Professional Rootkits (Programmer to Programmer)

There are many Zw routines for the following:

• File operations

• Registry operations

• Access processing

• Timer operations

• Event operations

• Token operations

• Process operations

• Port operations

There are many more in addition to these.