IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

__C_specific_handler

??0exception@@QEAA@AEBQEBDH@Z

??1type_info@@UEAA@XZ

_lock

_unlock

__dllonexit

malloc

_initterm

??_V@YAXPEAX@Z

_vsnprintf

??0exception@@QEAA@AEBQEBD@Z

??0exception@@QEAA@AEBV0@@Z

?what@exception@@UEBAPEBDXZ

_onexit

memmove

__CxxFrameHandler3

free

??3@YAXPEAX@Z

_amsg_exit

_XcptFilter

_callnewh

_purecall

_CxxThrowException

??0bad_cast@@QEAA@AEBV0@@Z

??1bad_cast@@UEAA@XZ

??0bad_cast@@QEAA@PEBD@Z

strchr

realloc

towupper

wcscat_s

??8type_info@@QEBAHAEBV0@@Z

_ultow_s

memmove_s

_wcstoui64

_wcsicmp

wcsstr

wcsncpy_s

wcscpy_s

_wtoi64

wcschr

wcsncmp

swscanf_s

_wtoi

tolower

setlocale

memcpy

___mb_cur_max_func

_errno

___lc_handle_func

___lc_codepage_func

__pctype_func

calloc

__crtLCMapStringW

___lc_collate_cp_func

memcmp

__crtCompareStringW

abort

??1exception@@UEAA@XZ

??0exception@@QEAA@XZ

_vsnprintf_s

memcpy_s

_vsnwprintf

?terminate@@YAXXZ

memset

FormatMessageW

TerminateProcess

GetCurrentProcess

OpenThreadToken

GetCurrentProcessId

GetCurrentThread

GetCurrentThreadId

HeapAlloc

GetProcessHeap

HeapFree

GetProcAddress

GetModuleHandleExW

GetModuleFileNameA

GetModuleHandleW

DebugBreak

OutputDebugStringW

IsDebuggerPresent

UnhandledExceptionFilter

GetLastError

SetLastError

RaiseException

SetUnhandledExceptionFilter

SetEvent

ResetEvent

CreateSemaphoreExW

InitializeCriticalSectionEx

InitializeCriticalSection

ReleaseSemaphore

CreateMutexExW

ReleaseMutex

WaitForSingleObjectEx

AcquireSRWLockExclusive

ReleaseSRWLockExclusive

AcquireSRWLockShared

WaitForSingleObject

CreateEventW

DeleteCriticalSection

InitializeSRWLock

EnterCriticalSection

ReleaseSRWLockShared

OpenSemaphoreW

LeaveCriticalSection

CloseHandle

CoReleaseServerProcess

CoFreeUnusedLibraries

CoCreateInstance

CoInitializeEx

CoAddRefServerProcess

CoUninitialize

CoTaskMemAlloc

CoCreateFreeThreadedMarshaler

CoTaskMemFree

CoSetProxyBlanket

CoSwitchCallContext

StringFromGUID2

CoCreateGuid

CoRevertToSelf

CoImpersonateClient

CoRevokeClassObject

CoEnableCallCancellation

CoDecrementMTAUsage

CoCancelCall

CoDisableCallCancellation

CoInitializeSecurity

CoRegisterClassObject

CoResumeClassObjects

CoDisconnectContext

RoActivateInstance

RoUninitialize

RoInitialize

RoRegisterActivationFactories

RoGetActivationFactory

RoRevokeActivationFactories

WindowsCreateString

WindowsCreateStringReference

WindowsCompareStringOrdinal

WindowsGetStringLen

WindowsIsStringEmpty

WindowsStringHasEmbeddedNull

WindowsDeleteString

WindowsDuplicateString

WindowsGetStringRawBuffer

EventRegister

EventSetInformation

EventUnregister

EventWriteTransfer

RoOriginateErrorW

RoOriginateError

RoTransformError

DecodePointer

EncodePointer

SetServiceStatus

RegisterServiceCtrlHandlerExW

SleepConditionVariableSRW

WakeAllConditionVariable

Sleep

InitOnceExecuteOnce

ConvertStringSecurityDescriptorToSecurityDescriptorW

ConvertSidToStringSidW

ConvertStringSidToSidW

MakeAbsoluteSD

RevertToSelf

ImpersonateLoggedOnUser

RtlLookupFunctionEntry

RtlVirtualUnwind

RtlCaptureContext

QueryPerformanceCounter

GetSystemTimeAsFileTime

GetTickCount

GetTickCount64

GetSystemTime

RegEnumKeyExW

RegDeleteKeyExW

RegQueryInfoKeyW

RegEnumValueW

RegDeleteValueW

RegCreateKeyExW

RegDeleteTreeW

RegGetValueW

RegCloseKey

RegOpenKeyExW

RegSetValueExW

WaitForThreadpoolTimerCallbacks

CreateThreadpoolTimer

SetThreadpoolTimer

SetThreadpoolWait

CloseThreadpoolTimer

WaitForThreadpoolWaitCallbacks

CreateThreadpoolWait

CloseThreadpoolWork

CloseThreadpoolWait

CreateThreadpoolWork

SubmitThreadpoolWork

WaitForThreadpoolWorkCallbacks

PowerSettingRegisterNotification

PowerSettingUnregisterNotification

OpenSCManagerW

CloseServiceHandle

OpenServiceW

ChangeServiceConfigW

VariantInit

LookupAccountSidW

LocalFree

FindClose

GetFileInformationByHandle

CreateDirectoryW

CreateFileW

SetFilePointerEx

SetEndOfFile

FindNextFileW

FindFirstFileW

ReadFile

WriteFile

CompareFileTime

GetFileSizeEx

GetFileAttributesW

FileTimeToSystemTime

SystemTimeToFileTime

NdrServerCallAll

NdrServerCall2

RpcRevertToSelfEx

RpcImpersonateClient

RpcServerUnregisterIf

RpcBindingVectorFree

RpcServerUseProtseqW

RpcServerInqBindings

RpcServerRegisterIf3

RpcEpRegisterW

RpcEpUnregister

UuidFromStringW

GetStringTypeW

MultiByteToWideChar

WideCharToMultiByte

DeleteTimerQueueTimer

CreateTimerQueueTimer

NtFlushBuffersFileEx

NtSetInformationFile

RtlDosPathNameToNtPathName_U

NtQueryInformationToken

DbgPrintEx

NtQueryWnfStateData

RtlUnsubscribeWnfStateChangeNotification

RtlCapabilityCheck

RtlInitUnicodeString

RtlIsMultiSessionSku

RtlSubscribeWnfStateChangeNotification

ord67

ord69

ord68

ord66

ApiSetQueryApiSetPresence

ResolveDelayLoadedAPI

DelayLoadFailureHook

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

?_Xlength_error@std@@YAXPEBD@Z

_initterm_e

_initterm

_o__initialize_narrow_environment

_o__initialize_onexit_table

_o__invalid_parameter_noinfo

_o__purecall

_o__register_onexit_function

_o__seh_filter_dll

memmove

_o__wcsicmp

_o_wcscat_s

_o_wcscpy_s

_o_wcsncat_s

_o__execute_onexit_table

_o__errno

_o__crt_atexit

_o__configure_narrow_argv

_o__cexit

__C_specific_handler

__std_terminate

__CxxFrameHandler4

_o___stdio_common_vswprintf

_o___stdio_common_vsnprintf_s

_o___std_type_info_destroy_list

_o___std_exception_destroy

_o___std_exception_copy

_CxxThrowException

memcmp

memcpy

memset

RpcServerInqDefaultPrincNameW

RpcServerRegisterIfEx

RpcServerInqCallAttributesW

RpcRevertToSelf

RpcServerRegisterAuthInfoW

UuidCreate

RpcStringBindingParseW

UuidFromStringW

RpcServerUnregisterIf

RpcBindingToStringBindingW

RpcServerUseProtseqEpW

RpcBindingFree

RpcEpResolveBinding

RpcStringFreeW

RpcNetworkIsProtseqValidW

RpcBindingSetAuthInfoExW

RpcStringBindingComposeW

RpcBindingFromStringBindingW

UuidCompare

RpcServerUnregisterIfEx

RpcServerRegisterIf3

RpcImpersonateClient

RpcRevertToSelfEx

NdrClientCall3

NdrServerCall2

NdrServerCallAll

UuidToStringW

AdjustTokenPrivileges

AllocateAndInitializeSid

ImpersonateSelf

GetLengthSid

DuplicateTokenEx

GetTokenInformation

GetSidSubAuthorityCount

FreeSid

EqualSid

CreateWellKnownSid

SetTokenInformation

CopySid

RevertToSelf

ImpersonateLoggedOnUser

IsValidSid

CheckTokenMembership

AllocateLocallyUniqueId

DuplicateToken

GetModuleHandleW

GetProcAddress

GetModuleFileNameA

GetModuleFileNameW

DisableThreadLibraryCalls

GetModuleHandleExW

RegSetValueExW

RegOpenKeyExW

RegUnLoadKeyW

RegLoadKeyW

RegNotifyChangeKeyValue

RegCreateKeyExW

RegQueryValueExW

RegCloseKey

WaitForSingleObject

CreateMutexW

InitializeCriticalSectionEx

OpenMutexW

LeaveCriticalSection

DeleteCriticalSection

AcquireSRWLockShared

ReleaseMutex

CreateMutexExW

ReleaseSemaphore

OpenEventW

CreateEventW

EnterCriticalSection

SetEvent

ReleaseSRWLockShared

CreateSemaphoreExW

InitializeSRWLock

OpenSemaphoreW

TryAcquireSRWLockExclusive

ReleaseSRWLockExclusive

WaitForSingleObjectEx

AcquireSRWLockExclusive

InitializeCriticalSection

GetProcessHeap

HeapAlloc

HeapFree

UnhandledExceptionFilter

SetLastError

SetUnhandledExceptionFilter

GetLastError

SetThreadToken

GetCurrentThread

GetCurrentThreadId

GetCurrentProcessId

GetCurrentProcess

OpenProcessToken

OpenThreadToken

TerminateProcess

CompareStringW

CompareStringOrdinal

SetThreadpoolTimer

CloseThreadpoolTimer

CloseThreadpoolWork

WaitForThreadpoolTimerCallbacks

CreateThreadpoolWork

CreateThreadpoolTimer

SubmitThreadpoolWork

LocalAlloc

LocalFree

LocalReAlloc

GetSystemTimeAsFileTime

GetSystemTime

GetComputerNameExW

GetSystemDirectoryW

GetTickCount

FormatMessageW

OutputDebugStringW

DebugBreak

IsDebuggerPresent

DuplicateHandle

CloseHandle

BCryptGenerateSymmetricKey

BCryptGenRandom

BCryptGetProperty

BCryptDestroyKey

BCryptEncrypt

BCryptFinishHash

BCryptDestroyHash

BCryptHashData

BCryptCloseAlgorithmProvider

BCryptDecrypt

BCryptCreateHash

BCryptKeyDerivation

BCryptDeriveKeyCapi

BCryptImportKeyPair

BCryptFinalizeKeyPair

BCryptGenerateKeyPair

BCryptExportKey

BCryptOpenAlgorithmProvider

CreateFileMappingW

MapViewOfFile

UnmapViewOfFile

VirtualQuery

FindFirstFileW

GetFileSize

SetEndOfFile

WriteFile

FindNextFileW

FindClose

CreateFileW

ReadFile

DeleteFileW

CompareFileTime

FlushFileBuffers

SetFilePointer

IsProcessorFeaturePresent

OpenProcess

SystemFunction041

SystemFunction040

Sleep

InitOnceExecuteOnce

SystemTimeToFileTime

NCryptOpenStorageProvider

NCryptFinalizeKey

NCryptCreatePersistedKey

NCryptSetProperty

NCryptFreeObject

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

QueryPerformanceCounter

InitializeSListHead

QueueUserWorkItem

lstrlenW

LocalSize

LsaILookupUserAccountType

LsaIDeriveCredentialKey

ord4

ord5

LsaGetInterface

RtlLeaveCriticalSection

NtOpenEvent

NtCreateEvent

RtlDosPathNameToRelativeNtPathName_U

RtlReleaseRelativeName

RtlFreeHeap

NtCreateFile

EtwRegisterTraceGuidsW

EtwGetTraceEnableLevel

EtwGetTraceLoggerHandle

EtwGetTraceEnableFlags

EtwUnregisterTraceGuids

EtwEventUnregister

RtlEnterCriticalSection

RtlImageNtHeader

RtlDeleteCriticalSection

RtlGetCurrentServiceSessionId

NtQueryInformationProcess

EtwEventWriteTransfer

EtwEventActivityIdControl

RtlEqualDomainName

RtlNtStatusToDosError

RtlFreeUnicodeString

RtlUpcaseUnicodeString

RtlInitUnicodeString

RtlIsStateSeparationEnabled

EtwTraceMessage

RtlInitializeCriticalSection

NtPrivilegeCheck

NtOpenThreadToken

NtClose

EtwEventRegister

NtQueryInformationToken

RtlEqualSid

EventUnregister

EventWriteTransfer

EventSetInformation

EventRegister

ResolveDelayLoadedAPI

DelayLoadFailureHook

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

_initterm

_vsnwprintf

malloc

free

_amsg_exit

_XcptFilter

__C_specific_handler

_wcsicmp

memcpy

memset

RtlLookupFunctionEntry

RtlCaptureContext

EtwEventUnregister

EtwEventRegister

RtlFirstEntrySList

EtwEventActivityIdControl

EtwEventWrite

EtwEventEnabled

WinSqmIncrementDWORD

WinSqmAddToStream

NtTraceControl

NtAlpcImpersonateClientOfPort

TpAllocAlpcCompletion

NtAlpcCreatePort

RtlInitUnicodeString

NtAlpcCancelMessage

RtlVirtualUnwind

NtAlpcSendWaitReceivePort

NtAlpcAcceptConnectPort

NtAlpcDeleteSecurityContext

AlpcGetMessageAttribute

TpWaitForAlpcCompletion

TpReleaseAlpcCompletion

VerSetConditionMask

AlpcMaxAllowedMessageLength

NtAlpcDisconnectPort

RtlNtStatusToDosError

NtAlpcQueryInformation

AlpcInitializeMessageAttribute

RegisterServiceCtrlHandlerExW

SetServiceStatus

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetLastError

DisableThreadLibraryCalls

HeapReAlloc

HeapFree

HeapAlloc

GetProcessHeap

Sleep

CloseTrace

OpenTraceW

ProcessTrace

AcquireSRWLockShared

