IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

TraceMessage

GetTraceEnableFlags

GetTraceEnableLevel

GetTraceLoggerHandle

RegisterTraceGuidsW

UnregisterTraceGuids

MD5Init

MD5Update

MD5Final

RegSetKeyValueW

EventRegister

EventWrite

EventUnregister

ConvertSidToStringSidW

EqualSid

RegisterWaitChainCOMCallback

OpenThreadWaitChainSession

GetThreadWaitChain

CloseThreadWaitChainSession

GetKernelObjectSecurity

GetSecurityDescriptorDacl

OpenThreadToken

SetEntriesInAclW

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

SetKernelObjectSecurity

IsValidSid

GetLengthSid

CopySid

GetTokenInformation

GetSidSubAuthorityCount

GetSidSubAuthority

DuplicateToken

AllocateAndInitializeSid

CheckTokenMembership

FreeSid

StopTraceW

QueryTraceW

StartTraceW

EnableTrace

RegOpenKeyW

RegisterEventSourceW

ReportEventW

DeregisterEventSource

ConvertStringSecurityDescriptorToSecurityDescriptorW

OpenSCManagerW

OpenServiceW

QueryServiceConfigW

CloseServiceHandle

RegDeleteKeyW

CreateProcessAsUserW

OpenProcessToken

CreateProcessW

GetModuleFileNameW

RegEnumKeyExW

DeleteFileW

RegEnumValueW

FileTimeToSystemTime

WriteFile

GetFileAttributesExW

FindClose

FindNextFileW

FindFirstFileW

CreateFileW

RegGetValueW

RegQueryValueExW

GetSystemDefaultLangID

GetProductInfo

GetSystemInfo

LocalFree

MoveFileExW

SetFileAttributesW

GetDiskFreeSpaceExW

ReadFile

GetLocalTime

CreateDirectoryW

SetPriorityClass

OpenProcess

DeviceIoControl

GetFileAttributesW

ReadProcessMemory

LoadLibraryW

SystemTimeToFileTime

GetSystemTime

FreeLibraryAndExitThread

GetExitCodeThread

CreateThread

GetModuleHandleExW

UnmapViewOfFile

MapViewOfFile

CreateFileMappingW

HeapFree

HeapAlloc

GetProcessHeap

OpenFileMappingW

DuplicateHandle

LoadLibraryExW

QueryFullProcessImageNameW

Process32NextW

Process32FirstW

CreateToolhelp32Snapshot

GetThreadUILanguage

GetNativeSystemInfo

SearchPathW

IsWow64Process

GetSystemDirectoryW

GetUserDefaultUILanguage

GetProcessTimes

GetApplicationRestartSettings

MultiByteToWideChar

lstrlenW

FormatMessageW

GetWindowsDirectoryW

GetSystemWow64DirectoryW

GetFileSize

ExpandEnvironmentStringsW

WaitForMultipleObjects

GetFileInformationByHandle

GetFinalPathNameByHandleW

SetFileInformationByHandle

GetLongPathNameW

GetTempPathW

GetTempFileNameW

GetFileSizeEx

CheckRemoteDebuggerPresent

RegQueryInfoKeyW

VirtualQuery

SetEvent

GetPriorityClass

GetModuleHandleW

SetEnvironmentVariableW

CreateEventW

GetStringTypeExW

ResetEvent

K32GetModuleFileNameExW

Thread32Next

OpenThread

Thread32First

InitializeCriticalSection

SetThreadpoolWait

EnterCriticalSection

LeaveCriticalSection

GetThreadContext

CloseThreadpoolWait

WaitForThreadpoolWaitCallbacks

GetProcessId

DeleteCriticalSection

CreateThreadpoolWait

GetProcessIoCounters

GetThreadTimes

GetThreadId

GetProcessIdOfThread

LCMapStringW

OutputDebugStringA

VirtualFree

VirtualAlloc

InterlockedIncrement

InterlockedDecrement

OpenEventW

K32EnumProcessModules

GlobalMemoryStatus

Module32NextW

Module32FirstW

QueryDosDeviceW

GetLogicalDriveStringsW

GetDriveTypeW

FindNextFileNameW

FindFirstFileNameW

CompareFileTime

FindFirstFileExW

GetCurrentThread

GetThreadPriority

SetThreadPriority

WTSGetActiveConsoleSessionId

GetVersionExW

SetLastError

RegDeleteValueW

RegCloseKey

OpenMutexW

GetCommandLineW

CloseHandle

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

GetSystemTimeAsFileTime

GetCurrentProcessId

GetCurrentThreadId

GetTickCount

QueryPerformanceCounter

GetModuleHandleA

SetUnhandledExceptionFilter

Sleep

InterlockedExchange

SetErrorMode

HeapSetInformation

WaitForSingleObject

GetProcAddress

InitializeCriticalSectionAndSpinCount

ReleaseMutex

RegOpenKeyExW

RegCreateKeyExW

RegSetValueExW

CompareStringW

CreateMutexW

GetLastError

FreeLibrary

InterlockedCompareExchange

LoadLibraryExA

DelayLoadFailureHook

GetProcessWindowStation

LoadStringW

DispatchMessageW

TranslateMessage

IsHungAppWindow

GetClassNameW

GetWindow

IsWindowEnabled

GetWindowThreadProcessId

SendMessageW

SetWindowPos

GetWindowLongW

GetThreadDesktop

EnumWindows

MonitorFromPoint

GetSystemMetrics

LogicalToPhysicalPoint

GetMonitorInfoW

MonitorFromWindow

IsIconic

GetWindowRect

SetWindowLongW

EndDialog

PostMessageW

LoadIconW

DefWindowProcW

RegisterErrorReportingDialog

CheckWindowThreadDesktop

IsWindow

GetUserObjectInformationW

GetMessageW

RegisterWindowMessageW

ShowWindow

CreateWindowExW

RegisterClassExW

ChangeWindowMessageFilter

iswspace

wcspbrk

_CxxThrowException

memcpy

wcsstr

_wcstoui64

_purecall

_vsnprintf

wcsncmp

_vscwprintf

tolower

towlower

??1type_info@@UAE@XZ

memmove

_wcsnicmp

_wtoi64

_exit

_XcptFilter

exit

_initterm

isspace

_amsg_exit

__setusermatherr

__p__commode

__p__fmode

__set_app_type

?terminate@@YAXXZ

_except_handler4_common

_controlfp

__wgetmainargs

_vsnwprintf

__CxxFrameHandler3

wcschr

_wcsicmp

memset

??3@YAXPAX@Z

??2@YAPAXI@Z

wcsrchr

_wtoi

_unlock

__dllonexit

_lock

_onexit

_cexit

RtlCreateProcessReflection

WinSqmAddToStream

WinSqmSetString

RtlFreeHeap

RtlAllocateHeap

NtSetSystemInformation

RtlAdjustPrivilege

NtQueryObject

NtSystemDebugControl

WinSqmIncrementDWORD

NtSuspendProcess

NtResumeProcess

NtQuerySystemInformation

RtlUpcaseUnicodeChar

RtlCompareMemory

ShipAssert

WinSqmEndSession

WinSqmStartSession

WinSqmSetDWORD

NtQueryInformationThread

NtQueryEvent

RtlImageNtHeaderEx

RtlAllocateAndInitializeSid

RtlInitUnicodeString

NtAlpcConnectPort

NtAlpcSendWaitReceivePort

RtlFreeSid

NtOpenEvent

NtWaitForSingleObject

NtClose

EtwEventWriteNoRegistration

RtlNtStatusToDosError

NtQueryInformationProcess

NtQueryInformationToken

EtwTraceMessage

DbgPrint

CoGetCallState

CoUninitialize

CoCreateInstance

CoInitialize

CoGetActivationState

CoGetObject

StringFromGUID2

CoSetProxyBlanket

CoTaskMemFree

ProgIDFromCLSID

CLSIDFromString

CoCreateGuid

SysAllocStringLen

SysFreeString

ord437

ImmDisableIME

WerpAddAppCompatData

WerpReportCancel

WerReportCreate

WerpSetIntegratorReportId

WerpGetReportConsent

WerpSetCallBack

WerpAddRegisteredDataToReport

WerReportSetUIOption

WerReportSubmit

WerReportCloseHandle

WerpAddFile

WerpPromtUser

WerpAddSecondaryParameter

WerReportAddDump

WerpSetEventName

WerpSetDynamicParameter

WerReportSetParameter

WerpIsTransportAvailable

WerpGetReportFlags

WerpSetReportFlags

WerpGetNumFiles

WerpGetFileByIndex

WerpCreateIntegratorReportId

WerReportAddFile

WerpFreeString

ord410

ord412

ord345

ord413

WerpInitiateCrashReporting

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE