RtlCompareUnicodeString
IoWritePartitionTableEx
PoSetSystemState
MmUnsecureVirtualMemory
IoFreeErrorLogEntry
IoOpenDeviceRegistryKey
ZwWriteFile
ZwCreateSection
CcZeroData
IoReadPartitionTableEx
MmUnlockPagableImageSection
memchr
ZwEnumerateKey
ExAllocatePoolWithQuota
ExNotifyCallback
CcPreparePinWrite
RtlCopyString
IoGetRequestorProcess
IoBuildPartialMdl
KeSetTimerEx
RtlSubAuthoritySid
IoVerifyPartitionTable
RtlTimeToSecondsSince1980
IoIsWdmVersionAvailable
RtlOemToUnicodeN
RtlCreateAcl
KeReadStateTimer
RtlInitAnsiString
RtlDeleteRegistryValue
KeQueryTimeIncrement
PsReferencePrimaryToken
RtlDowncaseUnicodeString
KeInsertQueue
ZwReadFile
RtlCopySid
IoUnregisterFileSystem
KeInitializeMutex
IoSetPartitionInformation
IoGetCurrentProcess
RtlLengthSid
CcMdlWriteComplete
PsGetProcessId
RtlLengthRequiredSid
RtlIsNameLegalDOS8Dot3
MmLockPagableDataSection
CcSetReadAheadGranularity
IoMakeAssociatedIrp
KeInitializeSemaphore
ExGetPreviousMode
ExRaiseAccessViolation
HalExamineMBR
ZwOpenSymbolicLinkObject
ObReferenceObjectByPointer
RtlxOemStringToUnicodeSize
KeSaveFloatingPointState
FsRtlGetNextFileLock
CcFastCopyWrite
ObInsertObject
IoCreateFile
ExQueueWorkItem
ExDeletePagedLookasideList
IoCancelIrp
ZwFreeVirtualMemory
CcFastMdlReadWait
IoIsOperationSynchronous
KeBugCheckEx
ZwQuerySymbolicLinkObject
FsRtlIsTotalDeviceFailure
IoStartNextPacket
IoQueryFileDosDeviceName
strspn
PsDereferencePrimaryToken
IoSetDeviceInterfaceState
MmAllocatePagesForMdl
ExReleaseFastMutexUnsafe
IoDisconnectInterrupt
RtlFindLeastSignificantBit
IoStopTimer
ZwDeleteValueKey
SeFilterToken
RtlClearAllBits
KeInsertHeadQueue
RtlRandom
RtlCreateSecurityDescriptor
IoInvalidateDeviceRelations
SeLockSubjectContext
PsGetProcessExitTime
RtlFindClearBits
KeSetKernelStackSwapEnable
SeSetSecurityDescriptorInfo
CcMdlReadComplete
RtlFindLastBackwardRunClear
ZwDeleteKey
SeDeleteObjectAuditAlarm
WmiQueryTraceInformation
SeOpenObjectAuditAlarm
RtlExtendedIntegerMultiply
IoAcquireVpbSpinLock
FsRtlFastCheckLockForRead
FsRtlCheckLockForReadAccess
RtlInt64ToUnicodeString
MmQuerySystemSize
RtlInitUnicodeString
RtlAnsiStringToUnicodeString
DbgBreakPoint
_wcslwr
CcGetFileObjectFromBcb
CcSetFileSizes
RtlIntegerToUnicodeString
PoCallDriver
ObCreateObject
MmIsDriverVerifying
FsRtlNotifyInitializeSync
KeSetTimer
IoAllocateErrorLogEntry
ZwCreateEvent
KeBugCheck
ExCreateCallback
IoThreadToProcess
RtlClearBits
ZwCreateDirectoryObject
SePrivilegeCheck
IoRaiseHardError
SeAssignSecurity
KeInitializeSpinLock
RtlHashUnicodeString
RtlMultiByteToUnicodeN
RtlEqualString
IoSetPartitionInformationEx
ZwUnloadDriver
SeImpersonateClientEx
CcSetBcbOwnerPointer
