fhevents.dll
- File Path:
C:\Windows\system32\fhevents.dll
- Description: File History Event Listener Library
Hashes
| Type |
Hash |
| MD5 |
B712E3031A8999AB935A8254A75643A1 |
| SHA1 |
261284CE9D486CFE1BF60AC0343A43EB53AF69CA |
| SHA256 |
95CE97D8EEDBBCF3BACC0D977B3C6F9D467ACD65331E8165C0D17FEF79BCAA05 |
| SHA384 |
F6EA6B33B9E1A7B44872BFD371DCCEC353633043C3FCC1274916FEEA797449128B40D038253390C436FE52A3B89C68FE |
| SHA512 |
104CE61A63418674831F455CFF4C97D845E39FFFAEEC686A34D109A8525DAAB1BB9C5F3E327CBB75FB00BF6F8CF68B318ED87011094A27471AD6BACFAC504ED8 |
| SSDEEP |
1536:5NqSQrcy74MN76KB1pVovLkX24w5Wwd9S05Is85yW:5RHG6Qpru5Ld9SCIP5N |
| IMP |
E2211EC86EB943C12731CA08F32C4975 |
| PESHA1 |
D7C315ABD40F8B0BA79BF2D3F1408B7C7B698310 |
| PE256 |
1228B3FB8A2969118A5F6344DAD908AFA94622ED990643F9F91C81962A5073ED |
DLL Exports:
| Function Name |
Ordinal |
Type |
DpElScanEvents |
3 |
Exported Function |
DpElReleaseObjects |
2 |
Exported Function |
DpElGetNextEvent |
1 |
Exported Function |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: fhevents.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/69
- VirusTotal Link: https://www.virustotal.com/gui/file/95ce97d8eedbbcf3bacc0d977b3c6f9d467acd65331e8165c0d17fef79bcaa05/detection/
MIT License. Copyright (c) 2020-2021 Strontic.