==============================================================================================================================================
OFFSET    00 01 02 03 04 05 06 07  08 09 0A 0B 0C 0D 0E 0F  10 11 12 13 14 15 16 17  18 19 1A 1B 1C 1D 1E 1F
----------------------------------------------------------------------------------------------------------------------------------------------
00000000  EC 00 01 00 00 00 00 00  00 00 00 00 40 05 01 00  A0 02 01 00 B4 00 01 00  00 00 00 00 00 00 00 00  ∞.☺.........@♣☺.á☻☺.┤.☺.........
00000020  32 06 01 00 68 02 01 00  4C 02 01 00 00 00 00 00  00 00 00 00 4E 06 01 00  00 04 01 00 1C 02 01 00  2♠☺.h☻☺.L☻☺.........N♠☺..♦☺.∟☻☺.
00000040  00 00 00 00 00 00 00 00  5A 06 01 00 D0 03 01 00  E4 00 01 00 00 00 00 00  00 00 00 00 68 06 01 00  ........Z♠☺.╨♥☺.Σ.☺.........h♠☺.
00000060  98 02 01 00 E0 01 01 00  00 00 00 00 00 00 00 00  76 06 01 00 94 03 01 00  54 02 01 00 00 00 00 00  ÿ☻☺.α☺☺.........v♠☺.ö♥☺.T☻☺.....
00000080  00 00 00 00 84 06 01 00  08 04 01 00 00 00 00 00  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  ....ä♠☺.◘♦☺.....................
000000A0  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  00 00 00 00 CC 05 01 00  20 06 01 00 08 06 01 00  ....................╠♣☺. ♠☺.◘♠☺.
000000C0  F8 05 01 00 E0 05 01 00  4E 05 01 00 BC 05 01 00  AC 05 01 00 98 05 01 00  8A 05 01 00 6C 05 01 00  °♣☺.α♣☺.N♣☺.╝♣☺.¼♣☺.ÿ♣☺.è♣☺.l♣☺.
000000E0  00 00 00 00 79 01 00 80  00 00 00 00 1C 05 01 00  2A 05 01 00 E0 04 01 00  C8 04 01 00 BA 04 01 00  ....y☺.Ç....∟♣☺.*♣☺.α♦☺.╚♦☺.║♦☺.
00000100  02 05 01 00 AE 04 01 00  9C 04 01 00 8C 04 01 00  7C 04 01 00 6E 04 01 00  5E 04 01 00 4E 04 01 00  ☻♣☺.«♦☺.£♦☺.î♦☺.|♦☺.n♦☺.^♦☺.N♦☺.
00000120  38 04 01 00 28 04 01 00  82 09 01 00 68 09 01 00  56 09 01 00 44 09 01 00  30 09 01 00 20 09 01 00  8♦☺.(♦☺.é○☺.h○☺.V○☺.D○☺.0○☺. ○☺.
00000140  10 09 01 00 FE 08 01 00  EC 08 01 00 DA 08 01 00  C8 08 01 00 B6 08 01 00  A8 08 01 00 98 08 01 00  ►○☺.■◘☺.∞◘☺.┌◘☺.╚◘☺.╢◘☺.¿◘☺.ÿ◘☺.
00000160  32 08 01 00 18 08 01 00  92 06 01 00 9E 06 01 00  CC 07 01 00 B8 07 01 00  FE 07 01 00 EC 04 01 00  2◘☺.↑◘☺.Æ♠☺.₧♠☺.╠•☺.╕•☺.■•☺.∞♦☺.
00000180  AA 06 01 00 E8 07 01 00  1C 04 01 00 A4 07 01 00  C0 06 01 00 78 07 01 00  6A 07 01 00 86 07 01 00  ¬♠☺.Φ•☺.∟♦☺.ñ•☺.└♠☺.x•☺.j•☺.å•☺.
000001A0  4A 07 01 00 86 08 01 00  7A 08 01 00 70 08 01 00  64 08 01 00 4A 08 01 00  E2 06 01 00 94 07 01 00  J•☺.å◘☺.z◘☺.p◘☺.d◘☺.J◘☺.Γ♠☺.ö•☺.
