date/time          : 2021-12-02, 15:45:27, 821ms
computer name      : CT1
wts client name    : JMELTZER-LT
user name          : jmeltzer
registered owner   : Windows User
operating system   : Windows 2016 x64 build 14393
system language    : English
system up time     : 274 days 1 hour
program up time    : 2 hours 39 minutes
processors         : 2x Intel(R) Xeon(R) Platinum 8168 CPU @ 2.70GHz
physical memory    : 11173/16383 MB (free/total)
free disk space    : (C:) 120.82 GB
display mode       : 1920x1080, 32 bit
process id         : $26a4
allocated memory   : 236.25 MB
largest free block : 1.86 GB
executable         : Automise5.exe
exec. date/time    : 2021-07-13 12:44
version            : 5.0.0.1327
compiled with      : Delphi XE7
madExcept version  : 5.1.0
callstack crc      : $f6ec8d32, $62b8faa0, $cdf92ac1

thread $7cc:
50717185 +149 vcl210.bpl    Vcl                        Forms.TApplication.Idle
507163ab +017 vcl210.bpl    Vcl                        Forms.TApplication.HandleMessage
507166d1 +0c9 vcl210.bpl    Vcl                        Forms.TApplication.Run
009b36ae +726 Automise5.exe VSoft.IDE.Startup 582 +229 TIDEStartup.Run
75d062c2 +022 KERNEL32.DLL                             BaseThreadInitThunk

thread $2938: <priority:15>
763a387a +ea KERNELBASE.dll                                  WaitForMultipleObjectsEx
763a3773 +13 KERNELBASE.dll                                  WaitForMultipleObjects
015ac2ee +8a vsoft.core.db.bpl nxllMemoryManagerImpl 484 +22 CleanupThreadProc
75d062c2 +22 KERNEL32.DLL                                    BaseThreadInitThunk

thread $32d4:
763a387a +ea KERNELBASE.dll           WaitForMultipleObjectsEx
77be88b3 +63 user32.dll               MsgWaitForMultipleObjects
00470469 +0d Automise5.exe  madExcept CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL             BaseThreadInitThunk
>> created by thread $7cc at:
70671867 +00 gdiplus.dll

thread $7ac (TMessageDispatcherUIThread):
763a387a +ea KERNELBASE.dll                                         WaitForMultipleObjectsEx
5006014a +9e rtl210.bpl     System                                  TMonitor.Wait
50059c58 +04 rtl210.bpl     System                                  @FreeMem
5005fb41 +21 rtl210.bpl     System                                  TMonitor.Destroy
501b63da +56 rtl210.bpl     System                                  Syncobjs.THandleObject.WaitFor
01ead1f4 +4c vsoft.core.bpl VSoft.Core.Messaging.Dispatchers 345 +3 TMessageDispatcherUIThread.Execute
00470583 +2b Automise5.exe  madExcept                               HookedTThreadExecute
00470469 +0d Automise5.exe  madExcept                               CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept                               ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL                                           BaseThreadInitThunk
>> created by thread $7cc at:
5016a678 +18 rtl210.bpl     System                                  Classes.TThread.Create

thread $2fe8 (TMessageDispatcherUIThread):
763a387a +ea KERNELBASE.dll                                         WaitForMultipleObjectsEx
5006014a +9e rtl210.bpl     System                                  TMonitor.Wait
50059c58 +04 rtl210.bpl     System                                  @FreeMem
5005fb41 +21 rtl210.bpl     System                                  TMonitor.Destroy
501b63da +56 rtl210.bpl     System                                  Syncobjs.THandleObject.WaitFor
01ead1f4 +4c vsoft.core.bpl VSoft.Core.Messaging.Dispatchers 345 +3 TMessageDispatcherUIThread.Execute
00470583 +2b Automise5.exe  madExcept                               HookedTThreadExecute
00470469 +0d Automise5.exe  madExcept                               CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept                               ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL                                           BaseThreadInitThunk
>> created by thread $7cc at:
5016a678 +18 rtl210.bpl     System                                  Classes.TThread.Create

thread $9e0 (TOmniThread):
763a387a +0ea KERNELBASE.dll                         WaitForMultipleObjectsEx
77be7cb1 +171 user32.dll                             MsgWaitForMultipleObjectsEx
01e0f583 +04b vsoft.core.bpl OtlSync        1924  +2 TWaitFor.MsgWaitAny
01e5bc9a +032 vsoft.core.bpl OtlTaskControl 3020  +4 TOmniTaskExecutor.WaitForEvent
01e5aa11 +031 vsoft.core.bpl OtlTaskControl 2656  +2 TOmniTaskExecutor.MainMessageLoop
01e594db +113 vsoft.core.bpl OtlTaskControl 2330 +32 TOmniTaskExecutor.DispatchMessages
01e57995 +07d vsoft.core.bpl OtlTaskControl 2026 +36 TOmniTaskExecutor.Asy_Execute
01e56a91 +161 vsoft.core.bpl OtlTaskControl 1601 +20 TOmniTask.InternalExecute
01e56851 +005 vsoft.core.bpl OtlTaskControl 1519  +1 TOmniTask.Execute
01e5ee80 +050 vsoft.core.bpl OtlTaskControl 3923  +4 TOmniThread.Execute
00470583 +02b Automise5.exe  madExcept               HookedTThreadExecute
00470469 +00d Automise5.exe  madExcept               CallThreadProcSafe
004704ce +032 Automise5.exe  madExcept               ThreadExceptFrame
75d062c2 +022 KERNEL32.DLL                           BaseThreadInitThunk
>> created by thread $7cc at:
01e5ede5 +035 vsoft.core.bpl OtlTaskControl 3912  +1 TOmniThread.Create