ResetEvent

ReleaseSRWLockShared

InitializeSRWLock

DeleteCriticalSection

InitializeCriticalSection

EnterCriticalSection

LeaveCriticalSection

AcquireSRWLockExclusive

CreateEventW

ReleaseSRWLockExclusive

SetEvent

WaitForMultipleObjectsEx

WaitForSingleObject

CloseHandle

GetCurrentThreadId

GetCurrentProcess

TerminateProcess

CreateThread

CreateProcessAsUserW

GetCurrentThread

OpenThreadToken

GetCurrentProcessId

SetThreadToken

IsValidSid

DuplicateTokenEx

MapGenericMask

SetSecurityDescriptorGroup

CreateWellKnownSid

SetSecurityDescriptorOwner

FreeSid

EqualSid

RevertToSelf

GetSecurityDescriptorDacl

MakeSelfRelativeSD

CopySid

GetLengthSid

MakeAbsoluteSD

GetTokenInformation

IsValidSecurityDescriptor

GetSecurityDescriptorGroup

AccessCheck

AllocateAndInitializeSid

GetSecurityDescriptorOwner

CheckTokenMembership

GetSystemTimeAsFileTime

GetTickCount

RegQueryInfoKeyW

RegEnumKeyExW

RegDeleteValueW

RegCloseKey

RegQueryValueExW

RegOpenKeyExW

RegSetValueExW

LocalFree

LocalAlloc

InitializeSListHead

InterlockedFlushSList

InterlockedPushEntrySList

FindNextFileW

CreateFileW

FindFirstFileW

ReadFile

FindClose

SetFilePointerEx

CompareFileTime

DeleteFileW

SetFilePointer

RemoveDirectoryW

WriteFile

GetDiskFreeSpaceW

ControlTraceW

OpenSCManagerW

OpenServiceW

CloseServiceHandle

StartServiceW

QueryServiceStatus

ControlService

QueryServiceStatusEx

ExpandEnvironmentStringsW

OutputDebugStringW

QueryPerformanceCounter

UnregisterGPNotificationInternal

RegisterGPNotificationInternal

WTSGetServiceSessionId

VerifyVersionInfoW

ResolveDelayLoadedAPI

DelayLoadFailureHook

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

memcmp

??1type_info@@UEAA@XZ

_onexit

__dllonexit

_unlock

_lock

?terminate@@YAXXZ

realloc

_errno

_initterm

_amsg_exit

_XcptFilter

memmove

memcpy

_CxxThrowException

?what@exception@@UEBAPEBDXZ

??1exception@@UEAA@XZ

??0exception@@QEAA@AEBV0@@Z

??0exception@@QEAA@AEBQEBDH@Z

??0exception@@QEAA@AEBQEBD@Z

??0exception@@QEAA@XZ

_callnewh

_vsnprintf_s

_wtoi

vswprintf_s

swprintf_s

memmove_s

_wtoi64

??3@YAXPEAX@Z

iswdigit

_get_errno

_set_errno

memcpy_s

_vsnwprintf

malloc

free

_purecall

calloc

??_V@YAXPEAX@Z

_resetstkoflw

__C_specific_handler

__CxxFrameHandler3

memset

RegGetValueW

RegOpenKeyExW

RegCloseKey

RegQueryValueExW

SetUnhandledExceptionFilter

GetLastError

UnhandledExceptionFilter

RaiseException

SetLastError

InitializeCriticalSectionAndSpinCount

LeaveCriticalSection

CreateEventW

WaitForSingleObject

ResetEvent

AcquireSRWLockExclusive

DeleteCriticalSection

InitializeCriticalSection

EnterCriticalSection

ReleaseSRWLockExclusive

SetEvent

GetModuleFileNameW

GetProcAddress

FreeLibrary

LockResource

LoadStringW

FindResourceExW

LoadResource

GetModuleHandleExW

OutputDebugStringA

CoCreateInstance

CoTaskMemFree

CoTaskMemAlloc

CoInitializeEx

StringFromIID

CoTaskMemRealloc

CoUninitialize

IIDFromString

CoCreateGuid

EventWriteTransfer

EventUnregister

EventRegister

TraceMessage

UnregisterTraceGuids

GetTraceLoggerHandle

GetTraceEnableFlags

GetTraceEnableLevel

RegisterTraceGuidsW

LoadLibraryW

SafeArrayGetElement

SafeArrayLock

SysAllocString

VariantClear

SafeArrayDestroy

VariantInit

VariantChangeType

SafeArrayUnlock

SafeArrayAccessData

SysStringLen

SafeArrayRedim

SafeArrayGetLBound

SafeArrayUnaccessData

SafeArrayCreate

SysFreeString

SafeArrayGetUBound

ConvertInterfaceLuidToAlias

ConvertInterfaceGuidToLuid

GetTickCount

GetSystemTimeAsFileTime

GetTickCount64

CloseHandle

SetRestrictedErrorInfo

WindowsCreateStringReference

RoActivateInstance

RoGetActivationFactory

FormatMessageW

RoGetMatchingRestrictedErrorInfo

CharNextW

SleepConditionVariableSRW

WakeAllConditionVariable

Sleep

QueryPerformanceCounter

TerminateProcess

GetCurrentProcessId

GetCurrentThreadId

GetCurrentProcess

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

FindActCtxSectionStringW

CreateActCtxW

DeactivateActCtx

ActivateActCtx

QueryActCtxW

lstrlenW

lstrcmpW

LocalFree

InitializeCriticalSectionEx

OutputDebugStringW

LoadLibraryExW

CreateFileW

lstrlenA

ExpandEnvironmentStringsW

DebugBreak

GetModuleHandleW

GetProcessHeap

CreateMutexExW

HeapAlloc

OpenSemaphoreW

WaitForSingleObjectEx

ReleaseMutex

ReleaseSemaphore

HeapFree

CreateSemaphoreExW

GetModuleFileNameA

CompareStringOrdinal

IsDebuggerPresent

UnregisterClassA

RtlUnsubscribeWnfNotificationWaitForCompletion

NtQueryWnfStateData

RtlSubscribeWnfStateChangeNotification

RtlNtStatusToDosError

RtlIpv6StringToAddressW

RtlIpv4StringToAddressW

WinSqmAddToStream

WinSqmSetDWORD

WinSqmAddToStreamEx

ShellExecuteExW

CommandLineToArgvW

WwanFreeMemory

WwanAllocateMemory

GetPersistentRegPath

WcmQueryProperty

WcmFreeMemory

CreateDataUsageHelper

ResolveDelayLoadedAPI

DelayLoadFailureHook

CryptUnprotectData

CryptProtectData

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

__dllonexit

_unlock

_lock

__C_specific_handler

_errno

_initterm

_amsg_exit

wcsnlen

floor

??1type_info@@UEAA@XZ

setlocale

__crtLCMapStringW

memmove

_XcptFilter

__uncaught_exception

__pctype_func

memcmp

_CxxThrowException

__CxxFrameHandler3

wcstoul

_wcsicmp

___lc_handle_func

___lc_codepage_func

swprintf_s

iswprint

malloc

??0exception@@QEAA@AEBQEBDH@Z

_wcsnicmp

_vsnwprintf

calloc

memcpy

_onexit

___mb_cur_max_func

_wcsdup

_ismbblead

memset

abort

sprintf_s

free

?terminate@@YAXXZ

localeconv

__doserrno

_wfopen_s

fclose

fwprintf_s

toupper

??0exception@@QEAA@AEBV0@@Z

??0exception@@QEAA@AEBQEBD@Z

??1exception@@UEAA@XZ

?what@exception@@UEBAPEBDXZ

_purecall

strcspn

??0bad_cast@@QEAA@AEBV0@@Z

??0bad_cast@@QEAA@PEBD@Z

??1bad_cast@@UEAA@XZ

_wsetlocale

wcscmp

GetActiveProcessorCount

CoInitialize

GetSystemPowerStatus

RtlLookupFunctionEntry

RtlCaptureContext

RtlCopySid

RtlVirtualUnwind

NtQueryWnfStateData

NtPowerInformation

RtlAdjustPrivilege

RtlNtStatusToDosError

RtlGetPersistedStateLocation

RtlLengthSid

EventRegister

EventProviderEnabled

EventWriteTransfer

EventSetInformation

EventWrite

EventUnregister

DeviceIoControl

InitializeCriticalSectionEx

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

InitializeCriticalSection

LeaveCriticalSection

EnterCriticalSection

SetEvent

CreateEventW

WaitForSingleObject

DeleteCriticalSection

FileTimeToLocalFileTime

FindClose

FindNextFileW

CompareFileTime

FindFirstFileW

CreateFileW

SetUnhandledExceptionFilter

GetLastError

UnhandledExceptionFilter

CloseHandle

CoCreateInstance

CoUninitialize

CoInitializeEx

CoTaskMemFree

RegCreateKeyExW

RegGetValueW

RegOpenKeyExW

RegSetValueExW

RegQueryValueExW

RegCloseKey

SystemTimeToFileTime

SystemTimeToTzSpecificLocalTime

TzSpecificLocalTimeToSystemTime

FileTimeToSystemTime

GetSystemTime

GetTickCount

GetVersionExW

GetComputerNameExW

GetSystemTimeAsFileTime

UuidCreate

LocalAlloc

LocalFree

GetModuleFileNameA

GetProcAddress

LoadStringW

DisableThreadLibraryCalls

LoadLibraryExW

FreeLibrary

HeapAlloc

HeapCreate

HeapFree

HeapDestroy

GetProcessHeap

ProcessTrace

CloseTrace

OpenTraceW

MultiByteToWideChar

GetStringTypeW

WideCharToMultiByte

PathCchRemoveBackslash

PathCchAppend

PowerGetActiveScheme

LookupAccountSidW

ConvertSidToStringSidW

ControlTraceW

EnableTraceEx2

TraceSetInformation

StartTraceW

SleepConditionVariableSRW

Sleep

WakeAllConditionVariable

EncodePointer

DecodePointer

QueryPerformanceCounter

GetCurrentProcess

TerminateProcess

GetCurrentProcessId

GetCurrentThreadId

TdhUnloadManifest

TdhGetProperty

TdhGetEventInformation

TdhGetPropertySize

PowerReadACValueIndex

PowerReadDCValueIndex

ApiSetQueryApiSetPresence

ResolveDelayLoadedAPI

DelayLoadFailureHook

SysAllocString

VariantClear

GetErrorInfo

SysFreeString

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

RecordDiagnosticsError

?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z

?_Xbad_alloc@std@@YAXXZ

?_Xout_of_range@std@@YAXPEBD@Z

?_Winerror_map@std@@YAPEBDH@Z

?_Xlength_error@std@@YAXPEBD@Z

?_Syserror_map@std@@YAPEBDH@Z

?_Orphan_all@_Container_base0@std@@QEAAXXZ

?_Xbad_function_call@std@@YAXXZ

??1_Lockit@std@@QEAA@XZ

??0_Lockit@std@@QEAA@H@Z

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ

?unshift@?$codecvt@DDH@std@@QEBAHAEAHPEAD1AEAPEAD@Z

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ

?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ

?swap@?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z

?swap@?$basic_istream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z

?_Getcat@?$codecvt@DDH@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

?_Fiopen@std@@YAPEAU_iobuf@@PEBGHH@Z

?id@?$codecvt@DDH@std@@2V0locale@2@A

?endl@std@@YAAEAV?$basic_ostream@GU?$char_traits@G@std@@@1@AEAV21@@Z

?flush@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV12@XZ

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z

?sputc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAAGG@Z

?_Add_vtordisp1@?$basic_ios@GU?$char_traits@G@std@@@std@@UEAAXXZ

?_Osfx@?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAXXZ

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

?sputn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAA_JPEBG_J@Z

?uncaught_exception@std@@YA_NXZ

??_7facet@locale@std@@6B@

_Wcsxfrm

?_Getcat@?$ctype@G@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

?tolower@?$ctype@G@std@@QEBAPEBGPEAGPEBG@Z

?tolower@?$ctype@G@std@@QEBAGG@Z

?is@?$ctype@G@std@@QEBA_NFG@Z

??1facet@locale@std@@MEAA@XZ

??0facet@locale@std@@IEAA@_K@Z

?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ

?_Incref@facet@locale@std@@UEAAXXZ

?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ

??1_Locinfo@std@@QEAA@XZ

??0_Locinfo@std@@QEAA@PEBD@Z

??1?$codecvt@GDH@std@@MEAA@XZ

??_7codecvt_base@std@@6B@

??_7?$codecvt@GDH@std@@6B@

?in@?$codecvt@GDH@std@@QEBAHAEAHPEBD1AEAPEBDPEAG3AEAPEAG@Z

??0?$codecvt@GDH@std@@QEAA@_K@Z

?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z

?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z

?id@?$codecvt@GDH@std@@2V0locale@2@A

?_Getcat@?$codecvt@GDH@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z

?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z

??_7_Facet_base@std@@6B@

_Wcscoll

?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ

?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z

?id@?$collate@G@std@@2V0locale@2@A

?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z

?id@?$ctype@G@std@@2V0locale@2@A

??1?$basic_ios@GU?$char_traits@G@std@@@std@@UEAA@XZ

??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UEAA@XZ

??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UEAA@XZ

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_ios@GU?$char_traits@G@std@@@std@@IEAA@XZ

