IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

RegDeleteValueA

RegEnumValueA

RegEnumKeyExA

RegQueryInfoKeyA

RegQueryValueExA

CloseServiceHandle

OpenServiceA

OpenSCManagerA

RevertToSelf

ImpersonateLoggedOnUser

ChangeServiceConfig2A

CreateServiceA

QueryServiceStatus

DeleteService

IsValidSid

FreeSid

LookupAccountNameW

LookupAccountNameA

GetUserNameA

CreateProcessAsUserA

GetTokenInformation

QueryServiceStatusEx

LookupAccountSidA

ConvertSidToStringSidA

RegSetValueExW

RegOpenKeyExW

RegEnumKeyExW

RegDeleteKeyA

OpenServiceW

OpenSCManagerW

RegOpenKeyA

CreateProcessAsUserW

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

EnumDependentServicesA

ChangeServiceConfigA

StartServiceA

QueryServiceConfigA

SetNamedSecurityInfoW

SetSecurityInfo

SetEntriesInAclW

GetNamedSecurityInfoW

GetSecurityInfo

SetEntriesInAclA

AllocateAndInitializeSid

RegEnumKeyW

CopySid

GetLengthSid

AddAce

GetAce

GetAclInformation

AddAccessAllowedAceEx

InitializeAcl

GetSecurityDescriptorDacl

RegGetKeySecurity

RegOpenCurrentUser

LogonUserA

RegDeleteKeyW

RegQueryValueExW

LogonUserW

OpenProcessToken

ConvertSidToStringSidW

RegLoadKeyA

RegSetValueExA

RegCloseKey

RegCreateKeyExA

ControlService

RegOpenKeyExA

CryptSetHashParam

CryptExportKey

RegDeleteValueW

RegEnumValueW

CryptDestroyKey

CryptReleaseContext

CryptGenKey

CryptGetUserKey

CryptAcquireContextA

CryptDestroyHash

CryptHashData

CryptCreateHash

RegEnumKeyA

RegCreateKeyExW

AbortSystemShutdownA

AdjustTokenPrivileges

LookupPrivilegeValueA

CryptAcquireContextW

GetSidSubAuthority

GetSidSubAuthorityCount

GetSidIdentifierAuthority

InitiateSystemShutdownW

CryptSignHashW

CryptEnumProvidersW

CryptGetProvParam

CryptDecrypt

CryptGenRandom

RegisterEventSourceW

ReportEventW

RegisterEventSourceA

ReportEventA

DeregisterEventSource

ChangeServiceConfigW

QueryServiceConfigW

StartServiceW

RegQueryInfoKeyW

CryptGetHashParam

LookupPrivilegeNameA

LookupAccountSidW

RegUnLoadKeyW

NetRemoteTOD

NetServerGetInfo

DsGetDcNameA

NetWkstaUserGetInfo

NetGetJoinInformation

NetApiBufferFree

CoInitialize

StringFromGUID2

CoInitializeEx

CoUninitialize

CoSetProxyBlanket

CoInitializeSecurity

CoCreateInstance

CoCreateGuid

OleRun

SysAllocString

SysFreeString

VariantClear

VariantInit

SysStringLen

SysAllocStringByteLen

SafeArrayGetUBound

SafeArrayGetLBound

SafeArrayAccessData

SysStringByteLen

VariantChangeType

inet_addr

gethostbyname

WSAStartup

closesocket

WSAGetLastError

WSACleanup

ioctlsocket

GetModuleFileNameExA

GetAdaptersInfo

NotifyAddrChange

SendARP

GetProfilesDirectoryA

DeleteProfileW

GetUserProfileDirectoryA

ExpandEnvironmentStringsForUserW

CreateEnvironmentBlock

DestroyEnvironmentBlock

UnloadUserProfile

LoadUserProfileA

WTSEnumerateSessionsW

WTSQueryUserToken

WTSQuerySessionInformationA

WTSFreeMemory

WTSEnumerateSessionsA

WTSQuerySessionInformationW

CertFreeCertificateContext

CertNameToStrA

CertNameToStrW

CertGetCertificateContextProperty

CertGetNameStringA

CryptMsgGetParam

CryptQueryObject

CertCloseStore

CertAddCertificateContextToStore

CertEnumCertificatesInStore

CertOpenStore

CryptStringToBinaryA

CertCreateCertificateContext

PFXImportCertStore

PFXVerifyPassword

CertDeleteCertificateFromStore

CertVerifyTimeValidity

CertDuplicateCertificateContext

CertFindCertificateInStore

WinHttpQueryDataAvailable

WinHttpQueryHeaders

WinHttpReadData

WinHttpOpen

WinHttpSetTimeouts

WinHttpConnect

WinHttpCloseHandle

WinHttpQueryOption

WinHttpSetOption

WinHttpReceiveResponse

WinHttpWriteData

WinHttpSendRequest

WinHttpAddRequestHeaders

WinHttpSetStatusCallback

WinHttpOpenRequest

GetPrinterA

ClosePrinter

OpenPrinterW

GetPrinterDriverA

OpenPrinterA

ord202

AddPrinterConnectionA

EnumPrintersA

AddPrinterW

DeletePrinter

DeletePrinterConnectionW

GetFileVersionInfoA

VerQueryValueA

GetFileVersionInfoSizeA

WNetAddConnection2W

WNetCancelConnection2W

WNetCancelConnection2A

CanUserWritePwrScheme

WriteGlobalPwrPolicy

ReadGlobalPwrPolicy

GetActivePwrScheme

EnumPwrSchemes

ord13

ord9

ord14

ord3

ord243

ord237

ord178

ord141

ord169

ord88

ord246

ord244

ord238

ord78

ord175

ord245

ord150

xmlTextReaderName

xmlTextReaderRead

xmlNodeListGetString

xmlTextReaderDepth

xmlNewTextReaderFilename

xmlStrcmp

xmlTextReaderValue

xmlFree

xmlParseFile

xmlParseMemory

xmlFreeTextReader

xmlTextReaderGetAttribute

xmlDocGetRootElement

xmlFreeDoc

xmlCleanupParser

xmlTextReaderAttributeCount

SetupGetLineTextA

SetupCloseInfFile

SetupOpenInfFileA

SetupFindFirstLineA

SetupGetStringFieldA

CryptGetObjectUrl

send

getnameinfo

WSASetLastError

recv

DuplicateHandle

RtlUnwind

GetCPInfo

HeapReAlloc

HeapDestroy

ExitProcess

GetTimeFormatA

GetDateFormatA

GetDriveTypeA

FindFirstFileExA

GetCommandLineA

HeapSetInformation

GetFileInformationByHandle

PeekNamedPipe

ExitThread

SetConsoleCtrlHandler

DecodePointer

LCMapStringW

GetStringTypeW

UnhandledExceptionFilter

EncodePointer

IsDebuggerPresent

IsProcessorFeaturePresent

HeapCreate

GetACP

GetOEMCP

IsValidCodePage

SetHandleCount

GetStartupInfoW

GetConsoleCP

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetUserDefaultLCID

EnumSystemLocalesA

IsValidLocale

WriteConsoleW

SetEnvironmentVariableA

GetDriveTypeW

SetEndOfFile

SetEnvironmentVariableW

VirtualQuery

InterlockedExchange

LocalLock

CompareStringW

LocalUnlock

SetConsoleMode

GetConsoleMode

ReadConsoleW

ReadConsoleA

ConvertFiberToThread

DeleteFiber

DeviceIoControl

GetFileAttributesExW

TlsFree

TlsAlloc

InterlockedExchangeAdd

TlsSetValue

InterlockedCompareExchange

TlsGetValue

GetModuleHandleExW

GetFileType

GetCurrentThread

LoadLibraryExA

SetErrorMode

UnmapViewOfFile

OpenFileMappingW

MapViewOfFile

CompareFileTime

MoveFileExW

lstrcmpW

GetFullPathNameA

QueryPerformanceCounter

GetProcessTimes

SetLastError

ExpandEnvironmentStringsA

GetEnvironmentVariableW

QueryDosDeviceA

GetLocaleInfoA

SetDllDirectoryA

GetDiskFreeSpaceExA

GetSystemWindowsDirectoryW

GetWindowsDirectoryW

GetLocaleInfoW

SetFilePointer

Process32FirstW

Process32NextW

GetDiskFreeSpaceExW

GetComputerNameExW

HeapSize

GetCurrentDirectoryW

SetCurrentDirectoryW

GlobalFree

HeapValidate

CreateNamedPipeW

GetFirmwareEnvironmentVariableA

GlobalAlloc

SetSystemTime

ResetEvent

CreateEventA

GetFileSizeEx

GetTempPathA

GetFileAttributesA

SizeofResource

LockResource

LoadResource

FindResourceW

FindResourceExW

GetProcAddress

GetModuleHandleA

WideCharToMultiByte

MultiByteToWideChar

GetLastError

CreateTimerQueue

DeleteTimerQueue

FreeLibrary

CreateTimerQueueTimer

GetModuleFileNameW

GetModuleHandleW

lstrlenW

LoadLibraryW

GetSystemTime

InitializeCriticalSection

FormatMessageW

GetLocalTime

LeaveCriticalSection

EnterCriticalSection

InterlockedDecrement

Thread32Next

GetCurrentProcessId

OpenThread

GetCurrentThreadId

CloseHandle

Thread32First

CreateToolhelp32Snapshot

GetTickCount

GetThreadTimes

GetSystemTimes

Process32Next

Process32First

ResumeThread

SuspendThread

Sleep

DeleteFileA

MoveFileA

FindClose

FindNextFileA

FindFirstFileA

GetSystemDirectoryA

MoveFileExA

RaiseException

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

LoadLibraryA

GetExitCodeProcess

WaitForSingleObject

CreateProcessW

TerminateProcess

OpenProcess

GetSystemTimeAsFileTime

DisconnectNamedPipe

FlushFileBuffers

ReadFile

ConnectNamedPipe

CreateNamedPipeA

WriteFile

CreateFileA

CreateFileW

InterlockedIncrement

FileTimeToLocalFileTime

CopyFileA

CreateDirectoryA

GetWindowsDirectoryA

DeleteFileW

CreateThread

LocalFree

GetSystemInfo

ProcessIdToSessionId

GetCurrentProcess

SystemTimeToFileTime

LocalAlloc

lstrlenA

FormatMessageA

GetFileSize

HeapFree

SetStdHandle

GetStdHandle

CreatePipe

HeapAlloc

GetProcessHeap

GetSystemWindowsDirectoryA

SetCurrentDirectoryA

GetCurrentDirectoryA

GetModuleFileNameA

CreateProcessA

SystemTimeToTzSpecificLocalTime

CreateEventW

SetEvent

FileTimeToSystemTime

GetFileTime

TerminateThread

GetEnvironmentVariableA

SetProcessShutdownParameters

CreateMutexW

SetUnhandledExceptionFilter

RemoveDirectoryA

GetFileAttributesExA

GetVersion

GetTimeZoneInformation

ReleaseMutex

CreateMutexA

GetNativeSystemInfo

lstrcmpiA

GetVersionExA

GetFileAttributesW

CopyFileW

SetFileAttributesW

MoveFileW

FindNextFileW

FindFirstFileW

RemoveDirectoryW

CreateDirectoryW

SetFileAttributesA

AreFileApisANSI

GetProcessWindowStation

MessageBoxW

GetUserObjectInformationW

GetSystemMetrics

GetLastInputInfo

CharLowerW

wsprintfA

PostMessageA

MessageBoxA

GetDesktopWindow

wsprintfW

AddFontResourceW

AddFontResourceA

RemoveFontResourceA

SHGetPathFromIDListA

SHFileOperationA

SHGetMalloc

SHCreateDirectoryExW

SHCreateDirectoryExA

SHGetFolderPathA

SHGetSpecialFolderLocation

ord72

ord26

ord13

ord8

ord18

ord31

ord43

ord48

ord29

ord36

ord1

ord2

ord20

ord16

ord12

ord9

ord39

ord41

ord19

ord3

ord11

ord49

ord4

PathIsDirectoryA

StrStrA

PathFileExistsA

SHCopyKeyW

StrStrIW

StrStrIA

PathIsDirectoryEmptyA

PathFindExtensionA

StrTrimA

PathFindFileNameA

SHDeleteKeyA

PathFileExistsW

ord487

PathRemoveExtensionA

PathRenameExtensionA

StrStrW

PathIsNetworkPathW

PathIsDirectoryW

SHDeleteKeyW

GdipGetImageEncodersSize

GdipGetImageEncoders

GdipDisposeImage

GdipCloneImage

GdipLoadImageFromFile

GdipAlloc

GdipFree

GdiplusShutdown

GdiplusStartup

GdipSaveImageToFile

UuidToStringA

DsFreeNameResultW

DsCrackNamesW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