IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

GetDlgItemInt

EnumDisplaySettingsW

GetSystemMetrics

VkKeyScanExA

IsChild

GetMenu

IsMenu

CopyAcceleratorTableW

SetCursor

UnpackDDElParam

IsCharAlphaNumericW

GetMenuItemInfoA

GetTopWindow

CharPrevA

ReleaseCapture

DrawTextExW

LoadCursorW

LoadStringW

UpdateWindow

GetMenuContextHelpId

ToUnicode

LoadIconW

GetWindowRgn

MapVirtualKeyExA

DdeInitializeA

SetCursorPos

SetMenuContextHelpId

CopyIcon

DlgDirListComboBoxW

EnumDisplayDevicesW

GetMenuItemCount

GetWindowPlacement

CharNextA

SetWindowLongA

FrameRect

GetGUIThreadInfo

EnumDesktopsA

IsWindowEnabled

KillTimer

CreateIconFromResource

MessageBoxExW

ArrangeIconicWindows

SetDlgItemTextA

PostThreadMessageW

LoadImageA

CharToOemBuffA

FindWindowA

WaitMessage

CascadeChildWindows

EnumDisplaySettingsA

EnumDesktopWindows

CreateIconIndirect

GetKeyNameTextW

GetMessageA

LoadMenuIndirectA

GetMenuInfo

DdeEnableCallback

ShowOwnedPopups

DispatchMessageA

MapDialogRect

GetMenuDefaultItem

SendMessageCallbackA

ColorAdjustLuma

SHEnumKeyExA

PathIsUNCServerShareW

SHAutoComplete

StrCmpNIA

SHOpenRegStream2A

PathSkipRootA

StrCSpnW

PathParseIconLocationW

SHEnumValueW

SHRegEnumUSKeyW

UrlIsW

PathIsUNCServerShareA

StrToIntA

StrCSpnA

StrRChrIW

PathRemoveFileSpecW

PathCombineW

StrRChrIA

SHQueryInfoKeyA

PathIsLFNFileSpecW

PathIsURLW

StrRStrIA

SHRegGetBoolUSValueW

StrChrA

SHIsLowMemoryMachine

StrNCatW

SHSetThreadRef

StrRetToBufA

SHDeleteValueW

PathIsURLA

AssocQueryKeyA

ColorHLSToRGB

SHDeleteKeyA

PathIsUNCA

StrRetToStrW

SHCreateShellPalette

PathIsDirectoryEmptyW

PathGetDriveNumberA

StrCmpW

SHRegQueryInfoUSKeyW

PathIsDirectoryA

PathQuoteSpacesW

SHRegDeleteEmptyUSKeyA

wnsprintfW

PathIsNetworkPathA

PathAddBackslashW

PathFindSuffixArrayW

PathIsSameRootA

StrChrIW

StrChrW

PathIsContentTypeA

SHRegDeleteUSValueW

PathUndecorateA

SHRegGetUSValueW

SHRegEnumUSValueA

SHRegQueryUSValueA

PathSkipRootW

SHRegQueryUSValueW

PathAddExtensionW

PathCompactPathA

StrPBrkW

PathFileExistsA

PathFileExistsW

StrChrIA

PathRemoveBlanksA

RegCreateKeyA

OpenProcessToken

LookupPrivilegeValueA

InitializeAcl

SetEntriesInAuditListW

RegReplaceKeyW

CryptSetKeyParam

TrusteeAccessToObjectW

CryptDestroyKey

GetServiceDisplayNameW

OpenThreadToken

PrivilegedServiceAuditAlarmA

CreatePrivateObjectSecurity

SetServiceObjectSecurity

AdjustTokenPrivileges

BackupEventLogW

CryptExportKey

RegNotifyChangeKeyValue

SetFileSecurityW

LookupPrivilegeNameA

CryptGetDefaultProviderW

RegCreateKeyExA

RegSetValueExA

AddAce

GetPrivateObjectSecurity

CryptSetProviderExA

LookupPrivilegeValueW

RegisterEventSourceW

ReportEventW

GetAuditedPermissionsFromAclA

OpenServiceA

CreateProcessAsUserW

GetSecurityDescriptorSacl

EnumDependentServicesA

OpenServiceW

ImpersonateSelf

QueryServiceLockStatusW

CryptVerifySignatureA

GetAccessPermissionsForObjectW

BuildImpersonateTrusteeA

OpenSCManagerW

ChangeServiceConfigA

EqualPrefixSid

SetThreadToken

GetNamedSecurityInfoA

GetTrusteeTypeA

RegOpenKeyExW

LookupPrivilegeNameW

RegCreateKeyExW

UnlockServiceDatabase

RegDeleteKeyA

GetSecurityDescriptorLength

LookupAccountSidW

CryptAcquireContextA

RegSaveKeyW

DuplicateToken

GetAclInformation

GetTokenInformation

QueryServiceObjectSecurity

RegSetValueW

ConvertSecurityDescriptorToAccessW

GetNamedSecurityInfoExA

OutputDebugStringW

ExpandEnvironmentStringsA

VirtualAlloc

CreateMailslotW

GetConsoleCP

GlobalSize

GetThreadPriorityBoost

GetCurrencyFormatW

ReadConsoleOutputCharacterA

VirtualProtect

GetAtomNameW

LocalFlags

GetCommandLineA

lstrcmpi

GetStartupInfoW

PulseEvent

GetComputerNameA

GetFileAttributesA

FreeEnvironmentStringsA

CopyFileExA

MapViewOfFileEx

MapViewOfFile

GetTapeParameters

TlsGetValue

QueryDosDeviceW

DisableThreadLibraryCalls

SetHandleCount

CreateMutexW

OpenFileMappingA

WriteProcessMemory

SetConsoleActiveScreenBuffer

GetLocaleInfoA

ReadConsoleOutputW

GenerateConsoleCtrlEvent

FlushFileBuffers

HeapUnlock

GetFileAttributesW

FormatMessageW

FileTimeToDosDateTime

GetProcessPriorityBoost

VirtualFreeEx

VirtualQueryEx

ReadFileScatter

MoveFileExA

IsValidCodePage

GlobalFree

GetCurrentProcessId

PurgeComm

CreateFileMappingW

GetCommTimeouts

CancelDeviceWakeupRequest

LocalCompact

GetPrivateProfileSectionW

HeapCompact

WriteProfileSectionA

DuplicateHandle

GetPrivateProfileStringW

GetTimeFormatW

MkParseDisplayName

CoQueryProxyBlanket

StgOpenStorage

StringFromIID

UtConvertDvtd16toDvtd32

UtGetDvtd16Info

OleRun

UtConvertDvtd32toDvtd16

OleCreateLinkFromData

CoFileTimeToDosDateTime

OleMetafilePictFromIconAndLabel

CoTaskMemAlloc

CoUnmarshalInterface

OleDoAutoConvert

MonikerCommonPrefixWith

PropVariantClear

CoResumeClassObjects

CoTaskMemFree

OleLockRunning

CoCreateInstanceEx

CoRevertToSelf

CoLockObjectExternal

GetHGlobalFromStream

CoRegisterMessageFilter

GetDocumentBitStg

CoGetInstanceFromFile

CoInitializeSecurity

CoLoadLibrary

CoRegisterSurrogate

ReadClassStg

CreateILockBytesOnHGlobal

OleCreateLinkEx

CoReleaseServerProcess

FreePropVariantArray

StgGetIFillLockBytesOnFile

ReadFmtUserTypeStg

OleSave

CreatePointerMoniker

OleDuplicateData

GetConvertStg

CoImpersonateClient

IsEqualGUID

OpenOrCreateStream

OleConvertIStorageToOLESTREAM

CoGetTreatAsClass

OleSetAutoConvert

OleNoteObjectVisible

StringFromGUID2

CoGetMarshalSizeMax

ReadClassStm

OleLoadFromStream

CoQueryAuthenticationServices

CoRevokeMallocSpy

StgCreateDocfile

CoUnmarshalHresult

OleInitialize

WriteClassStm

CoRegisterPSClsid

CoMarshalInterface

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE