RtlFindLongestRunClear
ExLocalTimeToSystemTime
RtlGetNextRange
RtlxAnsiStringToUnicodeSize
MmUnmapLockedPages
RtlDeleteElementGenericTable
IoWMIRegistrationControl
RtlHashUnicodeString
IoCheckEaBufferValidity
RtlPrefixUnicodeString
MmSecureVirtualMemory
IoInvalidateDeviceRelations
RtlValidSid
MmSizeOfMdl
CcSetFileSizes
IoGetDeviceObjectPointer
RtlUnicodeToOemN
FsRtlGetNextFileLock
KeWaitForSingleObject
IoIsOperationSynchronous
IoBuildPartialMdl
RtlIsNameLegalDOS8Dot3
KeRemoveQueue
MmLockPagableSectionByHandle
KeReleaseMutex
RtlFindClearBitsAndSet
PsIsThreadTerminating
KeInitializeEvent
RtlTimeToSecondsSince1980
ExRaiseStatus
MmUnsecureVirtualMemory
MmProbeAndLockProcessPages
CcFastCopyRead
IoInitializeRemoveLockEx
IoCheckShareAccess
ZwOpenProcess
ObOpenObjectByPointer
KeFlushQueuedDpcs
IoRequestDeviceEject
IoSetPartitionInformation
CcIsThereDirtyData
IoOpenDeviceRegistryKey
RtlDeleteNoSplay
KeReadStateEvent
IoQueueWorkItem
MmUnlockPagableImageSection
IoWMIWriteEvent
RtlCreateUnicodeString
RtlFreeOemString
RtlInitString
IoSetThreadHardErrorMode
ZwCreateFile
ZwQueryInformationFile
IoGetDiskDeviceObject
IoAllocateErrorLogEntry
SeQueryAuthenticationIdToken
IoSetDeviceToVerify
ZwCreateDirectoryObject
ExFreePoolWithTag
RtlCompareUnicodeString
FsRtlIsFatDbcsLegal
ObReferenceObjectByPointer
KeBugCheck
IoInvalidateDeviceState
IoSetDeviceInterfaceState
RtlValidSecurityDescriptor
DbgBreakPoint
IoGetDeviceInterfaceAlias
KeInitializeDeviceQueue
IoGetRelatedDeviceObject
IoQueryFileInformation
KeInitializeSpinLock
ExAllocatePoolWithQuotaTag
ZwDeviceIoControlFile
IoDeleteDevice
RtlAnsiCharToUnicodeChar
PoUnregisterSystemState
IoGetDeviceProperty
ZwEnumerateValueKey
RtlUpcaseUnicodeString
IoAllocateWorkItem
IoGetDeviceToVerify
KeResetEvent
IoReleaseVpbSpinLock
ZwQueryVolumeInformationFile
RtlSecondsSince1970ToTime
MmCanFileBeTruncated
MmMapLockedPagesSpecifyCache
ZwQueryObject
RtlCharToInteger
CcPinMappedData
IoThreadToProcess
SeReleaseSubjectContext
KeInitializeSemaphore
MmAllocateNonCachedMemory
IoCreateSymbolicLink
PsGetCurrentProcess
RtlInitializeGenericTable
IoGetBootDiskInformation
RtlAreBitsClear
MmMapLockedPages
ExUuidCreate
RtlGetVersion
CcMapData
MmUnlockPages
RtlDowncaseUnicodeString
KeSetBasePriorityThread
IoStartPacket
RtlFindNextForwardRunClear
MmGetPhysicalAddress
RtlFindMostSignificantBit
IoCreateDevice
RtlCopyString
MmUnmapReservedMapping
ObReleaseObjectSecurity
MmAllocateMappingAddress
RtlCopyUnicodeString
ObInsertObject
PoSetSystemState
KeInitializeDpc
RtlFindClearRuns
RtlFindLeastSignificantBit
RtlOemStringToUnicodeString
IoAcquireVpbSpinLock
RtlQueryRegistryValues
ObQueryNameString
RtlUpcaseUnicodeChar
