IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

wcsrchr

wcschr

wcsncmp

wcscat

??3@YAXPAX@Z

??2@YAPAXI@Z

_c_exit

isalpha

printf

_vsnprintf

_wcsnicmp

wcslen

_wgetenv

swscanf

_exit

_XcptFilter

_cexit

__winitenv

mbstowcs

_wtoi

exit

_iob

fprintf

wcsncat

_snwprintf

_vsnwprintf

wcstoul

wcsstr

rand

srand

qsort

wcscmp

memmove

time

_wcsicmp

calloc

free

fflush

_snprintf

?terminate@@YAXXZ

wcstol

_i64tow

_itow

iswalpha

iswspace

wcscpy

strncpy

_mbstrlen

_wcsupr

strpbrk

_controlfp

_except_handler3

__set_app_type

__p__fmode

__p__commode

_adjust_fdiv

__setusermatherr

_initterm

__wgetmainargs

strspn

isdigit

__CxxFrameHandler

??1type_info@@UAE@XZ

iswctype

wcsncpy

SetSecurityDescriptorDacl

GetTraceEnableLevel

GetTraceEnableFlags

EqualSid

TraceMessage

RegisterEventSourceW

ReportEventW

GetSecurityDescriptorDacl

InitializeSecurityDescriptor

SetEntriesInAclW

RegisterTraceGuidsW

RegRestoreKeyW

CryptImportKey

CryptExportKey

CryptSetProvParam

DuplicateTokenEx

AdjustTokenPrivileges

SetThreadToken

CryptGetProvParam

GetSecurityDescriptorControl

MakeSelfRelativeSD

CryptGetUserKey

CryptGetKeyParam

RegSetKeySecurity

RegDeleteKeyW

RegCreateKeyExW

RegConnectRegistryW

RegLoadKeyW

RegNotifyChangeKeyValue

RegFlushKey

RegGetKeySecurity

RegEnumValueW

RegQueryInfoKeyW

RegEnumKeyExW

ChangeServiceConfigW

LsaNtStatusToWinError

CryptDecrypt

CryptSetKeyParam

CheckTokenMembership

CreateWellKnownSid

LookupPrivilegeValueW

LookupPrivilegeDisplayNameW

GetTokenInformation

DuplicateToken

OpenProcessToken

SetServiceStatus

RegCloseKey

RegQueryValueExW

RegOpenKeyExW

RegOpenKeyW

RegSetValueExW

RegisterServiceCtrlHandlerW

StartServiceCtrlDispatcherW

IsValidSecurityDescriptor

GetSecurityDescriptorLength

ControlService

QueryServiceStatus

CloseServiceHandle

OpenServiceW

OpenSCManagerW

RegUnLoadKeyW

RegDeleteValueW

RegSaveKeyExW

RegSaveKeyW

CryptGetHashParam

CryptEncrypt

CryptDestroyKey

CryptCreateHash

CryptHashData

CryptDeriveKey

CryptDestroyHash

CryptGenRandom

CryptAcquireContextW

AllocateAndInitializeSid

FreeSid

RegCreateKeyW

CryptReleaseContext

ConvertStringSecurityDescriptorToSecurityDescriptorW

OpenThreadToken

MapGenericMask

AccessCheck

ConvertStringSidToSidW

UnregisterTraceGuids

SetSecurityInfo

GetAce

AddAccessAllowedAce

InitializeAcl

GetLengthSid

GetSidSubAuthority

InitializeSid

GetSidLengthRequired

ConvertSidToStringSidW

GetAclInformation

SetSecurityDescriptorSacl

SetSecurityDescriptorGroup

SetSecurityDescriptorOwner

AddAce

MakeAbsoluteSD

RegQueryValueExA

QueryTraceW

StartTraceW

EnableTrace

GetTraceLoggerHandle

MoveFileExW

ExitProcess

ReleaseMutex

TerminateProcess

IsDebuggerPresent

SetProcessWorkingSetSize

GetProcessWorkingSetSize

SetUnhandledExceptionFilter

CreateMutexW

SetPriorityClass

QueryPerformanceCounter

DeleteFileW

UnhandledExceptionFilter

WaitForMultipleObjects

CreateProcessW

GetExitCodeProcess

