home

fwhookdrv.sys

TrustDefender Firewall Driver

Symbiotic Technologies Pty Ltd

Publisher:
Symbiotic Technologies Pty Ltd  (signed and verified)

Product:
TrustDefender Firewall Driver

Version:
1, 0, 1, 2

MD5:
2b5927f43cc54971cc3aa9988e33f3ad

SHA-1:
2cff919c2cc4ba1b36eb197854b469acc6ae4aa3

SHA-256:
c9101570e6707495e61210ca25047df1f04dda406557352175caa777d5f7761b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/4/2024 3:57:43 PM UTC  (today)

File size:
13.9 KB (14,280 bytes)

Product version:
1, 0, 1, 2

Copyright:
Copyright (C) 2006 Symbiotic Technologies Pty Ltd

Original file name:
FwHookDr.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Program Files\trustdefender\trustdefender\fwhookdrv.sys

Digital Signature
Signed by:
Symbiotic Technologies Pty Ltd

Authority:
GlobalSign nv-sa

Valid from:
2/24/2011 4:31:30 AM

Valid to:
2/24/2013 4:31:28 AM

Subject:
CN=Symbiotic Technologies Pty Ltd, O=Symbiotic Technologies Pty Ltd, L=Sydney, S=NSW, C=AU

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012E55FE6BA3

File PE Metadata
Compilation timestamp:
10/25/2011 3:19:15 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
192:XdrFQf69d4yuRVeyowJL/eYJqigreuqtbl6MNfzg542BfzzS0bwj:FFX9d4yDYJLe7RrgtfNE542ZrbC

Entry address:
0x1678

Entry point:
55, 8B, EC, 83, EC, 14, 53, 56, 57, 8B, 3D, 18, 10, 01, 00, 68, 42, 17, 01, 00, 8D, 45, F4, 33, F6, 50, 89, 75, FC, FF, D7, 8D, 45, FC, 50, 56, 56, 68, 22, 23, 69, 00, 8D, 45, F4, 50, 56, 8B, 75, 08, 56, FF, 15, 38, 10, 01, 00, 8B, D8, 85, DB, 7C, 34, 68, 16, 17, 01, 00, 8D, 45, EC, 50, FF, D7, 8D, 45, F4, 50, 8D, 45, EC, 50, FF, 15, 34, 10, 01, 00, 8B, D8, 85, DB, B8, 58, 15, 01, 00, 89, 46, 70, 89, 46, 40, 89, 46, 38, C7, 46, 34, 2A, 16, 01, 00, 7D, 06, 56, E8, 39, FF, FF, FF, 5F, 5E, 8B, C3, 5B, C9, C2...
 
[+]

Entropy:
6.7835

Developed / compiled with:
Microsoft Visual C++

Code size:
2.5 KB (2,560 bytes)

Scan fwhookdrv.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.