412999 00412991: 85 DB test ebx,ebx 00412993: 0F 84 35 01 00 00 je 00412ACE 00412999: 84 C0 test al,al 0041299B: 74 0E je 004129AB 0041299D: FF 15 60 A2 41 00 call dword ptr [__imp__IsDebuggerPresent@0] 004129A3: 85 C0 test eax,eax 004129A5: 0F 85 23 01 00 00 jne 00412ACE 004129AB: 68 04 01 00 00 push 104h 004129B0: 8D 95 EC FB FF FF lea edx,[ebp-414h] 004129B6: 52 push edx 004129B7: 8D 85 C8 F1 FF FF lea eax,[ebp-0E38h] 004129BD: 50 push eax 004129BE: 68 04 01 00 00 push 104h 004129C3: 8D 8D F4 FD FF FF lea ecx,[ebp-20Ch] 004129C9: 51 push ecx 004129CA: 83 C7 FB add edi,0FFFFFFFBh 004129CD: 57 push edi 004129CE: E8 FE E7 FF FF call @ILT+460(?_RTC_GetSrcLine@@YAHPAEPA_WKPAH1K@Z) 004129D3: 83 C4 18 add esp,18h 004129D6: 85 DB test ebx,ebx 004129D8: 74 2D je 00412A07 004129DA: 8B 95 D0 F1 FF FF mov edx,dword ptr [ebp-0E30h] 004129E0: 8B 8D C8 F1 FF FF mov ecx,dword ptr [ebp-0E38h] 004129E6: 52 push edx 004129E7: 56 push esi 004129E8: 68 A0 7C 41 00 push offset ??_C@_1EA@NFKNIFJP@?$AAR?$AAu?$AAn?$AA?9?$AAT?$AAi?$AAm?$AAe?$AA?5?$AAC?$AAh?$AAe?$AAc?$AAk?$AA?5?$AAF?$AAa?$AAi?$AAl?$AAu?$AAr?$AAe?$AA?5?$AA?$CD?$AA?$CF?$AAd?$AA?5?$AA?9?$AA?5?$AA?$CF?$AAs?$AA?$AA@ 004129ED: 8D 85 EC FB FF FF lea eax,[ebp-414h] 004129F3: 50 push eax 004129F4: 8B 45 0C mov eax,dword ptr [ebp+0Ch] 004129F7: 51 push ecx 004129F8: 8D 95 F4 FD FF FF lea edx,[ebp-20Ch] 004129FE: 52 push edx 004129FF: 50 push eax 00412A00: FF D3 call ebx 00412A02: E9 BF 00 00 00 jmp 00412AC6 00412A07: 8B 35 5C A2 41 00 mov esi,dword ptr [__imp__WideCharToMultiByte@32] 00412A0D: 6A 00 push 0 00412A0F: 6A 00 push 0 00412A11: 6A 00 push 0 00412A13: 6A 00 push 0 00412A15: 6A FF push 0FFFFFFFFh 00412A17: 8D 8D F4 FD FF FF lea ecx,[ebp-20Ch] 00412A1D: 51 push ecx 00412A1E: 6A 00 push 0 00412A20: 68 E9 FD 00 00 push 0FDE9h 00412A25: FF D6 call esi 00412A27: 85 C0 test eax,eax 00412A29: 74 28 je 00412A53 00412A2B: 6A 00 push 0 00412A2D: 6A 00 push 0 00412A2F: 50 push eax 00412A30: 8D 95 D4 F5 FF FF lea edx,[ebp-0A2Ch] 00412A36: 52 push edx 00412A37: 6A FF push 0FFFFFFFFh 00412A39: 8D 85 F4 FD FF FF lea eax,[ebp-20Ch] 00412A3F: 50 push eax 00412A40: 6A 00 push 0 00412A42: 68 E9 FD 00 00 push 0FDE9h 00412A47: FF D6 call esi 00412A49: 85 C0 test eax,eax 00412A4B: 8D BD D4 F5 FF FF lea edi,[ebp-0A2Ch] 00412A51: 75 05 jne 00412A58 00412A53: BF 8C 7C 41 00 mov edi,offset ??_C@_0BB@PFFGGCJP@Unknown?5Filename?$AA@ 00412A58: 6A 00 push 0 00412A5A: 6A 00 push 0 00412A5C: 6A 00 push 0 00412A5E: 6A 00 push 0 00412A60: 6A FF push 0FFFFFFFFh 00412A62: 8D 8D EC FB FF FF lea ecx,[ebp-414h] 00412A68: 51 push ecx 00412A69: 6A 00 push 0 00412A6B: 68 E9 FD 00 00 push 0FDE9h 00412A70: FF D6 call esi 00412A72: 85 C0 test eax,eax 00412A74: 74 28 je 00412A9E 00412A76: 6A 00 push 0 00412A78: 6A 00 push 0 00412A7A: 50 push eax 00412A7B: 8D 95 E4 F9 FF FF lea edx,[ebp-61Ch] 00412A81: 52 push edx 00412A82: 6A FF push 0FFFFFFFFh 00412A84: 8D 85 EC FB FF FF lea eax,[ebp-414h] 00412A8A: 50 push eax 00412A8B: 6A 00 push 0 00412A8D: 68 E9 FD 00 00 push 0FDE9h 00412A92: FF D6 call esi 00412A94: 85 C0 test eax,eax 00412A96: 8D 85 E4 F9 FF FF lea eax,[ebp-61Ch] 00412A9C: 75 05 jne 00412AA3 00412A9E: B8 74 7C 41 00 mov eax,offset ??_C@_0BE@GNBOBNCK@Unknown?5Module?5Name?$AA@ 00412AA3: 8B 8D C4 F1 FF FF mov ecx,dword ptr [ebp-0E3Ch] 00412AA9: 8B 55 10 mov edx,dword ptr [ebp+10h] 00412AAC: 51 push ecx 00412AAD: 8B 4D 0C mov ecx,dword ptr [ebp+0Ch] 00412AB0: 52 push edx 00412AB1: 68 4C 7C 41 00 push offset ??_C@_0CA@IODNCDPG@Run?9Time?5Check?5Failure?5?$CD?$CFd?5?9?5?$CFs?$AA@ 00412AB6: 50 push eax 00412AB7: 8B 85 C8 F1 FF FF mov eax,dword ptr [ebp-0E38h] 00412ABD: 50 push eax 00412ABE: 57 push edi 00412ABF: 51 push ecx 00412AC0: FF 95 CC F1 FF FF call dword ptr [ebp-0E34h] 00412AC6: 83 C4 1C add esp,1Ch 00412AC9: 83 F8 01 cmp eax,1 00412ACC: 75 06 jne 00412AD4 00412ACE: FF 15 58 A2 41 00 call dword ptr [__imp__DebugBreak@0] 00412AD4: 8B 4D FC mov ecx,dword ptr [ebp-4] 00412AD7: 5F pop edi 00412AD8: 5E pop esi 00412AD9: 33 CD xor ecx,ebp 00412ADB: 5B pop ebx 00412ADC: E8 47 E5 FF FF call @ILT+35(@__security_check_cookie@4) 00412AE1: 8B E5 mov esp,ebp 00412AE3: 5D pop ebp 00412AE4: C3 ret 00412AE5: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412AF5: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412B05: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412B15: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412B25: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412B35: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412B45: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412B55: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412B65: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412B75: CC CC CC CC CC CC CC CC CC CC CC ??????????? 00412B80: 55 push ebp 00412B81: 8B EC mov ebp,esp 00412B83: 6A FE push 0FFFFFFFEh 00412B85: 68 C8 8B 41 00 push 418BC8h 00412B8A: 68 96 10 41 00 push offset @ILT+145(__except_handler4) 00412B8F: 64 A1 00 00 00 00 mov eax,dword ptr fs:[00000000h] 00412B95: 50 push eax 00412B96: 83 EC 24 sub esp,24h 00412B99: 53 push ebx 00412B9A: 56 push esi 00412B9B: 57 push edi 00412B9C: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 00412BA1: 31 45 F8 xor dword ptr [ebp-8],eax 00412BA4: 33 C5 xor eax,ebp 00412BA6: 50 push eax 00412BA7: 8D 45 F0 lea eax,[ebp-10h] 00412BAA: 64 A3 00 00 00 00 mov dword ptr fs:[00000000h],eax 00412BB0: 89 65 E8 mov dword ptr [ebp-18h],esp 00412BB3: 33 C0 xor eax,eax 00412BB5: 88 45 E7 mov byte ptr [ebp-19h],al 00412BB8: C7 45 CC 02 10 00 mov dword ptr [ebp-34h],1002h 00 00412BBF: 8B 4D 08 mov ecx,dword ptr [ebp+8] 00412BC2: 89 4D D0 mov dword ptr [ebp-30h],ecx 00412BC5: 8B 55 0C mov edx,dword ptr [ebp+0Ch] 00412BC8: 89 55 D4 mov dword ptr [ebp-2Ch],edx 00412BCB: 8B 4D 10 mov ecx,dword ptr [ebp+10h] 00412BCE: 89 4D D8 mov dword ptr [ebp-28h],ecx 00412BD1: 8D 55 E7 lea edx,[ebp-19h] 00412BD4: 89 55 DC mov dword ptr [ebp-24h],edx 00412BD7: 8B 4D 14 mov ecx,dword ptr [ebp+14h] 00412BDA: 89 4D E0 mov dword ptr [ebp-20h],ecx 00412BDD: 89 45 FC mov dword ptr [ebp-4],eax 00412BE0: 8D 55 CC lea edx,[ebp-34h] 00412BE3: 52 push edx 00412BE4: 6A 06 push 6 00412BE6: 50 push eax 00412BE7: 68 88 13 6D 40 push 406D1388h 00412BEC: FF 15 54 A2 41 00 call dword ptr [__imp__RaiseException@16] 00412BF2: EB 07 jmp 00412BFB 00412BF4: 83 C8 FF or eax,0FFFFFFFFh 00412BF7: C3 ret 00412BF8: 8B 65 E8 mov esp,dword ptr [ebp-18h] 00412BFB: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 00412C02: 0F B6 45 E7 movzx eax,byte ptr [ebp-19h] 00412C06: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 00412C09: 64 89 0D 00 00 00 mov dword ptr fs:[0],ecx 00 00412C10: 59 pop ecx 00412C11: 5F pop edi 00412C12: 5E pop esi 00412C13: 5B pop ebx 00412C14: 8B E5 mov esp,ebp 00412C16: 5D pop ebp 00412C17: C3 ret 00412C18: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412C28: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412C38: CC CC CC CC CC CC CC CC ???????? ?_RTC_StackFailure@@YAXPAXPBD@Z: 00412C40: 55 push ebp 00412C41: 8B EC mov ebp,esp 00412C43: 81 EC 08 04 00 00 sub esp,408h 00412C49: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 00412C4E: 33 C5 xor eax,ebp 00412C50: 89 45 FC mov dword ptr [ebp-4],eax 00412C53: 83 3D 20 90 41 00 cmp dword ptr ds:[419020h],0FFFFFFFFh FF 00412C5A: 8B 45 08 mov eax,dword ptr [ebp+8] 00412C5D: 89 85 F8 FB FF FF mov dword ptr [ebp-408h],eax 00412C63: 8B 45 0C mov eax,dword ptr [ebp+0Ch] 00412C66: 0F 84 E5 00 00 00 je 00412D51 00412C6C: 80 38 00 cmp byte ptr [eax],0 00412C6F: 53 push ebx 00412C70: 56 push esi 00412C71: 0F 84 BB 00 00 00 je 00412D32 00412C77: 8B C8 mov ecx,eax 00412C79: 8D 71 01 lea esi,[ecx+1] 00412C7C: 8D 64 24 00 lea esp,[esp] 00412C80: 8A 11 mov dl,byte ptr [ecx] 00412C82: 83 C1 01 add ecx,1 00412C85: 84 D2 test dl,dl 00412C87: 75 F7 jne 00412C80 00412C89: 2B CE sub ecx,esi 00412C8B: 83 C1 2D add ecx,2Dh 00412C8E: 81 F9 00 04 00 00 cmp ecx,400h 00412C94: 0F 87 98 00 00 00 ja 00412D32 00412C9A: 8D 9D FC FB FF FF lea ebx,[ebp-404h] 00412CA0: 33 C9 xor ecx,ecx 00412CA2: EB 0C jmp 00412CB0 00412CA4: 8D A4 24 00 00 00 lea esp,[esp] 00 00412CAB: EB 03 jmp 00412CB0 00412CAD: 8D 49 00 lea ecx,[ecx] 00412CB0: 8A 91 C4 7B 41 00 mov dl,byte ptr [ecx+417BC4h] 00412CB6: 88 94 0D FC FB FF mov byte ptr [ebp+ecx-404h],dl FF 00412CBD: 83 C1 01 add ecx,1 00412CC0: 84 D2 test dl,dl 00412CC2: 75 EC jne 00412CB0 00412CC4: 8B D0 mov edx,eax 00412CC6: 8A 08 mov cl,byte ptr [eax] 00412CC8: 83 C0 01 add eax,1 00412CCB: 84 C9 test cl,cl 00412CCD: 75 F7 jne 00412CC6 00412CCF: 57 push edi 00412CD0: 8D BD FC FB FF FF lea edi,[ebp-404h] 00412CD6: 2B C2 sub eax,edx 00412CD8: 83 C7 FF add edi,0FFFFFFFFh 00412CDB: EB 03 jmp 00412CE0 00412CDD: 8D 49 00 lea ecx,[ecx] 00412CE0: 8A 4F 01 mov cl,byte ptr [edi+1] 00412CE3: 83 C7 01 add edi,1 00412CE6: 84 C9 test cl,cl 00412CE8: 75 F6 jne 00412CE0 00412CEA: 8B C8 mov ecx,eax 00412CEC: C1 E9 02 shr ecx,2 00412CEF: 8B F2 mov esi,edx 00412CF1: F3 A5 rep movs dword ptr es:[edi],dword ptr [esi] 00412CF3: 8B C8 mov ecx,eax 00412CF5: 83 E1 03 and ecx,3 00412CF8: B8 E0 7B 41 00 mov eax,417BE0h 00412CFD: F3 A4 rep movs byte ptr es:[edi],byte ptr [esi] 00412CFF: 8B C8 mov ecx,eax 00412D01: 8A 10 mov dl,byte ptr [eax] 00412D03: 83 C0 01 add eax,1 00412D06: 84 D2 test dl,dl 00412D08: 75 F7 jne 00412D01 00412D0A: 8D BD FC FB FF FF lea edi,[ebp-404h] 00412D10: 2B C1 sub eax,ecx 00412D12: 8B F1 mov esi,ecx 00412D14: 83 C7 FF add edi,0FFFFFFFFh 00412D17: 8A 4F 01 mov cl,byte ptr [edi+1] 00412D1A: 83 C7 01 add edi,1 00412D1D: 84 C9 test cl,cl 00412D1F: 75 F6 jne 00412D17 00412D21: 8B C8 mov ecx,eax 00412D23: C1 E9 02 shr ecx,2 00412D26: F3 A5 rep movs dword ptr es:[edi],dword ptr [esi] 00412D28: 8B C8 mov ecx,eax 00412D2A: 83 E1 03 and ecx,3 00412D2D: F3 A4 rep movs byte ptr es:[edi],byte ptr [esi] 00412D2F: 5F pop edi 00412D30: EB 05 jmp 00412D37 00412D32: BB 74 7D 41 00 mov ebx,offset ??_C@_0CG@IAFNJNEE@Stack?5corrupted?5near?5unknown?5var@ 00412D37: A1 20 90 41 00 mov eax,dword ptr ds:[00419020h] 00412D3C: 8B 8D F8 FB FF FF mov ecx,dword ptr [ebp-408h] 00412D42: 53 push ebx 00412D43: 6A 02 push 2 00412D45: 50 push eax 00412D46: 51 push ecx 00412D47: E8 64 FB FF FF call 004128B0 00412D4C: 83 C4 10 add esp,10h 00412D4F: 5E pop esi 00412D50: 5B pop ebx 00412D51: 8B 4D FC mov ecx,dword ptr [ebp-4] 00412D54: 33 CD xor ecx,ebp 00412D56: E8 CD E2 FF FF call @ILT+35(@__security_check_cookie@4) 00412D5B: 8B E5 mov esp,ebp 00412D5D: 5D pop ebp 00412D5E: C3 ret 00412D5F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412D6F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412D7F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412D8F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412D9F: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412DAF: CC ? ?_RTC_AllocaFailure@@YAXPAXPAU_RTC_ALLOCA_NODE@@H@Z: 00412DB0: 55 push ebp 00412DB1: 8B EC mov ebp,esp 00412DB3: 81 EC 44 01 00 00 sub esp,144h 00412DB9: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 00412DBE: 33 C5 xor eax,ebp 00412DC0: 89 45 FC mov dword ptr [ebp-4],eax 00412DC3: 53 push ebx 00412DC4: 8B 1D 28 90 41 00 mov ebx,dword ptr ds:[419028h] 00412DCA: 83 FB FF cmp ebx,0FFFFFFFFh 00412DCD: 56 push esi 00412DCE: 8B 75 0C mov esi,dword ptr [ebp+0Ch] 00412DD1: 57 push edi 00412DD2: 8B 7D 08 mov edi,dword ptr [ebp+8] 00412DD5: 89 BD BC FE FF FF mov dword ptr [ebp-144h],edi 00412DDB: 0F 84 EF 00 00 00 je 00412ED0 00412DE1: 68 F0 7E 41 00 push offset ??_C@_0L@GMPLCCII@user32?4dll?$AA@ 00412DE6: FF 15 70 A2 41 00 call dword ptr [__imp__LoadLibraryA@4] 00412DEC: 85 C0 test eax,eax 00412DEE: 0F 84 CB 00 00 00 je 00412EBF 00412DF4: 68 E4 7E 41 00 push offset ??_C@_09FOPFMPEJ@wsprintfA?$AA@ 00412DF9: 50 push eax 00412DFA: FF 15 6C A2 41 00 call dword ptr [__imp__GetProcAddress@8] 00412E00: 85 F6 test esi,esi 00412E02: A3 9C 91 41 00 mov dword ptr [?wsprintffp@@3P6AHPADPBDZZA],eax 00412E07: 0F 84 B2 00 00 00 je 00412EBF 00412E0D: 85 C0 test eax,eax 00412E0F: 0F 84 AA 00 00 00 je 00412EBF 00412E15: 8B 4D 10 mov ecx,dword ptr [ebp+10h] 00412E18: 8B 56 0C mov edx,dword ptr [esi+0Ch] 00412E1B: 68 D8 7E 41 00 push offset ??_C@_08OMAHNMHJ@?6Data?3?5?