KeStackAttachProcess
MmLockPagableSectionByHandle
RtlFreeAnsiString
KeQueryActiveProcessors
ZwOpenSymbolicLinkObject
IoGetDeviceToVerify
IoQueueWorkItem
ZwEnumerateKey
IoStartTimer
RtlVerifyVersionInfo
IoFreeIrp
KeSetEvent
CcCopyRead
RtlFindNextForwardRunClear
PoRequestPowerIrp
KeSetTargetProcessorDpc
IoSetShareAccess
RtlHashUnicodeString
FsRtlAllocateFileLock
RtlEqualSid
ExAllocatePoolWithTag
IoCancelIrp
IoConnectInterrupt
RtlTimeToSecondsSince1970
SeTokenIsAdmin
KeReadStateEvent
MmHighestUserAddress
RtlNumberOfClearBits
SeTokenIsRestricted
IoFreeMdl
IoInvalidateDeviceState
IoDisconnectInterrupt
IoCreateSynchronizationEvent
RtlSecondsSince1970ToTime
RtlMultiByteToUnicodeN
KeWaitForSingleObject
ExNotifyCallback
RtlUnicodeToOemN
ZwCreateFile
FsRtlFastUnlockSingle
ZwCreateKey
RtlCompareMemory
FsRtlSplitLargeMcb
RtlDowncaseUnicodeString
IoOpenDeviceRegistryKey
MmAdvanceMdl
KeSetBasePriorityThread
RtlCopyLuid
IoSetHardErrorOrVerifyDevice
ZwQueryObject
KeUnstackDetachProcess
IoAllocateErrorLogEntry
PsGetCurrentProcess
RtlInitializeUnicodePrefix
KeRundownQueue
KeInsertHeadQueue
IoStartNextPacket
KeSetTimer
RtlSetDaclSecurityDescriptor
PsLookupProcessByProcessId
ProbeForWrite
KeLeaveCriticalRegion
PsCreateSystemThread
IoAllocateIrp
ExFreePool
MmUnlockPages
RtlFindSetBits
ObGetObjectSecurity
KeDeregisterBugCheckCallback
RtlInsertUnicodePrefix
IoRequestDeviceEject
FsRtlFreeFileLock
ZwDeviceIoControlFile
RtlValidSid
RtlInitializeSid
RtlFindClearBits
CcIsThereDirtyData
KeInitializeMutex
RtlUnicodeToMultiByteN
KeSetTimerEx
KeInsertQueueDpc
ObCreateObject
ZwDeleteValueKey
FsRtlLookupLastLargeMcbEntry
ZwDeleteKey
PoStartNextPowerIrp
KeRestoreFloatingPointState
IoInitializeIrp
RtlCopyString
IoBuildSynchronousFsdRequest
FsRtlCheckOplock
RtlFindClearRuns
IoGetDeviceObjectPointer
KeInsertDeviceQueue
RtlInitUnicodeString
ExReleaseResourceLite
ExSetResourceOwnerPointer
ExReinitializeResourceLite
KeInitializeEvent
RtlCompareUnicodeString
RtlUpperChar
IoCreateNotificationEvent
RtlTimeFieldsToTime
IoDeleteDevice
FsRtlFastCheckLockForRead
FsRtlDeregisterUncProvider
MmIsDriverVerifying
ExGetPreviousMode
RtlCreateRegistryKey
KeEnterCriticalRegion
ExRegisterCallback
KeReleaseSemaphore
IoGetStackLimits
KeRemoveByKeyDeviceQueue
KeInitializeTimer
MmFreePagesFromMdl
PsLookupThreadByThreadId
ZwOpenSection
SeDeleteObjectAuditAlarm
ZwAllocateVirtualMemory
IoGetDeviceProperty
IoInitializeTimer
IoIsWdmVersionAvailable
KeBugCheckEx
MmGetSystemRoutineAddress
RtlAnsiStringToUnicodeString
ExAllocatePoolWithQuotaTag
PsTerminateSystemThread
KeReadStateTimer
RtlFindUnicodePrefix
ZwFsControlFile
IoReleaseCancelSpinLock
PsGetCurrentThread
CcZeroData
KeRemoveQueueDpc
RtlOemStringToUnicodeString
IoAllocateController
KeSetKernelStackSwapEnable
KeReleaseMutex
MmFreeContiguousMemory
ExCreateCallback
IoIsSystemThread
ObReferenceObjectByPointer
KeQueryTimeIncrement
KeInitializeDpc
RtlInitAnsiString
ExUnregisterCallback
RtlUnicodeStringToAnsiString
RtlUpcaseUnicodeString
ExAcquireFastMutexUnsafe
KeGetCurrentThread
RtlGUIDFromString
PsGetCurrentThreadId
SeQueryAuthenticationIdToken
RtlEqualString
RtlFindLeastSignificantBit
ProbeForRead
CcFastCopyWrite
RtlFindMostSignificantBit
MmProbeAndLockPages
ExGetSharedWaiterCount
KeInsertByKeyDeviceQueue
FsRtlNotifyInitializeSync
ZwQueryVolumeInformationFile
PoSetSystemState
KeClearEvent
IoWriteErrorLogEntry
KeCancelTimer
IoCheckQuotaBufferValidity
MmUnmapIoSpace
RtlCreateSecurityDescriptor
RtlAddAccessAllowedAceEx
RtlStringFromGUID
RtlDeleteRegistryValue
RtlSetAllBits
RtlUpperString
IoAllocateWorkItem
KeWaitForMultipleObjects
ExLocalTimeToSystemTime
PsGetVersion
IoCreateSymbolicLink
MmResetDriverPaging
KePulseEvent
MmMapIoSpace
FsRtlIsDbcsInExpression
IoGetBootDiskInformation
ExReleaseFastMutexUnsafe
KeInitializeQueue
ExDeleteNPagedLookasideList
RtlCopySid
DbgBreakPointWithStatus
IoSetDeviceInterfaceState
PoSetPowerState
KeSetImportanceDpc
ZwEnumerateValueKey
ZwReadFile
RtlCopyUnicodeString
KeResetEvent
RtlCompareString
SeSinglePrivilegeCheck
RtlEqualUnicodeString
RtlxUnicodeStringToAnsiSize
RtlAreBitsClear
RtlUpcaseUnicodeChar
KeInitializeSpinLock
ZwMakeTemporaryObject
FsRtlGetNextFileLock
FsRtlCheckLockForReadAccess
CcFastMdlReadWait
SeCreateClientSecurity
RtlGetNextRange
RtlInitString
MmSetAddressRangeModified
SeAssignSecurity
ZwCreateSection
ExGetExclusiveWaiterCount
PsSetLoadImageNotifyRoutine
IoAttachDeviceToDeviceStack
MmSizeOfMdl
IoInvalidateDeviceRelations
FsRtlIsTotalDeviceFailure
KeBugCheck
KdDisableDebugger
ExVerifySuite
RtlTimeToSecondsSince1980
IoGetRequestorProcessId
RtlAreBitsSet
IoDetachDevice
RtlGetVersion
RtlTimeToTimeFields
IoFreeWorkItem
RtlClearBits
ExRaiseDatatypeMisalignment
RtlAppendStringToString
RtlDeleteNoSplay
ExSystemTimeToLocalTime
ZwClose
IoStartPacket
CcPreparePinWrite
ExRaiseStatus
IoCheckEaBufferValidity
RtlRandom
IoGetDriverObjectExtension
PoUnregisterSystemState
IoCreateStreamFileObjectLite
IoReportResourceForDetection
KeQuerySystemTime
ExDeleteResourceLite
IoWMIRegistrationControl
IoDeviceObjectType
MmLockPagableDataSection
IoReportDetectedDevice
KdEnableDebugger
KeSetPriorityThread
MmIsVerifierEnabled
RtlLengthSecurityDescriptor
ZwQuerySymbolicLinkObject
MmCanFileBeTruncated
