IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DEBUG_STRIPPED

IMAGE_FILE_DLL

wcscpy

wcsncpy

wcscmp

_wcsicmp

memmove

_except_handler3

swprintf

wcscat

wcschr

wcsrchr

_vsnwprintf

towlower

wcsstr

wcstoul

_wcsnicmp

wcslen

NtCreateSection

LdrFindResource_U

LdrAccessResource

NtSetEvent

NtResetEvent

RtlFreeHeap

RtlReAllocateHeap

RtlAllocateHeap

LdrLoadDll

RtlInitString

LdrGetProcedureAddress

NtOpenKey

RtlNtStatusToDosError

RtlInitializeCriticalSection

NtQueryInformationFile

NtWriteFile

NtDeleteFile

NtCreateKey

NtQueryValueKey

NtSetValueKey

RtlFreeUnicodeString

NtFlushBuffersFile

NtSetInformationFile

NtUnmapViewOfSection

NtMapViewOfSection

RtlDosPathNameToNtPathName_U

NtCreateFile

NtCreateEvent

NtNotifyChangeDirectoryFile

NtFsControlFile

RtlGetAce

RtlQueryInformationAcl

RtlGetDaclSecurityDescriptor

NtQuerySecurityObject

RtlCompareUnicodeString

NtOpenFile

NtWaitForMultipleObjects

RtlAppendUnicodeStringToString

NtWaitForSingleObject

LdrUnloadDll

RtlStringFromGUID

RtlExpandEnvironmentStrings_U

RtlEnterCriticalSection

RtlInitUnicodeString

NtClose

RtlLeaveCriticalSection

DialogBoxParamW

MessageBoxW

SetWindowLongW

MoveWindow

GetWindowRect

UnregisterDeviceNotification

RegisterWindowMessageW

GetDlgItemTextW

SetDlgItemTextW

RegisterDeviceNotificationW

wsprintfW

PostMessageW

GetUserObjectInformationW

CreateDialogParamW

SendMessageW

PeekMessageW

MsgWaitForMultipleObjects

IsDialogMessageW

TranslateMessage

EnableWindow

ShowWindow

UpdateWindow

SetForegroundWindow

EndDialog

FindWindowW

GetSystemMetrics

CloseDesktop

LoadStringW

OpenInputDesktop

SetThreadDesktop

GetDlgItem

DispatchMessageW

RaiseException

LeaveCriticalSection

EnterCriticalSection

GetComputerNameW

GetComputerNameExW

InitializeCriticalSection

GetProcAddress

LocalAlloc

LoadLibraryA

FreeLibrary

GetLastError

ResetEvent

GetTickCount

LocalFree

FormatMessageW

GetDriveTypeW

GetFileAttributesW

SetErrorMode

DelayLoadFailureHook

DisableThreadLibraryCalls

GetModuleFileNameW

WaitForSingleObject

OpenEventW

GetCurrentThreadId

GetFileSize

SetFileAttributesW

GetDiskFreeSpaceExW

SetLastError

ExpandEnvironmentStringsW

CloseHandle

CreateThread

SetEvent

CreateEventW

InterlockedExchange

CreateDirectoryW

GetSystemTime

CreateFileW

GetModuleHandleW

WriteFile

SetFilePointer

GetCurrentProcess

RpcServerListen

RpcServerUseProtseqEpW

RpcServerRegisterIf

RpcBindingFree

I_RpcMapWin32Status

RpcBindingFromStringBindingW

RpcStringFreeW

RpcStringBindingComposeW

NdrClientCall2

NdrServerCall2

ImpersonateLoggedOnUser

OpenProcessToken

ReportEventW

RegisterEventSourceW

GetFileSecurityW

SetFileSecurityW

RevertToSelf

DeregisterEventSource

RegCloseKey

RegQueryValueExW

RegOpenKeyExW

AdjustTokenPrivileges

AllocateAndInitializeSid

SetSecurityDescriptorDacl

FreeSid

CheckTokenMembership

InitializeSecurityDescriptor

LookupPrivilegeValueW

SfcGetFiles

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