home

UsbSnoop.SYS

SniffUsb V2.0.0.6

PRINTING COMMUNICATIONS ASSOC., INC.

It runs as a Windows kernel mode device driver named “usbsnoop (display)”.
Publisher:
SniffUsb/UsbSnoop Project  (signed by PRINTING COMMUNICATIONS ASSOC., INC.)

Product:
SniffUsb V2.0.0.6

Description:
USB filter for traffic monitoring (x86)

Version:
V2.0.0.6 built by: WinDDK

MD5:
b476676272994e59401dceeedf109179

SHA-1:
8f19788bd75a3f62deb7b8e9f5bc615b97932f45

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 3:29:42 AM UTC  (today)

File size:
39.9 KB (40,896 bytes)

Product version:
V2.0.0.6

Copyright:
Copyright © 2000-2007 SniffUsb Project

Original file name:
UsbSnoop.SYS

File type:
Driver (Win32 SYS)

Language:
English (United States)

Digital Signature
Signed by:
PRINTING COMMUNICATIONS ASSOC., INC.

Authority:
VeriSign, Inc.

Valid from:
8/2/2006 3:00:00 AM

Valid to:
10/2/2007 2:59:59 AM

Subject:
CN="PRINTING COMMUNICATIONS ASSOC., INC.", OU=PCAUSA, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="PRINTING COMMUNICATIONS ASSOC., INC.", L=Smyrna, S=Gerogia, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
27E2D63141928E431648B468B9241D6E

File PE Metadata
Compilation timestamp:
2/24/2007 9:54:35 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
768:lBBf2FNQZ0yAZ4zzMUjnWq/fYvJs85WT32Q4PnHqN409LsR6okv6ivDTukgT+biF:lzOFNK0yAZ4zzMUjnWq/fYvJs85WT32p

Entry address:
0x7024

Entry point:
8B, FF, 55, 8B, EC, A1, 54, 4D, 01, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 1E, 8B, 15, 6C, 48, 01, 00, B8, 54, 4D, 01, 00, C1, E8, 08, 33, 02, A3, 54, 4D, 01, 00, 75, 07, 8B, C1, A3, 54, 4D, 01, 00, F7, D0, A3, 58, 4D, 01, 00, 5D, E9, 20, FF, FF, FF, CC, CC, B0, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 42, 77, 00, 00, 8C, 47, 00, 00, A4, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 80, 77, 00, 00, 80, 47, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Code size:
26.8 KB (27,392 bytes)

Driver
Display name:
usbsnoop (display)

Service name:
usbsnoop

Type:
Kernel device driver (KernelDriver)


Scan UsbSnoop.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.