IoAcquireRemoveLockEx
IoCsqRemoveIrp
FsRtlIsDbcsInExpression
RtlFindNextForwardRunClear
CcRepinBcb
ExRegisterCallback
RtlInitString
ExVerifySuite
KeInsertDeviceQueue
IoReadPartitionTable
RtlQueryRegistryValues
RtlInitializeGenericTable
RtlVolumeDeviceToDosName
ZwMapViewOfSection
KeRemoveByKeyDeviceQueue
KefAcquireSpinLockAtDpcLevel
RtlGetCallersAddress
MmMapUserAddressesToPage
KeRemoveDeviceQueue
RtlInitializeSid
RtlUpcaseUnicodeToOemN
DbgBreakPointWithStatus
RtlUnicodeStringToAnsiString
IoReleaseVpbSpinLock
ObGetObjectSecurity
KeClearEvent
IoReleaseCancelSpinLock
MmAdvanceMdl
ExGetExclusiveWaiterCount
RtlFindClearBitsAndSet
PoSetPowerState
SeCreateClientSecurity
FsRtlIsFatDbcsLegal
RtlEnumerateGenericTable
ExSetResourceOwnerPointer
SeQueryAuthenticationIdToken
KeGetCurrentThread
ZwOpenSection
KeRemoveEntryDeviceQueue
IoEnumerateDeviceObjectList
IoWMIRegistrationControl
MmResetDriverPaging
IoGetDeviceObjectPointer
RtlAppendUnicodeToString
SeSinglePrivilegeCheck
RtlAreBitsSet
ZwSetSecurityObject
IoUpdateShareAccess
PoStartNextPowerIrp
ZwSetValueKey
CcCopyRead
RtlUnicodeStringToInteger
IoStartPacket
RtlGenerate8dot3Name
ZwCreateKey
ExSetTimerResolution
PsTerminateSystemThread
PsLookupProcessByProcessId
ObOpenObjectByPointer
CcUnpinDataForThread
IoReportResourceForDetection
IoCheckQuotaBufferValidity
CcFlushCache
RtlTimeToSecondsSince1970
CcPurgeCacheSection
IoCreateDisk
FsRtlAllocateFileLock
CcDeferWrite
ExFreePool
IoGetStackLimits
IoDeleteController
IoGetAttachedDevice
VerSetConditionMask
PsGetCurrentThread
MmUnmapReservedMapping
MmFreePagesFromMdl
SeTokenIsAdmin
IoRemoveShareAccess
IoQueueWorkItem
SeTokenIsRestricted
RtlGUIDFromString
ExAllocatePool
RtlFindUnicodePrefix
KeSetSystemAffinityThread
RtlNtStatusToDosError
RtlFreeAnsiString
RtlUpcaseUnicodeString
RtlPrefixUnicodeString
KeInitializeTimer
IoGetDmaAdapter
RtlxUnicodeStringToAnsiSize
RtlCopyUnicodeString
IoGetBootDiskInformation
IoCreateStreamFileObject
ProbeForWrite
IoDeviceObjectType
ZwQueryInformationFile
MmUnmapLockedPages
SeQueryInformationToken
IoReadDiskSignature
RtlFillMemoryUlong
CcRemapBcb
KeLeaveCriticalRegion
RtlSetDaclSecurityDescriptor
MmAllocateContiguousMemory
ZwOpenProcess
KeDeregisterBugCheckCallback
ExAllocatePoolWithQuotaTag
RtlTimeFieldsToTime
CcUnpinData
KeInitializeDeviceQueue
SeValidSecurityDescriptor
CcCanIWrite
IoAllocateAdapterChannel
IoCreateSymbolicLink
ObMakeTemporaryObject
KeRemoveQueueDpc
MmIsVerifierEnabled
ExFreePoolWithTag
RtlCompareString
PsChargeProcessPoolQuota
ExSystemTimeToLocalTime
IoSetHardErrorOrVerifyDevice
RtlInsertUnicodePrefix
ZwDeviceIoControlFile
ZwQueryKey
