home

vssservice.exe

DSG Retail Limited

It runs as a separate (within the context of its own process) windows Service named “Livedrive VSS Service”.
Publisher:
DSG Retail Limited  (signed and verified)

MD5:
417b2ae180530afca32a1e834be434ce

SHA-1:
5299fcb16e62ad237c15f716e1463a7a6c45cbda

SHA-256:
bd2e3083e11ccbfaab7f7bb9ff9ff6a14fc0aa6eb32833f19019dcc6f83a868d

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 12:12:34 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Ramnit.C
7.11.30.172

File size:
205.6 KB (210,568 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\knowhow cloud\vssservice.exe

Digital Signature
Signed by:
DSG Retail Limited

Authority:
GlobalSign nv-sa

Valid from:
9/26/2013 12:45:51 PM

Valid to:
9/26/2016 12:45:51 PM

Subject:
CN=DSG Retail Limited, O=DSG Retail Limited, L=Hemel Hempstead, S=Hertfordshire, C=GB

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121495C263926CD3E019E9B697461E92DB5

File PE Metadata
Compilation timestamp:
10/7/2015 2:16:25 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:p2BwVPLoyAoiUvnAeEQU65WqlklHgZ1/czF8tZTwbO2a/:pWwX8I7U65AmwbO2a/

Entry address:
0xB584

Entry point:
FF, 25, E6, 1B, 00, 00, 40, 55, 48, 83, EC, 20, 48, 8B, EA, 48, 89, 4D, 38, 48, 89, 4D, 28, 48, 8B, 45, 28, 48, 8B, 08, 48, 89, 4D, 30, 48, 8B, 45, 30, 81, 38, 63, 73, 6D, E0, 74, 0C, C7, 45, 20, 00, 00, 00, 00, 8B, 45, 20, EB, 05, E8, 1B, EA, FF, FF, 48, 83, C4, 20, 5D, C3, 40, 55, 48, 83, EC, 20, 48, 8B, EA, 83, 7D, 20, 00, 75, 15, 4C, 8B, 4D, 78, 44, 8B, 45, 70, 48, 8B, 55, 68, 48, 8B, 4D, 60, E8, 47, E9, FF, FF, 48, 83, C4, 20, 5D, C3, CC, 03, 30, 01, 00, 07, 00, 00, 00, 00, 00, 00, 00, 16, 80, 10, 00...
 
[+]

Entropy:
6.2226

Code size:
46 KB (47,104 bytes)

Service
Display name:
Livedrive VSS Service

Service name:
LivedriveVSSService

Type:
Win32OwnProcess


Scan vssservice.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.