IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

GetModuleHandleA

TerminateProcess

OpenProcess

lstrcpyW

WriteFile

CreateEventW

GetModuleFileNameW

MoveFileExW

FileTimeToLocalFileTime

GetFileTime

lstrlenW

CreateFileW

FileTimeToSystemTime

GetSystemDirectoryW

lstrcmpiW

GetLocalTime

GetFileAttributesW

CopyFileW

GetProcAddress

SetLastError

GetExitCodeProcess

LoadLibraryW

GetModuleHandleW

OutputDebugStringW

DeleteFileW

DisableThreadLibraryCalls

lstrcmpA

lstrcpynW

GetVersionExW

CreateThread

CloseHandle

ResetEvent

GetComputerNameExW

lstrcmpiA

GetLastError

DeviceIoControl

LocalFree

Sleep

SetEvent

GetDriveTypeA

OpenEventA

SetFileAttributesW

Module32NextW

GetFileAttributesExW

CreateToolhelp32Snapshot

FindNextFileW

lstrcatW

CancelIo

Process32NextW

Module32FirstW

QueryDosDeviceW

RemoveDirectoryW

CreateFileMappingW

ProcessIdToSessionId

Process32FirstW

FindClose

GetCurrentDirectoryW

GetFileSizeEx

lstrcmpW

ReadFile

InitializeCriticalSection

IsBadReadPtr

SystemTimeToFileTime

CreateProcessW

lstrcpynA

VirtualQuery

UnmapViewOfFile

MapViewOfFile

FindFirstFileW

GetWindowsDirectoryW

GetDiskFreeSpaceExW

GetLogicalDrives

GetDriveTypeW

lstrcpyA

CreateFileA

SetStdHandle

WriteConsoleW

GetConsoleOutputCP

WriteConsoleA

SetFilePointer

FlushFileBuffers

GetConsoleMode

GetConsoleCP

IsValidLocale

EnumSystemLocalesA

GetUserDefaultLCID

GetComputerNameW

WaitForSingleObject

lstrlenA

GetCurrentProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

HeapFree

HeapAlloc

GetCurrentThreadId

GetCommandLineA

RaiseException

RtlUnwind

TlsGetValue

TlsAlloc

TlsSetValue

TlsFree

InterlockedIncrement

InterlockedDecrement

HeapSize

ExitProcess

GetStdHandle

GetModuleFileNameA

EnterCriticalSection

LeaveCriticalSection

HeapCreate

HeapDestroy

VirtualFree

DeleteCriticalSection

VirtualAlloc

HeapReAlloc

GetCPInfo

GetACP

GetOEMCP

IsValidCodePage

LCMapStringA

WideCharToMultiByte

MultiByteToWideChar

LCMapStringW

SetHandleCount

GetFileType

GetStartupInfoA

FreeEnvironmentStringsA

GetEnvironmentStrings

FreeEnvironmentStringsW

GetEnvironmentStringsW

QueryPerformanceCounter

GetTickCount

GetCurrentProcessId

GetSystemTimeAsFileTime

InterlockedExchange

LoadLibraryA

InitializeCriticalSectionAndSpinCount

GetLocaleInfoW

GetLocaleInfoA

GetStringTypeA

GetStringTypeW

FindWindowW

LoadCursorW

RegisterClassExW

CreateWindowExW

DispatchMessageA

DefWindowProcW

GetWindowThreadProcessId

DispatchMessageW

GetPropW

UpdateWindow

IsWindow

CreateDialogParamW

ShowWindow

LoadIconW

IsDialogMessageW

TranslateMessage

SetPropW

RegisterWindowMessageW

PostQuitMessage

GetMessageW

RemovePropW

SetTimer

DestroyWindow

LoadImageW

GetIconInfo

DestroyIcon

GetObjectW

DeleteObject

OpenSCManagerW

EnumServicesStatusExW

GetUserNameW

ControlService

FreeSid

LookupAccountSidW

GetTokenInformation

OpenProcessToken

RevertToSelf

ImpersonateLoggedOnUser

RegCloseKey

RegOpenKeyExW

RegOpenKeyW

RegCreateKeyExW

CloseServiceHandle

DeleteService

RegEnumKeyExW

OpenServiceW

CreateProcessAsUserW

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

QueryServiceStatus

AllocateAndInitializeSid

SetEntriesInAclW

RegEnumValueW

ord165

SHGetSpecialFolderPathW

SHGetSpecialFolderLocation

SHGetPathFromIDListW

ShellExecuteExW

ExtractIconExW

SHGetFileInfoW

Shell_NotifyIconW

ord727

GetAdaptersInfo

ord17

GdipGetImageEncoders

GdipSaveImageToFile

GdipBitmapLockBits

GdipCreateBitmapFromHBITMAP

GdipGetImageWidth

GdiplusStartup

GdipDisposeImage

GdipGetImageEncodersSize

GdipAlloc

GdipGetImagePixelFormat

GdipGetImageHeight

GdipCloneImage

GdipFree

GdipCreateBitmapFromScan0

GdipCreateBitmapFromHICON

WTSRegisterSessionNotification

WTSUnRegisterSessionNotification

WTSEnumerateSessionsW

WTSFreeMemory

WTSQueryUserToken

WTSQuerySessionInformationW

CreateEnvironmentBlock

DestroyEnvironmentBlock

PathFileExistsW

StrStrIA

wnsprintfW

SHDeleteValueW

StrStrA

StrCatW

StrCmpNIA

StrChrA

SHSetValueW

StrCmpNIW

SHGetValueW

StrChrW

PathRemoveFileSpecW

SHGetValueA

PathFindExtensionW

PathIsDirectoryW

wvnsprintfA

wnsprintfA

StrStrIW

PathRemoveBackslashW

StrStrW

PathAppendW

SHDeleteKeyW

PathFindFileNameW

wvnsprintfW

GetFileVersionInfoW

VerQueryValueW

GetFileVersionInfoSizeW

WSACloseEvent

closesocket

getsockname

inet_ntoa

WSAWaitForMultipleEvents

WSACreateEvent

WSAGetOverlappedResult

bind

setsockopt

htons

WSAGetLastError

WSASocketW

connect

WSAIoctl

GetProcessImageFileNameW

CoCreateGuid

CoTaskMemFree

CoInitialize

CoCreateInstance

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