RtlCreateRegistryKey
MmFlushImageSection
FsRtlFreeFileLock
FsRtlMdlWriteCompleteDev
IoCreateDevice
KePulseEvent
IoReadPartitionTableEx
IoQueueWorkItem
IoSetPartitionInformation
ExAllocatePoolWithQuotaTag
RtlTimeFieldsToTime
FsRtlNotifyUninitializeSync
FsRtlCheckLockForReadAccess
IoAllocateErrorLogEntry
CcIsThereDirtyData
CcUninitializeCacheMap
IoThreadToProcess
ZwDeleteValueKey
IoIsSystemThread
MmLockPagableSectionByHandle
KeLeaveCriticalRegion
IoGetAttachedDeviceReference
ObReferenceObjectByPointer
RtlRemoveUnicodePrefix
RtlRandom
RtlOemToUnicodeN
PsCreateSystemThread
IoCreateFile
ZwQuerySymbolicLinkObject
RtlSecondsSince1980ToTime
ZwCreateKey
RtlHashUnicodeString
RtlInitializeUnicodePrefix
SeQueryAuthenticationIdToken
CcSetReadAheadGranularity
CcRepinBcb
FsRtlIsFatDbcsLegal
ZwMapViewOfSection
RtlUpcaseUnicodeToOemN
RtlCopySid
RtlSetBits
PoCallDriver
MmQuerySystemSize
DbgPrompt
ExFreePool
RtlUnicodeStringToInteger
SeLockSubjectContext
IoWMIRegistrationControl
ZwReadFile
KeInsertQueueDpc
RtlTimeToSecondsSince1980
IoInitializeTimer
RtlLengthRequiredSid
FsRtlFastUnlockSingle
IoGetStackLimits
IoGetBootDiskInformation
RtlInt64ToUnicodeString
IoRegisterDeviceInterface
KeSetEvent
ZwOpenSection
IoFreeIrp
RtlInsertUnicodePrefix
ObReferenceObjectByHandle
KdDisableDebugger
MmBuildMdlForNonPagedPool
IoGetRelatedDeviceObject
RtlAreBitsSet
ZwCreateSection
IoDisconnectInterrupt
FsRtlCheckOplock
SeSetSecurityDescriptorInfo
IoSetHardErrorOrVerifyDevice
IoGetLowerDeviceObject
RtlFindLastBackwardRunClear
SeUnlockSubjectContext
IoGetTopLevelIrp
KeQueryTimeIncrement
KeEnterCriticalRegion
PsGetCurrentProcess
FsRtlNotifyInitializeSync
ExAllocatePoolWithQuota
KeResetEvent
ExAcquireFastMutexUnsafe
IoStartPacket
PsGetCurrentThreadId
MmFreeNonCachedMemory
SeDeassignSecurity
ExGetPreviousMode
CcCanIWrite
KeSetBasePriorityThread
PsTerminateSystemThread
ExQueueWorkItem
IoCancelIrp
IoAcquireRemoveLockEx
KeWaitForMultipleObjects
RtlInitializeSid
KeInitializeDeviceQueue
ZwQueryValueKey
RtlxOemStringToUnicodeSize
PsDereferencePrimaryToken
IoDeviceObjectType
CcMdlWriteAbort
DbgBreakPointWithStatus
IoReleaseRemoveLockAndWaitEx
CcCopyRead
ExReinitializeResourceLite
CcSetDirtyPinnedData
RtlCreateUnicodeString
IoReleaseRemoveLockEx
MmFreePagesFromMdl
RtlAreBitsClear
MmSecureVirtualMemory
IoAllocateAdapterChannel
IoWriteErrorLogEntry
ZwCreateFile
KeInitializeTimerEx
ZwDeviceIoControlFile
RtlStringFromGUID
ExVerifySuite
KeClearEvent
IoUpdateShareAccess
FsRtlDeregisterUncProvider
KeInitializeApc
KeStackAttachProcess
IoConnectInterrupt
CcCopyWrite
IoCreateNotificationEvent
ZwEnumerateKey
RtlFindNextForwardRunClear
RtlSetAllBits
FsRtlIsTotalDeviceFailure
KeRestoreFloatingPointState
ObQueryNameString
MmCanFileBeTruncated
