home

LhmonProxy.sys

Network Filter

International Business Machines Corp.

Publisher:
IBM  (signed by International Business Machines Corp.)

Product:
Network Filter

Description:
TDI Filter Loader Module for NTTDIDR

Version:
89629

MD5:
2bdea56d87c95289aa1840903ce8ec7c

SHA-1:
d2bbef6790deb57b86e93c992f32ca9dc80f3dcd

SHA-256:
f07fee28b7598905dc4519df84927aeeb8934eabc48dcc802edde97ce019c449

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/6/2024 2:31:14 AM UTC  (today)

File size:
89.3 KB (91,432 bytes)

Product version:
89629

Copyright:
© IBM. All rights reserved.

Original file name:
LhmonProxy.sys

File type:
Driver (Win64 SYS)

Common path:
C:\users\{user}\downloads\guardium\guardium_9.5_s-tap_windows_r89629\guardium_9.5_s-tap_windows_r89629\windows-v9_next-89629\windows_stap_r89629_installer\Program Files\ibm\guardium_stap\ia64\lhmonproxy.sys

Digital Signature
Signed by:
International Business Machines Corp.

Authority:
DigiCert Inc

Valid from:
1/9/2015 8:00:00 AM

Valid to:
3/14/2018 8:00:00 PM

Subject:
CN=International Business Machines Corp., O=International Business Machines Corp., L=armonk, S=NY, C=US

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
029877B9426BB8648F1AE4C4687F01F9

File PE Metadata
Compilation timestamp:
10/4/2016 3:07:16 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
8.0

Entry address:
0x121C0

Entry point:
00, 60, 03, 00, 00, 00, 00, 00, 00, 60, 22, 00, 00, 00, 00, 00, 80, F0, 01, 00, 00, 00, 00, 00, 00, 60, 22, 00, 00, 00, 00, 00, 52, 53, 44, 53, 76, A5, A6, 1A, 4A, 02, 2D, 48, 8A, A7, 26, 66, 61, D7, 59, 71, 01, 00, 00, 00, 63, 3A, 5C, 77, 69, 6E, 73, 74, 61, 70, 73, 5C, 76, 39, 5F, 6E, 65, 78, 74, 5C, 74, 61, 70, 5C, 77, 69, 6E, 5C, 73, 72, 63, 5C, 6C, 68, 6D, 6F, 6E, 70, 72, 6F, 78, 79, 5C, 62, 69, 6E, 5C, 52, 65, 6C, 65, 61, 73, 65, 5C, 69, 61, 36, 34, 5C, 4C, 68, 6D, 6F, 6E, 50, 72, 6F, 78, 79, 2E, 70...
 
[+]

Entropy:
5.3893

Code size:
65 KB (66,560 bytes)

Scan LhmonProxy.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.