_allmul
RtlTimeToTimeFields
ExSystemTimeToLocalTime
KeQuerySystemTime
ZwClose
ZwSetValueKey
ZwCreateKey
ExFreePoolWithTag
ZwQueryValueKey
ExAllocatePool
ZwOpenKey
memset
ZwDeleteValueKey
ZwCreateFile
ZwReadFile
ZwWriteFile
ZwSetInformationFile
ZwQueryInformationFile
RtlUnicodeStringToAnsiString
RtlInitUnicodeString
ZwQuerySystemInformation
RtlUnicodeStringToInteger
RtlAnsiStringToUnicodeString
RtlInitAnsiString
ZwEnumerateKey
isspace
atoi
strstr
ZwCreateSection
strncpy
strrchr
PsGetCurrentThreadId
PsGetCurrentProcessId
IofCompleteRequest
IoDeleteDevice
IoDeleteSymbolicLink
IoCreateSymbolicLink
IoCreateDevice
ObfDereferenceObject
IoAttachDeviceToDeviceStack
KeDelayExecutionThread
IoGetDeviceObjectPointer
IoDetachDevice
IofCallDriver
RtlCompareMemory
_alldiv
ObReferenceObjectByHandle
KeSetEvent
KeWaitForSingleObject
KeInitializeEvent
ExAllocatePoolWithTag
IoFreeMdl
MmBuildMdlForNonPagedPool
IoAllocateMdl
MmMapLockedPagesSpecifyCache
_except_handler3
atol
KeResetEvent
KeWaitForMultipleObjects
PsTerminateSystemThread
PsCreateSystemThread
ObfReferenceObject
IoBuildDeviceIoControlRequest
IoGetRelatedDeviceObject
MmProbeAndLockPages
IoFreeIrp
IoAllocateIrp
IoCancelIrp
ZwQueryObject
ZwDuplicateObject
NtOpenProcess
RtlCompareUnicodeString
ZwWaitForSingleObject
ZwDeviceIoControlFile
ZwCreateEvent
ZwQueryDefaultLocale
PsGetVersion
RtlAppendUnicodeStringToString
RtlAppendUnicodeToString
ZwFsControlFile
KeSetPriorityThread
KeGetCurrentThread
DbgPrint
ExInterlockedPopEntrySList
ExInterlockedPushEntrySList
ExInitializeNPagedLookasideList
RtlVolumeDeviceToDosName
RtlCopyUnicodeString
ObQueryNameString
ExQueueWorkItem
IoGetTopLevelIrp
IoGetAttachedDeviceReference
RtlEqualUnicodeString
MmGetSystemRoutineAddress
IoRegisterFsRegistrationChange
KeTickCount
KeQueryTimeIncrement
memmove
memcpy
strchr
_vsnwprintf
MmIsAddressValid
_vsnprintf
