home

ntguard_x64.sys

Ikarus Antivirus Windows Driver

IKARUS Security Software GmbH

It runs as a Windows 64-bit kernel mode device driver named “NTGUARD”.
Publisher:
IKARUS Security Software GmbH  (signed and verified)

Product:
Ikarus Antivirus Windows Driver

Description:
Ikarus Antivirus Windows x64 Driver

Version:
4.0

MD5:
def5659db1b37b98895723865d6055a9

SHA-1:
a913bde6ef4781ea25888ba91ed7cc9e564f8d01

SHA-256:
8ce251ec97da3799df68e7c58a4b39996a5453475e41c728c41571d346066409

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 8:54:31 AM UTC  (today)

File size:
36.9 KB (37,752 bytes)

Product version:
4.0

Copyright:
Copyright (C) 2013 by IKARUS Security Software GmbH

Original file name:
ntguard_x64.sys

File type:
Driver (Win64 SYS)

Common path:
C:\Program Files\atlantis\antivirus\bin\ntguard_x64.sys

Digital Signature
Signed by:
IKARUS Security Software GmbH

Authority:
StartCom Ltd.

Valid from:
8/13/2012 7:06:12 PM

Valid to:
8/15/2014 8:25:56 PM

Subject:
E=support@ikarus.at, CN=IKARUS Security Software GmbH, O=IKARUS Security Software GmbH, L=Wien, S=Wien, C=AT, Description=QgrbF2jp00Tp0hOn

Issuer:
CN=StartCom Class 3 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
06F1

File PE Metadata
Compilation timestamp:
8/7/2013 1:47:57 PM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
768:xEaso7wEhpAJHurj9jvfOS3wYCfNTpZlTw/Qp0xxbhPvgF+aVZOCg:sckHurpLfifN/lC5Dy2

Entry address:
0x109064

Entry point:
48, 83, EC, 28, 4C, 8B, C2, 4C, 8B, C9, E8, 95, FF, FF, FF, 49, 8B, D0, 49, 8B, C9, 48, 83, C4, 28, E9, 0A, 90, EF, FF, CC, CC, B0, 90, 10, 00, 00, 00, 00, 00, 00, 00, 00, 00, EC, 95, 10, 00, 00, 60, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 40, 92, 10, 00, 00, 00, 00, 00, 4A, 92, 10, 00, 00, 00, 00, 00, 62, 92, 10, 00, 00, 00, 00, 00, 72, 92, 10, 00, 00, 00, 00, 00, 86, 92, 10, 00, 00, 00, 00, 00, 96, 92, 10, 00, 00, 00, 00, 00, AC, 92, 10, 00...
 
[+]

Code size:
21.5 KB (22,016 bytes)

Driver
Display name:
NTGUARD

Type:
Kernel device driver (KernelDriver)


Scan ntguard_x64.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.