RtlUpcaseUnicodeChar
NtOpenKey
NtClose
TpAllocTimer
TpSetTimer
NtQuerySystemInformation
RtlAllocateHeap
RtlFreeHeap
NtSetValueKey
RtlUnicodeStringToInteger
RtlFreeUnicodeString
RtlInitUnicodeStringEx
NtOpenFile
NtDeviceIoControlFile
NtQueryValueKey
RtlInitUnicodeString
RtlPrefixUnicodeString
NtQueryInformationProcess
NtQueryVolumeInformationFile
RtlGetVersion
_vsnwprintf_s
NtCreatePagingFile
NtSetSystemInformation
RtlAppendUnicodeToString
NtPowerInformation
NtCreateFile
RtlSecondsSince1970ToTime
qsort
NtSetInformationFile
NtQueryInformationFile
NtFsControlFile
RtlCompareUnicodeString
RtlAppendUnicodeStringToString
RtlCompareMemory
NtDeleteValueKey
NtFlushKey
NtUpdateWnfStateData
NtSerializeBoot
RtlAllocateAndInitializeSid
RtlCreateSecurityDescriptor
RtlCreateAcl
RtlAddAccessAllowedAce
RtlSetDaclSecurityDescriptor
RtlSetOwnerSecurityDescriptor
NtSetSecurityObject
RtlExpandEnvironmentStrings_U
RtlDosPathNameToNtPathName_U
NtReadFile
NtCreateKey
RtlCreateUnicodeString
EtwEventWrite
EtwEventEnabled
RtlAddMandatoryAce
RtlSetSaclSecurityDescriptor
RtlAdjustPrivilege
RtlFreeSid
RtlLengthSid
NtCreateMutant
RtlCreateTagHeap
NtSetInformationProcess
NtAlpcCreatePort
RtlInitializeBitMap
RtlClearAllBits
RtlSetBits
NtOpenEvent
RtlCreateEnvironment
RtlSetCurrentEnvironment
RtlQueryRegistryValuesEx
NtCreateDirectoryObject
RtlEqualUnicodeString
NtResumeThread
NtWaitForSingleObject
NtTerminateProcess
NtSetEvent
NtInitializeRegistry
TpAllocWork
TpPostWork
TpReleaseWork
_wcsupr_s
NtOpenDirectoryObject
NtCreateSymbolicLinkObject
NtMakeTemporaryObject
_stricmp
RtlInitAnsiString
RtlAnsiStringToUnicodeString
RtlRandomEx
qsort_s
LdrVerifyImageMatchesChecksumEx
RtlAppxIsFileOwnedByTrustedInstaller
_wcsicmp
RtlSetEnvironmentVariable
NtCreateSection
NtMapViewOfSection
iswctype
RtlQueryEnvironmentVariable_U
RtlDosSearchPath_U
RtlTestBit
RtlInterlockedSetBitRun
RtlFindSetBits
RtlCreateProcessParametersEx
RtlCreateUserProcess
RtlDestroyProcessParameters
NtDisplayString
RtlGetAce
NtQueryDirectoryObject
NtOpenSymbolicLinkObject
NtQuerySymbolicLinkObject
RtlTimeToTimeFields
NtWriteFile
RtlAcquireSRWLockExclusive
RtlGetNtProductType
RtlReleaseSRWLockExclusive
NtOpenSection
NtQuerySection
NtMakePermanentObject
NtDeleteKey
NtDeleteFile
NtAlpcDisconnectPort
RtlAcquireSRWLockShared
RtlReleaseSRWLockShared
NtAlpcImpersonateClientOfPort
NtOpenThreadToken
NtQueryInformationToken
NtSetInformationThread
TpSetPoolMinThreads
RtlSetThreadIsCritical
AlpcInitializeMessageAttribute
NtAlpcSendWaitReceivePort
AlpcGetMessageAttribute
NtAlpcCancelMessage
NtAlpcOpenSenderProcess
RtlInitializeSRWLock
NtAlpcAcceptConnectPort
NtConnectPort
NtRequestWaitReplyPort
NtDuplicateObject
NtCreateEvent
RtlFindClearBits
RtlSleepConditionVariableSRW
NtClearEvent
RtlDeleteNoSplay
RtlClearBits
RtlWakeConditionVariable
RtlWakeAllConditionVariable
EtwGetTraceLoggerHandle
EtwGetTraceEnableLevel
EtwGetTraceEnableFlags
EtwRegisterTraceGuidsW
RtlSetHeapInformation
EtwEventRegister
RtlSetProcessIsCritical
TpAllocPool
TpAllocAlpcCompletion
NtWaitForMultipleObjects
NtRaiseHardError
RtlInitializeConditionVariable
NtDelayExecution
RtlUnicodeStringToAnsiString
NtQueryEvent
wcstoul
LdrQueryImageFileExecutionOptions
RtlAcquirePrivilege
RtlReleasePrivilege
EtwTraceMessage
TpAllocWait
TpSetWait
TpReleaseWait
DbgPrintEx
RtlNtStatusToDosError
_ltow_s
RtlCheckTokenMembership
_wcsnicmp
RtlCompareUnicodeStrings
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
RtlUnhandledExceptionFilter
iswspace
RtlNormalizeProcessParams
RtlConnectToSm
RtlSendMsgToSm
NtQueryKey
__chkstk
memcpy
memset
__C_specific_handler
