¿Para qué sirve la dll ttdrecord.dll?
Time Travel Debugging Recording ManagerDependencias de la dll ttdrecord.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\ttdrecord.dll
File Type: DLL
Image has the following dependencies:
api-ms-win-crt-stdio-l1-1-0.dll
api-ms-win-crt-string-l1-1-0.dll
api-ms-win-crt-runtime-l1-1-0.dll
api-ms-win-crt-heap-l1-1-0.dll
api-ms-win-crt-math-l1-1-0.dll
api-ms-win-crt-convert-l1-1-0.dll
ntdll.dll
RPCRT4.dll
api-ms-win-core-libraryloader-l1-1-0.dll
api-ms-win-core-synch-l1-1-0.dll
api-ms-win-core-heap-l1-1-0.dll
api-ms-win-core-errorhandling-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-1.dll
api-ms-win-core-synch-l1-2-0.dll
api-ms-win-core-localization-l1-2-0.dll
api-ms-win-core-debug-l1-1-0.dll
api-ms-win-core-handle-l1-1-0.dll
api-ms-win-core-psapi-l1-1-0.dll
api-ms-win-security-base-l1-1-0.dll
api-ms-win-security-sddl-l1-1-0.dll
api-ms-win-core-threadpool-l1-2-0.dll
api-ms-win-core-com-l1-1-0.dll
api-ms-win-core-file-l1-1-0.dll
api-ms-win-core-sysinfo-l1-1-0.dll
api-ms-win-core-sysinfo-l1-2-0.dll
api-ms-win-core-file-l2-1-0.dll
api-ms-win-core-debug-l1-1-1.dll
api-ms-win-core-registry-l1-1-0.dll
api-ms-win-service-management-l1-1-0.dll
api-ms-win-service-management-l2-1-0.dll
OLEAUT32.dll
api-ms-win-core-memory-l1-1-0.dll
api-ms-win-core-version-l1-1-0.dll
api-ms-win-core-processenvironment-l1-1-0.dll
api-ms-win-core-console-l1-1-0.dll
USERENV.dll
api-ms-win-eventing-provider-l1-1-0.dll
CRYPT32.dll
api-ms-win-core-wow64-l1-1-0.dll
api-ms-win-security-lsalookup-l2-1-0.dll
api-ms-win-core-profile-l1-1-0.dll
api-ms-win-core-interlocked-l1-1-0.dll
api-ms-win-core-fibers-l1-1-0.dll
api-ms-win-core-util-l1-1-0.dll
api-ms-win-core-kernel32-legacy-l1-1-0.dll
api-ms-win-security-provider-l1-1-0.dll
api-ms-win-core-toolhelp-l1-1-0.dll
api-ms-win-core-heap-obsolete-l1-1-0.dll
api-ms-win-core-kernel32-legacy-l1-1-1.dll
api-ms-win-service-core-l1-1-1.dll
api-ms-win-core-string-l1-1-0.dll
api-ms-win-core-io-l1-1-0.dll
api-ms-win-service-winsvc-l1-1-0.dll
api-ms-win-core-registry-l2-1-0.dll
api-ms-win-core-delayload-l1-1-0.dll
Image has the following delay load dependencies:
ext-ms-win-session-wtsapi32-l1-1-0.dll
Summary
2000 .data
1000 .didat
5000 .pdata
2A000 .rdata
1000 .reloc
2000 .rsrc
6A000 .text
Funciones que tiene la dll ttdrecord.dll
1 0 0003A3A0 ExecuteTTTracerCommandLine
Información avanzada sobre funciones que tiene la dll ttdrecord.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\ttdrecord.dll
File Type: DLL
Section contains the following exports for TTDRecord.dll
00000000 characteristics
425DD635 time date stamp
0.00 version
1 ordinal base
1 number of functions
1 number of names
ordinal hint RVA name
1 0 0003A3A0 ExecuteTTTracerCommandLine
Summary
2000 .data
1000 .didat
5000 .pdata
2A000 .rdata
1000 .reloc
2000 .rsrc
6A000 .text
Integridad de la dll ttdrecord.dll
Algorithm Hash Path
--------- ---- ----
SHA256 41DC52EE8599A4246AA6CF115B28A4C4A3747537828FA757AB50DACA0425D5F7 C:\Windows\System32\ttdrecord.dll
Detalles sobre el fichero dll ttdrecord.dll
PSPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32\ttdrecord.dll
PSParentPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32
PSChildName : ttdrecord.dll
PSDrive : C
PSProvider : Microsoft.PowerShell.Core\FileSystem
PSIsContainer : False
Mode : -a----
VersionInfo : File: C:\Windows\System32\ttdrecord.dll
InternalName: TTDRecord.dll
OriginalFilename: TTDRecord.dll
FileVersion: 10.0.19041.1 (WinBuild.160101.0800)
FileDescription: Time Travel Debugging Recording Manager
Product: Microsoft® Windows® Operating System
ProductVersion: 10.0.19041.1
Debug: False
Patched: False
PreRelease: False
PrivateBuild: False
SpecialBuild: False
Language: Inglés (Estados Unidos)
BaseName : ttdrecord
Target : {C:\Windows\WinSxS\amd64_microsoft-windows-t..eldebugger-recorder_31bf3856ad364e35_10.0.19041.1_none_1a55178fad503598\ttdrecord.dl
l}
LinkType : HardLink
Name : ttdrecord.dll
Length : 646856
DirectoryName : C:\Windows\System32
Directory : C:\Windows\System32
IsReadOnly : False
Exists : True
FullName : C:\Windows\System32\ttdrecord.dll
Extension : .dll
CreationTime : 07/12/2019 10:08:33
CreationTimeUtc : 07/12/2019 9:08:33
LastAccessTime : 03/12/2020 15:56:44
LastAccessTimeUtc : 03/12/2020 14:56:44
LastWriteTime : 07/12/2019 10:08:33
LastWriteTimeUtc : 07/12/2019 9:08:33
Attributes : Archive
Procesos que utilizan la dll ttdrecord.dll