Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

2001.12.9330.0 (winmain_win8rc.120518-1423) 0.09%
2001.12.9330.0 (winmain_win8rc.120518-1423) 0.09%
2001.12.9180.0 (winmain_win8beta.120217-1520) 0.04%
2001.12.9032.0 (winmain_win8m3.110823-1455) 0.09%
2001.12.8530.16385 (win7_rtm.090713-1255) 22.40%
2001.12.8530.16385 (win7_rtm.090713-1255) 39.66%
2001.12.8530.16385 (win7_rtm.090713-1255) 0.04%
2001.12.4414.700 11.02%
2001.12.4414.700 0.35%
2001.12.4414.700 0.31%
2001.12.4414.700 0.44%
2001.12.4414.700 0.13%
2001.12.4414.700 0.48%
2001.12.4414.700 0.04%
2001.12.4414.700 0.09%
2001.12.4414.700 0.04%
2001.12.4414.700 0.04%
2001.12.4414.700 0.04%
2001.12.4414.700 0.04%
2001.12.4414.700 0.04%
2001.12.4414.700 0.35%
2001.12.4414.700 0.04%
2001.12.4414.700 0.13%
2001.12.4414.700 0.04%
2001.12.4414.700 0.18%
View more

PE structurePE file structure

Show functions
Import table
advapi32.dll
RegSetValueExW, RegQueryValueExW, OpenProcessToken, GetTokenInformation, RegisterEventSourceW, ReportEventW, DeregisterEventSource, RegCloseKey, RegOpenKeyExA, RegQueryValueExA, RegOpenKeyExW
api-ms-win-core-com-l1-1-0.dll
CoInitializeEx, CoUninitialize, CoCreateInstance, StringFromGUID2, CoGetObjectContext
api-ms-win-core-debug-l1-1-1.dll
IsDebuggerPresent, DebugBreak, OutputDebugStringW
api-ms-win-core-delayload-l1-1-1.dll
DelayLoadFailureHook, ResolveDelayLoadedAPI
api-ms-win-core-errorhandling-l1-1-1.dll
GetLastError, UnhandledExceptionFilter, SetUnhandledExceptionFilter
api-ms-win-core-file-l1-2-0.dll
DeleteFileW, SetFileAttributesW, FindNextFileW, GetFullPathNameW, FindFirstFileW, CreateFileW, CreateDirectoryW, FindClose
api-ms-win-core-handle-l1-1-0.dll
CloseHandle
api-ms-win-core-heap-obsolete-l1-1-0.dll
LocalAlloc, LocalFree
api-ms-win-core-interlocked-l1-2-0.dll
InterlockedCompareExchange, InterlockedExchange
api-ms-win-core-libraryloader-l1-1-1.dll
FreeLibrary, LoadStringW, GetModuleFileNameW, LockResource, GetModuleHandleA, FindResourceExW, GetProcAddress, GetModuleHandleW, LoadLibraryExW, LoadResource
api-ms-win-core-localization-l1-2-0.dll
FormatMessageW
api-ms-win-core-processenvironment-l1-2-0.dll
GetCommandLineW, ExpandEnvironmentStringsW
api-ms-win-core-processthreads-l1-1-1.dll
GetCurrentThread, TlsFree, TlsGetValue, CreateProcessW, TlsAlloc, GetStartupInfoW, TerminateProcess, GetCurrentProcess, GetExitCodeProcess, GetCurrentThreadId, OpenProcessToken, GetThreadContext, GetCurrentProcessId
api-ms-win-core-profile-l1-1-0.dll
QueryPerformanceCounter
api-ms-win-core-psapi-l1-1-0.dll
QueryFullProcessImageNameW
api-ms-win-core-registry-l1-1-0.dll
RegSetValueExW, RegQueryValueExA, RegQueryValueExW, RegOpenKeyExA, RegOpenKeyExW, RegCloseKey
api-ms-win-core-synch-l1-2-0.dll
LeaveCriticalSection, CreateEventA, InitializeCriticalSectionAndSpinCount, ResetEvent, WaitForSingleObjectEx, SetEvent, DeleteCriticalSection, EnterCriticalSection, WaitForSingleObject, Sleep
api-ms-win-core-sysinfo-l1-2-0.dll
GetTickCount, GetLocalTime, GetSystemWindowsDirectoryA, GetSystemTimeAsFileTime
api-ms-win-core-version-l1-1-0.dll
VerQueryValueW
api-ms-win-security-base-l1-2-0.dll
GetTokenInformation
kernel32.dll
GetCommandLineW, UnregisterWait, TlsFree, TlsAlloc, TlsGetValue, LocalAlloc, LocalFree, IsDebuggerPresent, GetCurrentThread, GetThreadContext, DebugBreak, ExpandEnvironmentStringsW, CreateDirectoryW, CreateProcessW, GetExitCodeProcess, FindFirstFileW, FindNextFileW, SetFileAttributesW, DeleteFileW, FindClose, GetModuleHandleW, FindResourceW, LoadResource, LockResource, FormatMessageW, GetModuleFileNameW, LoadLibraryExW, DeleteCriticalSection, WaitForSingleObject, LeaveCriticalSection, EnterCriticalSection, InterlockedExchange, Sleep, InterlockedCompareExchange, GetStartupInfoW, SetUnhandledExceptionFilter, GetModuleHandleA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, CreateEventA, CloseHandle, WaitForSingleObjectEx, SetEvent, ResetEvent, FreeLibrary, CreateFileW, GetProcAddress, LoadLibraryA, GetFullPathNameW, GetLastError, QueryFullProcessImageNameW, GetLocalTime, QueueUserWorkItem, OutputDebugStringW, GetSystemWindowsDirectoryA, InitializeCriticalSectionAndSpinCount, UnregisterWaitEx
msvcrt.dll
DllMain
ntdll.dll
RtlCaptureContext, RtlReportException
ole32.dll
CoGetObjectContext, StringFromGUID2, CoInitializeEx, CoCreateInstance, CoUninitialize
user32.dll
EndDialog, SetDlgItemTextW, CloseWindowStation, CloseDesktop, GetProcessWindowStation, GetThreadDesktop, OpenWindowStationW, DialogBoxParamW, OpenDesktopW, SetThreadDesktop, GetDesktopWindow, GetWindowRect, GetClientRect, MapWindowPoints, SetWindowPos, LoadStringW, SetProcessWindowStation
version.dll
VerQueryValueW

