CcRepinBcb
FsRtlCheckLockForReadAccess
SeTokenIsAdmin
IoDetachDevice
SeCaptureSubjectContext
MmUnsecureVirtualMemory
KeSetBasePriorityThread
MmMapLockedPagesSpecifyCache
RtlInt64ToUnicodeString
ZwOpenSymbolicLinkObject
MmQuerySystemSize
KeSetTargetProcessorDpc
RtlFreeOemString
IoGetDeviceToVerify
SeOpenObjectAuditAlarm
CcFlushCache
ZwSetVolumeInformationFile
RtlInitUnicodeString
KeInitializeTimerEx
IoGetBootDiskInformation
PoSetSystemState
IoGetAttachedDevice
MmIsAddressValid
MmProbeAndLockPages
MmIsDriverVerifying
MmAllocateMappingAddress
IoSetSystemPartition
SeQueryInformationToken
ProbeForRead
RtlxOemStringToUnicodeSize
PoRequestPowerIrp
IoReleaseCancelSpinLock
RtlAnsiCharToUnicodeChar
IoReleaseRemoveLockAndWaitEx
FsRtlFastCheckLockForRead
KeFlushQueuedDpcs
PoRegisterSystemState
PsGetProcessId
ExUuidCreate
ExRaiseAccessViolation
IoSetStartIoAttributes
KeDetachProcess
KeClearEvent
FsRtlSplitLargeMcb
MmCanFileBeTruncated
ZwFlushKey
MmAdvanceMdl
RtlInsertUnicodePrefix
ExAllocatePoolWithTag
MmGetSystemRoutineAddress
KePulseEvent
SeDeleteObjectAuditAlarm
MmBuildMdlForNonPagedPool
ProbeForWrite
MmMapIoSpace
RtlUpcaseUnicodeToOemN
SeAccessCheck
RtlUpperString
ZwLoadDriver
SeFilterToken
IoSetDeviceToVerify
SeUnlockSubjectContext
ZwOpenProcess
KeSaveFloatingPointState
IoAcquireRemoveLockEx
RtlCompareUnicodeString
ZwOpenSection
RtlFindClearBitsAndSet
CcUnpinData
IoInvalidateDeviceRelations
IoReportDetectedDevice
CcPinMappedData
ZwWriteFile
VerSetConditionMask
RtlCompareString
RtlCreateUnicodeString
ExUnregisterCallback
SeAppendPrivileges
RtlUnicodeToOemN
MmUnmapLockedPages
IoReportResourceForDetection
ObfDereferenceObject
ExLocalTimeToSystemTime
ExReleaseResourceLite
RtlLengthRequiredSid
RtlInitString
KeInsertByKeyDeviceQueue
ExGetExclusiveWaiterCount
RtlClearBits
IoAcquireCancelSpinLock
SeFreePrivileges
IoWriteErrorLogEntry
ZwFreeVirtualMemory
PsReturnPoolQuota
ExAllocatePool
RtlIsNameLegalDOS8Dot3
KeSetSystemAffinityThread
SeSinglePrivilegeCheck
ExSystemTimeToLocalTime
FsRtlLookupLastLargeMcbEntry
MmSizeOfMdl
IoVerifyPartitionTable
PsGetCurrentProcessId
IoRaiseHardError
SeReleaseSubjectContext
IoGetDiskDeviceObject
IoGetRequestorProcessId
ExReleaseFastMutexUnsafe
IoGetDeviceAttachmentBaseRef
PsReferencePrimaryToken
KeDelayExecutionThread
MmAllocateNonCachedMemory
ExDeletePagedLookasideList
ZwSetSecurityObject
IoAcquireVpbSpinLock
KeInitializeTimer
IofCompleteRequest
IoCreateSynchronizationEvent
IoSetDeviceInterfaceState
IoStartPacket
RtlOemStringToUnicodeString
KeQueryTimeIncrement
IofCallDriver
IoGetLowerDeviceObject
