sub_outside():
	KERNEL32.GetVersion
	KERNEL32.GetCommandLineA
	KERNEL32.GetStartupInfoA
	KERNEL32.GetModuleHandleA

sub_402B10(01b1):
	KERNEL32.GetCurrentProcess
	KERNEL32.TerminateProcess
	KERNEL32.ExitProcess

sub_4031D7(0625):
	KERNEL32.GetStartupInfoA
	KERNEL32.GetFileType
	KERNEL32.GetStdHandle
	KERNEL32.LockResource

sub_4030A5(063e):
	KERNEL32.GetEnvironmentStrings
	KERNEL32.FreeEnvironmentStringsW
	KERNEL32.FreeEnvironmentStringsA

sub_4038A7(07b7):
	KERNEL32.GetCPInfo

sub_404573(0e35):
	KERNEL32.LoadLibraryA
	USER32.GetActiveWindow
	USER32.GetLastActivePopup

	"user32.dll"
	"MessageBoxA"
	"GetActiveWindow"
	"GetLastActivePopup"

sub_402E58(18d1):
	KERNEL32.GetModuleFileNameA

	"C:\\Documents and Settings\\Vernier Image"...

sub_401398(1e06):
	KERNEL32.lstrcpy
	USER32.wsprintfA
	WS2_32.gethostbyname
	WS2_32.socket
	WS2_32.htons
	WS2_32.connect
	WS2_32.closesocket

	"\\\\%s\\ipc$"
	"%s%c"

sub_402959(319d):
	KERNEL32.ExitProcess

sub_402029(321b):
	KERNEL32.GetTickCount
	ADVAPI32.AbortSystemShutdownA
	KERNEL32.Sleep

	"Jobaka3"
	"JumpallsNlsTillt"

sub_401E65(3cfa):
	WS2_32.socket
	WS2_32.htons
	WS2_32.bind
	WS2_32.listen
	WS2_32.closesocket
	WS2_32.accept
	KERNEL32.CreateThread
	KERNEL32.Sleep

sub_403AE6(44bc):
	KERNEL32.GetCPInfo

sub_403382(55e5):
	KERNEL32.HeapCreate
	KERNEL32.HeapDestroy

sub_40371C(5682):
	KERNEL32.GetStringTypeW
	KERNEL32.GetStringTypeA
	KERNEL32.MultiByteToWideChar

sub_4011D5(5ab6):
	WS2_32.inet_addr
	WS2_32.gethostbyname

sub_404478(64eb):
	KERNEL32.VirtualAlloc

sub_40127D(67c2):
	WS2_32.htons
	WS2_32.socket
	WS2_32.connect
	KERNEL32.lstrcpy
	USER32.wsprintfA
	WS2_32.send
	KERNEL32.Sleep
	WS2_32.closesocket

sub_40159E(6fd2):
	USER32.wsprintfA
	WS2_32.htons
	WS2_32.socket
	WS2_32.connect
	KERNEL32.Sleep
	WS2_32.closesocket

	"\\\\%s\\ipc$"

sub_402BC3(6fd7):
	KERNEL32.UnhandledExceptionFilter

sub_401210(89d9):
	USER32.wsprintfA
	KERNEL32._lcreat
	KERNEL32._lclose

	"%i"
	"c:\\win2.log"

sub_4033C0(8af0):
	NTDLL.RtlUnwind

sub_401028(93be):
	WS2_32.WSAStartup

sub_401153(9739):
	WS2_32.htons
	WS2_32.socket
	WS2_32.connect
	WS2_32.closesocket

sub_4035C9(9973):
	KERNEL32.GetModuleFileNameA
	KERNEL32.GetStdHandle
	KERNEL32.WriteFile

	""
	"..."
	"Runtime Error!\n\nProgram: "
	"\n\n"
	"Microsoft Visual C++ Runtime Library"

sub_4020D7(9d3c):
	KERNEL32.GetModuleFileNameA
	KERNEL32.GetWindowsDirectoryA
	KERNEL32.CopyFileA
	ADVAPI32.RegOpenKeyA
	ADVAPI32.RegSetValueExA
	ADVAPI32.RegCloseKey

	"\\"
	"SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...

sub_4046FE(a93f):
	KERNEL32.LCMapStringW
	KERNEL32.LCMapStringA
	KERNEL32.MultiByteToWideChar
	KERNEL32.WideCharToMultiByte

sub_4010D2(bef8):
	WS2_32.gethostname
	WS2_32.gethostbyname
	WS2_32.inet_ntoa
	KERNEL32.lstrcpy

	"127.0.0.1"

sub_4043C7(cbe8):
	KERNEL32.VirtualAlloc

sub_401045(ce45):
	WS2_32.inet_addr

sub_401EF0(ec40):
	WS2_32.inet_addr
	KERNEL32.GetModuleFileNameA
	KERNEL32.WinExec
	KERNEL32.Sleep

	"%i.%i.%i.%i"
	" "

StartAddress(f5f1):
	WS2_32.recv
	USER32.wsprintfA
	WS2_32.htons
	WS2_32.socket
	WS2_32.connect
	WS2_32.closesocket
	KERNEL32.GetModuleFileNameA
	KERNEL32._lopen
	KERNEL32._lclose

	"USER"
	"PASS"
	"PORT"
	"%i.%i.%i.%i"
	"RETR"
	"QUIT"