IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

GetUserNameA

RegCloseKey

RegQueryValueExA

RegOpenKeyExA

RegQueryValueExW

RegOpenKeyExW

RegEnumKeyExW

RegDeleteKeyW

RegSetValueExW

RegCreateKeyExW

RegSetValueExA

SetServiceStatus

DeregisterEventSource

RegNotifyChangeKeyValue

RegCreateKeyExA

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

AddAccessAllowedAce

InitializeAcl

GetLengthSid

RegisterEventSourceA

ReportEventA

RegDeleteValueW

RegOpenCurrentUser

RegQueryInfoKeyA

RegEnumValueW

OpenSCManagerA

OpenServiceA

StartServiceA

QueryServiceStatus

CloseServiceHandle

RegisterServiceCtrlHandlerA

RevertToSelf

LocalAlloc

LocalFree

FormatMessageA

ReadFile

WriteFile

SetConsoleMode

GetConsoleMode

CreateFileA

ExpandEnvironmentStringsA

QueryPerformanceCounter

GetSystemTimeAsFileTime

TerminateProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

DelayLoadFailureHook

GetComputerNameExA

WriteProcessMemory

GetCurrentThreadId

IsBadWritePtr

IsBadCodePtr

ResetEvent

SwitchToThread

HeapCreate

HeapAlloc

CreateFileMappingA

MapViewOfFile

GetProcessHeap

HeapDestroy

HeapFree

UnmapViewOfFile

VirtualFree

GetSystemInfo

FormatMessageW

lstrcmpW

TerminateThread

CreateEventW

ResumeThread

SetEvent

lstrlenW

lstrcpyW

VirtualAlloc

CreateEventA

WaitForMultipleObjects

MultiByteToWideChar

LCMapStringW

WideCharToMultiByte

GetOverlappedResult

OpenProcess

GetCurrentProcess

DuplicateHandle

IsBadReadPtr

WaitForSingleObject

GetTickCount

InterlockedExchange

CreateThread

InterlockedExchangeAdd

GetCurrentThread

SetThreadPriority

GetCurrentProcessId

FreeLibraryAndExitThread

GetProcAddress

FreeLibrary

InterlockedCompareExchange

LoadLibraryA

GetLastError

Sleep

SetLastError

LeaveCriticalSection

EnterCriticalSection

GetModuleFileNameA

LoadLibraryW

ExpandEnvironmentStringsW

InterlockedDecrement

GetEnvironmentVariableA

CloseHandle

InitializeCriticalSection

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

PostQueuedCompletionStatus

CreateIoCompletionPort

InterlockedIncrement

SleepEx

OutputDebugStringA

EndUpdateResourceW

FindFirstFileExW

HeapSetInformation

GetLargestConsoleWindowSize

GetTempFileNameA

MoveFileW

WriteFileGather

LocalCompact

RtlFillMemory

InterlockedPopEntrySList

BuildCommDCBAndTimeoutsW

SetConsoleInputExeNameA

FindVolumeClose

RestoreLastError

ReleaseActCtx

AddAtomA

SetCurrentDirectoryW

GetUserGeoID

LockFileEx

GetSystemDirectoryA

SetSystemTime

GetStringTypeW

Module32FirstW

GetPrivateProfileStringW

CompareStringA

GetConsoleCursorInfo

SetConsoleMenuClose

SetTimerQueueTimer

GetNativeSystemInfo

GetFileType

GetConsoleInputExeNameA

GetLocaleInfoW

VerifyConsoleIoHandle

SetConsoleIcon

ExpungeConsoleCommandHistoryA

ChangeTimerQueueTimer

DeleteAtom

Process32NextW

ScrollConsoleScreenBufferA

FindFirstFileW

SetCalendarInfoW

GetFileAttributesA

BuildCommDCBA

HeapQueryInformation

PrivCopyFileExW

OpenMutexW

QueryActCtxW

GetWindowsDirectoryA

FatalAppExitW

GetConsoleCommandHistoryW

VirtualFreeEx

SetVolumeLabelA

FindClose

CompareFileTime

LocalFlags

MapUserPhysicalPages

RequestWakeupLatency

SetConsoleMaximumWindowSize

CreateDirectoryExA

GlobalAlloc

ExitThread

GlobalUnWire

GetUserDefaultLCID

GlobalFindAtomA

FatalExit

ScrollConsoleScreenBufferW

CreateDirectoryW

CreateJobObjectA

SetConsoleCursorInfo

DeleteFileA

wcscmp

wcscpy

strtoul

malloc

exit

getc

fopen

_initterm

free

strncmp

wcsncmp

wcsncpy

wcstol

_wcsnicmp

swprintf

strcpy

strlen

strpbrk

_strnicmp

wcschr

atoi

_stricmp

_wcsicmp

wcslen

wcscat

isspace

fgets

fclose

rewind

_errno

sprintf

_write

_iob

fprintf

isdigit

isxdigit

islower

memmove

NtSetIoCompletion

NtRemoveIoCompletion

NtClose

NtSetInformationFile

NtCreateEvent

NtSetInformationObject

NtCreateIoCompletion

RtlFreeHeap

RtlRegisterSecureMemoryCacheCallback

RtlAllocateHeap

DbgPrint

NtOpenKey

RtlInitUnicodeString

RtlQueryRegistryValues

RtlGetNtProductType

NtDeviceIoControlFile

NtCreateFile

NtCancelIoFile

RtlInitializeCriticalSectionAndSpinCount

RtlDeleteCriticalSection

NtSetEvent

RtlRaiseStatus

NtWaitForSingleObject

NtDelayExecution

NtLoadDriver

RtlAdjustPrivilege

RtlImpersonateSelf

NtQuerySystemTime

NtAlertThread

NtQueueApcThread

NtClearEvent

NtReadFile

NtWaitForMultipleObjects

RtlNtStatusToDosError

NtQueryEvent

RtlUnicodeStringToAnsiString

RtlFreeUnicodeString

RtlAnsiStringToUnicodeString

RtlInitAnsiString

RtlFreeAnsiString

RtlDestroyHeap

RtlCreateHeap

RtlDeregisterWaitEx

RtlQueueWorkItem

RtlRegisterWait

NtCreateWaitablePort

NtRequestWaitReplyPort

NtConnectPort

NtReplyPort

RtlIpv6StringToAddressA

RtlIpv6StringToAddressW

RtlInitString

NtQueryValueKey

NtDuplicateObject

NtResetEvent

NtAcceptConnectPort

NtReplyWaitReceivePortEx

NtCompleteConnectPort

UuidFromStringW

UuidCreate

UuidToStringW

RpcStringFreeW

WSAProviderConfigChange

WSARecv

WSCInstallProvider

WSCUpdateProvider

WSCDeinstallProvider

WSAEnumProtocolsW

WSAIoctl

WSCEnumProtocols

WSCGetProviderPath

WSASocketW

WahEnumerateHandleContexts

WahRemoveHandleContext

WahReferenceContextByHandle

WahInsertHandleContext

WahDestroyHandleContextTable

WahCreateHandleContextTable

InitCommonControls

CreatePropertySheetPageW

CreateStatusWindowW

MakeDragList

DrawStatusText

GetMUILanguage

ImageList_GetIcon

FlatSB_GetScrollInfo

ImageList_DrawEx

ImageList_Draw

ImageList_SetDragCursorImage

CreateDialogParamA

GetClassWord

GetWindowModuleFileNameW

CountClipboardFormats

AttachThreadInput

CallMsgFilterA

GetPropA

SendDlgItemMessageW

IsClipboardFormatAvailable

PostThreadMessageW

SetClipboardData

CallMsgFilter

SetForegroundWindow

PostThreadMessageA

IsDialogMessageA

SetTaskmanWindow

CliImmSetHotKey

DdeInitializeA

GetWindowDC

GetKeyState

DefWindowProcA

UnregisterMessagePumpHook

GetMessageA

CharPrevA

FillRect

ShowWindowAsync

MapVirtualKeyExA

IsCharUpperW

GetWindowPlacement

ReleaseCapture

DdeUninitialize

SetWindowTextW

BroadcastSystemMessageExA

SetUserObjectInformationW

ResolveDesktopForWOW

GetDlgItemTextA

GetRawInputData

UnhookWindowsHook

MessageBoxIndirectA

DisplayExitWindowsWarnings

ShowStartGlass

SetDeskWallpaper

SendMessageCallbackW

ImpersonateDdeClientWindow

WINNLSEnableIME

KillTimer

TabbedTextOutA

GetKeyboardLayout

OpenWindowStationW

OemToCharW

GetWindowModuleFileName

UnloadKeyboardLayout

CharUpperBuffW

PrivateExtractIconExA

CascadeWindows

ShowScrollBar

DdeConnect

GetWindowContextHelpId

TileChildWindows

InflateRect

RemovePropA

GetRawInputBuffer

GetGuiResources

EnumPropsExW

GetWindowTextLengthA

LoadRemoteFonts

PathAppendA

PathCompactPathExA

StrCatBuffA

SHRegCreateUSKeyA

StrFormatByteSizeA

StrCmpNIW

SHSkipJunction

PathCombineW

PathFindOnPathA

PathRemoveBackslashA

SHRegQueryUSValueA

StrToIntExA

StrCSpnW

IntlStrEqWorkerA

PathIsRootA

StrRetToStrA

ColorAdjustLuma

UrlGetLocationW

SHRegEnumUSKeyW

SHRegOpenUSKeyA

StrCSpnA

SHRegDeleteEmptyUSKeyW

PathFindSuffixArrayW

AssocQueryKeyA

SHAutoComplete

PathRemoveArgsW

StrCatChainW

SHSetThreadRef

PathMakeSystemFolderW

StrRChrW

SHRegCreateUSKeyW

StrRetToBufA

SHLoadIndirectString

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