home

Matrox.PDesk.Startup.exe

StartUp Application

Matrox Graphics Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Matrox PowerDesk’.
Publisher:
Matrox Graphics Inc.  (signed and verified)

Product:
StartUp Application

Version:
01,19,0054,1015

MD5:
0c1efe40a8093df39dca20e45c7dc164

SHA-1:
d4df0a6c28064d7fdf14a18e8b7cec9171605566

SHA-256:
8fea26aaf8dfc2bdd6cf76ecdaa6b33dc7a341892d5864aa7285040084f0c538

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/7/2024 2:59:14 AM UTC  (today)

File size:
878.3 KB (899,328 bytes)

Product version:
01,19,0054,1015

Copyright:
Copyright (c) 2008-2014, Matrox Graphics Inc. All rights reserved.

Original file name:
Matrox.PDesk.Startup.exe

File type:
Executable application (Win32 EXE)

Language:
English (Canada)

Common path:
C:\Program Files\matrox graphics\powerdesk\matrox.pdesk.startup.exe

Digital Signature
Signed by:
Matrox Graphics Inc.

Authority:
VeriSign, Inc.

Valid from:
5/28/2014 2:00:00 AM

Valid to:
6/28/2015 1:59:59 AM

Subject:
CN=Matrox Graphics Inc., O=Matrox Graphics Inc., L=Dorval, S=Quebec, C=CA

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
14D26C47F5F568363BABFBEB8FF3A50F

File PE Metadata
Compilation timestamp:
10/15/2014 8:24:20 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:B2Q44ZIzSMVHViMyhK7sjaHBuOiMDOLJOuuVCNULk5OTroARwMN6jCRroKIUF:BL419RViMhxi1Uv+OTroARprRr7RF

Entry address:
0x82A2E

Entry point:
E8, 35, 3B, 00, 00, E9, 78, FE, FF, FF, 6A, 0C, 68, E8, A1, 4C, 00, E8, 90, 2A, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, B8, 36, 4D, 00, 77, 22, 6A, 04, E8, 20, 3D, 00, 00, 59, 83, 65, FC, 00, 56, E8, 27, 45, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, 9C, 2A, 00, 00, C3, 6A, 04, E8, 1B, 3C, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 83, FE, E0, 0F, 87, A1, 00, 00, 00, 53, 57, 8B, 3D, 4C, A2, 4A, 00, 83, 3D, 6C, 22, 4D, 00, 00, 75, 18, E8, F8, 2E, 00...
 
[+]

Code size:
675 KB (691,200 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Matrox PowerDesk

Command:
"C:\Program Files\matrox graphics\powerdesk\matrox.pdesk.startup.exe"


Scan Matrox.PDesk.Startup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.