sub_outside():
	KERNEL32.GlobalAlloc
	KERNEL32.SetErrorMode
	USER32.PeekMessageA
	KERNEL32.GetShortPathNameA

sub_402010(02e7):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA

sub_401000(04db):
	USER32.DefWindowProcA
	USER32.BeginPaint
	USER32.GetClientRect
	GDI32.CreateBrushIndirect
	USER32.FillRect
	GDI32.DeleteObject
	GDI32.CreateFontIndirectA
	GDI32.SetBkMode
	GDI32.SetTextColor
	GDI32.SelectObject

sub_4056AC(0c33):
	KERNEL32.GetFileAttributesA
	KERNEL32.CreateFileA

sub_404643(0c49):
	USER32.SendMessageA
	USER32.GetMessagePos
	USER32.ScreenToClient

sub_405C17(0f4a):
	USER32.CharNextA
	USER32.CharPrevA

	"*?|<>/\":"

sub_4059DB(10d7):
	KERNEL32.lstrcpyn

sub_40136D(13e2):
	KERNEL32.MulDiv
	USER32.SendMessageA

sub_4054E8(1612):
	KERNEL32.lstrlen
	USER32.CharPrevA
	KERNEL32.lstrcat

sub_4058CF(1d16):
	ADVAPI32.RegOpenKeyExA
	ADVAPI32.RegQueryValueExA
	ADVAPI32.RegCloseKey

sub_405939(21ad):
	USER32.wsprintfA

	"%d"

sub_4046C3(2309):
	USER32.GetDlgItem
	KERNEL32.GlobalAlloc
	USER32.LoadBitmapA
	USER32.SetWindowLongA
	USER32.SendMessageA
	GDI32.DeleteObject
	USER32.GetWindowLongA
	USER32.ShowWindow
	KERNEL32.GlobalFree
	USER32.InvalidateRect

sub_405513(26cb):
	USER32.CharNextA

sub_404281(2b8f):
	KERNEL32.lstrcmpi
	KERNEL32.lstrcat
	USER32.SetDlgItemTextA
	KERNEL32.GetDiskFreeSpaceA
	KERNEL32.MulDiv

	"SHAutoComplete"
	"shlwapi.dll"
	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...
	"GetDiskFreeSpaceExA"
	"KERNEL32.dll"

sub_403132(2ecf):
	KERNEL32.CreateDirectoryA

	"C:\\DOCUME~1\\SRI-user\\LOCALS~1\\Temp\\"

sub_404196(3289):
	USER32.SendMessageA

sub_40531D(3a9a):
	KERNEL32.DeleteFileA
	KERNEL32.lstrcat
	KERNEL32.lstrlen
	KERNEL32.FindFirstFileA
	KERNEL32.SetFileAttributesA
	KERNEL32.FindNextFileA
	KERNEL32.FindClose
	KERNEL32.RemoveDirectoryA

	"\\*.*"

sub_403F0B(3afe):
	USER32.CheckDlgButton
	USER32.GetDlgItem
	USER32.SendMessageA
	USER32.GetSysColor
	KERNEL32.lstrlen
	USER32.LoadCursorA
	USER32.SetCursor

	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...
	"open"

sub_4052DB(3bcc):
	USER32.MessageBoxA

	"Name Setup"

sub_4052BF(3c14):
	USER32.GetDlgItemTextA

sub_403DF8(3cd5):
	USER32.SendMessageA

sub_40311B(3cd5):
	KERNEL32.SetFilePointer

sub_40204C(4466):
	KERNEL32.WaitForSingleObject

sub_405D18(44b5):
	USER32.DispatchMessageA
	USER32.PeekMessageA

sub_4055C8(471a):
	KERNEL32.lstrlen
	KERNEL32.GetFileAttributesA

sub_404D7E(47fc):
	KERNEL32.lstrlen
	KERNEL32.lstrcat
	USER32.SetWindowTextA
	USER32.SendMessageA

sub_40552F(4982):
	KERNEL32.lstrlen
	USER32.CharPrevA

sub_403D9C(4e9e):
	USER32.SendMessageA

sub_4041BA(515e):
	USER32.SetDlgItemTextA

sub_402BAB(5179):
	USER32.SetTimer
	KERNEL32.MulDiv
	USER32.wsprintfA
	USER32.SetWindowTextA
	USER32.SetDlgItemTextA
	USER32.ShowWindow

sub_403E0F(5296):
	USER32.SendMessageA

sub_4045EF(53bf):
	KERNEL32.lstrlen
	USER32.wsprintfA
	USER32.SetDlgItemTextA

sub_4030E9(554a):
	KERNEL32.ReadFile

sub_402A9A(57c5):
	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...

