IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

_wcsicmp

_purecall

wcschr

memmove

_wtoi

towupper

wcsstr

_wcsnicmp

_vsnwprintf

_stricmp

malloc

_initterm

free

atoi

__C_specific_handler

_unlock

__dllonexit

_lock

_onexit

memset

_vsnprintf

_ultoa

memcmp

wcscpy_s

memcpy

strncmp

_ultow

_amsg_exit

_XcptFilter

ceil

RpcServerUnregisterIf

RpcServerInqCallAttributesW

NdrClientCall3

RpcServerSubscribeForNotification

RpcServerUnsubscribeForNotification

RpcAsyncAbortCall

NdrAsyncServerCall

Ndr64AsyncServerCallAll

UuidToStringW

I_RpcBindingInqSecurityContextKeyInfo

Ndr64AsyncClientCall

UuidIsNil

I_RpcGetPortAllocationData

I_RpcServerInqLocalConnAddress

I_RpcBindingIsClientLocal

I_RpcServerInqRemoteConnAddress

TowerExplode

NdrServerCallAll

I_RpcServerRegisterForwardFunction

RpcServerRegisterIf2

I_RpcExceptionFilter

I_RpcServerSetAddressChangeFn

I_RpcSystemFunction001

NdrClientCall2

NdrServerCall2

RpcRaiseException

NdrAsyncClientCall

MesEncodeFixedBufferHandleCreate

MesDecodeBufferHandleCreate

MesHandleFree

NdrMesTypeDecode2

NdrMesTypeAlignSize2

NdrMesTypeEncode2

RpcErrorGetNextRecord

RpcErrorEndEnumeration

RpcErrorResetEnumeration

RpcErrorStartEnumeration

RpcErrorSaveErrorInfo

RpcStringBindingComposeW

RpcMgmtSetServerStackSize

I_RpcFwThisIsTheManager

I_RpcAllocate

I_RpcFree

RpcMgmtIsServerListening

RpcServerListen

RpcServerUseProtseqEpExW

RpcMgmtEnableIdleCleanup

I_RpcFilterDCOMActivation

RpcRevertToSelf

RpcBindingServerFromClient

RpcBindingUnbind

RpcBindingBind

RpcBindingCreateW

RpcBindingSetObject

RpcAsyncCancelCall

RpcBindingFromStringBindingW

RpcServerRegisterAuthInfoW

RpcStringFreeW

RpcStringBindingParseW

RpcBindingToStringBindingW

RpcBindingVectorFree

I_RpcServerCheckClientRestriction

RpcServerInqBindings

RpcRevertToSelfEx

I_RpcBindingInqMarshalledTargetInfo

I_RpcBindingInqWireIdForSnego

RpcBindingSetOption

RpcImpersonateClient

I_RpcBindingInqLocalClientPID

I_RpcBindingInqTransportType

RpcAsyncCompleteCall

RpcAsyncInitializeHandle

UuidCreate

RpcBindingSetAuthInfoW

RpcBindingSetAuthInfoExW

RpcBindingReset

RpcServerRegisterIfEx

RpcBindingFree

RpcBindingCopy

LsaClose

EventWrite

DuplicateToken

GetUserNameW

StartServiceW

CreateProcessAsUserW

ImpersonateLoggedOnUser

CheckTokenMembership

RegSetValueExW

DuplicateTokenEx

LsaFreeMemory

LogonUserExExW

LsaRetrievePrivateData

LsaOpenPolicy

SetTokenInformation

A_SHAFinal

A_SHAUpdate

A_SHAInit

LookupAccountNameW

TraceMessage

RegQueryValueExW

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

InitializeAcl

AllocateAndInitializeSid

AddAccessAllowedAce

FreeSid

RegOpenKeyExW

EventRegister

GetLengthSid

RegCloseKey

RegisterServiceCtrlHandlerExW

AllocateLocallyUniqueId

SetServiceStatus

AccessCheck

GetSecurityDescriptorLength

OpenSCManagerW

ConvertStringSecurityDescriptorToSecurityDescriptorW

OpenProcessToken

ControlService

CloseServiceHandle

QueryServiceStatusEx

OpenServiceW

SaferCloseLevel

SaferComputeTokenFromLevel

SaferCreateLevel

GetSecurityDescriptorDacl

ConvertSidToStringSidW

IsValidSecurityDescriptor

ReportEventW

RegGetValueW

LookupAccountSidW

GetAce

DeregisterEventSource

RegisterEventSourceW

RegQueryValueW

RegLoadMUIStringW

CommandLineFromMsiDescriptor

CryptGenRandom

CryptReleaseContext

CryptAcquireContextW

RegOpenKeyExA

RegQueryValueExA

RegisterTraceGuidsW

GetTraceEnableLevel

GetTraceLoggerHandle

GetTraceEnableFlags

SaferiCompareTokenLevels

GetSidSubAuthority

InitializeSid

GetSidLengthRequired

SetThreadToken

RegOpenUserClassesRoot

RevertToSelf

ImpersonateAnonymousToken

EqualSid

CopySid

GetTokenInformation

OpenThreadToken

RegEnumValueW

RegQueryInfoKeyW

RegNotifyChangeKeyValue

IsValidSid

CreateWellKnownSid

QueryServiceStatus

EventEnabled

GetSystemWow64DirectoryW

GetSystemDirectoryW

SearchPathW

CreateFileMappingW

OpenFileMappingW

InitializeCriticalSectionAndSpinCount

UnmapViewOfFile

MapViewOfFile

SwitchToThread

InterlockedPushEntrySList

ResetEvent

InterlockedPopEntrySList

GetModuleHandleW

LoadLibraryExW

FindActCtxSectionGuid

ReleaseActCtx

FindActCtxSectionStringW

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

ReleaseSRWLockShared

InitializeSRWLock

AcquireSRWLockShared

AddRefActCtx

GetDriveTypeW

TlsSetValue

OpenProcess

InitializeCriticalSection

IsWow64Process

GetComputerNameExW

OpenEventW

ExpandEnvironmentStringsW

GetVersionExW

WaitForMultipleObjects

GetExitCodeProcess

CompareFileTime

CheckElevationEnabled

GetFullPathNameW

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

GetSystemTimeAsFileTime

GetCurrentProcessId

GetCurrentThreadId

GetTickCount

LoadLibraryA

GetProcAddress

FreeLibrary

TlsAlloc

GetDiskFreeSpaceA

GetLastError

Sleep

QueryPerformanceCounter

GlobalMemoryStatus

GetComputerNameA

lstrcmpW

GetProcessHeap

HeapFree

HeapAlloc

CreateMutexW

SetThreadpoolWait

CreateThreadpool

SetThreadpoolThreadMaximum

SetThreadpoolThreadMinimum

CloseThreadpool

CreateThreadpoolWait

DuplicateHandle

OpenThread

GetProcessIdOfThread

ReleaseMutex

FindFirstFileW

FindClose

UnregisterWait

CompareStringA

MapViewOfFileEx

VirtualFree

GetModuleHandleExW

DelayLoadFailureHook

CreateFileW

SetLastError

LocalAlloc

DeviceIoControl

CloseHandle

LocalFree

VirtualQuery

VirtualAlloc

GetSystemInfo

VirtualProtect

SetThreadStackGuarantee

CreateThread

SleepEx

lstrlenW

RegisterWaitForSingleObject

EnterCriticalSection

LeaveCriticalSection

CreateEventW

SetEvent

WaitForSingleObject

QueueUserWorkItem

CompareStringW

GetCurrentThread

DeleteTimerQueueTimer

CreateTimerQueueTimer

GetModuleFileNameW

DeleteCriticalSection

TlsGetValue

InitializeSListHead

RtlIntegerToUnicodeString

DbgPrintEx

NtQueryDirectoryObject

NtOpenDirectoryObject

NtOpenSection

RtlGetNtProductType

WinSqmIsOptedIn

RtlSetSaclSecurityDescriptor

RtlSetDaclSecurityDescriptor

RtlSetGroupSecurityDescriptor

RtlSetOwnerSecurityDescriptor

RtlCreateSecurityDescriptor

RtlAddAce

RtlCreateAcl

NtQueryMutant

RtlOemStringToUnicodeString

RtlInitAnsiString

NtDuplicateToken

RtlUpcaseUnicodeString

RtlSubAuthoritySid

RtlInitializeSid

RtlLengthRequiredSid

NtAllocateLocallyUniqueId

RtlAllocateAndInitializeSid

WinSqmEventWrite

WinSqmEventEnabled

NtClose

NtQueryInformationFile

RtlFreeUnicodeString

RtlCreateUnicodeString

RtlLengthSid

RtlGetSaclSecurityDescriptor

RtlCopySid

NtOpenKey

NtQueryKey

DbgPrint

RtlInitializeCriticalSectionAndSpinCount

NtQuerySystemInformation

NtQueryInformationToken

NtCompareTokens

RtlEqualSid

RtlDeleteCriticalSection

RtlImageNtHeader

RtlAllocateHeap

RtlFreeHeap

NtOpenFile

RtlNtStatusToDosError

RtlInitializeCriticalSection

NtSetUuidSeed

RtlEqualUnicodeString

RtlInitUnicodeString

WSASocketW

WSAGetLastError

WSAIoctl

WSAAddressToStringW

WSAEnumProtocolsW

FreeContextBuffer

EnumerateSecurityPackagesW

FWIndicatePortInUse

FWResetIndicatedPortInUse

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