home

avgbootx.sys

AVG Internet Security

Microsoft Corporation

Publisher:
AVG Technologies CZ, s.r.o.  (signed by Microsoft Corporation)

Product:
AVG Internet Security

Description:
AVG Early Launch Anti-Malware Driver

Version:
13.0.0.2734

MD5:
cdcff34d0e470b30b2c9c55ff970ffbe

SHA-1:
f6ae41bba5416fabddf8233151ff42192433431f

SHA-256:
ceedccba1f06ea8dbbebd900f32008be4ed912596413d1be4f3c3e8e67534e90

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
4/19/2024 5:22:22 PM UTC  (today)

File size:
17.9 KB (18,352 bytes)

Product version:
13.0.0.2734

Copyright:
Copyright © 2012 AVG Technologies CZ, s.r.o.

Original file name:
avgbootx.sys

File type:
Driver (Win32 SYS)

Language:
Language Neutral

Common path:
C:\Program Files\avg\avg2013\drivers\avgbootx.sys

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
7/9/2012 5:14:38 PM

Valid to:
10/9/2013 5:14:38 PM

Subject:
CN=Microsoft Windows Early Launch Anti-malware Publisher, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
33000000148E97BFE6C9F875AB000000000014

File PE Metadata
Compilation timestamp:
10/3/2012 7:46:40 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
192:RJXXNoXrir3lvMAfxNL3KDDu5mi+KZpW1+TMUVWQ4CWtgnqnajPyFYnH32w5pQi:R1XNour3l04NLX74+wUSgnlum2wXn

Entry address:
0x5006

Entry point:
8B, FF, 55, 8B, EC, 51, 51, A1, 38, 20, 01, 00, 83, 38, 00, 76, 07, 33, C0, E9, E0, 00, 00, 00, 8B, 45, 08, FF, 75, 0C, C7, 40, 34, 06, 40, 01, 00, E8, D6, BF, FF, FF, 89, 45, 08, 85, C0, 0F, 8C, C0, 00, 00, 00, A1, 24, 30, 01, 00, 33, C9, 41, 89, 0D, 40, 30, 01, 00, A3, 4C, 30, 01, 00, 84, C1, 0F, 85, 9A, 00, 00, 00, E8, E1, C6, FF, FF, A3, 50, 30, 01, 00, 85, C0, 7C, 18, A1, 34, 30, 01, 00, 8B, 48, 0C, 89, 0D, 44, 30, 01, 00, 8B, 40, 10, A3, 48, 30, 01, 00, EB, 0E, 83, 25, 44, 30, 01, 00, 00, 83, 25, 48...
 
[+]

Entropy:
6.3401

Code size:
5.5 KB (5,632 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.