_wtoi
strrchr
swprintf
sprintf
wcsstr
strncpy
wcsncmp
wcsncpy
DbgBreakPoint
ZwTerminateProcess
RtlFreeHeap
RtlAllocateHeap
ZwQuerySystemTime
ZwMakeTemporaryObject
ZwCreateFile
RtlInitUnicodeString
ZwQueryInformationProcess
ZwWaitForMultipleObjects
ZwSetInformationProcess
ZwSetThreadExecutionState
ZwClose
ZwQuerySystemInformation
ZwCreateEvent
NtLoadDriver
ZwShutdownSystem
ZwOpenProcessToken
ZwOpenSymbolicLinkObject
ZwLockVirtualMemory
ZwAdjustPrivilegesToken
NtUnloadDriver
ZwDeleteFile
ZwInitializeRegistry
ZwQuerySymbolicLinkObject
RtlDosPathNameToNtPathName_U
_strlwr
ZwReadFile
strstr
NtTerminateProcess
RtlUnicodeStringToAnsiString
RtlFreeAnsiString
RtlNormalizeProcessParams
ZwQueryAttributesFile
ZwSetInformationFile
RtlFreeUnicodeString
RtlNtStatusToDosError
ZwFlushBuffersFile
ZwDeviceIoControlFile
ZwOpenFile
ZwQueryInformationFile
ZwWriteFile
ZwFsControlFile
toupper
wcstombs
RtlGetFullPathName_U
ZwDelayExecution
RtlAnsiStringToUnicodeString
ZwAllocateVirtualMemory
RtlSystemTimeToLocalTime
RtlInitAnsiString
RtlGetVersion
RtlTimeFieldsToTime
RtlQueryEnvironmentVariable_U
ZwFreeVirtualMemory
ZwQueryVolumeInformationFile
RtlTimeToTimeFields
ZwDisplayString
vsprintf
ZwUnloadKey
ZwEnumerateKey
ZwCreateKey
RtlOpenCurrentUser
ZwQueryKey
RtlCreateUnicodeString
memmove
ZwOpenKey
ZwDeleteValueKey
ZwSetValueKey
RtlUnicodeToMultiByteN
RtlUnicodeToMultiByteSize
wcsrchr
ZwQueryValueKey
ZwEnumerateValueKey
ZwFlushKey
ZwLoadKey
__chkstk
_wcsicmp
_wcsnicmp
ZwQueryDirectoryObject
ZwOpenDirectoryObject
_wcslwr
mbstowcs
memcmp
pow
_wtoi64
strchr
NtQuerySystemTime
strtoul
atoi
NtQueryInformationFile
NtDeviceIoControlFile
NtWriteFile
NtFsControlFile
NtCreateFile
NtClose
NtReadFile
strncmp
RtlTimeToSecondsSince1970
RtlUnicodeStringToOemString
NtQueryDirectoryFile
RtlDeleteCriticalSection
RtlLeaveCriticalSection
RtlCompareMemory
NtOpenFile
RtlInitializeCriticalSection
RtlIsDosDeviceName_U
RtlEnterCriticalSection