IoAllocateMdl
RtlUnicodeToMultiByteN
IoAcquireCancelSpinLock
MmProbeAndLockPages
KeInsertQueue
ExInitializeResourceLite
KeRemoveDeviceQueue
RtlEqualSid
IoInitializeTimer
SeQueryInformationToken
KeRemoveByKeyDeviceQueue
MmBuildMdlForNonPagedPool
CcMdlWriteComplete
ZwSetValueKey
IoStartTimer
KeSetTimer
RtlUnicodeStringToOemString
ZwNotifyChangeKey
IoIsWdmVersionAvailable
KeRemoveQueueDpc
MmMapUserAddressesToPage
MmAllocateContiguousMemory
ZwQueryKey
IoDetachDevice
KeInitializeTimerEx
VerSetConditionMask
FsRtlFastCheckLockForRead
CcRepinBcb
IoDisconnectInterrupt
RtlSetBits
MmIsVerifierEnabled
RtlSplay
KeSetTargetProcessorDpc
IoSetShareAccess
RtlVerifyVersionInfo
KeAttachProcess
IoCreateStreamFileObject
ZwDeleteKey
FsRtlDeregisterUncProvider
MmFreeNonCachedMemory
PsGetCurrentThread
DbgPrompt
KeCancelTimer
RtlAddAccessAllowedAce
RtlxOemStringToUnicodeSize
RtlInitAnsiString
MmFreePagesFromMdl
CcGetFileObjectFromBcb
CcMdlReadComplete
MmQuerySystemSize
IoReportResourceForDetection
KeInitializeMutex
ZwWriteFile
RtlLengthSid
KeClearEvent
IoSetHardErrorOrVerifyDevice
CcDeferWrite
CcRemapBcb
IoGetDriverObjectExtension
IoVerifyVolume
IoSetPartitionInformationEx
ZwDeleteValueKey
ExReleaseResourceLite
RtlStringFromGUID
IoCreateDisk
MmForceSectionClosed
IofCallDriver
IoWriteErrorLogEntry
FsRtlIsHpfsDbcsLegal
RtlWriteRegistryValue
SeSinglePrivilegeCheck
PsRevertToSelf
IoFreeIrp
SeAssignSecurity
CcPurgeCacheSection
RtlGUIDFromString
RtlInsertUnicodePrefix
IoMakeAssociatedIrp
FsRtlIsDbcsInExpression
CcPreparePinWrite
IoReadDiskSignature
RtlFindUnicodePrefix
PsChargeProcessPoolQuota
ExReinitializeResourceLite
CcFastCopyWrite
ExDeleteNPagedLookasideList
ZwReadFile
RtlTimeFieldsToTime
MmSetAddressRangeModified
RtlFindLastBackwardRunClear
KeInsertDeviceQueue
FsRtlIsNameInExpression
ObReferenceObjectByHandle
ExGetSharedWaiterCount
SeAppendPrivileges
IoStartNextPacket
MmAdvanceMdl
CcUnpinDataForThread
CcSetDirtyPinnedData
RtlFindSetBits
ExIsProcessorFeaturePresent
CcZeroData
IoEnumerateDeviceObjectList
IoGetLowerDeviceObject
CcPinRead
CcCopyRead
KeReadStateMutex
ZwAllocateVirtualMemory
MmPageEntireDriver
KeInitializeApc
ExQueueWorkItem
KeRundownQueue
KeQueryActiveProcessors
ExGetExclusiveWaiterCount
RtlInitializeUnicodePrefix
RtlGenerate8dot3Name
SeLockSubjectContext
ZwFlushKey
RtlRandom
RtlUpperString
MmGetSystemRoutineAddress
IoSetSystemPartition
RtlInitUnicodeString
SeTokenIsAdmin
RtlFreeAnsiString
ObfReferenceObject
KeRemoveEntryDeviceQueue
RtlCompareMemory
RtlDeleteRegistryValue
IoBuildSynchronousFsdRequest
ZwCreateKey
RtlSetDaclSecurityDescriptor
IoRemoveShareAccess
SeCaptureSubjectContext
RtlCreateAcl
FsRtlMdlWriteCompleteDev
