easyredirect.exe
EasyRedirect.exe by Paul Kenneth Davies (Signed)
Version: | 2.2.2.1 |
MD5: | df2cdb0af16f0c1651d4caaf94c8973f |
SHA1: | 97f8732d78a31d0dd6e7fb77dacd77a1c00df376 |
SHA256: | 9d4f16118bcea849e4b392fabac4369a4cea2e871b8b0f4df3589ec1cacf4aba |
Overview
easyredirect.exe runs as a service under the name EasyRedirect with extensive SYSTEM privileges (full administrator access). The file is digitally signed by Paul Kenneth Davies which was issued by the DigiCert Inc certificate authority (CA). This particular version is usually found on Windows 7 Home Premium (6.1.7601.65536).
Details
File name: | easyredirect.exe |
Publisher: | EasyTech |
Product name: | EasyRedirect.exe |
Typical file path: | C:\Program Files\easy-hide-ip\rdr\easyredirect.exe |
File version: | 2.2.2.1 |
Size: | 3.41 MB (3,575,120 bytes) |
Build date: | 11/12/2012 10:58 AM |
Certificate |
Issued to: | Paul Kenneth Davies |
Authority (CA): | DigiCert Inc |
Effective date: | Wednesday, January 4, 2012 |
Expiration date: | Tuesday, January 7, 2014 |
Digital DNA |
File packed: | No |
.NET CLR: | No |
More details
Behaviors
Service
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
CPU |
Total CPU: | 0.00010712% | |
Kernel CPU: | 0.00006555% | |
User CPU: | 0.00004157% | |
Kernel CPU time: | 671,538 ms/min | |
CPU cycles: | 35,082,371/sec | |
Context switches: | 93,866/sec | |
Memory |
Private memory: | 26.79 MB | |
Private (maximum): | 26.78 MB | |
Private (minimum): | 24.44 MB | |
Non-paged memory: | 26.79 MB | |
Virtual memory: | 216.73 MB | |
Virtual memory (peak): | 223.21 MB | |
Working set: | 26.68 MB | |
Working set (peak): | 27.7 MB | |
Page faults: | 46,314,258/min | |
I/O |
I/O read transfer: | 115.52 KB/sec | |
I/O read operations: | 739/sec | |
I/O write transfer: | 346 Bytes/sec | |
I/O write operations: | 1/sec | |
I/O other transfer: | 56.59 KB/sec | |
I/O other operations: | 8,992/sec | |
Resource allocations |
Threads: | 158 | |
Handles: | 799 | |
Process properties
Integrety level: | System |
Platform: | 64-bit |
Command line: | "C:\Program Files\easy-hide-ip\rdr\easyredirect.exe" |
Owner: | SYSTEM |
Windows Service |
Service name: | EasyRedirect |
Description: | “EasyRedirect Redirector service” |
Type: | Win32OwnProcess |
Parent process: | services.exe (Services and Controller app by Microsoft) |
Threads
Averages
ntdll.dll |
Total CPU: | 0.01644296% | |
Kernel CPU: | 0.00411072% | |
User CPU: | 0.01233223% | |
CPU cycles: | 636,883/sec | |
Context switches: | 2/sec | |
Memory: | 1.66 MB | |
EasyRedirect.exe (main module) |
Total CPU: | 0.01077394% | |
Kernel CPU: | 0.00923024% | |
User CPU: | 0.00154370% | |
CPU cycles: | 3,810,661/sec | |
Context switches: | 822/sec | |
Memory: | 3.43 MB | |
wow64.dll (Win32 Emulation on NT64 by Microsoft) |
Total CPU: | 0.00248881% | |
Kernel CPU: | 0.00094575% | |
User CPU: | 0.00154306% | |
CPU cycles: | 6,348,608/sec | |
Context switches: | 936/sec | |
Memory: | 252 KB | |
Distribution by Windows OS
OS version | distribution |
Windows 7 Home Premium |
100.00% |
|
Distribution by PC manufacturer
PC Manufacturer | distribution |
Dell |
100.00% |
|