home

QFMON.SYS

QND ClientLog

Quality Corporation

It runs as a Windows file system device driver named “Qfmon”.
Publisher:
Quality Corporation  (signed and verified)

Product:
QND ClientLog

Description:
Quality Filter Driver

Version:
2.6.0.100

MD5:
5c8ae6cd38cbb67b6007737bc5430653

SHA-1:
7e0af32ab8149d1ebe2cf4a80456e92d98c322a5

SHA-256:
e46aa5d93a6ff3ec6c286fdde60b04d334185747d4c5c253c01dd43c701407b7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/1/2024 12:31:38 PM UTC  (today)

File size:
62.3 KB (63,776 bytes)

Product version:
2.6.0

Copyright:
Copyright (C) 2015 Quality Corporation.

Original file name:
QFMON.SYS

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\qfmon.sys

Digital Signature
Signed by:
Quality Corporation

Authority:
DigiCert Inc

Valid from:
1/28/2015 9:00:00 AM

Valid to:
4/4/2018 9:00:00 PM

Subject:
CN=Quality Corporation, O=Quality Corporation, L=Chiyoda-ku, S=Tokyo, C=JP

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
035C70E4B6DF45D04458E9A6730CAF8C

File PE Metadata
Compilation timestamp:
11/12/2015 10:26:06 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:vWlY6eDaabUFJVEY7NKiVeTmd36PC10kUzQzJl80dpz7t+543hfzKgF:vWl7eDaavuUoeqeY/zNpzh+54Rj

Entry address:
0x10A9A

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 5C, F5, FF, FF, 46, 69, 6C, 65, 53, 70, 79, 21, 44, 72, 69, 76, 65, 72, 45, 6E, 74, 72, 79, 3A, 20, 45, 72, 72, 6F, 72, 20, 63, 72, 65, 61, 74, 69, 6E, 67, 20, 4B, 74, 6D, 20, 72, 65, 73, 6F, 75, 72, 63, 65, 20, 6D, 61, 6E, 61, 67, 65, 72, 2C, 20, 73, 74, 61, 74, 75, 73, 3D, 25, 30, 38, 78, 0A, 00, CC, 5C, 00, 4E, 00, 74, 00, 66, 00, 73, 00, 00, 00, 5C, 00, 46, 00, 61, 00, 74, 00, 00, 00, 46, 69, 6C, 65, 53, 70, 79, 21, 44, 72, 69, 76, 65, 72, 45, 6E, 74, 72...
 
[+]

Entropy:
6.6646

Code size:
43 KB (44,032 bytes)

Driver
Display name:
Qfmon

Type:
File system 'filter' driver (FileSystemDriver)

Group:
FSFilter Activity Monitor


Scan QFMON.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.