IoQueryFileInformation
IoReleaseRemoveLockEx
IoInitializeRemoveLockEx
ExAllocatePoolWithQuotaTag
PsGetCurrentThread
RtlStringFromGUID
RtlGUIDFromString
IoAllocateMdl
KeRemoveEntryDeviceQueue
FsRtlCheckLockForWriteAccess
RtlDeleteRegistryValue
ZwCreateKey
ExVerifySuite
RtlValidSecurityDescriptor
ZwOpenProcess
MmGetSystemRoutineAddress
IoCheckEaBufferValidity
RtlCopyString
CcPurgeCacheSection
ZwReadFile
SeSinglePrivilegeCheck
IoSetDeviceToVerify
KeWaitForSingleObject
IoCheckShareAccess
IoAllocateController
IoSetThreadHardErrorMode
SeSetSecurityDescriptorInfo
RtlFindClearBits
RtlCopySid
SeFreePrivileges
RtlLengthRequiredSid
RtlFindClearBitsAndSet
ExAllocatePool
FsRtlIsDbcsInExpression
CcIsThereDirtyData
KeSetTargetProcessorDpc
SeTokenIsRestricted
IoGetDmaAdapter
ObfReferenceObject
FsRtlGetNextFileLock
IoCreateNotificationEvent
SeCaptureSubjectContext
MmLockPagableDataSection
CcUninitializeCacheMap
KefAcquireSpinLockAtDpcLevel
FsRtlFastCheckLockForRead
SeQueryAuthenticationIdToken
HalExamineMBR
RtlUpcaseUnicodeString
CcSetFileSizes
ZwQueryObject
RtlEqualString
CcMdlRead
RtlTimeToTimeFields
MmUnlockPagableImageSection
CcRemapBcb
ZwDeleteValueKey
KdEnableDebugger
IoAcquireVpbSpinLock
IoThreadToProcess
RtlFindLeastSignificantBit
IoCreateStreamFileObjectLite
RtlOemToUnicodeN
ExAcquireFastMutexUnsafe
IoCreateDevice
CcCopyWrite
RtlNtStatusToDosError
CcInitializeCacheMap
IoQueueWorkItem
IoConnectInterrupt
CcMdlWriteComplete
CcMdlReadComplete
IoBuildSynchronousFsdRequest
ExSystemTimeToLocalTime
KeRegisterBugCheckCallback
RtlAnsiStringToUnicodeString
RtlMultiByteToUnicodeN
RtlCharToInteger
IoSetStartIoAttributes
SeLockSubjectContext
IoSetHardErrorOrVerifyDevice
RtlFindLastBackwardRunClear
PoCallDriver
VerSetConditionMask
IoGetStackLimits
KeSynchronizeExecution
SeDeassignSecurity
ExRaiseStatus
KeRestoreFloatingPointState
MmResetDriverPaging
ZwSetValueKey
MmSizeOfMdl
KeInitializeDpc
PsTerminateSystemThread
MmHighestUserAddress
MmAllocatePagesForMdl
PsGetCurrentThreadId
RtlEnumerateGenericTable
IofCallDriver
RtlDowncaseUnicodeString
MmIsVerifierEnabled
IoGetAttachedDevice
PsGetProcessExitTime
KeReleaseSemaphore
KeInitializeSpinLock
IoGetBootDiskInformation
PsReturnPoolQuota
IoCreateSymbolicLink
IoAcquireRemoveLockEx
IoWMIRegistrationControl
PsGetCurrentProcess
CcDeferWrite
KeSetTimerEx
IoDisconnectInterrupt
IoIsWdmVersionAvailable
FsRtlCheckOplock
MmMapLockedPagesSpecifyCache
RtlCompareUnicodeString
ZwOpenFile
RtlUpperChar
RtlFreeOemString
KeRemoveByKeyDeviceQueue
KeInitializeQueue
IoIsOperationSynchronous
IoCancelIrp
SeFilterToken
RtlOemStringToUnicodeString
CcGetFileObjectFromBcb
IoSetDeviceInterfaceState
PoRequestPowerIrp
