IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_BYTES_REVERSED_LO

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_BYTES_REVERSED_HI

RtlTimeToElapsedTimeFields

RtlFreeOemString

NtDisplayString

RtlpWaitForCriticalSection

RtlFindLongestRunClear

PfxFindPrefix

mbstowcs

NtCreatePagingFile

toupper

NtRemoveIoCompletion

tan

isalpha

NtCreateSection

NtClose

LdrShutdownThread

ZwSetIoCompletion

ZwOpenThread

ZwRequestPort

ZwCreateJobSet

ZwEnumerateKey

RtlSetControlSecurityDescriptor

_alloca_probe

RtlRunDecodeUnicodeString

RtlAddAccessAllowedObjectAce

RtlCreateSecurityDescriptor

NtSetBootEntryOrder

wcscat

isspace

_clearfp

fputc

_mbctolower

_CIpow

cos

_mbsstr

asin

tanh

_strspnp

atexit

_putw

raise

_spawnv

_putenv

fread

__doserrno

_control87

fputwc

_tzset

wscanf

_strrev

_copysign

_strerror

mbstowcs

getchar

iswxdigit

fgetpos

_mbbtombc

QueueUserWorkItem

GetPrivateProfileSectionNamesW

OpenEventW

CreateTimerQueue

HeapSetInformation

WTSGetActiveConsoleSessionId

CommConfigDialogA

LoadLibraryExW

RtlFillMemory

EndUpdateResourceW

GetDateFormatW

LoadLibraryA

GetLocaleInfoW

SetConsoleMode

GetTimeZoneInformation

GetFullPathNameW

CancelDeviceWakeupRequest

WritePrivateProfileStringW

WriteConsoleOutputA

SetFileTime

GetProcessAffinityMask

FormatMessageW

EnumResourceTypesW

PeekNamedPipe

ReleaseActCtx

BeginUpdateResourceA

GetNumaAvailableMemoryNode

TlsAlloc

GetCurrentThread

EnumCalendarInfoA

WriteConsoleOutputCharacterW

CancelTimerQueueTimer

PeekConsoleInputW

LocalAlloc

QueryPerformanceCounter

GetEnvironmentStringsW

IsDebuggerPresent

GlobalGetAtomNameA

CreateIoCompletionPort

GetProcessHeaps

WritePrivateProfileStringA

VirtualAlloc

GetConsoleCharType

GetVolumePathNameW

EnumerateLocalComputerNamesA

GetVolumeInformationA

VerifyVersionInfoW

CallNamedPipeW

SetThreadPriorityBoost

GetTempFileNameA

BaseFlushAppcompatCache

lstrcmpW

UnhandledExceptionFilter

CloseConsoleHandle

GetProcessHeap

LZInit

LZCloseFile

GetSystemWow64DirectoryA

WritePrivateProfileSectionW

GetConsoleInputExeNameA

NlsGetCacheUpdateCount

GetFileInformationByHandle

ReadConsoleOutputCharacterA

OutputDebugStringW

FoldStringA

GetDriveTypeW

ProcessIdleTasks

SetSecurityDescriptorSacl

RegQueryMultipleValuesA

SaferRecordEventLogEntry

CredWriteDomainCredentialsA

MD5Update

LookupSecurityDescriptorPartsW

SystemFunction036

LsaSetInformationPolicy

TraceMessage

ChangeServiceConfigA

SaferiChangeRegistryScope

CryptDestroyHash

CryptEnumProvidersA

LsaLookupPrivilegeDisplayName

LsaQueryDomainInformationPolicy

OpenSCManagerW

I_ScGetCurrentGroupStateW

RegUnLoadKeyW

ElfOpenBackupEventLogW

LsaDeleteTrustedDomain

WmiSetSingleInstanceA

RegisterEventSourceW

CryptContextAddRef

OpenEventLogA

SystemFunction011

RegOpenKeyW

CredpDecodeCredential

WmiSetSingleInstanceW

ReadEventLogW

CryptDuplicateKey

AddAce

BuildTrusteeWithObjectsAndNameA

LookupPrivilegeNameA

RegNotifyChangeKeyValue

?sm_lpOSVERSIONINFO@CMdVersionInfo@@0PAU_OSVERSIONINFOW@@A

?ReadOrWriteUnlock@CSpinLock@@QAEX_N@Z

MpHeapCreate

?ReadUnlock@CReaderWriterLock@@QAEXXZ

MPCSUninitialize

?IsWriteLocked@CCritSec@@QBE_NXZ

??1CLockedSingleList@@QAE@XZ

?sm_dblDfltSpinAdjFctr@CReaderWriterLock@@1NA

?ReadLock@CSpinLock@@QAEXXZ

?GetSpinCount@CSpinLock@@QBEGXZ

?IsWriteUnlocked@CSmallSpinLock@@QBE_NXZ

?FindRecord@CLKRHashTable@@QBE?AW4LK_RETCODE@@PBX@Z

?BucketSize@CLKRHashTableStats@@SGJJ@Z

?_ReadLockSpin@CReaderWriterLock3@@AAEXW4SPIN_TYPE@1@@Z

?IsValid@CLKRHashTable@@QBE_NXZ

?sm_dblDfltSpinAdjFctr@CReaderWriterLock3@@1NA

?_EqualKeys@CLKRLinearHashTable@@ABE_NKK@Z

?IsUnlocked@CLockedDoubleList@@QBE_NXZ

?_IsLocked@CSpinLock@@ABE_NXZ

?_CurrentThreadId@CReaderWriterLock3@@CGJXZ

?ReadOrWriteLock@CFakeLock@@QAE_NXZ

?SetSpinCount@CReaderWriterLock3@@QAE_NG@Z

?_H0@CLKRLinearHashTable@@CGKKK@Z

?sm_wDefaultSpinCount@CSmallSpinLock@@1GA

?sm_llGlobalList@CLKRHashTable@@0VCLockedDoubleList@@A

?RemoveEntry@CLockedDoubleList@@QAEXQAVCListEntry@@@Z

?IsReadUnlocked@CLKRLinearHashTable@@QBE_NXZ

?IsWriteUnlocked@CLKRHashTable@@QBE_NXZ

?ReadUnlock@CSmallSpinLock@@QAEXXZ

?ConvertSharedToExclusive@CReaderWriterLock2@@QAEXXZ

?ConvertExclusiveToShared@CSmallSpinLock@@QAEXXZ

?ConvertExclusiveToShared@CReaderWriterLock2@@QAEXXZ

?SetDefaultSpinCount@CReaderWriterLock3@@SGXG@Z

?IsReadUnlocked@CFakeLock@@QBE_NXZ

?ConvertExclusiveToShared@CLKRLinearHashTable@@QBEXXZ

?GetSpinCount@CReaderWriterLock3@@QBEGXZ

?GetDefaultSpinAdjustmentFactor@CSmallSpinLock@@SGNXZ

?MpHeapCompact@@YAKPAX@Z

CryptExtAddP7R

CryptExtOpenCTL

CryptExtAddCTL

CryptExtAddCER

CryptExtAddPFX

CryptExtAddCTLW

CryptExtOpenCATW

CryptExtAddCRL

CryptExtOpenP7R

CryptExtOpenPKCS7W

CryptExtOpenSTRW

CryptExtOpenP7RW

CryptExtAddPFXW

CryptExtOpenCAT

CryptExtAddSPCW

CryptExtOpenCRL

CryptExtOpenCRLW

CryptExtOpenPKCS7

CryptExtAddP7RW

CryptExtAddCRLW

CryptExtOpenSTR

CryptExtAddCERW

CryptExtOpenCERW

CryptExtOpenCER

DllGetClassObject

CryptExtOpenCTLW

CryptExtAddSPC

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