Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

e6599 50.00%
bf6f2 50.00%
(Note, Baidu (China) Co. publishes each variation of this file with the same version, but the hashes are unique.)

Relationships

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegCloseKey, RegSetValueExA, RegOpenKeyExA, RegQueryValueExA, SetSecurityInfo, RegDeleteValueW, RegCreateKeyExW, RegSetValueExW, RegOpenKeyExW, RegEnumKeyExW, RegQueryInfoKeyW, RegDeleteKeyW, SetSecurityDescriptorSacl, GetSecurityDescriptorSacl, ConvertStringSecurityDescriptorToSecurityDescriptorW, SetSecurityDescriptorDacl, InitializeSecurityDescriptor
comctl32.dll
InitCommonControlsEx
gdi32.dll
GetStockObject
iphlpapi.dll
GetAdaptersInfo
kernel32.dll
Thread32Next, VirtualQuery, IsBadWritePtr, FreeLibrary, lstrlenW, GetProcAddress, GetModuleHandleW, lstrcmpiW, GetLastError, LoadLibraryExW, InitializeCriticalSectionAndSpinCount, DeleteCriticalSection, InterlockedDecrement, InterlockedIncrement, VirtualProtect, GetCurrentThread, CreateEventW, LocalFree, LoadLibraryW, GetCurrentProcess, FlushInstructionCache, SetLastError, CreateFileMappingW, MapViewOfFile, UnmapViewOfFile, InitializeCriticalSection, lstrlenA, WriteFile, CreateFileW, DeleteFileW, WideCharToMultiByte, TerminateThread, WaitForMultipleObjects, GetPrivateProfileStringW, VirtualFreeEx, ReadProcessMemory, VirtualAllocEx, OpenProcess, GetPrivateProfileIntW, ReadFile, GlobalLock, GlobalUnlock, GetEnvironmentVariableW, SetEnvironmentVariableW, GetVolumeInformationA, GlobalAlloc, GlobalFree, DeviceIoControl, lstrcmpW, CreateProcessW, SetUnhandledExceptionFilter, GetCurrentProcessId, InterlockedPopEntrySList, VirtualAlloc, ResumeThread, IsProcessorFeaturePresent, InterlockedPushEntrySList, InterlockedCompareExchange, GetVersionExW, HeapReAlloc, HeapDestroy, HeapFree, GetThreadContext, SetThreadContext, SetEnvironmentVariableA, CompareStringW, WriteConsoleW, SetEndOfFile, SetStdHandle, IsValidLocale, EnumSystemLocalesA, GetLocaleInfoA, GetUserDefaultLCID, FlushFileBuffers, GetConsoleMode, GetConsoleCP, GetCurrentDirectoryW, PeekNamedPipe, GetFileInformationByHandle, GetFullPathNameW, SetFilePointer, GetFileType, SetHandleCount, GetEnvironmentStringsW, FreeEnvironmentStringsW, LCMapStringW, GetStringTypeW, GetTimeZoneInformation, IsValidCodePage, GetOEMCP, GetACP, GetCPInfo, GetLocaleInfoW, GetStdHandle, SuspendThread, OpenThread, Thread32First, CreateToolhelp32Snapshot, CloseHandle, GetProcessHeap, HeapAlloc, MultiByteToWideChar, GetCommandLineW, WritePrivateProfileStringW, SystemTimeToFileTime, GetLocalTime, GetFileAttributesW, GetModuleFileNameW, GetTickCount, GetCurrentThreadId, EnterCriticalSection, LeaveCriticalSection, FindResourceExW, FindResourceW, LoadResource, LockResource, SizeofResource, FindClose, VirtualFree, WaitForSingleObject, InterlockedExchangeAdd, Sleep, HeapCreate, ExitProcess, FindFirstFileExW, GetDriveTypeW, FileTimeToLocalFileTime, RtlUnwind, GetStartupInfoW, HeapSetInformation, ExitThread, TerminateProcess, CreateThread, TlsGetValue, TlsSetValue, TlsAlloc, TlsFree, QueryPerformanceCounter, GetSystemTimeAsFileTime, FileTimeToSystemTime, InterlockedExchange, HeapSize, RaiseException, IsDebuggerPresent, UnhandledExceptionFilter, DecodePointer, EncodePointer, GetModuleHandleExW
libpushapi.dll
pushApi_reportPlayList, pushApi_stop, pushApi_start, pushApi_set_pushcontent_callback, pushApi_set_pushcfg_callback
log_report.dll
XLogV
ole32.dll
CoInitialize, CoCreateInstance, CoTaskMemRealloc, CoTaskMemFree, OleCreate, StgCreateDocfile, OleInitialize, OleRun, CoUninitialize, CoTaskMemAlloc
shell32.dll
SHCreateDirectoryExW, SHGetSpecialFolderPathW, CommandLineToArgvW, SHGetFolderPathW, ShellExecuteW, Shell_NotifyIconW
shlwapi.dll
PathFileExistsW, PathAppendW, PathFindFileNameW, PathIsDirectoryW
user32.dll
CopyRect, wsprintfW, UnregisterClassA, GetMessageW, PeekMessageW, FindWindowW, DefWindowProcW, CreateDialogParamW, SetTimer, KillTimer, PostQuitMessage, MapWindowPoints, IsWindow, IsWindowVisible, MoveWindow, EqualRect, GetSystemMetrics, GetWindowRect, SystemParametersInfoW, ShowWindow, PostMessageW, IsDialogMessageW, SendMessageW, SetWindowPos, GetClientRect, GetParent, GetMonitorInfoW, MonitorFromWindow, DestroyWindow, SetWindowLongW, CharLowerBuffW, CharNextW, GetForegroundWindow, SetForegroundWindow, DispatchMessageW, TranslateMessage, RegisterWindowMessageW, CreateWindowExW, RegisterClassExW, LoadCursorW, LoadIconW, LoadImageW, EndDialog, CloseClipboard, GetClipboardData, OpenClipboard, GetActiveWindow, PtInRect, IsRectEmpty, GetWindowThreadProcessId, GetWindowLongW, EnumChildWindows, GetClassNameW, SetRect, InflateRect, GetCursorPos, GetWindow
version.dll
GetFileVersionInfoW, VerQueryValueW, GetFileVersionInfoSizeW
winhttp.dll
WinHttpCloseHandle, WinHttpReadData, WinHttpQueryDataAvailable, WinHttpReceiveResponse, WinHttpSendRequest, WinHttpOpenRequest, WinHttpConnect, WinHttpOpen, WinHttpCrackUrl
winmm.dll
timeGetTime

bdbtray.exe

By Baidu (China) Co. (Signed)

Remove bdbtray.exe
MD5:   e6599badc4345c73cc642b0f8af6b545
SHA1:   c760843c4accaf6860b24ce07e18c490598c04c3

Overview

bdbtray.exe executes as a process with the local user's privileges. The file is digitally signed by Baidu (China) Co. which was issued by the GlobalSign nv-sa certificate authority (CA).

DetailsDetails

File name:bdbtray.exe
Typical file path:C:\Program Files\baidu\baiduplayer\3.2.1.107\bdbtray.exe
Size:861.58 KB (882,256 bytes)
Build date:9/25/2013 1:56 PM
Certificate
Issued to:Baidu (China) Co.
Authority (CA):GlobalSign nv-sa
Effective date:Wednesday, February 22, 2012
Expiration date:Sunday, February 22, 2015
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details
Network connections
  • [UDP] listens on port 53914

    • ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.06352821%
    0.028634%
    Kernel CPU:0.03498177%
    0.013761%
    User CPU:0.02854644%
    0.014873%
    Kernel CPU time:2,683 ms/min
    100,923,805ms/min
    CPU cycles:9,542,018/sec
    17,470,203/sec
    Memory
    Private memory:14.78 MB
    21.59 MB
    Private (maximum):32 MB
    Private (minimum):30.43 MB
    Non-paged memory:14.78 MB
    21.59 MB
    Virtual memory:195.1 MB
    140.96 MB
    Virtual memory (peak):207.48 MB
    169.69 MB
    Working set:32.02 MB
    18.61 MB
    Working set (peak):35.63 MB
    37.95 MB
    Page faults:15,434/min
    2,039/min
    I/O
    I/O read transfer:2.13 KB/sec
    1.02 MB/min
    I/O read operations:1/sec
    343/min
    I/O write transfer:309 Bytes/sec
    274.99 KB/min
    I/O write operations:1/sec
    227/min
    I/O other transfer:2.02 KB/sec
    448.09 KB/min
    I/O other operations:123/sec
    1,671/min
    Resource allocations
    Threads:20
    12
    Handles:443
    600
    GUI GDI count:36
    103
    GUI GDI peak:40
    142
    GUI USER count:49
    49
    GUI USER peak:57
    71

    BehaviorsProcess properties

    Integrety level:High
    Platform:32-bit
    Command line:"C:\Program Files\baidu\baiduplayer\3.2.1.107\bdbtray.exe" /hr /nrmd
    Owner:User

    ResourcesThreads

    Averages
     
    bdbtray.exe (main module)
    Total CPU:5.31603872%
    0.272967%
    Kernel CPU:0.11456620%
    0.107585%
    User CPU:5.20147252%
    0.165382%
    CPU cycles:98,425,334/sec
    5,741,424/sec
    Memory:884 KB
    1.16 MB
    msvcrt.dll (Windows NT CRT DLL by Microsoft)
    Total CPU:0.00884194%
    Kernel CPU:0.00126313%
    User CPU:0.00757881%
    CPU cycles:104,530/sec
    Memory:688 KB
    libpushapi.dll (by baidu.com)
    Total CPU:0.00882707%
    Kernel CPU:0.00588471%
    User CPU:0.00294236%
    CPU cycles:832,152/sec
    Memory:192 KB
    mshtml.dll (Windows Internet Explorer by Microsoft)
    Total CPU:0.00392877%
    Kernel CPU:0.00224494%
    User CPU:0.00168383%
    CPU cycles:78,949/sec
    Memory:13.69 MB
    clientstat.dll (Baidu Client App)
    Total CPU:0.00251701%
    Kernel CPU:0.00000000%
    User CPU:0.00251701%
    CPU cycles:34,984/sec
    Memory:740 KB
    WININET.dll
    Total CPU:0.00168026%
    Kernel CPU:0.00168026%
    User CPU:0.00000000%
    CPU cycles:15,987/sec
    Memory:1.72 MB

    Common loaded modules

    These are modules that are typiclaly loaded within the context of this process.

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 7 Home Premium 50.00%
    Windows 7 Ultimate 50.00%

    Distribution by countryDistribution by country

    Hong Kong installs about 50.00% of bdbtray.exe.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    ASUS 66.67%
    GIGABYTE 33.33%
    Back to top
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE