home

ShdTray.exe

Hyper Smart Virus Solution

EAZ Solution, Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Shield’.
Publisher:
Hyper Computer Solution  (signed by EAZ Solution, Inc.)

Product:
Hyper Smart Virus Solution

Description:
Shield Tray

Version:
10.0

MD5:
bdf7bb62a771eec1149270c2d8781abd

SHA-1:
44d5bdb1037a1296e4f3b0039d8c009354db3534

SHA-256:
3ae431f84e1a2b4b64f42411ce5b045ffca7a4ab14baa01304b39a76dc6f4af0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 8:24:56 PM UTC  (today)

File size:
91.4 KB (93,544 bytes)

Product version:
10.0

Copyright:
Copyright (C) Hyper Computer Solution All rights reserved.

Original file name:
ShdTray.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\shield\shdtray.exe

Digital Signature
Signed by:
EAZ Solution, Inc.

Authority:
DigiCert Inc

Valid from:
12/16/2013 8:00:00 AM

Valid to:
12/24/2014 8:00:00 PM

Subject:
CN="EAZ Solution, Inc.", O="EAZ Solution, Inc.", L=McKinney, S=Texas, C=US

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0FF0D3DF24C9C18B86919C979B0126CE

File PE Metadata
Compilation timestamp:
3/10/2014 1:37:07 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x37D8

Entry point:
E8, 9B, 04, 00, 00, E9, 37, FD, FF, FF, 3B, 0D, 28, 90, 40, 00, 75, 02, F3, C3, E9, 1D, 05, 00, 00, 8B, FF, 55, 8B, EC, F6, 45, 08, 02, 57, 8B, F9, 74, 25, 56, 68, 44, 3E, 40, 00, 8D, 77, FC, FF, 36, 6A, 0C, 57, E8, 45, 01, 00, 00, F6, 45, 08, 01, 74, 07, 56, E8, 0E, F9, FF, FF, 59, 8B, C6, 5E, EB, 14, E8, 1B, 06, 00, 00, F6, 45, 08, 01, 74, 07, 57, E8, F7, F8, FF, FF, 59, 8B, C7, 5F, 5D, C2, 04, 00, 6A, 14, 68, 88, 6A, 40, 00, E8, 83, 03, 00, 00, FF, 35, 0C, 9B, 40, 00, 8B, 35, A0, 50, 40, 00, FF, D6, 59...
 
[+]

Entropy:
6.3681

Code size:
13.5 KB (13,824 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Shield

Command:
"C:\Program Files\shield\shdtray.exe"


Scan ShdTray.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.