home

QPMON.SYS

Quality Operate Hawkeye

Quality Corporation

It runs as a Windows 64-bit file system device driver named “Qpmon”.
Publisher:
Quality Corporation  (signed and verified)

Product:
Quality Operate Hawkeye

Description:
Quality Filter Driver

Version:
2.1.1

MD5:
20d67773ffb864298a4df23d33bc3f49

SHA-1:
0a28a5f5e17a677b38dbc1e0a5734ef1584b7693

SHA-256:
1b31004d8e45c2120a358fb90e9bea8e492f413510559b942ffd644aadbcc317

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 9:35:29 PM UTC  (today)

File size:
21.3 KB (21,856 bytes)

Product version:
2.1.1

Copyright:
Copyright (C) 2009 Quality Corporation.

Original file name:
QPMON.SYS

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\qpmon.sys

Digital Signature
Signed by:
Quality Corporation

Authority:
GlobalSign nv-sa

Valid from:
2/6/2009 5:02:22 PM

Valid to:
2/6/2010 5:02:22 PM

Subject:
E=t.shibuya@quality.co.jp, CN=Quality Corporation, O=Quality Corporation, C=JP

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000011F4AD2C562

File PE Metadata
Compilation timestamp:
10/14/2009 9:38:55 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:2SD6v8Ve0i0Kl0HXKDEa0quwtomnmjB9QNE54XdUb+2:+ItKlCXK8qNtGpi2

Entry address:
0x7064

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 0E, A2, FF, FF, CC, CC, B0, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 3A, 73, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 70, 71, 00, 00, 00, 00, 00, 00, 88, 71, 00, 00, 00, 00, 00, 00, A0, 71, 00, 00, 00, 00, 00, 00, B4, 71, 00, 00, 00, 00, 00, 00, CC, 71, 00, 00, 00, 00, 00, 00, DE, 71, 00, 00, 00, 00, 00, 00, EC, 71, 00, 00...
 
[+]

Entropy:
6.3030

Code size:
9.5 KB (9,728 bytes)

Driver
Display name:
Qpmon

Type:
File system 'filter' driver (FileSystemDriver)

Group:
FSFilter Activity Monitor


Scan QPMON.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.