¿Para qué sirve la dll bindfltapi.dll?
BindFlt user mode APIDependencias de la dll bindfltapi.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\bindfltapi.dll
File Type: DLL
Image has the following dependencies:
api-ms-win-crt-locale-l1-1-0.dll
api-ms-win-crt-string-l1-1-0.dll
api-ms-win-crt-runtime-l1-1-0.dll
api-ms-win-crt-private-l1-1-0.dll
FLTLIB.DLL
api-ms-win-core-io-l1-1-0.dll
api-ms-win-core-file-l1-1-0.dll
api-ms-win-core-errorhandling-l1-1-0.dll
api-ms-win-core-handle-l1-1-0.dll
ntdll.dll
api-ms-win-core-string-l1-1-0.dll
api-ms-win-core-synch-l1-2-0.dll
api-ms-win-core-localization-l1-2-0.dll
api-ms-win-core-synch-l1-1-0.dll
api-ms-win-core-util-l1-1-0.dll
api-ms-win-core-rtlsupport-l1-1-0.dll
api-ms-win-core-debug-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-1.dll
api-ms-win-core-profile-l1-1-0.dll
api-ms-win-core-sysinfo-l1-1-0.dll
api-ms-win-core-interlocked-l1-1-0.dll
api-ms-win-core-file-l2-1-0.dll
api-ms-win-security-base-l1-1-0.dll
api-ms-win-security-lsalookup-l2-1-0.dll
Summary
2000 .data
1000 .pdata
7000 .rdata
1000 .reloc
1000 .rsrc
11000 .text
Funciones que tiene la dll bindfltapi.dll
1 0 0000E720 BfAttachFilter
2 1 00001450 BfGenerateBatchedConfig
3 2 00001A60 BfGetMappings
4 3 0000F000 BfRemoveMapping
5 4 00001440 BfRemoveMappingEx
6 5 0000EC70 BfSetupFilter
7 6 00001770 BfSetupFilterBatched
8 7 00001430 BfSetupFilterEx
9 8 00001DC0 BfTrackWritesFromSilo
Información avanzada sobre funciones que tiene la dll bindfltapi.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\bindfltapi.dll
File Type: DLL
Section contains the following exports for BINDFLTAPI.dll
00000000 characteristics
C64F9A89 time date stamp
0.00 version
1 ordinal base
9 number of functions
9 number of names
ordinal hint RVA name
1 0 0000E720 BfAttachFilter
2 1 00001450 BfGenerateBatchedConfig
3 2 00001A60 BfGetMappings
4 3 0000F000 BfRemoveMapping
5 4 00001440 BfRemoveMappingEx
6 5 0000EC70 BfSetupFilter
7 6 00001770 BfSetupFilterBatched
8 7 00001430 BfSetupFilterEx
9 8 00001DC0 BfTrackWritesFromSilo
Summary
2000 .data
1000 .pdata
7000 .rdata
1000 .reloc
1000 .rsrc
11000 .text
Integridad de la dll bindfltapi.dll
Algorithm Hash Path
--------- ---- ----
SHA256 C16C16EA79C7860EE51B43F71E564E971D04C222BD5E8FCF8F4BFC24CD7B87CE C:\Windows\System32\bindfltapi.dll
Detalles sobre el fichero dll bindfltapi.dll
PSPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32\bindfltapi.dll
PSParentPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32
PSChildName : bindfltapi.dll
PSDrive : C
PSProvider : Microsoft.PowerShell.Core\FileSystem
PSIsContainer : False
Mode : -a----
VersionInfo : File: C:\Windows\System32\bindfltapi.dll
InternalName: BindFltApi.dll
OriginalFilename: BindFltApi.dll
FileVersion: 10.0.19041.292 (WinBuild.160101.0800)
FileDescription: BindFlt user mode API
Product: Microsoft® Windows® Operating System
ProductVersion: 10.0.19041.292
Debug: False
Patched: False
PreRelease: False
PrivateBuild: False
SpecialBuild: False
Language: Inglés (Estados Unidos)
BaseName : bindfltapi
Target : {C:\Windows\WinSxS\amd64_microsoft-windows-bind-filter_31bf3856ad364e35_10.0.19041.292_none_b4ba273233a2ae83\bin
dfltapi.dll}
LinkType : HardLink
Name : bindfltapi.dll
Length : 103424
DirectoryName : C:\Windows\System32
Directory : C:\Windows\System32
IsReadOnly : False
Exists : True
FullName : C:\Windows\System32\bindfltapi.dll
Extension : .dll
CreationTime : 18/09/2020 7:54:06
CreationTimeUtc : 18/09/2020 5:54:06
LastAccessTime : 03/12/2020 8:50:59
LastAccessTimeUtc : 03/12/2020 7:50:59
LastWriteTime : 18/09/2020 7:54:06
LastWriteTimeUtc : 18/09/2020 5:54:06
Attributes : Archive
Procesos que utilizan la dll bindfltapi.dll