home

sdantirtkt.sys

Max Secure Software India Pvt. Ltd.

The file sdantirtkt.sys by Max Secure Software India Pvt has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Max Secure Software India Pvt. Ltd.  (signed and verified)

MD5:
bc8f15b5e1510dbad47ae3c0ea200f82

SHA-1:
f5aab30b104532fb133660a3bdf3c3b2b4b7e3c7

SHA-256:
682e6fb7200fd4ef03e43bca76653a8151432c97d9f6a8473bf2fd6404ce1e81

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
2/25/2025 4:17:38 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.MaxSecure.Optional (L)
17.3.7.4

File size:
27.3 KB (27,992 bytes)

File type:
Driver (Win32 SYS)

Common path:
C:\Program Files\max internet security\sdantirtkt.sys

Digital Signature
Signed by:
Max Secure Software India Pvt. Ltd.

Authority:
Symantec Corporation

Valid from:
8/17/2016 8:00:00 PM

Valid to:
8/27/2017 7:59:59 PM

Subject:
CN=Max Secure Software India Pvt. Ltd., O=Max Secure Software India Pvt. Ltd., L=Pune, S=Maharashtra, C=IN, SERIALNUMBER=017560, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.3=IN

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
39DCEB6101A0E669D4756EC5E8F9CEBA

File PE Metadata
Compilation timestamp:
9/19/2012 3:38:03 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

Entry address:
0x2F3E

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 78, F0, FF, FF, CC, CC, 9C, 2F, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 40, 34, 00, 00, 90, 29, 00, 00, 8C, 2F, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 88, 34, 00, 00, 80, 29, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 62, 34, 00, 00, 4E, 34, 00, 00, 70, 34, 00, 00, 00, 00, 00, 00, 8C, 30, 00, 00, 9C, 30, 00, 00, A6, 30, 00, 00, B6, 30, 00, 00, C2, 30, 00, 00, D0, 30, 00, 00, E8, 30, 00, 00, F8, 30, 00, 00, 0E, 31...
 
[+]

Entropy:
6.9519

Code size:
10.8 KB (11,008 bytes)

Remove sdantirtkt.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.