$DM?$AA@ 00412E20: 51 push ecx 00412E21: 68 A4 7E 41 00 push offset ??_C@_0CK@DKGBICFE@?6Allocation?5number?5within?5this?5f@ 00412E26: 83 EA 24 sub edx,24h 00412E29: 52 push edx 00412E2A: 68 98 7E 41 00 push offset ??_C@_07DFDJCKFN@?6Size?3?5?$AA@ 00412E2F: 8D 7E 20 lea edi,[esi+20h] 00412E32: 57 push edi 00412E33: 68 88 7E 41 00 push offset ??_C@_0N@MHFFIMFG@?6Address?3?50x?$AA@ 00412E38: 68 30 7E 41 00 push offset ??_C@_0EI@CLEPFNGI@Stack?5area?5around?5_alloca?5memory@ 00412E3D: 8D 8D C0 FE FF FF lea ecx,[ebp-140h] 00412E43: 68 14 7E 41 00 push offset ??_C@_0BC@KIBAILCI@?$CFs?$CFs?$CFp?$CFs?$CFld?$CFs?$CFd?$CFs?$AA@ 00412E48: 51 push ecx 00412E49: FF D0 call eax 00412E4B: 8B 56 0C mov edx,dword ptr [esi+0Ch] 00412E4E: 83 EA 24 sub edx,24h 00412E51: 52 push edx 00412E52: 57 push edi 00412E53: 8D 45 B4 lea eax,[ebp-4Ch] 00412E56: 50 push eax 00412E57: 8D 4D E8 lea ecx,[ebp-18h] 00412E5A: 51 push ecx 00412E5B: E8 D0 00 00 00 call 00412F30 00412E60: 83 C4 38 add esp,38h 00412E63: 68 10 7E 41 00 push offset ??_C@_01EEMJAFIK@?6?$AA@ 00412E68: 8D 55 B4 lea edx,[ebp-4Ch] 00412E6B: 52 push edx 00412E6C: 68 0C 7E 41 00 push offset ??_C@_02LLMPMKNF@?$DO?5?$AA@ 00412E71: 8D 45 E8 lea eax,[ebp-18h] 00412E74: 50 push eax 00412E75: 68 00 7E 41 00 push offset ??_C@_08KJEDNCKC@?$CFs?$CFs?$CFs?$CFs?$AA@ 00412E7A: 8D 8D C0 FE FF FF lea ecx,[ebp-140h] 00412E80: 51 push ecx 00412E81: FF 15 68 A2 41 00 call dword ptr [__imp__lstrlenA@4] 00412E87: 8D 94 05 C0 FE FF lea edx,[ebp+eax-140h] FF 00412E8E: 52 push edx 00412E8F: FF 15 9C 91 41 00 call dword ptr [?wsprintffp@@3P6AHPADPBDZZA] 00412E95: 8B 8D BC FE FF FF mov ecx,dword ptr [ebp-144h] 00412E9B: 8D 85 C0 FE FF FF lea eax,[ebp-140h] 00412EA1: 50 push eax 00412EA2: 6A 04 push 4 00412EA4: 53 push ebx 00412EA5: 51 push ecx 00412EA6: E8 05 FA FF FF call 004128B0 00412EAB: 83 C4 28 add esp,28h 00412EAE: 5F pop edi 00412EAF: 5E pop esi 00412EB0: 5B pop ebx 00412EB1: 8B 4D FC mov ecx,dword ptr [ebp-4] 00412EB4: 33 CD xor ecx,ebp 00412EB6: E8 6D E1 FF FF call @ILT+35(@__security_check_cookie@4) 00412EBB: 8B E5 mov esp,ebp 00412EBD: 5D pop ebp 00412EBE: C3 ret 00412EBF: 68 A8 7D 41 00 push offset ??_C@_0EJ@LJKNEOLN@Stack?5area?5around?5_alloca?5memory@ 00412EC4: 6A 04 push 4 00412EC6: 53 push ebx 00412EC7: 57 push edi 00412EC8: E8 E3 F9 FF FF call 004128B0 00412ECD: 83 C4 10 add esp,10h 00412ED0: 8B 4D FC mov ecx,dword ptr [ebp-4] 00412ED3: 5F pop edi 00412ED4: 5E pop esi 00412ED5: 33 CD xor ecx,ebp 00412ED7: 5B pop ebx 00412ED8: E8 4B E1 FF FF call @ILT+35(@__security_check_cookie@4) 00412EDD: 8B E5 mov esp,ebp 00412EDF: 5D pop ebp 00412EE0: C3 ret 00412EE1: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412EF1: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412F01: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412F11: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412F21: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ??????????????? 00412F30: 55 push ebp 00412F31: 8B EC mov ebp,esp 00412F33: 83 EC 08 sub esp,8 00412F36: 8B 45 0C mov eax,dword ptr [ebp+0Ch] 00412F39: 53 push ebx 00412F3A: 56 push esi 00412F3B: 8B 75 08 mov esi,dword ptr [ebp+8] 00412F3E: 89 45 FC mov dword ptr [ebp-4],eax 00412F41: 8B 45 10 mov eax,dword ptr [ebp+10h] 00412F44: 57 push edi 00412F45: 33 FF xor edi,edi 00412F47: 2B C6 sub eax,esi 00412F49: 89 45 F8 mov dword ptr [ebp-8],eax 00412F4C: 8D 64 24 00 lea esp,[esp] 00412F50: 8B 4D 14 mov ecx,dword ptr [ebp+14h] 00412F53: 83 F9 10 cmp ecx,10h 00412F56: 72 05 jb 00412F5D 00412F58: B9 10 00 00 00 mov ecx,10h 00412F5D: 3B F9 cmp edi,ecx 00412F5F: 73 2A jae 00412F8B 00412F61: 8A 1C 30 mov bl,byte ptr [eax+esi] 00412F64: 8B 55 FC mov edx,dword ptr [ebp-4] 00412F67: 0F B6 CB movzx ecx,bl 00412F6A: 51 push ecx 00412F6B: 68 00 7F 41 00 push offset ??_C@_05MKKEDADM@?$CF?42X?5?$AA@ 00412F70: 52 push edx 00412F71: FF 15 9C 91 41 00 call dword ptr [?wsprintffp@@3P6AHPADPBDZZA] 00412F77: 83 45 FC 03 add dword ptr [ebp-4],3 00412F7B: 8B 45 F8 mov eax,dword ptr [ebp-8] 00412F7E: 83 C4 0C add esp,0Ch 00412F81: 88 1E mov byte ptr [esi],bl 00412F83: 83 C7 01 add edi,1 00412F86: 83 C6 01 add esi,1 00412F89: EB C5 jmp 00412F50 00412F8B: 8B 4D 0C mov ecx,dword ptr [ebp+0Ch] 00412F8E: 8B 45 08 mov eax,dword ptr [ebp+8] 00412F91: 8D 14 79 lea edx,[ecx+edi*2] 00412F94: C6 04 07 00 mov byte ptr [edi+eax],0 00412F98: C6 04 17 00 mov byte ptr [edi+edx],0 00412F9C: 5F pop edi 00412F9D: 5E pop esi 00412F9E: 5B pop ebx 00412F9F: 8B E5 mov esp,ebp 00412FA1: 5D pop ebp 00412FA2: C3 ret 00412FA3: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00412FB3: CC CC CC CC CC CC CC CC CC CC CC CC CC ????????????? __RTC_UninitUse: 00412FC0: 55 push ebp 00412FC1: 8B EC mov ebp,esp 00412FC3: 81 EC 04 04 00 00 sub esp,404h 00412FC9: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 00412FCE: 33 C5 xor eax,ebp 00412FD0: 89 45 FC mov dword ptr [ebp-4],eax 00412FD3: 83 3D 24 90 41 00 cmp dword ptr ds:[419024h],0FFFFFFFFh FF 00412FDA: 8B 45 08 mov eax,dword ptr [ebp+8] 00412FDD: 0F 84 DB 00 00 00 je 004130BE 00412FE3: 85 C0 test eax,eax 00412FE5: 53 push ebx 00412FE6: 56 push esi 00412FE7: 0F 84 B5 00 00 00 je 004130A2 00412FED: 8B C8 mov ecx,eax 00412FEF: 8D 71 01 lea esi,[ecx+1] 00412FF2: 8A 11 mov dl,byte ptr [ecx] 00412FF4: 83 C1 01 add ecx,1 00412FF7: 84 D2 test dl,dl 00412FF9: 75 F7 jne 00412FF2 00412FFB: 2B CE sub ecx,esi 00412FFD: 83 C1 3A add ecx,3Ah 00413000: 81 F9 00 04 00 00 cmp ecx,400h 00413006: 0F 87 96 00 00 00 ja 004130A2 0041300C: 8D 9D FC FB FF FF lea ebx,[ebp-404h] 00413012: 33 C9 xor ecx,ecx 00413014: EB 0A jmp 00413020 00413016: 8D A4 24 00 00 00 lea esp,[esp] 00 0041301D: 8D 49 00 lea ecx,[ecx] 00413020: 8A 91 F4 7B 41 00 mov dl,byte ptr [ecx+417BF4h] 00413026: 88 94 0D FC FB FF mov byte ptr [ebp+ecx-404h],dl FF 0041302D: 83 C1 01 add ecx,1 00413030: 84 D2 test dl,dl 00413032: 75 EC jne 00413020 00413034: 8B D0 mov edx,eax 00413036: 8A 08 mov cl,byte ptr [eax] 00413038: 83 C0 01 add eax,1 0041303B: 84 C9 test cl,cl 0041303D: 75 F7 jne 00413036 0041303F: 57 push edi 00413040: 8D BD FC FB FF FF lea edi,[ebp-404h] 00413046: 2B C2 sub eax,edx 00413048: 83 C7 FF add edi,0FFFFFFFFh 0041304B: EB 03 jmp 00413050 0041304D: 8D 49 00 lea ecx,[ecx] 00413050: 8A 4F 01 mov cl,byte ptr [edi+1] 00413053: 83 C7 01 add edi,1 00413056: 84 C9 test cl,cl 00413058: 75 F6 jne 00413050 0041305A: 8B C8 mov ecx,eax 0041305C: C1 E9 02 shr ecx,2 0041305F: 8B F2 mov esi,edx 00413061: F3 A5 rep movs dword ptr es:[edi],dword ptr [esi] 00413063: 8B C8 mov ecx,eax 00413065: 83 E1 03 and ecx,3 00413068: B8 04 7C 41 00 mov eax,417C04h 0041306D: F3 A4 rep movs byte ptr es:[edi],byte ptr [esi] 0041306F: 8B C8 mov ecx,eax 00413071: 8A 10 mov dl,byte ptr [eax] 00413073: 83 C0 01 add eax,1 00413076: 84 D2 test dl,dl 00413078: 75 F7 jne 00413071 0041307A: 8D BD FC FB FF FF lea edi,[ebp-404h] 00413080: 2B C1 sub eax,ecx 00413082: 8B F1 mov esi,ecx 00413084: 83 C7 FF add edi,0FFFFFFFFh 00413087: 8A 4F 01 mov cl,byte ptr [edi+1] 0041308A: 83 C7 01 add edi,1 0041308D: 84 C9 test cl,cl 0041308F: 75 F6 jne 00413087 00413091: 8B C8 mov ecx,eax 00413093: C1 E9 02 shr ecx,2 00413096: F3 A5 rep movs dword ptr es:[edi],dword ptr [esi] 00413098: 8B C8 mov ecx,eax 0041309A: 83 E1 03 and ecx,3 0041309D: F3 A4 rep movs byte ptr es:[edi],byte ptr [esi] 0041309F: 5F pop edi 004130A0: EB 05 jmp 004130A7 004130A2: BB 08 7F 41 00 mov ebx,offset ??_C@_0DE@OHJBPMBP@A?5variable?5is?5being?5used?5without@ 004130A7: A1 24 90 41 00 mov eax,dword ptr ds:[00419024h] 004130AC: 53 push ebx 004130AD: 6A 03 push 3 004130AF: 50 push eax 004130B0: 8B 45 04 mov eax,dword ptr [ebp+4] 004130B3: 50 push eax 004130B4: E8 F7 F7 FF FF call 004128B0 004130B9: 83 C4 10 add esp,10h 004130BC: 5E pop esi 004130BD: 5B pop ebx 004130BE: 8B 4D FC mov ecx,dword ptr [ebp-4] 004130C1: 33 CD xor ecx,ebp 004130C3: E8 60 DF FF FF call @ILT+35(@__security_check_cookie@4) 004130C8: 8B E5 mov esp,ebp 004130CA: 5D pop ebp 004130CB: C3 ret 004130CC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004130DC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004130EC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004130FC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041310C: CC CC CC CC ???? __RTC_NumErrors: 00413110: B8 05 00 00 00 mov eax,5 00413115: C3 ret 00413116: CC CC CC CC CC CC CC CC CC CC ?????????? __RTC_GetErrDesc: 00413120: 55 push ebp 00413121: 8B EC mov ebp,esp 00413123: 8B 45 08 mov eax,dword ptr [ebp+8] 00413126: 83 F8 04 cmp eax,4 00413129: 77 09 ja 00413134 0041312B: 8B 04 85 14 80 41 mov eax,dword ptr [eax*4+418014h] 00 00413132: 5D pop ebp 00413133: C3 ret 00413134: 33 C0 xor eax,eax 00413136: 5D pop ebp 00413137: C3 ret 00413138: CC CC CC CC CC CC CC CC ???????? __RTC_SetErrorType: 00413140: 55 push ebp 00413141: 8B EC mov ebp,esp 00413143: 8B 4D 08 mov ecx,dword ptr [ebp+8] 00413146: 83 F9 04 cmp ecx,4 00413149: 77 13 ja 0041315E 0041314B: 8B 55 0C mov edx,dword ptr [ebp+0Ch] 0041314E: 8B 04 8D 18 90 41 mov eax,dword ptr ?_RTC_ErrorLevels@@3PAHA[ecx*4] 00 00413155: 89 14 8D 18 90 41 mov dword ptr ?_RTC_ErrorLevels@@3PAHA[ecx*4],edx 00 0041315C: 5D pop ebp 0041315D: C3 ret 0041315E: 83 C8 FF or eax,0FFFFFFFFh 00413161: 5D pop ebp 00413162: C3 ret 00413163: CC CC CC CC CC CC CC CC CC CC CC CC CC ????????????? __RTC_SetErrorFunc: 00413170: 55 push ebp 00413171: 8B EC mov ebp,esp 00413173: 8B 4D 08 mov ecx,dword ptr [ebp+8] 00413176: A1 A0 91 41 00 mov eax,dword ptr ds:[004191A0h] 0041317B: 89 0D A0 91 41 00 mov dword ptr ds:[4191A0h],ecx 00413181: C7 05 A4 91 41 00 mov dword ptr ds:[4191A4h],0 00 00 00 00 0041318B: 5D pop ebp 0041318C: C3 ret 0041318D: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041319D: CC CC CC ??? __RTC_SetErrorFuncW: 004131A0: 55 push ebp 004131A1: 8B EC mov ebp,esp 004131A3: 8B 4D 08 mov ecx,dword ptr [ebp+8] 004131A6: A1 A4 91 41 00 mov eax,dword ptr ds:[004191A4h] 004131AB: 89 0D A4 91 41 00 mov dword ptr ds:[4191A4h],ecx 004131B1: C7 05 A0 91 41 00 mov dword ptr ds:[4191A0h],0 00 00 00 00 004131BB: 5D pop ebp 004131BC: C3 ret 004131BD: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004131CD: CC CC CC ??? ?_RTC_GetErrorFunc@@YAP6AHHPBDH00ZZPBX@Z: 004131D0: A1 A0 91 41 00 mov eax,dword ptr ds:[004191A0h] 004131D5: C3 ret 004131D6: CC CC CC CC CC CC CC CC CC CC ?????????? ?_RTC_GetErrorFuncW@@YAP6AHHPB_WH00ZZPBX@Z: 004131E0: A1 A4 91 41 00 mov eax,dword ptr ds:[004191A4h] 004131E5: C3 ret __CRT_RTC_INITW: 004131E6: FF 25 F8 A3 41 00 jmp dword ptr [__imp___CRT_RTC_INITW] 004131EC: CC CC CC CC ???? ___report_gsfailure: 004131F0: 55 push ebp 004131F1: 8B EC mov ebp,esp 004131F3: 81 EC 28 03 00 00 sub esp,328h 004131F9: A3 B8 92 41 00 mov dword ptr ds:[004192B8h],eax 004131FE: 89 0D B4 92 41 00 mov dword ptr ds:[4192B4h],ecx 00413204: 89 15 B0 92 41 00 mov dword ptr ds:[4192B0h],edx 0041320A: 89 1D AC 92 41 00 mov dword ptr ds:[4192ACh],ebx 00413210: 89 35 A8 92 41 00 mov dword ptr ds:[4192A8h],esi 00413216: 89 3D A4 92 41 00 mov dword ptr ds:[4192A4h],edi 0041321C: 66 8C 15 D0 92 41 mov word ptr ds:[4192D0h],ss 00 00413223: 66 8C 0D C4 92 41 mov word ptr ds:[4192C4h],cs 00 0041322A: 66 8C 1D A0 92 41 mov word ptr ds:[4192A0h],ds 00 00413231: 66 8C 05 9C 92 41 mov word ptr ds:[41929Ch],es 00 00413238: 66 8C 25 98 92 41 mov word ptr ds:[419298h],fs 00 0041323F: 66 8C 2D 94 92 41 mov word ptr ds:[419294h],gs 00 00413246: 9C pushfd 00413247: 8F 05 C8 92 41 00 pop dword ptr ds:[4192C8h] 0041324D: 8B 45 00 mov eax,dword ptr [ebp] 00413250: A3 BC 92 41 00 mov dword ptr ds:[004192BCh],eax 00413255: 8B 45 04 mov eax,dword ptr [ebp+4] 00413258: A3 C0 92 41 00 mov dword ptr ds:[004192C0h],eax 0041325D: 8D 45 08 lea eax,[ebp+8] 00413260: A3 CC 92 41 00 mov dword ptr ds:[004192CCh],eax 00413265: 8B 85 E0 FC FF FF mov eax,dword ptr [ebp-320h] 0041326B: C7 05 08 92 41 00 mov dword ptr ds:[419208h],10001h 01 00 01 00 00413275: A1 C0 92 41 00 mov eax,dword ptr ds:[004192C0h] 0041327A: A3 BC 91 41 00 mov dword ptr ds:[004191BCh],eax 0041327F: C7 05 B0 91 41 00 mov dword ptr ds:[4191B0h],0C0000409h 09 04 00 C0 00413289: C7 05 B4 91 41 00 mov dword ptr ds:[4191B4h],1 01 00 00 00 00413293: 8B 0D 10 90 41 00 mov ecx,dword ptr [___security_cookie] 00413299: 89 8D D8 FC FF FF mov dword ptr [ebp-328h],ecx 0041329F: 8B 15 14 90 41 00 mov edx,dword ptr [___security_cookie_complement] 004132A5: 89 95 DC FC FF FF mov dword ptr [ebp-324h],edx 004132AB: FF 15 60 A2 41 00 call dword ptr [__imp__IsDebuggerPresent@0] 004132B1: A3 00 92 41 00 mov dword ptr ds:[00419200h],eax 004132B6: 6A 01 push 1 004132B8: E8 60 DE FF FF call @ILT+283(__crt_debugger_hook) 004132BD: 83 C4 04 add esp,4 004132C0: 6A 00 push 0 004132C2: FF 15 80 A2 41 00 call dword ptr [__imp__SetUnhandledExceptionFilter@4] 004132C8: 68 2C 80 41 00 push 41802Ch 004132CD: FF 15 7C A2 41 00 call dword ptr [__imp__UnhandledExceptionFilter@4] 004132D3: 83 3D 00 92 41 00 cmp dword ptr ds:[419200h],0 00 004132DA: 75 0A jne 004132E6 004132DC: 6A 01 push 1 004132DE: E8 3A DE FF FF call @ILT+283(__crt_debugger_hook) 004132E3: 83 C4 04 add esp,4 004132E6: 68 09 04 00 C0 push 0C0000409h 004132EB: FF 15 78 A2 41 00 call dword ptr [__imp__GetCurrentProcess@0] 004132F1: 50 push eax 004132F2: FF 15 74 A2 41 00 call dword ptr [__imp__TerminateProcess@8] 004132F8: 8B E5 mov esp,ebp 004132FA: 5D pop ebp 004132FB: C3 ret 004132FC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041330C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041331C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041332C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041333C: CC CC CC CC ???? ?