sub_31602058(3338):
	"GET"
	"HTTP/1.1 200 OK\r\nContent-Type: applicat"...
	"Content-Length: %u\r\n\r\n"
	"HTTP/1.1 200 OK\r\n\r\n\r\n"

sub_316015C7(3495):
	"fxdvvlurclgrua"
	"http://%s/index.php?id=%s&scn=%d&inf=%d"...
	"http://%s"
	"Mozilla/4.0 (compatible; MSIE	6.0; Wind"...

sub_31601D42(4891):
	"advapi32"
	"OpenProcessToken"
	"LookupPrivilegeValueA"
	"AdjustTokenPrivileges"
	"SeDebugPrivilege"

sub_31601316(48f8):
	"ABCDEFGHIJKLMNOPQRSTUVWXYZ"
	"abcdefghijklmnopqrstuvwxyz"

sub_3160219E(52a4):
	"SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...

sub_316011A0(531a):
	"Mozilla/4.0 (compatible; MSIE	6.0; Wind"...

sub_31602A60(70bf):
	"SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...

sub_316029B2(7c2b):
	"Windows	Security Manager"
	"Disk Defragmenter"
	"System Restore Service"
	"Bot Loader"
	"WinUpdate"
	"Windows	Update Service"
	"avserve.exe"
	"avserve2.exeUpdate Service"
	"MS Config v13"
	"SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...

sub_31601DCA(7e12):
	"kernel32"
	"VirtualAllocEx"
	"CreateRemoteThread"
	"uterm18"

sub_31602B2C(99c3):
	"Software\\Microsoft\\Wireless"
	"ID"
	"fxdvvlurclgrua"
	"ID"
	"fxdvvlurclgrua"
	"SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
	"1"
	"Client"
	"Client"

sub_316026DE(a67f):
	"http://%s:%d/x.exe"

sub_31601422(df51):
	"zer0"

sub_3160238C(fdc9):
	"u10x"
	"u11x"
	"u12x"
	"u13x"
	"u14x"
	"u15x"
	"u16x"
	"u17x"
	"u8"
	"u9"
	"u10"
	"u11"
	"u12"
	"u13"
	"u13i"
	"u14"
	"u15"
	"u16"
	"u17"
	"u18"
	"u18x"
	"ws2_32"
	"wininet"
	"msvcrt"
	"advapi32"
	"user32"
	"uterm18"