BugId OOBR[0x88]+0 7dc.851 @ asdfqwerasdfqwer.exe!2d.x3d+0xA89B summary

BugId:	OOBR[0x88]+0 7dc.851
Location:	asdfqwerasdfqwer.exe!2d.x3d+0xA89B
Description:	Access violation while reading memory at 0x437A5000; at the end of a 136/0x88 bytes heap block at 0x437A4F78. This indicates an Out-Of-Bounds (OOB) access bug was triggered.
Version:	acrobat_rt3d_test01.exe: Mon Jul 23 00:19:34 2018 (5B558186) (x86) 2d.x3d: 18.11.20055.27899 (x86)
Security impact:	Potentially exploitable security issue that might allow information disclosure and (less likely) arbitrary code execution.
Integrity level:	0x2000 (Medium Integrity; this process appears to not be sandboxed!)
Arguments:	['crashes\\_Slave10_crashes_id_000114_00.tif']

BugId version 2017-12-21 14:02. You may not use this version of BugId for commercial purposes. Please contact the author if you wish to use BugId commercially. Contact and licensing information can be found at the bottom of this report.

Stack

2d.x3d + 0xA89B (id: 7dc, no function symbol available)
2d.x3d + 0xA478 (id: 851, no function symbol available)
2d.x3d + 0x2AA3 (no function symbol available)
rt3d.dll + 0x1076DD (no function symbol available)
rt3d.dll + 0xCACC7 (no function symbol available)
rt3d.dll!GetPicture + 0x2E
acrobat_rt3d_test01.exe + 0x118C (no function symbol available)
acrobat_rt3d_test01.exe + 0x152F (no function symbol available)
acrobat_rt3d_test01.exe + 0x1719 (no function symbol available)
KERNEL32.DLL!BaseThreadInitThunk + 0x24
ntdll.dll!__RtlUserThreadStart + 0x2F
ntdll.dll!_RtlUserThreadStart + 0x1B

⇓ click on the title of a section to open or close it.

Registers

eax=437a5000 ebx=00000002 ecx=0000021f edx=fffffffe esi=38ac4fd0 edi=4fb50de0
eip=6f50a89b esp=006ff88c ebp=006ff8ac iopl=0 nv up ei ng nz ac po cy
cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00010293
fpcw=027F: rn 53 puozdi fpsw=4020: top=0 cc=1000 --p----- fptw=FFFF
fopcode=0000 fpip=0000:6f52ec6c fpdp=0000:2bb20db0
st0= 0.000000000000000000000e+0000 st1= 0.000000000000000000000e+0000
st2= 0.000000000000000000000e+0000 st3= 5.300000000000000000000e+0001
st4= 5.000000000000000000000e+0000 st5= 4.800000000000000000000e+0001
st6= 1.000000000000000000000e+0000 st7= 0.000000000000000000000e+0000
mm0=0000000000000000 mm1=0000000000000000
mm2=0000000000000000 mm3=d400000000000000
mm4=a000000000000000 mm5=c000000000000000
mm6=8000000000000000 mm7=0000000000000000
xmm0=0 0 0 0
xmm1=0 0 0 0
xmm2=0 0 0 0
xmm3=0 0 0 0
xmm4=0 0 0 0
xmm5=0 0 0 0
xmm6=0.0213317 4.23622e-037 0.0252379 4.23622e-037
xmm7=0.0213317 4.23622e-037 0.0138976 7.51864e+029
dr0=00000000 dr1=00000000 dr2=00000000
dr3=00000000 dr6=00000000 dr7=00000000
2d!E3DLLFunc+0x89dd:
6f50a89b 8a10 mov dl,byte ptr [eax] ds:002b:437a5000=??

⇓ click on the title of a section to open or close it.

Memory near access violation at 0x437A5000

437a4f58	*bb bb cd ab	╗╗═½	abcdbbbb	// *0=Page heap StartStamp
437a4f5c	*00 10 7c 00	␀►\|␀	007c1000 → ffeeddcc	// *0=Page heap Heap
437a4f60	*88 00 00 00	ê␀␀␀	00000088	// *0=Page heap RequestedSize
437a4f64	*00 10 00 00	␀►␀␀	00001000	// *0=Page heap ActualSize
437a4f68	00 00 00 00	␀␀␀␀	00000000
437a4f6c	00 00 00 00	␀␀␀␀	00000000
437a4f70	*24 d5 48 04	$╒H♦	0448d524 → 0454068c	// *0=Page heap StackTrace
437a4f74	*bb bb ba dc	╗╗║▄	dcbabbbb	// *0=Page heap EndStamp
437a4f78	*e0 50 38 24	αP8$	243850e0	// *0=Heap block start
437a4f7c	09 86 20 00	○å ␀	00208609
437a4f80	bf c2 83 f8	┐┬â°	f883c2bf
437a4f84	1b c0 06 00	←└♠␀	0006c01b
437a4f88	2a bf e1 8f	*┐βÅ	8fe1bf2a
437a4f8c	f7 9b fd f8	≈¢²°	f8fd9bf7
437a4f90	50 00 44 e2	P␀DΓ	e2440050
437a4f94	af c2 89 44	»┬ëD	4489c2af → 00000000
437a4f98	9f 02 8d c7	ƒ☻ì╟	c78d029f
437a4f9c	63 f1 48 10	c±H►	1048f163
437a4fa0	f0 03 23 8a	≡♥#è	8a2303f0
437a4fa4	c0 98 a0 d0	└ÿá╨	d0a098c0
437a4fa8	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fac	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fb0	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fb4	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fb8	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fbc	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fc0	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fc4	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fc8	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fcc	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fd0	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fd4	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fd8	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fdc	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fe0	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fe4	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fe8	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4fec	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4ff0	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4ff4	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4ff8	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a4ffc	d0 d0 d0 d0	╨╨╨╨	d0d0d0d0
437a5000	-- inaccessible --			// 0=Access violation, 0=Heap block end, *0=Allocation end
437a5004	-- inaccessible --
437a5008	-- inaccessible --
437a500c	-- inaccessible --
437a5010	-- inaccessible --
437a5014	-- inaccessible --
437a5018	-- inaccessible --
437a501c	-- inaccessible --
437a5020	-- inaccessible --
437a5024	-- inaccessible --
437a5028	-- inaccessible --
437a502c	-- inaccessible --
437a5030	-- inaccessible --
437a5034	-- inaccessible --
437a5038	-- inaccessible --
437a503c	-- inaccessible --
437a5040	-- inaccessible --
437a5044	-- inaccessible --
437a5048	-- inaccessible --
437a504c	-- inaccessible --
437a5050	-- inaccessible --
437a5054	-- inaccessible --
437a5058	-- inaccessible --
437a505c	-- inaccessible --
437a5060	-- inaccessible --
437a5064	-- inaccessible --
437a5068	-- inaccessible --
