Should I block it?

60%
60% of PCs block this file from running.
Possible reason:
Performance resource utilization

VersionsAdditional versions

10.2.0.276 25.00%
10.1.9.9000 25.00%
10.1.6.6000 25.00%
10.0.0.846 25.00%

Relationships

PE structurePE file structure
Show functions
Import table
advapi32.dll
GetSidIdentifierAuthority, FreeSid, IsValidSecurityDescriptor, DeleteAce, AddAccessDeniedAce, RegEnumValueA, RegCloseKey, RegQueryValueExA, RegOpenKeyExA, AdjustTokenPrivileges, LookupPrivilegeValueA, OpenProcessToken, RegSetValueExA, CopySid, GetLengthSid, GetTokenInformation, SetSecurityDescriptorDacl, AddAccessAllowedAce, AddAce, GetAce, InitializeAcl, GetAclInformation, GetSecurityDescriptorDacl, InitializeSecurityDescriptor, CreateProcessAsUserA, QueryServiceStatus, CloseServiceHandle, OpenServiceA, OpenSCManagerA, DuplicateTokenEx, GetUserNameA, RegOpenKeyA, EqualSid, AllocateAndInitializeSid, GetSidSubAuthority, GetSidSubAuthorityCount
gdi32.dll
CreateSolidBrush, SetTextColor, SetBkColor, TextOutA, GetStockObject, DeleteObject
kernel32.dll
GetSystemDirectoryA, CreateProcessA, LocalFree, lstrcpynA, SetErrorMode, GetDriveTypeA, GetLogicalDriveStringsA, CreateDirectoryA, WriteFile, GetCommandLineA, GetExitCodeProcess, WaitForSingleObject, LeaveCriticalSection, EnterCriticalSection, lstrcmpA, GetCurrentProcessId, OpenProcess, WaitForMultipleObjects, CreateFileA, CompareFileTime, GetLocalTime, CreateThread, GetModuleHandleA, GetSystemTimeAsFileTime, GetCurrentThreadId, GetTickCount, QueryPerformanceCounter, GetStartupInfoA, ExitProcess, GetProcessHeap, HeapSize, HeapReAlloc, HeapFree, HeapAlloc, HeapDestroy, DeviceIoControl, FindFirstFileA, FindClose, SetEvent, CreateEventA, CreateWaitableTimerA, GetCurrentProcess, InterlockedExchange, CloseHandle, SetWaitableTimer, LoadLibraryA, lstrcpyA, FormatMessageA, LocalAlloc, InterlockedDecrement, InterlockedIncrement, GetFileAttributesA, LoadLibraryExA, FreeLibrary, GetProcAddress, lstrlenA, GetVersion, FindResourceExA, FindResourceA, LoadResource, LockResource, SizeofResource, DeleteCriticalSection, InitializeCriticalSection, GetLastError, RaiseException, WideCharToMultiByte, GetVersionExA, GetThreadLocale, GetLocaleInfoA, GetACP, SystemTimeToFileTime, lstrcatA
msvcp71.dll
DllMain
msvcr71.dll
DllMain
ole32.dll
CoUninitialize, CoInitialize, CoTaskMemFree, CoCreateInstance, OleRun
psapi.dll
EnumProcesses, EnumProcessModules, GetModuleBaseNameA
shell32.dll
ShellExecuteExA, ShellExecuteA, Shell_NotifyIconA, SHGetSpecialFolderPathA
shlwapi.dll
PathRemoveBackslashA, PathAddBackslashA
user32.dll
BeginPaint, ShowWindow, MoveWindow, SystemParametersInfoA, SetTimer, SendMessageA, DestroyWindow, KillTimer, ModifyMenuA, GetMenuStringA, RemoveMenu, GetSubMenu, GetSystemMenu, PostMessageA, SetForegroundWindow, GetCursorPos, SetUserObjectSecurity, GetUserObjectSecurity, CloseDesktop, CloseWindowStation, GetClientRect, SetProcessWindowStation, OpenWindowStationA, GetProcessWindowStation, DefWindowProcA, CreateDialogParamA, PostQuitMessage, DestroyMenu, IsIconic, RegisterWindowMessageA, SetMenuItemInfoA, LoadMenuA, LoadImageA, DispatchMessageA, IsDialogMessageA, GetMessageA, CreateWindowExA, RegisterClassA, FindWindowA, CharNextA, PeekMessageA, SetWindowTextA, GetDlgItem, EnableMenuItem, GetMenuState, CheckMenuItem, FillRect, LoadStringA, OpenDesktopA, TrackPopupMenu, LoadIconA, DrawIcon, EndPaint, GetSystemMetrics, MessageBoxA, ExitWindowsEx, wsprintfA, UnregisterClassA, GetLastActivePopup, TranslateMessage, LoadCursorA

vptray.exe

Symantec AntiVirus by Symantec Corporation (Signed)

Remove vptray.exe
Version:   10.1.6.6000
MD5:   4279e452e99a4f044ce37f03d57fa612
SHA1:   e93739b8835f4edce82fec77956ede0d35cdd63e
SHA256:   2447205b5cf4a4ae91b865e439643d78719c1ac39875d1601fe9924044877ea6

Overview

vptray.exe executes as a process under the SYSTEM account with extensive privileges (the system and the administrator accounts have the same file privileges). It is set to be start when the PC boots and any user logs into Windows (added to the Run registry key for the all users under the local machine). This is typically installed with the program Symantec AntiVirus published by Symantec Corporation. The file is digitally signed by Symantec Corporation which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:vptray.exe
Publisher:Symantec Corporation
Product name:Symantec AntiVirus
Typical file path:C:\Program Files\symantec client security\symantec antivirus\vptray.exe
File version:10.1.6.6000
Size:122.69 KB (125,632 bytes)
Certificate
Issued to:Symantec Corporation
Authority (CA):VeriSign
Effective date:Monday, November 8, 2004
Expiration date:Monday, November 21, 2005
Digital DNA
PE subsystem:Windows GUI
File packed:No
Code language:Microsoft Visual C++ 7.1
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
Symantec AntiVirus
 Symantec Corporation
9% remove
Symantec AntiVirus Corporate Edition was the previous offering from Symantec in this market. Symantec Endpoint Protection, developed by Symantec Corporation, is an antivirus and personal firewall product leveled at centrally managed corporate environments security for servers and workstations.

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'vptray' → C:\Program Files1\SYMANT~1\SYMANT~2\VPTray.exe

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00011571%
0.028634%
Kernel CPU:0.00008678%
0.013761%
User CPU:0.00002893%
0.014873%
Kernel CPU time:375 ms/min
100,923,805ms/min
Memory
Private memory:3.56 MB
21.59 MB
Private (maximum):7.79 MB
Private (minimum):7.73 MB
Non-paged memory:3.56 MB
21.59 MB
Virtual memory:50.23 MB
140.96 MB
Virtual memory (peak):58.63 MB
169.69 MB
Working set:7.79 MB
18.61 MB
Working set (peak):8.37 MB
37.95 MB
Resource allocations
Threads:6
12
Handles:233
600
GUI GDI count:29
103
GUI USER count:25
49

BehaviorsProcess properties

Tray notification:Yes
Integrety level:Undefined
Platform:32-bit
Command line:"C:\progra~1\symant~1\vptray.exe"
Owner:SYSTEM
Parent process:Explorer.EXE (by Microsoft)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Microsoft Windows XP 75.00%
Windows Vista Home Premium 25.00%

Distribution by countryDistribution by country

Turkey installs about 25.00% of Symantec AntiVirus.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Hewlett-Packard 100.00%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE