home

PTSimBus.sys

PenTablet Bus enumerator

Contoso.com(Test)

It runs as a Windows 64-bit kernel mode device driver named “PenTablet Bus Enumerator”.
Publisher:
PenTablet Driver  (signed by Contoso.com(Test))

Product:
PenTablet Bus enumerator

Version:
5.1.0.0 built by: WinDDK

MD5:
225d3660f926fe761bc8ce10c512aa02

SHA-1:
9e85e76b9367ff23e660c348f2ba4426747c33cd

SHA-256:
eaa2241e858cd0ff7a1f159fb03d0df87735ead1f245f0a569fb6a0330d1b007

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 12:31:55 AM UTC  (today)

File size:
26.7 KB (27,304 bytes)

Product version:
5.1.0.0

Copyright:
Copyright (C) 2002-2006

Original file name:
PTSimBus.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\ptsimbus.sys

Digital Signature
Signed by:
Contoso.com(Test)

Authority:
Contoso.com(Test)

Valid from:
6/14/2009 8:55:11 PM

Valid to:
12/31/2039 6:59:59 PM

Subject:
CN=Contoso.com(Test)

Issuer:
CN=Contoso.com(Test)

Serial number:
4C287E540B95A4B64B9A8E9146B469DB

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
768:guUevCbCj8i6ROyaLa6bEDzazTrtIDFmLW:gVf7PRO7S+2D4K

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 36, FF, FF, FF, CC, CC, 00, 91, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 50, 97, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A8, 92, 00, 00, 00, 00, 00, 00, C0, 92, 00, 00, 00, 00, 00, 00, D8, 92, 00, 00, 00, 00, 00, 00, F0, 92, 00, 00, 00, 00, 00, 00, 02, 93, 00, 00, 00, 00, 00, 00, 1A, 93, 00, 00, 00, 00, 00, 00, 30, 93, 00, 00...
 
[+]

Driver
Display name:
PenTablet Bus Enumerator

Service name:
PTSimBus

Type:
Kernel device driver (KernelDriver)

Group:
Extended Base


Scan PTSimBus.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.