IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

CallNamedPipeW

GetCurrentThread

FreeLibrary

GetProcAddress

LoadLibraryW

DeleteFileW

GetTempFileNameW

MoveFileExW

GetVersionExW

DeleteCriticalSection

SetLastError

SetEndOfFile

MoveFileW

GetFileSize

GetSystemInfo

GetFileInformationByHandle

InitializeCriticalSection

DeviceIoControl

SuspendThread

GetFileAttributesW

ConnectNamedPipe

CreateNamedPipeW

ReadFile

PeekNamedPipe

DisconnectNamedPipe

GetModuleFileNameW

SetErrorMode

CreateThread

TerminateThread

GetExitCodeThread

LocalFree

LocalAlloc

SetConsoleCtrlHandler

GetModuleHandleW

GetSystemTimeAsFileTime

GetVolumeInformationW

GetDriveTypeW

GetLogicalDriveStringsW

BackupRead

BackupSeek

SetEvent

CreateEventW

CreateFileMappingW

OpenFileMappingW

MapViewOfFile

OpenProcess

UnmapViewOfFile

DuplicateHandle

GetCurrentProcess

GetFileTime

CreateFileW

CloseHandle

GetVersion

CreateMutexW

GetCurrentProcessId

GetCurrentThreadId

WaitForSingleObject

SetFilePointer

WriteFile

ReleaseMutex

FlushFileBuffers

lstrlenW

FindFirstFileW

FindClose

WideCharToMultiByte

FormatMessageW

GetTickCount

Sleep

GetLocalTime

MultiByteToWideChar

GetDateFormatW

GetTimeFormatW

FileTimeToSystemTime

FileTimeToLocalFileTime

GetSystemTime

SystemTimeToFileTime

GetLastError

GetProfileIntW

ResumeThread

GetProfileStringW

QueryPerformanceCounter

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

TerminateProcess

GetStartupInfoA

InterlockedCompareExchange

InterlockedExchange

RegisterServiceCtrlHandlerW

ImpersonateSelf

AllocateAndInitializeSid

GetLengthSid

InitializeAcl

AddAccessAllowedAce

SetSecurityDescriptorGroup

SetSecurityDescriptorOwner

IsValidSecurityDescriptor

AccessCheck

FreeSid

SetServiceStatus

RegisterEventSourceW

ReportEventW

DeregisterEventSource

ImpersonateNamedPipeClient

RevertToSelf

GetTokenInformation

LookupAccountSidW

LookupPrivilegeValueW

AdjustTokenPrivileges

RegOpenKeyW

RegReplaceKeyW

RegUnLoadKeyW

RegLoadKeyW

RegDeleteKeyW

RegRestoreKeyW

RegQueryInfoKeyW

RegEnumValueW

RegSaveKeyW

OpenThreadToken

OpenProcessToken

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

RegCreateKeyExW

RegSetValueExW

RegQueryValueExW

RegConnectRegistryW

RegDeleteValueW

RegOpenKeyExW

RegEnumKeyExW

RegCloseKey

StartServiceCtrlDispatcherW

_wgetdcwd

memcpy

_wcsicmp

memset

realloc

_CxxThrowException

__CxxFrameHandler3

wcschr

??0exception@std@@QAE@ABQBD@Z

?what@exception@std@@UBEPBDXZ

??1exception@std@@UAE@XZ

??0exception@std@@QAE@XZ

bsearch

wcsncmp

??2@YAPAXI@Z

_wcsdup

_invalid_parameter_noinfo

??0exception@std@@QAE@ABV01@@Z

memmove_s

_beginthreadex

_beginthread

printf

_stat64i32

_makepath

_splitpath

_timezone

_daylight

_tzname

_wcsnicmp

_stricmp

_getcwd

_chdir

_mkdir

_except_handler4_common

_unlock

__dllonexit

_encode_pointer

_lock

_onexit

_decode_pointer

_amsg_exit

__getmainargs

_cexit

_exit

_XcptFilter

_ismbblead

exit

_acmdln

_initterm

_initterm_e

_configthreadlocale

__setusermatherr

_adjust_fdiv

__p__commode

__p__fmode

__set_app_type

_crt_debugger_hook

?terminate@@YAXXZ

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_invoke_watson

_controlfp_s

_time64

malloc

calloc

_errno

??3@YAXPAX@Z

free

_tzset

floor

UpdateLocalUsersConfig

getLocalUsersConfigImage

_utf8_mbstowcs

V_strlcat

V_vsnwprintf

V_strlcpy

V_snprintf

V_wcslcat

V_snwprintf

V_localtime

V_wcslcpy

_utf8_mbstowcs_len

getLocalHostConfigImage

ReadHostConfigExW

UpdateLocalHostConfig

FreeConfig

?GetInstance@NtDllGlue@@SAPAV1@XZ

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z

??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z

??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z

?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z

?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB

??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