home

dsnpfd.sys

DeskSoft e.U.

It runs as a Windows 64-bit kernel mode device driver named “dsnpfdMP”.
Publisher:
DeskSoft  (signed by DeskSoft e.U.)

Description:
DSNPFD helper driver

Version:
3.0.8.1

MD5:
5ea5112d9365e518cb581438d77e868b

SHA-1:
668847352cf291e8df9c4ec25f527e11879b1140

SHA-256:
3e4d4b78812fadce0adc6661057888334feb7e742145e9b97bb626d99b7311cb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 8:14:51 PM UTC  (today)

File size:
28.7 KB (29,424 bytes)

Product version:
3.0.8.1

Copyright:
Copyright DeskSoft© 2000-2011

Original file name:
dsnpfd.sys

File type:
Driver (Win64 SYS)

Language:
Language Neutral

Common path:
C:\Windows\System32\drivers\dsnpfd.sys

Digital Signature
Signed by:
DeskSoft e.U.

Authority:
GlobalSign nv-sa

Valid from:
8/1/2011 7:42:03 PM

Valid to:
8/1/2012 7:42:03 PM

Subject:
CN=DeskSoft e.U., O=DeskSoft e.U., L=Wien, S=Wien, C=AT

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121493C9CFE8F7BB7497FB07F54FC138F06

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
768:XGTf3RDX5lClXO2jA7zGRfMK6oNpyqaCvnArMEuUYGGlraH9KY1DFi:XkPRDujzAZwZaH9lPi

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, DA, FA, FF, FF, CC, CC, 50, 00, 61, 00, 72, 00, 61, 00, 6D, 00, 65, 00, 74, 00, 65, 00, 72, 00, 73, 00, 00, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 4D, 00, 54, 00, 55, 00, 44, 00, 65, 00, 63, 00, 72, 00, 65, 00, 6D, 00, 65, 00, 6E, 00, 74, 00, 00, 00, CC, CC, CC, CC, CC, CC, 53, 00, 74, 00, 61, 00, 72, 00, 74, 00, 75, 00, 70, 00, 4D, 00, 6F, 00, 64, 00, 65, 00, 00, 00, CC, CC, CC, CC, CC, CC, CC, CC...
 
[+]

Entropy:
6.3042

2 Drivers
Display name:
dsnpfdMP

Type:
Kernel device driver (KernelDriver)

Display name:
DeskSoft LightWeight Filter

Service name:
dsnpfd

Type:
Kernel device driver (KernelDriver)

Group:
NDIS


Scan dsnpfd.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.