437a506c	-- inaccessible --
437a5070	-- inaccessible --
437a5074	-- inaccessible --
437a5078	-- inaccessible --
437a507c	-- inaccessible --
437a5080	-- inaccessible --
437a5084	-- inaccessible --
437a5088	-- inaccessible --
437a508c	-- inaccessible --
437a5090	-- inaccessible --
437a5094	-- inaccessible --
437a5098	-- inaccessible --
437a509c	-- inaccessible --
437a50a0	-- inaccessible --
437a50a4	-- inaccessible --
437a50a8	-- inaccessible --
437a50ac	-- inaccessible --
437a50b0	-- inaccessible --
437a50b4	-- inaccessible --
437a50b8	-- inaccessible --
437a50bc	-- inaccessible --
437a50c0	-- inaccessible --
437a50c4	-- inaccessible --
437a50c8	-- inaccessible --
437a50cc	-- inaccessible --
437a50d0	-- inaccessible --
437a50d4	-- inaccessible --
437a50d8	-- inaccessible --
437a50dc	-- inaccessible --
437a50e0	-- inaccessible --
437a50e4	-- inaccessible --
437a50e8	-- inaccessible --
437a50ec	-- inaccessible --
437a50f0	-- inaccessible --
437a50f4	-- inaccessible --
437a50f8	-- inaccessible --
437a50fc	-- inaccessible --
437a5100	-- inaccessible --
437a5104	-- inaccessible --
437a5108	-- inaccessible --
437a510c	-- inaccessible --
437a5110	-- inaccessible --
437a5114	-- inaccessible --
437a5118	-- inaccessible --
437a511c	-- inaccessible --
437a5120	-- inaccessible --
437a5124	-- inaccessible --
437a5128	-- inaccessible --
437a512c	-- inaccessible --
437a5130	-- inaccessible --
437a5134	-- inaccessible --
437a5138	-- inaccessible --
437a513c	-- inaccessible --
437a5140	-- inaccessible --
437a5144	-- inaccessible --
437a5148	-- inaccessible --
437a514c	-- inaccessible --
437a5150	-- inaccessible --
437a5154	-- inaccessible --
437a5158	-- inaccessible --
437a515c	-- inaccessible --
437a5160	-- inaccessible --
437a5164	-- inaccessible --
437a5168	-- inaccessible --
437a516c	-- inaccessible --
437a5170	-- inaccessible --
437a5174	-- inaccessible --
437a5178	-- inaccessible --
437a517c	-- inaccessible --
437a5180	-- inaccessible --
437a5184	-- inaccessible --
437a5188	-- inaccessible --
437a518c	-- inaccessible --
437a5190	-- inaccessible --
437a5194	-- inaccessible --
437a5198	-- inaccessible --
437a519c	-- inaccessible --
437a51a0	-- inaccessible --
437a51a4	-- inaccessible --
437a51a8	-- inaccessible --
437a51ac	-- inaccessible --
437a51b0	-- inaccessible --
437a51b4	-- inaccessible --
437a51b8	-- inaccessible --
437a51bc	-- inaccessible --
437a51c0	-- inaccessible --
437a51c4	-- inaccessible --
437a51c8	-- inaccessible --
437a51cc	-- inaccessible --
437a51d0	-- inaccessible --
437a51d4	-- inaccessible --
437a51d8	-- inaccessible --
437a51dc	-- inaccessible --
437a51e0	-- inaccessible --
437a51e4	-- inaccessible --
437a51e8	-- inaccessible --
437a51ec	-- inaccessible --
437a51f0	-- inaccessible --
437a51f4	-- inaccessible --
437a51f8	-- inaccessible --
437a51fc	-- inaccessible --
437a5200	-- inaccessible --
437a5204	-- inaccessible --
437a5208	-- inaccessible --
437a520c	-- inaccessible --
437a5210	-- inaccessible --
437a5214	-- inaccessible --

⇓ click on the title of a section to open or close it.

Disassembly of stack frame 1 at 2d.x3d + 0xA89B

6f50a7f2 897df4 mov dword ptr [ebp-0Ch],edi
6f50a7f5 0fb7582c movzx ebx,word ptr [eax+2Ch]
6f50a7f9 b001 mov al,1
6f50a7fb 8bcb mov ecx,ebx
6f50a7fd d2e0 shl al,cl
6f50a7ff fec8 dec al
6f50a801 8845fe mov byte ptr [ebp-2],al
6f50a804 397e18 cmp dword ptr [esi+18h],edi
6f50a807 0f8ec4000000 jle 2d!E3DLLFunc+0x8a13 (6f50a8d1)
6f50a80d 6a00 push 0
6f50a80f 57 push edi
6f50a810 ff7624 push dword ptr [esi+24h]
6f50a813 ff7608 push dword ptr [esi+8]
6f50a816 e81a6e0300 call 2d!png_set_filter_heuristics+0x2dfb4 (6f541635)
6f50a81b 83c410 add esp,10h
6f50a81e 85c0 test eax,eax
6f50a820 0f88b5000000 js 2d!E3DLLFunc+0x8a1d (6f50a8db)
6f50a826 8b461c mov eax,dword ptr [esi+1Ch]
6f50a829 57 push edi
6f50a82a 50 push eax
6f50a82b 8b08 mov ecx,dword ptr [eax]
6f50a82d ff515c call dword ptr [ecx+5Ch]
6f50a830 8945ec mov dword ptr [ebp-14h],eax
6f50a833 83fb04 cmp ebx,4
6f50a836 7420 je 2d!E3DLLFunc+0x899a (6f50a858)
6f50a838 83fb02 cmp ebx,2
6f50a83b 741b je 2d!E3DLLFunc+0x899a (6f50a858)
6f50a83d 83fb01 cmp ebx,1
6f50a840 7416 je 2d!E3DLLFunc+0x899a (6f50a858)
6f50a842 83fb08 cmp ebx,8
6f50a845 756e jne 2d!E3DLLFunc+0x89f7 (6f50a8b5)
6f50a847 ff7614 push dword ptr [esi+14h]
6f50a84a ff7624 push dword ptr [esi+24h]
6f50a84d 50 push eax
6f50a84e e81b870500 call 2d!zlibVersion+0x215e (6f562f6e)
6f50a853 83c40c add esp,0Ch
6f50a856 eb5d jmp 2d!E3DLLFunc+0x89f7 (6f50a8b5)
6f50a858 8365f000 and dword ptr [ebp-10h],0
6f50a85c 83caff or edx,0FFFFFFFFh
6f50a85f 837e1400 cmp dword ptr [esi+14h],0
6f50a863 8b4624 mov eax,dword ptr [esi+24h]
6f50a866 8945f8 mov dword ptr [ebp-8],eax
6f50a869 7e4a jle 2d!E3DLLFunc+0x89f7 (6f50a8b5)
6f50a86b 8b7dec mov edi,dword ptr [ebp-14h]
6f50a86e 85d2 test edx,edx
6f50a870 7910 jns 2d!E3DLLFunc+0x89c4 (6f50a882)
6f50a872 8a08 mov cl,byte ptr [eax]
6f50a874 40 inc eax
6f50a875 6a08 push 8
6f50a877 5a pop edx
6f50a878 884dff mov byte ptr [ebp-1],cl
6f50a87b 2bd3 sub edx,ebx
6f50a87d 8945f8 mov dword ptr [ebp-8],eax
6f50a880 eb03 jmp 2d!E3DLLFunc+0x89c7 (6f50a885)
6f50a882 8a4dff mov cl,byte ptr [ebp-1]
6f50a885 8ac1 mov al,cl
6f50a887 8aca mov cl,dl
6f50a889 d2e8 shr al,cl
6f50a88b 8b4df0 mov ecx,dword ptr [ebp-10h]
6f50a88e 2245fe and al,byte ptr [ebp-2]
6f50a891 2bd3 sub edx,ebx
6f50a893 880439 mov byte ptr [ecx+edi],al
6f50a896 8b45f8 mov eax,dword ptr [ebp-8]
6f50a899 790e jns 2d!E3DLLFunc+0x89eb (6f50a8a9)
2d!E3DLLFunc+0x89dd:
6f50a89b 8a10 mov dl,byte ptr [eax] // current instruction
6f50a89d 40 inc eax
6f50a89e 8855ff mov byte ptr [ebp-1],dl
6f50a8a1 6a08 push 8
6f50a8a3 5a pop edx
6f50a8a4 8945f8 mov dword ptr [ebp-8],eax
6f50a8a7 2bd3 sub edx,ebx
6f50a8a9 41 inc ecx
6f50a8aa 894df0 mov dword ptr [ebp-10h],ecx
6f50a8ad 3b4e14 cmp ecx,dword ptr [esi+14h]
6f50a8b0 7cbc jl 2d!E3DLLFunc+0x89b0 (6f50a86e)
6f50a8b2 8b7df4 mov edi,dword ptr [ebp-0Ch]
6f50a8b5 8b4604 mov eax,dword ptr [esi+4]
6f50a8b8 6a00 push 0
6f50a8ba ff7618 push dword ptr [esi+18h]
6f50a8bd 8b08 mov ecx,dword ptr [eax]
6f50a8bf 57 push edi
6f50a8c0 50 push eax
6f50a8c1 ff510c call dword ptr [ecx+0Ch]
6f50a8c4 47 inc edi
6f50a8c5 897df4 mov dword ptr [ebp-0Ch],edi
6f50a8c8 3b7e18 cmp edi,dword ptr [esi+18h]
6f50a8cb 0f8c3cffffff jl 2d!E3DLLFunc+0x894f (6f50a80d)
6f50a8d1 33c0 xor eax,eax
6f50a8d3 40 inc eax
6f50a8d4 5f pop edi
6f50a8d5 5e pop esi
6f50a8d6 5b pop ebx
6f50a8d7 8be5 mov esp,ebp
6f50a8d9 5d pop ebp
6f50a8da c3 ret
6f50a8db 85ff test edi,edi

⇓ click on the title of a section to open or close it.

Disassembly of stack frame 2 at 2d.x3d + 0xA478

6f50a3d0 eb1f jmp 2d!E3DLLFunc+0x8533 (6f50a3f1)
6f50a3d2 33c0 xor eax,eax
6f50a3d4 6689513b mov word ptr [ecx+3Bh],dx
6f50a3d8 3939 cmp dword ptr [ecx],edi
6f50a3da 6a06 push 6
6f50a3dc 0f94c0 sete al
6f50a3df 66897953 mov word ptr [ecx+53h],di
6f50a3e3 83c003 add eax,3
6f50a3e6 3939 cmp dword ptr [ecx],edi
6f50a3e8 894137 mov dword ptr [ecx+37h],eax
6f50a3eb 58 pop eax
6f50a3ec 0f44c6 cmove eax,esi
6f50a3ef 03d0 add edx,eax
6f50a3f1 8b810f010000 mov eax,dword ptr [ecx+10Fh]
6f50a3f7 894167 mov dword ptr [ecx+67h],eax
6f50a3fa 898197000000 mov dword ptr [ecx+97h],eax
6f50a400 5f pop edi
6f50a401 8d0482 lea eax,[edx+eax*4]
6f50a404 89516b mov dword ptr [ecx+6Bh],edx
6f50a407 89819b000000 mov dword ptr [ecx+9Bh],eax
6f50a40d 5e pop esi
6f50a40e c3 ret
6f50a40f 56 push esi
6f50a410 8bf1 mov esi,ecx
6f50a412 57 push edi
6f50a413 6a04 push 4
6f50a415 59 pop ecx
6f50a416 8b5628 mov edx,dword ptr [esi+28h]
6f50a419 ff7608 push dword ptr [esi+8]
6f50a41c 0fb7423a movzx eax,word ptr [edx+3Ah]
6f50a420 3bc1 cmp eax,ecx
6f50a422 0f4fc1 cmovg eax,ecx
6f50a425 894610 mov dword ptr [esi+10h],eax
6f50a428 8b4210 mov eax,dword ptr [edx+10h]
6f50a42b 894614 mov dword ptr [esi+14h],eax
6f50a42e 8b4214 mov eax,dword ptr [edx+14h]
6f50a431 894618 mov dword ptr [esi+18h],eax
6f50a434 33c0 xor eax,eax
6f50a436 66394a3a cmp word ptr [edx+3Ah],cx
6f50a43a 0f94c0 sete al
6f50a43d 89460c mov dword ptr [esi+0Ch],eax
6f50a440 e8d9740300 call 2d!png_set_filter_heuristics+0x2e29d (6f54191e)
6f50a445 50 push eax
6f50a446 894620 mov dword ptr [esi+20h],eax
6f50a449 e8fb8a0500 call 2d!zlibVersion+0x2139 (6f562f49)
6f50a44e 59 pop ecx
6f50a44f 59 pop ecx
6f50a450 8b4e28 mov ecx,dword ptr [esi+28h]
6f50a453 33ff xor edi,edi
6f50a455 894624 mov dword ptr [esi+24h],eax
6f50a458 47 inc edi
6f50a459 0fb74132 movzx eax,word ptr [ecx+32h]
6f50a45d 85c0 test eax,eax
6f50a45f 783e js 2d!E3DLLFunc+0x85e1 (6f50a49f)
6f50a461 3bc7 cmp eax,edi
6f50a463 7e24 jle 2d!E3DLLFunc+0x85cb (6f50a489)
6f50a465 6a02 push 2
6f50a467 5a pop edx
6f50a468 3bc2 cmp eax,edx
6f50a46a 740e je 2d!E3DLLFunc+0x85bc (6f50a47a)
6f50a46c 83f803 cmp eax,3
6f50a46f 752e jne 2d!E3DLLFunc+0x85e1 (6f50a49f)
6f50a471 8bce mov ecx,esi
6f50a473 e8b8020000 call 2d!E3DLLFunc+0x8872 (6f50a730) // call
2d!E3DLLFunc+0x85ba:
6f50a478 eb2c jmp 2d!E3DLLFunc+0x85e8 (6f50a4a6) // return address
6f50a47a 66395156 cmp word ptr [ecx+56h],dx
6f50a47e 7426 je 2d!E3DLLFunc+0x85e8 (6f50a4a6)
6f50a480 8bce mov ecx,esi
6f50a482 e8f0000000 call 2d!E3DLLFunc+0x86b9 (6f50a577)
6f50a487 eb1d jmp 2d!E3DLLFunc+0x85e8 (6f50a4a6)
6f50a489 6639792c cmp word ptr [ecx+2Ch],di
6f50a48d 8bce mov ecx,esi
6f50a48f 7507 jne 2d!E3DLLFunc+0x85da (6f50a498)
6f50a491 e820070000 call 2d!E3DLLFunc+0x8cf8 (6f50abb6)
6f50a496 eb0e jmp 2d!E3DLLFunc+0x85e8 (6f50a4a6)
6f50a498 e852040000 call 2d!E3DLLFunc+0x8a31 (6f50a8ef)
6f50a49d eb07 jmp 2d!E3DLLFunc+0x85e8 (6f50a4a6)
6f50a49f 8bce mov ecx,esi
6f50a4a1 e805000000 call 2d!E3DLLFunc+0x85ed (6f50a4ab)
6f50a4a6 8bc7 mov eax,edi
6f50a4a8 5f pop edi
6f50a4a9 5e pop esi
6f50a4aa c3 ret
6f50a4ab 55 push ebp
6f50a4ac 8bec mov ebp,esp
6f50a4ae 51 push ecx
6f50a4af 51 push ecx
6f50a4b0 56 push esi
6f50a4b1 6a18 push 18h
6f50a4b3 8bf1 mov esi,ecx
6f50a4b5 e849feffff call 2d!E3DLLFunc+0x8445 (6f50a303)
6f50a4ba 85c0 test eax,eax
6f50a4bc 0f849c000000 je 2d!E3DLLFunc+0x86a0 (6f50a55e)
6f50a4c2 53 push ebx
6f50a4c3 57 push edi
6f50a4c4 68fc5d566f push offset 2d!zlibVersion+0x4fec (6f565dfc)

