IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

GetTraceLoggerHandle

GetTraceEnableLevel

GetTraceEnableFlags

RegisterTraceGuidsW

UnregisterTraceGuids

StartServiceCtrlDispatcherW

RegisterServiceCtrlHandlerExW

SetServiceStatus

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

InitializeAcl

AddAccessAllowedAce

RegCreateKeyExW

RegSetValueExW

RegCloseKey

RegQueryValueExW

RegOpenKeyExW

RegEnumKeyExW

ConvertSidToStringSidW

LookupAccountSidW

GetLengthSid

AllocateAndInitializeSid

FreeSid

RegEnumValueW

RegQueryInfoKeyW

RegDeleteValueW

EqualDomainSid

GetSidSubAuthorityCount

AccessCheck

IsValidSid

LookupAccountNameW

AddAccessAllowedAceEx

AddAccessDeniedAceEx

AddAce

GetAce

GetAclInformation

SetSecurityDescriptorGroup

CopySid

SetSecurityDescriptorOwner

EqualSid

ConvertStringSidToSidW

CreateWellKnownSid

AdjustTokenPrivileges

PrivilegeCheck

LookupPrivilegeValueW

CheckTokenMembership

DuplicateToken

ReportEventW

DeregisterEventSource

GetTokenInformation

OpenThreadToken

OpenProcessToken

RegisterEventSourceW

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

WaitForSingleObject

EncodePointer

GetTimeZoneInformation

GetDiskFreeSpaceW

SetErrorMode

GetLastError

InitializeCriticalSectionAndSpinCount

Sleep

GetCurrentThreadId

CloseHandle

GetComputerNameW

GetComputerNameExW

GetVolumeInformationW

DefineDosDeviceW

GetEnvironmentVariableW

GetSystemWindowsDirectoryW

FindClose

FindVolumeClose

FindNextFileW

FindFirstFileW

FindNextVolumeW

FindFirstVolumeW

GetProcAddress

LoadLibraryW

ExpandEnvironmentStringsW

CreateThread

SetLastError

GetVersionExW

MultiByteToWideChar

FormatMessageW

GetCurrentThread

LoadLibraryExW

FreeLibrary

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

GetCurrentProcessId

GetVolumePathNamesForVolumeNameW

ReadFile

DeleteFileW

MoveFileExW

GetFileAttributesW

WriteFile

SetFileAttributesW

GetTickCount

QueryPerformanceCounter

GetModuleHandleW

SetUnhandledExceptionFilter

GetStartupInfoW

CreateEventW

OpenThread

CreateWaitableTimerW

SetEvent

SetWaitableTimer

CancelWaitableTimer

HeapSetInformation

GetCommandLineW

CompareStringW

LocalFree

LocalAlloc

CreateFileW

ResetEvent

DeviceIoControl

GetVolumeNameForVolumeMountPointW

GetDriveTypeW

QueryDosDeviceW

SetVolumeMountPointW

GetVolumePathNameW

GetSystemDirectoryW

lstrlenW

RaiseException

DeleteVolumeMountPointW

CreateDirectoryW

HeapAlloc

GetProcessHeap

HeapFree

GetSystemTimeAsFileTime

FlushFileBuffers

GetTickCount64

GetOverlappedResult

WaitForMultipleObjects

SetThreadPriority

ResumeThread

LoadStringW

RegisterDeviceNotificationW

UnregisterDeviceNotification

wcsncmp

memcmp

memset

_snwscanf_s

_wcslwr

_wcsupr

wcsnlen

strncmp

_ultow_s

wcscpy_s

wcscat_s

swprintf_s

_purecall

_vsnwprintf

free

realloc

_wcsicmp

memmove

_onexit

_lock

__dllonexit

_unlock

??1type_info@@UEAA@XZ

wcschr

_vscwprintf

memcpy

_beginthreadex

towupper

iswspace

wcsrchr

_errno

malloc

_wcsnicmp

qsort

wcsstr

??0exception@@QEAA@AEBQEBD@Z

??1exception@@UEAA@XZ

wcstoul

iswdigit

_vsnprintf

?terminate@@YAXXZ

??0exception@@QEAA@AEBV0@@Z

memcpy_s

memmove_s

??0exception@@QEAA@XZ

?what@exception@@UEBAPEBDXZ

??0exception@@QEAA@AEBQEBDH@Z

_CxxThrowException

_callnewh

__set_app_type

_fmode

_commode

__setusermatherr

_amsg_exit

_initterm

_wcmdln

exit

_cexit

_exit

_XcptFilter

__C_specific_handler

__wgetmainargs

__CxxFrameHandler3

ord23

ord32

ord17

ord20

ord16

ord58

ord30

CoImpersonateClient

CoTaskMemRealloc

CoSetProxyBlanket

StringFromCLSID

CoGetObjectContext

CoFreeUnusedLibraries

CLSIDFromString

CoCreateGuid

CoTaskMemFree

CoTaskMemAlloc

CoUninitialize

CoCreateInstance

CoInitializeSecurity

CoInitializeEx

CoDisconnectContext

CoRevertToSelf

SHDeleteKeyW

SysAllocStringLen

LoadRegTypeLi

VariantClear

GetErrorInfo

SysFreeString

SysAllocString

VariantChangeType

SysStringLen

VariantInit

VariantCopy

I_RpcBindingInqLocalClientPID

UuidToStringW

RpcStringFreeW

NtClose

NtCreateSymbolicLinkObject

RtlInitUnicodeString

NtThawTransactions

NtFreezeTransactions

NtQuerySystemInformation

RtlNtStatusToDosErrorNoTeb

NtQueryVolumeInformationFile

NtQuerySymbolicLinkObject

NtOpenSymbolicLinkObject

RtlNtStatusToDosError

NtThawRegistry

NtFreezeRegistry

NtAllocateUuids

NtResetEvent

LdrGetDllHandle

LdrGetProcedureAddress

RtlInitAnsiString

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

RtlSetOwnerSecurityDescriptor

RtlCreateSecurityDescriptor

RtlLengthSid

RtlAllocateAndInitializeSid

NtDeleteKey

NtAdjustPrivilegesToken

NtSetValueKey

NtQueryValueKey

NtSetSecurityObject

NtOpenProcessToken

RtlAddAccessAllowedAceEx

RtlLengthSecurityDescriptor

RtlFreeHeap

RtlAllocateHeap

NtOpenFile

RtlStringFromGUID

RtlFreeUnicodeString

RtlGUIDFromString

NtDeviceIoControlFile

NtWaitForSingleObject

NtCreateEvent

NtQueryKey

NtEnumerateKey

NtQueryAttributesFile

NtOpenKey

RtlCreateAcl

NtUnloadKey

RtlFreeSid

RtlSetDaclSecurityDescriptor

NtDeleteValueKey

NtLoadKey

NtOpenThreadToken

NtCreateKey

EtwTraceMessage

?LoadVssSnapshotSetDescription@@YAJPEBGPEAPEAVIVssSnapshotSetDescription@@U_GUID@@@Z

CreateWriter

?CreateVssSnapshotSetDescription@@YAJU_GUID@@JPEAPEAVIVssSnapshotSetDescription@@@Z

CreateWriterEx

VssFreeSnapshotPropertiesInternal

NetShareGetInfo

NetLocalGroupGetMembers

NetShareEnum

NetShareDel

NetApiBufferFree

NetShareAdd

OpenCluster

OpenClusterResource

GetClusterResourceState

CloseClusterResource

ClusterResourceControl

CloseCluster

GetNodeClusterState

ord9

ord8

ResUtilGetResourceName

ResUtilEnumResourcesEx

SetupDiCallClassInstaller

CM_Get_Parent

SetupDiGetDeviceInstallParamsW

SetupDiSetClassInstallParamsW

SetupDiGetDeviceRegistryPropertyW

SetupDiEnumDeviceInfo

SetupDiDestroyDeviceInfoList

SetupDiGetDeviceInterfaceDetailW

SetupDiEnumDeviceInterfaces

SetupDiGetClassDevsW

ord7

ord4

ord6

ord3

ord5

ord8

ord1

ord2

ord11

ord10

ord9

AuthzRegisterSecurityEventSource

AuthzUnregisterSecurityEventSource

AuthzReportSecurityEventFromParams

GetStorageDependencyInformation

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE