home

pbsaudrv.sys

PolderbitS Software

It runs as a Windows kernel mode device driver named “PolderbitS Audio Driver”.
Publisher:
PolderbitS Software  (signed and verified)

MD5:
6ca40cbc81660963d645471e7856ca5b

SHA-1:
3f268ca1dc3f183566e6e5969d15c05137f445db

SHA-256:
3f53f63163f27033c483ad4d1a2ba73a8fcecef4f5e63a6d6912bc8d976069f8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 4:37:07 PM UTC  (today)

File size:
104.3 KB (106,768 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\pbsaudrv.sys

Digital Signature
Signed by:
PolderbitS Software

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
2/7/2008 7:00:00 PM

Valid to:
5/4/2009 6:59:59 PM

Subject:
CN=PolderbitS Software, OU=SECURE APPLICATION DEVELOPMENT, O=PolderbitS Software, L=Enschede, S=Overijssel, C=NL

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
478AC8745AAD9B7759CD8182B7B2546F

File PE Metadata
Compilation timestamp:
11/13/2008 8:49:33 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
3072:kO3HZREzlnCuPttFN07XooIytbnvmtMhn1:kO3sz5TrT07Xohyhjv

Entry address:
0xF23D

Entry point:
8B, FF, 55, 8B, EC, A1, 10, 56, 01, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 1E, 8B, 15, 0C, 2C, 01, 00, B8, 10, 56, 01, 00, C1, E8, 08, 33, 02, A3, 10, 56, 01, 00, 75, 07, 8B, C1, A3, 10, 56, 01, 00, F7, D0, A3, 14, 56, 01, 00, 5D, E9, 87, FF, FF, FF, CC, DC, F2, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B0, F9, 00, 00, 0C, 2B, 00, 00, D0, F2, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, FA, 00, 00, 00, 2B, 00, 00, 08, F4, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C6, FA, 00, 00, 38, 2C, 00, 00, 00...
 
[+]

Entropy:
6.1035

Code size:
50.9 KB (52,096 bytes)

Driver
Display name:
PolderbitS Audio Driver

Service name:
PbsAuDrv

Type:
Kernel device driver (KernelDriver)


Scan pbsaudrv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.