¿Para qué sirve la dll authz.dll?
Authorization FrameworkDependencias de la dll authz.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\authz.dll
File Type: DLL
Image has the following dependencies:
api-ms-win-crt-string-l1-1-0.dll
api-ms-win-crt-runtime-l1-1-0.dll
api-ms-win-crt-private-l1-1-0.dll
api-ms-win-core-errorhandling-l1-1-0.dll
api-ms-win-core-synch-l1-2-0.dll
api-ms-win-core-heap-l2-1-0.dll
api-ms-win-core-synch-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-0.dll
api-ms-win-security-base-l1-1-0.dll
api-ms-win-core-handle-l1-1-0.dll
api-ms-win-core-libraryloader-l1-2-0.dll
api-ms-win-core-registry-l1-1-0.dll
api-ms-win-core-sysinfo-l1-1-0.dll
api-ms-win-core-rtlsupport-l1-1-0.dll
api-ms-win-core-sysinfo-l1-2-0.dll
api-ms-win-core-memory-l1-1-0.dll
api-ms-win-core-debug-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-1.dll
api-ms-win-core-profile-l1-1-0.dll
api-ms-win-core-interlocked-l1-1-0.dll
api-ms-win-core-apiquery-l1-1-0.dll
ntdll.dll
api-ms-win-core-delayload-l1-1-1.dll
api-ms-win-core-delayload-l1-1-0.dll
Image has the following delay load dependencies:
RPCRT4.dll
api-ms-win-security-sddl-l1-1-0.dll
WLDAP32.dll
SspiCli.dll
DSROLE.dll
netutils.dll
logoncli.dll
api-ms-win-security-lsalookup-l2-1-0.dll
ext-ms-win-authz-remote-l1-1-0.dll
api-ms-win-security-lsalookup-l1-1-0.dll
api-ms-win-security-sddlparsecond-l1-1-0.dll
SAMLIB.dll
Summary
1000 .data
1000 .didat
2000 .pdata
19000 .rdata
2000 .reloc
1000 .rsrc
2B000 .text
Funciones que tiene la dll authz.dll
1 0 00001E00 AuthzAccessCheck
2 1 00012200 AuthzAddSidsToContext
3 2 00012320 AuthzCachedAccessCheck
4 3 00021C00 AuthzComputeEffectivePermission
5 4 00012880 AuthzEnumerateSecurityEventSources
6 5 00012EB0 AuthzEvaluateSacl
7 6 00005CC0 AuthzFreeAuditEvent
8 7 00012F40 AuthzFreeCentralAccessPolicyCache
9 8 00002900 AuthzFreeContext
10 9 00012F50 AuthzFreeHandle
11 A 00005520 AuthzFreeResourceManager
12 B 00002650 AuthzGetInformationFromContext
13 C 00012FF0 AuthzInitializeCompoundContext
14 D 00008940 AuthzInitializeContextFromAuthzContext
15 E 00002820 AuthzInitializeContextFromSid
16 F 00002D70 AuthzInitializeContextFromToken
17 10 000130F0 AuthzInitializeObjectAccessAuditEvent
18 11 00004F20 AuthzInitializeObjectAccessAuditEvent2
19 12 00008CE0 AuthzInitializeRemoteAccessCheck
20 13 00013140 AuthzInitializeRemoteResourceManager
21 14 000059B0 AuthzInitializeResourceManager
22 15 000090D0 AuthzInitializeResourceManagerEx
23 16 00013180 AuthzInstallSecurityEventSource
24 17 000135A0 AuthzModifyClaims
25 18 00013610 AuthzModifySecurityAttributes
26 19 00013680 AuthzModifySids
27 1A 000136F0 AuthzOpenObjectAudit
28 1B 00013910 AuthzRegisterCapChangeNotification
29 1C 00013A00 AuthzRegisterSecurityEventSource
30 1D 00013AF0 AuthzReportSecurityEvent
31 1E 00013BB0 AuthzReportSecurityEventFromParams
32 1F 00013D50 AuthzSetAppContainerInformation
33 20 00013DA0 AuthzShutdownRemoteAccessCheck
34 21 00013DB0 AuthzUninstallSecurityEventSource
35 22 00013E70 AuthzUnregisterCapChangeNotification
36 23 00013EE0 AuthzUnregisterSecurityEventSource
37 24 00013FA0 AuthziAccessCheckEx
38 25 000011F0 AuthziAllocateAuditParams
39 26 00014040 AuthziCheckContextMembership
40 27 00005CA0 AuthziFreeAuditEventType
41 28 00001190 AuthziFreeAuditParams
42 29 000140A0 AuthziFreeAuditQueue
43 2A 00011B10 AuthziGenerateAdminAlertAuditW
44 2B 000050A0 AuthziInitializeAuditEvent
45 2C 00006350 AuthziInitializeAuditEventType
46 2D 000065D0 AuthziInitializeAuditParams
47 2E 000141A0 AuthziInitializeAuditParamsFromArray
48 2F 000087C0 AuthziInitializeAuditParamsWithRM
49 30 000092A0 AuthziInitializeAuditQueue
50 31 00014340 AuthziInitializeContextFromSid
51 32 00005E00 AuthziLogAuditEvent
52 33 00014450 AuthziModifyAuditEvent
53 34 00008270 AuthziModifyAuditEvent2
54 35 00014490 AuthziModifyAuditEventType
55 36 00014500 AuthziModifyAuditQueue
56 37 00014580 AuthziModifySecurityAttributes
57 38 000145F0 AuthziQuerySecurityAttributes
58 39 00001010 AuthziSourceAudit
59 3A 00021130 FreeClaimDefinitions
60 3B 000211E0 FreeClaimDictionary
61 3C 00019450 GenerateNewCAPID
62 3D 0001F1D0 GetCentralAccessPoliciesByCapID
63 3E 0001F840 GetCentralAccessPoliciesByDN
64 3F 00021200 GetClaimDefinitions
65 40 000212E0 GetClaimDomainInfo
66 41 00019580 GetDefaultCAPESecurityDescriptor
67 42 000213B0 InitializeClaimDictionary
68 43 00021550 RefreshClaimDictionary
Información avanzada sobre funciones que tiene la dll authz.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\authz.dll
File Type: DLL
Section contains the following exports for AUTHZ.dll
00000000 characteristics
666D5080 time date stamp
0.00 version
1 ordinal base
68 number of functions
68 number of names
ordinal hint RVA name
1 0 00001E00 AuthzAccessCheck
2 1 00012200 AuthzAddSidsToContext
3 2 00012320 AuthzCachedAccessCheck
4 3 00021C00 AuthzComputeEffectivePermission
5 4 00012880 AuthzEnumerateSecurityEventSources
6 5 00012EB0 AuthzEvaluateSacl
7 6 00005CC0 AuthzFreeAuditEvent
8 7 00012F40 AuthzFreeCentralAccessPolicyCache
9 8 00002900 AuthzFreeContext
10 9 00012F50 AuthzFreeHandle
11 A 00005520 AuthzFreeResourceManager
12 B 00002650 AuthzGetInformationFromContext
13 C 00012FF0 AuthzInitializeCompoundContext
14 D 00008940 AuthzInitializeContextFromAuthzContext
15 E 00002820 AuthzInitializeContextFromSid
16 F 00002D70 AuthzInitializeContextFromToken
17 10 000130F0 AuthzInitializeObjectAccessAuditEvent
18 11 00004F20 AuthzInitializeObjectAccessAuditEvent2
19 12 00008CE0 AuthzInitializeRemoteAccessCheck
20 13 00013140 AuthzInitializeRemoteResourceManager
21 14 000059B0 AuthzInitializeResourceManager
22 15 000090D0 AuthzInitializeResourceManagerEx
23 16 00013180 AuthzInstallSecurityEventSource
24 17 000135A0 AuthzModifyClaims
25 18 00013610 AuthzModifySecurityAttributes
26 19 00013680 AuthzModifySids
27 1A 000136F0 AuthzOpenObjectAudit
28 1B 00013910 AuthzRegisterCapChangeNotification
29 1C 00013A00 AuthzRegisterSecurityEventSource
30 1D 00013AF0 AuthzReportSecurityEvent
31 1E 00013BB0 AuthzReportSecurityEventFromParams
32 1F 00013D50 AuthzSetAppContainerInformation
33 20 00013DA0 AuthzShutdownRemoteAccessCheck
34 21 00013DB0 AuthzUninstallSecurityEventSource
35 22 00013E70 AuthzUnregisterCapChangeNotification
36 23 00013EE0 AuthzUnregisterSecurityEventSource
37 24 00013FA0 AuthziAccessCheckEx
38 25 000011F0 AuthziAllocateAuditParams
39 26 00014040 AuthziCheckContextMembership
40 27 00005CA0 AuthziFreeAuditEventType
41 28 00001190 AuthziFreeAuditParams
42 29 000140A0 AuthziFreeAuditQueue
43 2A 00011B10 AuthziGenerateAdminAlertAuditW
44 2B 000050A0 AuthziInitializeAuditEvent
45 2C 00006350 AuthziInitializeAuditEventType
46 2D 000065D0 AuthziInitializeAuditParams
47 2E 000141A0 AuthziInitializeAuditParamsFromArray
48 2F 000087C0 AuthziInitializeAuditParamsWithRM
49 30 000092A0 AuthziInitializeAuditQueue
50 31 00014340 AuthziInitializeContextFromSid
51 32 00005E00 AuthziLogAuditEvent
52 33 00014450 AuthziModifyAuditEvent
53 34 00008270 AuthziModifyAuditEvent2
54 35 00014490 AuthziModifyAuditEventType
55 36 00014500 AuthziModifyAuditQueue
56 37 00014580 AuthziModifySecurityAttributes
57 38 000145F0 AuthziQuerySecurityAttributes
58 39 00001010 AuthziSourceAudit
59 3A 00021130 FreeClaimDefinitions
60 3B 000211E0 FreeClaimDictionary
61 3C 00019450 GenerateNewCAPID
62 3D 0001F1D0 GetCentralAccessPoliciesByCapID
63 3E 0001F840 GetCentralAccessPoliciesByDN
64 3F 00021200 GetClaimDefinitions
65 40 000212E0 GetClaimDomainInfo
66 41 00019580 GetDefaultCAPESecurityDescriptor
67 42 000213B0 InitializeClaimDictionary
68 43 00021550 RefreshClaimDictionary
Summary
1000 .data
1000 .didat
2000 .pdata
19000 .rdata
2000 .reloc
1000 .rsrc
2B000 .text
Integridad de la dll authz.dll
Algorithm Hash Path
--------- ---- ----
SHA256 56190D522A7F596FA238AA455A4144CD894ACFD83BFCC2F5BFCEA7BC8D4E1F89 C:\Windows\System32\authz.dll
Detalles sobre el fichero dll authz.dll
PSPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32\authz.dll
PSParentPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32
PSChildName : authz.dll
PSDrive : C
PSProvider : Microsoft.PowerShell.Core\FileSystem
PSIsContainer : False
Mode : -a----
VersionInfo : File: C:\Windows\System32\authz.dll
InternalName: authz.dll
OriginalFilename: authz.dll
FileVersion: 10.0.19041.546 (WinBuild.160101.0800)
FileDescription: Authorization Framework
Product: Microsoft® Windows® Operating System
ProductVersion: 10.0.19041.546
Debug: False
Patched: False
PreRelease: False
PrivateBuild: False
SpecialBuild: False
Language: Inglés (Estados Unidos)
BaseName : authz
Target : {C:\Windows\WinSxS\amd64_microsoft-windows-s..entication-usermode_31bf3856ad364e35_10.0.19041.546_none_181b0a33d
323b695\authz.dll}
LinkType : HardLink
Name : authz.dll
Length : 292864
DirectoryName : C:\Windows\System32
Directory : C:\Windows\System32
IsReadOnly : False
Exists : True
FullName : C:\Windows\System32\authz.dll
Extension : .dll
CreationTime : 21/11/2020 8:44:15
CreationTimeUtc : 21/11/2020 7:44:15
LastAccessTime : 03/12/2020 8:43:37
LastAccessTimeUtc : 03/12/2020 7:43:37
LastWriteTime : 21/11/2020 8:44:15
LastWriteTimeUtc : 21/11/2020 7:44:15
Attributes : Archive
Procesos que utilizan la dll authz.dll
explorer
RuntimeBroker
RuntimeBroker