home

aswRdr.sys

avast! Antivirus System

ALWIL Software

It runs as a Windows 64-bit kernel mode device driver named “aswRdr”.
Publisher:
ALWIL Software  (signed and verified)

Product:
avast! Antivirus System

Description:
avast! TDI RDR Driver

Version:
4.7.936.0 built by: WinDDK

MD5:
47254a2f5cd0e70b3dfafd08329c112b

SHA-1:
b92dd1de1aa213c5c3c76c97c2214cf1b799884f

SHA-256:
cdf4a4495e274b9f085ad830955bfcac7c526a4cc42e925770c36e81715453a2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 10:51:26 PM UTC  (today)

File size:
26.8 KB (27,480 bytes)

Product version:
4.7

Copyright:
Copyright (c) 1996-2007 ALWIL Software

Original file name:
aswRdr.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\aswrdr.sys

Digital Signature
Signed by:
ALWIL Software

Authority:
VeriSign, Inc.

Valid from:
6/11/2006 9:00:00 PM

Valid to:
7/21/2008 8:59:59 PM

Subject:
CN=ALWIL Software, OU=ALWIL Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ALWIL Software, L=Praha, S=Praha, C=CZ

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
218B0A9E1F8BD73127CD3672DA7E894E

File PE Metadata
Compilation timestamp:
1/13/2007 4:55:55 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

Entry address:
0x1230

Entry point:
53, 56, 57, 48, 83, EC, 20, 48, 8B, DA, 48, 8B, F1, E8, 4E, 0B, 00, 00, E8, C9, 13, 00, 00, 32, D2, 48, 8D, 0D, 60, FE, FF, FF, E8, 47, 2D, 00, 00, 48, C7, 46, 68, 00, 00, 00, 00, 48, 8D, 7E, 70, 48, 8D, 05, 28, FF, FF, FF, B9, 1C, 00, 00, 00, F3, 48, AB, 48, 8D, 05, 89, FD, FF, FF, 48, 89, 86, E8, 00, 00, 00, 48, 8B, D3, 48, 8B, CE, E8, 57, 07, 00, 00, 48, 8B, D3, 48, 8B, CE, E8, 2C, 02, 00, 00, 48, 83, C4, 20, 5F, 5E, 5B, C3, CC, CC, CC, CC, 53, 56, 57, 41, 54, 41, 55, 48, 83, EC, 20, 49, 8B, F1, 49, 8B...
 
[+]

Code size:
13.5 KB (13,824 bytes)

Driver
Display name:
aswRdr

Type:
Kernel device driver (KernelDriver)

Group:
PNP_TDI

Depends on:
tcpip


Scan aswRdr.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.