thread $2140 (TIdUDPListenerThread):
7540497c +bc ws2_32.dll                                select
7541e4dc +9c ws2_32.dll                                recvfrom
030cf436 +4a indysystem210.bpl IdStackWindows 1875  +8 TIdSocketListWindows.FDSelect
030cf3e1 +29 indysystem210.bpl IdStackWindows 1858  +3 TIdSocketListWindows.SelectRead
033d6419 +09 indycore210.bpl   IdSocketHandle  652  +1 TIdSocketHandle.Select
03409ccb +2b indycore210.bpl   IdUDPServer     457  +1 TIdUDPListenerThread.Run
033f0bc9 +f5 indycore210.bpl   IdThread        434 +50 TIdThread.Execute
00470583 +2b Automise5.exe     madExcept               HookedTThreadExecute
00470469 +0d Automise5.exe     madExcept               CallThreadProcSafe
004704ce +32 Automise5.exe     madExcept               ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL                              BaseThreadInitThunk
>> created by thread $7cc at:
033f0dca +52 indycore210.bpl   IdThread        528 +24 TIdThread.Create

thread $160c (TIdUDPListenerThread):
7540497c +bc ws2_32.dll                                select
030cf436 +4a indysystem210.bpl IdStackWindows 1875  +8 TIdSocketListWindows.FDSelect
030cf3e1 +29 indysystem210.bpl IdStackWindows 1858  +3 TIdSocketListWindows.SelectRead
033d6419 +09 indycore210.bpl   IdSocketHandle  652  +1 TIdSocketHandle.Select
03409ccb +2b indycore210.bpl   IdUDPServer     457  +1 TIdUDPListenerThread.Run
033f0bc9 +f5 indycore210.bpl   IdThread        434 +50 TIdThread.Execute
00470583 +2b Automise5.exe     madExcept               HookedTThreadExecute
00470469 +0d Automise5.exe     madExcept               CallThreadProcSafe
004704ce +32 Automise5.exe     madExcept               ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL                              BaseThreadInitThunk
>> created by thread $7cc at:
033f0dca +52 indycore210.bpl   IdThread        528 +24 TIdThread.Create

thread $f48:
763a387a +ea KERNELBASE.dll           WaitForMultipleObjectsEx
00470469 +0d Automise5.exe  madExcept CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL             BaseThreadInitThunk
>> created by thread $7cc at:
609ae776 +00 clr.dll

thread $326c: <priority:2>
763961c3 +93 KERNELBASE.dll           WaitForSingleObjectEx
00470469 +0d Automise5.exe  madExcept CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL             BaseThreadInitThunk
>> created by thread $7cc at:
608e5ca7 +00 clr.dll

thread $430c: <priority:2>
763961c3 +93 KERNELBASE.dll           WaitForSingleObjectEx
00470469 +0d Automise5.exe  madExcept CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL             BaseThreadInitThunk
>> created by thread $7cc at:
608e5ca7 +00 clr.dll

thread $2ddc: <priority:2>
763a387a +ea KERNELBASE.dll           WaitForMultipleObjectsEx
00470469 +0d Automise5.exe  madExcept CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL             BaseThreadInitThunk
>> created by thread $7cc at:
609ec8b7 +00 clr.dll

thread $f44:
763961c3 +93 KERNELBASE.dll           WaitForSingleObjectEx
7639611d +0d KERNELBASE.dll           WaitForSingleObject
00470469 +0d Automise5.exe  madExcept CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL             BaseThreadInitThunk
>> created by thread $2ddc at:
609db510 +00 clr.dll

thread $1d78:
763961c3 +93 KERNELBASE.dll           WaitForSingleObjectEx
00470469 +0d Automise5.exe  madExcept CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL             BaseThreadInitThunk
>> created by thread $7cc at:
609ec8b7 +00 clr.dll

thread $32a4 (TLoadFeedThread):
763a387a +ea KERNELBASE.dll                              WaitForMultipleObjectsEx
501b63da +56 rtl210.bpl     System                       Syncobjs.THandleObject.WaitFor
0081a66d +51 Automise5.exe  VSoft.IDE.WelcomePage 891 +7 TLoadFeedThread.Execute
00470583 +2b Automise5.exe  madExcept                    HookedTThreadExecute
00470469 +0d Automise5.exe  madExcept                    CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept                    ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL                                BaseThreadInitThunk
>> created by thread $7cc at:
0081a5c4 +48 Automise5.exe  VSoft.IDE.WelcomePage 869 +6 TLoadFeedThread.CreateEx

thread $3324 (TWorkerThread):
763961c3 +93 KERNELBASE.dll                                  WaitForSingleObjectEx
7639611d +0d KERNELBASE.dll                                  WaitForSingleObject
004b019a +26 Automise5.exe  VirtualTrees.WorkerThread 150 +4 TWorkerThread.Execute
00470583 +2b Automise5.exe  madExcept                        HookedTThreadExecute
00470469 +0d Automise5.exe  madExcept                        CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept                        ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL                                    BaseThreadInitThunk
>> created by thread $7cc at:
004b00b6 +16 Automise5.exe  VirtualTrees.WorkerThread  97 +1 TWorkerThread.Create

thread $4258:
77bfa7a6 +26 user32.dll              GetMessageW
00470469 +0d Automise5.exe madExcept CallThreadProcSafe
004704ce +32 Automise5.exe madExcept ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL            BaseThreadInitThunk
>> created by thread $32a4 (TLoadFeedThread) at:
76180d4b +00 combase.dll

