home

GV650S.sys

GEOVISION INC.

It runs as a Windows kernel mode device driver named “GV650S”.
Publisher:
GEOVISION INC.  (signed and verified)

Description:
Capture card driver.

Version:
2, 2, 6, 2

MD5:
2936bb176b5e085e00c4e21338620d5e

SHA-1:
07ec41d5b483feb13475344c8644b293575235af

SHA-256:
2add2f1e6dca6b7c4b6da578d5e23b7f792673d11f61fb4325e56c2db385bc7e

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/19/2024 10:43:24 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Sality.AT
7.11.30.172

File size:
79.5 KB (81,456 bytes)

Product version:
2, 2, 6, 2

Copyright:
Copyright(R) 2000 ~ 2003

Original file name:
GV650S.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\gv650s.sys

Digital Signature
Signed by:
GEOVISION INC.

Authority:
VeriSign, Inc.

Valid from:
8/24/2006 8:00:00 PM

Valid to:
11/13/2009 6:59:59 PM

Subject:
CN=GEOVISION INC., OU=RD, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=GEOVISION INC., L=Taipei, S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
09E4D667757070AD2C5B57709E9F57EA

File PE Metadata
Compilation timestamp:
7/18/2006 10:29:32 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
6.0

CTPH (ssdeep):
1536:DBDI5QzWWJIOl+SCbzFSRRjXWOW2FBp1pcSrXFEAyhjzzzl73h2jy93A2jyptg8v:dDLFvC+XDtlZSzFV+z

Entry address:
0x1090A

Entry point:
53, 56, 33, F6, 57, 46, 6A, 00, 56, FF, 15, A0, 03, 01, 00, 84, C0, 75, 0A, B8, 01, 00, 00, C0, E9, D4, 00, 00, 00, 89, 35, F8, 03, 02, 00, E8, D0, 00, 00, 00, 8B, 5C, 24, 14, BF, 57, 64, 6D, 20, 57, 0F, B7, 03, 40, 40, 50, 56, 8B, 35, 0C, 03, 01, 00, FF, D6, 85, C0, A3, F0, 03, 02, 00, 74, 37, 66, 8B, 03, 53, 66, 05, 02, 00, 68, EC, 03, 02, 00, 66, A3, EE, 03, 02, 00, FF, 15, 9C, 03, 01, 00, 0F, B7, 03, 8B, 0D, F0, 03, 02, 00, D1, E8, 66, 83, 24, 41, 00, E8, 88, A0, FF, FF, 85, C0, 75, 0C, E8, 77, A2, FF...
 
[+]

Entropy:
6.3997

Code size:
63.9 KB (65,440 bytes)

Driver
Display name:
GV650S

Type:
Kernel device driver (KernelDriver)


Scan GV650S.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.