home

DVDFAB.SYS

Passkey

Fengtao Software Inc.

It runs as a Windows kernel mode device driver named “dvdfab”.
Publisher:
Windows (R) Win 7 DDK provider  (signed by Fengtao Software Inc.)

Product:
Passkey

Description:
DVDFab Passkey Driver

Version:
8.0.3.7 built by: WinDDK

MD5:
66b0ab0e514d0a29241b31fec29a5a18

SHA-1:
9c972b0a48356e90f50357636e7e918f3d455b4a

SHA-256:
1745c51559a6952441a603b1608126bdd4095d657fd4b0542e5b0d28f298ce8c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 2:44:56 AM UTC  (today)

File size:
61 KB (62,424 bytes)

Product version:
8.0.3.7

Copyright:
Copyright (C) 2001-2015 Fengtao Software Inc.

Original file name:
DVDFAB.SYS

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\dvdfab.sys

Digital Signature
Signed by:
Fengtao Software Inc.

Authority:
GlobalSign nv-sa

Valid from:
9/14/2015 12:09:45 AM

Valid to:
8/3/2018 10:16:57 PM

Subject:
CN=Fengtao Software Inc., O=Fengtao Software Inc., L=Beijing, S=Beijing, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121E2B067DC6C4CC14498C65561316A9EAC

File PE Metadata
Compilation timestamp:
9/22/2015 4:44:22 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
1536:8JGNoJP+2TZ8oVt2hP6apkLgmgBD+uGgli3:8YNevTaof2hy/LmibgU

Entry address:
0xC63E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 12, 75, FF, FF, CC, CC, 98, C6, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FE, CC, 00, 00, 0C, 92, 00, 00, 8C, C6, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 38, CD, 00, 00, 00, 92, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 0C, CD, 00, 00, 22, CD, 00, 00, 00, 00, 00, 00, D2, C7, 00, 00, EA, C7, 00, 00, FC, C7, 00, 00, 0E, C8, 00, 00, 26, C8, 00, 00, 3E, C8, 00, 00, 52, C8, 00, 00, 6E, C8, 00, 00, 8A, C8, 00, 00, 98, C8...
 
[+]

Entropy:
6.6380

Code size:
37 KB (37,888 bytes)

Driver
Display name:
dvdfab

Type:
Kernel device driver (KernelDriver)


Scan DVDFAB.SYS - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.