What is the "ntoskrnl.exe" ?

Our database contains 353 different files for filename ntoskrnl.exe . You can also check most distributed file variants with name ntoskrnl.exe. This files most often belongs to product Wine. and were most often developed by company Microsoft Corporation. This files most often have description Wine core dll. Agregate rating is 5(5) stars - based on 12 reviews.This is executable file. You can find it running in Task Manager as the process ntoskrnl.exe.

This executable is a core part of MS Windows - NT Kernel system file. This executable is responsible for the Windows kernel operations, check the complete description on MS technet pages on http://technet.microsoft.com/en-us/library/cc750820.aspx

ntoskrnl.exe Process

File details of most used file with name "ntoskrnl.exe"

Product:
Wine
Company:
Microsoft Corporation
Description:
Wine core dll
Version:
6.1.7601.17592
MD5:
22bd32df99646b3c24d333c0892078ba
SHA1:
72d3c7ad53b6d9e22401939600a7dc7d0d9caeb7
SHA256:
a24dd94abd17ad1b9ae1571ea4f481721c2cea2e3d2034e2dd1804ca6248cd10
Size:
2488
Directory:
C:\Windows\System32
Operating System:
Windows XP
Occurence:
Medium oc1

Is the Process "ntoskrnl.exe" Safe or Threat ?

Loading Graph
100% of reviewed files are marked as Safe .
Latest new variant of the file with name "ntoskrnl.exe" was discovered 4260 days ago. Our database contains 17 variants of the file "ntoskrnl.exe" with final rating Safe and 1 variants with final rating Threat . Final ratings are based on file reviews, discovered date, users occurence and antivirus scan results.

User Reviews of the "ntoskrnl.exe"

There are multiple files in compliance with actual filter settings. All reviews for this files will be displayed.

Reviews for all files with name "ntoskrnl.exe"

  • SAFErating from user MikeOne for file C:\Windows\System32\ntoskrnl.exe (Variant: 18752310)

    This executable is a core part of MS Windows - NT Kernel system file. This executable is responsible for the Windows kernel operations, check the complete description on MS technet pages on http://technet.microsoft.com/en-us/library/cc750820.aspx

  • SAFErating from user Gregory Morse for file C:\Windows\System32\NTOSKRNL.EXE (Variant: 11669042)

    Hypervisor rootkit with MD5/SHA-1 checksum collision. Has any one else confirmed this? Appears more sophisticated than the Flame collision.