home

bdwtxag.exe

FM Antivirus 2015 v2

NetArt Sp. z o.o.

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘Agent Portfela FM Antivirus 2015’.
Publisher:
FM Antivirus 2015  (signed by NetArt Sp. z o.o.)

Product:
FM Antivirus 2015 v2

Description:
FM Antivirus 2015 Portfel Agent

Version:
19.1.0.117 108468

MD5:
84a54b3b7d7b7c9239c342448cb14387

SHA-1:
dfdce08e9d959846d1edc363906143140e610b9e

SHA-256:
087575bdf032ea1edcfe5da4466e825a06ba0edf75c31a1a5f2dfec33af521db

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 11:31:59 PM UTC  (a few moments ago)

File size:
650.8 KB (666,376 bytes)

Product version:
19.1.0.117 108468

Copyright:
©1997-2015 FM Antivirus 2015

Original file name:
bdwtxag.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\fm antivirus 2015\fm antivirus 2015\bdwtxag.exe

Digital Signature
Signed by:
NetArt Sp. z o.o.

Authority:
Unizeto Technologies S.A.

Valid from:
9/9/2015 9:54:42 AM

Valid to:
9/8/2016 9:54:42 AM

Subject:
E=info@fmantivirus.com, CN=NetArt Sp. z o.o., OU=FM, O=NetArt Sp. z o.o., C=PL

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
555F210760707C9E26560BB940BB4761

File PE Metadata
Compilation timestamp:
6/18/2015 4:53:14 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:4aR+SgdN55hRQD/t99ZNrul56HaH76yQ1RZVFO9tOAYN9XbE2pMn8M4OlKqvjJ2:4bLTQD9ilsEb4ZVY9IAYNxlzSrJ2

Entry address:
0x45C45

Entry point:
E8, 19, 04, 00, 00, E9, 6B, FD, FF, FF, CC, FF, 25, 3C, 43, 45, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 00, 99, 46, 00, 89, 0D, FC, 98, 46, 00, 89, 15, F8, 98, 46, 00, 89, 1D, F4, 98, 46, 00, 89, 35, F0, 98, 46, 00, 89, 3D, EC, 98, 46, 00, 66, 8C, 15, 18, 99, 46, 00, 66, 8C, 0D, 0C, 99, 46, 00, 66, 8C, 1D, E8, 98, 46, 00, 66, 8C, 05, E4, 98, 46, 00, 66, 8C, 25, E0, 98, 46, 00, 66, 8C, 2D, DC, 98, 46, 00, 9C, 8F, 05, 10, 99, 46, 00, 8B, 45, 00, A3, 04, 99, 46, 00, 8B, 45, 04, A3, 08, 99, 46, 00...
 
[+]

Code size:
330 KB (337,920 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Agent Portfela FM Antivirus 2015

Command:
"C:\Program Files\fm antivirus 2015\fm antivirus 2015\bdwtxag.exe"


Scan bdwtxag.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.