IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

ChangeTimerQueueTimer

UnlockFile

RegisterWaitForSingleObjectEx

GetCalendarInfoW

GetNumberOfConsoleInputEvents

RemoveDirectoryA

ResumeThread

FormatMessageW

CreateNamedPipeW

TerminateThread

WideCharToMultiByte

GetBinaryTypeA

VerifyVersionInfoW

AddAtomA

CreateTimerQueue

CreateMutexW

SetHandleInformation

GetDefaultCommConfigW

UpdateResourceA

TerminateProcess

IsDBCSLeadByteEx

SetDefaultCommConfigW

CreateEventW

IsProcessorFeaturePresent

GetConsoleMode

ConvertDefaultLocale

ResetEvent

SetEndOfFile

Beep

CreateMailslotA

WaitNamedPipeA

GetDateFormatA

FindFirstFileA

GetStringTypeExA

EnumResourceNamesA

GetNumberFormatW

GetFileSizeEx

CreateMutexA

GetCurrentDirectoryA

FindNextVolumeMountPointW

GlobalFindAtomW

CreateConsoleScreenBuffer

FindFirstVolumeW

GetDateFormatW

FreeResource

GetComputerNameW

FindClose

CreateWaitableTimerA

SetInformationJobObject

GetFullPathNameA

LocalFlags

GetTimeZoneInformation

GetCommModemStatus

MoveFileA

HeapSetInformation

GlobalMemoryStatus

FindActCtxSectionGuid

SetFilePointer

GetCPInfo

GetFileInformationByHandle

GetTempFileNameW

AddAtomW

AreFileApisANSI

GetLocaleInfoA

IsBadCodePtr

GetLogicalDriveStringsW

PurgeComm

HeapCreate

ReadFile

lstrcmpiA

CreateHardLinkW

SetConsoleActiveScreenBuffer

GetModuleHandleExW

SetHandleCount

GetCurrentProcessId

GetConsoleCP

GetEnvironmentStringsW

LocalReAlloc

FlushConsoleInputBuffer

WriteConsoleW

GetModuleHandleW

FindAtomW

MoveFileW

LocalAlloc

lstrcatW

VirtualQueryEx

GetUserDefaultUILanguage

ExpandEnvironmentStringsW

GetFileTime

WriteProfileStringW

GetAtomNameA

GetStringTypeW

GetSystemWow64DirectoryW

PeekConsoleInputW

SizeofResource

VerSetConditionMask

UnmapViewOfFile

GlobalAlloc

ExitProcess

VirtualProtect

HeapAlloc

LoadLibraryA

OpenEventA

lstrlenA

GetVolumeInformationA

InitializeCriticalSectionAndSpinCount

InterlockedCompareExchange

MapViewOfFile

GetProcessHeap

InterlockedExchange

CreateFileMappingA

CloseHandle

LocalFree

SetEvent

GetComputerNameA

GetSystemInfo

GetProcAddress

WriteFile

GetModuleFileNameA

CreateProcessA

CancelWaitableTimer

CreateEventA

CoGetMalloc

CoCreateInstance

FreePropVariantArray

CoDisableCallCancellation

OleQueryLinkFromData

RegisterDragDrop

OleLockRunning

CoCreateFreeThreadedMarshaler

OleCreateFromData

PropVariantCopy

OleDestroyMenuDescriptor

CoCreateInstanceEx

CoInitialize

CoTaskMemAlloc

CreateDataCache

CoLockObjectExternal

CoGetCallContext

OleDoAutoConvert

CoUnmarshalInterface

CoWaitForMultipleHandles

StringFromGUID2

BindMoniker

CoTaskMemRealloc

CoAllowSetForegroundWindow

CreateDataAdviseHolder

SysReAllocStringLen

SysStringLen

SysStringByteLen

SysAllocStringByteLen

SysAllocStringLen

SysFreeString

RegQueryValueExA

ConvertStringSecurityDescriptorToSecurityDescriptorA

RegSetValueExA

ConvertStringSecurityDescriptorToSecurityDescriptorW

GetCurrentHwProfileA

RegCloseKey

QueryServiceConfigW

CredWriteDomainCredentialsW

RegQueryValueA

MakeAbsoluteSD

RegNotifyChangeKeyValue

LogonUserA

CreateProcessAsUserA

RegQueryValueExW

RegOpenCurrentUser

RegReplaceKeyW

OpenEventLogA

CloseServiceHandle

CredGetSessionTypes

RegConnectRegistryA

RegCreateKeyA

RegEnumKeyA

SaferSetLevelInformation

CredFree

RegFlushKey

ImpersonateLoggedOnUser

LockServiceDatabase

ImpersonateSelf

RegEnumKeyExW

GetTokenInformation

UnlockServiceDatabase

GetUserNameA

SHPathPrepareForWriteW

SHGetFolderPathW

SHGetFileInfoW

ShellAboutA

SHBrowseForFolderA

SHAppBarMessage

SHFormatDrive

SHGetPathFromIDListA

ShellAboutW

ShellExecuteW

SHGetFolderPathA

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