sub_401583(00ab):
	USER32.wsprintfA
	WS2_32.htons
	WS2_32.socket
	WS2_32.connect
	WS2_32.send
	WS2_32.recv
	KERNEL32.Sleep
	WS2_32.closesocket

	"\\\\%s\\ipc$"

sub_40126C(04e2):
	WS2_32.htons
	WS2_32.socket
	WS2_32.connect
	KERNEL32.lstrcpy
	USER32.wsprintfA
	WS2_32.send
	KERNEL32.Sleep
	WS2_32.closesocket

sub_403BD6(06bc):
	KERNEL32.GetCPInfo

sub_401F4B(0801):
	KERNEL32.GetCurrentThread
	KERNEL32.SetThreadPriority
	WININET.InternetGetConnectedState
	KERNEL32.Sleep
	WS2_32.inet_addr
	USER32.wsprintfA
	KERNEL32.GetModuleFileNameA
	KERNEL32.WinExec

	"%i.%i.%i.%i"
	" "

sub_40292E(0828):
	KERNEL32.GetVersion
	KERNEL32.GetCommandLineA
	KERNEL32.GetStartupInfoA
	KERNEL32.GetModuleHandleA

sub_40137D(0975):
	KERNEL32.lstrcpy
	USER32.wsprintfA
	WS2_32.gethostbyname
	WS2_32.socket
	WS2_32.htons
	WS2_32.connect
	WS2_32.send
	WS2_32.recv
	WS2_32.closesocket

	"\\\\%s\\ipc$"
	"%s%c"

sub_404663(0e35):
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

	"user32.dll"
	"MessageBoxA"
	"GetActiveWindow"
	"GetLastActivePopup"

sub_43C507(0e54):
	KERNEL32.InitializeCriticalSection
	NTDLL.RtlEnterCriticalSection
	NTDLL.RtlLeaveCriticalSection

sub_43969E(1354):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

	"\n"

sub_401B1B(13d4):
	IPHLPAPI.IcmpCreateFile
	IPHLPAPI.IcmpSendEcho
	IPHLPAPI.IcmpCloseHandle

sub_402F48(18d1):
	KERNEL32.GetModuleFileNameA

	"C:\\m_unpacker\\packed.exe"

sub_43EBEC(272d):
	USER32.DefWindowProcA

sub_4010D2(2796):
	WS2_32.gethostname
	WS2_32.gethostbyname
	WS2_32.inet_ntoa
	KERNEL32.lstrcpy

	"127.0.0.1"

sub_440F46(281f):
	KERNEL32.CreateFileA
	KERNEL32.GetFileSize
	KERNEL32.LocalAlloc
	KERNEL32.ReadFile
	KERNEL32.CloseHandle
	KERNEL32.WriteFile
	KERNEL32.LocalFree
	KERNEL32.CopyFileA
	KERNEL32.DeleteFileA

sub_401153(2977):
	WS2_32.htons
	WS2_32.socket
	WS2_32.connect
	WS2_32.closesocket

sub_401210(2e64):
	KERNEL32._lcreat
	KERNEL32._llseek
	KERNEL32._hwrite
	KERNEL32._lclose

	"c:\\ftplog.txt"
	"\r\n"

sub_4396F6(2eb2):
	KERNEL32.OpenMutexA
	KERNEL32.CloseHandle

sub_402CB3(2f2e):
	KERNEL32._hread
	KERNEL32.UnhandledExceptionFilter

sub_44243E(3114):
	KERNEL32.CreateFileA
	KERNEL32.SetFilePointer
	KERNEL32.ReadFile
	KERNEL32.WriteFile
	KERNEL32.CloseHandle

sub_43B3CC(321f):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

sub_4394DD(321f):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

sub_44047F(3436):
	KERNEL32.CreateFileA
	KERNEL32.GetFileSize
	KERNEL32.LocalAlloc
	KERNEL32.ReadFile
	KERNEL32.CloseHandle

sub_43B4B3(3699):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

sub_401B59(38d2):
	WS2_32.send
	WS2_32.recv
	USER32.wsprintfA
	WS2_32.htons
	WS2_32.socket
	WS2_32.connect
	WS2_32.closesocket
	KERNEL32.GetModuleFileNameA
	KERNEL32._lopen
	KERNEL32._hread
	KERNEL32._lclose

	"USER"
	"PASS"
	"PORT"
	"%i.%i.%i.%i"
	"RETR"
	"QUIT"

sub_440B97(3ac8):
	KERNEL32.GetSystemDirectoryA
	KERNEL32.CreateFileA
	KERNEL32.SetFilePointer
	KERNEL32.ReadFile
	KERNEL32.CloseHandle

sub_43F3B6(3b0d):
	KERNEL32.CreateFileA
	KERNEL32.SetFilePointer
	KERNEL32.WriteFile
	KERNEL32.LocalAlloc
	KERNEL32.CloseHandle
	KERNEL32.LocalFree

sub_4020D9(3ff3):
	KERNEL32.GetTickCount
	KERNEL32.CreateMutexA
	NTDLL.RtlGetLastWin32Error
	KERNEL32.CreateThread
	ADVAPI32.AbortSystemShutdownA
	KERNEL32.Sleep
	USER32.MessageBoxA

	"SkynetNotice"
	"SkyNet"
	"1. Your computer is affected by the MS0"...

sub_43F6E3(4237):
	USER32.GetWindow
	USER32.GetClassNameA

sub_440D4B(42f1):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

sub_43D058(456d):
	KERNEL32.MultiByteToWideChar

	"\a"
	","
	"_"
	"\t"

sub_43D357(4eaf):
	KERNEL32.FindClose
	KERNEL32.ExitThread
	KERNEL32.GetDriveTypeA
	KERNEL32.FindFirstFileA
	KERNEL32.FindNextFileA

sub_43B982(5128):
	KERNEL32.GetSystemDirectoryA
	KERNEL32.CreateFileA
	KERNEL32.WriteFile
	KERNEL32.CloseHandle

sub_4011D5(518e):
	WS2_32.inet_addr
	WS2_32.gethostbyname

sub_4399CB(5427):
	KERNEL32.GetExitCodeThread
	KERNEL32.CloseHandle
	KERNEL32.GetDriveTypeA
	KERNEL32.SetErrorMode
	KERNEL32.GetDiskFreeSpaceA
	KERNEL32.CreateThread

sub_4047EE(547a):
	KERNEL32.LCMapStringW
	KERNEL32.LCMapStringA
	KERNEL32.MultiByteToWideChar
	KERNEL32.WideCharToMultiByte

sub_403472(55e5):
	KERNEL32.HeapCreate
	KERNEL32.HeapDestroy

sub_43A105(58df):
	KERNEL32.GetProcAddress

sub_403E83(597c):
	KERNEL32.VirtualFree
	NTDLL.RtlFreeHeap

sub_403D77(5c3f):
	NTDLL.RtlFreeHeap

sub_438324(5d22):
	KERNEL32.VirtualFree

sub_4393B1(5f0d):
	USER32.FindWindowExA
	USER32.SendMessageA

sub_404568(64eb):
	KERNEL32.VirtualAlloc

sub_43F189(6cb1):
	KERNEL32.GetVersionExA
	KERNEL32.GetVolumeInformationA
	KERNEL32.GetLocaleInfoA

	"\t"

sub_43EBBF(7286):
	KERNEL32.InterlockedDecrement

sub_43DB8B(734c):
	USER32.FindWindowExA
	USER32.ShowWindow
	USER32.GetWindowRect
	KERNEL32.GetModuleHandleA
	USER32.CreateWindowExA
	GDI32.CreateFontA
	USER32.SendMessageA
	USER32.GetWindowLongA
	USER32.SetWindowLongA
	USER32.SetFocus

	"\t"
	"\b"
	"\nM"

sub_43A5C3(76c3):
	KERNEL32.GetProcAddress

	"CreateThread"
	"EnterCriticalSection"
	"InitializeCriticalSection"
	"LeaveCriticalSection"

sub_43D9B8(7a76):
	KERNEL32.LocalFree

sub_401EC0(80c4):
	WS2_32.socket
	WS2_32.htons
	WS2_32.bind
	WS2_32.listen
	WS2_32.closesocket
	WS2_32.accept
	KERNEL32.CreateThread
	KERNEL32.Sleep

sub_43F767(80e5):
	KERNEL32.InitializeCriticalSection
	NTDLL.RtlEnterCriticalSection
	NTDLL.RtlLeaveCriticalSection

sub_40380C(81be):
	KERNEL32.GetStringTypeW
	KERNEL32.GetStringTypeA
	KERNEL32.MultiByteToWideChar

sub_401AED(82de):
	ADVAPI32.RegOpenKeyA
	ADVAPI32.RegDeleteValueA
	ADVAPI32.RegCloseKey

sub_4034B0(8af0):
	NTDLL.RtlUnwind

sub_43AF47(8e09):
	KERNEL32.CreateFileA
	KERNEL32.ReadFile
	KERNEL32.WriteFile
	KERNEL32.CloseHandle
	KERNEL32.WinExec
	KERNEL32.DeleteFileA

sub_43C26E(900e):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

	"\v"

sub_439DDE(9252):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

sub_44006A(9288):
	KERNEL32.LocalFree

sub_43BA5C(9977):
	KERNEL32.ExitThread

sub_43C2C0(9d81):
	NTDLL.RtlZeroMemory

sub_401028(a0f6):
	WS2_32.WSAStartup

sub_4381C3(a771):
	"wr"
	"wr"

sub_403997(a8e4):
	KERNEL32.GetOEMCP
	KERNEL32.GetCPInfo

sub_43C434(a9d4):
	KERNEL32.lstrlenW
	KERNEL32.WideCharToMultiByte

sub_401045(acd0):
	WS2_32.inet_addr

sub_4395A1(adf0):
	KERNEL32.InterlockedIncrement

sub_43EF4B(adf0):
	KERNEL32.InterlockedIncrement

sub_43C1AF(adf0):
	KERNEL32.InterlockedIncrement

sub_402A49(af5c):
	KERNEL32.ExitProcess

sub_43EF62(b93e):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

sub_43C3CE(bfa8):
	ADVAPI32.RegOpenKeyExA
	ADVAPI32.RegQueryValueExA
	ADVAPI32.RegCloseKey

sub_43F85A(c427):
	KERNEL32.GetSystemDirectoryA
	KERNEL32.GetVolumeInformationA

sub_44083E(c7c7):
	KERNEL32.CreateThread

sub_4032C7(c890):
	KERNEL32.GetStartupInfoA
	KERNEL32.GetFileType
	KERNEL32.GetStdHandle
	KERNEL32.LockResource

sub_4044B7(cbe8):
	NTDLL.RtlReAllocateHeap
	NTDLL.RtlAllocateHeap
	KERNEL32.VirtualAlloc
	NTDLL.RtlFreeHeap

sub_43C073(cd7d):
	KERNEL32.GetSystemTime

sub_439992(cf0d):
	USER32.EnumDesktopWindows

sub_43BD90(d25e):
	KERNEL32.CreateFileA
	KERNEL32.ReadFile
	KERNEL32.CloseHandle

sub_43C1C6(d685):
	KERNEL32.GetModuleHandleA
	KERNEL32.LoadLibraryA
	KERNEL32.GetProcAddress

sub_43EC0A(dbe2):
	KERNEL32.ExitThread
	KERNEL32.CreateMutexA
	KERNEL32.GetModuleHandleA
	USER32.LoadCursorA
	USER32.LoadIconA
	GDI32.GetStockObject
	USER32.RegisterClassA
	USER32.CreateWindowExA
	KERNEL32.CreateThread
	KERNEL32.CloseHandle
	USER32.TranslateMessage
	USER32.DispatchMessageA
	USER32.GetMessageA

sub_440EC1(dc6c):
	KERNEL32.InterlockedDecrement

sub_43F9F6(dcba):
	USER32.SetFocus
	USER32.GetWindowTextA
	USER32.MessageBoxA
	USER32.SetWindowTextA
	USER32.DestroyWindow
	USER32.ShowWindow
	USER32.CallWindowProcA

	"5"

sub_403195(dcdc):
	KERNEL32.GetEnvironmentStringsW
	KERNEL32.GetEnvironmentStrings
	KERNEL32.WideCharToMultiByte
	KERNEL32.FreeEnvironmentStringsW
	KERNEL32.FreeEnvironmentStringsA

sub_43D8DE(e176):
	KERNEL32.GetSystemDirectoryA
	KERNEL32.CreateFileA
	KERNEL32.SetFilePointer
	KERNEL32.WriteFile
	KERNEL32.CloseHandle

sub_43B912(e6f9):
	USER32.GetWindowTextA

sub_403E1A(e71f):
	NTDLL.RtlAllocateHeap

sub_402C00(e781):
	KERNEL32.GetCurrentProcess
	KERNEL32.TerminateProcess
	KERNEL32.ExitProcess

sub_439B7B(eb55):
	KERNEL32.GetSystemDirectoryA
	KERNEL32.CreateThread
	KERNEL32.CloseHandle

sub_43C5EA(f2c7):
	KERNEL32.GetTickCount

sub_43B622(f778):
	KERNEL32.GetTickCount

sub_43A0EE(f859):
	KERNEL32.VirtualAlloc

sub_43CE60(f864):
	KERNEL32.InterlockedDecrement

sub_40219B(f8d3):
	KERNEL32.GetModuleFileNameA
	KERNEL32.GetWindowsDirectoryA
	KERNEL32.CopyFileA
	ADVAPI32.RegOpenKeyA
	ADVAPI32.RegSetValueExA
	ADVAPI32.RegCloseKey

	"\\"
	"SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
	"ssgrate.exe"
	"drvsys.exe"
	"Drvddll_exe"

sub_4397A3(f907):
	ADVAPI32.GetUserNameA

sub_43BA75(faf8):
	KERNEL32.FindFirstFileA
	KERNEL32.CompareFileTime
	KERNEL32.FileTimeToSystemTime
	KERNEL32.FindNextFileA

sub_4036B9(fc50):
	KERNEL32.GetModuleFileNameA
	KERNEL32.GetStdHandle
	KERNEL32.WriteFile

	""
	"..."
	"Runtime Error!\n\nProgram: "
	"\n\n"
	"Microsoft Visual C++ Runtime Library"

sub_403DE4(fd6e):
	NTDLL.RtlAllocateHeap

sub_440DA6(fde4):
	KERNEL32.GetSystemDirectoryA
	KERNEL32.CreateFileA
	KERNEL32.ReadFile
	KERNEL32.CloseHandle