⇓ click on the title of a section to open or close it.

Binary information

acrobat_rt3d_test01.exe

Loaded symbol image file	R:\winafl\asdfqwerasdfqwer.exe
Image path	acrobat_rt3d_test01.exe
Image name	acrobat_rt3d_test01.exe
Timestamp	Mon Jul 23 00:19:34 2018 (5B558186)
CheckSum	00000000
ImageSize	0001D000
Translations	0000.04b0 0000.04e4 0409.04b0 0409.04e4

2d.x3d

Loaded symbol image file	R:\winafl\plug_ins3d\2d.x3d
Image path	R:\winafl\plug_ins3d\2d.x3d
Image name	2d.x3d
Timestamp	Fri Jun 29 05:52:38 2018 (5B362B96)
CheckSum	000A6C4E
ImageSize	000A7000
File version	18.11.20055.27899
Product version	18.11.20055.27899
File flags	0 (Mask 3F)
File OS	40004 NT Win32
File type	2.0 Dll
File date	00000000.00000000
Translations	0409.04b0
CompanyName	Adobe Systems Incorporated
ProductName	3D Plugin Dynamic Link Library
InternalName	2D
ProductVersion	18.11.20055.290043
FileVersion	18.11.20055.290043
FileDescription	3D Runtime Plugin 18.11

⇓ click on the title of a section to open or close it.

Application and cdb output log

*** wait with pending attach
************* Path validation summary **************
Response Time (ms) Location
Deferred cache*
Deferred srv*http://msdl.microsoft.com/download/symbols
Deferred srv*C:\Symbols*http://msdl.microsoft.com/download/symbols
Symbol search path is: cache*;srv*http://msdl.microsoft.com/download/symbols;srv*C:\Symbols*http://msdl.microsoft.com/download/symbols
Executable search path is:
Page heap: pid 0x129C: page heap enabled with flags 0x2.
Page heap: pid 0x129C: page heap enabled with flags 0x2.
(129c.25b8): Break instruction exception - code 80000003 (first chance)
ADOBE_READLOGGER_CMD:PAUSE_LOG
(129c.25b8): Integer divide-by-zero - code c0000094 (first chance)
(129c.25b8): Access violation - code c0000005 (first chance)
First chance exceptions are reported before any exception handling.
This exception may be expected and handled.
*** ERROR: Symbol file could not be found. Defaulted to export symbols for R:\winafl\plug_ins3d\2d.x3d -

⇓ click on the title of a section to open or close it.