¿Para qué sirve la dll lsasrv.dll?
DLL de servidor LSADependencias de la dll lsasrv.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\lsasrv.dll
File Type: DLL
Image has the following dependencies:
api-ms-win-crt-string-l1-1-0.dll
api-ms-win-crt-runtime-l1-1-0.dll
api-ms-win-crt-private-l1-1-0.dll
api-ms-win-core-errorhandling-l1-1-0.dll
api-ms-win-core-string-l1-1-0.dll
api-ms-win-core-libraryloader-l1-2-0.dll
api-ms-win-core-handle-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-0.dll
api-ms-win-core-timezone-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-1.dll
api-ms-win-core-psapi-l1-1-0.dll
RPCRT4.dll
api-ms-win-core-heap-l2-1-0.dll
api-ms-win-security-base-l1-1-0.dll
api-ms-win-core-memory-l1-1-0.dll
api-ms-win-core-memory-l1-1-1.dll
api-ms-win-core-localization-l1-2-0.dll
api-ms-win-core-sysinfo-l1-1-0.dll
api-ms-win-core-file-l1-1-0.dll
api-ms-win-core-synch-l1-1-0.dll
api-ms-win-core-file-l2-1-0.dll
api-ms-win-core-io-l1-1-0.dll
api-ms-win-core-io-l1-1-1.dll
api-ms-win-core-registry-l1-1-0.dll
api-ms-win-core-errorhandling-l1-1-2.dll
SspiCli.dll
api-ms-win-core-registry-l1-1-1.dll
api-ms-win-core-heap-l1-1-0.dll
api-ms-win-core-debug-l1-1-0.dll
api-ms-win-core-threadpool-l1-2-0.dll
api-ms-win-core-processenvironment-l1-1-0.dll
api-ms-win-core-synch-l1-2-0.dll
WS2_32.dll
api-ms-win-core-rtlsupport-l1-1-0.dll
api-ms-win-core-profile-l1-1-0.dll
api-ms-win-core-interlocked-l1-1-0.dll
api-ms-win-eventing-classicprovider-l1-1-0.dll
api-ms-win-core-console-l1-1-0.dll
api-ms-win-core-sysinfo-l1-2-0.dll
api-ms-win-service-winsvc-l1-1-0.dll
api-ms-win-service-core-l1-1-0.dll
api-ms-win-security-base-l1-2-0.dll
api-ms-win-eventing-provider-l1-1-0.dll
WLDAP32.dll
api-ms-win-core-kernel32-legacy-l1-1-0.dll
api-ms-win-core-threadpool-legacy-l1-1-0.dll
api-ms-win-core-string-obsolete-l1-1-0.dll
api-ms-win-core-privateprofile-l1-1-0.dll
api-ms-win-core-kernel32-private-l1-1-0.dll
api-ms-win-security-grouppolicy-l1-1-0.dll
api-ms-win-core-apiquery-l1-1-0.dll
api-ms-win-core-threadpool-private-l1-1-0.dll
api-ms-win-service-private-l1-1-0.dll
api-ms-win-security-capability-l1-1-0.dll
ntdll.dll
MSASN1.dll
api-ms-win-stateseparation-helpers-l1-1-0.dll
api-ms-win-security-base-private-l1-1-1.dll
api-ms-win-core-datetime-l1-1-0.dll
api-ms-win-eventing-controller-l1-1-0.dll
api-ms-win-core-delayload-l1-1-1.dll
api-ms-win-core-delayload-l1-1-0.dll
Image has the following delay load dependencies:
Wldp.dll
FVEAPI.dll
api-ms-win-security-credentials-l1-1-0.dll
DNSAPI.dll
api-ms-win-security-sddl-l1-1-0.dll
bcrypt.dll
CRYPT32.dll
ncrypt.dll
DSPARSE.dll
USERENV.dll
CRYPTBASE.dll
logoncli.dll
netutils.dll
IPHLPAPI.DLL
AUTHZ.dll
api-ms-win-eventlog-legacy-l1-1-0.dll
api-ms-win-eventlog-private-l1-1-0.dll
ext-ms-win-authz-claimpolicies-l1-1-0.dll
ext-ms-win-biometrics-winbio-core-l1-1-0.dll
ext-ms-win-firewallapi-webproxy-l1-1-0.dll
ext-ms-win-firewallapi-webproxy-l1-1-1.dll
ext-ms-win-netprovision-netprovfw-l1-1-0.dll
ext-ms-win-secur32-translatename-l1-1-0.dll
ext-ms-win-session-usermgr-l1-1-0.dll
ext-ms-win-security-ngc-local-l1-1-0.dll
ext-ms-win-security-vaultcli-l1-1-0.dll
ext-ms-win-session-winsta-l1-1-0.dll
api-ms-win-security-credentials-l2-1-0.dll
api-ms-win-security-credentials-l2-1-1.dll
api-ms-win-security-lsalookup-l1-1-0.dll
api-ms-win-security-lsalookup-l1-1-1.dll
api-ms-win-security-lsapolicy-l1-1-0.dll
api-ms-win-security-sddlparsecond-l1-1-0.dll
ext-ms-win-samsrv-accountstore-l1-1-0.dll
ext-ms-win-wevtapi-eventlog-l1-1-0.dll
ext-ms-win-wevtapi-eventlog-l1-1-3.dll
api-ms-win-appmodel-identity-l1-2-0.dll
cryptngc.dll
CRYPTSP.dll
lsass.exe
FirewallAPI.dll
MPR.dll
cryptdll.dll
MDMRegistration.DLL
Summary
A000 .data
1000 .didat
B000 .pdata
4B000 .rdata
2000 .reloc
8000 .rsrc
131000 .text
Funciones que tiene la dll lsasrv.dll
1 0 00054BF0 InitializeLsaExtension
3 1 000F5C50 LsaDbLookupSidChainRequest
4 2 0001D070 LsaIAddNamesToLogonSession
5 3 0001BAF0 LsaIAdjustTokenObjectIntegrity
6 4 00057FC0 LsaIAdtAuditingEnabledByCategory
7 5 000DA140 LsaIAdtAuditingEnabledBySubCategory
8 6 00041630 LsaIAllocateHeap
9 7 000364A0 LsaIAllocateHeapZero
10 8 000C50A0 LsaIAllowProtectedCredLogon
11 9 000DA230 LsaIAuditAccountLogon
12 A 00016D60 LsaIAuditAccountLogonEx
13 B 000DA610 LsaIAuditInitializeParametersAndWriteEvent
14 C 000DA6E0 LsaIAuditKdcEvent
15 D 000DAAC0 LsaIAuditKerberosLogon
16 E 00041980 LsaIAuditLogonEx
17 F 00018110 LsaIAuditLogonUsingExplicitCreds
18 10 0005BF80 LsaIAuditNotifyPackageLoad
19 11 000DAB50 LsaIAuditPasswordAccessEvent
20 12 000DAD40 LsaIAuditReplay
21 13 00030440 LsaIAuditSamEvent
22 14 000C96C0 LsaICallPackage
23 15 0003B6B0 LsaICallPackageEx
24 16 000C9700 LsaICallPackagePassthrough
25 17 0003F040 LsaICancelNotification
26 18 000F7720 LsaIChangeSecretCipherKey
27 19 0001D2E0 LsaICheckProtectedUserByTokenInfo
28 1A 000DCB70 LsaICheckRestrictedMode
29 1B 000F77E0 LsaIClearOldSyskey
30 1C 0003FE20 LsaICryptProtectData
31 1D 000BE4F0 LsaICryptProtectDataEx
32 1E 0003F9B0 LsaICryptUnprotectData
33 1F 000BE5A0 LsaICryptUnprotectDataEx
34 20 000C86D0 LsaIDereferenceCredHandle
35 21 000BE650 LsaIDeriveCredentialKey
36 22 000F7F30 LsaIDsNotifiedObjectChange
37 23 000B6710 LsaIEfsAcceptSmartcardCredentials
38 24 000C9830 LsaIEqualLogonProcessName
39 25 00004150 LsaIEqualSupplementalTokenInfo
40 26 000BA890 LsaIEventWritePackageNoCredential
41 27 0003F850 LsaIEventWritePackageNotCacheLogonUser
42 28 000F7FD0 LsaIFilterNamespace
43 29 000F8F20 LsaIFilterSids
44 2A 000DCB90 LsaIFlushIdentityCacheForSid
45 2B 000F8060 LsaIForestTrustFindMatch
46 2C 000F80C0 LsaIFreeForestTrustInfo
47 2D 00032290 LsaIFreeHeap
48 2E 0003B640 LsaIFreeReturnBuffer
49 2F 0003F1D0 LsaIFreeSupplementalTokenInfo
50 30 000DCC70 LsaIFree_LSAI_PRIVATE_DATA
51 31 000DCCA0 LsaIFree_LSAI_SECRET_ENUM_BUFFER
52 32 000DCD10 LsaIFree_LSAPR_ACCOUNT_ENUM_BUFFER
53 33 000370B0 LsaIFree_LSAPR_CR_CIPHER_VALUE
54 34 000DCD30 LsaIFree_LSAPR_POLICY_DOMAIN_INFORMATION
55 35 0003EF20 LsaIFree_LSAPR_POLICY_INFORMATION
56 36 000DCD60 LsaIFree_LSAPR_PRIVILEGE_ENUM_BUFFER
57 37 000DCC70 LsaIFree_LSAPR_PRIVILEGE_SET
58 38 00042D40 LsaIFree_LSAPR_REFERENCED_DOMAIN_LIST
59 39 000DCD80 LsaIFree_LSAPR_SR_SECURITY_DESCRIPTOR
60 3A 0005B760 LsaIFree_LSAPR_TRANSLATED_NAMES
61 3B 000DCDC0 LsaIFree_LSAPR_TRANSLATED_SIDS
62 3C 000DCDF0 LsaIFree_LSAPR_TRUSTED_DOMAIN_INFO
63 3D 000DCE30 LsaIFree_LSAPR_TRUSTED_ENUM_BUFFER
64 3E 000DCE50 LsaIFree_LSAPR_TRUSTED_ENUM_BUFFER_EX
65 3F 000DCE70 LsaIFree_LSAPR_TRUST_INFORMATION
66 40 000DCD80 LsaIFree_LSAPR_UNICODE_STRING
67 41 000DCDC0 LsaIFree_LSAPR_UNICODE_STRING_BUFFER
68 42 000F99C0 LsaIFree_LSAP_SITENAME_INFO
69 43 000F9A20 LsaIFree_LSAP_SITE_INFO
70 44 000F9AA0 LsaIFree_LSAP_SUBNET_INFO
71 45 000F9A20 LsaIFree_LSAP_UPN_SUFFIXES
72 46 000F8100 LsaIFree_LSA_FOREST_TRUST_COLLISION_INFORMATION
73 47 000F8140 LsaIFree_LSA_FOREST_TRUST_INFORMATION
74 48 00021790 LsaIGetCallInfo
75 49 000A8E30 LsaIGetCcgClient
76 4A 00061400 LsaIGetClientOsInfo
77 4B 000F8180 LsaIGetForestTrustInformation
78 4C 000DB270 LsaIGetLogonGuid
79 4D 000BA9B0 LsaIGetNameFromLuid
80 4E 0003DEF0 LsaIGetNbAndDnsDomainNames
81 4F 0005A010 LsaIGetNego2Package
82 50 000C9890 LsaIGetRemoteCredGuardLogonBuffer
83 51 000C9960 LsaIGetRemoteCredGuardSupplementalCreds
84 52 000F81D0 LsaIGetSiteName
85 53 0003CD60 LsaIGetSupplementalTokenInfo
86 54 000DCBB0 LsaIGetTokenInformationForLocalUser
87 55 0005AB40 LsaIHealthCheck
88 56 000400A0 LsaIImpersonateClient
89 57 000DCEA0 LsaIInitializeNetlogonFuncPtrs
90 58 000A8E40 LsaIIsContainerized
91 59 000F8220 LsaIIsDomainWithinForest
92 5A 000F82C0 LsaIIsDsPaused
93 5B 000A8E50 LsaIIsInEmulatedDomainJoinMode
94 5C 00040180 LsaIIsLastInteractiveLogonInfoEnabled
95 5D 000C5F70 LsaIIsLocalHost
96 5E 000DCEC0 LsaIIsMachineSecureByDefault
97 5F 000C6CB0 LsaIIsSuppressChannelBindingInfo
98 60 000CB850 LsaIIsTargetPrivate
99 61 000F8300 LsaIIsTrustedDomainsEnabled
100 62 000DCBC0 LsaIIsUserMSA
101 63 000F8310 LsaIKerberosRegisterTrustNotification
102 64 0003FB10 LsaILookupUserAccountType
103 65 000F9C90 LsaILookupWellKnownName
104 66 000322F0 LsaIModifyPerformanceCounter
105 67 0003E190 LsaINoConnectedUserPolicy
106 68 00040010 LsaINoMoreWin2KDomain
107 69 000FAE70 LsaINotifyChangeNotification
108 6A 000F8360 LsaINotifyGCStatusChange
109 6B 000F9B50 LsaINotifyNetlogonParametersChangeW
110 6C 000B3EE0 LsaINotifyNewPassword
111 6D 000B3EF0 LsaINotifyPasswordChanged
112 6E 0005BB30 LsaIOpenPolicyTrusted
113 6F 000F83A0 LsaIQueryForestTrustInfo
114 70 000F8400 LsaIQueryForestTrustInformation
115 71 0003FD50 LsaIQueryInformationPolicyTrusted
116 72 0003CCB0 LsaIQueryPackageAttrInLogonSession
117 73 000F8430 LsaIQuerySiteInfo
118 74 000F8480 LsaIQuerySubnetInfo
119 75 000F84D0 LsaIQueryUpnSuffixes
120 76 000C8710 LsaIReferenceCredHandle
121 77 00040040 LsaIRegisterLogonSessionCallback
122 78 000494F0 LsaIRegisterNotification
123 79 00054550 LsaIRegisterPolicyChangeNotificationCallback
124 7A 000DCBE0 LsaIRenewCertificate
125 7B 000F8520 LsaIReplicateClientObject
126 7C 000374D0 LsaIRetrieveCurrentUserSid
127 7D 0004F730 LsaISafeMode
128 7E 000F8580 LsaISamIndicatedDsStarted
129 7F 000DCC00 LsaISanitizeSAMName
130 80 000F85D0 LsaISetClientDnsHostName
131 81 000BAB10 LsaISetLogonGuidInLogonSession
132 82 0003ECE0 LsaISetLogonInfo
133 83 000F7830 LsaISetNewSyskey
134 84 000BAD00 LsaISetPackageAttrInLogonSession
135 85 00041660 LsaISetSupplementalTokenInfo
136 86 000DCF20 LsaISetTokenDacl
137 87 0000ED10 LsaISetUserFlags
138 88 000FCAE0 LsaITransformAuthorizationData
139 89 000FAF10 LsaIUnregisterAllPolicyChangeNotificationCallback
140 8A 000BADB0 LsaIUnregisterLogonSessionCallback
141 8B 000FB040 LsaIUnregisterPolicyChangeNotificationCallback
142 8C 000F8670 LsaIUpdateForestTrustInformation
143 8D 000C5FB0 LsaIUpdateKerbMaxTokenSize
144 8E 00003370 LsaIUpdateLogonSession
145 8F 000DCC10 LsaIUserProfileLoaded
146 90 000C9A20 LsaIValidateTargetInfo
147 91 000F86E0 LsaIVerifyCachability
148 92 000DB3C0 LsaIWriteAuditEvent
149 93 000DB480 LsaIWriteKdcAuthenticationEvent
150 94 0001B040 LsapAdtAuditingEnabledByLogonId
151 95 00017460 LsapAdtAuditingEnabledBySubCategory
152 96 000DE430 LsapAdtAuditingEnabledHint
153 97 00012100 LsapAdtGetCallerProcessInfo
154 98 00017E30 LsapAdtInitParametersArray
155 99 00040AE0 LsapAdtWriteLog
156 9A 000364A0 LsapAllocateLsaHeap
157 9B 000364A0 LsapAllocatePrivateHeap
158 9C 00055E10 LsapAuOpenSam
159 9D 000DEBC0 LsapAuditFailed
160 9E 000FCC90 LsapBuildPrivilegeAuditString
161 9F 00055060 LsapCheckBootMode
162 A0 0002FF00 LsapCloseHandle
163 A1 0000B910 LsapCompareDomainNames
164 A2 00044200 LsapCrServerGetSessionKey
165 A3 000DFFD0 LsapCrServerGetSessionKeySafe
166 A4 0002F520 LsapDbAcquireLockEx
167 A5 00030CE0 LsapDbApplyTransaction
168 A6 0004EC10 LsapDbBuildObjectCaches
169 A7 000FEB60 LsapDbCloseHandle
170 A8 000301E0 LsapDbCloseObject
171 A9 0004F4F0 LsapDbCopyUnicodeAttribute
172 AA 000FFFC0 LsapDbCopyUnicodeAttributeNoAlloc
173 AB 000FED40 LsapDbCreateObject
174 AC 000FF1F0 LsapDbDeleteAttributesObject
175 AD 000FF290 LsapDbDeleteObject
176 AE 0002C710 LsapDbDereferenceHandle
177 AF 0002EEA0 LsapDbDereferenceObject
178 B0 00047040 LsapDbEnumerateSids
179 B1 00100D50 LsapDbEnumerateTrustedDomainsEx
180 B2 00101870 LsapDbExpAcquireReadLockTrustedDomainList
181 B3 001018A0 LsapDbExpAcquireWriteLockTrustedDomainList
182 B4 001018D0 LsapDbExpConvertReadLockTrustedDomainListToExclusive
183 B5 001018F0 LsapDbExpConvertWriteLockTrustedDomainListToShared
184 B6 00101910 LsapDbExpIsCacheBuilding
185 B7 00101930 LsapDbExpIsCacheValid
186 B8 00101950 LsapDbExpIsLockedTrustedDomainList
187 B9 001019A0 LsapDbExpMakeCacheBuilding
188 BA 001019C0 LsapDbExpMakeCacheInvalid
189 BB 001019E0 LsapDbExpMakeCacheValid
190 BC 00101A00 LsapDbExpReleaseLockTrustedDomainList
191 BD 0004FDD0 LsapDbFreeAttributes
192 BE 00100F00 LsapDbFreeTrustedDomainsEx
193 BF 00101A20 LsapDbGetDbObjectTypeName
194 C0 00101A40 LsapDbGetDbPolicyHandle
195 C1 00030EF0 LsapDbGetSecretType
196 C2 00043A00 LsapDbInitializeAttribute
197 C3 000F60A0 LsapDbIsStatusConnectionFailure
198 C4 00005980 LsapDbLookupAddListReferencedDomains
199 C5 000F60D0 LsapDbLookupCreateListReferencedDomains
200 C6 0003DB60 LsapDbLookupGetDomainInfo
201 C7 0000AA30 LsapDbLookupListReferencedDomains
202 C8 000F66F0 LsapDbLookupMergeDisjointReferencedDomains
203 C9 000F6990 LsapDbLookupNameChainRequest
204 CA 000FA1C0 LsapDbLookupNamesInPrimaryDomain
205 CB 00100750 LsapDbLookupSidsInPrimaryDomain
206 CC 00100030 LsapDbMakeGuidAttribute
207 CD 00100090 LsapDbMakeSidAttribute
208 CE 00100120 LsapDbMakeUnicodeAttribute
209 CF 0002D9F0 LsapDbOpenObject
210 D0 0002F700 LsapDbQueryInformationPolicy
211 D1 0004FF20 LsapDbReadAttribute
212 D2 000438B0 LsapDbReadAttributesObject
213 D3 0002BAE0 LsapDbReferenceObject
214 D4 0002D940 LsapDbReleaseLockEx
215 D5 00101B90 LsapDbSecretIsMachineAcc
216 D6 00030390 LsapDbSidToLogicalNameObject
217 D7 001010A0 LsapDbSlowEnumerateTrustedDomains
218 D8 000FA700 LsapDbUpdateCountCompUnmappedNames
219 D9 0002FAE0 LsapDbVerifyHandle
220 DA 00101A50 LsapDbVerifyInfoQueryTrustedDomain
221 DB 00101A70 LsapDbVerifyInfoSetTrustedDomain
222 DC 000FF670 LsapDbWriteAttributesObject
223 DD 000BC4C0 LsapDomainRenameHandlerForLogonSessions
224 DE 000F8750 LsapDsInitializeDsStateInfo
225 DF 000F8790 LsapDsUnitializeDsStateInfo
226 E0 000DCED0 LsapDssetupInitializeGetPrimaryDomainInformationOpState
227 E1 0001F540 LsapDuplicateSid
228 E2 0001E7F0 LsapDuplicateString
229 E3 00032290 LsapFreeLsaHeap
230 E4 00032290 LsapFreePrivateHeap
231 E5 0001EDB0 LsapFreeString
232 E6 00101A90 LsapGetAccountDomainHandle
233 E7 000E01B0 LsapGetCapeNamesForCap
234 E8 00101AA0 LsapGetGlobalRestrictAnonymous
235 E9 00101AB0 LsapGetHourlyLogLevel
236 EA 0001DD60 LsapGetLogonSessionAccountInfoEx
237 EB 000F7030 LsapGetLookupRestrictIsolatedNameLevel
238 EC 00101AC0 LsapGetPolicyHandle
239 ED 00101AE0 LsapGetWellKnownSid
240 EE 0004AEE0 LsapInitLsa
241 EF 00101B00 LsapInitializeLsaDb
242 F0 000F7040 LsapIsBuiltinDomain
243 F1 00101B80 LsapIsSamOpened
244 F2 000DCF10 LsapOpenSam
245 F3 0002FFC0 LsapQueryClientInfo
246 F4 000A7A50 LsapRemoveTrailingDot
247 F5 0000AAA0 LsapRpcCopySid
248 F6 000043C0 LsapRpcCopyUnicodeString
249 F7 000F7080 LsapRtlValidateControllerTrustedDomain
250 F8 000F7220 LsapRtlValidateControllerTrustedDomainByHandle
251 F9 000BE7E0 LsapSetErrorInfo
252 FA 000DEEB0 LsapSidListSize
253 FB 000A7BC0 LsapTraceEvent
254 FC 0002EE30 LsapTraceEventWithData
