home

KernelTraceControl.dll

Microsoft Windows Performance Analyzer

Windows Central Build Account

Publisher:
Microsoft Corporation  (signed by Windows Central Build Account)

Product:
Microsoft® Windows® Performance Analyzer

Description:
Performance Analyzer Kernel Tracing Control Library

Version:
10.0.10509.0 (th2_fun_idt_dev01.150802-2200)

MD5:
b7003ece0cb37dc91ecea7dd85824ed3

SHA-1:
cd9e44b7aa37b45d0e9a84d45b7b69da871787aa

SHA-256:
14e53e4774f2f2f29bd9843c4b0e1e8fb77b23692c1a5cc7eaacd8550a2448df

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/28/2024 2:03:05 PM UTC  (today)

File size:
219.1 KB (224,376 bytes)

Product version:
10.0.10509.0

Copyright:
© 2015 Microsoft Corporation. All rights reserved.

Original file name:
KernelTraceControl.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\perfview\ver.2015-09-24.02.32.54.299\amd64\kerneltracecontrol.dll

Digital Signature
Signed by:
Windows Central Build Account

Authority:
MSIT Test CodeSign CA 2

Valid from:
4/17/2015 12:59:25 PM

Valid to:
4/16/2016 12:59:25 PM

Subject:
CN=Windows Central Build Account

Issuer:
CN=MSIT Test CodeSign CA 2, DC=redmond, DC=corp, DC=microsoft, DC=com

Serial number:
77005CFCEC2930AC41A3330E5E0003005CFCEC

File PE Metadata
Compilation timestamp:
8/3/2015 7:01:49 PM

OS version:
10.0

OS bitness:
Win64

Subsystem:
Windows Console

Linker version:
12.10

CTPH (ssdeep):
3072:f3Qx3XwGsXAnPpIHEEtUEEEJ5eJqPQRAYoZdUP0caWK/17JwFjhV9qi:f3QVwGAS+kHE/EqIiZZdS0cHKIVn

Entry address:
0x242C0

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, A3, 06, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 07, 00, 00, 00, CC, CC, CC, CC, CC, CC, CC, 4C, 89, 44, 24, 18, 89, 54, 24, 10, 48, 89, 4C, 24, 08, 53, 56, 57, 41, 56, 41, 57, 48, 81, EC, 40, 01, 00, 00, 8B, FA, 4C, 8B, F1, BE, 01, 00, 00, 00, 8B, DE, 89, 5C, 24, 20, 3B, D6, 77, 06, 89, 15, D6, FC, 00, 00, 85, D2, 75, 13, 39, 15...
 
[+]

Entropy:
6.2308

Code size:
153.5 KB (157,184 bytes)

Scan KernelTraceControl.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.