home

Resys2k.sys

Backup System Drivers

Howyar Technologies Inc.

It runs as a Windows kernel mode device driver named “Recovery System NT Driver”.
Publisher:
Howyar Technologies Inc.  (signed and verified)

Product:
Backup System Drivers

Description:
Backup System Drivers

Version:
5.1.008

MD5:
7f94a689b18f4f8d1363267555a4b4a6

SHA-1:
f5ba7961fe4858232f249aa608e8742f1fa827bc

SHA-256:
f0c63d664e929b7078f589a71918d68146a5eb5ad9253c599c14024a220bce15

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 3:38:47 AM UTC  (today)

File size:
396.1 KB (405,624 bytes)

Product version:
5.1.008

Copyright:
Backup System Drivers

Original file name:
Resys2k.sys

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\resys2k.sys

Digital Signature
Signed by:
Howyar Technologies Inc.

Authority:
VeriSign, Inc.

Valid from:
5/13/2011 9:00:00 AM

Valid to:
5/13/2013 8:59:59 AM

Subject:
CN=Howyar Technologies Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Howyar Technologies Inc., L=Taipei City, S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
459AEB4B9698490E8625C472226E3446

File PE Metadata
Compilation timestamp:
8/23/2011 6:33:19 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
6.0

Entry address:
0x5E78E

Entry point:
57, 68, FC, 3E, 06, 00, FF, 74, 24, 10, B9, D9, 01, 00, 00, 33, C0, BF, E0, 3D, 06, 00, F3, AB, E8, 69, 70, FA, FF, E8, 54, 5D, FA, FF, 8B, 54, 24, 08, 6A, 1C, 59, B8, EA, 3D, 01, 00, 8D, 7A, 38, 6A, 00, F3, AB, 8B, 42, 18, 68, 9E, 31, 01, 00, 52, C7, 40, 04, 96, 3F, 01, 00, FF, 15, F8, 02, 01, 00, 68, 60, E7, 06, 00, 6A, 00, 6A, 00, E8, 5D, 65, FA, FF, 33, C0, 5F, C2, 08, 00, CC, CC, CC, 58, E8, 05, 00, 00, 00, 00, 00, 00, 00, 00, 00, 34, F3, 05, 00, EC, 02, 00, 00, 2C, E8, 05, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
3.0079

Code size:
122.9 KB (125,888 bytes)

Driver
Display name:
Recovery System NT Driver

Service name:
RENTDriver

Type:
Kernel device driver (KernelDriver)

Group:
Boot Bus Extender


Scan Resys2k.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.