255 FD 000A7A90 LsapTruncateUnicodeString
256 FE 0002ED20 LsarClose
257 FF 00102400 LsarCreateSecret
258 100 000FCAD0 LsarDeleteObject
259 101 001012E0 LsarEnumerateTrustedDomainsEx
260 102 00042E10 LsarLookupSids
261 103 000FC000 LsarOpenPolicy
262 104 00030D50 LsarOpenSecret
263 105 00102D90 LsarQueryDomainInformationPolicy
264 106 0002BCE0 LsarQueryInformationPolicy
265 107 000433B0 LsarQuerySecret
266 108 00101450 LsarQueryTrustedDomainInfoByName
267 109 00103D10 LsarRetrievePrivateData
268 10A 000FC380 LsarSetInformationPolicy
269 10B 001026C0 LsarSetSecret
270 10C 001016A0 LsarSetTrustedDomainInfoByName
271 10D 00103DC0 LsarStorePrivateData
2 10E 0005C460 QueryLsaInterface
272 10F 00054F20 ServiceInit
273 110 00042D70 _fgs__LSAPR_TRUSTED_ENUM_BUFFER
274 111 000E14F0 _fgs__LSAPR_TRUSTED_ENUM_BUFFER_EX
275 112 00042DD0 _fgs__LSAPR_TRUST_INFORMATION
276 113 000E15B0 _fgu__LSAPR_TRUSTED_DOMAIN_INFO
Información avanzada sobre funciones que tiene la dll lsasrv.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\lsasrv.dll
File Type: DLL
Section contains the following exports for LSASRV.dll
00000000 characteristics
3A6F852A time date stamp
0.00 version
1 ordinal base
276 number of functions
276 number of names
ordinal hint RVA name
1 0 00054BF0 InitializeLsaExtension
3 1 000F5C50 LsaDbLookupSidChainRequest
4 2 0001D070 LsaIAddNamesToLogonSession
5 3 0001BAF0 LsaIAdjustTokenObjectIntegrity
6 4 00057FC0 LsaIAdtAuditingEnabledByCategory
7 5 000DA140 LsaIAdtAuditingEnabledBySubCategory
8 6 00041630 LsaIAllocateHeap
9 7 000364A0 LsaIAllocateHeapZero
10 8 000C50A0 LsaIAllowProtectedCredLogon
11 9 000DA230 LsaIAuditAccountLogon
12 A 00016D60 LsaIAuditAccountLogonEx
13 B 000DA610 LsaIAuditInitializeParametersAndWriteEvent
14 C 000DA6E0 LsaIAuditKdcEvent
15 D 000DAAC0 LsaIAuditKerberosLogon
16 E 00041980 LsaIAuditLogonEx
17 F 00018110 LsaIAuditLogonUsingExplicitCreds
18 10 0005BF80 LsaIAuditNotifyPackageLoad
19 11 000DAB50 LsaIAuditPasswordAccessEvent
20 12 000DAD40 LsaIAuditReplay
21 13 00030440 LsaIAuditSamEvent
22 14 000C96C0 LsaICallPackage
23 15 0003B6B0 LsaICallPackageEx
24 16 000C9700 LsaICallPackagePassthrough
25 17 0003F040 LsaICancelNotification
26 18 000F7720 LsaIChangeSecretCipherKey
27 19 0001D2E0 LsaICheckProtectedUserByTokenInfo
28 1A 000DCB70 LsaICheckRestrictedMode
29 1B 000F77E0 LsaIClearOldSyskey
30 1C 0003FE20 LsaICryptProtectData
31 1D 000BE4F0 LsaICryptProtectDataEx
32 1E 0003F9B0 LsaICryptUnprotectData
33 1F 000BE5A0 LsaICryptUnprotectDataEx
34 20 000C86D0 LsaIDereferenceCredHandle
35 21 000BE650 LsaIDeriveCredentialKey
36 22 000F7F30 LsaIDsNotifiedObjectChange
37 23 000B6710 LsaIEfsAcceptSmartcardCredentials
38 24 000C9830 LsaIEqualLogonProcessName
39 25 00004150 LsaIEqualSupplementalTokenInfo
40 26 000BA890 LsaIEventWritePackageNoCredential
41 27 0003F850 LsaIEventWritePackageNotCacheLogonUser
42 28 000F7FD0 LsaIFilterNamespace
43 29 000F8F20 LsaIFilterSids
44 2A 000DCB90 LsaIFlushIdentityCacheForSid
45 2B 000F8060 LsaIForestTrustFindMatch
46 2C 000F80C0 LsaIFreeForestTrustInfo
47 2D 00032290 LsaIFreeHeap
48 2E 0003B640 LsaIFreeReturnBuffer
49 2F 0003F1D0 LsaIFreeSupplementalTokenInfo
50 30 000DCC70 LsaIFree_LSAI_PRIVATE_DATA
51 31 000DCCA0 LsaIFree_LSAI_SECRET_ENUM_BUFFER
52 32 000DCD10 LsaIFree_LSAPR_ACCOUNT_ENUM_BUFFER
53 33 000370B0 LsaIFree_LSAPR_CR_CIPHER_VALUE
54 34 000DCD30 LsaIFree_LSAPR_POLICY_DOMAIN_INFORMATION
55 35 0003EF20 LsaIFree_LSAPR_POLICY_INFORMATION
56 36 000DCD60 LsaIFree_LSAPR_PRIVILEGE_ENUM_BUFFER
57 37 000DCC70 LsaIFree_LSAPR_PRIVILEGE_SET
58 38 00042D40 LsaIFree_LSAPR_REFERENCED_DOMAIN_LIST
59 39 000DCD80 LsaIFree_LSAPR_SR_SECURITY_DESCRIPTOR
60 3A 0005B760 LsaIFree_LSAPR_TRANSLATED_NAMES
61 3B 000DCDC0 LsaIFree_LSAPR_TRANSLATED_SIDS
62 3C 000DCDF0 LsaIFree_LSAPR_TRUSTED_DOMAIN_INFO
63 3D 000DCE30 LsaIFree_LSAPR_TRUSTED_ENUM_BUFFER
64 3E 000DCE50 LsaIFree_LSAPR_TRUSTED_ENUM_BUFFER_EX
65 3F 000DCE70 LsaIFree_LSAPR_TRUST_INFORMATION
66 40 000DCD80 LsaIFree_LSAPR_UNICODE_STRING
67 41 000DCDC0 LsaIFree_LSAPR_UNICODE_STRING_BUFFER
68 42 000F99C0 LsaIFree_LSAP_SITENAME_INFO
69 43 000F9A20 LsaIFree_LSAP_SITE_INFO
70 44 000F9AA0 LsaIFree_LSAP_SUBNET_INFO
71 45 000F9A20 LsaIFree_LSAP_UPN_SUFFIXES
72 46 000F8100 LsaIFree_LSA_FOREST_TRUST_COLLISION_INFORMATION
73 47 000F8140 LsaIFree_LSA_FOREST_TRUST_INFORMATION
74 48 00021790 LsaIGetCallInfo
75 49 000A8E30 LsaIGetCcgClient
76 4A 00061400 LsaIGetClientOsInfo
77 4B 000F8180 LsaIGetForestTrustInformation
78 4C 000DB270 LsaIGetLogonGuid
79 4D 000BA9B0 LsaIGetNameFromLuid
80 4E 0003DEF0 LsaIGetNbAndDnsDomainNames
81 4F 0005A010 LsaIGetNego2Package
82 50 000C9890 LsaIGetRemoteCredGuardLogonBuffer
83 51 000C9960 LsaIGetRemoteCredGuardSupplementalCreds
84 52 000F81D0 LsaIGetSiteName
85 53 0003CD60 LsaIGetSupplementalTokenInfo
86 54 000DCBB0 LsaIGetTokenInformationForLocalUser
87 55 0005AB40 LsaIHealthCheck
88 56 000400A0 LsaIImpersonateClient
89 57 000DCEA0 LsaIInitializeNetlogonFuncPtrs
90 58 000A8E40 LsaIIsContainerized
91 59 000F8220 LsaIIsDomainWithinForest
92 5A 000F82C0 LsaIIsDsPaused
93 5B 000A8E50 LsaIIsInEmulatedDomainJoinMode
94 5C 00040180 LsaIIsLastInteractiveLogonInfoEnabled
95 5D 000C5F70 LsaIIsLocalHost
96 5E 000DCEC0 LsaIIsMachineSecureByDefault
97 5F 000C6CB0 LsaIIsSuppressChannelBindingInfo
98 60 000CB850 LsaIIsTargetPrivate
99 61 000F8300 LsaIIsTrustedDomainsEnabled
100 62 000DCBC0 LsaIIsUserMSA
101 63 000F8310 LsaIKerberosRegisterTrustNotification
102 64 0003FB10 LsaILookupUserAccountType
103 65 000F9C90 LsaILookupWellKnownName
104 66 000322F0 LsaIModifyPerformanceCounter
105 67 0003E190 LsaINoConnectedUserPolicy
106 68 00040010 LsaINoMoreWin2KDomain
107 69 000FAE70 LsaINotifyChangeNotification
108 6A 000F8360 LsaINotifyGCStatusChange
109 6B 000F9B50 LsaINotifyNetlogonParametersChangeW
110 6C 000B3EE0 LsaINotifyNewPassword
111 6D 000B3EF0 LsaINotifyPasswordChanged
112 6E 0005BB30 LsaIOpenPolicyTrusted
113 6F 000F83A0 LsaIQueryForestTrustInfo
114 70 000F8400 LsaIQueryForestTrustInformation
115 71 0003FD50 LsaIQueryInformationPolicyTrusted
116 72 0003CCB0 LsaIQueryPackageAttrInLogonSession
117 73 000F8430 LsaIQuerySiteInfo
118 74 000F8480 LsaIQuerySubnetInfo
119 75 000F84D0 LsaIQueryUpnSuffixes
120 76 000C8710 LsaIReferenceCredHandle
121 77 00040040 LsaIRegisterLogonSessionCallback
122 78 000494F0 LsaIRegisterNotification
123 79 00054550 LsaIRegisterPolicyChangeNotificationCallback
124 7A 000DCBE0 LsaIRenewCertificate
125 7B 000F8520 LsaIReplicateClientObject
126 7C 000374D0 LsaIRetrieveCurrentUserSid
127 7D 0004F730 LsaISafeMode
128 7E 000F8580 LsaISamIndicatedDsStarted
129 7F 000DCC00 LsaISanitizeSAMName
130 80 000F85D0 LsaISetClientDnsHostName
131 81 000BAB10 LsaISetLogonGuidInLogonSession
132 82 0003ECE0 LsaISetLogonInfo
133 83 000F7830 LsaISetNewSyskey
134 84 000BAD00 LsaISetPackageAttrInLogonSession
135 85 00041660 LsaISetSupplementalTokenInfo
136 86 000DCF20 LsaISetTokenDacl
137 87 0000ED10 LsaISetUserFlags
138 88 000FCAE0 LsaITransformAuthorizationData
139 89 000FAF10 LsaIUnregisterAllPolicyChangeNotificationCallback
140 8A 000BADB0 LsaIUnregisterLogonSessionCallback
141 8B 000FB040 LsaIUnregisterPolicyChangeNotificationCallback
142 8C 000F8670 LsaIUpdateForestTrustInformation
143 8D 000C5FB0 LsaIUpdateKerbMaxTokenSize
144 8E 00003370 LsaIUpdateLogonSession
145 8F 000DCC10 LsaIUserProfileLoaded
146 90 000C9A20 LsaIValidateTargetInfo
147 91 000F86E0 LsaIVerifyCachability
148 92 000DB3C0 LsaIWriteAuditEvent
149 93 000DB480 LsaIWriteKdcAuthenticationEvent
150 94 0001B040 LsapAdtAuditingEnabledByLogonId
151 95 00017460 LsapAdtAuditingEnabledBySubCategory
152 96 000DE430 LsapAdtAuditingEnabledHint
153 97 00012100 LsapAdtGetCallerProcessInfo
154 98 00017E30 LsapAdtInitParametersArray
155 99 00040AE0 LsapAdtWriteLog
156 9A 000364A0 LsapAllocateLsaHeap
157 9B 000364A0 LsapAllocatePrivateHeap
158 9C 00055E10 LsapAuOpenSam
159 9D 000DEBC0 LsapAuditFailed
160 9E 000FCC90 LsapBuildPrivilegeAuditString
161 9F 00055060 LsapCheckBootMode
162 A0 0002FF00 LsapCloseHandle
163 A1 0000B910 LsapCompareDomainNames
164 A2 00044200 LsapCrServerGetSessionKey
165 A3 000DFFD0 LsapCrServerGetSessionKeySafe
166 A4 0002F520 LsapDbAcquireLockEx
167 A5 00030CE0 LsapDbApplyTransaction
168 A6 0004EC10 LsapDbBuildObjectCaches
169 A7 000FEB60 LsapDbCloseHandle
170 A8 000301E0 LsapDbCloseObject
171 A9 0004F4F0 LsapDbCopyUnicodeAttribute
172 AA 000FFFC0 LsapDbCopyUnicodeAttributeNoAlloc
173 AB 000FED40 LsapDbCreateObject
174 AC 000FF1F0 LsapDbDeleteAttributesObject
175 AD 000FF290 LsapDbDeleteObject
176 AE 0002C710 LsapDbDereferenceHandle
177 AF 0002EEA0 LsapDbDereferenceObject
178 B0 00047040 LsapDbEnumerateSids
179 B1 00100D50 LsapDbEnumerateTrustedDomainsEx
180 B2 00101870 LsapDbExpAcquireReadLockTrustedDomainList
181 B3 001018A0 LsapDbExpAcquireWriteLockTrustedDomainList
182 B4 001018D0 LsapDbExpConvertReadLockTrustedDomainListToExclusive
183 B5 001018F0 LsapDbExpConvertWriteLockTrustedDomainListToShared
184 B6 00101910 LsapDbExpIsCacheBuilding
185 B7 00101930 LsapDbExpIsCacheValid
186 B8 00101950 LsapDbExpIsLockedTrustedDomainList
187 B9 001019A0 LsapDbExpMakeCacheBuilding
188 BA 001019C0 LsapDbExpMakeCacheInvalid
189 BB 001019E0 LsapDbExpMakeCacheValid
190 BC 00101A00 LsapDbExpReleaseLockTrustedDomainList
191 BD 0004FDD0 LsapDbFreeAttributes
192 BE 00100F00 LsapDbFreeTrustedDomainsEx
193 BF 00101A20 LsapDbGetDbObjectTypeName
194 C0 00101A40 LsapDbGetDbPolicyHandle
195 C1 00030EF0 LsapDbGetSecretType
196 C2 00043A00 LsapDbInitializeAttribute
197 C3 000F60A0 LsapDbIsStatusConnectionFailure
198 C4 00005980 LsapDbLookupAddListReferencedDomains
199 C5 000F60D0 LsapDbLookupCreateListReferencedDomains
200 C6 0003DB60 LsapDbLookupGetDomainInfo
201 C7 0000AA30 LsapDbLookupListReferencedDomains
202 C8 000F66F0 LsapDbLookupMergeDisjointReferencedDomains
203 C9 000F6990 LsapDbLookupNameChainRequest
204 CA 000FA1C0 LsapDbLookupNamesInPrimaryDomain
205 CB 00100750 LsapDbLookupSidsInPrimaryDomain
206 CC 00100030 LsapDbMakeGuidAttribute
207 CD 00100090 LsapDbMakeSidAttribute
208 CE 00100120 LsapDbMakeUnicodeAttribute
209 CF 0002D9F0 LsapDbOpenObject
210 D0 0002F700 LsapDbQueryInformationPolicy
211 D1 0004FF20 LsapDbReadAttribute
212 D2 000438B0 LsapDbReadAttributesObject
213 D3 0002BAE0 LsapDbReferenceObject
214 D4 0002D940 LsapDbReleaseLockEx
215 D5 00101B90 LsapDbSecretIsMachineAcc
216 D6 00030390 LsapDbSidToLogicalNameObject
217 D7 001010A0 LsapDbSlowEnumerateTrustedDomains
218 D8 000FA700 LsapDbUpdateCountCompUnmappedNames
219 D9 0002FAE0 LsapDbVerifyHandle
220 DA 00101A50 LsapDbVerifyInfoQueryTrustedDomain
221 DB 00101A70 LsapDbVerifyInfoSetTrustedDomain
222 DC 000FF670 LsapDbWriteAttributesObject
223 DD 000BC4C0 LsapDomainRenameHandlerForLogonSessions
224 DE 000F8750 LsapDsInitializeDsStateInfo
225 DF 000F8790 LsapDsUnitializeDsStateInfo
226 E0 000DCED0 LsapDssetupInitializeGetPrimaryDomainInformationOpState
227 E1 0001F540 LsapDuplicateSid
228 E2 0001E7F0 LsapDuplicateString
229 E3 00032290 LsapFreeLsaHeap
230 E4 00032290 LsapFreePrivateHeap
231 E5 0001EDB0 LsapFreeString
232 E6 00101A90 LsapGetAccountDomainHandle
233 E7 000E01B0 LsapGetCapeNamesForCap
234 E8 00101AA0 LsapGetGlobalRestrictAnonymous
235 E9 00101AB0 LsapGetHourlyLogLevel
236 EA 0001DD60 LsapGetLogonSessionAccountInfoEx
237 EB 000F7030 LsapGetLookupRestrictIsolatedNameLevel
238 EC 00101AC0 LsapGetPolicyHandle
239 ED 00101AE0 LsapGetWellKnownSid
240 EE 0004AEE0 LsapInitLsa
241 EF 00101B00 LsapInitializeLsaDb
242 F0 000F7040 LsapIsBuiltinDomain
243 F1 00101B80 LsapIsSamOpened
244 F2 000DCF10 LsapOpenSam
245 F3 0002FFC0 LsapQueryClientInfo
246 F4 000A7A50 LsapRemoveTrailingDot
247 F5 0000AAA0 LsapRpcCopySid
248 F6 000043C0 LsapRpcCopyUnicodeString
249 F7 000F7080 LsapRtlValidateControllerTrustedDomain
250 F8 000F7220 LsapRtlValidateControllerTrustedDomainByHandle
251 F9 000BE7E0 LsapSetErrorInfo
252 FA 000DEEB0 LsapSidListSize
253 FB 000A7BC0 LsapTraceEvent
254 FC 0002EE30 LsapTraceEventWithData
255 FD 000A7A90 LsapTruncateUnicodeString
256 FE 0002ED20 LsarClose
257 FF 00102400 LsarCreateSecret
258 100 000FCAD0 LsarDeleteObject
259 101 001012E0 LsarEnumerateTrustedDomainsEx
260 102 00042E10 LsarLookupSids
261 103 000FC000 LsarOpenPolicy
262 104 00030D50 LsarOpenSecret
263 105 00102D90 LsarQueryDomainInformationPolicy
264 106 0002BCE0 LsarQueryInformationPolicy
265 107 000433B0 LsarQuerySecret
266 108 00101450 LsarQueryTrustedDomainInfoByName
267 109 00103D10 LsarRetrievePrivateData
268 10A 000FC380 LsarSetInformationPolicy
269 10B 001026C0 LsarSetSecret
270 10C 001016A0 LsarSetTrustedDomainInfoByName
271 10D 00103DC0 LsarStorePrivateData
2 10E 0005C460 QueryLsaInterface
272 10F 00054F20 ServiceInit
273 110 00042D70 _fgs__LSAPR_TRUSTED_ENUM_BUFFER
274 111 000E14F0 _fgs__LSAPR_TRUSTED_ENUM_BUFFER_EX
275 112 00042DD0 _fgs__LSAPR_TRUST_INFORMATION
276 113 000E15B0 _fgu__LSAPR_TRUSTED_DOMAIN_INFO
Summary
A000 .data
1000 .didat
B000 .pdata
4B000 .rdata
2000 .reloc
8000 .rsrc
131000 .text
Integridad de la dll lsasrv.dll
Algorithm Hash Path
--------- ---- ----
SHA256 9FE2292303E6ECBF2CBD1595D115686668A044EC226372D84B24F9A49CB230BB C:\Windows\System32\lsasrv.dll
Detalles sobre el fichero dll lsasrv.dll
PSPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32\lsasrv.dll
PSParentPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32
PSChildName : lsasrv.dll
PSDrive : C
PSProvider : Microsoft.PowerShell.Core\FileSystem
PSIsContainer : False
Mode : -a----
VersionInfo : File: C:\Windows\System32\lsasrv.dll
InternalName: lsasrv.dll
OriginalFilename: lsasrv.dll.mui
FileVersion: 10.0.19041.561 (WinBuild.160101.0800)
FileDescription: DLL de servidor LSA
Product: Sistema operativo Microsoft® Windows®
ProductVersion: 10.0.19041.561
Debug: False
Patched: False
PreRelease: False
PrivateBuild: False
SpecialBuild: False
Language: Español (España, internacional)
BaseName : lsasrv
Target : {C:\Windows\WinSxS\amd64_microsoft-windows-lsa_31bf3856ad364e35_10.0.19041.610_none_845e41b0bb8793f7\lsasrv.dll}
LinkType : HardLink
Name : lsasrv.dll
Length : 1649664
DirectoryName : C:\Windows\System32
Directory : C:\Windows\System32
IsReadOnly : False
Exists : True
FullName : C:\Windows\System32\lsasrv.dll
Extension : .dll
CreationTime : 29/11/2020 11:42:37
CreationTimeUtc : 29/11/2020 10:42:37
LastAccessTime : 03/12/2020 12:22:49
LastAccessTimeUtc : 03/12/2020 11:22:49
LastWriteTime : 29/11/2020 11:42:37
LastWriteTimeUtc : 29/11/2020 10:42:37
Attributes : Archive
Procesos que utilizan la dll lsasrv.dll