Architecture |
IMAGE_FILE_MACHINE_I386
|
---|---|
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
Compilation Date | 2017-Dec-20 10:18:54 |
Detected languages |
English - United States
|
CompanyName | fiki IT |
FileDescription | Collect and FTP McAfee Logs |
FileVersion | 3.2.0.50 |
InternalName | HentMcLogs |
LegalCopyright | Finn Kisling-Møller 2016 - 2017 |
ProductVersion | 3.2 |
ProgramID | com.embarcadero.CollectMcLogFiles |
ProductName | CollectMcLogFiles |
Info | Cryptographic algorithms detected in the binary: |
Uses constants related to CRC32
Uses constants related to MD5 |
Suspicious | The PE is possibly packed. |
Unusual section name found: .itext
Unusual section name found: .didata |
Malicious | The PE contains functions mostly used by malware. |
[!] The program may be hiding some of its imports:
|
Info | The PE's resources present abnormal characteristics. |
Resource WINDOWS is possibly compressed or encrypted.
The binary may have been compiled on a machine in the UTC+1 timezone. |
Malicious | The program tries to mislead users about its origins. | The PE pretends to be from McAfee but is not signed! |
Suspicious | VirusTotal score: 1/64 (Scanned on 2018-03-23 05:32:00) | Baidu: Win32.Trojan.WisdomEyes.16070401.9500.9814 |
e_magic | MZ |
---|---|
e_cblp | 0x50 |
e_cp | 0x2 |
e_crlc | 0 |
e_cparhdr | 0x4 |
e_minalloc | 0xf |
e_maxalloc | 0xffff |
e_ss | 0 |
e_sp | 0xb8 |
e_csum | 0 |
e_ip | 0 |
e_cs | 0 |
e_ovno | 0x1a |
e_oemid | 0 |
e_oeminfo | 0 |
e_lfanew | 0x100 |
Signature | PE |
---|---|
Machine |
IMAGE_FILE_MACHINE_I386
|
NumberofSections | 11 |
TimeDateStamp | 2017-Dec-20 10:18:54 |
PointerToSymbolTable | 0 |
NumberOfSymbols | 0 |
SizeOfOptionalHeader | 0xe0 |
Characteristics |
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
|
Magic | PE32 |
---|---|
LinkerVersion | 2.0 |
SizeOfCode | 0x2f8c00 |
SizeOfInitializedData | 0x8b800 |
SizeOfUninitializedData | 0 |
AddressOfEntryPoint | 0x002FA4A8 (Section: .itext) |
BaseOfCode | 0x1000 |
BaseOfData | 0x2fb000 |
ImageBase | 0x400000 |
SectionAlignment | 0x1000 |
FileAlignment | 0x200 |
OperatingSystemVersion | 5.0 |
ImageVersion | 0.0 |
SubsystemVersion | 5.0 |
Win32VersionValue | 0 |
SizeOfImage | 0x3a5000 |
SizeOfHeaders | 0x400 |
Checksum | 0 |
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
SizeofStackReserve | 0x100000 |
SizeofStackCommit | 0x4000 |
SizeofHeapReserve | 0x100000 |
SizeofHeapCommit | 0x1000 |
LoaderFlags | 0 |
NumberOfRvaAndSizes | 16 |
oleaut32.dll |
SysFreeString
SysReAllocStringLen SysAllocStringLen |
---|---|
advapi32.dll |
RegQueryValueExW
RegOpenKeyExW RegCloseKey |
user32.dll |
CharNextW
LoadStringW |
kernel32.dll |
Sleep
VirtualFree VirtualAlloc lstrlenW VirtualQuery QueryPerformanceCounter GetTickCount GetSystemInfo GetVersion CompareStringW IsDBCSLeadByteEx IsValidLocale SetThreadLocale GetSystemDefaultUILanguage GetUserDefaultUILanguage GetLocaleInfoW WideCharToMultiByte MultiByteToWideChar GetConsoleOutputCP GetConsoleCP GetACP LoadLibraryExW GetStartupInfoW GetProcAddress GetModuleHandleW GetModuleFileNameW GetCommandLineW FreeLibrary GetLastError UnhandledExceptionFilter RtlUnwind RaiseException ExitProcess ExitThread SwitchToThread GetCurrentThreadId CreateThread DeleteCriticalSection LeaveCriticalSection EnterCriticalSection InitializeCriticalSection FindFirstFileW FindClose SetCurrentDirectoryW GetCurrentDirectoryW CreateDirectoryW WriteFile SetFilePointer SetEndOfFile ReadFile GetFileType GetFileSize CreateFileW GetStdHandle CloseHandle |
kernel32.dll (#2) |
Sleep