msdtc.exe

Microsoft Distributed Transaction Coordinator Service by Microsoft

Remove msdtc.exe
Version:   2001.12.4414.258
MD5:   c7c3d89eb0a6f3dba622ea737fa335b1
SHA1:   c48fcb01484b3cb369779678ff07a28221ff036e
SHA256:   4392887a5f312dbd0971e1d72b85b3ca5636d7fb3a409e5a99ca925bd05493e8
This is a Windows system installed file with Windows File Protection (WFP) enabled.

What is msdtc.exe?

The Distributed Transaction Coordinator (MSDTC) service is a component of modern versions of Microsoft Windows that is responsible for coordinating transactions that span multiple resource managers, such as databases, message queues, and file systems.

Overview

msdtc.exe runs as a service under the name Coordenador de transações distribuídas (MSDTC) with extensive SYSTEM privileges (full administrator access).

DetailsDetails

File name:msdtc.exe
Publisher:Microsoft Corporation
Product name:Microsoft Distributed Transaction Coordinator Service
Description:Microsoft® Windows® Operating System
Typical file path:C:\Windows\System32\msdtc.exe
Original name:MSDTC.EXE.MUI
File version:2001.12.4414.258
Product version:03.01.00.4414
Size:6 KB (6,144 bytes)
Digital DNA
PE subsystem:Windows GUI
Entropy:6.060933
File packed:No
Code language:Microsoft Visual C++
.NET CLR:No
More details

BehaviorsBehaviors

Services
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'MSDTC' (Coordenador de transações distribuídas)
  • MSDTC
  • 'MSDTC' (Distributed Transaction Coordinator)

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00508300%
0.028634%
Kernel CPU:0.00283195%
0.013761%
User CPU:0.00225104%
0.014873%
Kernel CPU time:78 ms/min
100,923,805ms/min
Context switches:12/sec
284/sec
Memory
Private memory:1.82 MB
21.59 MB
Private (maximum):4.71 MB
Private (minimum):4.71 MB
Non-paged memory:1.82 MB
21.59 MB
Virtual memory:36.11 MB
140.96 MB
Virtual memory (peak):36.56 MB
169.69 MB
Working set:4.71 MB
18.61 MB
Working set (peak):4.77 MB
37.95 MB
Resource allocations
Threads:14
12
Handles:168
600
GUI GDI count:5
103
GUI USER count:2
49

BehaviorsProcess properties

Integrety level:Undefined
Platform:32-bit
Command line:C:\Windows\System32\msdtc.exe
Owner:SYSTEM
Windows Service
Service name:MSDTC
Display name:Coordenador de transações distribuídas
Description:“Coordena as transações que incluem vários gerenciadores de recursos, como bancos de dados, filas de mensagens e sistemas de arquivos. Se esse serviço for interrompido, essas transações falharão. Se o serviço for desabilitado, os serviços que dependerem explicitamente dele não serão inicializados.”
Type:Win32OwnProcess
Parent process:services.exe (Services and Controller app by Microsoft)

ResourcesThreads

Averages
 
MSDTCTM.dll
Total CPU:0.00335402%
0.272967%
Kernel CPU:0.00223601%
0.107585%
User CPU:0.00111801%
0.165382%
Memory:992 KB
1.16 MB
msdtc.exe (main module)
Total CPU:0.00335255%
Kernel CPU:0.00335255%
User CPU:0.00000000%
Memory:16 KB
MSDTCPRX.dll
Total CPU:0.00111958%
Kernel CPU:0.00000000%
User CPU:0.00111958%
Context switches:11/sec
Memory:432 KB

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 32.50%
Windows 8.1 17.50%
Windows 7 Ultimate 14.00%
Windows 8.1 Pro 7.50%
Windows 8.1 Single Language 7.00%
Windows 7 Professional 6.00%
Windows 8 3.50%
Windows 8 Pro 3.00%
Windows 8 Single Language 2.50%
Windows 8.1 Pro with Media Center 2.00%
Windows 7 Home Basic 1.50%
Windows 8 Enterprise N 1.00%
Windows 8.1 N 0.50%
Windows Seven Black Edition 0.50%
Windows 8.1 Enterprise Evaluation 0.50%
Windows 8 Enterprise 0.50%

Distribution by countryDistribution by country

United States installs about 45.23% of Microsoft Distributed Transaction Coordinator Service.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Dell 18.82%
ASUS 18.04%
Hewlett-Packard 16.86%
Acer 14.51%
Toshiba 10.98%
Lenovo 9.41%
Sony 3.92%
Intel 2.35%
Samsung 1.57%
GIGABYTE 1.57%
Alienware 1.18%
Medion 0.78%
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE