IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

OpenMutexW

CreateMutexW

GetSystemTime

LocalFree

GetModuleHandleA

CreateFileMappingW

LocalAlloc

GlobalFree

GlobalUnlock

GetTimeZoneInformation

SetTimeZoneInformation

GlobalAlloc

GetFileAttributesExA

GlobalLock

UnmapViewOfFile

MapViewOfFile

SetFilePointer

WinExec

MultiByteToWideChar

CreateSemaphoreA

FindResourceExW

SystemTimeToFileTime

LocalFileTimeToFileTime

FileTimeToLocalFileTime

FileTimeToSystemTime

GetSystemTimeAsFileTime

FreeResource

LockResource

SetEnvironmentVariableA

CompareStringW

CompareStringA

WriteConsoleW

GetConsoleOutputCP

WriteConsoleA

GetLocaleInfoW

SetEndOfFile

InitializeCriticalSectionAndSpinCount

GetCurrentDirectoryA

GetFullPathNameA

GetStringTypeW

LoadLibraryW

IsValidLocale

LoadResource

SizeofResource

FindResourceW

CreateFileA

GetFileAttributesExW

WideCharToMultiByte

CreateDirectoryW

InterlockedDecrement

Module32FirstW

GetProfileStringW

FindClose

FindNextFileW

FindFirstFileW

GetQueuedCompletionStatus

WaitForMultipleObjects

GetVersionExW

OpenFileMappingW

GetLogicalDriveStringsW

OpenProcess

lstrcpyW

CreateProcessW

GetLocalTime

Sleep

GetCurrentThreadId

GetProfileIntW

lstrlenW

WriteProfileStringW

GetComputerNameA

GetCurrentProcessId

Process32NextW

Process32FirstW

CreateToolhelp32Snapshot

GetPrivateProfileStringW

GetModuleHandleW

CopyFileW

SuspendThread

OpenThread

TerminateThread

ResumeThread

GetTickCount

GetPrivateProfileIntW

DeleteFileW

GetFileAttributesW

CloseHandle

ReadFile

GetFileSize

GetLastError

CreateFileW

GetModuleFileNameW

InitializeCriticalSection

EnumSystemLocalesA

GetLocaleInfoA

GetUserDefaultLCID

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetEnvironmentStrings

FreeEnvironmentStringsA

SetStdHandle

SetHandleCount

FlushFileBuffers

GetConsoleCP

HeapCreate

VirtualFree

IsValidCodePage

GetOEMCP

TlsFree

TlsSetValue

TlsAlloc

TlsGetValue

GetModuleFileNameA

GetConsoleMode

SetConsoleMode

ReadConsoleInputA

SetConsoleCtrlHandler

ReleaseMutex

SetFileTime

GetProcAddress

GetSystemDirectoryW

WaitForSingleObject

GetFileInformationByHandle

CreateIoCompletionPort

GetCurrentDirectoryW

ExitProcess

GetDriveTypeA

GetCPInfo

LCMapStringW

LCMapStringA

RtlUnwind

GetStartupInfoA

GetCommandLineA

VirtualQuery

VirtualAlloc

VirtualProtect

CreateThread

ExitThread

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

HeapSize

HeapReAlloc

HeapAlloc

HeapDestroy

RaiseException

GetProcessHeap

HeapFree

FlushConsoleInputBuffer

GlobalMemoryStatus

QueryPerformanceCounter

FindFirstFileA

LoadLibraryA

VerSetConditionMask

VerifyVersionInfoA

ExpandEnvironmentStringsA

PeekNamedPipe

SleepEx

GetStdHandle

GetFileType

GetVersion

FormatMessageA

SetLastError

MulDiv

GetACP

InterlockedExchange

InterlockedIncrement

WriteFile

DuplicateHandle

FreeLibrary

TerminateProcess

PostQueuedCompletionStatus

SetEvent

CreateEventW

ResetEvent

GlobalMemoryStatusEx

GetSystemInfo

GetComputerNameW

OutputDebugStringW

GetCurrentProcess

GetStartupInfoW

CreatePipe

GetExitCodeProcess

CreateProcessA

GetSystemDirectoryA

GetWindowsDirectoryW

OutputDebugStringA

WritePrivateProfileStringW

DeleteCriticalSection

EnterCriticalSection

GetStringTypeA

LeaveCriticalSection

CreateWindowExW

PostQuitMessage

DispatchMessageW

DefWindowProcW

GetDesktopWindow

CloseClipboard

EmptyClipboard

MonitorFromWindow

IsWindow

GetWindowLongW

SetWindowLongW

ScreenToClient

GetClientRect

GetWindowTextW

PtInRect

IntersectRect

CharNextW

FindWindowW

ShowWindow

SetWindowPos

MessageBoxW

GetSystemMetrics

SetTimer

OpenClipboard

MoveWindow

KillTimer

SetForegroundWindow

TranslateMessage

GetMessageW

EnableWindow

GetWindow

GetParent

RegisterClassW

LoadCursorW

RegisterClassExW

GetClassInfoExW

CallWindowProcW

GetPropW

SetPropW

AdjustWindowRectEx

GetMenu

ReleaseDC

DestroyWindow

EnumWindows

GetDlgCtrlID

ExitWindowsEx

GetMonitorInfoW

PostMessageW

GetDC

GetKeyState

GetFocus

MapWindowPoints

GetUpdateRect

IsRectEmpty

EndPaint

BringWindowToTop

FindWindowExW

IsIconic

IsWindowVisible

wsprintfW

SetFocus

GetCursorPos

CreatePopupMenu

AppendMenuW

TrackPopupMenu

SetWindowRgn

ClientToScreen

SendMessageW

RegisterWindowMessageW

LoadIconW

SetClipboardData

GetWindowThreadProcessId

MessageBoxA

GetProcessWindowStation

GetUserObjectInformationW

SetWindowTextW

GetWindowTextLengthW

GetGUIThreadInfo

GetWindowRect

DestroyIcon

BeginPaint

GetActiveWindow

UnionRect

InvalidateRect

SetCapture

ReleaseCapture

OffsetRect

wvsprintfW

CreateAcceleratorTableW

InvalidateRgn

GetCaretBlinkTime

GetSysColor

GetCaretPos

SetCaretPos

ShowCaret

HideCaret

CreateCaret

SetRect

CharPrevW

DrawTextW

FillRect

SetCursor

BitBlt

CreatePatternBrush

GetDeviceCaps

GetObjectA

GdiFlush

PatBlt

DeleteDC

CreateDIBSection

SetPixel

CreateCompatibleDC

GetObjectW

MoveToEx

LineTo

SelectObject

CreatePenIndirect

DeleteObject

CreateRoundRectRgn

CreatePen

CreateFontIndirectW

GetStockObject

SetWindowOrgEx

Rectangle

RestoreDC

SaveDC

CreateCompatibleBitmap

RemoveFontMemResourceEx

GetTextMetricsW

SelectClipRgn

CombineRgn

CreateRectRgnIndirect

GetClipBox

StretchBlt

SetStretchBltMode

CreateSolidBrush

RoundRect

SetTextColor

SetBkMode

TextOutW

GetTextExtentPoint32W

GetCharABCWidthsW

SetBkColor

ExtSelectClipRgn

GetOpenFileNameW

StartServiceA

ReportEventA

DeregisterEventSource

RegOpenKeyExW

RegDeleteValueW

AdjustTokenPrivileges

LookupPrivilegeValueW

RegQueryValueExW

OpenProcessToken

RegSetValueExW

RegFlushKey

ControlService

OpenSCManagerA

QueryServiceStatusEx

QueryServiceStatus

RegisterEventSourceA

RegCreateKeyExW

OpenServiceW

OpenSCManagerW

DeleteService

CloseServiceHandle

OpenServiceA

CreateServiceW

RegQueryValueExA

RegEnumKeyExA

RegOpenKeyExA

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

RegCloseKey

RegEnumKeyExW

RegQueryInfoKeyW

SHGetSpecialFolderPathW

Shell_NotifyIconW

ShellExecuteA

ShellExecuteExW

SHFileOperationW

SHGetPathFromIDListW

ShellExecuteW

CLSIDFromString

CLSIDFromProgID

OleLockRunning

CreateStreamOnHGlobal

CoTaskMemFree

CoCreateInstance

CoUninitialize

OleUninitialize

OleInitialize

CoInitialize

VariantClear

VariantInit

SysAllocString

SysFreeString

GetIpAddrTable

GetAdaptersAddresses

GetAdaptersInfo

GetIfTable

CreateIpForwardEntry

DeleteIpForwardEntry

GetIpForwardTable

SendARP

GdipSetCompositingQuality

GdipSetPixelOffsetMode

GdipDrawString

GdipDrawImage

GdipDeleteFontFamily

GdipDeleteStringFormat

GdipDeleteFont

GdipGetPathGradientPointCount

GdipSetPathGradientSurroundColorsWithCount

GdipCreateFromHDC

GdipDeleteGraphics

GdipSetPageUnit

GdipSetInterpolationMode

GdipSetSmoothingMode

GdipCreatePath

GdipDeletePath

GdipAddPathLineI

GdipAddPathArcI

GdipCreateLineBrushFromRect

GdipDeleteBrush

GdipFree

GdipAlloc

GdipCloneBrush

GdipSetLinePresetBlend

GdipSetLineWrapMode

GdipCreateRegionPath

GdipDeleteRegion

GdipFillRegion

GdipCreateBitmapFromFile

GdipCreateBitmapFromFileICM

GdipCloneImage

GdipDisposeImage

GdipGetImageWidth

GdipGetImageHeight

GdipCreateBitmapFromScan0

GdipGetImageGraphicsContext

GdipCreateImageAttributes

GdipDisposeImageAttributes

GdipSetImageAttributesColorMatrix

GdipDrawImageRectRectI

GdipCreateTexture

GdipCreateBitmapFromHBITMAP

GdipDeletePen

GdipDrawCurve

GdipCreatePen1

GdiplusStartup

GdiplusShutdown

GdipGetImageEncodersSize

GdipGetImageEncoders

GdipSaveImageToFile

GdipGraphicsClear

GdipCreateTexture2I

GdipDrawImageRectI

GdipCreatePathGradientFromPath

GdipCreateRegionRect

GdipCombineRegionRegion

GdipCreateSolidFill

GdipSetPathGradientCenterColor

GdipSetPathGradientFocusScales

GdipCreateLineBrushI

GdipSetStringFormatFlags

GdipSetStringFormatAlign

GdipSetStringFormatLineAlign

GdipCreateStringFormat

GdipSetTextRenderingHint

GdipCreateFontFromDC

GdipDrawImageI

GdipSetPenEndCap

GdipCreateFontFromLogfontA

GdipSetPenStartCap

GdipCreatePen2

GdipFillRectangleI

GdipDrawLine

GdipDrawImageRect

GdipRotateWorldTransform

GdipTranslateWorldTransform

GdipSetSolidFillColor

GdipLoadImageFromStreamICM

GdipLoadImageFromStream

GdipGetFamily

WSAAddressToStringW

shutdown

WSAStartup

send

gethostbyname

__WSAFDIsSet

getservbyname

recv

WSACleanup

setsockopt

WSASend

WSASendTo

inet_addr

WSARecvFrom

getsockname

WSARecv

socket

WSAIoctl

bind

listen

WSASocketW

WSAGetLastError

closesocket

inet_ntoa

htons

WSAStringToAddressA

WSAAddressToStringA

htonl

accept

getaddrinfo

freeaddrinfo

getsockopt

ntohs

select

WSASetLastError

WSACloseEvent

recvfrom

WSAEnumNetworkEvents

WSAEventSelect

sendto

WSACreateEvent

WSAWaitForMultipleEvents

getpeername

ioctlsocket

gethostname

connect

ord200

ord79

ord33

ord301

ord27

ord41

ord32

ord35

ord143

ord30

ord26

ord50

ord60

ord211

ord22

ord46

DeleteVpn

InitDriverFirst

InitDriver

GetTdxNumber

DriverIsRun

InsertDropPort

InsertProcessForPot

AddPidFromProcess

CreateVpn

SetLoadingFlow

FNInsertBlackProcesName

ProcessMd5AndSign

GetUdpRemoteIp

GetTcpRemoteIp

GetFlowData

GetRegedit

IsPcLowConfig

IsBlackProcessUser

IsVirtualMachineNow

DeleteRuleAll

StopACProcess

QueryACFlow

StartACProcess

CertFindCertificateInStore

CryptMsgClose

CryptQueryObject

CertFreeCertificateContext

CryptMsgGetParam

CertCloseStore

CertAddCertificateContextToStore

CertOpenStore

CertCreateCertificateContext

CertGetNameStringW

CryptStringToBinaryA

PathIsDirectoryW

wnsprintfW

PathFindExtensionW

SHDeleteKeyW

GetFileVersionInfoSizeW

VerQueryValueW

VerQueryValueA

GetFileVersionInfoSizeA

GetFileVersionInfoA

GetFileVersionInfoW

?nf_init@nfapi@@YA?AW4_NF_STATUS@@PBDPAVNF_EventHandler@1@@Z

?nf_addRule@nfapi@@YA?AW4_NF_STATUS@@PAU_NF_RULE@1@H@Z

?nf_udpPostReceive@nfapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@1@@Z

?nf_getProcessNameW@nfapi@@YAHKPA_WK@Z

?nf_tcpPostReceive@nfapi@@YA?AW4_NF_STATUS@@_KPBDH@Z

?nf_tcpPostSend@nfapi@@YA?AW4_NF_STATUS@@_KPBDH@Z

?nf_registerDriver@nfapi@@YA?AW4_NF_STATUS@@PBD@Z

?nf_udpPostSend@nfapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@1@@Z

?nf_free@nfapi@@YAXXZ

?nf_srv_unRegisterDriver@nfsrvapi@@YA?AW4_NF_STATUS@@PBD@Z

?nf_srv_tcpSetProxy@nfsrvapi@@YA?AW4_NF_STATUS@@_KW4SRV_PROXY_TYPE@1@PBDH22@Z

?nf_srv_tcpPostReceive@nfsrvapi@@YA?AW4_NF_STATUS@@_KPBDH@Z

?nf_srv_tcpPostSend@nfsrvapi@@YA?AW4_NF_STATUS@@_KPBDH@Z

?nf_srv_deleteRules@nfsrvapi@@YA?AW4_NF_STATUS@@XZ

?nf_srv_addRule@nfsrvapi@@YA?AW4_NF_STATUS@@PAU_NF_SRV_RULE@1@H@Z

?nf_srv_init@nfsrvapi@@YA?AW4_NF_STATUS@@PBDPAVNF_EventHandler@nfapi@@PAU_NF_SRV_OPTIONS@1@@Z

?nf_srv_getUDPRemoteAddress@nfsrvapi@@YA?AW4_NF_STATUS@@_KPAEH@Z

?nf_srv_udpSetProxy@nfsrvapi@@YA?AW4_NF_STATUS@@_KW4SRV_PROXY_TYPE@1@PBDH22@Z

?nf_srv_udpPostReceive@nfsrvapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@nfapi@@@Z

?nf_srv_udpPostSend@nfsrvapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@nfapi@@@Z

?nf_srv_free@nfsrvapi@@YAXXZ

GetModuleFileNameExW

_TrackMouseEvent

ord17

ImmGetContext

ImmSetCompositionWindow

ImmReleaseContext

ImmSetCompositionFontW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