KeRemoveDeviceQueue
IoGetCurrentProcess
IoSetSystemPartition
SeQueryAuthenticationIdToken
IoCreateDisk
IoGetDeviceToVerify
SeValidSecurityDescriptor
KefAcquireSpinLockAtDpcLevel
ZwFlushKey
IoSetShareAccess
MmSizeOfMdl
CcFastCopyWrite
KeSynchronizeExecution
PsGetCurrentProcessId
RtlCreateUnicodeString
SePrivilegeCheck
RtlAddAccessAllowedAce
CcPreparePinWrite
RtlAddAccessAllowedAceEx
RtlCopyLuid
KeRevertToUserAffinityThread
MmMapIoSpace
IoRegisterFileSystem
KeQueryTimeIncrement
RtlFindNextForwardRunClear
IoVerifyVolume
KeSaveFloatingPointState
MmSetAddressRangeModified
KeInitializeQueue
MmCanFileBeTruncated
ObReleaseObjectSecurity
MmUnmapLockedPages
RtlInitAnsiString
ExVerifySuite
RtlUpcaseUnicodeToOemN
KeInsertQueueDpc
IoReuseIrp
KeQueryInterruptTime
CcUnpinData
RtlNumberOfClearBits
PoStartNextPowerIrp
CcMdlReadComplete
IoBuildSynchronousFsdRequest
SeAppendPrivileges
IoGetDeviceInterfaceAlias
RtlMultiByteToUnicodeN
IoGetAttachedDevice
IoBuildPartialMdl
RtlDelete
ExDeleteResourceLite
MmSecureVirtualMemory
IoGetDeviceProperty
CcPurgeCacheSection
KeStackAttachProcess
MmIsThisAnNtAsSystem
CcSetReadAheadGranularity
RtlFindLeastSignificantBit
SeCaptureSubjectContext
ExLocalTimeToSystemTime
SeReleaseSubjectContext
MmQuerySystemSize
ExCreateCallback
KeRemoveByKeyDeviceQueue
RtlEqualSid
ObReferenceObjectByHandle
FsRtlGetNextFileLock
RtlDeleteElementGenericTable
IoWritePartitionTableEx
KeInitializeSemaphore
KeResetEvent
IoSetTopLevelIrp
RtlEnumerateGenericTable
IoQueryFileDosDeviceName
ZwQueryObject
IoFreeWorkItem
RtlFindMostSignificantBit
SeUnlockSubjectContext
MmUnlockPages
RtlTimeToTimeFields
CcFlushCache
IoRaiseHardError
KeGetCurrentThread
CcFastCopyRead
MmUnmapReservedMapping
RtlGetNextRange
PsGetCurrentThreadId
FsRtlFreeFileLock
ExInitializeResourceLite
RtlInitializeGenericTable
IofCallDriver
IoSetHardErrorOrVerifyDevice
ZwEnumerateKey
KeSetBasePriorityThread
ExSystemTimeToLocalTime
RtlSplay
IoCheckEaBufferValidity
RtlVerifyVersionInfo
RtlExtendedIntegerMultiply
IoCreateNotificationEvent
IoCreateStreamFileObject
RtlAppendUnicodeToString
PsCreateSystemThread
ZwMakeTemporaryObject
RtlSetDaclSecurityDescriptor
PoRegisterSystemState
IoGetDmaAdapter
IoReleaseRemoveLockEx
MmAllocateMappingAddress
IoSetThreadHardErrorMode
IoInitializeIrp
IoSetDeviceToVerify
ZwCreateKey
RtlFindClearRuns
IoSetPartitionInformationEx
ZwWriteFile
MmFreeContiguousMemory
CcZeroData
MmResetDriverPaging
ObInsertObject
MmForceSectionClosed
IoCheckShareAccess
IoFreeErrorLogEntry
ExFreePool
IoRequestDeviceEject
MmFreeNonCachedMemory
IoConnectInterrupt
ExReleaseResourceLite
RtlFreeAnsiString
FsRtlFastUnlockSingle
MmIsAddressValid
MmHighestUserAddress