VirtualFree VirtualAlloc lstrlenW VirtualQuery QueryPerformanceCounter GetTickCount GetSystemInfo GetVersion CompareStringW IsDBCSLeadByteEx IsValidLocale SetThreadLocale GetSystemDefaultUILanguage GetUserDefaultUILanguage GetLocaleInfoW WideCharToMultiByte MultiByteToWideChar GetConsoleOutputCP GetConsoleCP GetACP LoadLibraryExW GetStartupInfoW GetProcAddress GetModuleHandleW GetModuleFileNameW GetCommandLineW FreeLibrary GetLastError UnhandledExceptionFilter RtlUnwind RaiseException ExitProcess ExitThread SwitchToThread GetCurrentThreadId CreateThread DeleteCriticalSection LeaveCriticalSection EnterCriticalSection InitializeCriticalSection FindFirstFileW FindClose SetCurrentDirectoryW GetCurrentDirectoryW CreateDirectoryW WriteFile SetFilePointer SetEndOfFile ReadFile GetFileType GetFileSize CreateFileW GetStdHandle CloseHandle |
user32.dll (#2) |
CharNextW
LoadStringW |
gdi32.dll |
UnrealizeObject
StretchDIBits StretchBlt StartPage StartDocW SetWorldTransform SetWindowOrgEx SetWinMetaFileBits SetViewportOrgEx SetTextColor SetStretchBltMode SetRectRgn SetROP2 SetPixel SetGraphicsMode SetEnhMetaFileBits SetDIBits SetDIBColorTable SetBrushOrgEx SetBkMode SetBkColor SetAbortProc SelectPalette SelectObject SaveDC RoundRect RestoreDC ResizePalette Rectangle RectVisible RealizePalette Polyline Polygon PolyBezierTo PolyBezier PlayEnhMetaFile Pie PatBlt MoveToEx MaskBlt LineTo IntersectClipRect GetWindowOrgEx GetWinMetaFileBits GetViewportOrgEx GetTextMetricsW GetTextExtentPointW GetTextExtentPoint32W GetTextColor GetSystemPaletteEntries GetStretchBltMode GetStockObject GetRgnBox GetPixel GetPaletteEntries GetObjectW GetNearestPaletteIndex GetEnhMetaFilePaletteEntries GetEnhMetaFileHeader GetEnhMetaFileDescriptionW GetEnhMetaFileBits GetDeviceCaps GetDIBits GetDIBColorTable GetCurrentPositionEx GetCurrentObject GetClipBox GetBrushOrgEx GetBkMode GetBitmapBits GdiFlush FrameRgn ExtTextOutW ExtFloodFill ExtCreateRegion ExcludeClipRect EnumFontsW EnumFontFamiliesExW EndPage EndDoc Ellipse DeleteObject DeleteEnhMetaFile DeleteDC CreateSolidBrush CreateRoundRectRgn CreateRectRgn CreatePenIndirect CreatePalette CreateICW CreateHalftonePalette CreateFontIndirectW CreateDIBitmap CreateDIBSection CreateDCW CreateCompatibleDC CreateCompatibleBitmap CreateBrushIndirect CreateBitmap CopyEnhMetaFileW CombineRgn Chord BitBlt ArcTo Arc AngleArc AbortDoc |
version.dll |
VerQueryValueW
GetFileVersionInfoSizeW GetFileVersionInfoW |
kernel32.dll (#3) |
Sleep
VirtualFree VirtualAlloc lstrlenW VirtualQuery QueryPerformanceCounter GetTickCount GetSystemInfo GetVersion CompareStringW IsDBCSLeadByteEx IsValidLocale SetThreadLocale GetSystemDefaultUILanguage GetUserDefaultUILanguage GetLocaleInfoW WideCharToMultiByte MultiByteToWideChar GetConsoleOutputCP GetConsoleCP GetACP LoadLibraryExW GetStartupInfoW GetProcAddress GetModuleHandleW GetModuleFileNameW GetCommandLineW FreeLibrary GetLastError UnhandledExceptionFilter RtlUnwind RaiseException ExitProcess ExitThread SwitchToThread GetCurrentThreadId CreateThread DeleteCriticalSection LeaveCriticalSection EnterCriticalSection InitializeCriticalSection FindFirstFileW FindClose SetCurrentDirectoryW GetCurrentDirectoryW CreateDirectoryW WriteFile SetFilePointer SetEndOfFile ReadFile GetFileType GetFileSize CreateFileW GetStdHandle CloseHandle |
advapi32.dll (#2) |
RegQueryValueExW
RegOpenKeyExW RegCloseKey |
kernel32.dll (#4) |
Sleep
VirtualFree VirtualAlloc lstrlenW VirtualQuery QueryPerformanceCounter GetTickCount GetSystemInfo GetVersion CompareStringW IsDBCSLeadByteEx IsValidLocale SetThreadLocale GetSystemDefaultUILanguage GetUserDefaultUILanguage GetLocaleInfoW WideCharToMultiByte MultiByteToWideChar GetConsoleOutputCP GetConsoleCP GetACP LoadLibraryExW GetStartupInfoW GetProcAddress GetModuleHandleW GetModuleFileNameW GetCommandLineW FreeLibrary GetLastError UnhandledExceptionFilter RtlUnwind RaiseException ExitProcess ExitThread SwitchToThread GetCurrentThreadId CreateThread DeleteCriticalSection LeaveCriticalSection EnterCriticalSection InitializeCriticalSection FindFirstFileW FindClose SetCurrentDirectoryW GetCurrentDirectoryW CreateDirectoryW WriteFile SetFilePointer SetEndOfFile ReadFile GetFileType GetFileSize CreateFileW GetStdHandle CloseHandle |
netapi32.dll |