sub_401ED8(5e59):
	KERNEL32.WaitForSingleObject
	KERNEL32.GetExitCodeProcess
	KERNEL32.CloseHandle

sub_404201(5fc9):
	USER32.GetDlgItem
	USER32.SetWindowTextA

sub_4021F6(64b9):
	KERNEL32.lstrlen
	KERNEL32.lstrcat
	KERNEL32.WritePrivateProfileStringA
	KERNEL32.GetPrivateProfileStringA
	ADVAPI32.RegDeleteValueA
	ADVAPI32.RegCloseKey
	ADVAPI32.RegCreateKeyExA
	ADVAPI32.RegSetValueExA
	ADVAPI32.RegQueryValueExA
	ADVAPI32.RegEnumKeyA
	ADVAPI32.RegEnumValueA
	KERNEL32.WriteFile
	KERNEL32.ReadFile
	KERNEL32.SetFilePointer
	KERNEL32.FindClose
	KERNEL32.FindNextFileA
	KERNEL32.FindFirstFileA

	"C:\\WINDOWS\\System32\\vMW03a"
	"C:\\WINDOWS\\System32\\vMW03a"

sub_403DE5(6879):
	USER32.EnableWindow

sub_401428(6879):
	"C:\\WINDOWS\\System32\\vMW03a"

sub_405CEE(68eb):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

sub_404EBC(6962):
	USER32.GetDlgItem
	USER32.GetClientRect
	USER32.GetSystemMetrics
	USER32.SendMessageA
	USER32.ShowWindow
	KERNEL32.CreateThread
	KERNEL32.CloseHandle
	USER32.CreatePopupMenu
	USER32.AppendMenuA
	USER32.GetWindowRect
	USER32.TrackPopupMenu
	USER32.OpenClipboard
	USER32.EmptyClipboard
	KERNEL32.GlobalAlloc
	KERNEL32.GlobalLock
	KERNEL32.lstrlen
	KERNEL32.GlobalUnlock
	USER32.SetClipboardData
	USER32.CloseClipboard

sub_401148(69dd):
	USER32.DrawTextA
	GDI32.SelectObject
	GDI32.DeleteObject
	USER32.EndPaint

	"Name Setup"

sub_403542(6af4):
	KERNEL32.lstrcat
	KERNEL32.lstrlen
	KERNEL32.lstrcmpi
	KERNEL32.GetFileAttributesA
	USER32.LoadImageA
	USER32.RegisterClassA
	USER32.SystemParametersInfoA
	USER32.CreateWindowExA
	USER32.ShowWindow
	KERNEL32.LoadLibraryA
	USER32.GetClassInfoA
	USER32.DialogBoxParamA

	"GetUserDefaultUILanguage"
	"KERNEL32.dll"
	"1033"
	"1033"
	"Control Panel\\Desktop\\ResourceLocale"
	"Locale"
	".DEFAULT\\Control Panel\\International"
	"1033"
	"C:\\WINDOWS\\System32"
	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...
	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...
	".exe"
	"RichEd20.dll"
	"RichEdit20A"

start(6bfa):
	KERNEL32.GetTempPathA
	KERNEL32.GetWindowsDirectoryA
	KERNEL32.lstrcat
	KERNEL32.DeleteFileA
	KERNEL32.GetCommandLineA
	KERNEL32.GetModuleHandleA
	USER32.CharNextA
	KERNEL32.ExitProcess
	KERNEL32.CreateDirectoryA
	KERNEL32.GetModuleFileNameA
	KERNEL32.lstrcmpi
	KERNEL32.CopyFileA
	KERNEL32.CloseHandle
	KERNEL32.GetCurrentProcess
	KERNEL32.GetTickCount
	USER32.ExitWindowsEx