CcSetBcbOwnerPointer
KeRestoreFloatingPointState
IoGetTopLevelIrp
ZwQueryKey
RtlEqualUnicodeString
KeCancelTimer
KeInitializeDeviceQueue
PsGetCurrentThread
ZwUnloadDriver
FsRtlFastCheckLockForRead
IoMakeAssociatedIrp
FsRtlDeregisterUncProvider
PsReturnPoolQuota
CcMdlWriteComplete
MmProbeAndLockPages
RtlFreeOemString
RtlUnicodeStringToInteger
RtlTimeToSecondsSince1980
KeSetSystemAffinityThread
RtlQueryRegistryValues
KeAttachProcess
ExRegisterCallback
PsReferencePrimaryToken
IoWriteErrorLogEntry
KeDelayExecutionThread
IoSetDeviceInterfaceState
ZwCreateDirectoryObject
ExRaiseDatatypeMisalignment
CcRemapBcb
IoReadPartitionTableEx
ZwClose
PsImpersonateClient
RtlCopyUnicodeString
MmProbeAndLockProcessPages
KeRemoveQueueDpc
KeQueryActiveProcessors
ZwAllocateVirtualMemory
IoGetDriverObjectExtension
RtlUnicodeStringToOemString
KePulseEvent
IoGetDeviceInterfaces
ExUuidCreate
IoQueryFileInformation
IoAllocateController
FsRtlIsNameInExpression
KeBugCheck
KeUnstackDetachProcess
MmAllocateContiguousMemory
WmiQueryTraceInformation
IoGetStackLimits
CcSetFileSizes
RtlFindLastBackwardRunClear
ProbeForRead
FsRtlIsHpfsDbcsLegal
ExNotifyCallback
RtlFindLongestRunClear
SeSetSecurityDescriptorInfo
PsRevertToSelf
PoSetPowerState
RtlCompareUnicodeString
RtlGetCallersAddress
KeDetachProcess
RtlCreateAcl
RtlAppendStringToString
IoReleaseCancelSpinLock
IoStartPacket
RtlUnicodeStringToAnsiString
RtlOemToUnicodeN
RtlMapGenericMask
KeWaitForMultipleObjects
PsLookupThreadByThreadId
FsRtlNotifyInitializeSync
RtlTimeToSecondsSince1970
IoDeleteDevice
CcPinRead
IoWMIWriteEvent
RtlIsNameLegalDOS8Dot3
MmPageEntireDriver
KeSetKernelStackSwapEnable
CcPinMappedData
IoSetStartIoAttributes
KeSetTargetProcessorDpc
KeQuerySystemTime
ExAllocatePool
FsRtlAllocateFileLock
ZwEnumerateValueKey
IofCompleteRequest
MmGetPhysicalAddress
FsRtlIsTotalDeviceFailure
IoAllocateIrp
IoReleaseVpbSpinLock
PsDereferencePrimaryToken
MmUnlockPagableImageSection
RtlCheckRegistryKey
IoCreateFile
FsRtlSplitLargeMcb
ZwQueryInformationFile
ObGetObjectSecurity
IoRegisterDeviceInterface
ZwFreeVirtualMemory
KeRegisterBugCheckCallback
IoThreadToProcess
ZwDeleteValueKey
RtlGUIDFromString
CcMapData
PsTerminateSystemThread
RtlCharToInteger
IoInvalidateDeviceRelations
PoRequestPowerIrp
RtlLengthRequiredSid
ZwMapViewOfSection
MmFreePagesFromMdl
KeInsertHeadQueue
SeFreePrivileges
ZwFsControlFile
SeTokenIsRestricted
KeInitializeTimer
RtlSubAuthoritySid
IoInitializeRemoveLockEx
KdEnableDebugger
ExQueueWorkItem
IoCsqRemoveIrp
ExDeleteNPagedLookasideList
KeBugCheckEx
KeSetTimerEx
PsChargeProcessPoolQuota
ExAllocatePoolWithTag
KdDisableDebugger
MmIsDriverVerifying
SeImpersonateClientEx
RtlInt64ToUnicodeString
