home

pci2k.sys

Trusted Security

It runs as a Windows 64-bit kernel mode device driver named “pci2k”.
Publisher:
Trusted Security  (signed and verified)

Version:
6.1.7600.16385 built by: WinDDK

MD5:
8878bb5f03265e31606ce826a5fcc8d0

SHA-1:
7f09be6de6baec1cc9f8c36b4a524774a4d76ddd

SHA-256:
a08efea9d0e42db6ee32d85d9efd67f4b7b33212c7f1e45216e23356c931e0cd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 11:32:42 PM UTC  (a few moments ago)

File size:
40.3 KB (41,272 bytes)

Product version:
6.1.7600.16385

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\pci2k.sys

Digital Signature
Signed by:
Trusted Security

Authority:
VeriSign, Inc.

Valid from:
2/20/2012 5:00:00 AM

Valid to:
2/20/2013 4:59:59 AM

Subject:
CN=Trusted Security, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Trusted Security, L=Zaporizhzhya, S=Zaporizhzhya, C=UA

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2F97DFE85D639EDB6613CEE14EA68EEB

File PE Metadata
Compilation timestamp:
11/13/2012 10:42:54 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:9aglvIiWl8a7a0PjfG7UWzB+mEeuUG2rUxQ6IILLm5:tlvIDjEOmEec2wy2+5

Entry address:
0xC064

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 6E, 51, FF, FF, CC, CC, 20, C1, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 8E, C7, 00, 00, 60, 70, 00, 00, C0, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 9C, C8, 00, 00, 00, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 6E, C8, 00, 00, 00, 00, 00, 00, 56, C8, 00, 00, 00, 00, 00, 00, 44, C8, 00, 00, 00, 00, 00, 00, 26, C8, 00, 00, 00, 00, 00, 00, 0C, C8, 00, 00...
 
[+]

Code size:
24.5 KB (25,088 bytes)

Driver
Display name:
pci2k

Type:
Kernel device driver (KernelDriver)


Scan pci2k.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.