RtlExtendedIntegerMultiply
CcPurgeCacheSection
ExRaiseDatatypeMisalignment
IoIsOperationSynchronous
KeSetSystemAffinityThread
IoGetRelatedDeviceObject
RtlCreateSecurityDescriptor
SeUnlockSubjectContext
IoVolumeDeviceToDosName
CcSetDirtyPinnedData
RtlFindLastBackwardRunClear
CcFastMdlReadWait
RtlAreBitsClear
SePrivilegeCheck
RtlSetDaclSecurityDescriptor
SeAccessCheck
IoCreateStreamFileObject
IoAcquireCancelSpinLock
PoCallDriver
KeReleaseSemaphore
RtlCheckRegistryKey
DbgBreakPointWithStatus
KeQueryTimeIncrement
ExVerifySuite
SeQueryAuthenticationIdToken
IoInitializeRemoveLockEx
IoStopTimer
ZwQueryVolumeInformationFile
IoStartNextPacket
FsRtlSplitLargeMcb
RtlFindUnicodePrefix
CcSetBcbOwnerPointer
IoReleaseRemoveLockAndWaitEx
IoAcquireRemoveLockEx
ZwAllocateVirtualMemory
ExDeleteNPagedLookasideList
CcFastCopyWrite
KeQueryActiveProcessors
KeInitializeDpc
KeWaitForSingleObject
IoReleaseVpbSpinLock
IoGetRequestorProcessId
ZwSetVolumeInformationFile
RtlHashUnicodeString
PoSetSystemState
RtlInitializeSid
ExLocalTimeToSystemTime
RtlNtStatusToDosError
CcZeroData
IoReleaseCancelSpinLock
RtlTimeToSecondsSince1980
KeReadStateSemaphore
MmCanFileBeTruncated
IoSetSystemPartition
KeEnterCriticalRegion
IoSetShareAccess
PsGetCurrentThreadId
IoCreateStreamFileObjectLite
ZwCreateFile
IoIsWdmVersionAvailable
RtlFindLongestRunClear
RtlGUIDFromString
ObInsertObject
IoGetStackLimits
RtlCopyUnicodeString
IoReadPartitionTable
RtlUpcaseUnicodeString
IoDeviceObjectType
RtlUnicodeStringToInteger
KeRemoveQueueDpc
ExDeletePagedLookasideList
PsLookupProcessByProcessId
KeRemoveDeviceQueue
RtlTimeToSecondsSince1970
ObReferenceObjectByPointer
ExAllocatePool
RtlInitAnsiString
IoInvalidateDeviceRelations
IoReportResourceForDetection
IoWMIRegistrationControl
IoQueueWorkItem
PsSetLoadImageNotifyRoutine
KeSetTargetProcessorDpc
IoSetDeviceToVerify
RtlCopyString
ExAcquireResourceSharedLite
RtlVolumeDeviceToDosName
ZwCreateDirectoryObject
FsRtlFastUnlockSingle
SeOpenObjectAuditAlarm
FsRtlIsHpfsDbcsLegal
DbgPrompt
RtlOemStringToUnicodeString
RtlCreateUnicodeString
IoGetLowerDeviceObject
CcCanIWrite
IoAcquireVpbSpinLock
MmIsVerifierEnabled
ZwOpenKey
IoCreateDisk
FsRtlNotifyInitializeSync
ExSystemTimeToLocalTime
MmFreeMappingAddress
KeResetEvent
IoQueryDeviceDescription
RtlEqualSid
CcRepinBcb
SeAppendPrivileges
ExRaiseAccessViolation
PsDereferencePrimaryToken
IoReadPartitionTableEx
CcCopyRead
IoOpenDeviceRegistryKey
KeClearEvent
KeStackAttachProcess
ZwMapViewOfSection
MmBuildMdlForNonPagedPool
IoStartTimer
RtlFindClearBitsAndSet
IoCheckQuotaBufferValidity
RtlValidSid
RtlAnsiCharToUnicodeChar
IoUnregisterFileSystem
RtlAddAccessAllowedAceEx
IoRequestDeviceEject
RtlEqualUnicodeString
ZwUnloadDriver
MmAllocateContiguousMemory
KeSaveFloatingPointState
IoMakeAssociatedIrp
KeReadStateEvent
RtlValidSecurityDescriptor
IoGetTopLevelIrp
MmGetPhysicalAddress
IoUpdateShareAccess
IoDisconnectInterrupt
IoCreateNotificationEvent
ZwSetSecurityObject
PsGetCurrentProcessId
IoInvalidateDeviceState
MmMapLockedPagesSpecifyCache
KefAcquireSpinLockAtDpcLevel
IoGetBootDiskInformation
RtlNumberOfClearBits
RtlDowncaseUnicodeString
IoVerifyPartitionTable
PsLookupThreadByThreadId
MmAllocateNonCachedMemory
IoDeleteController
PsRevertToSelf
IoGetDiskDeviceObject
IoConnectInterrupt
ZwQuerySymbolicLinkObject
IoGetDeviceInterfaces
ZwFlushKey
ExNotifyCallback
KeBugCheck
MmProbeAndLockPages
RtlClearBits
SeLockSubjectContext
RtlLengthSecurityDescriptor
ZwQueryKey
KeWaitForMultipleObjects
MmProbeAndLockProcessPages
IoFreeController
MmUnmapIoSpace
IoAllocateIrp
RtlSplay
IoCancelIrp
IoGetDeviceAttachmentBaseRef
KdDisableDebugger
MmAddVerifierThunks
RtlFindSetBits
RtlCopySid
ProbeForWrite
IoWriteErrorLogEntry
ZwEnumerateKey
RtlFindLeastSignificantBit
ObOpenObjectByPointer
RtlAddAccessAllowedAce
KeCancelTimer
RtlUnicodeToOemN
RtlDelete
RtlCopyLuid
RtlCreateRegistryKey
KeUnstackDetachProcess
ZwQueryValueKey
SeFilterToken
MmUnsecureVirtualMemory
KdEnableDebugger
RtlFreeAnsiString
IoGetCurrentProcess
MmAdvanceMdl
KeSetTimerEx
RtlMultiByteToUnicodeN
MmUnmapReservedMapping
RtlAppendUnicodeToString
RtlFreeUnicodeString
CcMdlWriteAbort
IoSetPartitionInformation
CcMdlWriteComplete
ObfReferenceObject
IoThreadToProcess
ZwCreateEvent
ZwDeleteKey
RtlInitString
ObReferenceObjectByHandle
PoRequestPowerIrp
ExRaiseStatus
KeDetachProcess
IoCheckShareAccess
IoGetAttachedDeviceReference
ExRegisterCallback
ExAllocatePoolWithQuotaTag
KeInitializeTimer
IoIsSystemThread
IoGetDeviceProperty
IoCsqRemoveIrp
RtlClearAllBits
RtlSetBits
ExSetTimerResolution
MmIsThisAnNtAsSystem
RtlSecondsSince1970ToTime
FsRtlAllocateFileLock
IoAllocateWorkItem
RtlVerifyVersionInfo
VerSetConditionMask
IoVerifyVolume
KeInitializeEvent
RtlPrefixUnicodeString
KeInitializeTimerEx
KeInitializeSemaphore
KeReadStateMutex
SeCaptureSubjectContext
RtlInitializeUnicodePrefix
RtlAreBitsSet
IoRemoveShareAccess
MmUnmapLockedPages
ZwOpenSymbolicLinkObject
SeFreePrivileges
IoCreateSymbolicLink
ZwCreateSection
KeSetImportanceDpc
ObQueryNameString
ZwClose
KeRegisterBugCheckCallback
IoWMIWriteEvent
ZwCreateKey
RtlInitUnicodeString
ZwReadFile
ExAcquireFastMutexUnsafe
RtlUnicodeToMultiByteN
FsRtlFastCheckLockForRead
KeDelayExecutionThread
IoSetHardErrorOrVerifyDevice
ObGetObjectSecurity
PsTerminateSystemThread
IoRegisterFileSystem
IoQueryFileDosDeviceName
PsChargeProcessPoolQuota
IoInitializeIrp
