home

secudrvu.sys

SDrv

Microms

It runs as a Windows kernel mode device driver named “SecuDrvU”.
Publisher:
Microms

Product:
SDrv

Description:
SDrvM

Version:
2010,5,13,38

MD5:
14716cb13213ac5fa00834af319632e0

SHA-1:
96f979a51ea7facfb384ba1361c8a552a762a44f

SHA-256:
45b1caf979193d83b30458cb1c8daf158a5f29f4a07dff882e5739a4967d41ab

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
7/6/2025 3:40:47 PM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
UnclassifiedMalware
16762

Vba32 AntiVirus
Trojan.WSearch
3.12.22.3

File size:
60.4 KB (61,824 bytes)

Product version:
2010,5,13,38

Copyright:
Copyright 2001-2009. Microms Co., Ltd

Trademarks:
Microms TM

Original file name:
SDrvM.sys

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\secudrvu.sys

File PE Metadata
Compilation timestamp:
5/11/2010 11:37:55 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
768:Wyj1Dz/gFoHDY0qEyr/MCSfjdDzFDSEfcvT+J8XOiYnHPe8JczNoulmewDvP2zGa:WyJH4FoHD/PW/MC6OEUT+Ewj+Wu

Entry address:
0xD4C4

Entry point:
8B, FF, 55, 8B, EC, A1, 14, 7B, 01, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 1A, A1, 70, 60, 01, 00, 8B, 00, 35, 14, 7B, 01, 00, A3, 14, 7B, 01, 00, 75, 07, 8B, C1, A3, 14, 7B, 01, 00, F7, D0, A3, 18, 7B, 01, 00, 5D, E9, 04, F9, FF, FF, 46, 69, 6C, 65, 53, 70, 79, 21, 44, 72, 69, 76, 65, 72, 45, 6E, 74, 72, 79, 3A, 20, 45, 72, 72, 6F, 72, 20, 72, 65, 67, 69, 73, 74, 65, 72, 69, 6E, 67, 20, 46, 53, 20, 63, 68, 61, 6E, 67, 65, 20, 6E, 6F, 74, 69, 66, 69, 63, 61, 74, 69, 6F, 6E, 2C, 20, 73, 74, 61...
 
[+]

Entropy:
6.3231

Code size:
43.4 KB (44,416 bytes)

Driver
Display name:
SecuDrvU

Type:
Kernel device driver (KernelDriver)


Scan secudrvu.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.