IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

__CxxFrameHandler3

memcpy_s

memmove_s

??0exception@@QAE@ABQBD@Z

_except_handler4_common

_onexit

_lock

__dllonexit

_unlock

??1type_info@@UAE@XZ

?what@exception@@UBEPBDXZ

??0exception@@QAE@XZ

??1exception@@UAE@XZ

??0exception@@QAE@ABV0@@Z

_CxxThrowException

_purecall

memcpy

_vsnwprintf

wcsncmp

iswdigit

_wtol

strchr

_errno

strtoul

wcstoul

_amsg_exit

_initterm

_XcptFilter

malloc

_callnewh

free

_wcsnicmp

toupper

wcschr

memset

wcsrchr

_wcsicmp

_itow

RtlAdjustPrivilege

RtlNtStatusToDosError

EtwEventUnregister

EtwEventRegister

EtwEventActivityIdControl

EtwEventWrite

NtDuplicateToken

NtClose

RtlIsDosDeviceName_U

NtCreateFile

RtlFreeHeap

RtlReleaseRelativeName

RtlDosPathNameToRelativeNtPathName_U

RtlTimeToSecondsSince1980

NtQuerySystemTime

RtlCopySid

RtlLengthSid

NtQueryInformationToken

RtlEqualSid

RtlFreeUnicodeString

RtlConvertSidToUnicodeString

NtSetInformationProcess

WinSqmSetDWORD

RtlInitUnicodeString

EtwEventEnabled

SetServiceStatus

RegisterServiceCtrlHandlerExW

OpenSCManagerW

OpenServiceW

CloseServiceHandle

QueryServiceConfigW

ChangeServiceConfigW

RegGetKeySecurity

GetSidSubAuthority

RegOpenCurrentUser

SetTokenInformation

MakeSelfRelativeSD

AddAccessAllowedAceEx

SetSecurityDescriptorGroup

GetSecurityDescriptorLength

GetNamedSecurityInfoW

GetTokenInformation

AccessCheck

ImpersonateLoggedOnUser

InitializeAcl

AddAccessAllowedAce

GetAce

SetEntriesInAclW

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

SetSecurityDescriptorOwner

SetSecurityDescriptorControl

GetSecurityInfo

IsValidSecurityDescriptor

GetSecurityDescriptorDacl

MapGenericMask

AllocateAndInitializeSid

FreeSid

LookupAccountNameW

IsValidSid

GetLengthSid

CopySid

EqualSid

GetSidSubAuthorityCount

RegSetKeySecurity

DuplicateTokenEx

IsWellKnownSid

LookupAccountSidW

CreateWellKnownSid

CheckTokenMembership

OpenProcessToken

RegConnectRegistryW

AccessCheckByType

OpenThreadToken

SetThreadToken

RegQueryValueExA

CreateProcessAsUserW

RevertToSelf

RegCreateKeyExW

RegCloseKey

RegOpenKeyExW

RegEnumKeyExW

RegQueryInfoKeyW

RegSetValueExW

RegDeleteValueW

RegEnumValueW

RegQueryValueExW

LoadStringW

GetSystemMetrics

BroadcastSystemMessageW

ord111

LeaveCriticalPolicySectionInternal

RsopLoggingEnabledInternal

ord114

ord118

ord12

ord179

ord26

ord133

ord147

ord27

ord203

ord41

ord145

ord16

ord14

ord18

ord88

ord73

ord13

ord140

ord142

ord79

ord224

QuerySecurityPackageInfoW

AcquireCredentialsHandleW

SeciAllocateAndSetIPAddress

InitializeSecurityContextW

AcceptSecurityContext

DeleteSecurityContext

FreeCredentialsHandle

TranslateNameW

SeciFreeCallContext

GetComputerObjectNameW

GetUserNameExW

QuerySecurityContextToken

FreeContextBuffer

NsiGetParameter

CreateDirectoryW

FindNLSString

GetFileSize

ResetEvent

WTSGetActiveConsoleSessionId

SetPriorityClass

FreeLibraryAndExitThread

CreateJobObjectW

ReadFile

SetInformationJobObject

TerminateJobObject

OpenEventW

GetProfileIntW

SetCurrentDirectoryW

RemoveDirectoryW

GetModuleHandleExW

CompareStringA

GetFullPathNameW

RegDeleteKeyExW

AssignProcessToJobObject

GetCurrentDirectoryW

GlobalAlloc

GlobalFree

GetLocalTime

OutputDebugStringW

SetFilePointer

RegisterWaitForSingleObject

InitializeCriticalSectionAndSpinCount

MultiByteToWideChar

LocalReAlloc

RegNotifyChangeKeyValue

FormatMessageW

GetModuleHandleW

SetUnhandledExceptionFilter

UnhandledExceptionFilter

TerminateProcess

GetCurrentProcessId

GetCurrentThreadId

QueryPerformanceCounter

Sleep

InterlockedExchange

FileTimeToSystemTime

SystemTimeToFileTime

GetSystemTime

lstrcmpW

LocalFree

CompareStringW

GetLastError

LocalAlloc

lstrlenW

CloseHandle

UnregisterWaitEx

SetEvent

WaitForSingleObject

CreateEventW

GetVersionExW

CreateThread

QueueUserWorkItem

DelayLoadFailureHook

GetProcAddress

FreeLibrary

InterlockedCompareExchange

LoadLibraryExA

SetLastError

FindClose

FindNextFileW

GetFileAttributesExW

FindFirstFileW

GetComputerNameExW

GetTickCount

InitializeCriticalSection

DeleteCriticalSection

LeaveCriticalSection

EnterCriticalSection

LoadLibraryW

InterlockedIncrement

InterlockedDecrement

GetCurrentThread

GetSystemTimeAsFileTime

WaitForMultipleObjects

SetWaitableTimer

CreateWaitableTimerW

ResumeThread

SetThreadPriority

DuplicateHandle

GetCurrentProcess

lstrcmpiW

lstrlenA

ExpandEnvironmentStringsW

GetPrivateProfileStringW

GetPrivateProfileIntW

WriteFile

GetFileAttributesW

CreateFileW

GetComputerNameW

MoveFileExW

DeleteFileW

SetFileAttributesW

NdrServerCall2

NdrAsyncServerCall

RpcServerSubscribeForNotification

RpcServerUnsubscribeForNotification

RpcAsyncCompleteCall

RpcAsyncAbortCall

RpcImpersonateClient

RpcRevertToSelf

RpcRaiseException

RpcBindingToStringBindingW

RpcStringBindingParseW

RpcEpUnregister

RpcBindingVectorFree

RpcServerUnregisterIf

RpcServerRegisterIfEx

RpcServerUseProtseqW

RpcServerInqBindings

RpcEpRegisterW

UuidToStringW

UuidFromStringW

RpcStringFreeW

UuidCreate

SysNotifyStopServer

SysNotifyStartServer

NlaDeletePluginRequests

NlaRefreshQuery

NlaCreatePluginRequests

NlaAddToPluginRequests

NlaGetInternetCapability

NlaRegisterQuery

NlaCreateTypeSet

NlaAddToTypeSet

NlaOpenQuery

NlaQueryNetSignatures

NlaGetIntranetCapability

NlaCloseQuery

NlaDeleteTypeSet

NlaDeleteDataSet

NlaQueryNetData

QueryServiceStatus

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