¿Para qué sirve la dll weretw.dll?
WERETW.DLLDependencias de la dll weretw.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\weretw.dll
File Type: DLL
Image has the following dependencies:
msvcrt.dll
OLEAUT32.dll
api-ms-win-core-synch-l1-1-0.dll
api-ms-win-core-errorhandling-l1-1-0.dll
api-ms-win-core-com-l1-1-0.dll
api-ms-win-core-string-l1-1-0.dll
api-ms-win-core-processenvironment-l1-1-0.dll
api-ms-win-core-synch-l1-2-0.dll
api-ms-win-core-profile-l1-1-0.dll
api-ms-win-core-processthreads-l1-1-0.dll
api-ms-win-core-sysinfo-l1-1-0.dll
api-ms-win-core-rtlsupport-l1-1-0.dll
api-ms-win-core-debug-l1-1-0.dll
api-ms-win-eventing-consumer-l1-1-0.dll
api-ms-win-eventing-classicprovider-l1-1-0.dll
api-ms-win-eventing-controller-l1-1-0.dll
api-ms-win-core-libraryloader-l1-2-0.dll
api-ms-win-core-registry-l1-1-0.dll
api-ms-win-core-timezone-l1-1-0.dll
api-ms-win-core-libraryloader-l1-2-1.dll
api-ms-win-core-file-l1-1-0.dll
api-ms-win-core-file-l1-2-0.dll
api-ms-win-core-handle-l1-1-0.dll
api-ms-win-core-memory-l1-1-0.dll
api-ms-win-core-wow64-l1-1-0.dll
api-ms-win-core-version-l1-1-0.dll
api-ms-win-eventing-provider-l1-1-0.dll
api-ms-win-core-file-l2-1-2.dll
bcrypt.dll
api-ms-win-core-localization-l1-2-0.dll
api-ms-win-core-heap-l1-1-0.dll
ntdll.dll
Summary
3000 .data
2000 .pdata
D000 .rdata
1000 .reloc
1000 .rsrc
2A000 .text
Funciones que tiene la dll weretw.dll
1 0 00001CB0 WerMergeEtl
2 1 00001D30 WerMergeEtlEx
Información avanzada sobre funciones que tiene la dll weretw.dll
Microsoft (R) COFF/PE Dumper Version 14.16.27034.0
Copyright (C) Microsoft Corporation. All rights reserved.
Dump of file C:\Windows\System32\weretw.dll
File Type: DLL
Section contains the following exports for WerEtw.dll
00000000 characteristics
632C8D3D time date stamp
0.00 version
1 ordinal base
2 number of functions
2 number of names
ordinal hint RVA name
1 0 00001CB0 WerMergeEtl
2 1 00001D30 WerMergeEtlEx
Summary
3000 .data
2000 .pdata
D000 .rdata
1000 .reloc
1000 .rsrc
2A000 .text
Integridad de la dll weretw.dll
Algorithm Hash Path
--------- ---- ----
SHA256 5B9379E8EB259DE2A4C0EE6B6BA20F90789C2735546B2AA754547CB3776086FE C:\Windows\System32\weretw.dll
Detalles sobre el fichero dll weretw.dll
PSPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32\weretw.dll
PSParentPath : Microsoft.PowerShell.Core\FileSystem::C:\Windows\System32
PSChildName : weretw.dll
PSDrive : C
PSProvider : Microsoft.PowerShell.Core\FileSystem
PSIsContainer : False
Mode : -a----
VersionInfo : File: C:\Windows\System32\weretw.dll
InternalName: WERETW.DLL
OriginalFilename: WERETW.DLL
FileVersion: 10.0.19041.630 (WinBuild.160101.0800)
FileDescription: WERETW.DLL
Product: Microsoft® Windows® Operating System
ProductVersion: 10.0.19041.630
Debug: False
Patched: False
PreRelease: False
PrivateBuild: False
SpecialBuild: False
Language: Inglés (Estados Unidos)
BaseName : weretw
Target : {C:\Windows\WinSxS\amd64_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.19041.630_none_fe74c92c64b0cf8c\weretw.dll}
LinkType : HardLink
Name : weretw.dll
Length : 253016
DirectoryName : C:\Windows\System32
Directory : C:\Windows\System32
IsReadOnly : False
Exists : True
FullName : C:\Windows\System32\weretw.dll
Extension : .dll
CreationTime : 29/11/2020 11:42:38
CreationTimeUtc : 29/11/2020 10:42:38
LastAccessTime : 03/12/2020 16:44:20
LastAccessTimeUtc : 03/12/2020 15:44:20
LastWriteTime : 29/11/2020 11:42:38
LastWriteTimeUtc : 29/11/2020 10:42:38
Attributes : Archive
Procesos que utilizan la dll weretw.dll