home

KernelTraceControl.dll

Microsoft Windows Performance Analyzer

Windows Central Build Account

Publisher:
Microsoft Corporation  (signed by Windows Central Build Account)

Product:
Microsoft® Windows® Performance Analyzer

Description:
Performance Analyzer Kernel Tracing Control Library

Version:
10.0.10509.0 (th2_fun_idt_dev01.150802-2200)

MD5:
22c8b24c84810a73008a63a417f14d11

SHA-1:
f98f5967773c778649ca09c9fe7f6dae4bff6d2f

SHA-256:
5fb6e25ed4dd9d153d123996f876707c26b1200f13591c1055d3f22406d359aa

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/6/2024 4:29:57 AM UTC  (today)

File size:
164.1 KB (168,056 bytes)

Product version:
10.0.10509.0

Copyright:
© 2015 Microsoft Corporation. All rights reserved.

Original file name:
KernelTraceControl.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\perfview\ver.2015-09-24.02.32.54.299\x86\kerneltracecontrol.dll

Digital Signature
Signed by:
Windows Central Build Account

Authority:
MSIT Test CodeSign CA 2

Valid from:
4/2/2015 6:51:44 AM

Valid to:
4/1/2016 6:51:44 AM

Subject:
CN=Windows Central Build Account

Issuer:
CN=MSIT Test CodeSign CA 2, DC=redmond, DC=corp, DC=microsoft, DC=com

Serial number:
77005C97CC084B5B1A052E2A350003005C97CC

File PE Metadata
Compilation timestamp:
8/3/2015 5:55:47 PM

OS version:
10.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
12.10

CTPH (ssdeep):
3072:l0Eo6nBS4U59DWOd2BS+VzX95hRpOgWVQhCquioJP/ttDD0jVFnFN:l0E/nmABS+dXMYeHdD0D

Entry address:
0x1EF20

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 88, 07, 00, 00, 5D, E9, 2A, 00, 00, 00, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, B8, 63, 73, 6D, E0, 39, 45, 08, 75, 0D, FF, 75, 0C, 50, E8, ED, 05, 00, 00, 59, 59, 5D, C3, 33, C0, 5D, C3, CC, CC, CC, CC, CC, 6A, 30, 68, F0, 3D, 02, 10, E8, 00, 08, 00, 00, C7, 45, E0, 01, 00, 00, 00, 33, F6, 89, 75, FC, 8B, 45, 0C, 83, F8, 01, 77, 05, A3, 08, 50, 02, 10, 83, 7D, 0C, 00, 75, 11, 83, 3D, D0, 52, 02, 10, 00, 75, 08, 89, 75, E0, E9, 39, 02, 00, 00, 8B, 45, 0C, 83...
 
[+]

Entropy:
6.5394

Code size:
140.5 KB (143,872 bytes)

Scan KernelTraceControl.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.