InterlockedExchange

LocalReAlloc

UnmapViewOfFile

InterlockedDecrement

InterlockedIncrement

GetCurrentThread

TryEnterCriticalSection

OpenProcess

FlushFileBuffers

ReadFile

WriteFile

GetCurrentProcessId

GetModuleFileNameW

GetCurrentThreadId

GetOverlappedResult

CreateFileMappingW

GetProcessHeap

HeapFree

GetFileAttributesExW

SetFileAttributesW

DeviceIoControl

CreateFileW

lstrcmpW

InitializeCriticalSection

CreateThread

Sleep

DeleteCriticalSection

CancelWaitableTimer

EnterCriticalSection

LeaveCriticalSection

lstrcpyW

lstrcatW

SetLastError

GetComputerNameExW

SetErrorMode

GetLocalTime

GetTickCount

GetTempFileNameW

CopyFileExW

CreateEventA

LocalSize

VerSetConditionMask

VerifyVersionInfoW

PostQueuedCompletionStatus

CreateIoCompletionPort

HeapAlloc

VirtualQuery

SetCurrentDirectoryW

DuplicateHandle

UnregisterWaitEx

RegisterWaitForSingleObject

InterlockedExchangeAdd

OpenFileMappingW

DeleteTimerQueueTimer

CreateTimerQueue

CreateTimerQueueTimer

OutputDebugStringA

GetLocaleInfoW

DeleteTimerQueue

OutputDebugStringW

RaiseException

CopyFileW

GetFileAttributesW

MoveFileW

ExpandEnvironmentStringsW

HeapSize

GetWindowsDirectoryW

CompareFileTime

VirtualAlloc

VirtualFree

SetFilePointerEx

SetEndOfFile

lstrlenW

CreateEventW

SetConsoleCtrlHandler

SetEvent

lstrlenA

GetVersionExW

lstrcpynW

lstrcmpiW

WaitForSingleObject

LoadLibraryExW

FormatMessageW

FreeLibrary

WideCharToMultiByte

GetCurrentProcess

CloseHandle

LocalAlloc

LocalFree

GetLastError

MapViewOfFile

CompareStringW

SearchPathW

InterlockedCompareExchange

ResetEvent

OpenThread

CreateWaitableTimerW

SetFilePointer

GetFileSize

FormatMessageA

GetSystemTime

GetEnvironmentVariableW

GetSystemInfo

ResumeThread

SetThreadPriority

GetComputerNameW

FileTimeToSystemTime

SleepEx

WaitForSingleObjectEx

SetWaitableTimer

GetTempPathW

CreateSemaphoreW

ReleaseSemaphore

DebugBreak

GetFileSizeEx

GetDiskFreeSpaceExW

CreateDirectoryW

FindClose

FindNextFileW

FindFirstFileW

GetQueuedCompletionStatus

RemoveDirectoryW

GetProcAddress

LoadLibraryW

ExitThread

GetSystemTimeAsFileTime

wsprintfA

wsprintfW

UuidFromStringW

RpcBindingServerFromClient

UuidToStringW

RpcServerRegisterAuthInfoW

RpcServerUseProtseqW

RpcServerUseProtseqEpW

RpcServerListen

RpcSsDontSerializeContext

RpcServerInqBindings

RpcBindingToStringBindingW

RpcStringBindingParseW

RpcBindingVectorFree

RpcEpUnregister

RpcServerUnregisterIf

UuidHash

RpcServerRegisterIfEx

RpcStringBindingComposeW

RpcBindingFromStringBindingW

RpcStringFreeW

I_RpcMapWin32Status

RpcEpResolveBinding

RpcBindingSetAuthInfoW

RpcBindingFree

UuidCreate

RpcErrorEndEnumeration

RpcErrorGetNextRecord

RpcErrorStartEnumeration

RpcCancelThreadEx

RpcAsyncCompleteCall

RpcAsyncCancelCall

RpcAsyncInitializeHandle

RpcRaiseException

RpcBindingSetOption

NdrClientCall2

NdrAsyncClientCall

NdrAsyncServerCall

NdrServerCall2

I_RpcExceptionFilter