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAA@XZ

?_Add_vtordisp1@?$basic_istream@GU?$char_traits@G@std@@@std@@UEAAXXZ

?_Add_vtordisp2@?$basic_ostream@GU?$char_traits@G@std@@@std@@UEAAXXZ

?imbue@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAXAEBVlocale@2@@Z

?setbuf@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAPEAV12@PEAG_J@Z

?xsputn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JPEBG_J@Z

?xsgetn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JPEAG_J@Z

?showmanyc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAA_JXZ

?_Lock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAAXXZ

?_Unlock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAAXXZ

?sync@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAHXZ

?uflow@?$basic_streambuf@GU?$char_traits@G@std@@@std@@MEAAGXZ

?sbumpc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAAGXZ

??Bid@locale@std@@QEAA_KXZ

?sgetc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAAGXZ

?snextc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QEAAGXZ

?_BADOFF@std@@3_JB

?gbump@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXH@Z

?pbump@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAXH@Z

?_Pninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAPEAGXZ

??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAA@XZ

?setstate@?$basic_ios@GU?$char_traits@G@std@@@std@@QEAAXH_N@Z

?_Ipfx@?$basic_istream@GU?$char_traits@G@std@@@std@@QEAA_N_N@Z

?always_noconv@codecvt_base@std@@QEBA_NXZ

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

?_Add_vtordisp2@?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAAXXZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

?_Add_vtordisp1@?$basic_istream@DU?$char_traits@D@std@@@std@@UEAAXXZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

?_Add_vtordisp2@?$basic_ios@DU?$char_traits@D@std@@@std@@UEAAXXZ

?_Add_vtordisp1@?$basic_ios@DU?$char_traits@D@std@@@std@@UEAAXXZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ

?out@?$codecvt@DDH@std@@QEBAHAEAHPEBD1AEAPEBDPEAD3AEAPEAD@Z

?in@?$codecvt@DDH@std@@QEBAHAEAHPEBD1AEAPEBDPEAD3AEAPEAD@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ

?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ

fputc

fflush

fclose

_wtoi

fwrite

fgetpos

setvbuf

ungetc

fgetc

??3@YAXPEAX@Z

__CxxFrameHandler3

??_V@YAXPEAX@Z

_vsnwprintf

memcpy_s

_purecall

fsetpos

_fseeki64

ldiv

??1exception@@UEAA@XZ

??0exception@@QEAA@XZ

??0exception@@QEAA@AEBV0@@Z

_vsnprintf_s

__C_specific_handler

wcsncpy_s

malloc

free

_wcsicmp

swscanf

wcschr

memmove_s

wcstoul

_wcsnicmp

wcsstr

__ExceptionPtrCreate

__ExceptionPtrCopy

wcstok_s

__ExceptionPtrDestroy

?what@exception@@UEBAPEBDXZ

?terminate@@YAXXZ

__ExceptionPtrCurrentException

__ExceptionPtrRethrow

??8type_info@@QEBAHAEBV0@@Z

wcsrchr

toupper

??1bad_cast@@UEAA@XZ

??0bad_cast@@QEAA@PEBD@Z

??0bad_cast@@QEAA@AEBV0@@Z

realloc

strchr

swprintf_s

srand

rand

??0exception@@QEAA@AEBQEBD@Z

sprintf_s

strncpy_s

_set_errno

_errno

strtol

strrchr

wcsncmp

_wcslwr

towlower

wcstol

_fpclass

wcscpy_s

_callnewh

_XcptFilter

_amsg_exit

_initterm

_lock

_unlock

__dllonexit

_onexit

??1type_info@@UEAA@XZ

_CxxThrowException

__RTDynamicCast

memcmp

memcpy

memmove

memset

wcscmp

RtlNtStatusToDosErrorNoTeb

RtlVirtualUnwind

NtDeleteWnfStateName

RtlCaptureContext

RtlIsMultiUsersInSessionSku

RtlNtStatusToDosError

RtlGetDeviceFamilyInfoEnum

WinSqmSetDWORD

WinSqmStartSession

WinSqmEndSession

RtlIsStateSeparationEnabled

NtCreateWnfStateName

RtlLookupFunctionEntry

RtlPublishWnfStateData

LoadResource

SizeofResource

LoadLibraryExW

FreeLibrary

GetModuleFileNameA

GetModuleFileNameW

FindStringOrdinal

GetModuleHandleW

LoadLibraryExA

GetModuleHandleExW

GetProcAddress

FindResourceExW

LoadStringW

DisableThreadLibraryCalls

WaitForSingleObjectEx

DeleteCriticalSection

LeaveCriticalSection

InitializeCriticalSectionEx

AcquireSRWLockShared

ReleaseSRWLockExclusive

ReleaseSRWLockShared

CreateSemaphoreExW

CreateEventW

InitializeCriticalSection

ResetEvent

ReleaseSemaphore

CreateMutexExW

OpenEventW

WaitForSingleObject

ReleaseMutex

AcquireSRWLockExclusive

CreateEventExW

SetEvent

OpenSemaphoreW

EnterCriticalSection

HeapFree

HeapAlloc

GetProcessHeap

SetUnhandledExceptionFilter

UnhandledExceptionFilter

SetLastError

GetLastError

RaiseException

TerminateThread

GetCurrentThread

GetCurrentThreadId

GetCurrentProcessId

CreateProcessAsUserW

GetCurrentProcess

OpenProcessToken

CreateThread

TerminateProcess

OpenThreadToken

CreateProcessW

FormatMessageW

DebugBreak

IsDebuggerPresent

OutputDebugStringW

OutputDebugStringA

DuplicateHandle

CloseHandle

VariantInit

SysFreeString

VariantClear

SysAllocStringLen

VariantChangeType

SystemTimeToVariantTime

SafeArrayAccessData

SafeArrayGetLBound

SafeArrayGetUBound

SysStringLen

VariantTimeToSystemTime

VariantCopy

VariantChangeTypeEx

SafeArrayUnaccessData

SafeArrayCreate

SysAllocString

VarUI4FromStr

SysStringByteLen

SysAllocStringByteLen

SafeArrayGetDim

SafeArrayGetElement

SafeArrayDestroy

SafeArrayUnlock

SafeArrayLock

EventRegister

EventProviderEnabled

EventSetInformation

EventActivityIdControl

EventUnregister

EventWriteTransfer

CharNextW

CharLowerBuffW

RegDeleteKeyExW

RegQueryInfoKeyW

RegOpenKeyExW

RegCloseKey

RegGetValueW

RegEnumValueW

RegCreateKeyExW

RegDeleteTreeW

RegDeleteValueW

RegQueryValueExW

RegEnumKeyExW

RegOpenCurrentUser

RegSetValueExW

CompareStringW

MultiByteToWideChar

LocalFree

GlobalFree

LocalAlloc

ExpandEnvironmentStringsW

CryptExportPublicKeyInfo

CertCloseStore

CertOpenStore

CertEnumCertificatesInStore

CertFindCertificateInStore

CertFreeCertificateContext

CertCreateCertificateContext

CertFindExtension

CryptDecodeObjectEx

CertRDNValueToStrW

CertGetNameStringW

CryptHashCertificate2

CertAddEncodedCertificateToStore

CertDeleteCertificateFromStore

CertAddCertificateContextToStore

CertVerifyCertificateChainPolicy

CertGetCertificateContextProperty

CryptBinaryToStringW

CryptSetKeyIdentifierProperty

CryptProtectData

CryptUnprotectData

CryptDecryptMessage

CryptAcquireCertificatePrivateKey

CertGetCertificateChain

CertFreeCertificateChain

GetSystemTime

GetSystemTimeAsFileTime

GetTickCount

GetTickCount64

GetSystemWindowsDirectoryW

GetLocalTime

GetSystemInfo

GetComputerNameExW

GetWindowsDirectoryW

UuidCreate

UuidFromStringW

RpcBindingCreateW

UuidToStringW

RpcStringFreeW

RpcBindingFree

RpcBindingBind

I_RpcExceptionFilter

NdrClientCall3

WakeAllConditionVariable

SleepConditionVariableSRW

InitOnceBeginInitialize

InitOnceComplete

Sleep

CreateThreadpoolTimer

SetThreadpoolTimer

CloseThreadpoolTimer

WaitForThreadpoolTimerCallbacks

CloseThreadpoolWork

SubmitThreadpoolWork

CreateThreadpoolWork

RegDeleteKeyValueW

RegSetKeyValueW

WindowsGetStringRawBuffer

WindowsDeleteString

WindowsCreateString

WindowsCreateStringReference

RoGetActivationFactory

RoUninitialize

RoActivateInstance

RoInitialize

ConvertStringSidToSidW

ConvertStringSecurityDescriptorToSecurityDescriptorW

ConvertSidToStringSidW

QueryUnbiasedInterruptTimePrecise

InitiateSystemShutdownExW

GetTokenInformation

AdjustTokenPrivileges

LookupPrivilegeValueW

RoOriginateError

SetRestrictedErrorInfo

NCryptGetProperty

NCryptDeleteKey

NCryptOpenStorageProvider

NCryptCreatePersistedKey

NCryptSetProperty

NCryptFreeObject

NCryptOpenKey

GetAdaptersAddresses

GetIfEntry2

InetNtopW

RoGetMatchingRestrictedErrorInfo

SystemTimeToFileTime

FileTimeToSystemTime

FindFirstFileW

RemoveDirectoryW

FindClose

CreateFileW

WriteFile

FindNextFileW

GetFullPathNameW

FileTimeToLocalFileTime

DeleteFileW

GetFileAttributesW

CreateDirectoryW

ReadFile

PathCchRemoveFileSpec

PathCchAppend

PathCchSkipRoot

PathAllocCombine

PathCchCombine

QueryPerformanceCounter

CryptReleaseContext

CryptAcquireContextW

CryptGetHashParam

CryptDestroyHash

CryptHashData

CryptCreateHash

RegDeleteKeyW

RegEnumKeyW

GetSystemPowerStatus

GetNamedPipeClientProcessId

lstrlenA

lstrcmpiW

GlobalUnlock

GlobalLock

ord34

ord44

ord47

ord23

ord52

ord22

ord53

ord56

ord27

ord54

ord166

ord78

ord24

OmDmRegistryAllocAndGetString

SafeWideCharToMultiByte

DmRaiseToastNotification

DmDisableTask

OmaDmRegistryGetString

OmaDmRegistryGetDWORD

OmaDmRegistryDeleteValue

OmaDmRegistrySetDWORD

OmaDmRegistrySetString

HexStringToBinary

DecodeBase64W

OmaDmRegistryGetBinary

BinaryToHexString

BigStrcat

DmDeleteTask

IsPhoneOS

OmaDmRegistryGetAllSubKeys

DMGetClientHardwareUID

CopyString

DmRevertToSelf

InvStrCmpIW

DmGetActiveUserSid

DmImpersonate

DmGetCurrentUserSid

OmaDmRegistrySetBinary

OmaDmRegistryGetAllValues

DmEnableTask

MBToUnicode

UnicodeToMB

EncodeBase64W

CreateBstrArray

FileTimeToISO8601String

SystemTimeToISO8601String

SyncGetDeviceUniqueID

EnterprisePolicyManagerStore_EvaluatePoliciesUpdateCurrent

EnterprisePolicyManagerStore_GetEnrollmentTypeFromEnrollment

EnterprisePolicyManagerStore_CSPResultAreaGetChildNodeNames

EnterprisePolicyManagerStore_DoesProviderExist

EnterprisePolicyManagerStore_CreateProviderHive

EnterprisePolicyManagerStore_GetAllProviderContextSidAreas

EnterprisePolicyManagerStore_CSPConfigSourceDeleteChild

EnterprisePolicyManagerStore_CSPConfigSourceAreaCreateNodeInstance

EnterprisePolicyManagerStore_EnsureProviderContextSidAreaExist

EnterprisePolicyManagerStore_CSPConfigSourceAreaGetChildNodeNames

EnterprisePolicyManagerStore_IsValidArea

EnterprisePolicyManagerStore_CSPConfigSourceAreaDeleteChild

EnterprisePolicyManagerStore_CSPConfigSourceAreaPolicyCreateNodeInstance

EnterprisePolicyManagerStore_CSPConfigSourceAreaPolicyGetValue

EnterprisePolicyManagerStore_CSPConfigSourceAreaPolicySetValue

EnterprisePolicyManagerStore_IsValidPolicy

EnterprisePolicyManagerStore_CSPResultAreaPolicyGetValue

EnterprisePolicyManagerStore_IsPolicyAreaForIngestedAdmx

EnterprisePolicyManagerStore_DeleteEnrollmentAdmxMetadata

EnterprisePolicyManagerStore_GetPolicyTypeFromMetadata

EnterprisePolicyManagerStore_CSPResultGetAreaChildNodeNames

EnterprisePolicyManagerStore_IsADMXIngestionAllowed

EnterprisePolicyManagerStore_DeleteEnrollmentAppAdmxMetadata

EnterprisePolicyManagerStore_DeleteEnrollmentAppSettingTypeAdmxMetadata

EnterprisePolicyManagerStore_GetAdmxFileData

EnterprisePolicyManagerStore_VerifyAdmxPoliciesAreNotSet

EnterprisePolicyManagerStore_IngestAdmxTextBlob

EnterprisePolicyManagerStore_DoesProviderContextSidAreaPolicyValueExist

EnterprisePolicyManagerStore_SetProviderContextSidAreaPolicyValue

EnterprisePolicyManagerStore_DeleteProvider

EnterprisePolicyManagerStore_GetCurrentPolicyValue

EnterprisePolicyManagerStore_GetAllCurrentSidAreaPolicies

EnterprisePolicyManagerStore_GetAllProviderContextSidAreaPolicies

EnterprisePolicyManagerStore_DeleteProviderContextSidAreaPolicy

EnterprisePolicyManagerStore_GetProviderContextSidAreaPolicyValue

EnterprisePolicyManagerStore_PublishAnyDelayedWnfs

ApiSetQueryApiSetPresence

CreateXmlReader

CreateXmlWriter

CreateXmlWriterOutputWithEncodingName

CreateXmlReaderInputWithEncodingName

SHCreateMemStream

SHCreateStreamOnFileW

ord154

SHCopyKeyW

GetUserNameExW

GetProcessMitigationPolicy

GetFileInformationByHandleEx

QueryServiceStatusEx

CloseServiceHandle

OpenSCManagerW

StartServiceW

OpenServiceW

CreateNamedPipeW

ConnectNamedPipe

VirtualProtect

VirtualQuery

ord45

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

_CorDllMain

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

ord2586

ord4741

ord3743

ord822

ord3774

ord867

ord3892

ord1033

ord2329

ord6614

ord6418

ord2661

ord4131

ord1498

ord6351

ord2781

ord2393

ord4860

ord2593

ord4747

ord3501

ord3806

ord912

ord4795

ord4894

ord4846

ord852

ord1035

ord4257

ord4262

ord6395

ord6385

ord2906

ord3396

ord3894

ord337

ord2326

ord4557

ord5245

ord1286

ord3761

ord5702

ord665

ord4612

ord1043

ord3754

ord629

ord599

ord6734

ord3182

ord2801

ord1264

ord5694

ord2666

ord1787

ord3177

ord2377

ord6632

ord2324

ord4344

ord1781

ord2665

ord2379

ord2316

ord4521

ord4127

ord4601

ord3003

ord1657

ord2474

ord1082

ord288

ord812

ord1544

ord1586

ord1555

ord1583

ord1585

ord355

ord1477

ord1553

ord1416

ord1491

ord1577

ord1067

ord3751

ord3535

ord5229

ord5712

ord4743

ord1778

ord6440

ord2589

ord4542

ord1566

ord832

ord2023

ord2422

ord1906

ord1499

ord1442

ord2975

ord625

ord6216

ord5585

ord5583

ord5304

ord5114

ord5352

ord4699

ord5687

ord4722

ord5246

ord5406

ord2517

ord6437

ord4365

ord1777

ord4752

ord5663

ord2399

ord5586

ord6812

ord4694

ord5709

ord4017

ord5227

ord4789

ord2670

ord2060

ord6814

ord3933

ord5484

ord1736

ord5683

ord2457

ord2140

ord5699

ord4988

ord4771

ord3868

ord4548

ord6328

ord6147

ord5584

ord6767

ord5077

ord2764

ord2328

ord2311

ord2384

ord5382

ord999

ord549

ord4582

ord2629

ord6708

ord6705

ord2371

ord6813

ord4836

ord2559

ord2515

ord6071

ord4191

ord1388

ord5615

ord2412

ord3468

ord5722

ord5724

ord4368

ord5065

ord5730

ord5711

ord6053

ord3049

ord3243

ord3362

ord4815

ord3231

ord3366

ord3052

ord3166

ord3046

ord3534

ord4082

ord4083

ord4077

ord3164

ord4371

ord4983

ord4770

ord3916

ord1426

ord2752

ord4214

ord1063

ord659

ord1562

ord1647

ord1441

ord2856

ord6050

ord621

ord4436

ord4523

ord2676

ord1677

ord1463

ord3790

ord3830

ord286

ord1574

ord2427

ord3740

ord1284

ord5887

ord2979

ord1287

ord2846

ord4473

ord5719

ord2408

ord287

ord620

ord1122

ord3873

ord568

ord1355

ord5950

ord1483

ord6880

ord626

ord5935

ord6886

ord1126

ord1040

ord624

ord1006

ord4721

ord6887

__RTDynamicCast

_onexit

__dllonexit

_unlock

_lock

??1type_info@@UEAA@XZ

?terminate@@YAXXZ

_initterm

_amsg_exit

_XcptFilter

memmove

memcpy

_CxxThrowException

?what@exception@@UEBAPEBDXZ

??1exception@@UEAA@XZ

??0exception@@QEAA@AEBV0@@Z

??0exception@@QEAA@AEBQEBDH@Z

??0exception@@QEAA@AEBQEBD@Z

_vsnwprintf

_wtoi64

_wcsnicmp

wcschr

calloc

iswspace

wcsstr

wcsncmp

_wcsicmp

??_V@YAXPEAX@Z

malloc

free

__C_specific_handler

__CxxFrameHandler3

_purecall

memset

ord32

ord16

ord21

ord15

ord18

ord22

RtlCaptureContext

RtlIpv6AddressToStringW

RtlIpv4AddressToStringW

RtlLookupFunctionEntry

RtlVirtualUnwind

RegCloseKey

RegCreateKeyExW

RegOpenKeyExW

RegQueryValueExW

RegSetValueExW

InitializeSecurityDescriptor

SetSecurityDescriptorOwner

GetLengthSid

CopySid

SetSecurityDescriptorGroup

SetSecurityDescriptorDacl

InitializeAcl

AddAccessAllowedAce

EnumServicesStatusW

RegDeleteValueW

GetUserNameW

RegConnectRegistryW

IsWellKnownSid

RevertToSelf

MapGenericMask

AllocateAndInitializeSid

MakeSelfRelativeSD

FreeSid

GetSecurityDescriptorLength

GetSecurityDescriptorControl

LsaOpenPolicy

LsaFreeMemory

LsaClose

LsaSetSystemAccessAccount

LsaGetSystemAccessAccount

LsaCreateAccount

LsaOpenAccount

GetSidSubAuthority

GetSidSubAuthorityCount

LsaLookupNames

SetWindowsHookExW

GetWindowThreadProcessId

FindWindowExW

GetDlgCtrlID

GetSystemMetrics

GetWindowRect

SetTimer

KillTimer

DispatchMessageW

TranslateMessage

PeekMessageW

MsgWaitForMultipleObjects

EnumThreadWindows

IsWindowVisible

GetDesktopWindow

GetFocus

GetWindowLongW

SetActiveWindow

SetWindowTextW

GetClientRect

ShowWindow

MessageBoxW

PostMessageW

GetParent

LoadImageW

UnhookWindowsHookEx

GetActiveWindow

LoadBitmapW

WinHelpW

EnableWindow

SetDlgItemTextW

EndDialog

GetWindowLongPtrW

GetDlgItemTextW

IsDlgButtonChecked

SetFocus

SetWindowLongPtrW

GetDlgItem

SendMessageW

RegisterClipboardFormatW

LoadStringW

DialogBoxParamW

LoadIconW

CallNextHookEx

GetFileVersionInfoExW

GetFileVersionInfoSizeExW

VerQueryValueW

DeleteObject

CM_Set_HW_Prof_Flags_ExW

CM_Disconnect_Machine

CM_Connect_MachineW

CM_Get_HW_Prof_Flags_ExW

GetLastError

GetModuleFileNameW

GetCurrentThreadId

MultiByteToWideChar

LeaveCriticalSection

EnterCriticalSection

lstrcmpiW

GetProcAddress

SetLastError

DeactivateActCtx

LoadLibraryW

ActivateActCtx

FindActCtxSectionStringW

CreateActCtxW

GetModuleHandleExW

QueryActCtxW

GetModuleHandleW

OutputDebugStringA

CreateThread

WaitForSingleObject

DuplicateHandle

GlobalLock

GlobalUnlock

GlobalFree

ResolveDelayLoadedAPI

DelayLoadFailureHook

GetCurrentProcess

CloseHandle

GetCurrentThread

InitializeCriticalSection

DeleteCriticalSection

FormatMessageW

LocalFree

GetSystemWindowsDirectoryW

ResumeThread

LocalAlloc

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

WakeAllConditionVariable

SleepConditionVariableSRW

UnhandledExceptionFilter

SetUnhandledExceptionFilter

TerminateProcess

QueryPerformanceCounter

GetCurrentProcessId

GetSystemTimeAsFileTime

GetTickCount

ReleaseActCtx

lstrlenW

CreateProcessW

GetExitCodeProcess

GetComputerNameExW

CreateEventW

Sleep

GlobalAlloc

LoadLibraryExW

GetCommandLineW

FreeLibrary

CompareStringW

GetComputerNameW

WideCharToMultiByte

SetEvent

lstrcmpW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

_initterm_e

_initterm

_o__errno

_o__execute_onexit_table

_o__initialize_narrow_environment

_o__initialize_onexit_table

_o__invalid_parameter_noinfo

_o__invalid_parameter_noinfo_noreturn

_o__purecall

_o__register_onexit_function

_o__seh_filter_dll

_o__crt_atexit

memmove

_o_free

_o_iswspace

_o_malloc

_o_terminate

_o_toupper

__C_specific_handler

_o__configure_narrow_argv

_o__cexit

_o__callnewh

_o___stdio_common_vswprintf

_o___stdio_common_vsnprintf_s

_o___std_type_info_destroy_list

_o___std_exception_destroy

_o___std_exception_copy

__CxxFrameHandler3

_CxxThrowException

__std_terminate

__CxxFrameHandler4

memcpy

memset

GetModuleFileNameA

GetModuleHandleExW

DisableThreadLibraryCalls

GetModuleHandleW

GetProcAddress

LoadStringW

InitOnceBeginInitialize

InitOnceComplete

Sleep

ReleaseMutex

OpenSemaphoreW

WaitForSingleObjectEx

WaitForSingleObject

EnterCriticalSection

DeleteCriticalSection

ReleaseSemaphore

InitializeCriticalSectionEx

CreateEventW

ReleaseSRWLockExclusive

CreateSemaphoreExW

InitializeCriticalSectionAndSpinCount

SetEvent

AcquireSRWLockExclusive

ResetEvent

LeaveCriticalSection

CreateMutexExW

HeapAlloc

GetProcessHeap

HeapFree

SetUnhandledExceptionFilter

GetLastError

UnhandledExceptionFilter

SetLastError

EventUnregister

EventActivityIdControl

EventSetInformation

EventWriteTransfer

EventRegister

EventProviderEnabled

GetCurrentProcessId

TerminateProcess

GetCurrentProcess

GetCurrentThreadId

FormatMessageW

DebugBreak

IsDebuggerPresent

OutputDebugStringW

CloseHandle

RtlLookupFunctionEntry

RtlVirtualUnwind

RtlCaptureContext

IsProcessorFeaturePresent

QueryPerformanceCounter

GetSystemTimeAsFileTime

GetTickCount

InterlockedPushEntrySList

InterlockedFlushSList

InitializeSListHead

RtlUnsubscribeWnfNotificationWaitForCompletion

RtlSubscribeWnfStateChangeNotification

NtQueryWnfStateData

CoCreateFreeThreadedMarshaler

CoIncrementMTAUsage

CoTaskMemFree

CoTaskMemAlloc

CoCreateInstance

RegGetValueW

RegOpenKeyExW

RegCloseKey

RegQueryValueExW

ConvertInterfaceGuidToLuid

GetIfEntry2Ex

ExpandEnvironmentStringsW

?_Xlength_error@std@@YAXPEBD@Z

LocalAlloc

WindowsGetStringRawBuffer

WindowsPromoteStringBuffer

WindowsCreateStringReference

WindowsDeleteString

WindowsDuplicateString

WindowsCreateString

WindowsPreallocateStringBuffer

WindowsDeleteStringBuffer

SysFreeString

SysStringLen

SetRestrictedErrorInfo

GetRestrictedErrorInfo

RoFailFastWithErrorContext

RoTransformError

RoOriginateLanguageException

MultiByteToWideChar

RoGetActivationFactory

TrySubmitThreadpoolCallback

RoGetAgileReference

ceilf

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

ZwDeleteValueKey

KeLowerIrql

MmMapIoSpaceEx

HalPrivateDispatchTable

KfRaiseIrql

RtlIpv6StringToAddressA

ZwClose

ZwSetValueKey

KdDebuggerEnabled

KdDebuggerNotPresent

PoSetHiberRange

KdEventLoggingEnabled

__C_specific_handler

ExpInterlockedFlushSList

ExpInterlockedPopEntrySList

ExpInterlockedPushEntrySList

InitializeSListHead

vsprintf_s

sscanf_s

RtlUnicodeToMultiByteN

HviGetEnlightenmentInformation

MmGetPhysicalAddress

ZwCreateKey

RtlInitUnicodeString

KeBugCheckEx

KdEnteredDebugger

RtlGUIDFromString

KdSetEventLoggingPresent

KdLogDbgPrint

RtlGetEnabledExtendedFeatures

RtlGetVersion

EtwSetInformation

EtwWriteTransfer

EtwRegister

HviIsHypervisorVendorMicrosoft

HviGetDebugDeviceOptions

HviGetHypervisorFeatures

KeStallExecutionProcessor

KdComPortInUse

KeQueryPerformanceCounter

KdInitializeLibrary

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

RtlUnwindEx

RtlVirtualUnwind

RtlRaiseException

RtlRestoreContext

RtlLookupFunctionEntry

RtlInstallFunctionTableCallback

RtlCompareMemory

RtlDeleteFunctionTable

RtlAddFunctionTable

RtlPcToFileHeader

RtlUnwind

RtlCaptureStackBackTrace

RtlCaptureContext

_wcslwr

RtlGetUILanguageInfo

EtwEventEnabled

RtlpConvertLCIDsToCultureNames

NtEnumerateKey

RtlIntegerToUnicodeString

RtlTimeToTimeFields

RtlTimeFieldsToTime

RtlUnhandledExceptionFilter

NtTerminateProcess

wcsncmp

wcsncpy

LdrFindResourceEx_U

RtlReadThreadProfilingData

RtlQueryThreadProfiling

RtlDisableThreadProfiling

RtlNtStatusToDosErrorNoTeb

RtlEnableThreadProfiling

NtMapUserPhysicalPagesScatter

RtlDecodeSystemPointer

bsearch

RtlComputeImportTableHash

RtlFindActivationContextSectionGuid

RtlQueryActivationContextApplicationSettings

RtlSubAuthorityCountSid

LdrResFindResourceDirectory

RtlQueryInformationActivationContext

TpSetPoolStackInformation

TpAllocWait

NtDeleteValueKey

NtSetValueKey

towlower

RtlUnicodeStringToInteger

RtlLCIDToCultureName

RtlSizeHeap

RtlpConvertCultureNamesToLCIDs

NtQueryInstallUILanguage

EtwEventUnregister

EtwEventWrite

EtwEventRegister

RtlExpandEnvironmentStrings_U

RtlPublishWnfStateData

NtQueryLicenseValue

_wtol

memmove_s

RtlGUIDFromString

sin

TpAllocTimer

TpAllocIoCompletion

RtlSetThreadPreferredUILanguages

RtlMultiAppendUnicodeStringBuffer

swprintf_s

RtlImageNtHeaderEx

NtMapViewOfSection

NtCreateSection

RtlDosPathNameToNtPathName_U_WithStatus

RtlGetActiveActivationContext

RtlDeactivateActivationContext

RtlActivateActivationContext

RtlZombifyActivationContext

RtlReleaseActivationContext

RtlAddRefActivationContext

RtlCreateActivationContext

RtlGetLengthWithoutLastFullDosOrNtPathElement

RtlpApplyLengthFunction

RtlGetFullPathName_U

RtlDoesFileExists_U

RtlDetermineDosPathNameType_U

RtlpEnsureBufferSize

DbgPrintEx

NtUnmapViewOfSection

RtlQueryPackageClaims

tolower

atol

toupper

isdigit

NtQueryInformationThread

RtlEnterUmsSchedulingMode

RtlCreateUmsThreadContext

TpAllocWork

RtlSetUmsThreadInformation

RtlQueryUmsThreadInformation

RtlGetNextUmsListItem

RtlGetCurrentUmsThread

RtlDeleteUmsCompletionList

RtlUmsThreadYield

RtlExecuteUmsThread

RtlGetUmsCompletionListEvent

RtlDequeueUmsCompletionListItems

RtlSetLastWin32ErrorAndNtStatusFromNtStatus

RtlCreateUmsCompletionList

RtlDestroyEnvironment

RtlCreateEnvironmentEx

RtlCreateEnvironment

NtQueryEvent

RtlCreateUnicodeString

NtRaiseHardError

RtlFreeAnsiString

RtlFreeOemString

RtlGetCurrentDirectory_U

wcsrchr

_wcsnicmp

RtlUnicodeStringToOemString

NtQueryVolumeInformationFile

CsrFreeCaptureBuffer

CsrAllocateMessagePointer

CsrAllocateCaptureBuffer

RtlEqualUnicodeString

RtlUnicodeStringToAnsiString

RtlExitUserThread

RtlAddIntegrityLabelToBoundaryDescriptor

RtlQueryProtectedPolicy

NtReplacePartitionUnit

RtlCompareUnicodeString

RtlExitUserProcess

RtlInitUnicodeStringEx

RtlQueryPackageIdentity

EtwEventWriteNoRegistration

RtlWow64LogMessageInEventLogger

LdrUnloadDll

LdrGetProcedureAddress

LdrLoadDll

RtlAppendUnicodeToString

RtlAppendUnicodeStringToString

RtlFormatCurrentUserKeyPath

NtQueryValueKey

RtlEqualSid

RtlSubAuthoritySid

RtlInitializeSid

NtQueryInformationToken

NtOpenProcessToken

NtSetInformationThread

NtOpenThreadToken

RtlReleaseSRWLockExclusive

RtlQueryRegistryValuesEx

NtOpenKey

RtlAcquireSRWLockExclusive

RtlAnsiStringToUnicodeString

RtlxAnsiStringToUnicodeSize

RtlInitAnsiStringEx

NtIsSystemResumeAutomatic

NtInitiatePowerAction

RtlIsNameLegalDOS8Dot3

RtlGetCurrentProcessorNumberEx

NtWaitForSingleObject

NtCreateEvent

RtlSetSearchPathMode

LdrGetDllDirectory

RtlUnlockHeap

RtlGetUserInfoHeap

RtlLockHeap

RtlDeregisterSecureMemoryCacheCallback

RtlRegisterSecureMemoryCacheCallback

RtlCompactHeap

NtFsControlFile

NtOpenFile

NtClose

LdrAddRefDll

NtQueryInformationFile

NtSetInformationFile

wcscpy_s

RtlGetActiveConsoleId

RtlDeactivateActivationContextUnsafeFast

RtlActivateActivationContextUnsafeFast

RtlNtStatusToDosError

RtlFreeUnicodeString

RtlWow64GetThreadSelectorEntry

NtSetInformationDebugObject

DbgUiGetThreadDebugObject

DbgUiIssueRemoteBreakin

NtSetSystemInformation

NtQueryInformationProcess

RtlSetCurrentTransaction

RtlGetCurrentTransaction

RtlSetLastWin32Error

CsrClientCallServer

LdrDisableThreadCalloutsForDll

TpCallbackMayRunLong

TpAllocCleanupGroup

TpSimpleTryPost

TpAllocPool

TpQueryPoolStackInformation

RtlDeleteUmsThreadContext

TpSetPoolMinThreads

CsrVerifyRegion

RtlCharToInteger

RtlInitAnsiString

RtlUpcaseUnicodeChar

RtlUnicodeToMultiByteSize

RtlDestroyAtomTable

NtFindAtom

NtQueryInformationAtom

RtlAddAtomToAtomTable

NtAddAtomEx

NtDeleteAtom

RtlCreateAtomTable

RtlDeleteAtomFromAtomTable

RtlLookupAtomInAtomTable

RtlQueryAtomInAtomTable

RtlDnsHostNameToComputerName

RtlPrefixString

NtFlushKey

_memicmp

RtlxUnicodeStringToAnsiSize

RtlEnterCriticalSection

wcschr

wcsstr

RtlLeaveCriticalSection

NtCreateKey

NtCreateFile

RtlCreateUnicodeStringFromAsciiz

wcsncpy_s

wcscspn

NtCreateJobSet

RtlReleasePrivilege

NtSetInformationJobObject

NtQueryInformationJobObject

NtCreateJobObject

RtlAcquirePrivilege

NtAssignProcessToJobObject

NtTerminateJobObject

NtOpenJobObject

RtlLengthSecurityDescriptor

NtSetEaFile

NtSetSecurityObject

NtQueryEaFile

NtQuerySecurityObject

LdrQueryImageFileKeyOption

LdrOpenImageFileOptionsKey

RtlQueryElevationFlags

NtSetInformationProcess

RtlRaiseStatus

NtQuerySection

NtFreeVirtualMemory

NtWriteFile

NtEnumerateValueKey

RtlEqualString

RtlUnicodeToMultiByteN

strncpy_s

NtUnlockFile

RtlDosPathNameToNtPathName_U

NtReadFile

NtLockFile

RtlCopyUnicodeString

CsrCaptureMessageString

RtlIsTextUnicode

NtAllocateVirtualMemory

RtlGetLongestNtPathLength

RtlPrefixUnicodeString

RtlMultiByteToUnicodeN

RtlMultiByteToUnicodeSize

RtlDosPathNameToRelativeNtPathName_U

RtlReleaseRelativeName

RtlSetIoCompletionCallback

RtlDeregisterWait

RtlRegisterWait

RtlImageDirectoryEntryToData

NtQueryVirtualMemory

RtlCreateBoundaryDescriptor

NtProtectVirtualMemory

RtlGetThreadErrorMode

NtCreateMailslotFile

RtlDestroyQueryDebugBuffer

RtlQueryProcessDebugInformation

RtlCreateQueryDebugBuffer

NtQueryDirectoryFile

strcpy_s

RtlFindActivationContextSectionString

LdrSetDllDirectory

LdrFindResource_U

RtlSwitchedVVI

NtQueryWnfStateData

NtPowerInformation

NtGetDevicePowerState

NtSetThreadExecutionState

NtSetSystemEnvironmentValueEx

NtQuerySystemEnvironmentValueEx

RtlInitString

NtSetVolumeInformationFile

NtDeviceIoControlFile

RtlIsValidHandle

RtlAllocateHandle

RtlReAllocateHeap

RtlFreeHandle

RtlSetUserValueHeap

RtlUnsubscribeWnfStateChangeNotification

RtlSubscribeWnfStateChangeNotification

RtlQueryWnfStateData

strchr

RtlSetEnvironmentStrings

RtlOemStringToUnicodeString

wcscat_s

RtlAllocateAndInitializeSid

RtlQueryEnvironmentVariable_U

NtQueryAttributesFile

RtlFreeSid

strrchr

NtQueryFullAttributesFile

TpCaptureCaller

RtlWow64EnableFsRedirection

_stricmp

NtSetTimerResolution

NtQueryTimerResolution

RtlGetAppContainerSidType

RtlConvertSidToUnicodeString

RtlSetEnvironmentVariable

RtlGetAppContainerParent

RtlQueryEnvironmentVariable

CsrCaptureMessageMultiUnicodeStringsInPlace

wcsnlen

strcat_s

strnlen

NlsMbCodePageTag

RtlRunOnceExecuteOnce

RtlInitializeCriticalSection

RtlGetThreadPreferredUILanguages

NtReadVirtualMemory

LdrResSearchResource

_strnicmp

strncmp

RtlTryAcquirePebLock

RtlReleasePebLock

RtlEncodeSystemPointer

RtlGetNtSystemRoot

NtWaitForMultipleObjects

NtClearEvent

RtlWerpReportException

DbgPrint

RtlGetDeviceFamilyInfoEnum

RtlHashUnicodeString

NtApphelpCacheControl

RtlGetFullPathName_UEx

ZwClose

ZwOpenFile

ZwOpenKey

ZwEnumerateKey

ZwQueryValueKey

ZwCreateFile

ZwQueryInformationFile

ZwCreateSection

ZwQueryDirectoryFile

RtlNtPathNameToDosPathName

RtlGetNativeSystemInformation

ZwQuerySystemInformation

ZwUnmapViewOfSection

ZwMapViewOfSection

VerSetConditionMask

RtlVerifyVersionInfo

RtlGetVersion

RtlGetCurrentServiceSessionId

RtlGetSuiteMask

LdrQueryImageFileExecutionOptions

RtlInitUnicodeString

_vsnwprintf

RtlSetProtectedPolicy

LdrSetDllManifestProber

RtlSetThreadPoolStartFunc

RtlImageNtHeader

NtQuerySystemInformation

RtlFreeHeap

RtlSetDaclSecurityDescriptor

RtlSetGroupSecurityDescriptor

RtlSetOwnerSecurityDescriptor

RtlCreateSecurityDescriptor

RtlAddAccessAllowedAce

RtlCreateAcl

RtlAllocateHeap

_wcsicmp

__C_specific_handler

memmove

RtlGetPersistedStateLocation

_local_unwind

cos

floor

memcmp

memcpy

memset

wcscmp

NotifyMountMgr

BaseFormatObjectAttributes

GetVolumeNameForVolumeMountPointW

lstrcmpW

lstrcmpiW

GetRegistryExtensionFlags

KernelBaseGetGlobalData

GlobalFree

LoadStringBaseExW

GetUnicodeStringToEightBitStringRoutine

GetUnicodeStringToEightBitSizeRoutine

CompareStringA

GetNamedPipeAttribute

AppXPreCreationExtension

AppXPostSuccessExtension

AppXReleaseAppXContext

AreFileApisANSI

CreateProcessInternalA

AppContainerLookupMoniker

AppContainerFreeMemory

CreateProcessInternalW

CreateProcessAsUserW

BasepNotifyTrackingService

CreateProcessAsUserA

EnumLanguageGroupLocalesW

PackageIdFromFullName

GetPackageFullName

GetCurrentPackageFullName

CheckIsMSIXPackage

ClosePackageInfo

AppXGetOSMaxVersionTested

GetPackageTargetPlatformProperty

GetTargetPlatformContext

OpenPackageInfoByFullNameForUser

EnumSystemLanguageGroupsW

EnumSystemLocalesEx

MoveFileWithProgressTransactedW

BasepAdjustObjectAttributesForPrivateNamespace

GetEightBitStringToUnicodeStringRoutine

GetStringTableEntry

CheckGroupPolicyEnabled

OpenRegKey

InternalLcidToName

NlsIsUserDefaultLocale

GetPtrCalDataArray

GetUserOverrideString

GetPtrCalData

Internal_EnumCalendarInfo

Internal_EnumLanguageGroupLocales

Internal_EnumSystemCodePages

Internal_EnumDateFormats

Internal_EnumUILanguages

Internal_EnumSystemLanguageGroups

NlsValidateLocale

Internal_EnumTimeFormats

GetNamedLocaleHashNode

GetUserOverrideWord

GetLocaleInfoHelper

GetCalendar

BaseDllFreeResourceId

BaseDllMapResourceIdW

CheckAllowDecryptedRemoteDestinationPolicy

PrivCopyFileExW

EnumUILanguagesW

LCIDToLocaleName

GetUserDefaultLocaleName

GetSystemDefaultLocaleName

GetEraNameCountedString

FatalAppExitW

FatalAppExitA

lstrlenW

lstrlenA

lstrcpynW

lstrcpynA

Sleep

SetFileApisToOEM

SetFileApisToANSI

PulseEvent

MapViewOfFileExNuma

LocalUnlock

LocalReAlloc

LocalLock

LocalAlloc

HeapSummary

GlobalAlloc

GetUserDefaultUILanguage

GetSystemDefaultUILanguage

GetStringTypeA

GetProcAddressForCaller

BaseGetNamedObjectDirectory

SetThreadStackGuarantee

SetProcessShutdownParameters

SetThreadPriority

SetThreadPriorityBoost

ResumeThread

QueueUserAPC

ProcessIdToSessionId

GetCurrentProcess

GetCurrentProcessId

OpenThread

GetThreadPriorityBoost

GetThreadPriority

SuspendThread

SwitchToThread

OpenProcessToken

GetExitCodeProcess

TerminateProcess

CreateProcessA

CreateProcessW

CreateRemoteThreadEx

TerminateThread

TlsAlloc

TlsFree

TlsSetValue

DeleteProcThreadAttributeList

UpdateProcThreadAttribute

InitializeProcThreadAttributeList

CreateRemoteThread

SetProcessAffinityUpdateMode

QueryProcessAffinityUpdateMode

GetProcessVersion

GetThreadId

GetStartupInfoW

GetProcessTimes

GetProcessId

GetExitCodeThread

GetPriorityClass

GetProcessIdOfThread

SetPriorityClass

SetThreadIdealProcessor

SetProcessInformation

GetProcessInformation

GetProcessShutdownParameters

SetProcessPriorityBoost

GetProcessPriorityBoost

SetThreadInformation

GetThreadInformation

GetSystemTimes

GetThreadIOPendingFlag

SetThreadContext

OpenProcess

IsProcessorFeaturePresent

SetThreadIdealProcessorEx

FlushInstructionCache

GetThreadTimes

GetThreadIdealProcessorEx

GetProcessHandleCount

GetThreadContext

GetProcessMitigationPolicy

SetProcessMitigationPolicy

RegSetValueExA

RegSetKeySecurity

RegSaveKeyExW

RegSaveKeyExA

RegRestoreKeyW

RegRestoreKeyA

RegQueryValueExW

RegQueryValueExA

RegQueryInfoKeyW

RegQueryInfoKeyA

RegOpenUserClassesRoot

RegOpenKeyExA

RegOpenCurrentUser

RegNotifyChangeKeyValue

RegLoadMUIStringW

RegUnLoadKeyA

RegLoadKeyW

RegOpenKeyExW

RegGetValueW

RegCloseKey

RegCopyTreeW

RegCreateKeyExA

RegCreateKeyExW

RegDeleteKeyExA

RegLoadKeyA

RegDeleteTreeA

RegDeleteTreeW

RegDeleteValueA

RegDeleteValueW

RegDisablePredefinedCacheEx

RegEnumKeyExA

RegEnumKeyExW

RegEnumValueA

RegSetValueExW

RegUnLoadKeyW

RegLoadAppKeyW

RegGetValueA

RegLoadMUIStringA

RegDeleteKeyExW

RegEnumValueW

RegFlushKey

RegGetKeySecurity

HeapWalk

HeapValidate

HeapSetInformation

HeapQueryInformation

HeapLock

HeapDestroy

HeapCreate

HeapCompact

HeapReAlloc

GetProcessHeaps

HeapAlloc

GetProcessHeap

HeapFree

HeapUnlock

LocalFree

SetSystemFileCacheSize

ResetWriteWatch

GetWriteWatch

VirtualUnlock

VirtualLock

GetProcessWorkingSetSizeEx

SetProcessWorkingSetSizeEx

QueryMemoryResourceNotification

CreateFileMappingNumaW

CreateMemoryResourceNotification

GetLargePageMinimum

GetSystemFileCacheSize

VirtualProtectEx

VirtualProtect

WriteProcessMemory

VirtualFreeEx

VirtualQuery

VirtualAllocEx

VirtualAlloc

UnmapViewOfFile

ReadProcessMemory

OpenFileMappingW

MapViewOfFileEx

MapViewOfFile

FlushViewOfFile

CreateFileMappingW

VirtualFree

VirtualQueryEx

AllocateUserPhysicalPagesNuma

GetMemoryErrorHandlingCapabilities

UnregisterBadMemoryNotification

VirtualAllocExNuma

RegisterBadMemoryNotification

MapUserPhysicalPages

FreeUserPhysicalPages

AllocateUserPhysicalPages

CloseHandle

SetHandleInformation

GetHandleInformation

DuplicateHandle

DeleteCriticalSection

InitializeCriticalSection

WaitForSingleObject

WaitForMultipleObjectsEx

SleepEx

CreateMutexExA

CreateMutexA

CreateEventW

CreateEventExW

CreateEventExA

EnterCriticalSection

WaitForSingleObjectEx

LeaveCriticalSection

CreateEventA

SetWaitableTimer

SetEvent

ResetEvent

ReleaseSemaphore

ReleaseMutex

OpenWaitableTimerW

OpenSemaphoreW

OpenMutexW

OpenEventW

OpenEventA

InitializeCriticalSectionEx

CancelWaitableTimer

InitializeCriticalSectionAndSpinCount

CreateWaitableTimerExW

CreateSemaphoreExW

CreateMutexW

CreateMutexExW

CreateSemaphoreW

WaitForMultipleObjects

DeleteSynchronizationBarrier

InitializeSynchronizationBarrier

EnterSynchronizationBarrier

SignalObjectAndWait

InitOnceExecuteOnce

GetFileAttributesExA

GetFileAttributesExW

GetFileAttributesW

GetFileInformationByHandle

GetFileSize

GetFileAttributesA

GetFileSizeEx

GetDriveTypeW

GetDriveTypeA

GetFileTime

GetDiskFreeSpaceW

FindFirstFileW

FindFirstVolumeW

FindNextChangeNotification

GetDiskFreeSpaceExW

GetDiskFreeSpaceExA

FileTimeToLocalFileTime

DeleteVolumeMountPointW

DeleteFileW

DeleteFileA

DefineDosDeviceW

CreateFileW

CreateFileA

GetFileType

FindNextFileA

FindNextFileW

FindNextVolumeW

GetFinalPathNameByHandleA

GetFinalPathNameByHandleW

GetFullPathNameA

GetFullPathNameW

GetLogicalDriveStringsW

GetTempFileNameW

GetVolumeInformationByHandleW

GetVolumeInformationW

GetVolumePathNameW

LocalFileTimeToFileTime

LockFile

LockFileEx

QueryDosDeviceW

ReadFile

ReadFileEx

ReadFileScatter

RemoveDirectoryA

RemoveDirectoryW

SetEndOfFile

SetFileAttributesA

SetFileAttributesW

SetFileInformationByHandle

SetFilePointer

SetFilePointerEx

SetFileTime

SetFileValidData

UnlockFile

UnlockFileEx

WriteFile

GetDiskFreeSpaceA

WriteFileEx

WriteFileGather

FindVolumeClose

FlushFileBuffers

CreateDirectoryW

CreateDirectoryA

CompareFileTime

FindClose

FindCloseChangeNotification

FindFirstChangeNotificationA

FindFirstChangeNotificationW

FindFirstFileA

FindFirstFileExA

FindFirstFileExW

GetVolumePathNamesForVolumeNameW

CreateFile2

GetTempPathW

GetTempPathA

GetTempFileNameA

FindFirstStreamW

FindFirstFileNameW

FindNextFileNameW

GetVolumeInformationA

GetCompressedFileSizeW

SetFileIoOverlappedRange

GetCompressedFileSizeA

DelayLoadFailureHook

CreateIoCompletionPort

PostQueuedCompletionStatus

GetQueuedCompletionStatusEx

GetQueuedCompletionStatus

CancelIoEx

GetOverlappedResult

DeviceIoControl

CancelSynchronousIo

CancelIo

IsProcessInJob

ChangeTimerQueueTimer

CreateTimerQueue

UnregisterWaitEx

CreateTimerQueueTimer

QueueUserWorkItem

DeleteTimerQueueTimer

DeleteTimerQueueEx

RegisterWaitForSingleObjectEx

MulDiv

EnumResourceNamesW

FindStringOrdinal

LoadLibraryExW

GetModuleHandleW

GetProcAddress

FreeLibraryAndExitThread

FreeResource

GetModuleFileNameA

GetModuleFileNameW

FreeLibrary

GetModuleHandleA

EnumResourceTypesExW

GetModuleHandleExA

GetModuleHandleExW

EnumResourceTypesExA

EnumResourceNamesExA

EnumResourceLanguagesExW

EnumResourceLanguagesExA

SizeofResource

DisableThreadLibraryCalls

LoadResource

LoadLibraryExA

EnumResourceNamesExW

FindResourceExW

LockResource

LoadLibraryW

LoadLibraryA

FindResourceW

LoadPackagedLibrary

CallNamedPipeW

CreateNamedPipeW

CreatePipe

DisconnectNamedPipe

GetNamedPipeClientComputerNameW

TransactNamedPipe

WaitNamedPipeW

SetNamedPipeHandleState

ConnectNamedPipe

PeekNamedPipe

GetNamedPipeHandleStateW

GetDateFormatA

GetTimeFormatA

GetTimeFormatW

GetDateFormatW

GetTimeFormatEx

GetDateFormatEx

GetDurationFormatEx

SetComputerNameExW

EnumSystemFirmwareTables

GetSystemTimePreciseAsFileTime

SetSystemTime

GetProductInfo

GetSystemFirmwareTable

GetNativeSystemInfo

GetTickCount

GetComputerNameExA

GetLocalTime

GetLogicalProcessorInformationEx

GetLogicalProcessorInformation

GetSystemInfo

GetSystemTime

GetSystemTimeAdjustment

GetSystemTimeAsFileTime

GetVersion

GetVersionExA

GetVersionExW

GetWindowsDirectoryA

GetWindowsDirectoryW

GlobalMemoryStatusEx

GetComputerNameExW

SetLocalTime

SetComputerNameExA

SetComputerNameW

SetComputerNameA

DnsHostnameToComputerNameExW

GetPhysicallyInstalledSystemMemory

SetComputerNameEx2W

SystemTimeToTzSpecificLocalTime

SetDynamicTimeZoneInformation

GetTimeZoneInformationForYear

GetDynamicTimeZoneInformation

FileTimeToSystemTime

TzSpecificLocalTimeToSystemTime

SetTimeZoneInformation

SystemTimeToFileTime

GetTimeZoneInformation

GetLocaleInfoEx

GetUILanguageInfo

GetCalendarInfoEx

GetThreadPreferredUILanguages

GetACP

GetCPInfo

GetNLSVersion

IsValidNLSVersion

SetThreadPreferredUILanguages

SetThreadUILanguage

GetLocaleInfoA

GetLocaleInfoW

GetOEMCP

GetUserPreferredUILanguages

GetNLSVersionEx

IdnToUnicode

FormatMessageW

IsValidLocaleName

GetProcessPreferredUILanguages

GetSystemDefaultLangID

GetSystemDefaultLCID

GetThreadLocale

SetProcessPreferredUILanguages

GetUserDefaultLCID

IsDBCSLeadByte

IsDBCSLeadByteEx

IsNLSDefinedString

IsValidCodePage

IsValidLanguageGroup

IsValidLocale

LCMapStringA

IdnToAscii

LCMapStringW

SetCalendarInfoW

SetLocaleInfoW

GetSystemPreferredUILanguages

FindNLSString

EnumSystemLocalesW

VerLanguageNameA

EnumSystemLocalesA

VerLanguageNameW