NetApiBufferFree
NetWkstaGetInfo |
oleaut32.dll (#2) |
SysFreeString
SysReAllocStringLen SysAllocStringLen |
oleaut32.dll (#3) |
SysFreeString
SysReAllocStringLen SysAllocStringLen |
ole32.dll |
OleUninitialize
OleInitialize CoTaskMemFree CoTaskMemAlloc CoCreateInstance CoUninitialize CoInitialize IsEqualGUID |
comctl32.dll |
InitializeFlatSB
FlatSB_SetScrollProp FlatSB_SetScrollPos FlatSB_SetScrollInfo FlatSB_GetScrollPos FlatSB_GetScrollInfo _TrackMouseEvent ImageList_GetImageInfo ImageList_SetIconSize ImageList_GetIconSize ImageList_Write ImageList_Read ImageList_GetDragImage ImageList_DragShowNolock ImageList_DragMove ImageList_DragLeave ImageList_DragEnter ImageList_EndDrag ImageList_BeginDrag ImageList_Copy ImageList_LoadImageW ImageList_GetIcon ImageList_Remove ImageList_DrawEx ImageList_Replace ImageList_Draw ImageList_SetOverlayImage ImageList_GetBkColor ImageList_SetBkColor ImageList_ReplaceIcon ImageList_Add ImageList_SetImageCount ImageList_GetImageCount ImageList_Destroy ImageList_Create |
user32.dll (#3) |
CharNextW
LoadStringW |
msvcrt.dll |
memset
memcpy |
shell32.dll |
Shell_NotifyIconW
|
winspool.drv |
OpenPrinterW
EnumPrintersW DocumentPropertiesW ClosePrinter |
winspool.drv (#2) |
OpenPrinterW
EnumPrintersW DocumentPropertiesW ClosePrinter |
kernel32.dll (delay-loaded) |
Sleep
VirtualFree VirtualAlloc lstrlenW VirtualQuery QueryPerformanceCounter GetTickCount GetSystemInfo GetVersion CompareStringW IsDBCSLeadByteEx IsValidLocale SetThreadLocale GetSystemDefaultUILanguage GetUserDefaultUILanguage GetLocaleInfoW WideCharToMultiByte MultiByteToWideChar GetConsoleOutputCP GetConsoleCP GetACP LoadLibraryExW GetStartupInfoW GetProcAddress GetModuleHandleW GetModuleFileNameW GetCommandLineW FreeLibrary GetLastError UnhandledExceptionFilter RtlUnwind RaiseException ExitProcess ExitThread SwitchToThread GetCurrentThreadId CreateThread DeleteCriticalSection LeaveCriticalSection EnterCriticalSection InitializeCriticalSection FindFirstFileW FindClose SetCurrentDirectoryW GetCurrentDirectoryW CreateDirectoryW WriteFile SetFilePointer SetEndOfFile ReadFile GetFileType GetFileSize CreateFileW GetStdHandle CloseHandle |
Attributes | 0x1 |
---|---|
Name | kernel32.dll |
ModuleHandle | 0x3291c0 |
DelayImportAddressTable | 0x3291f8 |
DelayImportNameTable | 0x329300 |
BoundDelayImportTable | 0x329408 |
UnloadDelayImportTable | 0x3294dc |
TimeStamp | 1970-Jan-01 00:00:00 |
Ordinal | 1 |
---|---|
Address | 0x30d630 |
Ordinal | 2 |
---|---|
Address | 0x111c0 |
Ordinal | 3 |
---|---|
Address | 0x65958 |
File name too long |
Symbolic link path too long |
Unsupported Operation |
Unhandled Entity |
TabSlidingWindowStream.Write: Not at end of stream |
TabSlidingWindowStream.bsWriteChunk: seek failed |
TabSlidingWindowStream.bsWriteChunk: write failed |
TabSlidingWindowStream.Seek: invalid origin |
TabSlidingWindowStream.Seek: invalid new position |
added |
deleted |
extracted |
freshened |
moved |
replaced |
logging |
Invalid Gzip |
Bad CRC |
Bad File Size |
Invalid Tar |
FCI cannot flush folder |
FDI cannot enumerate files |
FDI cannot create context |
Invalid cab file template |
Invalid file - not a cabinet file |
VMS: request to read too many bytes [%d] |
VMS: invalid origin %d, should be 0, 1, 2 |
VMS: Cannot open swap file %s |
VMS: Failed to seek in swap file %s |
VMS: Failed to read %d bytes from swap file %s |
VMS: Failed to write %d bytes to swap file %s |
VMS: request to write too many bytes [%d] |
BBS: request to read too many bytes [%d] |
BBS: New position is outside the buffer |
BBS: Invalid Origin value |
BBS: request to write too many bytes [%d] |
Error reading archive |
Invalid archive item index |
Invalid archive size threshold |
Unhandled Archive Type |
Spanning not supported by this Archive type |
Error creating Log File |
Cannot load cabinet.dll |
FCI cannot open file |
FCI cannot read file |
FCI cannot write file |
FCI close file error |