I_RpcBindingInqLocalClientPID

RpcImpersonateClient

RpcRevertToSelf

RpcBindingInqAuthClientW

RpcEpRegisterW

RpcMgmtSetComTimeout

CoTaskMemFree

CoFreeUnusedLibrariesEx

CoInitializeSecurity

CoCreateInstance

CoSetProxyBlanket

CoInitializeEx

CoUninitialize

MapFileAndCheckSumW

?OnVSSShutdown@CVssWriter@@UAG_NXZ

?OnContinueIOOnVolume@CVssWriter@@UAG_NPAGU_GUID@@1@Z

?OnBackOffIOOnVolume@CVssWriter@@UAG_NPAGU_GUID@@1@Z

?OnVSSApplicationStartup@CVssWriter@@UAG_NXZ

?IsBootableSystemStateBackedUp@CVssWriter@@IBG_NXZ

?Unsubscribe@CVssWriter@@QAGJXZ

?Subscribe@CVssWriter@@QAGJK@Z

?Initialize@CVssWriter@@QAGJU_GUID@@PBGW4VSS_USAGE_TYPE@@W4VSS_SOURCE_TYPE@@W4_VSS_APPLICATION_LEVEL@@KW4VSS_ALTERNATE_WRITER_STATE@@_N1@Z

??1CVssWriter@@UAE@XZ

??0CVssWriter@@QAE@XZ

?OnPostSnapshot@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

?OnPostRestore@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

?OnPreRestore@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

?OnBackupShutdown@CVssWriter@@UAG_NU_GUID@@@Z

?OnBackupComplete@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z

?SetWriterFailure@CVssWriter@@IAGJJ@Z

ord32

CryptProtectData

CryptUnprotectData

NtDeviceIoControlFile

NtWaitForSingleObject

NtCreateFile

RtlFreeAnsiString

NtDuplicateToken

NtSetInformationThread

RtlAllocateAndInitializeSid

NtOpenFile

RtlFreeUnicodeString

RtlReleaseResource

NtOpenProcessToken

NtQueryInformationToken

RtlLengthSid

RtlCreateAcl

RtlAddAccessAllowedAce

RtlCreateSecurityDescriptor

RtlSetDaclSecurityDescriptor

NtClose

RtlValidSecurityDescriptor

RtlLengthSecurityDescriptor

RtlAllocateHeap

RtlMakeSelfRelativeSD

RtlNtStatusToDosError

RtlInitAnsiString

RtlAnsiStringToUnicodeString

RtlUnicodeStringToAnsiString

NtUnloadKey

RtlDosPathNameToRelativeNtPathName_U

NtLoadKey2

RtlReleaseRelativeName

RtlFreeHeap

RtlSetThreadErrorMode

NtRestoreKey

RtlAdjustPrivilege

RtlInitString

RtlCompareMemory

RtlExtendedIntegerMultiply

RtlInitUnicodeString

RtlUnicodeStringToInteger

RtlAcquireResourceExclusive

RtlValidRelativeSecurityDescriptor

RtlGetCallersAddress

RtlFreeSid

RtlInitializeResource

RtlAcquireResourceShared

NetApiBufferFree

NetSessionDel

NetConnectionEnum

NetShareAdd

NetShareDel

WSAIoctl

bind

WSASocketW

WSAStartup

WSAGetLastError

WSACleanup

WSARecvFrom

closesocket

inet_ntoa

inet_addr

ntohs

htons

WSASendTo

ntohl

htonl

SysFreeString

SysAllocString

IcmpCreateFile

GetTcpTable

GetIpForwardTable

GetAdaptersInfo

IcmpCloseHandle

IcmpSendEcho

LsaLookupAuthenticationPackage

LsaConnectUntrusted

LsaRegisterLogonProcess

GetUserNameExW

LsaCallAuthenticationPackage

LsaDeregisterLogonProcess

LsaFreeReturnBuffer

LsaGetLogonSessionData

McastApiStartup

McastGenUID

McastRequestAddress

McastReleaseAddress

McastRenewAddress

McastApiCleanup

McastEnumerateScopes

GetModuleFileNameExW

HrLanConnectionNameFromGuidOrPath

HrGetPnpDeviceStatus

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE