tdnetfilter.sys

Nanjing Universal Networks Co.,Ltd

It runs as a Windows kernel mode device driver named “TDNetFilter”.
Publisher:
Nanjing Universal Networks Co.,Ltd  (signed and verified)

MD5:
47c923cd4d652feab353e8b0f7deb7b1

SHA-1:
d6e7a969259921b9f5fe81276739bd524618cc16

SHA-256:
c615e2a96cfb340080cb58ddc94a93cd3dd4435cc98a32717640fc709bb11b3e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 12:31:13 PM UTC  (today)

File size:
16.2 KB (16,616 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\tdnetfilter.sys

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
8/9/2011 9:00:00 AM

Valid to:
9/8/2014 8:59:59 AM

Subject:
CN="Nanjing Universal Networks Co.,Ltd", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Nanjing Universal Networks Co.,Ltd", L=Nanjing, S=Jiangsu, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
25B7394B7D09F9F6EB060AA624013DF5

File PE Metadata
Compilation timestamp:
1/2/2014 11:18:37 AM

OS version:
6.2

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
11.0

Entry address:
0x1B60

Entry point:
8B, FF, 55, 8B, EC, E8, 9C, 64, 00, 00, 5D, E9, 1C, FF, FF, FF, CC, CC, CC, CC, CC, CC, E8, 31, 00, 00, 00, C2, 08, 00, CC, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, A1, AC, 72, 40, 00, 85, C0, 74, 0C, 3D, 84, 1B, 40, 00, 74, 05, FF, 75, 08, FF, D0, E8, 09, 00, 00, 00, 5D, C2, 04, 00, CC, CC, CC, CC, CC, 8B, FF, 56, BE, 0C, 30, 40, 00, 56, E8, 6C, 00, 00, 00, FF, 35, B0, 72, 40, 00, 56, 68, C8, 74, 40, 00, E8, 23, 01, 00, 00, 5E, C3, CC, CC, CC, CC, CC, 8B, FF, 57, B8, 40, 30, 40, 00, BF, 48, 30, 40, 00, 3B...
 
[+]

Code size:
5.5 KB (5,632 bytes)

Driver
Display name:
TDNetFilter

Description:
Net Filter Driver

Type:
Kernel device driver (KernelDriver)


Scan tdnetfilter.sys - Powered by Reason Core Security