» cbvd.sys
Overview
Analysis
File Details
Behaviors (1)

cbvd.sys

Comodo BackUp

Comodo Security Solutions, Inc.

It runs as a Windows kernel mode device driver named “cbvd”.

File name:

cbvd.sys

Publisher:

COMODO Security Solutions Inc. (signed by Comodo Security Solutions, Inc.)

Product:

Comodo BackUp

Description:

COMODO BackUp Vritual Disk Driver

Version:

7. 0. 0. 352

MD5:

b163d64103889a12a914b147af362e8b

SHA-1:

af661763781def7b52f3687f84c7f77b3de32b03

SHA-256:

d91629e6e810f1499cef5a7dc1ffa971f09b34eb78d03d818de8cac7f69f3b4c

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/26/2024 10:34:10 AM UTC (today)

File size:

443.6 KB (454,248 bytes)

Product version:

4. 0. 6. 12

File type:

Driver (Win32 SYS)

Language:

English (United States)

Common path:

C:\Windows\System32\drivers\cbvd.sys

Digital Signature

Signed by:

Comodo Security Solutions, Inc.

Authority:

VeriSign, Inc.

Valid from:

3/2/2011 3:00:00 AM

Valid to:

3/4/2012 2:59:59 AM

Subject:

CN="Comodo Security Solutions, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Comodo Security Solutions, Inc.", L=Jersey City, S=New Jersey, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

0C078E1D0F486BF4325E09F8BEDF2446

File PE Metadata

Compilation timestamp:

10/5/2011 10:36:53 PM

OS version:

6.1

OS bitness:

Win32

Subsystem:

Native (none required)

Linker version:

9.0

CTPH (ssdeep):

12288:qN9XpUD47uZv5xj5qpkRd3j9xFnpgykv1UZWyFfVSO2aTGvlU2dt:oXpu4u5d5qpkRl9xFnpgykv1UZWyFfhA

Entry address:

0x6D1BD

Entry point:

8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 39, FE, FF, FF, CC, 43, 42, 56, 44, 3A, 20, 44, 72, 69, 76, 65, 72, 20, 73, 74, 61, 72, 74, 65, 64, 20, 73, 75, 63, 63, 65, 73, 73, 66, 75, 6C, 6C, 79, 21, 20, 43, 6F, 6D, 70, 69, 6C, 61, 74, 69, 6F, 6E, 20, 64, 61, 74, 65, 20, 25, 73, 20, 43, 6F, 6D, 70, 69, 6C, 61, 74, 69, 6F, 6E, 20, 74, 69, 6D, 65, 20, 25, 73, 0A, 00, 4F, 63, 74, 20, 20, 35, 20, 32, 30, 31, 31, 00, 32, 32, 3A, 33, 36, 3A, 33, 38, 00, CC, 43, 42, 56, 44, 3A, 20, 55, 6E, 61, 62, 6C, 65, 20... 
[+]

Entropy:

6.9456

Code size:

384.5 KB (393,728 bytes)

Driver

Display name:

cbvd

Type:

Kernel device driver (KernelDriver)

Group:

PnP Filter

Scan cbvd.sys - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.