IoSetPartitionInformationEx
IoCsqRemoveIrp
MmIsVerifierEnabled
ZwUnloadDriver
PsChargeProcessPoolQuota
ExAllocatePoolWithQuota
RtlTimeToTimeFields
RtlNtStatusToDosError
IoCreateDevice
IoReuseIrp
RtlSetBits
ObReferenceObjectByPointer
ZwAllocateVirtualMemory
RtlUnicodeStringToAnsiString
IoIsOperationSynchronous
IoFreeErrorLogEntry
RtlFindClearRuns
IoGetDmaAdapter
IoCreateSymbolicLink
MmIsThisAnNtAsSystem
RtlAddAccessAllowedAceEx
KeInitializeDpc
ZwCreateKey
PoStartNextPowerIrp
ExDeleteNPagedLookasideList
KeRemoveByKeyDeviceQueue
IoAllocateWorkItem
RtlEqualSid
MmResetDriverPaging
FsRtlIsDbcsInExpression
IoGetDriverObjectExtension
ObMakeTemporaryObject
KeLeaveCriticalRegion
IoUnregisterFileSystem
IoSetThreadHardErrorMode
ObReferenceObjectByHandle
RtlSplay
ZwMapViewOfSection
CcUnpinDataForThread
RtlUnicodeStringToInteger
MmLockPagableSectionByHandle
KeReadStateEvent
IoGetTopLevelIrp
MmUnlockPagableImageSection
IoReadPartitionTable
RtlDeleteNoSplay
IoSetPartitionInformation
CcCopyRead
CcMapData
IoBuildPartialMdl
KeSetKernelStackSwapEnable
KeRemoveDeviceQueue
IoBuildSynchronousFsdRequest
PsImpersonateClient
RtlHashUnicodeString
IoStartTimer
RtlLengthSecurityDescriptor
KeInsertQueue
RtlGetVersion
ZwMakeTemporaryObject
PsGetThreadProcessId
ZwSetValueKey
CcPreparePinWrite
ExRaiseDatatypeMisalignment
KeInitializeDeviceQueue
CcMdlReadComplete
ZwQueryKey
MmUnlockPages
ExGetSharedWaiterCount
RtlEqualUnicodeString
RtlFindClearBits
ZwQueryObject
KeSetTimer
ZwQueryValueKey
ObCreateObject
RtlMultiByteToUnicodeN
RtlAreBitsSet
IoWMIWriteEvent
RtlxAnsiStringToUnicodeSize
ExInitializeResourceLite
CcCopyWrite
KeReadStateMutex
RtlCopyUnicodeString
RtlAreBitsClear
ObOpenObjectByPointer
IoIsWdmVersionAvailable
IoGetStackLimits
ExSetTimerResolution
ZwCreateSection
RtlCheckRegistryKey
KeReleaseMutex
CcSetDirtyPinnedData
IoSetTopLevelIrp
MmGetPhysicalAddress
ExCreateCallback
KeSetImportanceDpc
ExVerifySuite
RtlTimeFieldsToTime
ExNotifyCallback
IoFreeIrp
MmSetAddressRangeModified
MmUnmapIoSpace
MmHighestUserAddress
ZwCreateFile
RtlFillMemoryUlong
ZwDeleteKey
RtlUnicodeToMultiByteN
SePrivilegeCheck
FsRtlCheckLockForWriteAccess
SeValidSecurityDescriptor
CcInitializeCacheMap
MmFreePagesFromMdl
ZwClose
ZwQueryVolumeInformationFile
IoGetDeviceProperty
ZwReadFile
IoWMIRegistrationControl
IoAllocateErrorLogEntry
PsGetVersion
MmLockPagableDataSection
ZwOpenKey
IoFreeMdl
MmFreeMappingAddress
DbgBreakPointWithStatus
CcGetFileObjectFromBcb
KdDisableDebugger
RtlCreateSecurityDescriptor
RtlInitAnsiString
RtlAddAccessAllowedAce
RtlDelete
CcRemapBcb
