kavoomd.sys

KaVoom! Video Driver

KaVoom Software Inc.

It runs as a Windows 64-bit kernel mode device driver named “kavoomd”. This is installed with KaVoom! KVM.
Publisher:
KaVoom Software Inc.  (signed and verified)

Product:
KaVoom! Video Driver

Version:
14, 0, 0, 0

MD5:
9f4461f1dd29df9d1d2da2c37d821736

SHA-1:
fb997e9f3e3979fcefa2051a114a2abcb5b2ebfd

SHA-256:
cb3d5d9ac6bd96e930cd0499df622826f730160c9dbcb828fc1b7484a5e12194

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
6/23/2018 6:49:50 PM UTC  (today)

File size:
9.1 KB (9,360 bytes)

Product version:
14, 0, 0, 0

Copyright:
(C) Copyright 2007

Original file name:
kavoomd.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\kavoomd.sys

Digital Signature
Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
1/25/2007 1:00:00 AM

Valid to:
1/24/2008 12:59:59 AM

Subject:
CN=KaVoom Software Inc., OU=SECURE APPLICATION DEVELOPMENT, O=KaVoom Software Inc., L=Vancouver, S=BC, C=CA

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
0663E091EDBFC05D9DC878227730030B

File PE Metadata
Compilation timestamp:
7/19/2007 12:07:09 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
96:DwaNmnZ6kJz6vuegOeiPoHQjzQMLy+/CH+Z57gncgAQF:+6rWOeyowJL///57gngQF

Entry address:
0x5010

Entry point:
48, 8B, 05, F1, E0, FF, FF, 49, B9, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C1, 75, 2F, 4C, 8D, 05, D6, E0, FF, FF, 48, B8, 20, 03, 00, 00, 80, F7, FF, FF, 48, 8B, 00, 49, 33, C0, 49, B8, FF, FF, FF, FF, FF, FF, 00, 00, 49, 23, C0, 49, 0F, 44, C1, 48, 89, 05, AE, E0, FF, FF, 48, F7, D0, 48, 89, 05, 9C, E0, FF, FF, E9, D7, BF, FF, FF, CC, CC, CC, 98, 50, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, EA, 50, 00, 00, 00, 20, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.4426

Code size:
1024 Bytes (1,024 bytes)

Driver
Display name:
kavoomd

Type:
Kernel device driver (KernelDriver)

Group:
Video


The file kavoomd.sys has been discovered within the following program.

KaVoom! KVM  by KaVoom Software
About 8% of users remove it
 
Powered by Should I Remove It?

Scan kavoomd.sys - Powered by Reason Core Security