RtlCreateUnicodeString
RtlInitializeUnicodePrefix
PsGetCurrentProcess
RtlFindLastBackwardRunClear
MmUnmapIoSpace
ExReleaseFastMutexUnsafe
IoReleaseVpbSpinLock
ExUuidCreate
ZwEnumerateValueKey
FsRtlIsFatDbcsLegal
PsGetCurrentThread
RtlPrefixUnicodeString
ZwOpenKey
MmFreeMappingAddress
FsRtlAllocateFileLock
KeInitializeDpc
RtlSubAuthoritySid
RtlFindMostSignificantBit
KeInitializeSemaphore
IoQueryFileInformation
ZwFreeVirtualMemory
PsGetThreadProcessId
KeLeaveCriticalRegion
KeInsertHeadQueue
ExGetSharedWaiterCount
PsDereferencePrimaryToken
IoSetStartIoAttributes
SeQueryInformationToken
RtlInitUnicodeString
KeGetCurrentThread
RtlClearBits
CcPreparePinWrite
ExLocalTimeToSystemTime
ExCreateCallback
IoReleaseCancelSpinLock
IoAllocateMdl
KeSynchronizeExecution
RtlCompareMemory
CcRepinBcb
KeClearEvent
KeSaveFloatingPointState
ExAllocatePoolWithQuota
IoUpdateShareAccess
WmiQueryTraceInformation
MmAllocateContiguousMemory
ObInsertObject
IoStopTimer
KeInitializeSpinLock
MmSetAddressRangeModified
IoGetRequestorProcess
IoFreeMdl
RtlUnicodeStringToAnsiString
RtlIsNameLegalDOS8Dot3
ZwDeleteValueKey
KeFlushQueuedDpcs
IoWMIRegistrationControl
IoConnectInterrupt
RtlEqualSid
IoDeviceObjectType
KeSetKernelStackSwapEnable
RtlSetDaclSecurityDescriptor
IoInvalidateDeviceState
IoGetStackLimits
PoSetSystemState
IoVerifyVolume
KeRemoveByKeyDeviceQueue
ExReinitializeResourceLite
RtlFreeUnicodeString
KeCancelTimer
ZwCreateSection
IoCreateDisk
KeInsertByKeyDeviceQueue
KeQueryActiveProcessors
RtlTimeToTimeFields
MmUnmapLockedPages
RtlFindNextForwardRunClear
KeBugCheckEx
MmIsVerifierEnabled
ZwEnumerateKey
ZwClose
SeCaptureSubjectContext
MmMapIoSpace
IoFreeWorkItem
IoGetDeviceProperty
ExNotifyCallback
RtlCopyUnicodeString
IoIsWdmVersionAvailable
RtlUnicodeStringToOemString
ZwOpenFile
RtlEnumerateGenericTable
RtlDowncaseUnicodeString
IoBuildPartialMdl
MmFreePagesFromMdl
CcMdlWriteAbort
IoFreeController
IoGetDeviceInterfaces
RtlStringFromGUID
MmAllocatePagesForMdl
IoAllocateAdapterChannel
IoGetRelatedDeviceObject
FsRtlCheckLockForWriteAccess
IoGetTopLevelIrp
RtlInsertUnicodePrefix
ZwQueryObject
ExFreePool
RtlValidSecurityDescriptor
IoReleaseRemoveLockAndWaitEx
IoAllocateErrorLogEntry
MmAllocateNonCachedMemory
PsLookupThreadByThreadId
MmForceSectionClosed
MmUnlockPagableImageSection
IoDeleteController
MmBuildMdlForNonPagedPool
FsRtlSplitLargeMcb
IoDeleteSymbolicLink
ZwFlushKey
IoRaiseHardError
MmMapLockedPages
ExIsProcessorFeaturePresent
RtlInitializeGenericTable
KeSetBasePriorityThread
SeUnlockSubjectContext
MmMapLockedPagesSpecifyCache
MmIsThisAnNtAsSystem
ZwCreateFile
PsGetCurrentThreadId
ProbeForWrite
RtlFreeAnsiString
CcUnpinData
IoGetAttachedDeviceReference
PsGetProcessId
IoCsqRemoveIrp
MmUnlockPages
IoSetDeviceToVerify
MmSizeOfMdl
SeTokenIsRestricted
MmHighestUserAddress
RtlDelete
MmAllocateMappingAddress
RtlVolumeDeviceToDosName
IoGetBootDiskInformation
RtlIntegerToUnicodeString
PsGetProcessExitTime
IoCreateFile
IofCompleteRequest
RtlTimeFieldsToTime
RtlFindSetBits
KeRemoveQueue
IoAllocateWorkItem
IoSetSystemPartition
RtlNtStatusToDosError
KeDelayExecutionThread
RtlLengthRequiredSid
KeAttachProcess
IoCheckShareAccess
FsRtlCheckOplock
RtlCopyLuid
RtlUpperString
PsChargeProcessPoolQuota
CcMdlRead
RtlOemToUnicodeN
MmFreeNonCachedMemory
IoSetDeviceInterfaceState
RtlSetBits
KeDetachProcess
ExDeleteResourceLite
CcSetReadAheadGranularity
IoGetRequestorProcessId
RtlFindUnicodePrefix
RtlMapGenericMask
IoStartPacket
ExGetPreviousMode
IoEnumerateDeviceObjectList
SeSinglePrivilegeCheck
FsRtlFastUnlockSingle
RtlxAnsiStringToUnicodeSize
ObfReferenceObject
KeInsertQueueDpc
RtlCompareUnicodeString
CcIsThereDirtyData
RtlSecondsSince1980ToTime
ZwCreateEvent
RtlSecondsSince1970ToTime
PsReferencePrimaryToken
IoAllocateIrp
ExQueueWorkItem
KePulseEvent
CcCopyWrite
IoSetPartitionInformation
IoOpenDeviceRegistryKey
IoGetCurrentProcess
KeRundownQueue
IofCallDriver
ExRaiseAccessViolation
RtlInt64ToUnicodeString
ZwQueryInformationFile
MmPageEntireDriver
IoReportDetectedDevice
RtlWriteRegistryValue
CcSetFileSizes
PsRevertToSelf
IoWritePartitionTableEx
RtlUpperChar
MmAdvanceMdl
KeInitializeTimer
MmProbeAndLockProcessPages
ObOpenObjectByPointer
SeCreateClientSecurity
KeRemoveEntryDeviceQueue
RtlTimeToSecondsSince1970
PsImpersonateClient
RtlInitAnsiString
RtlFillMemoryUlong
IoReadPartitionTable
KeResetEvent
ZwQueryVolumeInformationFile
CcFastMdlReadWait
KeSetTimer
IoGetDeviceToVerify
KeSetSystemAffinityThread
IoUnregisterFileSystem
CcUninitializeCacheMap
SeTokenIsAdmin
ExSetResourceOwnerPointer
PsReturnPoolQuota
RtlUpcaseUnicodeToOemN
IoWMIWriteEvent
ZwSetSecurityObject
MmLockPagableSectionByHandle
ZwOpenSymbolicLinkObject
RtlHashUnicodeString
KeRemoveDeviceQueue
FsRtlMdlWriteCompleteDev
RtlAnsiCharToUnicodeChar
FsRtlIsHpfsDbcsLegal
RtlUpcaseUnicodeString
ExRaiseStatus
CcCopyRead
IoSetThreadHardErrorMode
SeQueryAuthenticationIdToken
MmQuerySystemSize
IoGetDmaAdapter
ExVerifySuite
IoQueueWorkItem
ExSystemTimeToLocalTime
IoThreadToProcess
RtlNumberOfClearBits
KeReadStateTimer
RtlSetAllBits
ObReleaseObjectSecurity
RtlAddAccessAllowedAce
KeInitializeApc
KeInitializeMutex
RtlFreeOemString
