home

prl_pv32.sys

Parallels Desktop 9.0

Parallels, Inc.

Publisher:
Parallels Holdings, Ltd. and its affiliates.  (signed by Parallels, Inc.)

Product:
Parallels Desktop 9.0

Description:
Parallels Paravirtualization Helper

Version:
9.0.23046.917896

MD5:
32c065e2db50ea4bae46c9973c8192a9

SHA-1:
34bc899b8073418307503ab234a4e1e12a5f61f8

SHA-256:
17d0c6d047239b539d6b2b5a24ed4e0fa30b13c6e3dba58c86bfbfe2df9a7fe2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 4:40:26 AM UTC  (today)

File size:
52.3 KB (53,504 bytes)

Product version:
9.0 build 23046917896

Copyright:
Copyright 1999-2013 Parallels Holdings, Ltd. and its affiliates. All rights reserved.

Trademarks:
Parallels is a trademark of Parallels Holdings, Ltd. and its affiliates.

Original file name:
prl_paravirt

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\i386\prl_pv32.sys

Digital Signature
Signed by:
Parallels, Inc.

Authority:
VeriSign, Inc.

Valid from:
10/10/2012 3:00:00 AM

Valid to:
11/3/2015 1:59:59 AM

Subject:
CN="Parallels, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Parallels, Inc.", L=Renton, S=Washington, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
46B7CF5DCE8106BFE4344B11B4DF1319

File PE Metadata
Compilation timestamp:
9/4/2013 3:38:14 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
192:Z5YAOpAF/LE/g8htqHv0WUtUnYe+PjPQu7RZgjlDrw5+vnr9ZCspE+TMQrlQkka0:3YPAF/LE/dhyU2nYPLQa6jOLeM2A

Entry address:
0xD03E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 58, 49, FF, FF, CC, CC, 78, D0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F4, D2, 00, 00, 00, 30, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F0, D0, 00, 00, 06, D1, 00, 00, 12, D1, 00, 00, 1E, D1, 00, 00, 28, D1, 00, 00, 38, D1, 00, 00, 4A, D1, 00, 00, 62, D1, 00, 00, 7A, D1, 00, 00, 8C, D1, 00, 00, AA, D1, 00, 00, BC, D1, 00, 00, CC, D1, 00, 00, E2, D1, 00, 00, F4, D1, 00, 00, 04, D2, 00, 00, 1A, D2, 00, 00, 2E, D2...
 
[+]

Code size:
7.5 KB (7,680 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.