PoSetPowerState
SeAssignSecurity
KeBugCheckEx
CcFastCopyWrite
RtlEqualString
ExRaiseStatus
ZwCreateEvent
KeInitializeEvent
PsLookupThreadByThreadId
IoGetDeviceAttachmentBaseRef
KeReadStateSemaphore
CcUnpinRepinnedBcb
IoSetStartIoAttributes
PoStartNextPowerIrp
SeImpersonateClientEx
PsSetLoadImageNotifyRoutine
RtlAddAccessAllowedAceEx
IoDetachDevice
KeRundownQueue
KeAttachProcess
MmIsAddressValid
KeInitializeTimer
MmMapIoSpace
ZwSetValueKey
KeQuerySystemTime
IoReportDetectedDevice
PsLookupProcessByProcessId
RtlFreeAnsiString
ExReleaseFastMutexUnsafe
ExNotifyCallback
ProbeForWrite
ExRegisterCallback
RtlIsNameLegalDOS8Dot3
SeCaptureSubjectContext
IoAllocateController
MmProbeAndLockPages
RtlDeleteRegistryValue
IoWritePartitionTableEx
MmGetSystemRoutineAddress
RtlWriteRegistryValue
RtlAnsiCharToUnicodeChar
IoInvalidateDeviceState
RtlVolumeDeviceToDosName
ExAcquireResourceSharedLite
KeDelayExecutionThread
HalExamineMBR
RtlSubAuthoritySid
ExSystemTimeToLocalTime
IoInitializeIrp
IoMakeAssociatedIrp
MmFreeContiguousMemory
ExLocalTimeToSystemTime
RtlNumberOfClearBits
ObGetObjectSecurity
PsGetVersion
MmUnlockPagableImageSection
IoStartTimer
IoCreateSynchronizationEvent
SeFilterToken
PoSetSystemState
IoGetDeviceToVerify
RtlAnsiStringToUnicodeString
PsReferencePrimaryToken
KeInsertByKeyDeviceQueue
RtlFindMostSignificantBit
IoAcquireVpbSpinLock
KeRegisterBugCheckCallback
FsRtlSplitLargeMcb
RtlInitString
KeRemoveDeviceQueue
RtlDowncaseUnicodeString
KeUnstackDetachProcess
IoFreeMdl
CcFastMdlReadWait
ObfDereferenceObject
RtlQueryRegistryValues
RtlIntegerToUnicodeString
MmFreeMappingAddress
IoRequestDeviceEject
IoVerifyPartitionTable
IoSetDeviceToVerify
CcSetBcbOwnerPointer
KeRemoveQueue
RtlUpperString
IoSetDeviceInterfaceState
RtlInitAnsiString
ExDeletePagedLookasideList
IoVerifyVolume
RtlInitUnicodeString
WmiQueryTraceInformation
KeInsertHeadQueue
FsRtlIsNameInExpression
IoBuildSynchronousFsdRequest
CcRemapBcb
IoSetPartitionInformationEx
PsIsThreadTerminating
RtlFindSetBits
KeReadStateTimer
IoSetSystemPartition
SeAccessCheck
MmAllocateMappingAddress
MmAllocateNonCachedMemory
SeSinglePrivilegeCheck
IoSetTopLevelIrp
KeCancelTimer
FsRtlLookupLastLargeMcbEntry
IoCreateStreamFileObjectLite
SeOpenObjectAuditAlarm
CcUnpinDataForThread
RtlOemStringToUnicodeString
KeReadStateEvent
RtlSecondsSince1970ToTime
MmResetDriverPaging
CcMdlRead
ObfReferenceObject
KeSetTimerEx
ExRaiseAccessViolation
FsRtlAllocateFileLock
ExIsProcessorFeaturePresent
MmLockPagableDataSection
PsGetCurrentThread
KeSetTimer
PsGetCurrentProcessId
KeDeregisterBugCheckCallback
PsReturnPoolQuota
ExSetTimerResolution
MmIsDriverVerifying
IoSetThreadHardErrorMode
RtlUnicodeToOemN
MmUnlockPages
IoReportResourceForDetection
PoRegisterSystemState
