QueryServiceStatus, RegOpenKeyExW, RevertToSelf, OpenServiceW, OpenSCManagerW, CloseServiceHandle, RegSetValueExW, RegCloseKey, RegOpenKeyW, RegQueryValueExW, RegCreateKeyExW, GetLengthSid, IsValidSecurityDescriptor, FreeSid, AddAccessAllowedAce, AllocateAndInitializeSid, InitializeAcl, GetSecurityInfo, SetSecurityDescriptorDacl, AddAccessDeniedAce, InitializeSecurityDescriptor, ImpersonateLoggedOnUser, LookupAccountSidW, GetTokenInformation, IsValidSid, OpenProcessToken

CertNameToStrW, CertGetEnhancedKeyUsage, CryptQueryObject, CryptMsgGetParam, CertFindCertificateInStore, CertFreeCertificateContext, CertCloseStore, CryptMsgClose, CertGetNameStringW

OpenProcess, CreateToolhelp32Snapshot, Process32FirstW, ProcessIdToSessionId, GetProcessTimes, CompareFileTime, Process32NextW, DuplicateHandle, SetLastError, HeapAlloc, GetProcessHeap, HeapFree, EnterCriticalSection, LeaveCriticalSection, InitializeCriticalSection, DeleteCriticalSection, GetModuleFileNameW, CreateMutexW, OpenMutexW, WaitForSingleObject, GetSystemDirectoryW, CreateFileMappingW, ReleaseMutex, MapViewOfFile, LocalFree, GetCurrentThread, LocalAlloc, lstrlenW, WideCharToMultiByte, VirtualProtect, GetLastError, CloseHandle, FreeLibrary, GetProcAddress, LoadLibraryW, OutputDebugStringW, GetCurrentProcess, OpenFileMappingW, GetCurrentProcessId, GetVersionExW, InterlockedExchange, LoadLibraryA, RaiseException, GetCurrentThreadId, GetCommandLineA, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, HeapCreate, HeapDestroy, VirtualFree, VirtualAlloc, HeapReAlloc, GetModuleHandleW, Sleep, ExitProcess, WriteFile, GetStdHandle, GetModuleFileNameA, GetCPInfo, InterlockedIncrement, InterlockedDecrement, GetACP, GetOEMCP, IsValidCodePage, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, LCMapStringW, HeapSize, SetHandleCount, GetFileType, GetStartupInfoA, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, QueryPerformanceCounter, GetTickCount, GetSystemTimeAsFileTime, InitializeCriticalSectionAndSpinCount, RtlUnwind, LCMapStringA, MultiByteToWideChar, GetStringTypeA, GetStringTypeW, GetLocaleInfoA, SetFilePointer, GetConsoleCP, GetConsoleMode, SetStdHandle, WriteConsoleA, GetConsoleOutputCP, WriteConsoleW, CreateFileA, FlushFileBuffers, SizeofResource, LockResource, LoadResource, FindResourceW, FindResourceExW, VirtualQuery, LoadLibraryExW, lstrlenA, ReadProcessMemory, InterlockedCompareExchange, GetLongPathNameW, ExpandEnvironmentStringsW, QueryDosDeviceW, GetFileAttributesW, CreateFileW, lstrcmpA, lstrcmpW, GetSystemInfo, ReadFile, GetFileSize, GetModuleHandleA, UnmapViewOfFile, GetVersionExA, WaitForMultipleObjectsEx, WaitForMultipleObjects, OpenEventW, CreateEventW, ResetEvent, PulseEvent, SetEvent, OpenSemaphoreW, CreateSemaphoreW, ReleaseSemaphore, GlobalSize, GetWindowsDirectoryW, EncodePointer, DecodePointer, IsProcessorFeaturePresent, GetStartupInfoW, GetCurrentDirectoryW, GetShortPathNameW, VerifyVersionInfoW, VerSetConditionMask, TryEnterCriticalSection, SetEndOfFile, DeleteFileW, CreateDirectoryW, lstrcpyW, GlobalFree, GlobalUnlock, GlobalLock, GlobalAlloc

StringFromGUID2, StringFromIID, CoTaskMemFree, CLSIDFromString, OleSaveToStream, GetHGlobalFromStream, CreateStreamOnHGlobal, OleLoadFromStream, IIDFromString

wsprintfW, DispatchMessageA, TranslateMessage, IsWindowUnicode, PeekMessageW, MsgWaitForMultipleObjectsEx, GetMessageA, DispatchMessageW, CharPrevW, CharNextW, GetSystemMetrics, GetMessageW

WintrustGetRegPolicyFlags, WinVerifyTrust, CryptCATAdminReleaseCatalogContext, CryptCATCatalogInfoFromContext, CryptCATAdminEnumCatalogFromHash, CryptCATAdminCalcHashFromFileHandle, CryptCATAdminAcquireContext, CryptCATAdminReleaseContext