ObReferenceObjectByHandle
ZwCreateFile
IofCallDriver
IoBuildDeviceIoControlRequest
IoGetRelatedDeviceObject
memset
IoFreeMdl
MmProbeAndLockPages
IoFreeIrp
IoAllocateMdl
IofCompleteRequest
IoCancelIrp
KeQueryTimeIncrement
KeTickCount
_alldiv
_allmul
ZwFlushKey
ZwSetValueKey
ZwCreateKey
ZwQueryValueKey
ZwOpenKey
memcpy
IoDeleteDevice
IoDeleteSymbolicLink
IoGetDeviceObjectPointer
IoCreateSymbolicLink
IoCreateDevice
IoGetLowerDeviceObject
ZwUnloadDriver
ZwDeleteKey
RtlAppendUnicodeStringToString
RtlAppendUnicodeToString
RtlRandomEx
RtlFreeAnsiString
RtlUnicodeStringToAnsiString
KeQuerySystemTime
IoRegisterShutdownNotification
RtlUpcaseUnicodeString
ExAllocatePool
ExFreePoolWithTag
KeInitializeEvent
IoDetachDevice
RtlCompareMemory
MmIsAddressValid
MmBuildMdlForNonPagedPool
MmMapLockedPagesSpecifyCache
PsGetCurrentProcessId
memmove
strncpy
_snprintf
PsGetCurrentThreadId
ZwEnumerateKey
DbgPrint
strstr
_strnicmp
RtlCompareUnicodeString
ZwSetInformationFile
ZwWriteFile
ZwReadFile
ZwWaitForSingleObject
ZwQueryInformationFile
IoCreateFileSpecifyDeviceObjectHint
ZwQuerySymbolicLinkObject
ZwOpenSymbolicLinkObject
RtlEqualUnicodeString
ObQueryNameString
RtlFreeUnicodeString
swprintf
ZwDeviceIoControlFile
ZwFsControlFile
RtlCopyUnicodeString
ExAllocatePoolWithTag
IoGetDeviceAttachmentBaseRef
IoAttachDeviceToDeviceStackSafe
PsTerminateSystemThread
KeSetTimerEx
KeSetPriorityThread
KeGetCurrentThread
KeCancelTimer
PsCreateSystemThread
KeInitializeTimerEx
KeBugCheckEx
ObfDereferenceObject
KeWaitForSingleObject
ZwClose
RtlInitUnicodeString
IoAttachDeviceToDeviceStack
KeSetEvent
RtlAnsiCharToUnicodeChar
RtlUnwind
