els.dll
- File Path:
C:\Windows\SysWOW64\els.dll
- Description: Event Viewer Snapin
Hashes
| Type |
Hash |
| MD5 |
70E99AA8BD30DF66FE30444D161F3FC1 |
| SHA1 |
4BB71E0E0766C0B8CD6495D269B63ED18EF94EEA |
| SHA256 |
6A408DA7AAAE823C1706C3A1B20E186551A375F13C465AEB9386E347B942A14F |
| SHA384 |
10786CCFF2816370C80C985C710D5ACE00E4756324DA338A3314E5296DE26404EA8AE2C3C466090E3A372CBBC3201F7D |
| SHA512 |
E89899D3A09289D6EB9D8115062D269BC45F65907B84DAAF9649BE95E3BF82C46E386F0FDE4828ACC7665DCEE3B53C396AEA68BF9D2F836332E1022AA85DDC6E |
| SSDEEP |
3072:c+5m+jGgnLpi4Uai1EqyHoQi1pP9P3XztFVXsuc6C5t/gr5liAb:c+5mBg4XaiLyIr1F9tFV8v6CMoAb |
| IMP |
01C8F9596F05C5C278AE9A319296E313 |
| PESHA1 |
9B5577DCA426CB3E043ADC3CACA3602A1C19FDDE |
| PE256 |
5436383D127A6D7BE259EE34CE39F089A39977FE88BAE0D5EFA9E07BACEEF8EB |
DLL Exports:
| Function Name |
Ordinal |
Type |
DllRegisterServer |
3 |
Exported Function |
DllUnregisterServer |
4 |
Exported Function |
DllCanUnloadNow |
1 |
Exported Function |
DllGetClassObject |
2 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
330000026551AE1BBD005CBFBD000000000265
- Thumbprint:
E168609353F30FF2373157B4EB8CD519D07A2BFF
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: ELS.DLL.MUI
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/68
- VirusTotal Link: https://www.virustotal.com/gui/file/6a408da7aaae823c1706c3a1b20e186551a375f13c465aeb9386e347b942a14f/detection/
MIT License. Copyright (c) 2020-2021 Strontic.