home

1394Client.SYS

Microsoft Windows NT Operating System

RATOC Systems, Inc.

It runs as a Windows kernel mode device driver named “1394 Client Device(For Printer)”.
Publisher:
FUJIFILM CO., LTD.  (signed by RATOC Systems, Inc.)

Product:
Microsoft(R) Windows NT(R) Operating System

Description:
EZ2 1394 Driver (for Printer)

Version:
6.0.0.2

MD5:
0afe5bde46e13eee8c4e4462b521ddc9

SHA-1:
5f4610619c3a65d94c32acb306aec6f3f48c7e3b

SHA-256:
0b633eed06fcadc91c0b7a9f0271afd9af5f5fb1a1817e4764eec6322d202f57

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 5:22:47 AM UTC  (today)

File size:
59.1 KB (60,536 bytes)

Product version:
6.0.0.2

Copyright:
FUJIFILM CO., LTD.

Original file name:
1394Client.SYS

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\1394client.sys

Digital Signature
Signed by:
RATOC Systems, Inc.

Authority:
VeriSign, Inc.

Valid from:
10/13/2010 2:00:00 AM

Valid to:
10/14/2011 1:59:59 AM

Subject:
CN="RATOC Systems, Inc.", OU=Development Division, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="RATOC Systems, Inc.", L=Naniwa-ku Osaka City, S=Osaka, C=JP

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4637CAF7B900E54B3645D2F6BE7046D4

File PE Metadata
Compilation timestamp:
5/19/2011 3:25:51 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
1536:fe6G4d6wjW7bit1tCrFljm1R3zDhUN0IPD0taD9CH:MobnUezDhUN0IPD0YQ

Entry address:
0xF03E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, EA, 63, FF, FF, CC, CC, 98, F0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 80, F4, 00, 00, 0C, D0, 00, 00, 8C, F0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B6, F4, 00, 00, 00, D0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 8E, F4, 00, 00, A2, F4, 00, 00, 00, 00, 00, 00, 7A, F1, 00, 00, 92, F1, 00, 00, B2, F1, 00, 00, C6, F1, 00, 00, D0, F1, 00, 00, E2, F1, 00, 00, F8, F1, 00, 00, 06, F2, 00, 00, 1C, F2, 00, 00, 32, F2...
 
[+]

Entropy:
6.5332

Code size:
46.5 KB (47,616 bytes)

Driver
Display name:
1394 Client Device(For Printer)

Service name:
LabSystem

Type:
Kernel device driver (KernelDriver)


Scan 1394Client.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.