home

padvishui.exe

Padvish

Amnpardaz Software Company

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Padvish EPS Interface Daemon’.
Publisher:
Amnpardaz Software Company  (signed and verified)

Product:
Padvish

Description:
Padvish User Interface

Version:
2, 2, 36, 2260

MD5:
530426693e5dcf08edd2fe12b2ac61d9

SHA-1:
4932c47b8af7e93e20f13960a5fa1a4ee2d2617d

SHA-256:
e2a857dda913403c9000775675aa321b72efafe409bd8fb49663de73d491ce32

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/6/2024 11:05:45 AM UTC  (today)

File size:
6.1 MB (6,419,392 bytes)

Product version:
2, 2, 36, 2260

Copyright:
Copyright (C) 2016 - Amnpardaz Software Co.

Original file name:
APGUI.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\padvish eps\padvishui.exe

Digital Signature
Signed by:
Amnpardaz Software Company

Authority:
Amnpardaz Software Company

Valid from:
5/11/2015 10:55:44 AM

Valid to:
1/1/2040 3:29:59 AM

Subject:
CN=Amnpardaz Software Company

Issuer:
CN=Amnpardaz Software Company

Serial number:
C3335F83AE6F4E9A4680534D191E9134

File PE Metadata
Compilation timestamp:
9/21/2016 2:18:58 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
98304:epaiGleBPD9VEdXKtROue1l2l/qAELyGpbl8TKuvLFjHAlJ6OT3m+SnrkC2belHI:eMKUdXUOv1l2lPE55lCKuhj/lvw

Entry address:
0x266C6E

Entry point:
E8, 15, 0D, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, 18, CA, 99, 00, E8, DC, 0A, 00, 00, 33, F6, 89, 75, E4, 89, 75, E0, FF, 15, F0, D2, 6C, 00, 0F, B7, D8, 89, 75, FC, 64, A1, 18, 00, 00, 00, 8B, 50, 04, 8B, FE, BE, A4, 5D, 9D, 00, 8B, CA, 33, C0, F0, 0F, B1, 0E, 85, C0, 74, 0B, 3B, C2, 75, F0, 33, F6, 46, 8B, FE, EB, 03, 33, F6, 46, 39, 35, A8, 5D, 9D, 00, 75, 0A, 6A, 1F, E8, 5D, 0B, 00, 00, 59, EB, 3B, 83, 3D, A8, 5D, 9D, 00, 00, 75, 2C, 89, 35, A8, 5D, 9D, 00, 68, 28, F7, 6C, 00, 68, 14, F7, 6C, 00, E8...
 
[+]

Entropy:
7.1516

Code size:
2.8 MB (2,932,736 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Padvish EPS Interface Daemon

Command:
"C:\Program Files\padvish eps\padvishui.exe" --hidden


Scan padvishui.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.