thread $3294:
75d062c2 +22 KERNEL32.DLL  BaseThreadInitThunk

thread $3e4 (TMessageDispatcherThread):
763a387a +ea KERNELBASE.dll                                          WaitForMultipleObjectsEx
50c825ab +fb dbrtl210.bpl   Data                                     Db.TDataSet.Resync
0258de2f +9f vsoft.core.bpl VSoft.Core.Logging.Archive       656 +17 TFBLogArchive.Receiver_LogMessage
501b63da +56 rtl210.bpl     System                                   Syncobjs.THandleObject.WaitFor
01eac8be +32 vsoft.core.bpl VSoft.Core.Messaging.Dispatchers 186  +3 TMessageDispatcherThread.Execute
00470583 +2b Automise5.exe  madExcept                                HookedTThreadExecute
00470469 +0d Automise5.exe  madExcept                                CallThreadProcSafe
004704ce +32 Automise5.exe  madExcept                                ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL                                            BaseThreadInitThunk
>> created by thread $7cc at:
5016a678 +18 rtl210.bpl     System                                   Classes.TThread.Create

thread $36e0 (TnxSimpleTimerThread): <priority:2>
763961c3 +93 KERNELBASE.dll                       WaitForSingleObjectEx
7639611d +0d KERNELBASE.dll                       WaitForSingleObject
015b3677 +0f vsoft.core.db.bpl nxllSync   233  +4 TnxEvent.WaitForQuietly
0166e230 +18 vsoft.core.db.bpl nxllThread 910  +2 TnxTimerThread.InnerExecute
0166dbfa +7a vsoft.core.db.bpl nxllThread 648 +18 TnxInternalInitThread.DoExecute
0166d955 +25 vsoft.core.db.bpl nxllThread 483  +3 TnxThread.Execute
00470583 +2b Automise5.exe     madExcept          HookedTThreadExecute
00470469 +0d Automise5.exe     madExcept          CallThreadProcSafe
004704ce +32 Automise5.exe     madExcept          ThreadExceptFrame
75d062c2 +22 KERNEL32.DLL                         BaseThreadInitThunk
>> created by thread $7cc at:
0166d893 +2f vsoft.core.db.bpl nxllThread 408  +3 TnxThread.Create

thread $2734 (TOmniThread):
7540497c +0bc ws2_32.dll                                                                  select
030cf436 +04a indysystem210.bpl     IdStackWindows                              1875   +8 TIdSocketListWindows.FDSelect
030cf3e1 +029 indysystem210.bpl     IdStackWindows                              1858   +3 TIdSocketListWindows.SelectRead
033d6419 +009 indycore210.bpl       IdSocketHandle                               652   +1 TIdSocketHandle.Select
033d61c8 +048 indycore210.bpl       IdSocketHandle                               558   +4 CheckIsReadable
033d6260 +06c indycore210.bpl       IdSocketHandle                               580  +19 TIdSocketHandle.Readable
033e2695 +009 indycore210.bpl       IdIOHandlerStack                             425   +1 TIdIOHandlerStack.Readable
031616c9 +03d indyprotocols210.bpl  IdSSLOpenSSL                                2849   +6 TIdSSLIOHandlerSocketOpenSSL.Readable
033ddaad +081 indycore210.bpl       IdIOHandler                                 1696  +21 TIdIOHandler.ReadFromSource
033dd611 +169 indycore210.bpl       IdIOHandler                                 1540  +63 TIdIOHandler.ReadLn
033dd3fa +036 indycore210.bpl       IdIOHandler                                 1452   +1 TIdIOHandler.ReadLn
033dd984 +068 indycore210.bpl       IdIOHandler                                 1653  +10 TIdIOHandler.ReadLnWait
033e8e17 +063 indycore210.bpl       IdTCPConnection                              846   +9 TIdTCPConnection.GetInternalResponse
033e87dd +029 indycore210.bpl       IdTCPConnection                              592   +1 TIdTCPConnection.GetResponse
033e8f0f +053 indycore210.bpl       IdTCPConnection                              868   +4 TIdTCPConnection.GetResponse
032a934f +033 indyprotocols210.bpl  IdSMTP                                       379   +4 TIdSMTP.Connect
1a20509f +603 FBInternetActions.bpl FBEmail                                     1701 +121 TCustomEmailAction.Execute
023c557f +067 vsoft.core.bpl        VSoft.Core.Actions.Base                      995   +7 TFBAction.InternalExecute
023c58db +27f vsoft.core.bpl        VSoft.Core.Actions.Base                     1073  +55 TFBAction.DoExecute
022f34e9 +281 vsoft.core.bpl        VSoft.Core.Stepping.Target.Runner           1630 +100 TTargetRunner.StepAction
022f4f01 +0bd vsoft.core.bpl        VSoft.Core.Stepping.Target.Runner           2252  +31 TTargetRunner.DoRun
022eff65 +0c1 vsoft.core.bpl        VSoft.Core.Stepping.Target.Runner            510  +26 TTargetRunner.HandleCommandRunFrom
022f12c9 +0b5 vsoft.core.bpl        VSoft.Core.Stepping.Target.Runner           1017  +26 TTargetRunner.ProcessInitialStepMode
022c084d +039 vsoft.core.bpl        VSoft.Core.Stepping.StepperTarget.Base       140   +3 TStepperTargetBase.ProcessCommands
0240cce1 +0c1 vsoft.core.bpl        VSoft.Core.Stepping.Stepper                  617  +27 TStepper.ProcessCommands
0233fc9c +2e8 vsoft.core.bpl        VSoft.Core.Stepping.Target.DependencyRunner  802  +80 TTargetDependencyRunner.StepTarget
0233dced +0a9 vsoft.core.bpl        VSoft.Core.Stepping.Target.DependencyRunner  336  +13 TTargetDependencyRunner.DoTargetRun
023400a3 +04f vsoft.core.bpl        VSoft.Core.Stepping.Target.DependencyRunner  853   +6 TTargetDependencyRunner.HandleCommandRunFrom
022c0a30 +0b8 vsoft.core.bpl        VSoft.Core.Stepping.StepperTarget.Base       195  +18 TStepperTargetBase.ProcessInitialStepMode
022c084d +039 vsoft.core.bpl        VSoft.Core.Stepping.StepperTarget.Base       140   +3 TStepperTargetBase.ProcessCommands
0240cce1 +0c1 vsoft.core.bpl        VSoft.Core.Stepping.Stepper                  617  +27 TStepper.ProcessCommands
025d1fa8 +134 vsoft.core.bpl        VSoft.Core.Stepping.Project.Task             644  +29 TProjectTask.RunTarget
025d2317 +043 vsoft.core.bpl        VSoft.Core.Stepping.Project.Task             682   +6 TProjectTask.HandleCommandRun
025d2325 +005 vsoft.core.bpl        VSoft.Core.Stepping.Project.Task             688   +2 TProjectTask.HandleCommandRunFrom
022c0a30 +0b8 vsoft.core.bpl        VSoft.Core.Stepping.StepperTarget.Base       195  +18 TStepperTargetBase.ProcessInitialStepMode
022c084d +039 vsoft.core.bpl        VSoft.Core.Stepping.StepperTarget.Base       140   +3 TStepperTargetBase.ProcessCommands
0240cce1 +0c1 vsoft.core.bpl        VSoft.Core.Stepping.Stepper                  617  +27 TStepper.ProcessCommands
025d06d2 +166 vsoft.core.bpl        VSoft.Core.Stepping.Project.Task             168   +8 TProjectTask.CommandProcessing
01e5796f +057 vsoft.core.bpl        OtlTaskControl                              2015  +25 TOmniTaskExecutor.Asy_Execute
01e56a91 +161 vsoft.core.bpl        OtlTaskControl                              1601  +20 TOmniTask.InternalExecute
01e56851 +005 vsoft.core.bpl        OtlTaskControl                              1519   +1 TOmniTask.Execute
01e5ee80 +050 vsoft.core.bpl        OtlTaskControl                              3923   +4 TOmniThread.Execute
00470583 +02b Automise5.exe         madExcept                                             HookedTThreadExecute
00470469 +00d Automise5.exe         madExcept                                             CallThreadProcSafe
004704ce +032 Automise5.exe         madExcept                                             ThreadExceptFrame
75d062c2 +022 KERNEL32.DLL                                                                BaseThreadInitThunk
>> created by thread $9e0 (TOmniThread) at:
01e5ede5 +035 vsoft.core.bpl        OtlTaskControl                              3912   +1 TOmniThread.Create

thread $18a4:
75d062c2 +22 KERNEL32.DLL  BaseThreadInitThunk

thread $163c:
75d062c2 +22 KERNEL32.DLL  BaseThreadInitThunk

modules:
00400000 Automise5.exe                5.0.0.1327          C:\Program Files (x86)\Automise 5
011f0000 vclimg210.bpl                21.0.17707.5020     C:\Program Files (x86)\Automise 5
015a0000 vsoft.core.db.bpl            5.0.0.1327          C:\Program Files (x86)\Automise 5
01b70000 vsoft.core.bpl               5.0.0.1327          C:\Program Files (x86)\Automise 5
02ab0000 spring.base.delphixe7.bpl                        C:\Program Files (x86)\Automise 5
02cd0000 fbdreamruntime.bpl                               C:\Program Files (x86)\Automise 5
02da0000 raizecomponentsvcl210.bpl    6.1.10.0            C:\Program Files (x86)\Automise 5
02fb0000 nxcommonrun_dxe7.bpl                             C:\Program Files (x86)\Automise 5
03020000 nxgridrun_dxe7.bpl                               C:\Program Files (x86)\Automise 5
030a0000 indysystem210.bpl                                C:\Program Files (x86)\Automise 5
03110000 indyprotocols210.bpl                             C:\Program Files (x86)\Automise 5
033d0000 indycore210.bpl                                  C:\Program Files (x86)\Automise 5
18ef0000 ssleay32.dll                 1.0.2.21            C:\Program Files (x86)\Automise 5
19430000 FBActiveDirectorySupport.bpl 5.0.0.1327          C:\Program Files (x86)\Automise 5
195a0000 FBADO.bpl                    5.0.0.1327          C:\Program Files (x86)\Automise 5
19820000 FBCDBurner.bpl               5.0.0.1327          C:\Program Files (x86)\Automise 5
198c0000 FBForms.bpl                  5.0.0.1327          C:\Program Files (x86)\Automise 5
19900000 FBCompression.bpl            5.0.0.1327          C:\Program Files (x86)\Automise 5
19a00000 FBDotNetFrameWork.bpl        5.0.0.1327          C:\Program Files (x86)\Automise 5
19bb0000 FBMiscComponents210.bpl      5.0.0.1327          C:\Program Files (x86)\Automise 5
19bf0000 FBFile.bpl                   5.0.0.1327          C:\Program Files (x86)\Automise 5
1a060000 FBFileListCopyMove.bpl       5.0.0.1327          C:\Program Files (x86)\Automise 5
1a090000 FBWindowExists.bpl           5.0.0.1327          C:\Program Files (x86)\Automise 5
1a0d0000 FBInteractive.bpl            5.0.0.1327          C:\Program Files (x86)\Automise 5
1a1a0000 FBInternetActions.bpl        5.0.0.1327          C:\Program Files (x86)\Automise 5
1a310000 FBWaitFor.bpl                5.0.0.1327          C:\Program Files (x86)\Automise 5
1a360000 FBNTServices.bpl             5.0.0.1327          C:\Program Files (x86)\Automise 5
1a390000 FBPDF.bpl                    5.0.0.1327          C:\Program Files (x86)\Automise 5
1a820000 FBProfessional.bpl           5.0.0.1327          C:\Program Files (x86)\Automise 5
1a8e0000 FBSQLServer.bpl              5.0.0.1327          C:\Program Files (x86)\Automise 5
1a950000 FBWinAdmin.bpl               5.0.0.1327          C:\Program Files (x86)\Automise 5
1a9e0000 FBwmi.bpl                    5.0.0.1327          C:\Program Files (x86)\Automise 5
1aa30000 FBXML.bpl                    5.0.0.1327          C:\Program Files (x86)\Automise 5
1aac0000 VSAutomationSupport.bpl      5.0.0.1327          C:\Program Files (x86)\Automise 5
1afb0000 FB80ActionCtx.dll            8.0.1.0             C:\Program Files (x86)\Common Files\VSoft
1bb50000 libeay32.dll                 1.0.2.21            C:\Program Files (x86)\Automise 5
46480000 security.dll                 10.0.14393.0        C:\Windows\SYSTEM32
50050000 rtl210.bpl                   21.0.17707.5020     C:\Program Files (x86)\Automise 5
50590000 vcl210.bpl                   21.0.17707.5020     C:\Program Files (x86)\Automise 5
50960000 vclx210.bpl                  21.0.17707.5020     C:\Program Files (x86)\Automise 5
50c40000 dbrtl210.bpl                 21.0.17707.5020     C:\Program Files (x86)\Automise 5
50cf0000 xmlrtl210.bpl                21.0.17707.5020     C:\Program Files (x86)\Automise 5
51330000 adortl210.bpl                21.0.17707.5020     C:\Program Files (x86)\Automise 5
5f4b0000 mscorlib.ni.dll              4.7.3750.0          C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\7a6433ea98437b9578c53323dc24e096
60850000 clr.dll                      4.7.3750.0          C:\Windows\Microsoft.NET\Framework\v4.0.30319
66220000 explorerframe.dll            10.0.14393.4169     C:\Windows\system32
66ef0000 propsys.dll                  7.0.14393.4169      C:\Windows\system32
67040000 cryptnet.dll                 10.0.14393.2035     C:\Windows\System32
67670000 d3d11.dll                    10.0.14393.4169     C:\Windows\system32
69aa0000 mpr.dll                      10.0.14393.2879     C:\Windows\SYSTEM32
69c80000 ncryptsslp.dll               10.0.14393.3541     C:\Windows\system32
69ca0000 NTASN1.dll                   10.0.14393.0        C:\Windows\SYSTEM32
69cd0000 ncrypt.dll                   10.0.14393.4046     C:\Windows\SYSTEM32
69cf0000 schannel.dll                 10.0.14393.3930     C:\Windows\System32
69d60000 Fwpuclnt.dll                 10.0.14393.0        C:\Windows\SYSTEM32
69dc0000 mskeyprotect.dll             10.0.14393.4046     C:\Windows\SYSTEM32
6a160000 sxs.dll                      10.0.14393.4169     C:\Windows\SYSTEM32
6b640000 DPAPI.dll                    10.0.14393.0        C:\Windows\SYSTEM32
6bc80000 twinapi.appcore.dll          10.0.14393.4169     C:\Windows\system32
6bf00000 SAMCLI.DLL                   10.0.14393.0        C:\Windows\SYSTEM32
6bf50000 dcomp.dll                    10.0.14393.4169     C:\Windows\system32
6c070000 ondemandconnroutehelper.dll  10.0.14393.0        C:\Windows\SYSTEM32
6c600000 wkscli.dll                   10.0.14393.0        C:\Windows\SYSTEM32
6dd30000 uxtheme.dll                  10.0.14393.4169     C:\Windows\system32
6ddb0000 iertutil.dll                 11.0.14393.4169     C:\Windows\SYSTEM32
6e4a0000 urlmon.dll                   11.0.14393.4169     C:\Windows\SYSTEM32
6ea60000 comctl32.dll                 6.10.14393.4169     C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.4169_none_c58df2c997bddaf8
6f290000 srvcli.dll                   10.0.14393.0        C:\Windows\SYSTEM32
6f380000 xmllite.dll                  10.0.14393.3143     C:\Windows\SYSTEM32
6f500000 msxml6.dll                   6.30.14393.4169     C:\Windows\System32
6f8c0000 clrjit.dll                   4.7.3750.0          C:\Windows\Microsoft.NET\Framework\v4.0.30319
6fc70000 DUser.dll                    10.0.14393.0        C:\Windows\SYSTEM32
70460000 ntmarta.dll                  10.0.14393.1378     C:\Windows\SYSTEM32
70490000 winhttp.dll                  10.0.14393.4169     C:\Windows\SYSTEM32
70600000 gdiplus.dll                  10.0.14393.4169     C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.4169_none_f678e5aef25054c6
70c00000 dxgi.dll                     10.0.14393.2457     C:\Windows\system32
70cd0000 WindowsCodecs.dll            10.0.14393.3930     C:\Windows\SYSTEM32
71580000 WINSTA.dll                   10.0.14393.0        C:\Windows\SYSTEM32
