ETWlog.dll
Description: ETW Session Library
Authors: © Microsoft Corporation. All rights reserved.
Version: 25.209.1026.2
Architecture: 64-bit
Operating System: Windows
SHA256: 3ac023b24be42b6656b79ba8bfb392c5
File Size: 30.4 KB
Uploaded At: Dec. 4, 2025, 6:14 a.m.
Views: 7
Exported Functions
- ETWCreateSession (Ordinal: 1, Address: 0x1050)
- ETWDisableProvider (Ordinal: 2, Address: 0x14b0)
- ETWEnableProvider (Ordinal: 3, Address: 0x1320)
- ETWInitialize (Ordinal: 4, Address: 0x19a0)
- ETWInitializeAndEnableProvider (Ordinal: 5, Address: 0x1510)
- ETWIsProviderEnabled (Ordinal: 6, Address: 0x1bb0)
- ETWLogError (Ordinal: 7, Address: 0x1ad0)
- ETWLogEvent (Ordinal: 8, Address: 0x1a80)
- ETWLogEventWithData (Ordinal: 9, Address: 0x1a20)
- ETWStopSession (Ordinal: 10, Address: 0x12b0)
- ETWUninitialize (Ordinal: 11, Address: 0x19f0)
- ETWUninitializeAndDisableProvider (Ordinal: 12, Address: 0x1580)
Imported DLLs & Functions
ADVAPI32.dll
- ControlTraceW (Address: 0x180004028)
- EnableTraceEx (Address: 0x180004030)
- EventProviderEnabled (Address: 0x180004010)
- EventRegister (Address: 0x180004008)
- EventUnregister (Address: 0x180004018)
- EventWrite (Address: 0x180004000)
- EventWriteString (Address: 0x180004020)
- StartTraceW (Address: 0x180004038)
api-ms-win-crt-heap-l1-1-0.dll
- _callnewh (Address: 0x180004150)
- _recalloc (Address: 0x180004158)
- free (Address: 0x180004140)
- malloc (Address: 0x180004148)
api-ms-win-crt-runtime-l1-1-0.dll
- _cexit (Address: 0x180004178)
- _configure_narrow_argv (Address: 0x180004190)
- _crt_atexit (Address: 0x180004168)
- _execute_onexit_table (Address: 0x180004170)
- _initialize_narrow_environment (Address: 0x180004188)
- _initialize_onexit_table (Address: 0x180004180)
- _initterm (Address: 0x1800041b0)
- _initterm_e (Address: 0x1800041a0)
- _register_onexit_function (Address: 0x1800041a8)
- _seh_filter_dll (Address: 0x180004198)
KERNEL32.dll
- DeleteCriticalSection (Address: 0x180004068)
- DisableThreadLibraryCalls (Address: 0x1800040d8)
- GetCurrentProcess (Address: 0x180004098)
- GetCurrentProcessId (Address: 0x1800040c0)
- GetCurrentThreadId (Address: 0x1800040c8)
- GetLastError (Address: 0x180004070)
- GetSystemTimeAsFileTime (Address: 0x1800040e0)
- InitializeCriticalSectionEx (Address: 0x180004080)
- InitializeSListHead (Address: 0x1800040d0)
- IsDebuggerPresent (Address: 0x180004060)
- IsProcessorFeaturePresent (Address: 0x1800040b0)
- MultiByteToWideChar (Address: 0x180004088)
- OutputDebugStringW (Address: 0x180004058)
- QueryPerformanceCounter (Address: 0x1800040b8)
- RtlCaptureContext (Address: 0x1800040a0)
- RtlLookupFunctionEntry (Address: 0x180004048)
- RtlVirtualUnwind (Address: 0x180004078)
- SetUnhandledExceptionFilter (Address: 0x180004090)
- TerminateProcess (Address: 0x1800040a8)
- UnhandledExceptionFilter (Address: 0x180004050)
VCRUNTIME140_1.dll
- __CxxFrameHandler4 (Address: 0x180004130)
VCRUNTIME140.dll
- __C_specific_handler (Address: 0x180004108)
- __std_exception_copy (Address: 0x1800040f8)
- __std_exception_destroy (Address: 0x1800040f0)
- __std_type_info_destroy_list (Address: 0x180004118)
- _CxxThrowException (Address: 0x180004110)
- memcpy (Address: 0x180004100)
- memset (Address: 0x180004120)