home

AppGuardGUI.exe

AppGuard GUI Application

Blue Ridge Networks

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘AppGuardGUI’.
Publisher:
Blue Ridge Networks  (signed and verified)

Product:
AppGuard GUI Application

Version:
3.5.6.0

MD5:
854dca49d6d74479e97a79c8f67fe088

SHA-1:
613efade2a4d31d0a8d58b06e6dbff818bbd742e

SHA-256:
f87a874b94f1bca72bd400a2b6df8efad3abe76fcc3f53a7f79d699ff618f44b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 8:09:01 PM UTC  (today)

File size:
614.3 KB (629,064 bytes)

Product version:
3.5.6.0

Copyright:
Copyright © 2008 - 2013 Blue Ridge Networks, Inc. All Rights Reserved.

Trademarks:
AppGuard

Original file name:
AppGuardGUI.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\blue ridge networks\appguard\appguardgui.exe

Digital Signature
Signed by:
Blue Ridge Networks

Authority:
VeriSign, Inc.

Valid from:
4/9/2013 2:00:00 AM

Valid to:
5/9/2014 1:59:59 AM

Subject:
CN=Blue Ridge Networks, OU=Engineering, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Blue Ridge Networks, L=Chantilly, S=Virginia, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
130DFE5855583C52E79CED540C7AFB9D

File PE Metadata
Compilation timestamp:
8/6/2013 11:44:48 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:9+ax/jyhmn2Wv7OEOB0muqqDL6gbCVO9jGFsFhakJ:9+ax/ucn2WvjOB0mrqn6H8GCha

Entry address:
0x22780

Entry point:
E8, 3F, 05, 00, 00, E9, 35, FD, FF, FF, FF, 25, C0, 77, 42, 00, 57, 56, 53, 33, FF, 8B, 44, 24, 14, 0B, C0, 7D, 14, 47, 8B, 54, 24, 10, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 14, 89, 54, 24, 10, 8B, 44, 24, 1C, 0B, C0, 7D, 14, 47, 8B, 54, 24, 18, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 1C, 89, 54, 24, 18, 0B, C0, 75, 18, 8B, 4C, 24, 18, 8B, 44, 24, 14, 33, D2, F7, F1, 8B, D8, 8B, 44, 24, 10, F7, F1, 8B, D3, EB, 41, 8B, D8, 8B, 4C, 24, 18, 8B, 54, 24, 14, 8B, 44, 24, 10, D1, EB, D1, D9, D1, EA, D1, D8, 0B...
 
[+]

Entropy:
5.3879

Code size:
152 KB (155,648 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
AppGuardGUI

Command:
C:\Program Files\blue ridge networks\appguard\appguardgui.exe


Scan AppGuardGUI.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.