000001C0  3C 07 01 00 5A 07 01 00  CC 06 01 00 FC 06 01 00  0C 07 01 00 1C 07 01 00  2E 07 01 00 00 00 00 00  <•☺.Z•☺.╠♠☺.ⁿ♠☺.♀•☺.∟•☺..•☺.....
000001E0  F5 03 00 80 EB 03 00 80  88 04 00 80 EE 03 00 80  EC 03 00 80 EA 03 00 80  F7 03 00 80 21 04 00 80  ⌡♥.Çδ♥.Çê♦.Çε♥.Ç∞♥.ÇΩ♥.Ç≈♥.Ç!♦.Ç
00000200  EF 03 00 80 17 04 00 80  FE 03 00 80 F0 03 00 80  04 04 00 80 ED 03 00 80  00 00 00 00 6A 00 00 80  ∩♥.Ç↨♦.Ç■♥.Ç≡♥.Ç♦♦.Çφ♥.Ç....j..Ç
00000220  6D 00 00 80 7B 00 00 80  78 00 00 80 7F 00 00 80  79 00 00 80 6C 00 00 80  7D 00 00 80 68 00 00 80  m..Ç{..Çx..Ç⌂..Çy..Çl..Ç}..Çh..Ç
00000240  66 00 00 80 74 00 00 80  00 00 00 00 40 06 01 00  00 00 00 00 55 00 00 80  47 00 00 80 4C 00 00 80  f..Çt..Ç....@♠☺.....U..ÇG..ÇL..Ç
00000260  40 00 00 80 00 00 00 00  CC 05 01 00 20 06 01 00  08 06 01 00 F8 05 01 00  E0 05 01 00 4E 05 01 00  @..Ç....╠♣☺. ♠☺.◘♠☺.°♣☺.α♣☺.N♣☺.
00000280  BC 05 01 00 AC 05 01 00  98 05 01 00 8A 05 01 00  6C 05 01 00 00 00 00 00  79 01 00 80 00 00 00 00  ╝♣☺.¼♣☺.ÿ♣☺.è♣☺.l♣☺.....y☺.Ç....
000002A0  1C 05 01 00 2A 05 01 00  E0 04 01 00 C8 04 01 00  BA 04 01 00 02 05 01 00  AE 04 01 00 9C 04 01 00  ∟♣☺.*♣☺.α♦☺.╚♦☺.║♦☺.☻♣☺.«♦☺.£♦☺.
000002C0  8C 04 01 00 7C 04 01 00  6E 04 01 00 5E 04 01 00  4E 04 01 00 38 04 01 00  28 04 01 00 82 09 01 00  î♦☺.|♦☺.n♦☺.^♦☺.N♦☺.8♦☺.(♦☺.é○☺.
000002E0  68 09 01 00 56 09 01 00  44 09 01 00 30 09 01 00  20 09 01 00 10 09 01 00  FE 08 01 00 EC 08 01 00  h○☺.V○☺.D○☺.0○☺. ○☺.►○☺.■◘☺.∞◘☺.
00000300  DA 08 01 00 C8 08 01 00  B6 08 01 00 A8 08 01 00  98 08 01 00 32 08 01 00  18 08 01 00 92 06 01 00  ┌◘☺.╚◘☺.╢◘☺.¿◘☺.ÿ◘☺.2◘☺.↑◘☺.Æ♠☺.
00000320  9E 06 01 00 CC 07 01 00  B8 07 01 00 FE 07 01 00  EC 04 01 00 AA 06 01 00  E8 07 01 00 1C 04 01 00  ₧♠☺.╠•☺.╕•☺.■•☺.∞♦☺.¬♠☺.Φ•☺.∟♦☺.
00000340  A4 07 01 00 C0 06 01 00  78 07 01 00 6A 07 01 00  86 07 01 00 4A 07 01 00  86 08 01 00 7A 08 01 00  ñ•☺.└♠☺.x•☺.j•☺.å•☺.J•☺.å◘☺.z◘☺.
00000360  70 08 01 00 64 08 01 00  4A 08 01 00 E2 06 01 00  94 07 01 00 3C 07 01 00  5A 07 01 00 CC 06 01 00  p◘☺.d◘☺.J◘☺.Γ♠☺.ö•☺.<•☺.Z•☺.╠♠☺.