ConvertDefaultLocale

SetThreadLocale

FindNLSStringEx

GetFileMUIInfo

LCMapStringEx

FormatMessageA

LocaleNameToLCID

ResolveLocaleName

GetUserDefaultLangID

GetThreadUILanguage

GetFileMUIPath

GetCalendarInfoW

GetCPInfoExW

PssWalkSnapshot

PssQuerySnapshot

PssFreeSnapshot

PssCaptureSnapshot

PssDuplicateSnapshot

PssWalkMarkerCreate

PssWalkMarkerFree

PssWalkMarkerGetPosition

PssWalkMarkerSetPosition

PssWalkMarkerSeekToBeginning

SearchPathW

GetEnvironmentVariableA

SetEnvironmentStringsW

GetEnvironmentStringsW

GetCurrentDirectoryA

GetCommandLineW

GetCommandLineA

FreeEnvironmentStringsW

FreeEnvironmentStringsA

ExpandEnvironmentStringsW

ExpandEnvironmentStringsA

GetEnvironmentVariableW

GetEnvironmentStrings

GetStdHandle

SetCurrentDirectoryA

SetCurrentDirectoryW

SetEnvironmentVariableA

SetEnvironmentVariableW

SetStdHandle

SetStdHandleEx

GetCurrentDirectoryW

SearchPathA

NeedCurrentDirectoryForExePathW

NeedCurrentDirectoryForExePathA

CompareStringEx

WideCharToMultiByte

MultiByteToWideChar

GetStringTypeW

GetStringTypeExW

FoldStringW

CompareStringW

CompareStringOrdinal

CheckRemoteDebuggerPresent

WaitForDebugEvent

ContinueDebugEvent

DebugActiveProcessStop

DebugActiveProcess

OutputDebugStringW

OutputDebugStringA

DebugBreak

IsDebuggerPresent

SetLastError

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetLastError

GetErrorMode

SetErrorMode

RaiseException

SetThreadErrorMode

GetThreadErrorMode

FlsAlloc

FlsSetValue

FlsGetValue

FlsFree

Beep

QueryPerformanceCounter

QueryPerformanceFrequency

DuplicateToken

CreateWellKnownSid

FreeSid

EqualSid

GetSidSubAuthority

GetSidSubAuthorityCount

GetTokenInformation

InitializeSid

AllocateAndInitializeSid

AccessCheck

GetAppContainerAce

CheckTokenMembershipEx

CheckTokenCapability

SetCachedSigningLevel

AddResourceAttributeAce

AddScopedPolicyIDAce

GetCachedSigningLevel

GetAppContainerNamedObjectPath

SetCommBreak

SetCommConfig

GetCommTimeouts

GetCommState

SetCommMask

GetCommModemStatus

GetCommMask

GetCommConfig

ClearCommBreak

ClearCommError

GetCommProperties

SetCommState

SetCommTimeouts

SetupComm

TransmitCommChar

WaitCommEvent

PurgeComm

EscapeCommFunction

QueryThreadCycleTime

QueryIdleProcessorCycleTime

QueryIdleProcessorCycleTimeEx

QueryUnbiasedInterruptTime

QueryProcessCycleTime

IsWow64Process2

GetSystemWow64DirectoryA

GetSystemWow64Directory2W

GetSystemWow64DirectoryW

IsWow64Process

Wow64RevertWow64FsRedirection

Wow64DisableWow64FsRedirection

Wow64SetThreadContext

Wow64GetThreadContext

Wow64SuspendThread

GetNumaProximityNodeEx

GetNumaNodeProcessorMaskEx

GetNumaHighestNodeNumber

GetThreadGroupAffinity

SetThreadGroupAffinity

GetProcessGroupAffinity

CreateBoundaryDescriptorW

CreatePrivateNamespaceW

ClosePrivateNamespace

DeleteBoundaryDescriptor

OpenPrivateNamespaceW

AddSIDToBoundaryDescriptor

CopyFileW

CreateHardLinkA

ReplaceFileW

CopyFile2

CopyFileExW

ReadDirectoryChangesW

ReOpenFile

CreateSymbolicLinkW

CreateHardLinkW

GetFileInformationByHandleEx

CreateDirectoryExW

MoveFileWithProgressW

MoveFileExW

ReadDirectoryChangesExW

OpenFileById

CopyContext

InitializeContext

SetXStateFeaturesMask

GetXStateFeaturesMask

LocateXStateFeature

GetEnabledXStateFeatures

InitializeContext2

EnumSystemCodePagesW

EnumTimeFormatsW

EnumCalendarInfoExEx

EnumDateFormatsW

EnumTimeFormatsEx

GetCurrencyFormatEx

GetNumberFormatEx

EnumCalendarInfoW

EnumDateFormatsExEx

EnumCalendarInfoExW

EnumDateFormatsExW

NormalizeString

VerifyScripts

IsNormalizedString

GetStringScripts

IdnToNameprepUnicode

CreateFiber

DeleteFiber

ConvertThreadToFiber

SwitchToFiber

ConvertFiberToThread

ConvertThreadToFiberEx

CreateFiberEx

NlsCheckPolicy

NlsUpdateSystemLocale

NlsUpdateLocale

NlsGetCacheUpdateCount

GetCurrentActCtx

FindActCtxSectionStringW

FindActCtxSectionGuid

DeactivateActCtx

CreateActCtxW

ZombifyActCtx

AddRefActCtx

ActivateActCtx

ReleaseActCtx

QueryActCtxW

QueryActCtxSettingsW

BaseDumpAppcompatCache

BaseInitAppcompatCacheSupport

BaseCleanupAppcompatCacheSupport

BaseFlushAppcompatCache

BaseUpdateAppcompatCache

BaseCheckAppcompatCacheEx

BaseCheckAppcompatCache

WerUnregisterRuntimeExceptionModule

WerRegisterFile

WerUnregisterMemoryBlock

GetApplicationRecoveryCallback

WerRegisterMemoryBlock

WerRegisterRuntimeExceptionModule

WerUnregisterFile

GetApplicationRestartSettings

RegisterApplicationRestart

UnregisterApplicationRestart

WerRegisterExcludedMemoryBlock

WerUnregisterAdditionalProcess

WerRegisterAdditionalProcess

WerUnregisterExcludedMemoryBlock

WerRegisterCustomMetadata

WerUnregisterCustomMetadata

WerRegisterAppLocalDump

WerUnregisterAppLocalDump

GetConsoleMode

GetConsoleOutputCP

GetConsoleCP

WriteConsoleW

GetNumberOfConsoleInputEvents

ReadConsoleA

ReadConsoleInputA

ReadConsoleInputW

ReadConsoleW

SetConsoleCtrlHandler

SetConsoleMode

WriteConsoleA

AllocConsole

PeekConsoleInputA

AttachConsole

FreeConsole

PeekConsoleInputW

CreatePseudoConsole

ClosePseudoConsole

ResizePseudoConsole

WriteConsoleOutputCharacterW

GenerateConsoleCtrlEvent

GetConsoleCursorInfo

GetConsoleScreenBufferInfo

FlushConsoleInputBuffer

ReadConsoleOutputCharacterA

CreateConsoleScreenBuffer

SetConsoleScreenBufferInfoEx

GetLargestConsoleWindowSize

ReadConsoleOutputA

ReadConsoleOutputAttribute

FillConsoleOutputAttribute

FillConsoleOutputCharacterW

GetConsoleScreenBufferInfoEx

WriteConsoleOutputW

FillConsoleOutputCharacterA

ReadConsoleOutputCharacterW

ReadConsoleOutputW

ScrollConsoleScreenBufferA

ScrollConsoleScreenBufferW

SetConsoleActiveScreenBuffer

SetConsoleCP

SetConsoleCursorInfo

SetConsoleCursorPosition

WriteConsoleOutputCharacterA

WriteConsoleOutputAttribute

WriteConsoleOutputA

WriteConsoleInputW

WriteConsoleInputA

SetConsoleWindowInfo

SetConsoleTextAttribute

SetConsoleScreenBufferSize

SetConsoleOutputCP

GetConsoleOriginalTitleA

GetConsoleOriginalTitleW

GetConsoleTitleA

SetConsoleTitleA

SetConsoleTitleW

GetConsoleTitleW

ExpungeConsoleCommandHistoryA

ExpungeConsoleCommandHistoryW

AddConsoleAliasW

AddConsoleAliasA

GetConsoleAliasA

SetCurrentConsoleFontEx

SetConsoleNumberOfCommandsW

SetConsoleNumberOfCommandsA

SetConsoleHistoryInfo

GetConsoleAliasExesA

GetNumberOfConsoleMouseButtons

GetCurrentConsoleFontEx

GetCurrentConsoleFont

GetConsoleWindow

GetConsoleSelectionInfo

GetConsoleProcessList

GetConsoleHistoryInfo

GetConsoleFontSize

GetConsoleDisplayMode

GetConsoleCommandHistoryW

GetConsoleCommandHistoryLengthW

GetConsoleCommandHistoryLengthA

GetConsoleCommandHistoryA

GetConsoleAliasesW

GetConsoleAliasesLengthW

GetConsoleAliasesLengthA

GetConsoleAliasesA

GetConsoleAliasW

GetConsoleAliasExesW

GetConsoleAliasExesLengthW

GetConsoleAliasExesLengthA

SetConsoleDisplayMode

K32GetPerformanceInfo

K32GetProcessMemoryInfo

K32GetProcessImageFileNameW

QueryFullProcessImageNameW

K32GetDeviceDriverFileNameW

K32GetDeviceDriverBaseNameW

K32EnumDeviceDrivers

K32GetMappedFileNameW

K32GetWsChangesEx

K32GetWsChanges

K32InitializeProcessForWsWatch

K32EnumProcesses

K32QueryWorkingSetEx

K32EnumProcessModulesEx

K32GetModuleBaseNameW

K32GetModuleFileNameExW

K32GetModuleInformation

K32EmptyWorkingSet

K32EnumPageFilesW

K32QueryWorkingSet

K32EnumProcessModules

K32GetProcessImageFileNameA

K32GetMappedFileNameA

K32GetDeviceDriverFileNameA

K32GetModuleFileNameExA

K32GetModuleBaseNameA

K32EnumPageFilesA

QueryFullProcessImageNameA

K32GetDeviceDriverBaseNameA

EventSetInformation

EventRegister

EventUnregister

EventWriteTransfer

ApiSetQueryApiSetPresence

ResolveDelayLoadedAPI

BaseReadAppCompatDataForProcess

BaseFreeAppCompatDataForProcess

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

_initterm_e

_initterm

_o__initialize_narrow_environment

_o__initialize_onexit_table

_o__invalid_parameter_noinfo

_o__invalid_parameter_noinfo_noreturn

_o__purecall

_o__register_onexit_function

_o__seh_filter_dll

_o__configure_narrow_argv

_o__wcsicmp

memmove

_o_free

_o_iswascii

_o_iswcntrl

_o_iswdigit

_o_iswlower

_o_iswprint

_o_iswpunct

_o_iswspace

_o_iswupper

_o_malloc

_o_terminate

_o_wcsncpy_s

_o_wmemcpy_s

__C_specific_handler

__CxxFrameHandler3

_CxxThrowException

_o__cexit

_o__callnewh

_o__execute_onexit_table

_o__errno

_o___stdio_common_vswprintf

_o___stdio_common_vsprintf_s

_o___stdio_common_vsnprintf_s

_o___std_type_info_destroy_list

_o___std_exception_destroy

_o___std_exception_copy

_o__crt_atexit

wcschr

wcsstr

__std_terminate

__CxxFrameHandler4

memcmp

_o__wcserror

memcpy

strcmp

memset

wcsnlen

SizeofResource

LockResource

LoadResource

FindResourceExW

GetModuleHandleExW

GetProcAddress

GetModuleHandleW

DisableThreadLibraryCalls

LoadStringW

GetModuleFileNameA

FreeLibrary

WaitForSingleObjectEx

ReleaseMutex

InitializeSRWLock

TryAcquireSRWLockExclusive

CreateMutexExW

WaitForSingleObject

CreateEventW

ResetEvent

ReleaseSRWLockExclusive

SetEvent

DeleteCriticalSection

AcquireSRWLockExclusive

ReleaseSRWLockShared

AcquireSRWLockShared

InitializeCriticalSectionAndSpinCount

InitializeCriticalSectionEx

LeaveCriticalSection

EnterCriticalSection

ReleaseSemaphore

OpenSemaphoreW

CreateSemaphoreExW

HeapFree

HeapAlloc

GetProcessHeap

SetUnhandledExceptionFilter

UnhandledExceptionFilter

RaiseException

SetLastError

GetLastError

GetCurrentProcessId

GetCurrentThreadId

TerminateProcess

GetCurrentProcess

FormatMessageW

IsDebuggerPresent

DebugBreak

OutputDebugStringW

CloseHandle

EventActivityIdControl

EventRegister

EventUnregister

EventSetInformation

EventWriteTransfer

Sleep

InitOnceBeginInitialize

InitOnceExecuteOnce

InitOnceComplete

RoOriginateError

SetRestrictedErrorInfo

GetRestrictedErrorInfo

DecodePointer

EncodePointer

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

IsProcessorFeaturePresent

QueryPerformanceCounter

GetSystemTimeAsFileTime

GetComputerNameExW

GetTickCount64

InitializeSListHead

SetThreadpoolTimer

WaitForThreadpoolTimerCallbacks

CreateThreadpoolTimer

CloseThreadpoolTimer

CoGetMalloc

CoInitializeEx

CoUninitialize

CoTaskMemFree

CoTaskMemAlloc

ConvertStringSidToSidW

ConvertSidToStringSidW

ConvertStringSecurityDescriptorToSecurityDescriptorW

CopySid

GetLengthSid

IsValidSid

EqualSid

GetTokenInformation

LocalFree

LocalAlloc

RegSetKeyValueW

LoadLibraryW

QueryOptionalDelayLoadedAPI

RegOpenKeyExW

RegGetValueW

RegSetValueExW

RegQueryValueExW

RegLoadKeyW

RegDeleteValueW

RegEnumKeyExW

RegFlushKey

RegCreateKeyExW

RegCloseKey

RegQueryInfoKeyW

RegOpenCurrentUser

RegUnLoadKeyW

RegDeleteTreeW

UuidIsNil

UuidFromStringW

UuidCreate

RpcStringFreeW

UuidToStringW

RpcBindingFree

RpcBindingBind

RpcBindingCreateW

NdrClientCall3

RpcExceptionFilter

LsaClose

LsaLookupSids2

LsaFreeMemory

LsaQueryInformationPolicy

LsaOpenPolicy

RtlUnicodeStringToAnsiString

RtlFreeAnsiString

RtlInitString

RtlIsMultiUsersInSessionSku

RtlInitUnicodeString

RtlUnsubscribeWnfNotificationWaitForCompletion

NtQueryWnfStateData

RtlSubscribeWnfStateChangeNotification

RtlPublishWnfStateData

RtlNtStatusToDosErrorNoTeb

RtlIsMultiSessionSku

RtlNtStatusToDosError

RtlGetPersistedStateLocation

ApiSetQueryApiSetPresence

?_Xbad_function_call@std@@YAXXZ

?_Xout_of_range@std@@YAXPEBD@Z

?_Xlength_error@std@@YAXPEBD@Z

?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ

??1?$codecvt@GDU_Mbstatet@@@std@@MEAA@XZ

??0?$codecvt@GDU_Mbstatet@@@std@@QEAA@_K@Z

?do_length@?$codecvt@GDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEBD1_K@Z

?do_unshift@?$codecvt@GDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z

?do_out@?$codecvt@GDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEBG1AEAPEBGPEAD3AEAPEAD@Z

?do_encoding@?$codecvt@GDU_Mbstatet@@@std@@MEBAHXZ

?do_max_length@?$codecvt@GDU_Mbstatet@@@std@@MEBAHXZ

?do_always_noconv@?$codecvt@GDU_Mbstatet@@@std@@MEBA_NXZ

?_Incref@facet@locale@std@@UEAAXXZ

?out@?$codecvt@GDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBG1AEAPEBGPEAD3AEAPEAD@Z

?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z

?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z

??Bid@locale@std@@QEAA_KXZ

?id@?$codecvt@GDU_Mbstatet@@@std@@2V0locale@2@A

??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z

?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z

?do_in@?$codecvt@GDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAG3AEAPEAG@Z

