diagnosticdataquery.dll

File Path: C:\Windows\system32\diagnosticdataquery.dll
Description: Microsoft Windows Diagnostic data Helper API

Hashes

Type	Hash
MD5	`7A3A9A518E69507FA0E05D13A85C729A`
SHA1	`A15A8ECE8D95EDFABC6E6188DE10BCE10464B5D6`
SHA256	`B4E33A516EFD14B1D719E149959FF3C8D1CBCF7C8128D4CEF164A685B3A3FAC6`
SHA384	`6659C7518EA5DA697F7F2CDC988195E1755689F89B94C629D31B06F0A5BB92949155C886260B61BA2DC76D6791918E85`
SHA512	`3FFB56E5B21FDFD1FA07417E5FB9688783D661473FECD8643A7CCFC924BD1B97B4F8FC8BD42CAA9A72A7192E970C2697297A7643C150E00262356A18B7DBC69C`
SSDEEP	`1536:qjGUoy9YeKvw9BsCPcRe/mpKKX7sn4asDRqVrjckL9q0O3P:byowfsCPcRe/mpKKLsn4asDRqVrjrRhq`
IMP	`A48853BD12994188BBB5D558ED96C168`
PESHA1	`4E1E83596B446F3693A45C830D461BA2BD0D610F`
PE256	`6F568E15D6E0F255B174C7AA2DCAE28D706D465EE70C00A459F82E0B743BFF7C`

DLL Exports:

Function Name	Ordinal	Type
`DdqGetDiagnosticRecordSummary`	26	Exported Function
`DdqGetDiagnosticRecordStats`	25	Exported Function
`DdqGetDiagnosticReport`	28	Exported Function
`DdqGetDiagnosticRecordTagDistribution`	27	Exported Function
`DdqGetDiagnosticRecordProducers`	24	Exported Function
`DdqGetDiagnosticRecordProducerAtIndex`	21	Exported Function
`DdqGetDiagnosticRecordPayload`	20	Exported Function
`DdqGetDiagnosticRecordProducerCount`	23	Exported Function
`DdqGetDiagnosticRecordProducerCategories`	22	Exported Function
`DdqSetTranscriptConfiguration`	35	Exported Function
`DdqIsDiagnosticRecordSampledIn`	34	Exported Function
`UtcSendTraceLogging2`	37	Exported Function
`UtcSendTraceLogging`	36	Exported Function
`DdqGetTranscriptConfiguration`	33	Exported Function
`DdqGetDiagnosticReportCount`	30	Exported Function
`DdqGetDiagnosticReportAtIndex`	29	Exported Function
`DdqGetSessionAccessLevel`	32	Exported Function
`DdqGetDiagnosticReportStoreReportCount`	31	Exported Function
`DdqGetDiagnosticRecordPage`	19	Exported Function
`DdqFreeDiagnosticRecordProducerCategories`	7	Exported Function
`DdqFreeDiagnosticRecordPage`	6	Exported Function
`DdqFreeDiagnosticReport`	9	Exported Function
`DdqFreeDiagnosticRecordProducers`	8	Exported Function
`DdqFreeDiagnosticRecordLocaleTags`	5	Exported Function
`DdqCloseSession`	2	Exported Function
`DdqCancelDiagnosticRecordOperation`	1	Exported Function
`DdqExtractDiagnosticReport`	4	Exported Function
`DdqCreateSession`	3	Exported Function
`DdqGetDiagnosticRecordLocaleTagAtIndex`	16	Exported Function
`DdqGetDiagnosticRecordCount`	15	Exported Function
`DdqGetDiagnosticRecordLocaleTags`	18	Exported Function
`DdqGetDiagnosticRecordLocaleTagCount`	17	Exported Function
`DdqGetDiagnosticRecordCategoryCount`	14	Exported Function
`DdqGetDiagnosticRecordAtIndex`	11	Exported Function
`DdqGetDiagnosticDataAccessLevelAllowed`	10	Exported Function
`DdqGetDiagnosticRecordCategoryAtIndex`	13	Exported Function
`DdqGetDiagnosticRecordBinaryDistribution`	12	Exported Function

Signature

Status: Signature verified.
Serial: 330000026551AE1BBD005CBFBD000000000265
Thumbprint: E168609353F30FF2373157B4EB8CD519D07A2BFF
Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

Original Filename: diagnosticdataquery.dll
Product Name: Microsoft Windows Operating System
Company Name: Microsoft Corporation
File Version: 10.0.19041.508 (WinBuild.160101.0800)
Product Version: 10.0.19041.508
Language: English (United States)
Machine Type: 64-bit

File Scan

VirusTotal Detections: 0/68
VirusTotal Link: https://www.virustotal.com/gui/file/b4e33a516efd14b1d719e149959ff3c8d1cbcf7c8128d4cef164a685b3a3fac6/detection/