MSPhotography.dll
Description: MS Photography DLL
Authors: © Microsoft Corporation. All rights reserved.
Version: 10.0.19041.3636
Architecture: 32-bit
Operating System: Windows NT
SHA256: 733650d96bf3174329682fad36d46a82
File Size: 1.4 MB
Uploaded At: Dec. 1, 2025, 8:01 a.m.
Views: 17
Security Warning
This file has been flagged as potentially dangerous.
Reason: Detected potentially dangerous functions used for process injection: OpenProcess
Exported Functions
- DllGetActivationFactory (Ordinal: 1, Address: 0xe940)
- DllCanUnloadNow (Ordinal: 2, Address: 0xe960)
- DllGetClassObject (Ordinal: 3, Address: 0xe980)
Imported DLLs & Functions
api-ms-win-core-com-l1-1-0.dll
- CoCreateFreeThreadedMarshaler (Address: 0x10157010)
- CoCreateInstance (Address: 0x10157014)
- CoMarshalInterface (Address: 0x10157028)
- CoReleaseMarshalData (Address: 0x10157024)
- CoTaskMemAlloc (Address: 0x10157020)
- CoTaskMemFree (Address: 0x10157018)
- CoWaitForMultipleHandles (Address: 0x1015701c)
- CreateStreamOnHGlobal (Address: 0x1015702c)
api-ms-win-core-com-l1-1-1.dll
- RoGetAgileReference (Address: 0x10157034)
api-ms-win-core-debug-l1-1-0.dll
- DebugBreak (Address: 0x10157040)
- IsDebuggerPresent (Address: 0x1015703c)
api-ms-win-core-delayload-l1-1-0.dll
- DelayLoadFailureHook (Address: 0x10157048)
api-ms-win-core-delayload-l1-1-1.dll
- ResolveDelayLoadedAPI (Address: 0x10157050)
api-ms-win-core-errorhandling-l1-1-0.dll
- GetLastError (Address: 0x10157058)
- RaiseException (Address: 0x10157064)
- SetLastError (Address: 0x10157060)
- SetUnhandledExceptionFilter (Address: 0x1015705c)
- UnhandledExceptionFilter (Address: 0x10157068)
api-ms-win-core-handle-l1-1-0.dll
- CloseHandle (Address: 0x10157070)
api-ms-win-core-heap-l2-1-0.dll
- LocalFree (Address: 0x10157078)
api-ms-win-core-libraryloader-l1-2-0.dll
- DisableThreadLibraryCalls (Address: 0x10157080)
- FreeLibrary (Address: 0x10157088)
- GetModuleFileNameW (Address: 0x1015708c)
- GetModuleHandleExW (Address: 0x10157084)
api-ms-win-core-memory-l1-1-0.dll
- CreateFileMappingW (Address: 0x10157094)
- MapViewOfFile (Address: 0x10157098)
- UnmapViewOfFile (Address: 0x1015709c)
api-ms-win-core-processthreads-l1-1-0.dll
- GetCurrentProcess (Address: 0x101570b0)
- GetCurrentProcessId (Address: 0x101570a4)
- GetCurrentThreadId (Address: 0x101570b4)
- OpenProcessToken (Address: 0x101570a8)
- TerminateProcess (Address: 0x101570b8)
- TlsGetValue (Address: 0x101570bc)
- TlsSetValue (Address: 0x101570ac)
api-ms-win-core-processthreads-l1-1-1.dll
- IsProcessorFeaturePresent (Address: 0x101570c8)
- OpenProcess (Address: 0x101570c4)
api-ms-win-core-profile-l1-1-0.dll
- QueryPerformanceCounter (Address: 0x101570d0)
- QueryPerformanceFrequency (Address: 0x101570d4)
api-ms-win-core-registry-l1-1-0.dll
- RegGetValueW (Address: 0x101570dc)
api-ms-win-core-synch-l1-1-0.dll
- AcquireSRWLockExclusive (Address: 0x1015710c)
- AcquireSRWLockShared (Address: 0x101570ec)
- CreateEventExW (Address: 0x10157114)
- CreateEventW (Address: 0x10157104)
- CreateMutexW (Address: 0x101570fc)
- DeleteCriticalSection (Address: 0x101570f0)
- EnterCriticalSection (Address: 0x1015712c)
- InitializeCriticalSection (Address: 0x101570e8)
- InitializeCriticalSectionAndSpinCount (Address: 0x101570f4)
- InitializeCriticalSectionEx (Address: 0x10157120)
- InitializeSRWLock (Address: 0x101570f8)
- LeaveCriticalSection (Address: 0x10157128)
- ReleaseMutex (Address: 0x1015711c)
- ReleaseSRWLockExclusive (Address: 0x10157100)
- ReleaseSRWLockShared (Address: 0x101570e4)
- ResetEvent (Address: 0x10157118)
- SetEvent (Address: 0x10157110)
- WaitForMultipleObjectsEx (Address: 0x10157124)
- WaitForSingleObjectEx (Address: 0x10157108)
api-ms-win-core-synch-l1-2-0.dll
- InitOnceExecuteOnce (Address: 0x1015713c)
- Sleep (Address: 0x10157134)
- SleepConditionVariableSRW (Address: 0x10157140)
- WakeAllConditionVariable (Address: 0x10157138)
api-ms-win-core-sysinfo-l1-1-0.dll
- GetSystemTimeAsFileTime (Address: 0x10157150)
- GetTickCount (Address: 0x1015714c)
- GetTickCount64 (Address: 0x10157148)
api-ms-win-core-sysinfo-l1-2-0.dll
- GetNativeSystemInfo (Address: 0x10157158)
api-ms-win-core-threadpool-l1-2-0.dll
- CloseThreadpoolWork (Address: 0x10157160)
api-ms-win-core-util-l1-1-0.dll
- DecodePointer (Address: 0x1015716c)
- EncodePointer (Address: 0x10157168)
api-ms-win-core-winrt-error-l1-1-0.dll
- GetRestrictedErrorInfo (Address: 0x10157184)
- RoOriginateError (Address: 0x10157174)
- RoOriginateErrorW (Address: 0x1015717c)
- RoTransformError (Address: 0x10157178)
- SetRestrictedErrorInfo (Address: 0x10157180)
api-ms-win-core-winrt-error-l1-1-1.dll
- IsErrorPropagationEnabled (Address: 0x1015718c)
- RoGetMatchingRestrictedErrorInfo (Address: 0x10157194)
- RoReportFailedDelegate (Address: 0x10157190)
api-ms-win-core-winrt-l1-1-0.dll
- RoActivateInstance (Address: 0x101571a0)
- RoGetActivationFactory (Address: 0x1015719c)
api-ms-win-core-winrt-string-l1-1-0.dll
- WindowsCreateString (Address: 0x101571b8)
- WindowsCreateStringReference (Address: 0x101571ac)
- WindowsDeleteString (Address: 0x101571b0)
- WindowsDuplicateString (Address: 0x101571b4)
- WindowsGetStringRawBuffer (Address: 0x101571c0)
- WindowsIsStringEmpty (Address: 0x101571a8)
- WindowsStringHasEmbeddedNull (Address: 0x101571bc)
api-ms-win-eventing-classicprovider-l1-1-0.dll
- GetTraceEnableFlags (Address: 0x101571d8)
- GetTraceEnableLevel (Address: 0x101571d0)
- GetTraceLoggerHandle (Address: 0x101571d4)
- RegisterTraceGuidsW (Address: 0x101571c8)
- TraceMessage (Address: 0x101571dc)
- UnregisterTraceGuids (Address: 0x101571cc)
api-ms-win-eventing-provider-l1-1-0.dll
- EventRegister (Address: 0x101571ec)
- EventSetInformation (Address: 0x101571e4)
- EventUnregister (Address: 0x101571f0)
- EventWriteTransfer (Address: 0x101571e8)
api-ms-win-security-base-l1-1-0.dll
- GetTokenInformation (Address: 0x101571f8)
msvcrt.dll
- __CxxFrameHandler3 (Address: 0x10157270)
- __dllonexit (Address: 0x10157260)
- _aligned_free (Address: 0x10157254)
- _aligned_malloc (Address: 0x10157250)
- _amsg_exit (Address: 0x10157284)
- _callnewh (Address: 0x1015720c)
- _CIacos (Address: 0x101572a0)
- _CIatan (Address: 0x101572a4)
- _CIatan2 (Address: 0x101572a8)
- _CIexp (Address: 0x101572ac)
- _CIlog (Address: 0x101572b0)
- _CIpow (Address: 0x101572b4)
- _CIsin (Address: 0x101572b8)
- _CIsqrt (Address: 0x101572bc)
- _CxxThrowException (Address: 0x10157224)
- _except_handler4_common (Address: 0x10157278)
- _ftol2 (Address: 0x101572c0)
- _ftol2_sse (Address: 0x101572c4)
- _initterm (Address: 0x10157244)
- _lock (Address: 0x10157248)
- _onexit (Address: 0x10157268)
- _purecall (Address: 0x10157298)
- _unlock (Address: 0x1015725c)
- _wcslwr_s (Address: 0x10157294)
- _XcptFilter (Address: 0x10157288)
- ??_V@YAXPAX@Z (Address: 0x10157238)
- ??0exception@@QAE@ABQBD@Z (Address: 0x10157210)
- ??0exception@@QAE@ABQBDH@Z (Address: 0x10157214)
- ??0exception@@QAE@ABV0@@Z (Address: 0x10157218)
- ??1exception@@UAE@XZ (Address: 0x1015721c)
- ??1type_info@@UAE@XZ (Address: 0x10157234)
- ??3@YAXPAX@Z (Address: 0x10157258)
- ?terminate@@YAXXZ (Address: 0x10157230)
- ?what@exception@@UBEPBDXZ (Address: 0x10157220)
- ceil (Address: 0x101572c8)
- floor (Address: 0x101572cc)
- free (Address: 0x10157280)
- malloc (Address: 0x1015727c)
- memcmp (Address: 0x1015729c)
- memcpy (Address: 0x10157228)
- memmove (Address: 0x1015722c)
- memmove_s (Address: 0x10157240)
- memset (Address: 0x101572d0)
- printf (Address: 0x10157200)
- qsort (Address: 0x1015724c)
- rand (Address: 0x10157264)
- realloc (Address: 0x1015723c)
- srand (Address: 0x1015726c)
- strncpy_s (Address: 0x10157204)
- strnlen (Address: 0x10157208)
- vswprintf_s (Address: 0x10157290)
- wcsncpy_s (Address: 0x10157274)
- wcsstr (Address: 0x1015728c)
RTWorkQ.DLL
- RtwqCancelDeadline (Address: 0x10157000)
- RtwqSetDeadline (Address: 0x10157008)
- RtwqSetLongRunning (Address: 0x10157004)