CompareStringEx

CompareFileTime

FileTimeToSystemTime

ResolveDelayLoadedAPI

DelayLoadFailureHook

ExpandEnvironmentStringsW

CredIsMarshaledCredentialW

CredFree

CredUnmarshalCredentialW

lstrcmpiW

LsaLookupUserAccountType

LookupAccountSidLocalW

LookupAccountNameLocalW

GetPersistedRegistryLocationW

WindowsCreateString

WindowsGetStringRawBuffer

WindowsDeleteString

RoOriginateLanguageException

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

memset

_CxxThrowException

?what@exception@@UEBAPEBDXZ

strcmp

_onexit

memcpy

memmove

?terminate@@YAXXZ

??1type_info@@UEAA@XZ

wcscat_s

??1exception@@UEAA@XZ

wcschr

??_V@YAXPEAX@Z

memmove_s

_wtol

??0exception@@QEAA@AEBV0@@Z

_wcsicmp

swprintf_s

memcpy_s

_vsnprintf

_vsnwprintf

memcmp

toupper

??0exception@@QEAA@AEBQEBDH@Z

??0exception@@QEAA@AEBQEBD@Z

_callnewh

__dllonexit

_unlock

_wcsnicmp

wcsrchr

wcsncmp

iswalpha

_lock

__CxxFrameHandler3

__C_specific_handler

_initterm

malloc

free

_amsg_exit

_XcptFilter

_purecall

??3@YAXPEAX@Z

wcscpy_s

wcscmp

NtQueryInformationProcess

NtDuplicateToken

RtlFreeHeap

RtlAllocateHeap

RtlNtStatusToDosError

RtlCaptureContext

WinSqmSetDWORD

WinSqmStartSession

WinSqmAddToStream

WinSqmEndSession

WinSqmIsOptedIn

RtlGetActiveConsoleId

EtwEventWriteFull

EtwEventRegister

EtwEventUnregister

RtlUnsubscribeWnfStateChangeNotification

RtlSubscribeWnfStateChangeNotification

NtQueryWnfStateData

RtlInsertElementGenericTable

RtlLookupElementGenericTable

RtlQueryEnvironmentVariable_U

RtlInitUnicodeStringEx

RtlInitializeGenericTable

RtlDeleteElementGenericTable

RtlEnumerateGenericTable

RtlAllocateAndInitializeSid

RtlAcquireResourceExclusive

RtlReleaseResource

RtlAcquireResourceShared

DbgPrint

RtlEqualSid

VerSetConditionMask

RtlFreeSid

RtlLookupFunctionEntry

RtlInitializeResource

RtlVerifyVersionInfo

RtlCaptureStackBackTrace

RtlDeleteResource

NtQuerySystemInformation

RtlVirtualUnwind

RtlLengthSid

FreeLibrary

LoadStringW

GetModuleHandleExW

GetProcAddress

DisableThreadLibraryCalls

GetModuleHandleW

GetModuleFileNameW

LoadLibraryExW

GetModuleFileNameA

SetLastError

GetLastError

SetUnhandledExceptionFilter

UnhandledExceptionFilter

CloseHandle

DuplicateHandle

SetServiceStatus

RegisterServiceCtrlHandlerExW

DeleteCriticalSection

InitializeCriticalSection

ReleaseSRWLockExclusive

LeaveCriticalSection

AcquireSRWLockExclusive

ReleaseSemaphore

EnterCriticalSection

CreateEventW

SetEvent

CreateSemaphoreExW

ReleaseSRWLockShared

AcquireSRWLockShared

InitializeCriticalSectionAndSpinCount

InitializeCriticalSectionEx

WaitForSingleObject

OpenSemaphoreW

CreateMutexExW

WaitForMultipleObjectsEx

WaitForSingleObjectEx

ResetEvent

ReleaseMutex

RegGetValueW

RegCloseKey

RegSetValueExW

RegEnumKeyExW

RegNotifyChangeKeyValue

RegDeleteValueW

RegEnumValueW

RegQueryInfoKeyW

RegUnLoadKeyW

RegCreateKeyExW

RegLoadKeyW

RegDeleteTreeW

RegQueryValueExW

RegOpenKeyExW

RegOpenCurrentUser

EventWriteTransfer

EventRegister

EventActivityIdControl

EventSetInformation

EventUnregister

EventProviderEnabled

InitOnceExecuteOnce

Sleep

QueryPerformanceCounter

QueryPerformanceFrequency

CreateProcessAsUserW

GetThreadId

TerminateThread

ProcessIdToSessionId

GetCurrentThreadId

CreateThread

GetCurrentThread

OpenProcessToken

OpenThreadToken

GetCurrentProcess

TerminateProcess

CreateProcessW

GetCurrentProcessId

GetSystemDirectoryW

GetTickCount

GetComputerNameExW

GetVersionExW

GetSystemTime

GetSystemTimeAsFileTime

GetLocalTime

CreateTimerQueue

DeleteTimerQueueEx

CreateTimerQueueTimer

UnregisterWaitEx

DeleteTimerQueueTimer

SysNotifyStartServer

SysNotifyStopServer

DismDisableFeature

DismOpenSession

DismEnableFeature

DismShutdown

DismInitialize

ControlTraceW

EnableTraceEx2

StartTraceW

CoUninitialize

CoCreateInstanceEx

CoTaskMemAlloc

StringFromCLSID

CoCreateInstance

CoCreateGuid

CoInitializeEx

CoWaitForMultipleHandles

CoSetProxyBlanket

CoTaskMemFree

DebugBreak

OutputDebugStringW

IsDebuggerPresent

OutputDebugStringA

GetFileSecurityW

CopySid

GetAce

EqualSid

CheckTokenMembership

GetAclInformation

FreeSid

GetSecurityDescriptorDacl

SetSecurityDescriptorDacl

DuplicateToken

GetSecurityDescriptorLength

SetSecurityDescriptorControl

InitializeSecurityDescriptor

IsValidSid

DeleteAce

GetSecurityDescriptorControl

CreateWellKnownSid

AllocateAndInitializeSid

GetLengthSid

RevertToSelf

GetTokenInformation

ImpersonateLoggedOnUser

SetTokenInformation

SetFileSecurityW

AdjustTokenPrivileges

DuplicateTokenEx

MakeAbsoluteSD

HeapAlloc

GetProcessHeap

HeapFree

HeapReAlloc

WaitForThreadpoolTimerCallbacks

CloseThreadpoolTimer

CreateThreadpoolTimer

SetThreadpoolTimer

LocalAlloc

LocalFree

ConvertSidToStringSidW

ConvertStringSecurityDescriptorToSecurityDescriptorW

ConvertStringSidToSidW

FormatMessageW

RpcBindingCopy

RpcBindingUnbind

Ndr64AsyncClientCall

UuidCreate

I_RpcBindingInqLocalClientPID

I_RpcExceptionFilter

UuidToStringW

RpcStringFreeW

NdrServerCall2

NdrServerCallAll

RpcServerInqDefaultPrincNameW

RpcServerRegisterAuthInfoW

RpcServerUseProtseqEpW

RpcServerRegisterIfEx

RpcAsyncCompleteCall

RpcBindingBind

RpcBindingCreateW

UuidFromStringW

RpcAsyncInitializeHandle

RpcBindingVectorFree

RpcEpRegisterW

RpcServerInqBindings

RpcServerUseProtseqExW

RpcBindingFree

RpcBindingInqAuthClientW

RpcBindingServerFromClient

RpcServerUnregisterIfEx

RpcBindingToStringBindingW

RpcStringBindingParseW

RpcServerInqCallAttributesW

RpcGetAuthorizationContextForClient

RpcFreeAuthorizationContext

RpcImpersonateClient

RpcRevertToSelf

GetFileAttributesW

GetFileSizeEx

ReadFile

SetFileAttributesW

DeleteVolumeMountPointW

CreateFileW

FindNextVolumeW

GetFileTime

WriteFile

FindClose

FindFirstVolumeW

RemoveDirectoryW

DeleteFileW

FindFirstFileW

FindNextFileW

FileTimeToLocalFileTime

SetFilePointer

CompareFileTime

CreateDirectoryW

FindVolumeClose

WideCharToMultiByte

MultiByteToWideChar

WaitForMultipleObjects

InitiateSystemShutdownExW

SystemTimeToFileTime

FileTimeToSystemTime

ExpandEnvironmentStringsW

DeviceIoControl

MoveFileWithProgressW

GetFileInformationByHandleEx

CopyFileExW

CreateSymbolicLinkW

PathCchCombine

GetProcessMitigationPolicy

OpenProcess

QueryFullProcessImageNameW

NetLocalGroupDelMembers

NetLocalGroupAddMembers

NetUserGetInfo

GetTempPathW

GetVolumeNameForVolumeMountPointW

GetVolumePathNamesForVolumeNameW

TraceMessage

CredUnprotectW

ResolveDelayLoadedAPI

DelayLoadFailureHook

LocalSize

lstrcmpiW

StrToIntExW

LookupAccountSidLocalW

WTSGetActiveConsoleSessionId

MoveFileW

GetComputerNameW

VerifyVersionInfoW

SetVolumeMountPointW

RegDeleteKeyW

RegEnumKeyW

SetEntriesInAclW

SceSetupSystemByInfName

LoadLibraryW

LsaFreeMemory

ApiSetQueryApiSetPresence

DeregisterEventSource

ReportEventW

RegisterEventSourceW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

?what@exception@@UEBAPEBDXZ

??0exception@@QEAA@AEBQEBDH@Z

??0exception@@QEAA@AEBQEBD@Z

_callnewh

toupper

wcschr

wcsrchr

wcscspn

_get_errno

memmove

_set_errno

memcmp

??1type_info@@UEAA@XZ

memcpy

_onexit

__dllonexit

_unlock

_CxxThrowException

_lock

__C_specific_handler

_initterm

malloc

free

_amsg_exit

_XcptFilter

_vsnprintf_s

??0exception@@QEAA@AEBV0@@Z

?terminate@@YAXXZ

__CxxFrameHandler3

??0exception@@QEAA@XZ

??1exception@@UEAA@XZ

_purecall

??3@YAXPEAX@Z

memcpy_s

_vsnwprintf

??_V@YAXPEAX@Z

realloc

memset

GetModuleHandleExW

LockResource

LoadStringW

DisableThreadLibraryCalls

LoadResource

GetProcAddress

GetModuleFileNameW

GetModuleHandleW

GetModuleFileNameA

FindResourceExW

InitOnceExecuteOnce

InitOnceBeginInitialize

Sleep

InitOnceComplete

ReleaseMutex

InitializeCriticalSection

SetEvent

ReleaseSemaphore

InitializeCriticalSectionEx

CreateMutexW

CreateEventW

LeaveCriticalSection

EnterCriticalSection

WaitForMultipleObjectsEx

AcquireSRWLockShared

CreateMutexExW

DeleteCriticalSection

CreateSemaphoreExW

CreateEventExW

WaitForSingleObject

InitializeSRWLock

ReleaseSRWLockShared

OpenSemaphoreW

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

WaitForSingleObjectEx

HeapAlloc

HeapFree

GetProcessHeap

HeapReAlloc

SetLastError

RaiseException

GetLastError

UnhandledExceptionFilter

SetUnhandledExceptionFilter

WindowsStringHasEmbeddedNull

WindowsGetStringLen

WindowsCreateStringReference

WindowsDeleteString

WindowsGetStringRawBuffer

WindowsDuplicateString

WindowsCreateString

WindowsIsStringEmpty

WindowsCompareStringOrdinal

WindowsSubstringWithSpecifiedLength

lstrlenW

EventRegister

EventActivityIdControl

EventWriteTransfer

EventSetInformation

EventProviderEnabled

EventUnregister

EncodePointer

DecodePointer

GetTraceEnableLevel

GetTraceEnableFlags

RegisterTraceGuidsW

UnregisterTraceGuids

GetTraceLoggerHandle

LocalFree

LocalAlloc

LocalReAlloc

GetProcessId

TerminateProcess

GetCurrentThread

OpenThreadToken

GetCurrentProcessId

GetCurrentProcess

GetCurrentThreadId

OpenProcessToken

CompareStringW

CompareStringOrdinal

GetSystemDefaultLCID

LocaleNameToLCID

ResolveLocaleName

GetSystemPreferredUILanguages

FindNLSString

FormatMessageW

LCMapStringW

OutputDebugStringW

DebugBreak

IsDebuggerPresent

CloseHandle

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

QueryPerformanceCounter

GetSystemTimeAsFileTime

GetTickCount

RegEnumKeyExW

RegOpenKeyExW

RegGetValueW

RegOpenCurrentUser

RegCloseKey

RegQueryInfoKeyW

RegCreateKeyExW

RegQueryValueExW

RegOpenKeyW

OpenProcess

GetTokenInformation

ImpersonateLoggedOnUser

RevertToSelf

UuidCreate

WaitForThreadpoolWaitCallbacks

CreateThreadpoolTimer

CloseThreadpoolTimer

WaitForThreadpoolTimerCallbacks

CloseThreadpoolWait

SetThreadpoolWait

CreateThreadpoolWait

SetThreadpoolTimer

GetProductInfo

DeleteTimerQueueTimer

CreateTimerQueueTimer

QueryFullProcessImageNameW

QISearch

StrStrIW

StrCmpLogicalW

StrChrW

StrTrimW

StrCmpICW

StrCmpCW

StrCmpNICW

SHTaskPoolAllowThreadReuse

SHTaskPoolGetUniqueContext

SHTaskPoolQueueTask

RtlAllocateHeap

RtlNtStatusToDosErrorNoTeb

RtlCompareUnicodeString

NtQueryInformationToken

_vsnprintf

RtlInitUnicodeString

strncpy_s

strchr

sprintf_s

_errno

strtol

memmove_s

_wcsicmp

RtlQueryResourcePolicy

RtlNtStatusToDosError

ZwQueryWnfStateData

EtwTraceMessage

RtlFreeHeap

ord140

ord157

ord90

ord147

IStream_Write

ord142

ord942

RaiseFailFastException

ExpandEnvironmentStringsW

RegSetKeyValueW

CompareFileTime

ResolveDelayLoadedAPI

DelayLoadFailureHook

ApiSetQueryApiSetPresence

PathMatchSpecExW

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