home

bdisk.sys

Comodo Security Solutions, Inc.

It runs as a Windows kernel mode device driver named “COMODO Disk Raw Access Filter”.
Publisher:
Comodo Security Solutions, Inc.  (signed and verified)

MD5:
483a561573017525e965a54ec1c5b82f

SHA-1:
cb28f8ef6c42fddc66b4fa8ca302d9b2e939db8d

SHA-256:
58f7b7724938af8893a02f2bcbdf25c415db539e6c3576fb69a2f034f392c75c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 12:27:51 PM UTC  (today)

File size:
70.6 KB (72,336 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\bdisk.sys

Digital Signature
Signed by:
Comodo Security Solutions, Inc.

Authority:
VeriSign, Inc.

Valid from:
3/2/2010 2:00:00 AM

Valid to:
3/3/2011 1:59:59 AM

Subject:
CN="Comodo Security Solutions, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Comodo Security Solutions, Inc.", L=Jersey City, S=New Jersey, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2C01585522E8FA61138AEFA4F627EEA8

File PE Metadata
Compilation timestamp:
10/5/2010 6:08:27 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
1536:Fwte1aEl68J9fV8S+wvaLBvNunToIfx6IOxVC6aDwCt:iteEEl6EV8RMaNvNKTBfxIxVCDV

Entry address:
0x1203E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 32, 40, FF, FF, CC, CC, 98, 20, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 08, 23, 01, 00, 0C, 70, 00, 00, 8C, 20, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 3E, 23, 01, 00, 00, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 16, 23, 01, 00, 2A, 23, 01, 00, 00, 00, 00, 00, 40, 21, 01, 00, 54, 21, 01, 00, 5E, 21, 01, 00, 68, 21, 01, 00, 74, 21, 01, 00, 7E, 21, 01, 00, 88, 21, 01, 00, A2, 21, 01, 00, B6, 21, 01, 00, C2, 21...
 
[+]

Code size:
24 KB (24,576 bytes)

Driver
Display name:
COMODO Disk Raw Access Filter

Service name:
bdisk

Type:
Kernel device driver (KernelDriver)

Group:
Pnp Filter


Scan bdisk.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.