00000380  FC 06 01 00 0C 07 01 00  1C 07 01 00 2E 07 01 00  00 00 00 00 F5 03 00 80  EB 03 00 80 88 04 00 80  ⁿ♠☺.♀•☺.∟•☺..•☺.....⌡♥.Çδ♥.Çê♦.Ç
000003A0  EE 03 00 80 EC 03 00 80  EA 03 00 80 F7 03 00 80  21 04 00 80 EF 03 00 80  17 04 00 80 FE 03 00 80  ε♥.Ç∞♥.ÇΩ♥.Ç≈♥.Ç!♦.Ç∩♥.Ç↨♦.Ç■♥.Ç
000003C0  F0 03 00 80 04 04 00 80  ED 03 00 80 00 00 00 00  6A 00 00 80 6D 00 00 80  7B 00 00 80 78 00 00 80  ≡♥.Ç♦♦.Çφ♥.Ç....j..Çm..Ç{..Çx..Ç
000003E0  7F 00 00 80 79 00 00 80  6C 00 00 80 7D 00 00 80  68 00 00 80 66 00 00 80  74 00 00 80 00 00 00 00  ⌂..Çy..Çl..Ç}..Çh..Çf..Çt..Ç....
00000400  40 06 01 00 00 00 00 00  55 00 00 80 47 00 00 80  4C 00 00 80 40 00 00 80  00 00 00 00 9A 01 4C 6F  @♠☺.....U..ÇG..ÇL..Ç@..Ç....Ü☺Lo
00000420  63 61 6C 46 72 65 65 00  F4 00 47 65 74 4C 61 73  74 45 72 72 6F 72 00 00  6A 02 57 61 69 74 46 6F  calFree.⌠.GetLastError..j☻WaitFo
00000440  72 53 69 6E 67 6C 65 4F  62 6A 65 63 74 00 2F 00  43 72 65 61 74 65 45 76  65 6E 74 57 00 00 39 00  rSingleObject./.CreateEventW..9.
00000460  43 72 65 61 74 65 4D 75  74 65 78 57 00 00 18 00  43 6C 6F 73 65 48 61 6E  64 6C 65 00 DD 01 52 65  CreateMutexW..↑.CloseHandle.▌☺Re
00000480  6C 65 61 73 65 4D 75 74  65 78 00 00 43 00 43 72  65 61 74 65 54 68 72 65  61 64 00 00 94 00 46 6F  leaseMutex..C.CreateThread..ö.Fo
000004A0  72 6D 61 74 4D 65 73 73  61 67 65 57 00 00 14 02  53 65 74 45 76 65 6E 74  00 00 34 00 43 72 65 61  rmatMessageW..¶☻SetEvent..4.Crea
000004C0  74 65 46 69 6C 65 57 00  7E 01 49 6E 74 65 72 6C  6F 63 6B 65 64 49 6E 63  72 65 6D 65 6E 74 00 00  teFileW.~☺InterlockedIncrement..
000004E0  7B 02 57 72 69 74 65 46  69 6C 65 00 7C 01 49 6E  74 65 72 6C 6F 63 6B 65  64 45 78 63 68 61 6E 67  {☻WriteFile.|☺InterlockedExchang
00000500  65 00 68 02 57 61 69 74  46 6F 72 4D 75 6C 74 69  70 6C 65 4F 62 6A 65 63  74 73 00 00 A8 01 4D 6F  e.h☻WaitForMultipleObjects..¿☺Mo
00000520  76 65 46 69 6C 65 45 78  57 00 FD 00 47 65 74 4D  6F 64 75 6C 65 46 69 6C  65 4E 61 6D 65 57 00 00  veFileExW.².GetModuleFileNameW..