__CxxUnhandledExceptionFilter@@YGJPAU_EXCEPTION_POINTERS@@@Z: 00413340: 55 push ebp 00413341: 8B EC mov ebp,esp 00413343: 8B 45 08 mov eax,dword ptr [ebp+8] 00413346: 8B 08 mov ecx,dword ptr [eax] 00413348: 81 39 63 73 6D E0 cmp dword ptr [ecx],0E06D7363h 0041334E: 75 4F jne 0041339F 00413350: 8B 55 08 mov edx,dword ptr [ebp+8] 00413353: 8B 02 mov eax,dword ptr [edx] 00413355: 83 78 10 03 cmp dword ptr [eax+10h],3 00413359: 75 44 jne 0041339F 0041335B: 8B 4D 08 mov ecx,dword ptr [ebp+8] 0041335E: 8B 11 mov edx,dword ptr [ecx] 00413360: 81 7A 14 20 05 93 cmp dword ptr [edx+14h],19930520h 19 00413367: 74 2A je 00413393 00413369: 8B 45 08 mov eax,dword ptr [ebp+8] 0041336C: 8B 08 mov ecx,dword ptr [eax] 0041336E: 81 79 14 21 05 93 cmp dword ptr [ecx+14h],19930521h 19 00413375: 74 1C je 00413393 00413377: 8B 55 08 mov edx,dword ptr [ebp+8] 0041337A: 8B 02 mov eax,dword ptr [edx] 0041337C: 81 78 14 22 05 93 cmp dword ptr [eax+14h],19930522h 19 00413383: 74 0E je 00413393 00413385: 8B 4D 08 mov ecx,dword ptr [ebp+8] 00413388: 8B 11 mov edx,dword ptr [ecx] 0041338A: 81 7A 14 00 40 99 cmp dword ptr [edx+14h],1994000h 01 00413391: 75 0C jne 0041339F 00413393: E8 2B DD FF FF call @ILT+190(?terminate@@YAXXZ) 00413398: B8 01 00 00 00 mov eax,1 0041339D: EB 02 jmp 004133A1 0041339F: 33 C0 xor eax,eax 004133A1: 5D pop ebp 004133A2: C2 04 00 ret 4 004133A5: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004133B5: CC CC CC CC CC CC CC CC CC CC CC ??????????? ___CxxSetUnhandledExceptionFilter: 004133C0: 55 push ebp 004133C1: 8B EC mov ebp,esp 004133C3: 68 81 11 41 00 push offset @ILT+380(?__CxxUnhandledExceptionFilter@@YGJPAU_EXCEPTION_POINTERS@@@Z) 004133C8: FF 15 80 A2 41 00 call dword ptr [__imp__SetUnhandledExceptionFilter@4] 004133CE: 33 C0 xor eax,eax 004133D0: 5D pop ebp 004133D1: C3 ret 004133D2: CC CC CC CC ???? __configthreadlocale: 004133D6: FF 25 F4 A3 41 00 jmp dword ptr [__imp___configthreadlocale] 004133DC: CC CC CC CC ???? __setdefaultprecision: 004133E0: 55 push ebp 004133E1: 8B EC mov ebp,esp 004133E3: 6A 00 push 0 004133E5: 6A 1F push 1Fh 004133E7: 68 FC 80 41 00 push offset ??_C@_1BI@DMMHIADH@?$AAi?$AAn?$AAt?$AAe?$AAl?$AA?2?$AAf?$AAp?$AA8?$AA?4?$AAc?$AA?$AA@ 004133EC: 68 C8 80 41 00 push offset ??_C@_1CK@JMKHCBEI@?$AA_?$AAs?$AAe?$AAt?$AAd?$AAe?$AAf?$AAa?$AAu?$AAl?$AAt?$AAp?$AAr?$AAe?$AAc?$AAi?$AAs?$AAi?$AAo?$AAn?$AA?$AA@ 004133F1: 68 50 80 41 00 push offset ??_C@_1GE@KOCFNGPB@?$AA_?$AAc?$AAo?$AAn?$AAt?$AAr?$AAo?$AAl?$AAf?$AAp?$AA_?$AAs?$AA?$CI?$AA?$CI?$AA?$CI?$AAv?$AAo?$AAi?$AAd?$AA?5?$AA?$CK?$AA?$CJ?$AA0?$AA?$CJ?$AA?0?$AA?5?$AA0?$AAx?$AA0?$AA0?$AA0?$AA1@ 004133F6: 68 00 00 03 00 push 30000h 004133FB: 68 00 00 01 00 push 10000h 00413400: 6A 00 push 0 00413402: E8 B6 DD FF FF call @ILT+443(__controlfp_s) 00413407: 83 C4 0C add esp,0Ch 0041340A: 50 push eax 0041340B: E8 53 DD FF FF call @ILT+350(__invoke_watson_if_error) 00413410: 83 C4 18 add esp,18h 00413413: 5D pop ebp 00413414: C3 ret 00413415: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413425: CC CC CC CC CC CC CC CC CC CC CC ??????????? __invoke_watson_if_error: 00413430: 55 push ebp 00413431: 8B EC mov ebp,esp 00413433: 83 7D 08 00 cmp dword ptr [ebp+8],0 00413437: 75 02 jne 0041343B 00413439: EB 1C jmp 00413457 0041343B: 8B 45 1C mov eax,dword ptr [ebp+1Ch] 0041343E: 50 push eax 0041343F: 8B 4D 18 mov ecx,dword ptr [ebp+18h] 00413442: 51 push ecx 00413443: 8B 55 14 mov edx,dword ptr [ebp+14h] 00413446: 52 push edx 00413447: 8B 45 10 mov eax,dword ptr [ebp+10h] 0041344A: 50 push eax 0041344B: 8B 4D 0C mov ecx,dword ptr [ebp+0Ch] 0041344E: 51 push ecx 0041344F: E8 78 DD FF FF call @ILT+459(__invoke_watson) 00413454: 83 C4 14 add esp,14h 00413457: 5D pop ebp 00413458: C3 ret 00413459: CC CC CC CC CC CC CC CC CC CC CC ??????????? ___setusermatherr: 00413464: FF 25 F0 A3 41 00 jmp dword ptr [__imp____setusermatherr] 0041346A: CC CC CC CC CC CC ?????? __matherr: 00413470: 55 push ebp 00413471: 8B EC mov ebp,esp 00413473: 33 C0 xor eax,eax 00413475: 5D pop ebp 00413476: C3 ret 00413477: CC CC CC CC CC CC CC CC CC ????????? __setargv: 00413480: 55 push ebp 00413481: 8B EC mov ebp,esp 00413483: 33 C0 xor eax,eax 00413485: 5D pop ebp 00413486: C3 ret 00413487: CC CC CC CC CC CC CC CC CC ????????? __RTC_Initialize: 00413490: 56 push esi 00413491: BE A0 84 41 00 mov esi,4184A0h 00413496: 8B C6 mov eax,esi 00413498: 3D A4 86 41 00 cmp eax,offset ___rtc_izz 0041349D: 73 14 jae 004134B3 0041349F: 90 nop 004134A0: 8B 06 mov eax,dword ptr [esi] 004134A2: 85 C0 test eax,eax 004134A4: 74 02 je 004134A8 004134A6: FF D0 call eax 004134A8: 83 C6 04 add esi,4 004134AB: 81 FE A4 86 41 00 cmp esi,offset ___rtc_izz 004134B1: 72 ED jb 004134A0 004134B3: 5E pop esi 004134B4: C3 ret 004134B5: CC CC CC CC CC CC CC CC CC CC CC ??????????? __RTC_Terminate: 004134C0: 56 push esi 004134C1: BE AC 87 41 00 mov esi,4187ACh 004134C6: 8B C6 mov eax,esi 004134C8: 3D B0 89 41 00 cmp eax,offset ___rtc_tzz 004134CD: 73 14 jae 004134E3 004134CF: 90 nop 004134D0: 8B 06 mov eax,dword ptr [esi] 004134D2: 85 C0 test eax,eax 004134D4: 74 02 je 004134D8 004134D6: FF D0 call eax 004134D8: 83 C6 04 add esi,4 004134DB: 81 FE B0 89 41 00 cmp esi,offset ___rtc_tzz 004134E1: 72 ED jb 004134D0 004134E3: 5E pop esi 004134E4: C3 ret 004134E5: CC CC CC CC CC CC CC CC CC ????????? ___p__commode: 004134EE: FF 25 E8 A3 41 00 jmp dword ptr [__imp____p__commode] ___p__fmode: 004134F4: FF 25 E4 A3 41 00 jmp dword ptr [__imp____p__fmode] 004134FA: CC CC CC CC CC CC ?????? __onexit: 00413500: 55 push ebp 00413501: 8B EC mov ebp,esp 00413503: 6A FE push 0FFFFFFFEh 00413505: 68 E8 8B 41 00 push 418BE8h 0041350A: 68 96 10 41 00 push offset @ILT+145(__except_handler4) 0041350F: 64 A1 00 00 00 00 mov eax,dword ptr fs:[00000000h] 00413515: 50 push eax 00413516: 83 C4 EC add esp,0FFFFFFECh 00413519: 53 push ebx 0041351A: 56 push esi 0041351B: 57 push edi 0041351C: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 00413521: 31 45 F8 xor dword ptr [ebp-8],eax 00413524: 33 C5 xor eax,ebp 00413526: 50 push eax 00413527: 8D 45 F0 lea eax,[ebp-10h] 0041352A: 64 A3 00 00 00 00 mov dword ptr fs:[00000000h],eax 00413530: A1 B8 95 41 00 mov eax,dword ptr [___onexitbegin] 00413535: 50 push eax 00413536: FF 15 94 A3 41 00 call dword ptr [__imp___decode_pointer] 0041353C: 83 C4 04 add esp,4 0041353F: 89 45 E4 mov dword ptr [ebp-1Ch],eax 00413542: 83 7D E4 FF cmp dword ptr [ebp-1Ch],0FFFFFFFFh 00413546: 75 12 jne 0041355A 00413548: 8B 4D 08 mov ecx,dword ptr [ebp+8] 0041354B: 51 push ecx 0041354C: FF 15 90 A3 41 00 call dword ptr [__imp___onexit] 00413552: 83 C4 04 add esp,4 00413555: E9 97 00 00 00 jmp 004135F1 0041355A: 6A 08 push 8 0041355C: E8 3A DB FF FF call @ILT+150(__lock) 00413561: 83 C4 04 add esp,4 00413564: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 0041356B: 8B 15 B8 95 41 00 mov edx,dword ptr [___onexitbegin] 00413571: 52 push edx 00413572: FF 15 94 A3 41 00 call dword ptr [__imp___decode_pointer] 00413578: 83 C4 04 add esp,4 0041357B: 89 45 E4 mov dword ptr [ebp-1Ch],eax 0041357E: A1 A8 95 41 00 mov eax,dword ptr [___onexitend] 00413583: 50 push eax 00413584: FF 15 94 A3 41 00 call dword ptr [__imp___decode_pointer] 0041358A: 83 C4 04 add esp,4 0041358D: 89 45 DC mov dword ptr [ebp-24h],eax 00413590: 8D 4D DC lea ecx,[ebp-24h] 00413593: 51 push ecx 00413594: 8D 55 E4 lea edx,[ebp-1Ch] 00413597: 52 push edx 00413598: 8B 45 08 mov eax,dword ptr [ebp+8] 0041359B: 50 push eax 0041359C: FF 15 E0 A3 41 00 call dword ptr [__imp___encode_pointer] 004135A2: 83 C4 04 add esp,4 004135A5: 50 push eax 004135A6: E8 9E DC FF FF call @ILT+580(___dllonexit) 004135AB: 83 C4 0C add esp,0Ch 004135AE: 89 45 E0 mov dword ptr [ebp-20h],eax 004135B1: 8B 4D E4 mov ecx,dword ptr [ebp-1Ch] 004135B4: 51 push ecx 004135B5: FF 15 E0 A3 41 00 call dword ptr [__imp___encode_pointer] 004135BB: 83 C4 04 add esp,4 004135BE: A3 B8 95 41 00 mov dword ptr [___onexitbegin],eax 004135C3: 8B 55 DC mov edx,dword ptr [ebp-24h] 004135C6: 52 push edx 004135C7: FF 15 E0 A3 41 00 call dword ptr [__imp___encode_pointer] 004135CD: 83 C4 04 add esp,4 004135D0: A3 A8 95 41 00 mov dword ptr [___onexitend],eax 004135D5: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 004135DC: E8 02 00 00 00 call 004135E3 004135E1: EB 0B jmp 004135EE 004135E3: 6A 08 push 8 004135E5: E8 AB DB FF FF call @ILT+400(__unlock) 004135EA: 83 C4 04 add esp,4 004135ED: C3 ret 004135EE: 8B 45 E0 mov eax,dword ptr [ebp-20h] 004135F1: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 004135F4: 64 89 0D 00 00 00 mov dword ptr fs:[0],ecx 00 004135FB: 59 pop ecx 004135FC: 5F pop edi 004135FD: 5E pop esi 004135FE: 5B pop ebx 004135FF: 8B E5 mov esp,ebp 00413601: 5D pop ebp 00413602: C3 ret 00413603: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413613: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413623: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413633: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413643: CC CC CC CC CC CC CC CC CC CC CC CC CC ????????????? _atexit: 00413650: 55 push ebp 00413651: 8B EC mov ebp,esp 00413653: 8B 45 08 mov eax,dword ptr [ebp+8] 00413656: 50 push eax 00413657: E8 EE DA FF FF call @ILT+325(__onexit) 0041365C: 83 C4 04 add esp,4 0041365F: F7 D8 neg eax 00413661: 1B C0 sbb eax,eax 00413663: F7 D8 neg eax 00413665: 83 E8 01 sub eax,1 00413668: 5D pop ebp 00413669: C3 ret 0041366A: CC CC CC CC CC CC ?????? __encode_pointer: 00413670: FF 25 E0 A3 41 00 jmp dword ptr [__imp___encode_pointer] ___set_app_type: 00413676: FF 25 DC A3 41 00 jmp dword ptr [__imp____set_app_type] __amsg_exit: 0041367C: FF 25 D8 A3 41 00 jmp dword ptr [__imp___amsg_exit] ___getmainargs: 00413682: FF 25 D4 A3 41 00 jmp dword ptr [__imp____getmainargs] 00413688: CC CC CC CC CC CC CC CC ???????? ___security_init_cookie: 00413690: 55 push ebp 00413691: 8B EC mov ebp,esp 00413693: 83 EC 18 sub esp,18h 00413696: C7 45 F8 00 00 00 mov dword ptr [ebp-8],0 00 0041369D: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 004136A4: 81 3D 10 90 41 00 cmp dword ptr [___security_cookie],0BB40E64Eh 4E E6 40 BB 004136AE: 74 1F je 004136CF 004136B0: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 004136B5: 25 00 00 FF FF and eax,0FFFF0000h 004136BA: 74 13 je 004136CF 004136BC: 8B 0D 10 90 41 00 mov ecx,dword ptr [___security_cookie] 004136C2: F7 D1 not ecx 004136C4: 89 0D 14 90 41 00 mov dword ptr [___security_cookie_complement],ecx 004136CA: E9 96 00 00 00 jmp 00413765 004136CF: 8D 55 F8 lea edx,[ebp-8] 004136D2: 52 push edx 004136D3: FF 15 94 A2 41 00 call dword ptr [__imp__GetSystemTimeAsFileTime@4] 004136D9: 8B 45 F8 mov eax,dword ptr [ebp-8] 004136DC: 89 45 F4 mov dword ptr [ebp-0Ch],eax 004136DF: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 004136E2: 33 4D FC xor ecx,dword ptr [ebp-4] 004136E5: 89 4D F4 mov dword ptr [ebp-0Ch],ecx 004136E8: FF 15 90 A2 41 00 call dword ptr [__imp__GetCurrentProcessId@0] 004136EE: 33 45 F4 xor eax,dword ptr [ebp-0Ch] 004136F1: 89 45 F4 mov dword ptr [ebp-0Ch],eax 004136F4: FF 15 8C A2 41 00 call dword ptr [__imp__GetCurrentThreadId@0] 004136FA: 33 45 F4 xor eax,dword ptr [ebp-0Ch] 004136FD: 89 45 F4 mov dword ptr [ebp-0Ch],eax 00413700: FF 15 88 A2 41 00 call dword ptr [__imp__GetTickCount@0] 00413706: 33 45 F4 xor eax,dword ptr [ebp-0Ch] 00413709: 89 45 F4 mov dword ptr [ebp-0Ch],eax 0041370C: 8D 55 E8 lea edx,[ebp-18h] 0041370F: 52 push edx 00413710: FF 15 84 A2 41 00 call dword ptr [__imp__QueryPerformanceCounter@4] 00413716: 8B 45 F4 mov eax,dword ptr [ebp-0Ch] 00413719: 33 45 E8 xor eax,dword ptr [ebp-18h] 0041371C: 89 45 F4 mov dword ptr [ebp-0Ch],eax 0041371F: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 00413722: 33 4D EC xor ecx,dword ptr [ebp-14h] 00413725: 89 4D F4 mov dword ptr [ebp-0Ch],ecx 00413728: 81 7D F4 4E E6 40 cmp dword ptr [ebp-0Ch],0BB40E64Eh BB 0041372F: 75 09 jne 0041373A 00413731: C7 45 F4 4F E6 40 mov dword ptr [ebp-0Ch],0BB40E64Fh BB 00413738: EB 17 jmp 00413751 0041373A: 8B 55 F4 mov edx,dword ptr [ebp-0Ch] 0041373D: 81 E2 00 00 FF FF and edx,0FFFF0000h 00413743: 75 0C jne 00413751 00413745: 8B 45 F4 mov eax,dword ptr [ebp-0Ch] 00413748: C1 E0 10 shl eax,10h 0041374B: 0B 45 F4 or eax,dword ptr [ebp-0Ch] 0041374E: 89 45 F4 mov dword ptr [ebp-0Ch],eax 00413751: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 00413754: 89 0D 10 90 41 00 mov dword ptr [___security_cookie],ecx 0041375A: 8B 55 F4 mov edx,dword ptr [ebp-0Ch] 0041375D: F7 D2 not edx 0041375F: 89 15 14 90 41 00 mov dword ptr [___security_cookie_complement],edx 00413765: 8B E5 mov esp,ebp 00413767: 5D pop ebp 00413768: C3 ret 00413769: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413779: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413789: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413799: CC CC CC CC CC CC CC ??????? __exit: 004137A0: FF 25 D0 A3 41 00 jmp dword ptr [__imp___exit] __XcptFilter: 004137A6: FF 25 CC A3 41 00 jmp dword ptr [__imp___XcptFilter] __cexit: 004137AC: FF 25 C8 A3 41 00 jmp dword ptr [__imp___cexit] _exit: 004137B2: FF 25 C4 A3 41 00 jmp dword ptr [__imp__exit] __CrtSetCheckCount: 004137B8: FF 25 BC A3 41 00 jmp dword ptr [__imp___CrtSetCheckCount] 004137BE: CC CC ?? __ValidateImageBase: 004137C0: 55 push ebp 004137C1: 8B EC mov ebp,esp 004137C3: 83 EC 0C sub esp,0Ch 004137C6: 8B 45 08 mov eax,dword ptr [ebp+8] 004137C9: 89 45 F8 mov dword ptr [ebp-8],eax 004137CC: 8B 4D F8 mov ecx,dword ptr [ebp-8] 004137CF: 0F B7 11 movzx edx,word ptr [ecx] 004137D2: 81 FA 4D 5A 00 00 cmp edx,5A4Dh 004137D8: 74 04 je 004137DE 004137DA: 33 C0 xor eax,eax 004137DC: EB 3B jmp 00413819 004137DE: 8B 45 F8 mov eax,dword ptr [ebp-8] 004137E1: 8B 4D F8 mov ecx,dword ptr [ebp-8] 004137E4: 03 48 3C add ecx,dword ptr [eax+3Ch] 004137E7: 89 4D F4 mov dword ptr [ebp-0Ch],ecx 004137EA: 8B 55 F4 mov edx,dword ptr [ebp-0Ch] 004137ED: 81 3A 50 45 00 00 cmp dword ptr [edx],4550h 004137F3: 74 04 je 004137F9 004137F5: 33 C0 xor eax,eax 004137F7: EB 20 jmp 00413819 004137F9: 8B 45 F4 mov eax,dword ptr [ebp-0Ch] 004137FC: 83 C0 18 add eax,18h 004137FF: 89 45 FC mov dword ptr [ebp-4],eax 00413802: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413805: 0F B7 11 movzx edx,word ptr [ecx] 00413808: 81 FA 0B 01 00 00 cmp edx,10Bh 0041380E: 74 04 je 00413814 00413810: 33 C0 xor eax,eax 00413812: EB 05 jmp 00413819 00413814: B8 01 00 00 00 mov eax,1 00413819: 8B E5 mov esp,ebp 0041381B: 5D pop ebp 0041381C: C3 ret 0041381D: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041382D: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041383D: CC CC CC ??? __FindPESection: 00413840: 55 push ebp 00413841: 8B EC mov ebp,esp 00413843: 83 EC 0C sub esp,0Ch 00413846: 8B 45 08 mov eax,dword ptr [ebp+8] 00413849: 8B 4D 08 mov ecx,dword ptr [ebp+8] 0041384C: 03 48 3C add ecx,dword ptr [eax+3Ch] 0041384F: 89 4D FC mov dword ptr [ebp-4],ecx 00413852: C7 45 F8 00 00 00 mov dword ptr [ebp-8],0 00 00413859: 8B 55 FC mov edx,dword ptr [ebp-4] 0041385C: 0F B7 42 14 movzx eax,word ptr [edx+14h] 00413860: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413863: 8D 54 01 18 lea edx,[ecx+eax+18h] 00413867: 89 55 F4 mov dword ptr [ebp-0Ch],edx 0041386A: EB 12 jmp 0041387E 0041386C: 8B 45 F8 mov eax,dword ptr [ebp-8] 0041386F: 83 C0 01 add eax,1 00413872: 89 45 F8 mov dword ptr [ebp-8],eax 00413875: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 00413878: 83 C1 28 add ecx,28h 0041387B: 89 4D F4 mov dword ptr [ebp-0Ch],ecx 0041387E: 8B 55 FC mov edx,dword ptr [ebp-4] 00413881: 0F B7 42 06 movzx eax,word ptr [edx+6] 00413885: 39 45 F8 cmp dword ptr [ebp-8],eax 00413888: 73 23 jae 004138AD 0041388A: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 0041388D: 8B 55 0C mov edx,dword ptr [ebp+0Ch] 00413890: 3B 51 0C cmp edx,dword ptr [ecx+0Ch] 00413893: 72 16 jb 004138AB 00413895: 8B 45 F4 mov eax,dword ptr [ebp-0Ch] 00413898: 8B 48 0C mov ecx,dword ptr [eax+0Ch] 0041389B: 8B 55 F4 mov edx,dword ptr [ebp-0Ch] 0041389E: 03 4A 08 add ecx,dword ptr [edx+8] 004138A1: 39 4D 0C cmp dword ptr [ebp+0Ch],ecx 004138A4: 73 05 jae 004138AB 004138A6: 8B 45 F4 mov eax,dword ptr [ebp-0Ch] 004138A9: EB 04 jmp 004138AF 004138AB: EB BF jmp 0041386C 004138AD: 33 C0 xor eax,eax 004138AF: 8B E5 mov esp,ebp 004138B1: 5D pop ebp 004138B2: C3 ret 004138B3: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004138C3: CC CC CC CC CC CC CC CC CC CC CC CC CC ????????????? __IsNonwritableInCurrentImage: 004138D0: 55 push ebp 004138D1: 8B EC mov ebp,esp 004138D3: 6A FE push 0FFFFFFFEh 004138D5: 68 08 8C 41 00 push 418C08h 004138DA: 68 96 10 41 00 push offset @ILT+145(__except_handler4) 004138DF: 64 A1 00 00 00 00 mov eax,dword ptr fs:[00000000h] 004138E5: 50 push eax 004138E6: 83 C4 D8 add esp,0FFFFFFD8h 004138E9: 53 push ebx 004138EA: 56 push esi 004138EB: 57 push edi 004138EC: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 004138F1: 31 45 F8 xor dword ptr [ebp-8],eax 004138F4: 33 C5 xor eax,ebp 004138F6: 50 push eax 004138F7: 8D 45 F0 lea eax,[ebp-10h] 004138FA: 64 A3 00 00 00 00 mov dword ptr fs:[00000000h],eax 00413900: 89 65 E8 mov dword ptr [ebp-18h],esp 00413903: C7 45 E4 00 00 40 mov dword ptr [ebp-1Ch],400000h 00 0041390A: C7 45 FC 00 00 00 mov dword ptr [ebp-4],0 00 00413911: 8B 45 E4 mov eax,dword ptr [ebp-1Ch] 00413914: 50 push eax 00413915: E8 08 D8 FF FF call @ILT+285(__ValidateImageBase) 0041391A: 83 C4 04 add esp,4 0041391D: 85 C0 test eax,eax 0041391F: 75 16 jne 00413937 00413921: C7 45 D4 00 00 00 mov dword ptr [ebp-2Ch],0 00 00413928: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 0041392F: 8B 45 D4 mov eax,dword ptr [ebp-2Ch] 00413932: E9 97 00 00 00 jmp 004139CE 00413937: 8B 4D 08 mov ecx,dword ptr [ebp+8] 0041393A: 2B 4D E4 sub ecx,dword ptr [ebp-1Ch] 0041393D: 89 4D DC mov dword ptr [ebp-24h],ecx 00413940: 8B 55 DC mov edx,dword ptr [ebp-24h] 00413943: 52 push edx 00413944: 8B 45 E4 mov eax,dword ptr [ebp-1Ch] 00413947: 50 push eax 00413948: E8 B2 D7 FF FF call @ILT+251(__FindPESection) 0041394D: 83 C4 08 add esp,8 00413950: 89 45 E0 mov dword ptr [ebp-20h],eax 00413953: 83 7D E0 00 cmp dword ptr [ebp-20h],0 00413957: 75 13 jne 0041396C 00413959: C7 45 D0 00 00 00 mov dword ptr [ebp-30h],0 00 00413960: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 00413967: 8B 45 D0 mov eax,dword ptr [ebp-30h] 0041396A: EB 62 jmp 004139CE 0041396C: 8B 4D E0 mov ecx,dword ptr [ebp-20h] 0041396F: 8B 51 24 mov edx,dword ptr [ecx+24h] 00413972: 81 E2 00 00 00 80 and edx,80000000h 00413978: F7 DA neg edx 0041397A: 1B D2 sbb edx,edx 0041397C: 83 C2 01 add edx,1 0041397F: 89 55 CC mov dword ptr [ebp-34h],edx 00413982: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 00413989: 8B 45 CC mov eax,dword ptr [ebp-34h] 0041398C: EB 40 jmp 004139CE 0041398E: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 00413995: EB 37 jmp 004139CE 00413997: 8B 45 EC mov eax,dword ptr [ebp-14h] 0041399A: 8B 08 mov ecx,dword ptr [eax] 0041399C: 8B 11 mov edx,dword ptr [ecx] 0041399E: 89 55 D8 mov dword ptr [ebp-28h],edx 004139A1: 8B 45 D8 mov eax,dword ptr [ebp-28h] 004139A4: 33 C9 xor ecx,ecx 004139A6: 3D 05 00 00 C0 cmp eax,0C0000005h 004139AB: 0F 94 C1 sete cl 004139AE: 8B C1 mov eax,ecx 004139B0: C3 ret 004139B1: 8B 65 E8 mov esp,dword ptr [ebp-18h] 004139B4: C7 45 C8 00 00 00 mov dword ptr [ebp-38h],0 00 004139BB: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 004139C2: 8B 45 C8 mov eax,dword ptr [ebp-38h] 004139C5: EB 07 jmp 004139CE 004139C7: C7 45 FC FE FF FF mov dword ptr [ebp-4],0FFFFFFFEh FF 004139CE: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 004139D1: 64 89 0D 00 00 00 mov dword ptr fs:[0],ecx 00 004139D8: 59 pop ecx 004139D9: 5F pop edi 004139DA: 5E pop esi 004139DB: 5B pop ebx 004139DC: 8B E5 mov esp,ebp 004139DE: 5D pop ebp 004139DF: C3 ret 004139E0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004139F0: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413A00: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413A10: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413A20: CC CC CC CC ???? __CrtDbgReportW: 00413A24: FF 25 00 A4 41 00 jmp dword ptr [__imp___CrtDbgReportW] __initterm: 00413A2A: FF 25 B8 A3 41 00 jmp dword ptr [__imp___initterm] __initterm_e: 00413A30: FF 25 B4 A3 41 00 jmp dword ptr [__imp___initterm_e] 00413A36: CC CC CC CC CC CC CC CC CC CC ?????????? __except_handler4: 00413A40: 55 push ebp 00413A41: 8B EC mov ebp,esp 00413A43: 8B 45 14 mov eax,dword ptr [ebp+14h] 00413A46: 50 push eax 00413A47: 8B 4D 10 mov ecx,dword ptr [ebp+10h] 00413A4A: 51 push ecx 00413A4B: 8B 55 0C mov edx,dword ptr [ebp+0Ch] 00413A4E: 52 push edx 00413A4F: 8B 45 08 mov eax,dword ptr [ebp+8] 00413A52: 50 push eax 00413A53: 68 28 10 41 00 push offset @ILT+35(@__security_check_cookie@4) 00413A58: 68 10 90 41 00 push offset ___security_cookie 00413A5D: E8 B0 D7 FF FF call @ILT+525(__except_handler4_common) 00413A62: 83 C4 18 add esp,18h 00413A65: 5D pop ebp 00413A66: C3 ret 00413A67: CC CC CC CC CC CC CC CC CC ????????? ?_RTC_GetSrcLine@@YAHPAEPA_WKPAH1K@Z: 00413A70: 55 push ebp 00413A71: 8B EC mov ebp,esp 00413A73: 8B 45 14 mov eax,dword ptr [ebp+14h] 00413A76: 8B 4D 0C mov ecx,dword ptr [ebp+0Ch] 00413A79: 83 EC 44 sub esp,44h 00413A7C: 56 push esi 00413A7D: 8B 75 08 mov esi,dword ptr [ebp+8] 00413A80: 6A 1C push 1Ch 00413A82: 8D 55 BC lea edx,[ebp-44h] 00413A85: 52 push edx 00413A86: 83 EE 01 sub esi,1 00413A89: C7 00 00 00 00 00 mov dword ptr [eax],0 00413A8F: 56 push esi 00413A90: 66 C7 01 00 00 mov word ptr [ecx],0 00413A95: FF 15 AC A2 41 00 call dword ptr [__imp__VirtualQuery@12] 00413A9B: 85 C0 test eax,eax 00413A9D: 75 07 jne 00413AA6 00413A9F: 33 C0 xor eax,eax 00413AA1: 5E pop esi 00413AA2: 8B E5 mov esp,ebp 00413AA4: 5D pop ebp 00413AA5: C3 ret 00413AA6: 8B 45 1C mov eax,dword ptr [ebp+1Ch] 00413AA9: 8B 4D 18 mov ecx,dword ptr [ebp+18h] 00413AAC: 8B 55 C0 mov edx,dword ptr [ebp-40h] 00413AAF: 50 push eax 00413AB0: 51 push ecx 00413AB1: 52 push edx 00413AB2: FF 15 A4 A2 41 00 call dword ptr [__imp__GetModuleFileNameW@12] 00413AB8: 85 C0 test eax,eax 00413ABA: 74 E3 je 00413A9F 00413ABC: 8B 55 C0 mov edx,dword ptr [ebp-40h] 00413ABF: 66 81 3A 4D 5A cmp word ptr [edx],5A4Dh 00413AC4: 75 D9 jne 00413A9F 00413AC6: 8B 42 3C mov eax,dword ptr [edx+3Ch] 00413AC9: 85 C0 test eax,eax 00413ACB: 7E D2 jle 00413A9F 00413ACD: 03 C2 add eax,edx 00413ACF: 81 38 50 45 00 00 cmp dword ptr [eax],4550h 00413AD5: 75 C8 jne 00413A9F 00413AD7: 0F B7 48 06 movzx ecx,word ptr [eax+6] 00413ADB: 53 push ebx 00413ADC: 57 push edi 00413ADD: 0F B7 78 14 movzx edi,word ptr [eax+14h] 00413AE1: 8D 44 07 18 lea eax,[edi+eax+18h] 00413AE5: 2B F2 sub esi,edx 00413AE7: 33 FF xor edi,edi 00413AE9: 33 DB xor ebx,ebx 00413AEB: 85 C9 test ecx,ecx 00413AED: 76 1C jbe 00413B0B 00413AEF: 83 C0 0C add eax,0Ch 00413AF2: 8B 10 mov edx,dword ptr [eax] 00413AF4: 3B F2 cmp esi,edx 00413AF6: 72 09 jb 00413B01 00413AF8: 8B FE mov edi,esi 00413AFA: 2B FA sub edi,edx 00413AFC: 3B 70 FC cmp esi,dword ptr [eax-4] 00413AFF: 72 0A jb 00413B0B 00413B01: 83 C3 01 add ebx,1 00413B04: 83 C0 28 add eax,28h 00413B07: 3B D9 cmp ebx,ecx 00413B09: 72 E7 jb 00413AF2 00413B0B: 3B D9 cmp ebx,ecx 00413B0D: 74 5D je 00413B6C 00413B0F: 83 C3 01 add ebx,1 00413B12: 80 3D 8C 95 41 00 cmp byte ptr ds:[41958Ch],0 00 00413B19: 75 20 jne 00413B3B 00413B1B: 83 3D 88 95 41 00 cmp dword ptr ds:[419588h],0 00 00413B22: 75 48 jne 00413B6C 00413B24: E8 C7 02 00 00 call 00413DF0 00413B29: 85 C0 test eax,eax 00413B2B: A3 88 95 41 00 mov dword ptr ds:[00419588h],eax 00413B30: 74 3A je 00413B6C 00413B32: C6 05 8C 95 41 00 mov byte ptr ds:[41958Ch],1 01 00413B39: EB 05 jmp 00413B40 00413B3B: A1 88 95 41 00 mov eax,dword ptr ds:[00419588h] 00413B40: 68 2C 81 41 00 push offset ??_C@_0BB@KCIACLNC@PDBOpenValidate5?$AA@ 00413B45: 50 push eax 00413B46: FF 15 6C A2 41 00 call dword ptr [__imp__GetProcAddress@8] 00413B4C: 33 F6 xor esi,esi 00413B4E: 3B C6 cmp eax,esi 00413B50: 74 1A je 00413B6C 00413B52: 8D 4D F0 lea ecx,[ebp-10h] 00413B55: 51 push ecx 00413B56: 8B 4D 18 mov ecx,dword ptr [ebp+18h] 00413B59: 56 push esi 00413B5A: 56 push esi 00413B5B: 8D 55 D8 lea edx,[ebp-28h] 00413B5E: 52 push edx 00413B5F: 56 push esi 00413B60: 56 push esi 00413B61: 56 push esi 00413B62: 51 push ecx 00413B63: FF D0 call eax 00413B65: 83 C4 20 add esp,20h 00413B68: 85 C0 test eax,eax 00413B6A: 75 09 jne 00413B75 00413B6C: 5F pop edi 00413B6D: 5B pop ebx 00413B6E: 33 C0 xor eax,eax 00413B70: 5E pop esi 00413B71: 8B E5 mov esp,ebp 00413B73: 5D pop ebp 00413B74: C3 ret 00413B75: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 00413B78: 8B 11 mov edx,dword ptr [ecx] 00413B7A: 8B 02 mov eax,dword ptr [edx] 00413B7C: 89 75 E4 mov dword ptr [ebp-1Ch],esi 00413B7F: FF D0 call eax 00413B81: 3D B5 A5 31 01 cmp eax,131A5B5h 00413B86: 0F 85 92 01 00 00 jne 00413D1E 00413B8C: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 00413B8F: 8B 11 mov edx,dword ptr [ecx] 00413B91: 8B 52 1C mov edx,dword ptr [edx+1Ch] 00413B94: 8D 45 E8 lea eax,[ebp-18h] 00413B97: 50 push eax 00413B98: 68 28 81 41 00 push offset ??_C@_01KDCPPGHE@r?$AA@ 00413B9D: 56 push esi 00413B9E: FF D2 call edx 00413BA0: 85 C0 test eax,eax 00413BA2: 0F 84 76 01 00 00 je 00413D1E 00413BA8: 8B 4D E8 mov ecx,dword ptr [ebp-18h] 00413BAB: 8B 01 mov eax,dword ptr [ecx] 00413BAD: 8B 40 20 mov eax,dword ptr [eax+20h] 00413BB0: 56 push esi 00413BB1: 56 push esi 00413BB2: 56 push esi 00413BB3: 8D 55 F4 lea edx,[ebp-0Ch] 00413BB6: 52 push edx 00413BB7: 57 push edi 00413BB8: 53 push ebx 00413BB9: FF D0 call eax 00413BBB: 85 C0 test eax,eax 00413BBD: 0F 84 51 01 00 00 je 00413D14 00413BC3: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 00413BC6: 89 75 FC mov dword ptr [ebp-4],esi 00413BC9: 8B 11 mov edx,dword ptr [ecx] 00413BCB: 8B 52 68 mov edx,dword ptr [edx+68h] 00413BCE: 8D 45 FC lea eax,[ebp-4] 00413BD1: 50 push eax 00413BD2: FF D2 call edx 00413BD4: 84 C0 test al,al 00413BD6: 0F 84 2E 01 00 00 je 00413D0A 00413BDC: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413BDF: 3B CE cmp ecx,esi 00413BE1: 0F 84 23 01 00 00 je 00413D0A 00413BE7: 8B 01 mov eax,dword ptr [ecx] 00413BE9: 8B 50 08 mov edx,dword ptr [eax+8] 00413BEC: FF D2 call edx 00413BEE: 85 C0 test eax,eax 00413BF0: 0F 84 FB 00 00 00 je 00413CF1 00413BF6: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413BF9: 8B 01 mov eax,dword ptr [ecx] 00413BFB: 8B 40 0C mov eax,dword ptr [eax+0Ch] 00413BFE: 6A 00 push 0 00413C00: 8D 55 F8 lea edx,[ebp-8] 00413C03: 52 push edx 00413C04: 8D 55 E0 lea edx,[ebp-20h] 00413C07: 52 push edx 00413C08: 8D 55 08 lea edx,[ebp+8] 00413C0B: 52 push edx 00413C0C: 8D 55 EC lea edx,[ebp-14h] 00413C0F: 52 push edx 00413C10: 6A 00 push 0 00413C12: FF D0 call eax 00413C14: 84 C0 test al,al 00413C16: 0F 84 E5 00 00 00 je 00413D01 00413C1C: 0F B7 4D 08 movzx ecx,word ptr [ebp+8] 00413C20: 3B CB cmp ecx,ebx 00413C22: 75 10 jne 00413C34 00413C24: 8B 45 EC mov eax,dword ptr [ebp-14h] 00413C27: 3B C7 cmp eax,edi 00413C29: 77 09 ja 00413C34 00413C2B: 8B 55 E0 mov edx,dword ptr [ebp-20h] 00413C2E: 03 C2 add eax,edx 00413C30: 3B F8 cmp edi,eax 00413C32: 72 13 jb 00413C47 00413C34: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413C37: 8B 01 mov eax,dword ptr [ecx] 00413C39: 8B 50 08 mov edx,dword ptr [eax+8] 00413C3C: FF D2 call edx 00413C3E: 85 C0 test eax,eax 00413C40: 75 B4 jne 00413BF6 00413C42: E9 AA 00 00 00 jmp 00413CF1 00413C47: 8B 45 F8 mov eax,dword ptr [ebp-8] 00413C4A: 85 C0 test eax,eax 00413C4C: 0F 84 AF 00 00 00 je 00413D01 00413C52: 3D FF FF FF 1F cmp eax,1FFFFFFFh 00413C57: 0F 83 A4 00 00 00 jae 00413D01 00413C5D: 03 C0 add eax,eax 00413C5F: 03 C0 add eax,eax 00413C61: 03 C0 add eax,eax 00413C63: 50 push eax 00413C64: 6A 00 push 0 00413C66: FF 15 A0 A2 41 00 call dword ptr [__imp__GetProcessHeap@0] 00413C6C: 50 push eax 00413C6D: FF 15 9C A2 41 00 call dword ptr [__imp__HeapAlloc@12] 00413C73: 8B F0 mov esi,eax 00413C75: 85 F6 test esi,esi 00413C77: 0F 84 84 00 00 00 je 00413D01 00413C7D: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413C80: 8B 11 mov edx,dword ptr [ecx] 00413C82: 8B 52 0C mov edx,dword ptr [edx+0Ch] 00413C85: 56 push esi 00413C86: 8D 45 F8 lea eax,[ebp-8] 00413C89: 50 push eax 00413C8A: 6A 00 push 0 00413C8C: 6A 00 push 0 00413C8E: 6A 00 push 0 00413C90: 8D 45 DC lea eax,[ebp-24h] 00413C93: 50 push eax 00413C94: FF D2 call edx 00413C96: 84 C0 test al,al 00413C98: 74 57 je 00413CF1 00413C9A: 2B 7D EC sub edi,dword ptr [ebp-14h] 00413C9D: 3B 3E cmp edi,dword ptr [esi] 00413C9F: 72 50 jb 00413CF1 00413CA1: 8B 4D F8 mov ecx,dword ptr [ebp-8] 00413CA4: B8 01 00 00 00 mov eax,1 00413CA9: 3B C8 cmp ecx,eax 00413CAB: 76 0F jbe 00413CBC 00413CAD: 8D 49 00 lea ecx,[ecx] 00413CB0: 3B 3C C6 cmp edi,dword ptr [esi+eax*8] 00413CB3: 72 07 jb 00413CBC 00413CB5: 83 C0 01 add eax,1 00413CB8: 3B C1 cmp eax,ecx 00413CBA: 72 F4 jb 00413CB0 00413CBC: 8B 44 C6 FC mov eax,dword ptr [esi+eax*8-4] 00413CC0: 8B 4D 14 mov ecx,dword ptr [ebp+14h] 00413CC3: 6A 00 push 0 00413CC5: 25 FF FF FF 00 and eax,0FFFFFFh 00413CCA: 89 01 mov dword ptr [ecx],eax 00413CCC: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 00413CCF: 8B 11 mov edx,dword ptr [ecx] 00413CD1: 8B 52 70 mov edx,dword ptr [edx+70h] 00413CD4: 6A 00 push 0 00413CD6: 6A 00 push 0 00413CD8: 8D 45 10 lea eax,[ebp+10h] 00413CDB: 50 push eax 00413CDC: 8B 45 0C mov eax,dword ptr [ebp+0Ch] 00413CDF: 50 push eax 00413CE0: 8B 45 DC mov eax,dword ptr [ebp-24h] 00413CE3: 50 push eax 00413CE4: FF D2 call edx 00413CE6: 84 C0 test al,al 00413CE8: 74 07 je 00413CF1 00413CEA: C7 45 E4 01 00 00 mov dword ptr [ebp-1Ch],1 00 00413CF1: 56 push esi 00413CF2: 6A 00 push 0 00413CF4: FF 15 A0 A2 41 00 call dword ptr [__imp__GetProcessHeap@0] 00413CFA: 50 push eax 00413CFB: FF 15 98 A2 41 00 call dword ptr [__imp__HeapFree@12] 00413D01: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413D04: 8B 01 mov eax,dword ptr [ecx] 00413D06: 8B 10 mov edx,dword ptr [eax] 00413D08: FF D2 call edx 00413D0A: 8B 4D F4 mov ecx,dword ptr [ebp-0Ch] 00413D0D: 8B 01 mov eax,dword ptr [ecx] 00413D0F: 8B 50 40 mov edx,dword ptr [eax+40h] 00413D12: FF D2 call edx 00413D14: 8B 4D E8 mov ecx,dword ptr [ebp-18h] 00413D17: 8B 01 mov eax,dword ptr [ecx] 00413D19: 8B 50 38 mov edx,dword ptr [eax+38h] 00413D1C: FF D2 call edx 00413D1E: 8B 4D F0 mov ecx,dword ptr [ebp-10h] 00413D21: 8B 01 mov eax,dword ptr [ecx] 00413D23: 8B 50 28 mov edx,dword ptr [eax+28h] 00413D26: FF D2 call edx 00413D28: 8B 45 E4 mov eax,dword ptr [ebp-1Ch] 00413D2B: 5F pop edi 00413D2C: 5B pop ebx 00413D2D: 5E pop esi 00413D2E: 8B E5 mov esp,ebp 00413D30: 5D pop ebp 00413D31: C3 ret 00413D32: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413D42: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413D52: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413D62: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413D72: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413D82: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413D92: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413DA2: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413DB2: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413DC2: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413DD2: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413DE2: CC CC CC CC CC CC CC CC CC CC CC CC CC CC ?????????????? 00413DF0: 55 push ebp 00413DF1: 8B EC mov ebp,esp 00413DF3: 81 EC 18 01 00 00 sub esp,118h 00413DF9: A1 10 90 41 00 mov eax,dword ptr [___security_cookie] 00413DFE: 33 C5 xor eax,ebp 00413E00: 89 45 FC mov dword ptr [ebp-4],eax 00413E03: 83 3D 90 95 41 00 cmp dword ptr ds:[419590h],0 00 00413E0A: 74 10 je 00413E1C 00413E0C: 33 C0 xor eax,eax 00413E0E: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413E11: 33 CD xor ecx,ebp 00413E13: E8 10 D2 FF FF call @ILT+35(@__security_check_cookie@4) 00413E18: 8B E5 mov esp,ebp 00413E1A: 5D pop ebp 00413E1B: C3 ret 00413E1C: A1 60 90 41 00 mov eax,dword ptr ds:[00419060h] 00413E21: 56 push esi 00413E22: 8B 35 70 A2 41 00 mov esi,dword ptr [__imp__LoadLibraryA@4] 00413E28: 50 push eax 00413E29: C7 05 90 95 41 00 mov dword ptr ds:[419590h],1 01 00 00 00 00413E33: FF D6 call esi 00413E35: 85 C0 test eax,eax 00413E37: 0F 85 60 01 00 00 jne 00413F9D 00413E3D: 68 C8 81 41 00 push offset ??_C@_0N@JJPEKNFO@ADVAPI32?4DLL?$AA@ 00413E42: FF D6 call esi 00413E44: 8B F0 mov esi,eax 00413E46: 85 F6 test esi,esi 00413E48: 75 0F jne 00413E59 00413E4A: 5E pop esi 00413E4B: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413E4E: 33 CD xor ecx,ebp 00413E50: E8 D3 D1 FF FF call @ILT+35(@__security_check_cookie@4) 00413E55: 8B E5 mov esp,ebp 00413E57: 5D pop ebp 00413E58: C3 ret 00413E59: 53 push ebx 00413E5A: 8B 1D 6C A2 41 00 mov ebx,dword ptr [__imp__GetProcAddress@8] 00413E60: 68 B8 81 41 00 push offset ??_C@_0O@DCOGKJGG@RegOpenKeyExA?$AA@ 00413E65: 56 push esi 00413E66: FF D3 call ebx 00413E68: 85 C0 test eax,eax 00413E6A: 89 85 EC FE FF FF mov dword ptr [ebp-114h],eax 00413E70: 75 10 jne 00413E82 00413E72: 5B pop ebx 00413E73: 5E pop esi 00413E74: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413E77: 33 CD xor ecx,ebp 00413E79: E8 AA D1 FF FF call @ILT+35(@__security_check_cookie@4) 00413E7E: 8B E5 mov esp,ebp 00413E80: 5D pop ebp 00413E81: C3 ret 00413E82: 57 push edi 00413E83: 68 A4 81 41 00 push offset ??_C@_0BB@HHEIPGME@RegQueryValueExA?$AA@ 00413E88: 56 push esi 00413E89: FF D3 call ebx 00413E8B: 8B F8 mov edi,eax 00413E8D: 85 FF test edi,edi 00413E8F: 74 68 je 00413EF9 00413E91: 68 94 81 41 00 push offset ??_C@_0M@HLOHPNFA@RegCloseKey?$AA@ 00413E96: 56 push esi 00413E97: FF D3 call ebx 00413E99: 8B D8 mov ebx,eax 00413E9B: 85 DB test ebx,ebx 00413E9D: 74 5A je 00413EF9 00413E9F: 8D 8D F0 FE FF FF lea ecx,[ebp-110h] 00413EA5: 51 push ecx 00413EA6: 6A 01 push 1 00413EA8: 6A 00 push 0 00413EAA: 68 5C 81 41 00 push offset ??_C@_0CN@EAEOKKOC@SOFTWARE?2Microsoft?2VisualStudio?2@ 00413EAF: 68 02 00 00 80 push 80000002h 00413EB4: FF 95 EC FE FF FF call dword ptr [ebp-114h] 00413EBA: 85 C0 test eax,eax 00413EBC: 75 34 jne 00413EF2 00413EBE: 8B 8D F0 FE FF FF mov ecx,dword ptr [ebp-110h] 00413EC4: 8D 95 F4 FE FF FF lea edx,[ebp-10Ch] 00413ECA: 52 push edx 00413ECB: 50 push eax 00413ECC: 8D 85 E8 FE FF FF lea eax,[ebp-118h] 00413ED2: 50 push eax 00413ED3: 6A 00 push 0 00413ED5: 68 40 81 41 00 push offset ??_C@_0BF@BMIHBHCA@EnvironmentDirectory?$AA@ 00413EDA: 51 push ecx 00413EDB: FF D7 call edi 00413EDD: 85 C0 test eax,eax 00413EDF: 75 11 jne 00413EF2 00413EE1: 8B 95 F4 FE FF FF mov edx,dword ptr [ebp-10Ch] 00413EE7: 83 C2 0D add edx,0Dh 00413EEA: 81 FA 04 01 00 00 cmp edx,104h 00413EF0: 72 1A jb 00413F0C 00413EF2: 56 push esi 00413EF3: FF 15 A8 A2 41 00 call dword ptr [__imp__FreeLibrary@4] 00413EF9: 5F pop edi 00413EFA: 5B pop ebx 00413EFB: 33 C0 xor eax,eax 00413EFD: 5E pop esi 00413EFE: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413F01: 33 CD xor ecx,ebp 00413F03: E8 20 D1 FF FF call @ILT+35(@__security_check_cookie@4) 00413F08: 8B E5 mov esp,ebp 00413F0A: 5D pop ebp 00413F0B: C3 ret 00413F0C: 8D 85 F4 FE FF FF lea eax,[ebp-10Ch] 00413F12: 50 push eax 00413F13: 8B 85 F0 FE FF FF mov eax,dword ptr [ebp-110h] 00413F19: 8D 8D F8 FE FF FF lea ecx,[ebp-108h] 00413F1F: 51 push ecx 00413F20: 8D 95 E8 FE FF FF lea edx,[ebp-118h] 00413F26: 52 push edx 00413F27: 6A 00 push 0 00413F29: 68 40 81 41 00 push offset ??_C@_0BF@BMIHBHCA@EnvironmentDirectory?$AA@ 00413F2E: 50 push eax 00413F2F: FF D7 call edi 00413F31: 8B 8D F0 FE FF FF mov ecx,dword ptr [ebp-110h] 00413F37: 51 push ecx 00413F38: 8B F8 mov edi,eax 00413F3A: FF D3 call ebx 00413F3C: 56 push esi 00413F3D: FF 15 A8 A2 41 00 call dword ptr [__imp__FreeLibrary@4] 00413F43: 85 FF test edi,edi 00413F45: 75 B2 jne 00413EF9 00413F47: 8B 8D F4 FE FF FF mov ecx,dword ptr [ebp-10Ch] 00413F4D: B0 5C mov al,5Ch 00413F4F: 38 84 0D F6 FE FF cmp byte ptr [ebp+ecx-10Ah],al FF 00413F56: 74 09 je 00413F61 00413F58: 88 84 0D F7 FE FF mov byte ptr [ebp+ecx-109h],al FF 00413F5F: EB 09 jmp 00413F6A 00413F61: 83 E9 01 sub ecx,1 00413F64: 89 8D F4 FE FF FF mov dword ptr [ebp-10Ch],ecx 00413F6A: 8B 35 60 90 41 00 mov esi,dword ptr ds:[419060h] 00413F70: 33 C0 xor eax,eax 00413F72: 8D 8C 0D F8 FE FF lea ecx,[ebp+ecx-108h] FF 00413F79: 8D A4 24 00 00 00 lea esp,[esp] 00 00413F80: 8A 14 06 mov dl,byte ptr [esi+eax] 00413F83: 88 14 01 mov byte ptr [ecx+eax],dl 00413F86: 83 C0 01 add eax,1 00413F89: 83 F8 0B cmp eax,0Bh 00413F8C: 7E F2 jle 00413F80 00413F8E: 8D 85 F8 FE FF FF lea eax,[ebp-108h] 00413F94: 50 push eax 00413F95: FF 15 70 A2 41 00 call dword ptr [__imp__LoadLibraryA@4] 00413F9B: 5F pop edi 00413F9C: 5B pop ebx 00413F9D: 8B 4D FC mov ecx,dword ptr [ebp-4] 00413FA0: 33 CD xor ecx,ebp 00413FA2: 5E pop esi 00413FA3: E8 80 D0 FF FF call @ILT+35(@__security_check_cookie@4) 00413FA8: 8B E5 mov esp,ebp 00413FAA: 5D pop ebp 00413FAB: C3 ret 00413FAC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413FBC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413FCC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413FDC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413FEC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00413FFC: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041400C: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? __crt_debugger_hook: 0041401C: FF 25 B0 A3 41 00 jmp dword ptr [__imp___crt_debugger_hook] ?terminate@@YAXXZ: 00414022: FF 25 AC A3 41 00 jmp dword ptr [__imp_?terminate@@YAXXZ] __controlfp_s: 00414028: FF 25 A8 A3 41 00 jmp dword ptr [__imp___controlfp_s] __invoke_watson: 0041402E: FF 25 A4 A3 41 00 jmp dword ptr [__imp___invoke_watson] __unlock: 00414034: FF 25 A0 A3 41 00 jmp dword ptr [__imp___unlock] ___dllonexit: 0041403A: FF 25 9C A3 41 00 jmp dword ptr [__imp____dllonexit] __lock: 00414040: FF 25 8C A3 41 00 jmp dword ptr [__imp___lock] __decode_pointer: 00414046: FF 25 94 A3 41 00 jmp dword ptr [__imp___decode_pointer] __except_handler4_common: 0041404C: FF 25 98 A3 41 00 jmp dword ptr [__imp___except_handler4_common] _InterlockedExchange@8: 00414052: FF 25 B0 A2 41 00 jmp dword ptr [__imp__InterlockedExchange@8] _Sleep@4: 00414058: FF 25 4C A2 41 00 jmp dword ptr [__imp__Sleep@4] _InterlockedCompareExchange@12: 0041405E: FF 25 50 A2 41 00 jmp dword ptr [__imp__InterlockedCompareExchange@12] _RaiseException@16: 00414064: FF 25 54 A2 41 00 jmp dword ptr [__imp__RaiseException@16] _DebugBreak@0: 0041406A: FF 25 58 A2 41 00 jmp dword ptr [__imp__DebugBreak@0] _WideCharToMultiByte@32: 00414070: FF 25 5C A2 41 00 jmp dword ptr [__imp__WideCharToMultiByte@32] _IsDebuggerPresent@0: 00414076: FF 25 60 A2 41 00 jmp dword ptr [__imp__IsDebuggerPresent@0] _MultiByteToWideChar@24: 0041407C: FF 25 64 A2 41 00 jmp dword ptr [__imp__MultiByteToWideChar@24] _lstrlenA@4: 00414082: FF 25 68 A2 41 00 jmp dword ptr [__imp__lstrlenA@4] _GetProcAddress@8: 00414088: FF 25 6C A2 41 00 jmp dword ptr [__imp__GetProcAddress@8] _LoadLibraryA@4: 0041408E: FF 25 70 A2 41 00 jmp dword ptr [__imp__LoadLibraryA@4] _TerminateProcess@8: 00414094: FF 25 74 A2 41 00 jmp dword ptr [__imp__TerminateProcess@8] _GetCurrentProcess@0: 0041409A: FF 25 78 A2 41 00 jmp dword ptr [__imp__GetCurrentProcess@0] _UnhandledExceptionFilter@4: 004140A0: FF 25 7C A2 41 00 jmp dword ptr [__imp__UnhandledExceptionFilter@4] _SetUnhandledExceptionFilter@4: 004140A6: FF 25 80 A2 41 00 jmp dword ptr [__imp__SetUnhandledExceptionFilter@4] _QueryPerformanceCounter@4: 004140AC: FF 25 84 A2 41 00 jmp dword ptr [__imp__QueryPerformanceCounter@4] _GetTickCount@0: 004140B2: FF 25 88 A2 41 00 jmp dword ptr [__imp__GetTickCount@0] _GetCurrentThreadId@0: 004140B8: FF 25 8C A2 41 00 jmp dword ptr [__imp__GetCurrentThreadId@0] _GetCurrentProcessId@0: 004140BE: FF 25 90 A2 41 00 jmp dword ptr [__imp__GetCurrentProcessId@0] _GetSystemTimeAsFileTime@4: 004140C4: FF 25 94 A2 41 00 jmp dword ptr [__imp__GetSystemTimeAsFileTime@4] _HeapFree@12: 004140CA: FF 25 98 A2 41 00 jmp dword ptr [__imp__HeapFree@12] _HeapAlloc@12: 004140D0: FF 25 9C A2 41 00 jmp dword ptr [__imp__HeapAlloc@12] _GetProcessHeap@0: 004140D6: FF 25 A0 A2 41 00 jmp dword ptr [__imp__GetProcessHeap@0] _GetModuleFileNameW@12: 004140DC: FF 25 A4 A2 41 00 jmp dword ptr [__imp__GetModuleFileNameW@12] _VirtualQuery@12: 004140E2: FF 25 AC A2 41 00 jmp dword ptr [__imp__VirtualQuery@12] _FreeLibrary@4: 004140E8: FF 25 A8 A2 41 00 jmp dword ptr [__imp__FreeLibrary@4] 004140EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004140FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041410E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041411E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041412E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041413E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041414E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041415E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041416E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041417E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041418E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041419E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004141AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004141BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004141CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004141DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004141EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004141FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041420E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041421E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041422E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041423E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041424E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041425E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041426E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041427E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041428E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041429E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004142AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004142BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004142CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004142DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004142EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004142FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041430E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041431E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041432E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041433E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041434E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041435E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041436E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041437E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041438E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041439E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004143AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004143BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004143CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004143DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004143EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004143FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041440E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041441E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041442E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041443E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041444E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041445E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041446E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041447E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041448E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041449E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004144AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004144BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004144CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004144DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004144EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004144FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041450E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041451E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041452E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041453E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041454E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041455E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041456E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041457E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041458E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041459E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004145AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004145BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004145CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004145DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004145EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004145FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041460E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041461E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041462E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041463E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041464E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041465E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041466E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041467E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041468E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041469E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004146AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004146BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004146CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004146DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004146EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004146FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041470E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041471E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041472E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041473E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041474E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041475E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041476E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041477E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041478E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041479E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004147AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004147BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004147CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004147DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004147EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004147FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041480E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041481E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041482E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041483E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041484E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041485E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041486E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041487E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041488E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041489E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004148AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004148BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004148CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004148DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004148EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004148FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041490E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041491E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041492E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041493E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041494E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041495E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041496E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041497E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041498E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041499E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004149AE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004149BE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004149CE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004149DE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004149EE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004149FE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A0E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A1E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A2E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A3E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A4E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A5E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A6E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A7E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A8E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414A9E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414AAE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414ABE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414ACE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414ADE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414AEE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414AFE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B0E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B1E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B2E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B3E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B4E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B5E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B6E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B7E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B8E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414B9E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414BAE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414BBE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414BCE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414BDE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414BEE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414BFE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C0E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C1E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C2E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C3E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C4E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C5E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C6E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C7E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C8E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414C9E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414CAE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414CBE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414CCE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414CDE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414CEE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414CFE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D0E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D1E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D2E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D3E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D4E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D5E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D6E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D7E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D8E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414D9E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414DAE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414DBE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414DCE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414DDE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414DEE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414DFE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E0E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E1E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E2E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E3E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E4E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E5E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E6E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E7E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E8E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414E9E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414EAE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414EBE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414ECE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414EDE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414EEE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414EFE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F0E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F1E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F2E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F3E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F4E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F5E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F6E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F7E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F8E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414F9E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414FAE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414FBE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414FCE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414FDE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414FEE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00414FFE: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041500E: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 0041501E: CC CC ?? 00415020: 8D 4D C0 lea ecx,[ebp-40h] 00415023: E9 0E C1 FF FF jmp @ILT+305(??1sentry@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@XZ) 00415028: 8B 54 24 08 mov edx,dword ptr [esp+8] 0041502C: 8D 42 0C lea eax,[edx+0Ch] 0041502F: 8B 8A A8 FE FF FF mov ecx,dword ptr [edx-158h] 00415035: 33 C8 xor ecx,eax 00415037: E8 EC BF FF FF call @ILT+35(@__security_check_cookie@4) 0041503C: B8 F4 8A 41 00 mov eax,418AF4h 00415041: E9 A4 C1 FF FF jmp @ILT+485(___CxxFrameHandler3) 00415046: CC CC CC CC CC CC CC CC CC CC ?????????? 00415050: 8B 4D EC mov ecx,dword ptr [ebp-14h] 00415053: E9 15 C1 FF FF jmp @ILT+363(??1_Sentry_base@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@XZ) 00415058: 8B 54 24 08 mov edx,dword ptr [esp+8] 0041505C: 8D 42 0C lea eax,[edx+0Ch] 0041505F: 8B 8A 24 FF FF FF mov ecx,dword ptr [edx-0DCh] 00415065: 33 C8 xor ecx,eax 00415067: E8 BC BF FF FF call @ILT+35(@__security_check_cookie@4) 0041506C: B8 2C 8B 41 00 mov eax,418B2Ch 00415071: E9 74 C1 FF FF jmp @ILT+485(___CxxFrameHandler3) 00415076: CC CC CC CC CC CC CC CC CC CC ?????????? 00415080: 8B 4D EC mov ecx,dword ptr [ebp-14h] 00415083: E9 E5 C0 FF FF jmp @ILT+363(??1_Sentry_base@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@XZ) 00415088: 8B 54 24 08 mov edx,dword ptr [esp+8] 0041508C: 8D 42 0C lea eax,[edx+0Ch] 0041508F: 8B 8A 24 FF FF FF mov ecx,dword ptr [edx-0DCh] 00415095: 33 C8 xor ecx,eax 00415097: E8 8C BF FF FF call @ILT+35(@__security_check_cookie@4) 0041509C: B8 5C 8B 41 00 mov eax,418B5Ch 004150A1: E9 44 C1 FF FF jmp @ILT+485(___CxxFrameHandler3) 004150A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004150B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004150C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004150D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004150E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004150F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415106: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415116: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415126: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415136: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415146: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415156: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415166: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415176: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415186: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415196: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004151A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004151B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004151C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004151D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004151E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004151F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415206: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415216: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415226: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415236: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415246: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415256: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415266: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415276: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415286: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415296: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004152A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004152B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004152C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004152D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004152E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004152F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415306: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415316: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415326: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415336: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415346: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415356: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415366: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415376: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415386: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415396: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004153A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004153B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004153C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004153D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004153E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004153F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415406: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415416: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415426: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415436: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415446: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415456: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415466: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415476: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415486: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415496: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004154A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004154B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004154C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004154D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004154E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004154F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415506: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415516: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415526: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415536: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415546: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415556: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415566: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415576: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415586: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415596: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004155A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004155B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004155C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004155D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004155E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004155F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415606: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415616: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415626: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415636: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415646: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415656: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415666: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415676: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415686: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415696: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004156A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004156B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004156C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004156D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004156E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004156F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415706: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415716: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415726: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415736: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415746: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415756: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415766: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415776: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415786: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415796: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004157A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004157B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004157C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004157D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004157E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004157F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415806: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415816: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415826: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415836: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415846: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415856: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415866: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415876: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415886: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415896: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004158A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004158B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004158C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004158D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004158E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004158F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415906: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415916: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415926: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415936: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415946: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415956: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415966: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415976: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415986: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415996: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004159A6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004159B6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004159C6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004159D6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004159E6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004159F6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A06: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A16: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A26: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A36: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A46: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A56: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A66: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A76: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A86: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415A96: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415AA6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415AB6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415AC6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415AD6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415AE6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415AF6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B06: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B16: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B26: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B36: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B46: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B56: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B66: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B76: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B86: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415B96: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415BA6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415BB6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415BC6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415BD6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415BE6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415BF6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C06: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C16: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C26: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C36: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C46: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C56: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C66: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C76: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C86: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415C96: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415CA6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415CB6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415CC6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415CD6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415CE6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415CF6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D06: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D16: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D26: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D36: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D46: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D56: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D66: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D76: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D86: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415D96: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415DA6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415DB6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415DC6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415DD6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415DE6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415DF6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E06: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E16: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E26: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E36: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E46: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E56: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E66: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E76: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E86: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415E96: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415EA6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415EB6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415EC6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415ED6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415EE6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415EF6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F06: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F16: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F26: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F36: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F46: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F56: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F66: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F76: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F86: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415F96: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415FA6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415FB6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415FC6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415FD6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415FE6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00415FF6: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416006: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416016: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416026: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416036: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416046: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416056: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416066: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416076: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416086: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 00416096: CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ???????????????? 004160A6: CC CC CC CC CC CC CC CC CC CC CC 00 00 00 00 00 ???????????..... Summary 6000 .text