	"Error writing temporary file. Make sure"...
	"NSIS Error"
	"Name Setup"
	"C:\\DOCUME~1\\SRI-user\\LOCALS~1\\Temp\\"
	"\\Temp"
	"C:\\WINDOWS\\System32"
	"Error launching installer"
	"C:\\WINDOWS\\System32"
	"C:\\WINDOWS\\System32\\vMW03a"
	"~nsu.tmp\\"
	"Au_.exe"
	"C:\\WINDOWS\\System32"
	"C:\\WINDOWS\\System32"
	"\"	"
	" _?="
	"Au_.exe"
	"ADVAPI32.dll"
	"OpenProcessToken"
	"LookupPrivilegeValueA"
	"AdjustTokenPrivileges"
	"SeShutdownPrivilege"

sub_4026FA(6d82):
	KERNEL32.lstrcat
	KERNEL32.GlobalAlloc
	KERNEL32.GlobalFree
	KERNEL32.WriteFile
	KERNEL32.CloseHandle
	KERNEL32.DeleteFileA

	"C:\\WINDOWS\\System32\\vMW03a"
	"C:\\WINDOWS\\System32"
	"C:\\WINDOWS\\System32\\vMW03a"
	"C:\\WINDOWS\\System32\\vMW03a"
	"C:\\WINDOWS\\System32\\vMW03a"

sub_402EBD(7245):
	KERNEL32.GetTickCount
	KERNEL32.MulDiv
	USER32.wsprintfA
	KERNEL32.WriteFile

	"... %d%%"

sub_405263(7956):
	KERNEL32.GetFileAttributesA
	KERNEL32.CreateProcessA
	KERNEL32.CloseHandle

sub_4038DB(7f44):
	USER32.SetWindowPos
	USER32.ShowWindow
	USER32.DestroyWindow
	USER32.SetWindowLongA
	USER32.IsWindowEnabled
	USER32.GetDlgItem
	USER32.SendMessageA
	USER32.SetClassLongA
	USER32.EnableWindow
	KERNEL32.lstrlen
	USER32.SetWindowTextA
	USER32.CreateDialogParamA
	USER32.GetWindowRect
	USER32.ScreenToClient
	USER32.EndDialog

	"Name Setup"

sub_402084(8194):
	KERNEL32.FreeLibrary
	KERNEL32.SetErrorMode

sub_4044FB(88c6):
	USER32.SendMessageA

sub_403E2A(8a0b):
	USER32.GetWindowLongA
	USER32.GetSysColor
	GDI32.SetTextColor
	GDI32.SetBkMode
	GDI32.SetBkColor
	GDI32.DeleteObject
	GDI32.CreateBrushIndirect

sub_402ADA(8e3b):
	ADVAPI32.RegOpenKeyExA
	ADVAPI32.RegEnumKeyA
	ADVAPI32.RegCloseKey
	ADVAPI32.RegDeleteKeyA

sub_404561(952f):
	"%u.%u%s%s"

sub_402B76(96fb):
	ADVAPI32.RegOpenKeyExA

sub_402C37(9a2c):
	KERNEL32.GetTickCount
	KERNEL32.GetModuleFileNameA
	KERNEL32.GetFileSize
	USER32.CreateDialogParamA
	USER32.DestroyWindow
	KERNEL32.GlobalAlloc
	KERNEL32.GlobalFree
	KERNEL32.SetFilePointer

	"C:\\m_unpacker"
	"Error launching installer"
	"verifying installer: %d%%"
	"The installer you are trying to use is "...

