IoGetTopLevelIrp
PsChargeProcessPoolQuota
KeRemoveEntryDeviceQueue
ZwSetVolumeInformationFile
SeCreateClientSecurity
IoAcquireCancelSpinLock
MmIsVerifierEnabled
IoCreateDisk
KeInsertQueueDpc
RtlLengthSid
RtlInitializeGenericTable
IoReleaseRemoveLockEx
CcPreparePinWrite
KeSaveFloatingPointState
RtlUnicodeStringToOemString
SePrivilegeCheck
CcMapData
FsRtlIsHpfsDbcsLegal
KeSetPriorityThread
PoCallDriver
RtlSecondsSince1970ToTime
RtlVolumeDeviceToDosName
FsRtlIsDbcsInExpression
IoFreeController
RtlSetBits
RtlxOemStringToUnicodeSize
RtlFindClearRuns
IoCreateSynchronizationEvent
IoFreeMdl
RtlFindClearBitsAndSet
ExReleaseResourceLite
RtlCreateSecurityDescriptor
KeInitializeDpc
KeSetSystemAffinityThread
RtlInitializeBitMap
SeSetSecurityDescriptorInfo
KeInsertHeadQueue
KeCancelTimer
RtlLengthSecurityDescriptor
IoGetRelatedDeviceObject
FsRtlDeregisterUncProvider
MmSizeOfMdl
MmMapLockedPagesSpecifyCache
IoDeleteDevice
IoAllocateErrorLogEntry
KeDeregisterBugCheckCallback
ObReferenceObjectByPointer
KeReleaseMutex
KeReadStateMutex
RtlUpcaseUnicodeToOemN
RtlDeleteElementGenericTable
RtlOemStringToUnicodeString
IoRequestDeviceEject
IoWritePartitionTableEx
RtlDeleteRegistryValue
SeLockSubjectContext
MmCanFileBeTruncated
IoCreateFile
PsLookupProcessByProcessId
FsRtlNotifyUninitializeSync
RtlCopyLuid
RtlCreateRegistryKey
KeBugCheck
PoStartNextPowerIrp
IoVerifyVolume
CcSetFileSizes
IoFreeWorkItem
ZwDeviceIoControlFile
RtlDeleteNoSplay
IoIsOperationSynchronous
ExRaiseDatatypeMisalignment
KeInitializeMutex
RtlFindClearBits
IoStopTimer
MmFreeMappingAddress
IoRaiseHardError
ZwCreateDirectoryObject
ZwCreateKey
IoCheckShareAccess
ExSystemTimeToLocalTime
KeQueryTimeIncrement
PsReferencePrimaryToken
ExSetTimerResolution
ZwQueryInformationFile
RtlCopyUnicodeString
ExGetSharedWaiterCount
ExLocalTimeToSystemTime
ZwMapViewOfSection
MmResetDriverPaging
RtlFindSetBits
RtlSecondsSince1980ToTime
ExIsProcessorFeaturePresent
ExGetExclusiveWaiterCount
PsIsThreadTerminating
KeRemoveQueue
ExAllocatePoolWithQuota
RtlInitAnsiString
RtlUpcaseUnicodeString
KeInitializeTimer
IoCreateNotificationEvent
ExAllocatePoolWithTag
CcPinMappedData
KeRemoveDeviceQueue
MmFreePagesFromMdl
MmSecureVirtualMemory
MmFreeNonCachedMemory
ExFreePool
PsGetVersion
IoReportResourceForDetection
MmIsAddressValid
ZwOpenSymbolicLinkObject
IoDeviceObjectType
SeAssignSecurity
ExAllocatePool
IoQueryFileInformation
ExRaiseStatus
KdDisableDebugger
RtlGetCallersAddress
ExDeletePagedLookasideList
IoDeleteController
KeInitializeDeviceQueue
IoWMIRegistrationControl
KeInitializeEvent
ExSetResourceOwnerPointer
PsGetProcessExitTime
IoStartNextPacket
PsTerminateSystemThread
IoCreateDevice
MmHighestUserAddress
CcRepinBcb
IoAllocateMdl
IoSetPartitionInformationEx
FsRtlNotifyInitializeSync
IoAcquireVpbSpinLock
CcMdlRead
SeSinglePrivilegeCheck
IoAllocateWorkItem
FsRtlIsTotalDeviceFailure
ObOpenObjectByPointer
IoIsWdmVersionAvailable
ZwEnumerateValueKey
SeQueryInformationToken
ZwCreateEvent
ExCreateCallback
SeDeassignSecurity
RtlSplay
RtlAddAccessAllowedAce
RtlTimeFieldsToTime
PsRevertToSelf
MmAllocateMappingAddress
KeInsertQueue
RtlUnicodeStringToInteger
IoReadPartitionTable
IoAllocateIrp
IoInvalidateDeviceState
IoThreadToProcess
WmiQueryTraceInformation
PsImpersonateClient
CcFastMdlReadWait
KeInitializeSpinLock
IoSetTopLevelIrp
RtlAnsiCharToUnicodeChar
PsSetLoadImageNotifyRoutine
RtlxAnsiStringToUnicodeSize
SeTokenIsAdmin
ObMakeTemporaryObject
MmUnlockPagableImageSection
ExDeleteNPagedLookasideList
KeAttachProcess
FsRtlGetNextFileLock
IoCreateSymbolicLink
MmPageEntireDriver
RtlCheckRegistryKey
HalExamineMBR
CcUnpinDataForThread
IoCheckEaBufferValidity
CcZeroData
IoGetDeviceObjectPointer
RtlTimeToSecondsSince1970
CcMdlWriteComplete
ZwLoadDriver
RtlInitUnicodeString
RtlUpperString
CcPurgeCacheSection
IoDetachDevice
SeOpenObjectAuditAlarm
SeAccessCheck
KeQueryInterruptTime
IoDeleteSymbolicLink
ZwOpenProcess
CcFastCopyWrite
IoGetStackLimits
IoGetCurrentProcess
RtlValidSecurityDescriptor
MmIsDriverVerifying
MmMapIoSpace
PsGetThreadProcessId
MmAllocateNonCachedMemory
SeValidSecurityDescriptor
IoReleaseCancelSpinLock
RtlIsNameLegalDOS8Dot3
RtlUnicodeToMultiByteN
ExGetPreviousMode
ZwCreateFile
FsRtlCheckOplock
IoStartTimer
MmIsThisAnNtAsSystem
ZwSetSecurityObject
IoFreeIrp
CcFastCopyRead
IoInitializeIrp
ZwQueryObject
RtlTimeToTimeFields
ZwFlushKey
IoStartPacket
CcSetBcbOwnerPointer
RtlOemToUnicodeN
CcFlushCache
FsRtlLookupLastLargeMcbEntry
IoQueueWorkItem
MmAddVerifierThunks
ZwFreeVirtualMemory
ExFreePoolWithTag
IoSetShareAccess
KeInitializeSemaphore
IoReleaseRemoveLockAndWaitEx
CcUninitializeCacheMap
RtlUpperChar
ExAcquireResourceSharedLite
IoQueryFileDosDeviceName
KeGetCurrentThread
RtlAnsiStringToUnicodeString
KeSynchronizeExecution
SeQueryAuthenticationIdToken
RtlWriteRegistryValue
KeInitializeApc
FsRtlAllocateFileLock
PoSetPowerState
KeSetKernelStackSwapEnable
IoGetAttachedDeviceReference
IoOpenDeviceRegistryKey
KeRegisterBugCheckCallback
RtlFindLongestRunClear
FsRtlIsFatDbcsLegal
CcUnpinRepinnedBcb
DbgBreakPoint
ObCreateObject
RtlMapGenericMask
RtlHashUnicodeString
IoReadPartitionTableEx
ZwPowerInformation
RtlGetVersion
MmMapUserAddressesToPage
ExQueueWorkItem
RtlAppendStringToString
