ObQueryNameString
KeTickCount
MmAllocateContiguousMemory
SeFreePrivileges
RtlDeleteRegistryValue
IoStartTimer
ZwQueryValueKey
IoStartPacket
FsRtlIsDbcsInExpression
SeReleaseSubjectContext
ExNotifyCallback
IoCreateFile
IoDeleteDevice
KefAcquireSpinLockAtDpcLevel
MmProbeAndLockPages
KeWaitForSingleObject
KeQueryInterruptTime
MmMapUserAddressesToPage
SeSinglePrivilegeCheck
IoCreateStreamFileObjectLite
RtlDeleteElementGenericTable
RtlAppendStringToString
KeRemoveByKeyDeviceQueue
RtlValidSecurityDescriptor
PoSetSystemState
RtlUpcaseUnicodeToOemN
RtlFreeAnsiString
CcCanIWrite
HalExamineMBR
IoFreeWorkItem
ObInsertObject
RtlFindLastBackwardRunClear
ExInitializeResourceLite
PsRevertToSelf
FsRtlIsTotalDeviceFailure
WmiQueryTraceInformation
MmGetPhysicalAddress
PsDereferencePrimaryToken
MmAllocatePagesForMdl
KeEnterCriticalRegion
ZwQueryVolumeInformationFile
KeInsertByKeyDeviceQueue
IoAllocateAdapterChannel
IoSetSystemPartition
RtlCompareString
ObReferenceObjectByPointer
IoInitializeTimer
MmProbeAndLockProcessPages
ExSetTimerResolution
IoOpenDeviceRegistryKey
KeReadStateTimer
FsRtlNotifyUninitializeSync
KeWaitForMultipleObjects
KeSetBasePriorityThread
ProbeForWrite
IoGetStackLimits
RtlDowncaseUnicodeString
RtlVolumeDeviceToDosName
IoUpdateShareAccess
IoDeleteSymbolicLink
KeQuerySystemTime
KeReleaseSemaphore
SeUnlockSubjectContext
IoGetRelatedDeviceObject
IoCheckEaBufferValidity
IoWriteErrorLogEntry
SeAssignSecurity
IoRequestDeviceEject
RtlFreeUnicodeString
KeRegisterBugCheckCallback
RtlStringFromGUID
DbgBreakPoint
KeSetSystemAffinityThread
RtlFindNextForwardRunClear
RtlEqualSid
RtlLengthSecurityDescriptor
RtlUpcaseUnicodeChar
IoDetachDevice
RtlSecondsSince1980ToTime
MmIsAddressValid
SeOpenObjectAuditAlarm
RtlGetCallersAddress
ZwSetVolumeInformationFile
ZwQueryKey
ZwPowerInformation
MmGetSystemRoutineAddress
RtlFindSetBits
MmFreeNonCachedMemory
PsTerminateSystemThread
KeInitializeDeviceQueue
SeCaptureSubjectContext
ExReleaseFastMutexUnsafe
CcPinRead
IoCreateDevice
PsSetLoadImageNotifyRoutine
MmFreePagesFromMdl
ZwCreateSection
ExReinitializeResourceLite
ExRaiseAccessViolation
IoFreeMdl
IoCreateSynchronizationEvent
IoInitializeRemoveLockEx
IoIsWdmVersionAvailable
PoRequestPowerIrp
IoQueryFileInformation
PsGetProcessId
IoCsqRemoveIrp
KeSetTimerEx
ExRegisterCallback
KeReadStateEvent
KeReadStateSemaphore
RtlFindLongestRunClear
KeInitializeApc
KeLeaveCriticalRegion
CcCopyWrite
IoReuseIrp
IoBuildPartialMdl
DbgPrompt
RtlCompareMemory
IoStopTimer
RtlNumberOfClearBits
RtlFindUnicodePrefix
CcFastCopyWrite
CcDeferWrite
KeUnstackDetachProcess
ZwOpenSymbolicLinkObject
ProbeForRead
SeQueryAuthenticationIdToken
FsRtlIsHpfsDbcsLegal
PsChargeProcessPoolQuota
MmUnlockPages
ExUnregisterCallback
RtlHashUnicodeString
IoReportDetectedDevice
RtlUnicodeStringToInteger
RtlCopyUnicodeString
CcRepinBcb
IoSetShareAccess
MmSetAddressRangeModified
RtlAnsiStringToUnicodeString
CcFastCopyRead
KdDisableDebugger
PsGetCurrentThread
SePrivilegeCheck
IoCreateSymbolicLink
ZwOpenFile
KeRemoveQueue
RtlFindClearBitsAndSet
ZwAllocateVirtualMemory
RtlDelete
ExSetResourceOwnerPointer
KeInsertDeviceQueue
FsRtlCheckLockForReadAccess
MmUnlockPagableImageSection
IoConnectInterrupt
MmUnmapLockedPages
RtlValidSid
ExSystemTimeToLocalTime
KeInitializeMutex
IofCallDriver
IoGetDeviceAttachmentBaseRef
CcPurgeCacheSection
ZwReadFile
IoDeviceObjectType
RtlFindClearRuns
RtlLengthSid
RtlInitializeSid
IoAllocateIrp
KeRestoreFloatingPointState
CcSetDirtyPinnedData
KeInitializeTimerEx
IoCancelIrp
KeStackAttachProcess
KeSetPriorityThread
KeClearEvent
IoSetThreadHardErrorMode
IoGetDmaAdapter
CcRemapBcb
IoCreateNotificationEvent
FsRtlAllocateFileLock
VerSetConditionMask
RtlInitializeUnicodePrefix
MmQuerySystemSize
KeGetCurrentThread
RtlWriteRegistryValue
RtlRandom
ExAllocatePoolWithQuotaTag
MmUnsecureVirtualMemory
PsGetVersion
IoQueryFileDosDeviceName
RtlExtendedIntegerMultiply
ZwClose
IoGetTopLevelIrp
IoWritePartitionTableEx
RtlTimeToSecondsSince1970
RtlUpcaseUnicodeString
MmPageEntireDriver
RtlNtStatusToDosError
ZwWriteFile
MmFreeMappingAddress
ExRaiseDatatypeMisalignment
PsGetCurrentProcess
RtlSecondsSince1970ToTime
SeFilterToken
SeDeassignSecurity
RtlIsNameLegalDOS8Dot3
RtlCheckRegistryKey
KeResetEvent
RtlInitUnicodeString
IofCompleteRequest
ExRaiseStatus
RtlFindLeastSignificantBit
IoIsOperationSynchronous
RtlEqualString
RtlGUIDFromString
PoCallDriver
CcFastMdlReadWait
RtlDeleteNoSplay
ZwCreateKey
IoSetTopLevelIrp
IoReleaseRemoveLockAndWaitEx
IoSetHardErrorOrVerifyDevice
ZwQuerySymbolicLinkObject
MmAdvanceMdl
IoGetRequestorProcessId
RtlMapGenericMask
ExGetExclusiveWaiterCount
MmSizeOfMdl
RtlUnicodeStringToAnsiString
KeCancelTimer
ZwOpenSection
RtlVerifyVersionInfo
RtlCreateSecurityDescriptor
KeFlushQueuedDpcs
KeRevertToUserAffinityThread
KeRemoveQueueDpc
RtlPrefixUnicodeString
RtlInitializeBitMap
IoGetBootDiskInformation
KeRundownQueue
FsRtlIsNameInExpression
KeInitializeSpinLock
ZwOpenKey
ZwCreateFile
DbgBreakPointWithStatus
RtlCharToInteger
FsRtlLookupLastLargeMcbEntry
RtlUnicodeToOemN
SeLockSubjectContext
CcMapData
RtlInitializeGenericTable
CcFlushCache
PsImpersonateClient
ZwDeleteValueKey
KeBugCheckEx
IoVerifyVolume
CcZeroData
KeDeregisterBugCheckCallback
PoStartNextPowerIrp
ZwOpenProcess
IoAllocateWorkItem
PsReferencePrimaryToken
FsRtlFastUnlockSingle
