home

ts_athr.sys

CommView for WiFi Driver Vista/Server 2008/W7/W8

TamoSoft Ltd

It runs as a Windows kernel mode device driver named “[CommView] Atheros Extensible Wireless LAN device driver”.
Publisher:
TamoSoft  (signed by TamoSoft Ltd)

Product:
CommView for WiFi Driver Vista/Server 2008/W7/W8

Version:
10.0.0.341

MD5:
f51d9d3edae918ff70accfd0422c0d68

SHA-1:
38ba5da277cd5bb3101b6164a1dee35c88e9c72c

SHA-256:
2c52c019c2b9531b1b491667527ecdd79b6ac9b4679504dfb5602a2ddb190e64

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 6:39:48 PM UTC  (today)

File size:
2.4 MB (2,537,672 bytes)

Product version:
10.0.0.341

Copyright:
Copyright (C) 2001-2015 TamoSoft

Original file name:
ts_athr.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Windows\System32\drivers\ts_athr.sys

Digital Signature
Signed by:
TamoSoft Ltd

Authority:
VeriSign, Inc.

Valid from:
8/8/2012 2:00:00 AM

Valid to:
10/23/2015 1:59:59 AM

Subject:
CN=TamoSoft Ltd, OU=Application Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=TamoSoft Ltd, L=Christchurch, S=New Zealand, C=NZ

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3CD1573766F79D2B3DB89D43FA987EC5

File PE Metadata
Compilation timestamp:
6/2/2015 6:01:37 PM

OS version:
6.3

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
12.0

CTPH (ssdeep):
24576:j/dBiFtAurPiA2V9OChF8sqDZOnoyRnv9pt2zcTHPFevdFpo1ktGWdD5Y2TH6C:j1BsijQZOndtLHtevvpv5Y2TH6C

Entry address:
0x1C64C6

Entry point:
8B, FF, 55, 8B, EC, E8, 30, DB, 09, 00, 5D, E9, 00, 00, 00, 00, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 85, F6, 75, 0E, FF, 75, 0C, 56, E8, 40, 54, FA, FF, E9, AE, 00, 00, 00, 53, 57, FF, 75, 0C, BF, 10, 33, 66, 00, 89, 35, FC, 30, 66, 00, 57, C7, 05, 10, 33, 66, 00, 00, 00, 08, 02, C7, 05, 14, 33, 66, 00, 08, 31, 66, 00, FF, 15, 1C, E2, 5D, 00, 68, F8, 30, 66, 00, BB, B0, FB, 65, 00, 53, 57, 56, E8, A2, 01, 00, 00, 85, C0, 78, 6B, 53, E8, E6, 00, 00, 00, 8B, F8, 85, FF, 78, 58, E8, 8D, 00, 00, 00, 8B, F8, 85...
 
[+]

Entropy:
6.2080

Code size:
1.9 MB (1,954,816 bytes)

Driver
Display name:
[CommView] Atheros Extensible Wireless LAN device driver

Service name:
TS_ARN5416

Type:
Kernel device driver (KernelDriver)

Group:
NDIS


Scan ts_athr.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.