sub_403ED7(a485):
	KERNEL32.lstrcpyn
	KERNEL32.lstrlen

sub_405CB0(a49e):
	KERNEL32.SetErrorMode
	KERNEL32.FindFirstFileA
	KERNEL32.FindClose

sub_403DC3(a5a9):
	USER32.SetDlgItemTextA

sub_402028(b68f):
	KERNEL32.GetProcAddress

sub_402034(b7bb):
	KERNEL32.WaitForSingleObject

sub_4028A8(c486):
	USER32.SendMessageA
	USER32.InvalidateRect

sub_405723(d07f):
	KERNEL32.CloseHandle
	KERNEL32.GetShortPathNameA
	USER32.wsprintfA
	KERNEL32.GetWindowsDirectoryA
	KERNEL32.lstrcat
	KERNEL32.CreateFileA
	KERNEL32.GetFileSize
	KERNEL32.GlobalAlloc
	KERNEL32.ReadFile
	KERNEL32.SetFilePointer
	KERNEL32.WriteFile
	KERNEL32.GlobalFree

	"MoveFileExA"
	"KERNEL32.dll"
	"%s=%s\r\n"
	"\\wininit.ini"
	"[Rename]\r\n"
	"[Rename]\r\n"
	"\n["

sub_405640(d152):
	KERNEL32.lstrlen
	KERNEL32.lstrcmpi
	USER32.CharNextA

sub_401439(dcaa):
	USER32.PostQuitMessage
	KERNEL32.Sleep
	USER32.SetForegroundWindow
	USER32.ShowWindow
	KERNEL32.SetFileAttributesA
	KERNEL32.CreateDirectoryA
	NTDLL.RtlGetLastWin32Error
	KERNEL32.GetFileAttributesA
	KERNEL32.SetCurrentDirectoryA
	KERNEL32.lstrlen
	KERNEL32.lstrcat
	KERNEL32.MoveFileA
	KERNEL32.GetFullPathNameA
	KERNEL32.GetShortPathNameA
	KERNEL32.SearchPathA
	KERNEL32.CompareFileTime
	KERNEL32.SetFileTime
	KERNEL32.CloseHandle
	KERNEL32.lstrcmpi
	KERNEL32.lstrcmp
	KERNEL32.GetEnvironmentVariableA
	KERNEL32.ExpandEnvironmentStringsA
	USER32.wsprintfA
	KERNEL32.GlobalFree
	KERNEL32.GlobalAlloc
	USER32.SendMessageTimeoutA
	USER32.SendMessageA
	USER32.FindWindowExA
	USER32.IsWindow
	USER32.GetDlgItem
	USER32.SetWindowLongA
	USER32.GetClientRect
	USER32.LoadImageA
	GDI32.DeleteObject
	USER32.GetDC
	GDI32.GetDeviceCaps
	KERNEL32.MulDiv
	GDI32.CreateFontIndirectA
	USER32.EnableWindow

	"C:\\WINDOWS\\System32\\vMW03a"
	"C:\\WINDOWS\\System32\\vMW03a"
	"->"
	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...
	"C:\\WINDOWS\\System32\\vMW03a"
	"C:\\WINDOWS\\System32\\vMW03a"
	"C:\\WINDOWS\\System32\\vMW03a"
	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...
	"%s %s"
	"C:\\WINDOWS\\System32\\vMW03a"

sub_4056DB(e20a):
	KERNEL32.GetTickCount
	KERNEL32.GetTempFileNameA

sub_404CBD(ea5f):
	USER32.IsWindowVisible
	USER32.CallWindowProcA

sub_401E9C(efa5):
	"C:\\WINDOWS\\System32\\vMW03a"

sub_4020D8(f1a7):
	KERNEL32.MultiByteToWideChar

	"C:\\WINDOWS\\System32\\vMW03a"

sub_40557B(f26e):
	USER32.CharNextA

sub_40351D(f636):
	KERNEL32.CloseHandle

sub_40380E(fbe8):
	USER32.SetWindowTextA

	"1033"
	"Name Setup"

sub_4059FD(fcd1):
	KERNEL32.GetSystemDirectoryA
	KERNEL32.GetWindowsDirectoryA
	KERNEL32.lstrcat
	KERNEL32.lstrlen

	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...
	"\\Microsoft\\Internet Explorer\\Quick Laun"...
	"CommonFilesDir"
	"Software\\Microsoft\\Windows\\CurrentVersi"...
	"ProgramFilesDir"
	"Software\\Microsoft\\Windows\\CurrentVersi"...
	"C:\\WINDOWS\\System32\\vMW03a\\vMW03a1066.e"...