api-ms-win-eventing-provider-l1-1-0.dll

  • File Path: C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\api-ms-win-eventing-provider-l1-1-0.dll
  • Description: ApiSet Stub DLL

Hashes

Type Hash
MD5 28959D9E6F5657DBFF6455C2E138FF72
SHA1 E4C6155DFFE458318BD909F4EFC74986F11BCE1B
SHA256 DF009889930974DE784FA440FDD257BAC1CA86F2EED360309B543F0CF4DBAB93
SHA384 661CF7221A5EF5C3134EBE1CC5BC20A0A2F627DB03B94A0B5E99FD48CEA7B6055DAA005D2191444FEE184CB6D522804B
SHA512 A5C7BEF2796718B391C55671CF65F20EEEB937840F0CF10D49007C96667B41B9E8D419CB3555A01089F539A7293ECE9888543ECC889BEBA503E117FA42B6A241
SSDEEP 192:9f+sF1SGs/YrWphWpWSawTyihVWQ4WWMuGHMBKqnajH2oWb5lP0kIfK:9f++BWphWOwGyWGsBKlNqb02
PESHA1 490910D91BC55DFD0006AB3C33CA07C1F935675F
PE256 CED1B78A5C412B746900ED6F4F497914995E8572102A40B8067870F895E9C4B7

DLL Exports:

Function Name Ordinal Type
EventWrite 7 Exported Function
EventUnregister 6 Exported Function
EventWriteEx 8 Exported Function
EventWriteTransfer 10 Exported Function
EventWriteString 9 Exported Function
EventEnabled 2 Exported Function
EventActivityIdControl 1 Exported Function
EventProviderEnabled 3 Exported Function
EventSetInformation 5 Exported Function
EventRegister 4 Exported Function

Signature

  • Status: Signature verified.
  • Serial: 3300000266BD1580EFA75CD6D3000000000266
  • Thumbprint: A4341B9FD50FB9964283220A36A1EF6F6FAA7840
  • Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
  • Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

File Metadata

  • Original Filename: apisetstub
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 10.0.19041.1 (WinBuild.160101.0800)
  • Product Version: 10.0.19041.1
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.
  • Machine Type: 64-bit

File Scan

  • VirusTotal Detections: 0/76
  • VirusTotal Link: https://www.virustotal.com/gui/file/df009889930974de784fa440fdd257bac1ca86f2eed360309b543f0cf4dbab93/detection

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Reference Assemblies\Microsoft\WindowsPowerShell\3.0\Microsoft.PowerShell.ConsoleHost.dll 47
C:\Program Files (x86)\Reference Assemblies\Microsoft\WindowsPowerShell\3.0\Microsoft.PowerShell.Diagnostics.Activities.dll 43
C:\Program Files (x86)\Reference Assemblies\Microsoft\WindowsPowerShell\3.0\Microsoft.PowerShell.Security.Activities.dll 44
C:\Program Files (x86)\Reference Assemblies\Microsoft\WindowsPowerShell\3.0\Microsoft.WSMan.Management.Activities.dll 40
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x64\1033\wstracedumpresources.dll 46
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x64\1033\wstraceutilresources.dll 36
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x64\extidgen.exe 40
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86\1033\wstracedumpresources.dll 46
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86\1033\wstraceutilresources.dll 43
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86\espui.dll 40
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86\extidgen.exe 44
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86\UIAVerify\WUIALogging.dll 32
C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\dumpchk.exe 43
C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\dumpexam.exe 41
C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\api-ms-win-eventing-provider-l1-1-0.dll 63
C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\dumpchk.exe 40
C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\dumpexam.exe 41
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-console-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-console-l1-2-0.dll 71
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-datetime-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-debug-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-errorhandling-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-file-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-file-l1-2-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-file-l2-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-handle-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-heap-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-interlocked-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-libraryloader-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-memory-l1-1-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-namedpipe-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-processenvironment-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-processthreads-l1-1-1.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-profile-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-rtlsupport-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-string-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-synch-l1-2-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-sysinfo-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-timezone-l1-1-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-core-util-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-conio-l1-1-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-convert-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-environment-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-filesystem-l1-1-0.dll 46
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-heap-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-locale-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-process-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-runtime-l1-1-0.dll 44
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-stdio-l1-1-0.dll 44
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-time-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x64\api-ms-win-crt-utility-l1-1-0.dll 44
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-console-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-console-l1-2-0.dll 44
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-datetime-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-debug-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-errorhandling-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-file-l1-1-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-file-l1-2-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-file-l2-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-handle-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-heap-l1-1-0.dll 44
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-interlocked-l1-1-0.dll 57
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-libraryloader-l1-1-0.dll 44
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-memory-l1-1-0.dll 46
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-namedpipe-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-processenvironment-l1-1-0.dll 46
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-processthreads-l1-1-1.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-profile-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-rtlsupport-l1-1-0.dll 55
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-string-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-synch-l1-2-0.dll 46
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-sysinfo-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-timezone-l1-1-0.dll 46
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-core-util-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\API-MS-Win-core-xstate-l2-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-conio-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-convert-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-environment-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-filesystem-l1-1-0.dll 46
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-heap-l1-1-0.dll 46
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-locale-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-process-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-runtime-l1-1-0.dll 41
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-stdio-l1-1-0.dll 43
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-time-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Redist\10.0.19041.0\ucrt\DLLs\x86\api-ms-win-crt-utility-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-console-l1-1-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-console-l1-2-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-datetime-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-debug-l1-1-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-errorhandling-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-file-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-file-l1-2-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-file-l2-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-handle-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-heap-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-interlocked-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-libraryloader-l1-1-0.dll 69
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-memory-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-namedpipe-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-processenvironment-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-processthreads-l1-1-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-processthreads-l1-1-1.dll 50
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-profile-l1-1-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-rtlsupport-l1-1-0.dll 54
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-string-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-synch-l1-2-0.dll 47
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-sysinfo-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-timezone-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-core-util-l1-1-0.dll 57
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-conio-l1-1-0.dll 71
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-convert-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-environment-l1-1-0.dll 46
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-filesystem-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-heap-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-locale-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-process-l1-1-0.dll 50
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-runtime-l1-1-0.dll 49
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-stdio-l1-1-0.dll 43
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-time-l1-1-0.dll 52
C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\api-ms-win-crt-utility-l1-1-0.dll 49
C:\Windows\system32\downlevel\api-ms-win-core-comm-l1-1-0.dll 47
C:\Windows\system32\downlevel\API-MS-Win-core-file-l2-1-1.dll 47
C:\Windows\system32\downlevel\api-ms-win-core-profile-l1-1-0.dll 49
C:\Windows\system32\downlevel\API-MS-Win-core-string-l2-1-0.dll 47
C:\Windows\system32\downlevel\API-MS-Win-core-xstate-l2-1-0.dll 47
C:\Windows\system32\downlevel\API-MS-Win-Eventing-Legacy-L1-1-0.dll 49
C:\Windows\system32\downlevel\API-MS-Win-Eventing-Provider-L1-1-0.dll 47
C:\Windows\SysWOW64\downlevel\API-MS-Win-core-localization-obsolete-l1-2-0.dll 49
C:\Windows\SysWOW64\downlevel\api-ms-win-core-processenvironment-l1-2-0.dll 47
C:\Windows\SysWOW64\downlevel\api-ms-win-crt-environment-l1-1-0.dll 49
C:\Windows\SysWOW64\downlevel\API-MS-Win-Eventing-Provider-L1-1-0.dll 38

MIT License. Copyright (c) 2020-2021 Strontic.