IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

??1CVssWriter@@UAE@XZ

??0CVssJetWriter@@QAE@XZ

?OnPostRestore@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

?IsPathAffected@CVssWriter@@IBG_NPBG@Z

?OnFreezeEnd@CVssJetWriter@@UAG_N_N@Z

?OnPrepareSnapshotEnd@CVssJetWriter@@UAG_N_N@Z

?OnPrepareSnapshotBegin@CVssJetWriter@@UAG_NXZ

?OnVSSApplicationStartup@CVssWriter@@UAG_NXZ

?SetWriterFailure@CVssWriter@@IAGJJ@Z

?OnContinueIOOnVolume@CVssWriter@@UAG_NPAGU_GUID@@1@Z

?OnIdentify@CVssWriter@@UAG_NPAVIVssCreateWriterMetadata@@@Z

?Uninitialize@CVssJetWriter@@QAGXXZ

?OnPreRestore@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

?InstallAlternateWriter@CVssWriter@@QAGJU_GUID@@0@Z

?OnBackupCompleteBegin@CVssJetWriter@@UAG_NPAVIVssWriterComponents@@@Z

?OnPostSnapshot@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

?OnAbortBegin@CVssJetWriter@@UAGXXZ

?IsBootableSystemStateBackedUp@CVssWriter@@IBG_NXZ

?IsPartialFileSupportEnabled@CVssWriter@@IBG_NXZ

?GetCurrentSnapshotSetId@CVssWriter@@IBG?AU_GUID@@XZ

?CreateVssBackupComponents@@YGJPAPAVIVssBackupComponents@@@Z

?OnVSSShutdown@CVssWriter@@UAG_NXZ

?OnBackupComplete@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

?OnThawBegin@CVssJetWriter@@UAG_NXZ

?OnPrepareBackupEnd@CVssJetWriter@@UAG_NPAVIVssWriterComponents@@_N@Z

?OnFreezeBegin@CVssJetWriter@@UAG_NXZ

?OnPreRestoreBegin@CVssJetWriter@@UAG_NPAVIVssWriterComponents@@@Z

?OnPrepareBackup@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

isdigit

NtCreateJobObject

NtUnloadKey

RtlSetControlSecurityDescriptor

RtlAreBitsSet

RtlNumberGenericTableElementsAvl

DbgUiContinue

RtlQueryProcessHeapInformation

ZwRemoveProcessDebug

RtlImageRvaToVa

RtlLargeIntegerArithmeticShift

NlsAnsiCodePage

NtQuerySystemTime

NtSetTimerResolution

RtlSetEnvironmentVariable

RtlAddAuditAccessAceEx

_chkstk

LdrShutdownThread

NtAccessCheckByTypeAndAuditAlarm

LdrFlushAlternateResourceModules

ZwReadFileScatter

NtQueryDefaultUILanguage

RtlCheckForOrphanedCriticalSections

RtlGetLengthWithoutLastFullDosOrNtPathElement

NtLoadKey

RtlxAnsiStringToUnicodeSize

NtQueryInformationToken

RtlRunEncodeUnicodeString

RtlUnicodeToCustomCPN

NtAddBootEntry

DbgUiConvertStateChangeStructure

LdrFindResource_U

NtSetInformationDebugObject

NtQueryVirtualMemory

strpbrk

ZwReadVirtualMemory

ZwSetInformationToken

NtOpenSymbolicLinkObject

iswalpha

ZwSetTimer

NtReadVirtualMemory

ZwDeleteFile

RtlSystemTimeToLocalTime

ZwQueryVolumeInformationFile

NtSetTimer

IsProcessorFeaturePresent

LoadLibraryW

ConvertDefaultLocale

GlobalHandle

GetTempPathW

DosPathToSessionPathA

GetModuleHandleA

FindNextFileA

lstrcat

DeleteVolumeMountPointW

GetBinaryTypeW

VDMConsoleOperation

FindResourceExA

RemoveDirectoryA

lstrcmpW

SetConsoleMaximumWindowSize

SetupComm

SetConsoleMode

SetCalendarInfoW

GetNativeSystemInfo

IsWow64Process

OpenProfileUserMapping

CreateActCtxW

GetOEMCP

GetProcessVersion

GlobalFree

GetLongPathNameW

DefineDosDeviceW

VerSetConditionMask

GlobalGetAtomNameA

LZStart

EnumResourceLanguagesW

?WriteUnlock@CReaderWriterLock2@@QAEXXZ

?SetDefaultSpinAdjustmentFactor@CReaderWriterLock2@@SGXN@Z

?_H1@CLKRLinearHashTable@@CGKKK@Z

?ConvertSharedToExclusive@CReaderWriterLock2@@QAEXXZ

?_ReadOrWriteLock@CLKRLinearHashTable@@ABE_NXZ

?Push@CLockedSingleList@@QAEXQAVCSingleListEntry@@@Z

??0CReaderWriterLock2@@QAE@XZ

?TryWriteLock@CReaderWriterLock3@@QAE_NXZ

?TryWriteLock@CSmallSpinLock@@QAE_NXZ

?SetSpinCount@CCritSec@@QAE_NG@Z

GetClusterResourceNetworkName

ClusterNodeGetEnumCount

GetClusterFromGroup

DeleteClusterGroup

ClusterRegGetKeySecurity

SetClusterResourceName

ChangeClusterResourceGroup

ClusterRegQueryValue

ResumeClusterNode

ClusterNodeEnum

OfflineClusterGroup

GetClusterNetworkState

ClusterResourceTypeControl

ClusterNetworkControl

GetClusterNetInterfaceState

ClusterResourceGetEnumCount

PauseClusterNode

ClusterGroupOpenEnum

ClusterResourceTypeEnum

SetClusterName

GetDllVersion

FDICopy

FCICreate

FCIFlushFolder

FCIAddFile

FDITruncateCabinet

FCIDestroy

FDIIsCabinet

Extract

FCIFlushCabinet

DllGetVersion

DeleteExtractedFiles

FDICreate

FDIDestroy

?Format@VOL_LIODPDRV@@QAE?AW4FORMAT_ERROR_CODE@@PBVWSTRING@@PAVMESSAGE@@KKK@Z

?GetData@TLINK@@QAEAAVBIG_INT@@PAX@Z

?DoesIntersectSet@NUMBER_SET@@QBEEVBIG_INT@@0@Z

??1SPARSE_SET@@UAE@XZ

?SetCache@IO_DP_DRIVE@@QAEXPAVDRIVE_CACHE@@@Z

?QueryDisjointRangeAndAssignBuffer@TLINK@@QAEPAXPAVBIG_INT@@PAG1PAXK2@Z

?GetCannedSecurity@IFS_SYSTEM@@SGPAVCANNED_SECURITY@@XZ

?DismountVolume@IFS_SYSTEM@@SGEPBVWSTRING@@@Z

?Initialize@LOG_IO_DP_DRIVE@@QAEEPBVWSTRING@@PAVMESSAGE@@EG@Z

??1LOG_IO_DP_DRIVE@@UAE@XZ

?QueryDriveName@MOUNT_POINT_MAP@@QAEEPAVWSTRING@@0@Z

?AddVolumeName@MOUNT_POINT_MAP@@QAEEPAVWSTRING@@0@Z

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