FCI file seek error |
FCI file delete error |
FCI cannot add file |
FCI cannot create context |
FCI cannot flush cabinet |
Insert floppy |
Spanned archives must be opened as file streams |
Insert disk number %d of the spanned disk set |
Cannot update an existing spanned disk set |
Cannot make a self-extracting spanned disk set |
Insert a blank floppy disk |
Stream write error |
Directory does not exist |
Cannot inflate block |
Invalid Stream |
Error truncating Zip File |
Failed CRC Check |
Stub must be an executable |
File not found |
Invalid Local File Header entry |
Archive does not exist - Filename is blank |
Setting bit transparency color is not allowed for png images containing alpha value for each pixel (COLOR_RGBALPHA and COLOR_GRAYSCALEALPHA) |
This operation is not valid because the current image contains no valid header. |
The new size provided for image resizing is invalid. |
The "Portable Network Graphics" could not be created because invalid image type parameters have being provided. |
Invalid file - not a PKZip file |
Cannot extract file - newer version required |
Cannot extract file - unsupported compression method |
Cannot extract file - no extraction support provided |
Cannot extract file - invalid password |
Cannot insert file - no insertion support provided |
Invalid Reduce Factor |
Cannot insert file - duplicates stored name |
Cannot insert file - unsupported compression method |
Process aborted by user |
Archive is busy - cannot process new requests |
Insert the last disk in the spanned disk set |
Could not decompress the image because it contains invalid compressed data. |
Description: |
The "Portable Network Graphics" image contains an invalid palette. |
The file being read is not a valid "Portable Network Graphics" image because it contains an invalid header. This file may be corrupted, try obtaining it again |
This "Portable Network Graphics" image is not supported or it might be invalid. |
(IHDR chunk is not the first) |
This "Portable Network Graphics" image is not supported because either its width or height exceeds the maximum size of 65535 pixels. |
There is no such palette entry. |
This "Portable Network Graphics" image contains an unknown critical part which could not be decoded. |
This "Portable Network Graphics" image is encoded with an unknown compression scheme which could not be decoded. |
This "Portable Network Graphics" image uses an unknown interlace scheme which could not be decoded. |
The chunks must be compatible to be assigned. |
This "Portable Network Graphics" image is invalid because the decoder found an unexpected end of the file. |
This "Portable Network Graphics" image contains no data. |
The program tried to add a existent critical chunk to the current image which is not allowed. |
It's not allowed to add a new chunk because the current image is invalid. |
The png image could not be loaded from the resource ID. |
Some operation could not be performed because the system is out of resources. Close some windows and try again. |
No FTP list parsers have been registered. |
No Compressor is assigned. |
Compressor is not ready. |
Unsupported transfer mode. |
Unsupported transfer type. |
Destination file already exists. |
The destination filename can not be empty |
SSL IOHandler is required for this setting |
This value can not be set while the client is connected. |
SSL is not available on this server. |
Start SSL negotiation command failed. |
SSL negotiation failed. |
Unknown OTP method |
This "Portable Network Graphics" image is not valid because it contains invalid pieces of data (crc error) |
The "Portable Network Graphics" image could not be loaded because one of its main piece of data (ihdr) might be corrupted |
This "Portable Network Graphics" image is invalid because it has missing image parts. |
Transfer aborted |
OnCustomFTPProxy required but not assigned |
UseExtensionDataPort must be true for IPv6 connections. |
UseExtensionDataPort must be true for NAT fasttracking. |
Can not use active transfers with NAT fastracking. |
Server sent invalid port number (%s) |
No Site to Site transfers are permitted with a FTP NAT fastracked connection. |
Can't use dataprotection on site to site transfer. |
Transport protocols must be the same. |
SSCN is not supported on both servers. |
Can not set DataPortProtection after CCC issued. |
Can not set DataPortProtection with unencrypted connections. |
Can not set CCC without encyption. |
Can not set AUTH without SSL. |
Can not set AUTH while connected. |
Transfer modes must be the same. |
Maximum number of line allowed exceeded |
The IOHandler already has a different Intercept assigned |
Transparent proxy cannot bind. |
UDP Not supported by this proxy. |
Buffer terminator must be specified. |
Buffer start position is invalid. |
Cannot change a connected IOHandler. |
No IOHandler of type %s is installed. |
Reply Code is not valid: %s |
Reply Code already exists: %s |
Cannot use a non-socket IOHandler |
Algorithm %s not permitted in FIPS mode |
Unknown |
Connection established |
Starting FTP transfer |
Transfer complete |
%s: Circular links are not allowed |
Not enough data in buffer. (%d/%d) |
Too much data in buffer. |
File "%s" not found |
Not Connected |
Object type not supported. |
No data to read. |
Read timed out. |
Max line read attempts exceeded. |
Accept timed out. |
Max line length exceeded. |
Set LargeStream to True to send streams greater than 2GB |
Data is too large for stream |
Connect timed out. |
Cannot call TerminateAndWaitFor on FreeAndTerminate threads |
Already connected. |
UDP is not support in this SOCKS version. |
Request rejected or failed. |
Request rejected because SOCKS server cannot connect. |
Request rejected because the client program and identd report different user-ids. |
Unknown socks error. |
Socks server did not respond. |
Invalid socks authentication method. |
Authentication error to socks server. |
General SOCKS server failure. |
Connection not allowed by ruleset. |
Network unreachable. |
Host unreachable. |
Connection refused. |
TTL expired. |
Command not supported. |
Address type not supported. |
Directory not empty |
Host not found. |
Stack Class is undefined. |
Stack already created. |
Only one TIdAntiFreeze can exist per application. |
Cannot change IPVersion when connected |
Can not bind in port range (%d - %d) |
Connection Closed Gracefully. |
Could not bind socket. Address and port are already in use. |
Invalid Port Range (%d - %d) |
%s is not a valid service. |
%s is not a valid IPv6 address |
The requested IPVersion / Address family is not supported. |
Not all bytes sent. |
Package Size Too Big. |
Set Size Exceeded. |
Network is down. |
Network is unreachable. |
Net dropped connection or reset. |
Software caused connection abort. |
Connection reset by peer. |
No buffer space available. |
Socket is already connected. |
Socket is not connected. |
Cannot send or receive after socket is closed. |
Too many references, cannot splice. |
Connection timed out. |
Connection refused. |
Too many levels of symbolic links. |
File name too long. |
Host is down. |
No route to host. |
Too many open files. |
Operation would block. |
Operation now in progress. |
Operation already in progress. |
Socket operation on non-socket. |
Destination address required. |
Message too long. |
Protocol wrong type for socket. |
Bad protocol option. |
Protocol not supported. |
Socket type not supported. |
Operation not supported on socket. |
Protocol family not supported. |
Address family not supported by protocol family. |
Address already in use. |
Cannot assign requested address. |
Invalid codepage (%d) |
Failed attempting to retrieve time zone information. |
Error on call to Winsock2 library function %s |
Error on loading Winsock2 library (%s) |
Resolving hostname %s. |
