home

gbpndisrd.sys

GbpNDIS

GAS INFORMATICA LTDA

It runs as a Windows kernel mode device driver named “GAS Tecnologia Service”.
Publisher:
GAS Tecnologia  (signed by GAS INFORMATICA LTDA)

Product:
GbpNDIS

Description:
GbPlugin NDIS Device Driver

Version:
2,1,2,1

MD5:
c4a2ec41dfb9619fa3b792ea1e7a4b46

SHA-1:
1f37a1d2e1d36348a3624a55746f04a2b969196c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 1:31:13 AM UTC  (today)

File size:
41.2 KB (42,192 bytes)

Product version:
2,1,2,1

Copyright:
Copyright © 2003-2011, G-Buster Browser Defense

Original file name:
ndisrd.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\gbpndisrd.sys

Digital Signature
Signed by:
GAS INFORMATICA LTDA

Authority:
VeriSign, Inc.

Valid from:
9/14/2010 9:00:00 PM

Valid to:
9/14/2012 8:59:59 PM

Subject:
CN=GAS INFORMATICA LTDA, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=GAS INFORMATICA LTDA, L=Brasilia, S=DF, C=BR

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2103688F6B98198C50A5CB7AD63CB1BD

File PE Metadata
Compilation timestamp:
11/10/2011 5:09:52 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:CGxd9hJ6D8pzMug3MDK517ax/YvvEtNW0NtqILWMmnbCVi:CGdXJPpLg3SK517axgvvEt5baDbCM

Entry address:
0x77FC

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 84, FC, FF, FF, CC, CC, CC, CC, 4E, 00, 44, 00, 49, 00, 53, 00, 52, 00, 44, 00, 00, 00, CC, CC, 53, 00, 74, 00, 61, 00, 72, 00, 74, 00, 75, 00, 70, 00, 4D, 00, 6F, 00, 64, 00, 65, 00, 00, 00, CC, CC, CC, CC, CC, CC, CC, CC, 4D, 00, 54, 00, 55, 00, 44, 00, 65, 00, 63, 00, 72, 00, 65, 00, 6D, 00, 65, 00, 6E, 00, 74, 00, 00, 00, CC, CC, CC, CC, CC, CC, 50, 00, 61, 00, 72, 00, 61, 00, 6D, 00, 65, 00, 74, 00, 65, 00, 72, 00, 73, 00, 00, 00, CC, CC, 80, 79, 00, 00...
 
[+]

Code size:
30 KB (30,720 bytes)

Driver
Display name:
GAS Tecnologia Service

Service name:
Ndisrd

Type:
Kernel device driver (KernelDriver)


Scan gbpndisrd.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.