Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

62d6e 25.00%
61490 8.33%
61e71 2.78%
3b212 2.78%
13b0a 25.00%
9fbf2 2.78%
80978 2.78%
fb738 2.78%
76adf 2.78%
8598e 2.78%
0c229 2.78%
01fae 2.78%
50537 2.78%
2428e 2.78%
6db47 2.78%
8f9ae 2.78%
bcd7d 2.78%
cce00 2.78%
(Note, the developer publishes each variation of this file with the same version, but the hashes are unique.)

Relationships

Parent process
Child process

PE structurePE file structure

Show functions
Import table
advapi32.dll
OpenSCManagerA, RegCreateKeyExA, OpenThreadToken, OpenProcessToken, LookupPrivilegeValueA, AdjustTokenPrivileges, StartServiceCtrlDispatcherA, RegisterServiceCtrlHandlerA, StartServiceA, RegDeleteValueA, OpenServiceA, ControlService, QueryServiceStatus, DeleteService, CreateServiceA, CloseServiceHandle, ChangeServiceConfig2A, RegDeleteKeyA, RegCreateKeyA, RegSetValueExA, RegCloseKey, RegOpenKeyExA, RegQueryValueExA, RegisterEventSourceA, ReportEventA, DeregisterEventSource, SetServiceStatus, GetUserNameA, LookupAccountNameA, IsValidSid, GetLengthSid, CopySid, LsaStorePrivateData, LsaOpenPolicy, LsaAddAccountRights, LsaClose, RegCreateKeyExW, LookupPrivilegeValueW, StartServiceCtrlDispatcherW, RegisterServiceCtrlHandlerW, RegDeleteKeyW, RegOpenKeyExW, RegQueryValueExW, StartServiceW, RegDeleteValueW, OpenServiceW, RegCreateKeyW, RegSetValueExW, OpenSCManagerW, CreateServiceW, ChangeServiceConfig2W, RegisterEventSourceW, ReportEventW, GetUserNameW, LookupAccountNameW
kernel32.dll
CreateEventA, GetCurrentThreadId, GetTickCount, WaitForMultipleObjects, ExitProcess, GetSystemTimeAsFileTime, GetVersionExA, GetLastError, OutputDebugStringA, CreateToolhelp32Snapshot, Process32First, Process32Next, ProcessIdToSessionId, lstrcpyA, GetCurrentProcessId, WaitForSingleObject, OpenProcess, GetCurrentThread, GetCurrentProcess, CloseHandle, TerminateProcess, SetErrorMode, CreateProcessA, SetEvent, SetConsoleCtrlHandler, GetModuleHandleA, LocalFree, GetProcAddress, Sleep, GetModuleFileNameA, AllocConsole, GetStdHandle, GlobalAlloc, GlobalFree, FormatMessageA, QueryPerformanceCounter, SetStdHandle, LoadLibraryA, GetOEMCP, GetACP, GetStringTypeW, GetStringTypeA, GetCPInfo, HeapReAlloc, IsBadWritePtr, GetFileType, HeapFree, HeapAlloc, RtlUnwind, GetCommandLineA, GetVersion, FreeEnvironmentStringsW, SetHandleCount, GetStartupInfoA, GetEnvironmentVariableA, HeapDestroy, HeapCreate, VirtualFree, VirtualAlloc, WriteFile, FlushFileBuffers, UnhandledExceptionFilter, FreeEnvironmentStringsA, SetFilePointer, WideCharToMultiByte, GetEnvironmentStrings, GetEnvironmentStringsW, LCMapStringA, IsBadReadPtr, MultiByteToWideChar, SetUnhandledExceptionFilter, LCMapStringW, IsBadCodePtr, IsDebuggerPresent, InterlockedCompareExchange, InterlockedExchange, lstrlenA, lstrcatA, Process32FirstW, Process32NextW, lstrlenW, CreateEventW, OutputDebugStringW, CreateProcessW, lstrcpyW, GetModuleHandleW, GetModuleFileNameW, FormatMessageW, GetVersionExW
msvcr71.dll
DllMain
msvcr80.dll
DllMain
msvcr90.dll
DllMain
user32.dll
RegisterWindowMessageA, BroadcastSystemMessageA, RegisterClassA, CreateWindowExA, DefWindowProcA, DestroyWindow, BroadcastSystemMessageW, RegisterClassW, CreateWindowExW, DefWindowProcW, RegisterWindowMessageW
wtsapi32.dll
WTSEnumerateSessionsA, WTSFreeMemory

wltrysvc.exe

Remove wltrysvc.exe
MD5:   8097878196efaa50a70b42aef8225a61
SHA1:   96de51d4241ac43e9d0694d8608d1a2277376501

What is wltrysvc.exe?

bcmwltry.exe is part of the drivers of the Broadcom Wireless Network Tray Applet and is required to enable the 802.11g/a/g on the host. This comes bundled with the Wireless LAN adaptor and occupies the system tray. It is used to configure the settings of the adaptor including the IP address, gateway and DNS.

Overview

wltrysvc.exe runs as a service under the name DW WLAN Tray Service (wltrysvc) with extensive SYSTEM privileges (full administrator access).

DetailsDetails

File name:wltrysvc.exe
Typical file path:C:\Windows\System32\wltrysvc.exe
Size:32.5 KB (33,280 bytes)
Digital DNA
PE subsystem:Windows Console
Entropy:6.033284
File packed:No
Code language:Microsoft Visual C++ 7.1
.NET CLR:No
More details

BehaviorsBehaviors

Services
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'wltrysvc' (DW WLAN Tray Service)
  • wltrysvc
  • 'wltrysvc' (Dell Wireless WLAN Tray Service)

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
Memory
Private memory:2.05 MB
21.59 MB
Private (maximum):4.04 MB
Private (minimum):4 MB
Non-paged memory:2.05 MB
21.59 MB
Virtual memory:22.13 MB
140.96 MB
Virtual memory (peak):24.13 MB
169.69 MB
Working set:4.02 MB
18.61 MB
Working set (peak):4.04 MB
37.95 MB
Page faults:1,067/min
2,039/min
I/O
I/O other transfer:2 Bytes/sec
448.09 KB/min
I/O other operations:1/sec
1,671/min
Resource allocations
Threads:4
12
Handles:61
600

BehaviorsProcess properties

Integrety level:System
Platform:64-bit
Command line:"C:\Program Files\dell\dw wlan card\wltrysvc.exe" "C:\Program Files\dell\dw wlan card\bcmwltry.exe"
Owner:SYSTEM
Windows Service
Service name:wltrysvc
Display name:DW WLAN Tray Service
Description:“Provides automatic configuration for the 802.11 adapter using the Broadcom supplicant.”
Type:Win32OwnProcess
Parent process:services.exe (Services and Controller app by Microsoft)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Microsoft Windows XP 30.56%
Windows 7 Home Premium 27.78%
Windows 7 Ultimate 13.89%
Windows Vista Home Premium 8.33%
Windows 7 Professional 5.56%
Windows Vista Home Basic 5.56%
Windows Vista Ultimate 2.78%
Windows Vista Business 2.78%
Windows XP Professional 2.78%

Distribution by countryDistribution by country

United States installs about 90.63% of wltrysvc.exe.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Dell 89.47%
Lenovo 5.26%
Alienware 2.63%
Hewlett-Packard 2.63%
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE