NetEventPacketCapture.dll

Description: NetEvent Packet Capture Provider

Authors: © Microsoft Corporation. All rights reserved.

Version: 10.0.19041.5794

Architecture: 64-bit

Operating System: Windows NT

SHA256: ef7de290d7541a4439948556bc5d64a4

File Size: 296.0 KB

Uploaded At: Dec. 1, 2025, 7:51 a.m.

Views: 5

Exported Functions

  • DllCanUnloadNow (Ordinal: 1, Address: 0x49f0)
  • DllGetClassObject (Ordinal: 2, Address: 0x4a30)
  • DllMain (Ordinal: 3, Address: 0x45f0)
  • DllRegisterServer (Ordinal: 4, Address: 0x4950)
  • DllUnregisterServer (Ordinal: 5, Address: 0x49a0)
  • GetProviderClassID (Ordinal: 6, Address: 0x4740)
  • MI_Main (Ordinal: 7, Address: 0x2c90)

Imported DLLs & Functions

api-ms-win-core-com-l1-1-0.dll
  • CoCreateGuid (Address: 0x1800355b8)
  • CoCreateInstance (Address: 0x1800355d0)
  • CoInitializeEx (Address: 0x1800355c8)
  • CoUninitialize (Address: 0x1800355c0)
  • StringFromGUID2 (Address: 0x1800355b0)
api-ms-win-core-debug-l1-1-0.dll
  • DebugBreak (Address: 0x1800355f0)
  • IsDebuggerPresent (Address: 0x1800355e8)
  • OutputDebugStringW (Address: 0x1800355e0)
api-ms-win-core-errorhandling-l1-1-0.dll
  • GetLastError (Address: 0x180035600)
  • SetLastError (Address: 0x180035610)
  • SetUnhandledExceptionFilter (Address: 0x180035618)
  • UnhandledExceptionFilter (Address: 0x180035608)
api-ms-win-core-file-l1-1-0.dll
  • CreateFileW (Address: 0x180035628)
api-ms-win-core-handle-l1-1-0.dll
  • CloseHandle (Address: 0x180035638)
api-ms-win-core-heap-l1-1-0.dll
  • GetProcessHeap (Address: 0x180035650)
  • HeapAlloc (Address: 0x180035658)
  • HeapFree (Address: 0x180035648)
api-ms-win-core-interlocked-l1-1-0.dll
  • InitializeSListHead (Address: 0x180035668)
api-ms-win-core-io-l1-1-0.dll
  • DeviceIoControl (Address: 0x180035680)
  • GetOverlappedResult (Address: 0x180035678)
api-ms-win-core-libraryloader-l1-2-0.dll
  • DisableThreadLibraryCalls (Address: 0x1800356b8)
  • FreeLibrary (Address: 0x1800356c0)
  • GetModuleFileNameA (Address: 0x1800356b0)
  • GetModuleHandleExW (Address: 0x180035698)
  • GetModuleHandleW (Address: 0x180035690)
  • GetProcAddress (Address: 0x1800356a0)
  • LoadLibraryExW (Address: 0x1800356a8)
api-ms-win-core-localization-l1-2-0.dll
  • FormatMessageW (Address: 0x1800356d0)
api-ms-win-core-processenvironment-l1-1-0.dll
  • ExpandEnvironmentStringsW (Address: 0x1800356e0)
api-ms-win-core-processthreads-l1-1-0.dll
  • CreateProcessW (Address: 0x1800356f0)
  • GetCurrentProcess (Address: 0x180035708)
  • GetCurrentProcessId (Address: 0x180035700)
  • GetCurrentThreadId (Address: 0x1800356f8)
  • GetExitCodeProcess (Address: 0x180035718)
  • TerminateProcess (Address: 0x180035710)
api-ms-win-core-processthreads-l1-1-1.dll
  • IsProcessorFeaturePresent (Address: 0x180035728)
api-ms-win-core-profile-l1-1-0.dll
  • QueryPerformanceCounter (Address: 0x180035738)
api-ms-win-core-registry-l1-1-0.dll
  • RegCloseKey (Address: 0x180035768)
  • RegCreateKeyExW (Address: 0x180035770)
  • RegDeleteTreeW (Address: 0x180035758)
  • RegEnumKeyExW (Address: 0x180035748)
  • RegQueryValueExW (Address: 0x180035750)
  • RegSetValueExW (Address: 0x180035760)
api-ms-win-core-rtlsupport-l1-1-0.dll
  • RtlCaptureContext (Address: 0x180035780)
  • RtlLookupFunctionEntry (Address: 0x180035788)
  • RtlVirtualUnwind (Address: 0x180035790)
api-ms-win-core-shlwapi-legacy-l1-1-0.dll
  • PathIsRelativeW (Address: 0x1800357a0)
api-ms-win-core-synch-l1-1-0.dll
  • AcquireSRWLockExclusive (Address: 0x180035838)
  • AcquireSRWLockShared (Address: 0x180035828)
  • CreateEventA (Address: 0x1800357b0)
  • CreateEventW (Address: 0x1800357d0)
  • CreateMutexExW (Address: 0x1800357b8)
  • CreateSemaphoreExW (Address: 0x180035810)
  • DeleteCriticalSection (Address: 0x1800357e0)
  • EnterCriticalSection (Address: 0x1800357f8)
  • InitializeCriticalSection (Address: 0x180035808)
  • InitializeCriticalSectionAndSpinCount (Address: 0x1800357e8)
  • InitializeCriticalSectionEx (Address: 0x180035820)
  • LeaveCriticalSection (Address: 0x1800357f0)
  • OpenSemaphoreW (Address: 0x1800357c0)
  • ReleaseMutex (Address: 0x1800357c8)
  • ReleaseSemaphore (Address: 0x180035818)
  • ReleaseSRWLockExclusive (Address: 0x180035840)
  • ReleaseSRWLockShared (Address: 0x180035830)
  • WaitForSingleObject (Address: 0x180035800)
  • WaitForSingleObjectEx (Address: 0x1800357d8)
api-ms-win-core-sysinfo-l1-1-0.dll
  • GetSystemDirectoryW (Address: 0x180035850)
  • GetSystemTimeAsFileTime (Address: 0x180035858)
  • GetVersionExW (Address: 0x180035860)
api-ms-win-core-threadpool-l1-2-0.dll
  • CloseThreadpoolTimer (Address: 0x180035888)
  • CreateThreadpoolTimer (Address: 0x180035870)
  • SetThreadpoolTimer (Address: 0x180035880)
  • WaitForThreadpoolTimerCallbacks (Address: 0x180035878)
api-ms-win-crt-private-l1-1-0.dll
  • __C_specific_handler (Address: 0x180035918)
  • __CxxFrameHandler3 (Address: 0x180035920)
  • __CxxFrameHandler4 (Address: 0x180035980)
  • __std_terminate (Address: 0x180035960)
  • _CxxThrowException (Address: 0x180035928)
  • _o___std_exception_copy (Address: 0x180035978)
  • _o___std_exception_destroy (Address: 0x180035970)
  • _o___std_type_info_destroy_list (Address: 0x180035968)
  • _o___stdio_common_vsnprintf_s (Address: 0x180035958)
  • _o___stdio_common_vswprintf (Address: 0x180035950)
  • _o___stdio_common_vswprintf_s (Address: 0x180035948)
  • _o___stdio_common_vswscanf (Address: 0x180035940)
  • _o__callnewh (Address: 0x180035990)
  • _o__cexit (Address: 0x180035988)
  • _o__configure_narrow_argv (Address: 0x180035938)
  • _o__crt_atexit (Address: 0x180035930)
  • _o__errno (Address: 0x180035898)
  • _o__execute_onexit_table (Address: 0x1800358a0)
  • _o__initialize_narrow_environment (Address: 0x1800358a8)
  • _o__initialize_onexit_table (Address: 0x1800358b0)
  • _o__invalid_parameter_noinfo (Address: 0x1800358b8)
  • _o__invalid_parameter_noinfo_noreturn (Address: 0x1800358c0)
  • _o__purecall (Address: 0x1800358c8)
  • _o__register_onexit_function (Address: 0x1800358d0)
  • _o__seh_filter_dll (Address: 0x1800358d8)
  • _o__wcsicmp (Address: 0x1800358e8)
  • _o_free (Address: 0x1800358f0)
  • _o_malloc (Address: 0x1800358f8)
  • _o_terminate (Address: 0x180035900)
  • _o_tolower (Address: 0x180035908)
  • _o_toupper (Address: 0x180035910)
  • memchr (Address: 0x180035998)
  • memcmp (Address: 0x1800359a0)
  • memcpy (Address: 0x1800359a8)
  • memmove (Address: 0x1800358e0)
api-ms-win-crt-runtime-l1-1-0.dll
  • _initterm (Address: 0x1800359c0)
  • _initterm_e (Address: 0x1800359b8)
api-ms-win-crt-string-l1-1-0.dll
  • memset (Address: 0x1800359d0)
api-ms-win-eventing-classicprovider-l1-1-0.dll
  • GetTraceEnableFlags (Address: 0x1800359f8)
  • GetTraceEnableLevel (Address: 0x1800359f0)
  • GetTraceLoggerHandle (Address: 0x1800359e8)
  • RegisterTraceGuidsW (Address: 0x180035a00)
  • TraceMessage (Address: 0x1800359e0)
  • UnregisterTraceGuids (Address: 0x180035a08)
api-ms-win-eventing-controller-l1-1-0.dll
  • ControlTraceW (Address: 0x180035a20)
  • EnableTraceEx2 (Address: 0x180035a18)
  • StartTraceW (Address: 0x180035a28)
  • StopTraceW (Address: 0x180035a30)
api-ms-win-security-base-l1-1-0.dll
  • AllocateAndInitializeSid (Address: 0x180035a48)
  • CheckTokenMembership (Address: 0x180035a50)
  • FreeSid (Address: 0x180035a40)
api-ms-win-service-management-l1-1-0.dll
  • CloseServiceHandle (Address: 0x180035a68)
  • OpenSCManagerW (Address: 0x180035a60)
  • OpenServiceW (Address: 0x180035a78)
  • StartServiceW (Address: 0x180035a70)
api-ms-win-service-winsvc-l1-1-0.dll
  • ControlService (Address: 0x180035a88)
fwpuclnt.dll
  • FwpmCalloutAdd0 (Address: 0x180035ac0)
  • FwpmCalloutDeleteById0 (Address: 0x180035ab0)
  • FwpmEngineClose0 (Address: 0x180035ab8)
  • FwpmEngineOpen0 (Address: 0x180035a98)
  • FwpmFilterAdd0 (Address: 0x180035ac8)
  • FwpmFilterDeleteById0 (Address: 0x180035ad0)
  • FwpmProviderAdd0 (Address: 0x180035aa8)
  • FwpmSubLayerAdd0 (Address: 0x180035aa0)
IPHLPAPI.DLL
  • ConvertInterfaceGuidToLuid (Address: 0x180035530)
  • ConvertInterfaceLuidToIndex (Address: 0x180035538)
msvcp_win.dll
  • ?_Xlength_error@std@@YAXPEBD@Z (Address: 0x180035ae0)
NetSetupApi.dll
  • NetSetupClose (Address: 0x180035548)
  • NetSetupFreeObjectProperties (Address: 0x180035560)
  • NetSetupFreeObjects (Address: 0x180035568)
  • NetSetupGetObjectProperties (Address: 0x180035558)
  • NetSetupGetObjects (Address: 0x180035570)
  • NetSetupInitialize (Address: 0x180035550)
ntdll.dll
  • NtOpenFile (Address: 0x180035b18)
  • RtlEthernetAddressToStringW (Address: 0x180035af0)
  • RtlEthernetStringToAddressW (Address: 0x180035b08)
  • RtlIpv4AddressToStringW (Address: 0x180035af8)
  • RtlIpv4StringToAddressW (Address: 0x180035b00)
  • RtlIpv6AddressToStringW (Address: 0x180035b20)
  • RtlIpv6StringToAddressW (Address: 0x180035b10)
OLEAUT32.dll
  • SysFreeString (Address: 0x180035590)
  • VariantClear (Address: 0x180035580)
  • VariantInit (Address: 0x180035588)
WS2_32.dll
  • ntohl (Address: 0x1800355a0)