Should I block it?

90%
90% of PCs block this file from running.
Possible reason:
Multiple malware detections

Relationships

salaty.exe

By www.ela-salaty.com

Remove salaty.exe
Version:   1.3.1.3
MD5:   03da9d7b455da5359902142987631b66
SHA1:   0b7b2982ddc1030677e6e8de12c9f4d039021364
SHA256:   c369f91cef219db3245bf7c9f69a347fe860d7fa9123d407114e6453bf1e796a
Warning 3 antivirus scanners has detected malware.

Overview

salaty.exe is malware that executes as a process with the local user's privileges usually within the context of Windows Explorer. During installation, it (or a shortcut) is added to the user's startup folder which is designed to automatically launch when the user logs into Windows. It is installed with a couple of know programs including Ela-Salaty and Ela-Salaty.

DetailsDetails

File name:salaty.exe
Publisher:www.ela-salaty.com
Description:Muslims Prayer Time Reminder.
Typical file path:C:\Program Files\ela-salaty\salaty.exe
File version:1.3.1.3
Product version:1.0
Size:5.1 MB (5,349,888 bytes)
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following programs will install this file
Ela-Salaty
  
7% remove
Ela-Salaty is a new Arabic program helps you to remember times of prayer. Also helps you to mention of Allah and has many other advantages. The new on this program that it has a modern beautiful interface, Grapping advices and news from Internet by using RSS technology, support skins, downloadable Azan audios, control windows by add system commands before and after Azan. Ela-Salaty is quite different from any program of the same categor...

BehaviorsBehaviors

User start menu folder
Shortcut pointer placed in '%appdata%\Microsoft\Windows\Start Menu'
  • Shortcut to 'salaty.exe'
Network connections
  • [TCP] 108.162.198.47:80
  • [TCP] ord08s08-in-f9.1e100.net (74.125.225.105:80)
  • [TCP] lis01s05-in-f6.1e100.net (173.194.41.198:80)

    • MalwareMalware detections

    Based on 40+ industry antivirus scanners, 3 of them detected the following malware.
    Antivirus engineEngine versionDetection
    ByteHero 1.0.0.1 Trojan.Win32.Heur.089
    Trend Micro 9.500.0.1008 PAK_Generic.001
    Trend Micro HouseCall 9.500.0.1008 PAK_Generic.001

    ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.01134795%
    0.028634%
    Kernel CPU:0.00417654%
    0.013761%
    User CPU:0.00717141%
    0.014873%
    Kernel CPU time:11,394 ms/min
    100,923,805ms/min
    CPU cycles:9,816,087/sec
    17,470,203/sec
    Context switches:404/sec
    284/sec
    Memory
    Private memory:22.73 MB
    21.59 MB
    Private (maximum):20.34 MB
    Private (minimum):7.63 MB
    Non-paged memory:22.73 MB
    21.59 MB
    Virtual memory:120.12 MB
    140.96 MB
    Virtual memory (peak):129.66 MB
    169.69 MB
    Working set:11.87 MB
    18.61 MB
    Working set (peak):23.66 MB
    37.95 MB
    Page faults:120,425/min
    2,039/min
    I/O
    I/O read transfer:5.58 KB/sec
    1.02 MB/min
    I/O read operations:4/sec
    343/min
    I/O write transfer:120 Bytes/sec
    274.99 KB/min
    I/O write operations:1/sec
    227/min
    I/O other transfer:50 Bytes/sec
    448.09 KB/min
    I/O other operations:6/sec
    1,671/min
    Resource allocations
    Threads:9
    12
    Handles:284
    600
    GUI GDI count:294
    103
    GUI GDI peak:324
    142
    GUI USER count:357
    49
    GUI USER peak:366
    71

    BehaviorsProcess properties

    Tray notification:Yes
    Integrety level:High
    Platform:32-bit
    Command line:"C:\Program Files\ela-salaty\salaty.exe" -mini
    Owner:User
    Parent process:explorer.exe (Windows Explorer by Microsoft Corporation)

    ResourcesThreads

    Averages
     
    Salaty.exe (main module)
    Total CPU:0.03755533%
    0.272967%
    Kernel CPU:0.02165844%
    0.107585%
    User CPU:0.01589689%
    0.165382%
    CPU cycles:6,281,181/sec
    5,741,424/sec
    Context switches:127/sec
    79/sec
    Memory:5.29 MB
    1.16 MB
    QUARTZ.dll
    Total CPU:0.00064450%
    Kernel CPU:0.00035860%
    User CPU:0.00028590%
    CPU cycles:16,138/sec
    Memory:1.46 MB
    ffdshow.ax
    Total CPU:0.00057220%
    Kernel CPU:0.00057220%
    User CPU:0.00000000%
    CPU cycles:267,872/sec
    Memory:3.93 MB

    Common loaded modules

    These are modules that are typiclaly loaded within the context of this process.

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 7 Professional 50.00%
    Windows 7 Ultimate 33.33%
    Microsoft Windows XP 16.67%

    Distribution by countryDistribution by country

    Egypt installs about 100.00% of salaty.exe.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    Hewlett-Packard 100.00%
    Back to top
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE