home

AppGuardGUI.exe

AppGuard GUI Application

Blue Ridge Networks

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘AppGuardGUI’.
Publisher:
Blue Ridge Networks  (signed and verified)

Product:
AppGuard GUI Application

Version:
4.0.17.0

MD5:
cb48abe48033dcae888ec289c70a0fea

SHA-1:
26191bdf7b500998431807e15988cf6cfdf1204f

SHA-256:
6984d85dcfa07b0ec9b70770cab4f5251f071b92a8fd429ebe0754f805e3e702

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 11:50:54 AM UTC  (today)

File size:
1.8 MB (1,923,848 bytes)

Product version:
4.0.17.0

Copyright:
Copyright © 2008 - 2013 Blue Ridge Networks, Inc. All Rights Reserved.

Trademarks:
AppGuard

Original file name:
AppGuardGUI.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\blue ridge networks\appguard\appguardgui.exe

Digital Signature
Signed by:
Blue Ridge Networks

Authority:
VeriSign, Inc.

Valid from:
4/8/2013 7:00:00 PM

Valid to:
5/8/2014 6:59:59 PM

Subject:
CN=Blue Ridge Networks, OU=Engineering, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Blue Ridge Networks, L=Chantilly, S=Virginia, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
130DFE5855583C52E79CED540C7AFB9D

File PE Metadata
Compilation timestamp:
10/23/2013 2:57:09 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:WOWZLr1Y+6+cWtO+wf2LhudYPqdJkdOWNPlJWOUZVr8W:8p175cWtO+wf286KkdOWNPlJdYV

Entry address:
0x2F097

Entry point:
E8, 5D, 05, 00, 00, E9, 6B, FD, FF, FF, 3B, 0D, 7C, E0, 44, 00, 75, 02, F3, C3, E9, E4, 05, 00, 00, 8B, FF, 55, 8B, EC, F6, 45, 08, 02, 57, 8B, F9, 74, 25, 56, 68, CA, F7, 42, 00, 8D, 77, FC, FF, 36, 6A, 0C, 57, E8, 9B, 00, 00, 00, F6, 45, 08, 01, 74, 07, 56, E8, 4D, F7, FF, FF, 59, 8B, C6, 5E, EB, 14, E8, E2, 06, 00, 00, F6, 45, 08, 01, 74, 07, 57, E8, 36, F7, FF, FF, 59, 8B, C7, 5F, 5D, C2, 04, 00, FF, 25, F8, 41, 43, 00, FF, 25, D4, 42, 43, 00, FF, 25, CC, 42, 43, 00, 6A, 14, 68, 78, 86, 44, 00, E8, 36...
 
[+]

Entropy:
6.2999

Code size:
201 KB (205,824 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
AppGuardGUI

Command:
C:\Program Files\blue ridge networks\appguard\appguardgui.exe


Scan AppGuardGUI.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.