PsIsThreadTerminating
ExAllocatePoolWithTag
KeSetEvent
MmProbeAndLockProcessPages
ExReleaseFastMutexUnsafe
ObInsertObject
PoStartNextPowerIrp
MmUnlockPages
RtlFreeUnicodeString
KeSetKernelStackSwapEnable
KeInitializeEvent
ZwQueryVolumeInformationFile
IoIsSystemThread
IoGetDriverObjectExtension
RtlLengthSid
KeSaveFloatingPointState
KeSetSystemAffinityThread
IoRegisterFileSystem
IoCreateFile
KeInsertByKeyDeviceQueue
IoStartNextPacket
ExCreateCallback
SeOpenObjectAuditAlarm
IoReportDetectedDevice
MmMapUserAddressesToPage
RtlAreBitsSet
FsRtlLookupLastLargeMcbEntry
KeInitializeApc
SeQueryInformationToken
RtlVolumeDeviceToDosName
RtlFindClearRuns
SeImpersonateClientEx
ZwQueryValueKey
IoBuildPartialMdl
ProbeForWrite
RtlGetCallersAddress
ExDeletePagedLookasideList
FsRtlAllocateFileLock
MmQuerySystemSize
KeBugCheck
ZwUnloadDriver
IoGetCurrentProcess
KeRemoveDeviceQueue
IoMakeAssociatedIrp
RtlEqualSid
ZwMapViewOfSection
RtlAnsiCharToUnicodeChar
ZwDeviceIoControlFile
IoSetPartitionInformation
RtlCopyUnicodeString
IoFreeErrorLogEntry
MmSecureVirtualMemory
RtlCompareMemory
IoDeviceObjectType
RtlUpcaseUnicodeChar
KeDetachProcess
RtlInitAnsiString
KeInsertQueueDpc
KeFlushQueuedDpcs
ZwSetSecurityObject
RtlCopyLuid
IoReadDiskSignature
MmUnmapReservedMapping
PsGetCurrentProcessId
IoAcquireCancelSpinLock
IoGetDiskDeviceObject
RtlVerifyVersionInfo
MmUnsecureVirtualMemory
RtlInt64ToUnicodeString
ObMakeTemporaryObject
ZwClose
RtlSetBits
ZwQueryKey
ZwOpenSymbolicLinkObject
DbgPrompt
RtlAreBitsClear
KeUnstackDetachProcess
IoCreateSynchronizationEvent
IoQueryFileDosDeviceName
SeDeleteObjectAuditAlarm
ExRaiseDatatypeMisalignment
CcSetReadAheadGranularity
MmFreePagesFromMdl
KeLeaveCriticalRegion
RtlSetAllBits
CcUnpinData
IoSetTopLevelIrp
ExRaiseAccessViolation
IoAllocateAdapterChannel
IoDeleteSymbolicLink
KeInitializeTimerEx
KeRevertToUserAffinityThread
KeQueryInterruptTime
IoCreateDisk
ExUuidCreate
RtlSecondsSince1970ToTime
ZwQueryInformationFile
WmiQueryTraceInformation
CcUnpinDataForThread
ExFreePoolWithTag
RtlInitializeSid
CcZeroData
FsRtlCheckLockForReadAccess
RtlIntegerToUnicodeString
RtlCreateAcl
RtlInitializeUnicodePrefix
RtlUnicodeStringToOemString
KeRemoveQueueDpc
PoUnregisterSystemState
MmFlushImageSection
RtlDelete
CcFastCopyWrite
KeAttachProcess
PsGetProcessId
IoInvalidateDeviceRelations
IoGetDeviceInterfaces
RtlxOemStringToUnicodeSize
PsDereferencePrimaryToken
KeInitializeMutex
RtlWriteRegistryValue
PsGetVersion
IoCheckQuotaBufferValidity
ExGetExclusiveWaiterCount
ExSetTimerResolution
PsLookupThreadByThreadId
IoRemoveShareAccess
RtlTimeToSecondsSince1980
FsRtlIsTotalDeviceFailure
IoQueryDeviceDescription
PoRegisterSystemState
ObCreateObject
