IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

OpenMutexW

CreateMutexW

GetSystemTime

LocalFree

GetModuleHandleA

Module32FirstW

CreateFileMappingW

LocalAlloc

GlobalFree

GlobalUnlock

GetTimeZoneInformation

SetTimeZoneInformation

GlobalAlloc

GlobalLock

UnmapViewOfFile

MapViewOfFile

SetFilePointer

WinExec

MultiByteToWideChar

CreateSemaphoreA

SystemTimeToFileTime

LocalFileTimeToFileTime

FileTimeToLocalFileTime

FileTimeToSystemTime

GetSystemTimeAsFileTime

FreeResource

LockResource

SetEnvironmentVariableA

CompareStringW

CompareStringA

WriteConsoleW

GetConsoleOutputCP

WriteConsoleA

GetLocaleInfoW

SetEndOfFile

InitializeCriticalSectionAndSpinCount

GetCurrentDirectoryA

GetFullPathNameA

GetVersionExW

GetStringTypeA

IsValidLocale

LoadResource

SizeofResource

FindResourceW

CreateFileA

GetFileAttributesExW

WideCharToMultiByte

CreateDirectoryW

InterlockedDecrement

GetProfileStringW

FindClose

FindNextFileW

FindFirstFileW

GetLogicalDriveStringsW

WaitForMultipleObjects

CreateIoCompletionPort

SetEvent

OpenFileMappingW

OpenProcess

lstrcpyW

CreateProcessW

InterlockedIncrement

GetLocalTime

GetCurrentThreadId

Sleep

GetProfileIntW

lstrlenW

WriteProfileStringW

GetComputerNameA

GetCurrentProcessId

Process32NextW

Process32FirstW

CreateToolhelp32Snapshot

GetPrivateProfileStringW

GetModuleHandleW

CopyFileW

GetTickCount

GetPrivateProfileIntW

DeleteFileW

GetFileAttributesW

ReadFile

GetFileSize

GetLastError

CreateFileW

GetModuleFileNameW

CloseHandle

TerminateThread

ResumeThread

SuspendThread

OpenThread

WritePrivateProfileStringW

EnumSystemLocalesA

GetLocaleInfoA

GetUserDefaultLCID

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetEnvironmentStrings

FreeEnvironmentStringsA

SetStdHandle

SetHandleCount

FlushFileBuffers

GetConsoleCP

HeapCreate

VirtualFree

IsValidCodePage

GetOEMCP

TlsFree

TlsSetValue

TlsAlloc

TlsGetValue

GetModuleFileNameA

GetConsoleMode

SetConsoleMode

ReadConsoleInputA

SetConsoleCtrlHandler

ReleaseMutex

LoadLibraryW

GetProcAddress

GetSystemDirectoryW

GetFileInformationByHandle

GetCurrentDirectoryW

WriteFile

SetFileTime

ExitProcess

GetDriveTypeA

GetCPInfo

LCMapStringW

LCMapStringA

RtlUnwind

GetStartupInfoA

GetCommandLineA

VirtualAlloc

CreateThread

ExitThread

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

HeapSize

HeapReAlloc

HeapAlloc

HeapDestroy

RaiseException

GetProcessHeap

HeapFree

FlushConsoleInputBuffer

GlobalMemoryStatus

QueryPerformanceCounter

FindFirstFileA

LoadLibraryA

VerSetConditionMask

VerifyVersionInfoA

ExpandEnvironmentStringsA

PeekNamedPipe

SleepEx

GetStdHandle

GetFileType

GetVersion

FormatMessageA

SetLastError

MulDiv

GetACP

InterlockedExchange

DuplicateHandle

FreeLibrary

PostQueuedCompletionStatus

TerminateProcess

GetQueuedCompletionStatus

CreateEventW

ResetEvent

GlobalMemoryStatusEx

GetSystemInfo

GetComputerNameW

OutputDebugStringW

GetCurrentProcess

GetStartupInfoW

CreatePipe

GetExitCodeProcess

CreateProcessA

GetSystemDirectoryA

OutputDebugStringA

GetWindowsDirectoryW

WaitForSingleObject

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

GetStringTypeW

InitializeCriticalSection

CreateWindowExW

PostQuitMessage

DefWindowProcW

GetWindowTextW

EnumWindows

DispatchMessageW

TranslateMessage

GetMessageW

EnableWindow

GetDesktopWindow

CloseClipboard

GetWindowLongW

SetWindowLongW

ScreenToClient

GetDlgCtrlID

PostMessageW

PtInRect

IntersectRect

CharNextW

FindWindowW

ShowWindow

SetWindowPos

MessageBoxW

GetSystemMetrics

SetTimer

EmptyClipboard

MoveWindow

KillTimer

SetForegroundWindow

GetWindow

GetParent

RegisterClassW

LoadCursorW

RegisterClassExW

GetClassInfoExW

CallWindowProcW

GetPropW

SetPropW

AdjustWindowRectEx

GetMenu

ReleaseDC

DestroyWindow

GetDC

GetKeyState

GetFocus

ExitWindowsEx

GetMonitorInfoW

SetClipboardData

OpenClipboard

GetClientRect

MapWindowPoints

GetUpdateRect

IsRectEmpty

EndPaint

BeginPaint

GetActiveWindow

UnionRect

BringWindowToTop

FindWindowExW

IsIconic

IsWindowVisible

wsprintfW

SetFocus

GetCursorPos

CreatePopupMenu

AppendMenuW

TrackPopupMenu

SetWindowRgn

ClientToScreen

SendMessageW

RegisterWindowMessageW

LoadIconW

DestroyIcon

GetWindowThreadProcessId

MessageBoxA

GetProcessWindowStation

GetUserObjectInformationW

SetWindowTextW

GetWindowTextLengthW

GetGUIThreadInfo

MonitorFromWindow

GetWindowRect

InvalidateRect

SetCapture

ReleaseCapture

SetCursor

OffsetRect

wvsprintfW

CreateAcceleratorTableW

InvalidateRgn

GetCaretBlinkTime

GetSysColor

GetCaretPos

SetCaretPos

ShowCaret

HideCaret

CreateCaret

SetRect

CharPrevW

DrawTextW

FillRect

IsWindow

BitBlt

CreatePatternBrush

GetDeviceCaps

GetObjectA

GdiFlush

DeleteDC

CreateDIBSection

CreateCompatibleDC

GetObjectW

MoveToEx

LineTo

SelectObject

CreatePenIndirect

DeleteObject

CreateRoundRectRgn

CreatePen

CreateFontIndirectW

GetStockObject

SetWindowOrgEx

Rectangle

RestoreDC

SaveDC

CreateCompatibleBitmap

AddFontMemResourceEx

GetTextMetricsW

SelectClipRgn

CombineRgn

CreateRectRgnIndirect

GetClipBox

StretchBlt

SetStretchBltMode

CreateSolidBrush

RoundRect

SetTextColor

SetBkMode

TextOutW

GetTextExtentPoint32W

GetCharABCWidthsW

SetBkColor

ExtSelectClipRgn

GetOpenFileNameW

StartServiceA

ReportEventA

DeregisterEventSource

RegOpenKeyExW

RegDeleteValueW

AdjustTokenPrivileges

LookupPrivilegeValueW

RegQueryValueExW

OpenProcessToken

RegSetValueExW

RegFlushKey

ControlService

OpenSCManagerA

QueryServiceStatusEx

QueryServiceStatus

RegisterEventSourceA

RegCreateKeyExW

OpenServiceW

OpenSCManagerW

DeleteService

CloseServiceHandle

OpenServiceA

CreateServiceW

RegQueryValueExA

RegEnumKeyExA

RegOpenKeyExA

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

RegCloseKey

RegEnumKeyExW

RegQueryInfoKeyW

ShellExecuteA

ShellExecuteExW

SHGetPathFromIDListW

SHGetSpecialFolderPathW

ShellExecuteW

Shell_NotifyIconW

CLSIDFromString

OleInitialize

OleUninitialize

CoUninitialize

CoCreateInstance

CLSIDFromProgID

OleLockRunning

CreateStreamOnHGlobal

CoTaskMemFree

CoInitialize

SysFreeString

VariantClear

SysAllocString

VariantInit

GetIpAddrTable

GetAdaptersAddresses

GetAdaptersInfo

GetIfTable

CreateIpForwardEntry

DeleteIpForwardEntry

GetIpForwardTable

SendARP

GdipSetSolidFillColor

GdipLoadImageFromStreamICM

GdipLoadImageFromStream

GdipTranslateWorldTransform

GdipRotateWorldTransform

GdipDrawImageRect

GdipDrawLine

GdipFillRectangleI

GdipCreatePen2

GdipCreateFromHDC

GdipDeleteGraphics

GdipSetPageUnit

GdipCreatePath

GdipDeletePath

GdipAddPathArcI

GdipAddPathLineI

GdipCreateRegionRect

GdipDeleteRegion

GdipCreateRegionPath

GdipCombineRegionRegion

GdipCreatePathGradientFromPath

GdipDeleteBrush

GdipFree

GdipAlloc

GdipCloneBrush

GdipSetPathGradientCenterColor

GdipSetPathGradientSurroundColorsWithCount

GdipGetPathGradientPointCount

GdipSetPathGradientFocusScales

GdipFillRegion

GdipCreateLineBrushFromRectI

GdipSetLinePresetBlend

GdipSetSmoothingMode

GdipSetInterpolationMode

GdipCreatePen1

GdipDeletePen

GdipDrawPath

GdipDrawCurve

GdiplusStartup

GdiplusShutdown

GdipGetImageEncodersSize

GdipGetImageEncoders

GdipCreateBitmapFromFile

GdipCreateBitmapFromFileICM

GdipCloneImage

GdipDisposeImage

GdipSaveImageToFile

GdipCreateBitmapFromScan0

GdipGetImageGraphicsContext

GdipGetImageHeight

GdipGetImageWidth

GdipDrawImageRectRectI

GdipDrawImageRectI

GdipDeleteStringFormat

GdipDrawString

GdipSetStringFormatFlags

GdipSetStringFormatAlign

GdipSetStringFormatLineAlign

GdipCreateStringFormat

GdipSetTextRenderingHint

GdipCreateSolidFill

GdipCreateFontFromDC

GdipCreateFontFromLogfontA

GdipDeleteFontFamily

GdipDrawImage

GdipGraphicsClear

GdipSetPixelOffsetMode

GdipSetCompositingQuality

GdipCreateLineBrushI

GdipGetFamily

GdipDrawImageI

GdipSetPenEndCap

GdipSetPenStartCap

GdipDeleteFont

WSAAddressToStringA

WSAStartup

send

gethostbyname

__WSAFDIsSet

getservbyname

WSAAddressToStringW

shutdown

setsockopt

WSASend

WSASendTo

WSARecvFrom

WSACleanup

WSARecv

socket

WSAIoctl

bind

listen

WSASocketW

WSAGetLastError

closesocket

inet_ntoa

htons

WSAStringToAddressA

htonl

accept

getaddrinfo

freeaddrinfo

getsockopt

ntohs

getsockname

WSASetLastError

WSACloseEvent

recvfrom

WSAEnumNetworkEvents

recv

sendto

WSACreateEvent

WSAWaitForMultipleEvents

getpeername

ioctlsocket

gethostname

connect

select

inet_addr

WSAEventSelect

ord301

ord27

ord41

ord46

ord33

ord79

ord35

ord32

ord200

ord30

ord26

ord50

ord60

ord143

ord211

ord22

SetLoadingFlow

FNInsertBlackProcesName

ProcessMd5AndSign

GetUdpRemoteIp

CreateVpn

GetFlowData

GetRegedit

IsPcLowConfig

IsBlackProcessUser

IsVirtualMachineNow

AddPidFromProcess

InsertProcessForPot

InsertDropPort

DriverIsRun

GetTdxNumber

DeleteRuleAll

DeleteVpn

InitDriverFirst

InitDriver

GetTcpRemoteIp

StopACProcess

QueryACFlow

StartACProcess

CertFindCertificateInStore

CryptMsgClose

CryptQueryObject

CertFreeCertificateContext

CryptMsgGetParam

CertCloseStore

CertAddCertificateContextToStore

CertOpenStore

CertCreateCertificateContext

CertGetNameStringW

CryptStringToBinaryA

wnsprintfW

PathIsDirectoryW

GetFileVersionInfoW

VerQueryValueW

VerQueryValueA

GetFileVersionInfoSizeA

GetFileVersionInfoA

GetFileVersionInfoSizeW

?nf_init@nfapi@@YA?AW4_NF_STATUS@@PBDPAVNF_EventHandler@1@@Z

?nf_free@nfapi@@YAXXZ

?nf_udpPostReceive@nfapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@1@@Z

?nf_getProcessNameW@nfapi@@YAHKPA_WK@Z

?nf_tcpPostReceive@nfapi@@YA?AW4_NF_STATUS@@_KPBDH@Z

?nf_tcpPostSend@nfapi@@YA?AW4_NF_STATUS@@_KPBDH@Z

?nf_udpPostSend@nfapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@1@@Z

?nf_registerDriver@nfapi@@YA?AW4_NF_STATUS@@PBD@Z

?nf_addRule@nfapi@@YA?AW4_NF_STATUS@@PAU_NF_RULE@1@H@Z

?nf_srv_tcpPostReceive@nfsrvapi@@YA?AW4_NF_STATUS@@_KPBDH@Z

?nf_srv_tcpSetProxy@nfsrvapi@@YA?AW4_NF_STATUS@@_KW4SRV_PROXY_TYPE@1@PBDH22@Z

?nf_srv_getUDPRemoteAddress@nfsrvapi@@YA?AW4_NF_STATUS@@_KPAEH@Z

?nf_srv_udpSetProxy@nfsrvapi@@YA?AW4_NF_STATUS@@_KW4SRV_PROXY_TYPE@1@PBDH22@Z

?nf_srv_udpPostReceive@nfsrvapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@nfapi@@@Z

?nf_srv_udpPostSend@nfsrvapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@nfapi@@@Z

?nf_srv_free@nfsrvapi@@YAXXZ

?nf_srv_unRegisterDriver@nfsrvapi@@YA?AW4_NF_STATUS@@PBD@Z

?nf_srv_init@nfsrvapi@@YA?AW4_NF_STATUS@@PBDPAVNF_EventHandler@nfapi@@PAU_NF_SRV_OPTIONS@1@@Z

?nf_srv_addRule@nfsrvapi@@YA?AW4_NF_STATUS@@PAU_NF_SRV_RULE@1@H@Z

?nf_srv_deleteRules@nfsrvapi@@YA?AW4_NF_STATUS@@XZ

?nf_srv_tcpPostSend@nfsrvapi@@YA?AW4_NF_STATUS@@_KPBDH@Z

GetModuleFileNameExW

_TrackMouseEvent

ord17

ImmGetContext

ImmSetCompositionWindow

ImmReleaseContext

ImmSetCompositionFontW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