00000540  4B 45 52 4E 45 4C 33 32  2E 64 6C 6C 00 00 68 01  53 74 61 72 74 53 65 72  76 69 63 65 43 74 72 6C  KERNEL32.dll..h☺StartServiceCtrl
00000560  44 69 73 70 61 74 63 68  65 72 57 00 49 01 52 65  67 69 73 74 65 72 53 65  72 76 69 63 65 43 74 72  DispatcherW.I☺RegisterServiceCtr
00000580  6C 48 61 6E 64 6C 65 72  57 00 17 01 52 65 67 43  6C 6F 73 65 4B 65 79 00  37 01 52 65 67 51 75 65  lHandlerW.↨☺RegCloseKey.7☺RegQue
000005A0  72 79 56 61 6C 75 65 45  78 57 00 00 24 01 52 65  67 45 6E 75 6D 4B 65 79  45 78 57 00 2F 01 52 65  ryValueExW..$☺RegEnumKeyExW./☺Re
000005C0  67 4F 70 65 6E 4B 65 79  45 78 57 00 63 01 53 65  74 53 65 72 76 69 63 65  53 74 61 74 75 73 00 00  gOpenKeyExW.c☺SetServiceStatus..
000005E0  4C 00 44 65 72 65 67 69  73 74 65 72 45 76 65 6E  74 53 6F 75 72 63 65 00  4D 01 52 65 70 6F 72 74  L.DeregisterEventSource.M☺Report
00000600  45 76 65 6E 74 57 00 00  47 01 52 65 67 69 73 74  65 72 45 76 65 6E 74 53  6F 75 72 63 65 57 00 00  EventW..G☺RegisterEventSourceW..
00000620  42 01 52 65 67 53 65 74  56 61 6C 75 65 45 78 57  00 00 41 44 56 41 50 49  33 32 2E 64 6C 6C 00 00  B☺RegSetValueExW..ADVAPI32.dll..
00000640  9A 01 4D 65 73 73 61 67  65 42 6F 78 57 00 55 53  45 52 33 32 2E 64 6C 6C  00 00 4E 57 53 49 50 58  Ü☺MessageBoxW.USER32.dll..NWSIPX
00000660  33 32 2E 64 6C 6C 00 00  43 41 4C 57 49 4E 33 32  2E 44 4C 4C 00 00 4E 45  54 57 49 4E 33 32 2E 44  32.dll..CALWIN32.DLL..NETWIN32.D
00000680  4C 4C 00 00 70 72 74 77  69 6E 33 32 2E 64 6C 6C  00 00 6E 01 48 65 61 70  46 72 65 65 00 00 68 01  LL..prtwin32.dll..n☺HeapFree..h☺
000006A0  48 65 61 70 41 6C 6C 6F  63 00 6E 02 57 69 64 65  43 68 61 72 54 6F 4D 75  6C 74 69 42 79 74 65 00  HeapAlloc.n☻WideCharToMultiByte.
000006C0  E5 01 52 74 6C 55 6E 77  69 6E 64 00 AB 01 4D 75  6C 74 69 42 79 74 65 54  6F 57 69 64 65 43 68 61  σ☺RtlUnwind.½☺MultiByteToWideCha
000006E0  72 00 48 01 47 65 74 54  69 6D 65 5A 6F 6E 65 49  6E 66 6F 72 6D 61 74 69  6F 6E 00 00 35 01 47 65  r.H☺GetTimeZoneInformation..5☺Ge
00000700  74 53 79 73 74 65 6D 54  69 6D 65 00 F5 00 47 65  74 4C 6F 63 61 6C 54 69  6D 65 00 00 AA 00 47 65  tSystemTime.⌡.GetLocalTime..¬.Ge
00000720  74 43 6F 6D 6D 61 6E 64  4C 69 6E 65 41 00 4C 01  47 65 74 56 65 72 73 69  6F 6E 00 00 6B 00 45 78  tCommandLineA.L☺GetVersion..k.Ex
00000740  69 74 50 72 6F 63 65 73  73 00 8D 01 4C 43 4D 61  70 53 74 72 69 6E 67 41  00 00 8E 01 4C 43 4D 61  itProcess.ì☺LCMapStringA..Ä☺LCMa
00000760  70 53 74 72 69 6E 67 57  00 00 6C 01 48 65 61 70  44 65 73 74 72 6F 79 00  6A 01 48 65 61 70 43 72  pStringW..l☺HeapDestroy.j☺HeapCr
00000780  65 61 74 65 00 00 5E 02  56 69 72 74 75 61 6C 46  72 65 65 00 5B 02 56 69  72 74 75 61 6C 41 6C 6C  eate..^☻VirtualFree.[☻VirtualAll
000007A0  6F 63 00 00 46 02 54 65  72 6D 69 6E 61 74 65 50  72 6F 63 65 73 73 00 00  D3 00 47 65 74 43 75 72  oc..F☻TerminateProcess..╙.GetCur
000007C0  72 65 6E 74 50 72 6F 63  65 73 73 00 50 02 55 6E  68 61 6E 64 6C 65 64 45  78 63 65 70 74 69 6F 6E  rentProcess.P☻UnhandledException
000007E0  46 69 6C 74 65 72 00 00  FC 00 47 65 74 4D 6F 64  75 6C 65 46 69 6C 65 4E  61 6D 65 41 00 00 96 00  Filter..ⁿ.GetModuleFileNameA..û.
00000800  46 72 65 65 45 6E 76 69  72 6F 6E 6D 65 6E 74 53  74 72 69 6E 67 73 41 00  97 00 46 72 65 65 45 6E  FreeEnvironmentStringsA.ù.FreeEn
00000820  76 69 72 6F 6E 6D 65 6E  74 53 74 72 69 6E 67 73  57 00 E1 00 47 65 74 45  6E 76 69 72 6F 6E 6D 65  vironmentStringsW.ß.GetEnvironme
00000840  6E 74 53 74 72 69 6E 67  73 00 E3 00 47 65 74 45  6E 76 69 72 6F 6E 6D 65  6E 74 53 74 72 69 6E 67  ntStrings.π.GetEnvironmentString
00000860  73 57 00 00 A3 00 47 65  74 43 50 49 6E 66 6F 00  9D 00 47 65 74 41 43 50  00 00 09 01 47 65 74 4F  sW..ú.GetCPInfo.¥.GetACP..○☺GetO
00000880  45 4D 43 50 00 00 1B 02  53 65 74 48 61 6E 64 6C  65 43 6F 75 6E 74 00 00  2A 01 47 65 74 53 74 64  EMCP..←☻SetHandleCount..*☺GetStd
000008A0  48 61 6E 64 6C 65 00 00  EF 00 47 65 74 46 69 6C  65 54 79 70 65 00 28 01  47 65 74 53 74 61 72 74  Handle..∩.GetFileType.(☺GetStart
000008C0  75 70 49 6E 66 6F 41 00  2B 01 47 65 74 53 74 72  69 6E 67 54 79 70 65 41  00 00 2E 01 47 65 74 53  upInfoA.+☺GetStringTypeA...☺GetS
000008E0  74 72 69 6E 67 54 79 70  65 57 00 00 19 02 53 65  74 46 69 6C 65 50 6F 69  6E 74 65 72 00 00 16 01  tringTypeW..↓☻SetFilePointer..▬☺
00000900  47 65 74 50 72 6F 63 41  64 64 72 65 73 73 00 00  90 01 4C 6F 61 64 4C 69  62 72 61 72 79 41 00 00  GetProcAddress..É☺LoadLibraryA..
00000920  29 02 53 65 74 53 74 64  48 61 6E 64 6C 65 00 00  8E 00 46 6C 75 73 68 46  69 6C 65 42 75 66 66 65  )☻SetStdHandle..Ä.FlushFileBuffe
00000940  72 73 00 00 1E 00 43 6F  6D 70 61 72 65 53 74 72  69 6E 67 41 00 00 1F 00  43 6F 6D 70 61 72 65 53  rs..▲.CompareStringA..▼.CompareS
00000960  74 72 69 6E 67 57 00 00  11 02 53 65 74 45 6E 76  69 72 6F 6E 6D 65 6E 74  56 61 72 69 61 62 6C 65  tringW..◄☻SetEnvironmentVariable
00000980  41 00 71 01 48 65 61 70  52 65 41 6C 6C 6F 63 00  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  A.q☺HeapReAlloc.................
000009A0  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  ................................
000009C0  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  ................................
000009E0  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  ................................