home

PGPdisk.sys

PGP Desktop

PGP Corporation

It runs as a Windows kernel mode device driver named “PGPdisk”.
Publisher:
Symantec Corporation  (signed by PGP Corporation)

Product:
PGP Desktop

Description:
PGPdisk NT/Win2k driver

Version:
10.2.0 (Build 1950)

MD5:
80655d29c0497bde22837495509d1dc9

SHA-1:
c99802ce9ae85c8fec1b45f0b63abed6bfc4875a

SHA-256:
1c39d21712529f4d6298285e9563a1f7ebd2ddeca295e1be4649b01c555e1256

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 8:30:56 PM UTC  (today)

File size:
238.6 KB (244,360 bytes)

Product version:
10.2.0 (Build 1950)

Copyright:
Copyright (C) 2011 Symantec Corporation

Trademarks:
Symantec ,Pretty Good Privacy ,PGP ,the PGP

Original file name:
PGPdisk.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\pgpdisk.sys

Digital Signature
Signed by:
PGP Corporation

Authority:
VeriSign, Inc.

Valid from:
7/16/2009 1:00:00 AM

Valid to:
7/20/2012 12:59:59 AM

Subject:
CN=PGP Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=PGP Corporation, L=Menlo Park, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2CA9EF3DA5315FEB0DD8DA3A01409C36

File PE Metadata
Compilation timestamp:
9/19/2011 9:59:29 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
10.0

CTPH (ssdeep):
3072:hg9f3b19f3b3ahtpiEZzc9rwbvMtfVqn22SBgzgYKN2FErTJHIx8KdeIx:hg9h9UhNvMt49zgYuCw+neIx

Entry address:
0x15690

Entry point:
55, 8B, EC, 6A, FF, 68, 00, 6A, 04, 00, 68, 02, E2, 03, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 1C, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, E4, 89, 5D, FC, 89, 5D, DC, 89, 5D, E0, 68, 14, 16, 01, 00, E8, 22, C6, FF, FF, 68, EC, 15, 01, 00, E8, 18, C6, FF, FF, 68, E8, 15, 01, 00, E8, 0E, C6, FF, FF, 83, C4, 0C, E8, B6, 87, 01, 00, 8B, 35, CC, 73, 04, 00, 89, 75, DC, 8B, 3D, D0, 73, 04, 00, 89, 7D, E0, 8D, 4D, DC, E8, 0C, A7, FF, FF, 84, C0, 74, 32, 8B, 45, 08, A3, C4, 73, 04, 00...
 
[+]

Entropy:
6.8445

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
217.5 KB (222,720 bytes)

Driver
Display name:
PGPdisk

Type:
Kernel device driver (KernelDriver)

Group:
Extended Base


Scan PGPdisk.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.