71850000 jscript.dll                  5.812.10240.16384   C:\Windows\System32
71a20000 DDRAW.dll                    10.0.14393.953      C:\Windows\SYSTEM32
71bd0000 opengl32.dll                 10.0.14393.0        C:\Windows\SYSTEM32
71d60000 dataexchange.dll             10.0.14393.4169     C:\Windows\system32
71ea0000 WINNSI.DLL                   10.0.14393.2339     C:\Windows\SYSTEM32
71eb0000 wsock32.dll                  10.0.14393.0        C:\Windows\SYSTEM32
71ec0000 NETUTILS.DLL                 10.0.14393.0        C:\Windows\SYSTEM32
71ed0000 netapi32.dll                 10.0.14393.0        C:\Windows\SYSTEM32
721f0000 dwmapi.dll                   10.0.14393.4169     C:\Windows\system32
722b0000 dssenh.dll                   10.0.14393.0        C:\Windows\system32
72310000 usp10.dll                    10.0.14393.3321     C:\Windows\SYSTEM32
723f0000 MSACM32.dll                  10.0.14393.0        C:\Windows\SYSTEM32
72410000 MsVfW32.dll                  10.0.14393.0        C:\Windows\SYSTEM32
72460000 olepro32.dll                 10.0.14393.3930     C:\Windows\SYSTEM32
72480000 FaultRep.dll                 10.0.14393.4046     C:\Windows\SYSTEM32
724e0000 mscoreei.dll                 4.7.3468.0          C:\Windows\Microsoft.NET\Framework\v4.0.30319
72560000 mscoree.dll                  10.0.14393.0        C:\Windows\SYSTEM32
725c0000 avifil32.dll                 10.0.14393.0        C:\Windows\SYSTEM32
72860000 msimg32.dll                  10.0.14393.0        C:\Windows\SYSTEM32
72870000 WINMMBASE.dll                10.0.14393.0        C:\Windows\SYSTEM32
728a0000 winmm.dll                    10.0.14393.0        C:\Windows\SYSTEM32
72ba0000 oledlg.dll                   10.0.14393.0        C:\Windows\SYSTEM32
72bc0000 winspool.drv                 10.0.14393.4169     C:\Windows\SYSTEM32
72ec0000 IdnDL.dll                    10.0.14393.0        C:\Windows\SYSTEM32
72ed0000 GLU32.dll                    10.0.14393.0        C:\Windows\SYSTEM32
72fa0000 oleacc.dll                   7.2.14393.4169      C:\Windows\SYSTEM32
73110000 DCIMAN32.dll                 10.0.14393.0        C:\Windows\SYSTEM32
73120000 SHFolder.dll                 10.0.14393.0        C:\Windows\SYSTEM32
73240000 atlthunk.dll                 10.0.14393.2457     C:\Windows\SYSTEM32
73360000 MSVCR120_CLR0400.dll         12.0.52519.0        C:\Windows\SYSTEM32
73630000 symamsi.dll                  15.8.5.90           C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.3.3384.1000.105\bin
73a50000 wininet.dll                  11.0.14393.4169     C:\Windows\SYSTEM32
73df0000 vbscript.dll                 5.812.10240.16384   C:\Windows\System32
73ef0000 amsi.dll                     10.0.14393.4169     C:\Windows\SYSTEM32
73f30000 scrrun.dll                   5.812.10240.16384   C:\Windows\System32
740a0000 rsaenh.dll                   10.0.14393.2457     C:\Windows\system32
740d0000 bcrypt.dll                   10.0.14393.4046     C:\Windows\SYSTEM32
740f0000 rasadhlp.dll                 10.0.14393.0        C:\Windows\System32
74100000 wtsapi32.dll                 10.0.14393.0        C:\Windows\SYSTEM32
74110000 CRYPTSP.dll                  10.0.14393.2457     C:\Windows\SYSTEM32
74220000 NLAapi.dll                   10.0.14393.3808     C:\Windows\system32
74240000 winrnr.dll                   10.0.14393.0        C:\Windows\System32
74280000 iphlpapi.dll                 10.0.14393.2339     C:\Windows\SYSTEM32
742b0000 DNSAPI.dll                   10.0.14393.4169     C:\Windows\SYSTEM32
74330000 mswsock.dll                  10.0.14393.3659     C:\Windows\system32
743c0000 dbgcore.DLL                  10.0.14321.1024     C:\Windows\SYSTEM32
743f0000 dbghelp.dll                  10.0.14321.1024     C:\Windows\SYSTEM32
74630000 napinsp.dll                  10.0.14393.0        C:\Windows\system32
74650000 version.dll                  10.0.14393.0        C:\Windows\SYSTEM32
747f0000 USERENV.dll                  10.0.14393.3986     C:\Windows\SYSTEM32
74810000 SECUR32.DLL                  10.0.14393.2273     C:\Windows\SYSTEM32
748c0000 CRYPTBASE.dll                10.0.14393.0        C:\Windows\System32
748d0000 SspiCli.dll                  10.0.14393.2580     C:\Windows\System32
748f0000 WINTRUST.dll                 10.0.14393.4046     C:\Windows\System32
74940000 ole32.dll                    10.0.14393.4169     C:\Windows\System32
74e40000 cfgmgr32.dll                 10.0.14393.0        C:\Windows\System32
74e80000 advapi32.dll                 10.0.14393.2515     C:\Windows\System32
74fa0000 kernel.appcore.dll           10.0.14393.2312     C:\Windows\System32
74fb0000 GDI32.dll                    10.0.14393.4169     C:\Windows\System32
74fe0000 MSASN1.dll                   10.0.14393.0        C:\Windows\System32
74ff0000 shcore.dll                   10.0.14393.4169     C:\Windows\System32
75080000 MSCTF.dll                    10.0.14393.3930     C:\Windows\System32
751c0000 gdi32full.dll                10.0.14393.4169     C:\Windows\System32
75320000 clbcatq.dll                  2001.12.10941.16384 C:\Windows\System32
753b0000 shlwapi.dll                  10.0.14393.4169     C:\Windows\System32
75400000 ws2_32.dll                   10.0.14393.3241     C:\Windows\System32
75470000 msvcrt.dll                   7.0.14393.2457      C:\Windows\System32
75530000 RPCRT4.dll                   10.0.14393.4169     C:\Windows\System32
75600000 comdlg32.dll                 10.0.14393.4169     C:\Windows\System32
756f0000 windows.storage.dll          10.0.14393.4169     C:\Windows\System32
75c60000 win32u.dll                   10.0.14393.0        C:\Windows\System32
75c80000 Normaliz.dll                 10.0.14393.0        C:\Windows\System32
75c90000 bcryptPrimitives.dll         10.0.14393.4046     C:\Windows\System32
75cf0000 KERNEL32.DLL                 10.0.14393.3630     C:\Windows\System32
75dd0000 profapi.dll                  10.0.14393.0        C:\Windows\System32
75de0000 sechost.dll                  10.0.14393.3808     C:\Windows\System32
75e30000 ucrtbase.dll                 10.0.14393.3659     C:\Windows\System32
76080000 combase.dll                  10.0.14393.4169     C:\Windows\System32
762a0000 IMM32.DLL                    10.0.14393.0        C:\Windows\System32
762d0000 KERNELBASE.dll               10.0.14393.3986     C:\Windows\System32
764e0000 powrprof.dll                 10.0.14393.0        C:\Windows\System32
76530000 oleaut32.dll                 10.0.14393.3808     C:\Windows\System32
765d0000 msvcp_win.dll                10.0.14393.2999     C:\Windows\System32
76660000 shell32.dll                  10.0.14393.4169     C:\Windows\System32
77a40000 crypt32.dll                  10.0.14393.4169     C:\Windows\System32
77bc0000 NSI.dll                      10.0.14393.3297     C:\Windows\System32
77bd0000 user32.dll                   10.0.14393.4169     C:\Windows\System32
77d30000 IMAGEHLP.DLL                 10.0.14393.0        C:\Windows\System32
77e00000 ntdll.dll                    10.0.14393.3986     C:\Windows\SYSTEM32

processes:
0000 Idle                    0   0    0
0004 System                  0   0    0
0118 smss.exe                0   0    0
0170 csrss.exe               0   0    0
01c0 wininit.exe             0   0    0
01c8 csrss.exe               1   0    0
01fc winlogon.exe            1   0    0
0240 services.exe            0   0    0
0248 lsass.exe               0   0    0
02a4 svchost.exe             0   0    0
02e0 svchost.exe             0   0    0
0344 LogonUI.exe             1   0    0
035c dwm.exe                 1   0    0
0374 svchost.exe             0   0    0
0390 svchost.exe             0   0    0
03c0 svchost.exe             0   0    0
03c8 svchost.exe             0   0    0
0100 svchost.exe             0   0    0
0308 svchost.exe             0   0    0
0450 svchost.exe             0   0    0
04b0 svchost.exe             0   0    0
0570 svchost.exe             0   0    0
06bc spoolsv.exe             0   0    0
0704 svchost.exe             0   0    0
0744 svchost.exe             0   0    0
075c sqlwriter.exe           0   0    0
076c svchost.exe             0   0    0
0780 vmtoolsd.exe            0   0    0
0788 VGAuthService.exe       0   0    0
0790 TaniumClient.exe        0   0    0
0798 ccSvcHst.exe            0   0    0
07a0 ccSvcHst.exe            0   0    0
07f4 sepWscSvc64.exe         0   0    0
09b0 dllhost.exe             0   0    0
0adc sqlceip.exe             0   0    0
0aec sqlservr.exe            0   0    0
0c94 WmiPrvSE.exe            0   0    0
0d9c msdtc.exe               0   0    0
0fdc fdlauncher.exe          0   0    0
0ff4 fdhost.exe              0   0    0
0ffc conhost.exe             0   0    0
1560 svchost.exe             0   0    0
1470 ccSvcHst.exe            0   0    0
1900 WmiPrvSE.exe            0   0    0
1630 WmiPrvSE.exe            0   0    0
1fd4 CmRcService.exe         0   0    0
121c WmiPrvSE.exe            0   0    0
41a0 WmiPrvSE.exe            0   0    0
363c CcmExec.exe             0   0    0
3050 WmiPrvSE.exe            0   0    0
42ec WmiPrvSE.exe            0   0    0
27f8 bpnetd.exe              0   0    0
071c TaniumClient.exe        0   0    0
2590 conhost.exe             0   0    0
35e0 TaniumCX.exe            0   0    0
37d4 TaniumCX.exe            0   0    0
2f70 TaniumCX.exe            0   0    0
3fbc TaniumCX.exe            0   0    0
234c TaniumCX.exe            0   0    0
3b0c TaniumCX.exe            0   0    0
33e4 TaniumDetectEngine.exe  0   0    0
12e8 csrss.exe               105 0    0
3788 winlogon.exe            105 0    0
1610 dwm.exe                 105 0    0
1a6c ccSvcHst.exe            105 21   23  normal       C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.3.3384.1000.105\Bin
2e2c rdpclip.exe             105 6    29  normal       C:\Windows\System32
2cdc svchost.exe             105 4    1   normal       C:\Windows\System32
4154 sihost.exe              105 4    14  normal       C:\Windows\System32
1b88 taskhostw.exe           105 9    11  normal       C:\Windows\System32
24fc notepad.exe             105 0    0
24d4 RuntimeBroker.exe       105 35   3   normal       C:\Windows\System32
2238 notepad.exe             105 0    0
3040 notepad.exe             105 0    0
16cc explorer.exe            105 364  355 normal       C:\Windows
25e4 ShellExperienceHost.exe 105 4    46  normal       C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy
3468 WmiPrvSE.exe            0   0    0
34f0 SearchUI.exe            105 11   29  normal       C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy
2c9c jusched.exe             105 4    2   normal       C:\Program Files (x86)\Common Files\Java\Java Update
4018 SCNotification.exe      105 12   10  normal       C:\Windows\CCM
26a4 Automise5.exe           105 1128 434 normal       C:\Program Files (x86)\Automise 5
233c jucheck.exe             105 7    6   normal       C:\Program Files (x86)\Common Files\Java\Java Update
1604 SettingSyncHost.exe     105 4    4   below normal C:\Windows\System32
2a04 TaniumClient.exe        0   0    0
3254 conhost.exe             0   0    0
224c TaniumCX.exe            0   0    0
1ab8 WmiApSrv.exe            0   0    0
3144 TaniumClient.exe        0   0    0
0970 ATCMD.exe               0   0    0
0f58 conhost.exe             0   0    0
10e8 madTraceProcess32.exe   105 36   26  normal       C:\Users\JMeltzer\Downloads

hardware:
+ {1ed2bbf9-11f0-4084-b21f-ad83a8e6dcdc}
  - Microsoft Print to PDF
  - Microsoft XPS Document Writer
  - Root Print Queue
+ {36fc9e60-c465-11cf-8056-444553540000}
  - Standard USB 3.0 eXtensible Host Controller - 1.0 (Microsoft)
  - USB Composite Device
  - USB Root Hub (xHCI)
+ {4d36e965-e325-11ce-bfc1-08002be10318}
  - NECVMWar VMware SATA CD00
+ {4d36e966-e325-11ce-bfc1-08002be10318}
  - ACPI x64-based PC
+ {4d36e967-e325-11ce-bfc1-08002be10318}
  - VMware Virtual disk SCSI Disk Device
+ {4d36e968-e325-11ce-bfc1-08002be10318}
  - VMware SVGA 3D (driver 8.16.1.20)
+ {4d36e96a-e325-11ce-bfc1-08002be10318}
  - ATA Channel 0
  - ATA Channel 1
  - Intel(R) 82371AB/EB PCI Bus Master IDE Controller
  - Standard SATA AHCI Controller
+ {4d36e96b-e325-11ce-bfc1-08002be10318}
  - Remote Desktop Keyboard Device
  - Standard PS/2 Keyboard
+ {4d36e96e-e325-11ce-bfc1-08002be10318}
  - Generic Non-PnP Monitor
+ {4d36e96f-e325-11ce-bfc1-08002be10318}
  - HID-compliant mouse
  - Remote Desktop Mouse Device
  - VMware Pointing Device (driver 12.5.7.0)
  - VMware USB Pointing Device (driver 12.5.7.0)
+ {4d36e972-e325-11ce-bfc1-08002be10318}
  - Microsoft ISATAP Adapter
  - Microsoft Kernel Debug Network Adapter
  - vmxnet3 Ethernet Adapter (driver 1.8.16.0)
+ {4d36e97b-e325-11ce-bfc1-08002be10318}
  - LSI Adapter, SAS 3000 series, 8-port with 1068 (driver 1.34.3.83)
  - Microsoft Storage Spaces Controller
+ {4d36e97d-e325-11ce-bfc1-08002be10318}
  - ACPI Fixed Feature Button
  - Composite Bus Enumerator
  - CPU to PCI Bridge
  - Direct memory access controller
  - EISA programmable interrupt controller
  - Generic Bus
  - High precision event timer
  - Microsoft ACPI-Compliant System
  - Microsoft Basic Display Driver
  - Microsoft Basic Render Driver
  - Microsoft Hyper-V Generation Counter
  - Microsoft System Management BIOS Driver
  - Microsoft Virtual Drive Enumerator
  - Motherboard resources
  - Motherboard resources
  - NDIS Virtual Network Adapter Enumerator
  - PCI Bus
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI Express Root Port
  - PCI to ISA Bridge
  - PCI-to-PCI Bridge
  - PCI-to-PCI Bridge
  - Plug and Play Software Device Enumerator
  - Remote Desktop Device Redirector Bus
  - System CMOS/real time clock
  - System speaker
  - System timer
  - UMBus Enumerator
  - UMBus Root Bus Enumerator
  - VMware VMCI Bus Device (driver 9.8.16.0)
  - VMware VMCI Host Device (driver 9.8.6.0)
  - Volume Manager
+ {50127dc3-0f36-415e-a6cc-4cb3be910b65}
  - Intel(R) Xeon(R) Platinum 8168 CPU @ 2.70GHz
  - Intel(R) Xeon(R) Platinum 8168 CPU @ 2.70GHz
+ {62f9c741-b25a-46ce-b54c-9bccce08b6f2}
  - Microsoft IPv4 IPv6 Transition Adapter Bus
  - Microsoft Passport Container Enumeration Bus
  - Microsoft Radio Device Enumeration Bus
  - Smart Card Device Enumeration Bus
+ {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
  - Microsoft AC Adapter
+ {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
  - USB Input Device
  - USB Input Device

