home

shdump.sys

Recovery Master

XII CNC Inc.

Publisher:
Igloo Systems, INC.  (signed by XII CNC Inc.)

Product:
Recovery Master

Description:
Shield disk filter driver

Version:
10.10

MD5:
a6fa6a3e05d915fc7afc3002a16ad00f

SHA-1:
7d3f6b323abf3a0b70cee7bff825e9574042b953

SHA-256:
6fc09505d09fd4f8fab31969797409b7364133e4e62815bf42a636a721e328b7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 6:27:41 PM UTC  (today)

File size:
60 KB (61,392 bytes)

Product version:
10.10

Copyright:
Copyright (C) Igloo Systems, INC. All rights reserved.

Original file name:
ShdSys.sys

File type:
Driver (Win32 SYS)

Common path:
C:\ProgramData\microsoft\windows\templates\temp_app\drivers\win7\x86\shdump.sys

Digital Signature
Signed by:
XII CNC Inc.

Authority:
VeriSign, Inc.

Valid from:
10/16/2014 9:00:00 AM

Valid to:
12/16/2015 8:59:59 AM

Subject:
CN=XII CNC Inc., O=XII CNC Inc., L=Anyang-si, S=Gyeonggi-do, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4137FC6815FE7BD75AC6CB5A46ED19B2

File PE Metadata
Compilation timestamp:
11/3/2015 12:06:28 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

Entry address:
0xF03E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, B0, 32, FF, FF, CC, CC, A4, F0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A2, F6, 00, 00, 18, D0, 00, 00, 8C, F0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 2E, F7, 00, 00, 00, D0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, F8, F6, 00, 00, D6, F6, 00, 00, BE, F6, 00, 00, B0, F6, 00, 00, 1A, F7, 00, 00, 00, 00, 00, 00, 0E, F2, 00, 00, 20, F2, 00, 00, 36, F2, 00, 00, 46, F2, 00, 00, 5C, F2, 00, 00, 7C, F2, 00, 00, 96, F2...
 
[+]

Entropy:
6.7424

Code size:
48 KB (49,152 bytes)

Scan shdump.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.