drivesentryreghookdriver.sys

DriveSentry RegHook Driver

DriveSentry Inc

It runs as a Windows file system device driver named “DriveSentryRegHookDriver”.
Publisher:
DriveSentry Inc.  (signed by DriveSentry Inc)

Product:
DriveSentry RegHook Driver

Version:
1.0.0.70 built by: WinDDK

MD5:
dfb70e260efe231cbdda2f32ecf8e475

SHA-1:
ccda617c9fa2bc18298179d6c68d8bb927087da5

SHA-256:
57772b33539aeb3a75819f498c5c3d020d3ada381e6c0a6c3e80f94385b135cd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 6:45:54 PM UTC  (today)

File size:
16.5 KB (16,856 bytes)

Product version:
1.0.0.70

Copyright:
(c) 2006-2009 DriveSentry Inc. All rights reserved.

Original file name:
DriveSentry RegHook Driver

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\drivesentryreghookdriver.sys

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
2/18/2009 6:52:44 PM

Valid to:
2/18/2010 6:52:44 PM

Subject:
E=sales@drivesentry.com, CN=DriveSentry Inc, O=DriveSentry Inc, C=US

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000011F8A0DDC3A

File PE Metadata
Compilation timestamp:
10/7/2009 8:35:07 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
7.10

CTPH (ssdeep):
192:1FjEi6drq8KV1E8NtiHEf2znNwWwPlQP1woCF6OGzeumwMNfzg5WejEPQPgDRUU:1W9dsVOOti9wWwPlQyomGzCNE5WeWDR1

Entry address:
0x18AC

Entry point:
8B, FF, 55, 8B, EC, A1, 84, 0E, 01, 00, 85, C0, B9, 40, BB, 00, 00, 74, 04, 3B, C1, 75, 23, 8B, 15, C4, 0C, 01, 00, B8, 84, 0E, 01, 00, C1, E8, 08, 33, 02, 25, FF, FF, 00, 00, A3, 84, 0E, 01, 00, 75, 07, 8B, C1, A3, 84, 0E, 01, 00, F7, D0, A3, 80, 0E, 01, 00, 5D, E9, 63, FE, FF, FF, CC, 1C, 19, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 24, 1B, 00, 00, 80, 0C, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 98, 19, 00, 00, AA, 19, 00, 00, C2, 19, 00, 00, DA, 19, 00, 00...
 
[+]

Code size:
5.4 KB (5,504 bytes)

Driver
Display name:
DriveSentryRegHookDriver

Description:
DriveSentry registry driver

Type:
File system 'filter' driver (FileSystemDriver)

Group:
FSFilter Anti-Virus

Depends on:
DriveSentryCommsDriver


Scan drivesentryreghookdriver.sys - Powered by Reason Core Security