home

vdrv.64

Windows Codename Longhorn DDK driver

Biz Secure Labs Pvt. Ltd.

Publisher:
Windows (R) Codename Longhorn DDK provider  (signed by Biz Secure Labs Pvt. Ltd.)

Product:
Windows (R) Codename Longhorn DDK driver

Description:
Scanner Filter

Version:
6.0.6001.18000 built by: WinDDK

MD5:
d72647c6e85d7f626b0405bdfb9c7c18

SHA-1:
1ddc206a78e262f864ee0be333012b464bc009e5

SHA-256:
32f8dd0e3a75cb6d496ad46385be060ab6bb02f4978e175f305db1677f33bf5c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 12:18:52 AM UTC  (today)

File size:
19 KB (19,456 bytes)

Product version:
6.0.6001.18000

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
scanner.sys

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\zvscan\vdrv.64

Digital Signature
Signed by:
Biz Secure Labs Pvt. Ltd.

Authority:
GlobalSign nv-sa

Valid from:
1/23/2011 11:27:10 PM

Valid to:
1/24/2012 11:27:07 PM

Subject:
E=support@indiaantivirus.com, CN=Biz Secure Labs Pvt. Ltd., OU=Technical, O=Biz Secure Labs Pvt. Ltd., L=Pune, S=Maharashtra, C=IN

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012DB71B262B

File PE Metadata
Compilation timestamp:
1/6/2011 9:32:12 PM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
384:y1xelU0rfw1gAadwstbWA2ZFy2JGdUb+Daf:wx8UGfF7K13TTiDaf

Entry address:
0x714C

Entry point:
48, 8B, 05, AD, CF, FF, FF, 49, B9, 32, A2, DF, 2D, 99, 2B, 00, 00, 48, 85, C0, 74, 05, 49, 3B, C1, 75, 2F, 4C, 8D, 05, 92, CF, FF, FF, 48, B8, 20, 03, 00, 00, 80, F7, FF, FF, 48, 8B, 00, 49, 33, C0, 49, B8, FF, FF, FF, FF, FF, FF, 00, 00, 49, 23, C0, 49, 0F, 44, C1, 48, 89, 05, 6A, CF, FF, FF, 48, F7, D0, 48, 89, 05, 68, CF, FF, FF, E9, 63, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 4E, 00, 4F, 00, 45, 00, 58, 00, 54, 00, 00, 00, 88, 72, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 7E, 73, 00, 00...
 
[+]

Entropy:
5.7067

Code size:
7.5 KB (7,680 bytes)

Scan vdrv.64 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.