IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

SHDeleteKeyA

__CxxFrameHandler3

??3@YAXPAX@Z

??2@YAPAXI@Z

memcpy

memset

_malloc_crt

strstr

ceil

memmove

??1exception@std@@UAE@XZ

??0exception@std@@QAE@XZ

free

malloc

strrchr

_strrev

_stricmp

_onexit

_lock

__dllonexit

_unlock

__clean_type_info_names_internal

_crt_debugger_hook

?_type_info_dtor_internal_method@type_info@@QAEXXZ

?terminate@@YAXXZ

__CppXcptFilter

_adjust_fdiv

_amsg_exit

_initterm_e

_initterm

_decode_pointer

_encoded_null

_strnicmp

_encode_pointer

_except_handler4_common

calloc

_snprintf

_beginthreadex

wcstombs

atol

strncat

strchr

sprintf

strncmp

atoi

realloc

??_U@YAPAXI@Z

fopen

fwrite

fclose

strncpy

??0exception@std@@QAE@ABV01@@Z

_CxxThrowException

_invalid_parameter_noinfo

GetFileAttributesA

FreeLibrary

MultiByteToWideChar

WideCharToMultiByte

lstrcmpA

GetPrivateProfileStringA

GetVersionExA

GetLastError

ResetEvent

lstrlenA

GetDiskFreeSpaceExA

FindClose

LocalFree

LocalReAlloc

LocalAlloc

GetFileSize

CreateFileA

WriteFile

MoveFileA

ReadFile

lstrcatA

SetFilePointer

GetModuleFileNameA

GetCurrentProcess

VirtualAllocEx

GetLocalTime

MoveFileExA

GetTickCount

HeapFree

HeapAlloc

GetProcessHeap

OutputDebugStringA

UnmapViewOfFile

InterlockedExchange

VirtualFree

VirtualAlloc

GlobalFree

GlobalUnlock

GlobalLock

GlobalAlloc

GlobalSize

LocalSize

DisconnectNamedPipe

PeekNamedPipe

WaitForMultipleObjects

GetStartupInfoA

CreatePipe

GlobalMemoryStatusEx

DeviceIoControl

GetSystemInfo

GetModuleHandleA

ReleaseMutex

OpenEventA

SetErrorMode

CreateMutexA

SetUnhandledExceptionFilter

FreeConsole

CreateToolhelp32Snapshot

lstrcmpiA

GetCurrentThreadId

CreateRemoteThread

OpenProcess

Module32Next

Module32First

InterlockedCompareExchange

TerminateProcess

UnhandledExceptionFilter

IsDebuggerPresent

QueryPerformanceCounter

GetCurrentProcessId

GetSystemTimeAsFileTime

Sleep

CancelIo

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

SetEvent

WaitForSingleObject

DeleteFileA

LoadLibraryA

GetProcAddress

lstrcpyA

CloseHandle

CreateEventA

CreateDirectoryA

IsWindow

CloseWindow

OpenDesktopA

GetThreadDesktop

GetUserObjectInformationA

OpenInputDesktop

SetThreadDesktop

CloseDesktop

ExitWindowsEx

GetProcessWindowStation

OpenWindowStationA

SetProcessWindowStation

GetCursorPos

SetRect

GetDesktopWindow

GetDC

ReleaseDC

GetCursorInfo

GetSystemMetrics

GetClipboardData

OpenClipboard

EmptyClipboard

SetClipboardData

CloseClipboard

mouse_event

SetCursorPos

SetCapture

MapVirtualKeyA

keybd_event

DestroyCursor

DispatchMessageA

TranslateMessage

GetMessageA

wsprintfA

CharNextA

MessageBoxA

SendMessageA

GetWindowThreadProcessId

IsWindowVisible

EnumWindows

GetWindowTextA

GetForegroundWindow

GetAsyncKeyState

GetKeyState

GetActiveWindow

CallNextHookEx

UnhookWindowsHookEx

PostMessageA

PostQuitMessage

DefWindowProcA

UpdateWindow

ShowWindow

CreateWindowExA

RegisterClassA

WindowFromPoint

LoadIconA

LoadCursorA

CreateCompatibleDC

CreateDIBSection

DeleteDC

GetDIBits

CreateCompatibleBitmap

BitBlt

SelectObject

GetStockObject

DeleteObject

AbortSystemShutdownA

OpenEventLogA

ClearEventLogA

CloseEventLog

RegOpenKeyA

RegQueryValueExA

RegSetValueExA

StartServiceA

OpenSCManagerA

OpenServiceA

QueryServiceStatus

ControlService

DeleteService

CloseServiceHandle

RegOpenKeyExA

RegQueryValueA

RegCloseKey

LsaFreeMemory

LsaOpenPolicy

LookupAccountNameA

IsValidSid

OpenProcessToken

CreateProcessAsUserA

SetTokenInformation

DuplicateTokenEx

SetServiceStatus

RegisterServiceCtrlHandlerA

LookupAccountSidA

GetTokenInformation

LockServiceDatabase

ChangeServiceConfigA

AdjustTokenPrivileges

LookupPrivilegeValueA

FreeSid

SetSecurityDescriptorDacl

AddAccessAllowedAce

InitializeAcl

GetLengthSid

AllocateAndInitializeSid

InitializeSecurityDescriptor

RegEnumValueA

RegEnumKeyExA

RegDeleteValueA

RegDeleteKeyA

RegCreateKeyExA

QueryServiceConfigA

EnumServicesStatusA

UnlockServiceDatabase

SHGetSpecialFolderPathA

SHGetFileInfoA

sendto

bind

inet_addr

WSAAsyncSelect

WSAConnect

inet_ntoa

socket

__WSAFDIsSet

connect

WSAIoctl

WSACleanup

setsockopt

ioctlsocket

gethostname

htonl

listen

accept

send

select

recv

closesocket

gethostbyname

ntohs

WSAStartup

WSAGetLastError

recvfrom

WSARecv

getpeername

WSAAsyncGetHostByName

htons

WSASend

getsockname

GetUserProfileDirectoryA

GetProfilesDirectoryA

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

GetModuleFileNameExA

EnumProcessModules

ImmGetCompositionStringA

ImmReleaseContext

ImmGetContext

InternetCloseHandle

InternetReadFile

InternetOpenUrlA

InternetOpenA

capCreateCaptureWindowA

capGetDriverDescriptionA

ICSeqCompressFrameEnd

ICCompressorFree

ICClose

ICSeqCompressFrame

ICSendMessage

ICOpen

ICSeqCompressFrameStart

WTSFreeMemory

WTSQueryUserToken

WTSQuerySessionInformationA

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