disassembling:
[...]
009b2f9e       push    $9b3762                ; System.@HandleFinally
009b2fa3       push    dword ptr fs:[eax]
009b2fa6       mov     fs:[eax], esp
009b2fa9 354   mov     eax, [$a8e644]
009b2fae       call    -$51915b ($499e58)     ; VSoft.Core.Utils.System.TSystemUtils.TurnOffFloatingPointExceptions
009b2fae
009b2fb3 355   call    -$53be24 ($477194)     ; FBCoInitHook.IsCoInitOk
009b2fb3
009b2fb8 356   call    -$c79 ($9b2344)        ; VSoft.IDE.Startup.SetAppTitle
009b2fb8
009b2fbd 357   call    -$53b3ba ($477c08)     ; System.Classes.TThread.GetCurrentThread
009b2fbd
009b2fc2       mov     edx, [eax+4]
009b2fc5       mov     eax, $9b3780
009b2fca       call    -$53b387 ($477c48)     ; System.Classes.TThread.NameThreadForDebugging
009b2fca
009b2fcf 360   jmp     +$543d02c ($5df0000)
009b2fcf
009b2fcf     ; ---------------------------------------------------------
009b2fcf
009b36c0     loc_9b36c0:
009b36c0 584   jmp     +$543d0b2 ($5df0777)
009b36c0
009b36c0     ; ---------------------------------------------------------
009b36c0
009b3762       jmp     -$5b2477 ($4012f0)     ; System.@HandleFinally
009b3762
009b3767       jmp     loc_9b36c0