Connecting to %s. |
Connected. |
Disconnecting. |
Disconnected. |
%s |
Socket Error # %d |
%s |
Interrupted system call. |
Bad file number. |
Access denied. |
Buffer fault. |
Invalid argument. |
%s parameter cannot be nil |
A StyleHook class has not been registered for %s |
Feature not supported by this style |
Style '%s' is not registered |
Cannot unregister the system style |
Style not registered |
Cannot call BeginInvoke on a control with no parent or window handle |
OLE error %.8x |
Method '%s' not supported by automation object |
Variant does not reference an automation object |
Dispatch methods do not support more than 64 parameters |
Invalid source array |
Invalid destination array |
Character index out of bounds (%d) |
Invalid count (%d) |
Invalid destination index (%d) |
Cannot remove shell notification icon |
%s requires Windows Vista or later |
Button%d |
RadioButton%d |
Caption cannot be empty |
Unable to load style '%s' |
Unable to load styles: %s |
Style '%s' already registered |
Style class '%s' already registered |
Style '%s' not found |
Style class '%s' not found |
Invalid style handle |
Invalid style format |
VCL Style File |
Class '%s' is already registered for '%s' |
Class '%s' is not registered for '%s' |
Cannot open clipboard: %s |
Text exceeds memo capacity |
Operation not supported on selected printer |
There is no default printer currently selected |
Menu '%s' is already being used by another form |
Docked control must have a name |
Error removing control from dock tree |
- Dock zone not found |
- Dock zone has no control |
Error loading dock zone from the stream. Expecting version %d, but found %d. |
Length of value array must be >= length of prompt array |
Prompt array must not be empty |
&Username |
&Password |
&Domain |
Login |
PgUp |
PgDn |
End |
Home |
Left |
Up |
Right |
Down |
Ins |
Del |
Shift+ |
Ctrl+ |
Alt+ |
Value must be between %d and %d |
All |
Clipboard does not support Icons |
&No |
OK |
Cancel |
&Help |
&Abort |
&Retry |
&Ignore |
&All |
N&o to All |
Yes to &All |
&Close |
BkSp |
Tab |
Esc |
Enter |
Space |
Can only modify an image if it contains a bitmap |
A control cannot have itself as its parent |
Cannot drag a form |
Metafiles |
Enhanced Metafiles |
Icons |
Bitmaps |
TIFF Images |
JPEG Images |
PNG Images |
GIF Images |
Warning |
Error |
Information |
Confirm |
&Yes |
Cannot hide an MDI Child Form |
Cannot change Visible in OnShow or OnHide |
Cannot make a visible window modal |
Scrollbar property out of range |
%s property out of range |
Menu index out of range |
Menu inserted twice |
Sub-menu is not in menu |
Not enough timers available |
Printer is not currently printing |
Printing in progress |
Printer index out of range |
Printer selected is not valid |
%s on %s |
GroupIndex cannot be less than a previous menu item's GroupIndex |
Cannot create form. No MDI forms are currently active |
Unsupported stream format |
Out of system resources |
Canvas does not allow drawing |
Text format flag '%s' not supported |
Invalid image size |
Invalid ImageList |
Unable to Replace Image |
Unable to Insert Image |
Invalid ImageList Index |
Failed to read ImageList data from stream |
Failed to write ImageList data to stream |
Error creating window device context |
Error creating window class |
Cannot focus a disabled or invisible window |
Control '%s' has no parent window |
Parent given is not a parent of '%s' |
Observer is not available |
Invalid date string: %s |
Invalid time string: %s |
Invalid time Offset string: %s |
Must wait on at least one event |
Cannot call BeginInvoke on a TComponent in the process of destruction |
Bitmap image is not valid |
Icon image is not valid |
Metafile is not valid |
Invalid pixel format |
Invalid image |
Scan line index out of range |
Cannot change the size of an icon |
Cannot change the size of a WIC Image |
Unknown picture file extension (.%s) |
Unsupported clipboard format |
Windows Server 2008 R2 |
Windows 2000 |
Windows XP |
Windows Server 2003 |
Windows Server 2003 R2 |
Windows Server 2012 |
Windows Server 2012 R2 |
Windows Server 2016 |
Windows 8 |
Windows 8.1 |
Windows 10 |
Observer is not supported |
Cannot have multiple single cast observers added to the observers collection |
The object does not implement the observer interface |
No single cast observer with ID %d was added to the observer collection |
No multi cast observer with ID %d was added to the observer collection |
Argument must not be nil |
Item not found |
Duplicates not allowed |
Insufficient RTTI available to support this operation |
Parameter count mismatch |
Type '%s' is not declared in the interface section of a unit |
VAR and OUT arguments must match parameter type exactly |
Specified Login Credential Service not found |
%s (Version %d.%d, Build %d, %5:s) |
%s Service Pack %4:d (Version %1:d.%2:d, Build %3:d, %5:s) |
32-bit Edition |
64-bit Edition |
Windows |
Windows Vista |
Windows Server 2008 |
Windows 7 |
Invalid Timeout value: %s |
SpinCount out of range. Must be between 0 and %d |
Timespan too long |
The duration cannot be returned because the absolute value exceeds the value of TTimeSpan.MaxValue |
Value cannot be NaN |
Negating the minimum value of a Timespan is invalid |
Invalid Timespan format |
Timespan element too long |
No context-sensitive help installed |
No help found for context %d |
Unable to open Index |
Unable to open Search |
Unable to find a Table of Contents |
No topic-based help system installed |
No help found for %s |
Argument out of range |
Input buffer exceeded for %s = %d, %s = %d |
Invalid characters in path |
Invalid characters in search pattern |
The specified path is too long |
The specified path was not found |
The path format is not supported |
The drive cannot be found |
The specified file was not found |
No help viewer that supports filters |
Index out of range (%d). Must be >= 0 and < %d |
String index out of range (%d). Must be >= %d and <= %d |
Invalid UTF32 character value. Must be >= 0 and <= $10FFFF, excluding surrogate pair ranges |
High surrogate char without a following low surrogate char at index: %d. Check that the string is encoded properly |
Low surrogate char without a preceding high surrogate char at index: %d. Check that the string is encoded properly |
Length of Strings and Objects arrays must be equal |
Class %s is not intended to be constructed |
%s.Seek not implemented |
Operation not allowed on sorted list |
String expected |
%s expected |
%s not in a class registration group |
Property %s does not exist |
Stream write error |
Thread creation error: %s |
Thread Error: %s (%d) |
Cannot terminate an externally created thread |
Cannot wait for an externally created thread |
Cannot call Start on a running or suspended thread |
Cannot call CheckTerminated on an externally created thread |
Cannot call SetReturnValue on an externally create thread |
Parameter %s cannot be nil |
Parameter %s cannot be a negative value |
Line too long |
List capacity out of bounds (%d) |
List count out of bounds (%d) |
List index out of bounds (%d) |
Out of memory while expanding memory stream |
%s has not been registered as a COM class |
Number expected |
ANSI or UTF8 encoding expected |
%s on line %d |
Error reading %s%s%s: %s |
Stream read error |
Property is read-only |
Failed to create key %s |
Failed to get data for '%s' |
Failed to set data for '%s' |
Resource %s not found |
A component named %s already exists |
String list does not allow duplicates |
Cannot create file "%s". %s |
Cannot open file "%s". %s |
Identifier expected |
Unable to write to %s |
Invalid binary value |
Invalid file name - %s |
Invalid stream format |
'%s' is an invalid mask at (%d) |
''%s'' is not a valid component name |
Invalid property value |
Invalid property path |
Invalid property value |
Invalid data type for '%s' |
Invalid string constant |
Start index out of bounds (%d) |
Invalid count (%d) |
Invalid destination index (%d) |
Invalid code page |
Invalid encoding name |
No mapping for the Unicode character exists in the target multi-byte code page |
Invalid StringBaseIndex |
Ancestor for '%s' not found |
Cannot assign a %s to a %s |
Bits index out of range |
Can't write to a read-only resource stream |
''%s'' expected |
CheckSynchronize called from thread $%x, which is NOT the main thread |
Class %s not found |
A class named %s already exists |
List does not allow duplicates ($0%x) |
Mon |
Tue |
Wed |
Thu |
Fri |
Sat |
Sunday |
Monday |
Tuesday |
Wednesday |
Thursday |
Friday |
Saturday |
Invalid source array |
Invalid destination array |
Character index out of bounds (%d) |
Oct |
Nov |
Dec |
January |
February |
March |
April |
May |
June |
July |
August |
September |
October |
November |
December |
Sun |
Feature not implemented |
Method called on disposed object |
%s (%s, line %d) |
Abstract Error |
Access violation at address %p in module '%s'. %s of address %p |
System Error. Code: %d. |
%s%s |
A call to an OS function failed |
Jan |
Feb |
Mar |
Apr |
May |
Jun |
Jul |
Aug |
Sep |
Custom variant type (%s%.4x) already used by %s |
Custom variant type (%s%.4x) is not usable |
Too many custom variant types have been registered |
Could not convert variant of type (%s) into type (%s) |
Overflow while converting variant of type (%s) into type (%s) |
Variant overflow |
Invalid argument |
Invalid variant type |
Operation not supported |
Unexpected variant error |
External exception %x |
Assertion failed |
Interface not supported |
Exception in safecall method |
Object lock not owned |
Monitor support function not initialized |
Application Error |
Format '%s' invalid or incompatible with argument |
No argument for format '%s' |
Variant method calls not supported |
Read |
Write |
Execution |
Invalid access |
Error creating variant or safe array |
Variant or safe array index out of bounds |
Variant or safe array is locked |
Invalid variant type conversion |
Invalid variant operation |
Invalid NULL variant operation |
Invalid variant operation (%s%.8x) |
%s |
Custom variant type (%s%.4x) is out of range |
Invalid numeric input |
Division by zero |
Range check error |
Integer overflow |
Invalid floating point operation |
Floating point division by zero |
Floating point overflow |
Floating point underflow |
Invalid pointer operation |
Invalid class typecast |
Access violation at address %p. %s of address %p |
Access violation |
Stack overflow |
Control-C hit |
Privileged instruction |
Exception %s in module %s at %p. |
%s%s |
<unknown> |
'%s' is not a valid integer value |
'%s' is not a valid floating point value |
'%s' is not a valid date |
'%s' is not a valid time |
'%s' is not a valid date and time |
'%d.%d' is not a valid timestamp |
'%s' is not a valid GUID value |
Invalid argument to time encode |
Invalid argument to date encode |
Out of memory |
I/O error %d |
Too many open files |
File access denied |
Read beyond end of file |
Disk full |
Signature | 0xfeef04bd |
---|---|
StructVersion | 0x10000 |
FileVersion | 3.2.0.50 |
ProductVersion | 3.2.0.0 |
FileFlags | (EMPTY) |
FileOs |
VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
|
FileType |
VFT_APP
|
Language | English - United States |
CompanyName | fiki IT |
FileDescription | Collect and FTP McAfee Logs |
FileVersion (#2) | 3.2.0.50 |
InternalName | HentMcLogs |
LegalCopyright | Finn Kisling-Møller 2016 - 2017 |
ProductVersion (#2) | 3.2 |
ProgramID | com.embarcadero.CollectMcLogFiles |
ProductName | CollectMcLogFiles |
Resource LangID | English - United States |
---|
StartAddressOfRawData | 0x72b000 |
---|---|
EndAddressOfRawData | 0x72b054 |
AddressOfIndex | 0x6fbc18 |
AddressOfCallbacks | 0x72c010 |
SizeOfZeroFill | 0 |
Characteristics |
IMAGE_SCN_TYPE_REG
|
Callbacks | (EMPTY) |