NtQueryInformationProcess
NtClose
NtQuerySecurityObject
RtlFreeHeap
NtOpenFile
RtlDosPathNameToNtPathName_U
RtlFreeUnicodeString
RtlCreateUnicodeStringFromAsciiz
RtlCreateSecurityDescriptor
RtlGetDaclSecurityDescriptor
RtlQueryInformationAcl
RtlLengthSid
RtlCreateAcl
RtlAddAccessAllowedAce
RtlGetAce
RtlFreeSid
NtSetSecurityObject
RtlAllocateAndInitializeSid
RtlSetDaclSecurityDescriptor
RtlSelfRelativeToAbsoluteSD
NtOpenProcessToken
NtQueryInformationToken
_wcsicmp
NtAdjustPrivilegesToken
RtlSetOwnerSecurityDescriptor
memset
memcmp
_stricmp
strrchr
memcpy
NtQueryDirectoryFile
NtCreateFile
RtlInitUnicodeString
wcscat
wcscmp
wcsrchr
wcscpy
__chkstk
strlen
wcslen
wcsncat
wcschr
strcpy
LdrGetDllHandle
strcat
strcmp
RtlCopyUnicodeString
RtlLeaveCriticalSection
RtlEnterCriticalSection
RtlFreeAnsiString
RtlUnicodeStringToAnsiString
RtlExpandEnvironmentStrings_U
wcsncpy
RtlZeroMemory
LdrLoadDll
NtSetInformationFile
NtOpenKey
NtQueryValueKey
NtSetValueKey
NtFlushKey
NtQueryVolumeInformationFile
NtOpenDirectoryObject
NtCreateMutant
NtOpenMutant
NtReleaseMutant
NtWaitForSingleObject
NtQuerySystemInformation
_snwprintf
NtQueryInformationFile
NtFlushBuffersFile
NtWriteFile
LdrUnloadDll
LdrGetProcedureAddress
RtlInitAnsiString
NtReadFile
NtDeleteFile
_strupr
RtlAllocateHeap
RtlCreateHeap
RtlReAllocateHeap
NtDelayExecution
_vsnprintf
NtDisplayString
RtlAnsiStringToUnicodeString
