srpts.exe

srpts

ReSoft LTD.

The application srpts.exe by ReSoft has been detected as adware by 4 anti-malware scanners. It runs as a separate (within the context of its own process) windows Service named “LPT System Updater Service”. This file is typically installed with the program LPT System Updater Service by Linkury Ltd. which is a potentially unwanted software program. While running, it connects to the Internet address host186.40.62.200.ifxnetworks.com on port 80 using the HTTP protocol.
Publisher:
ReSoft LTD.  (signed and verified)

Product:
srpts

Version:
1.0.0.0

MD5:
45ae8b1012321bd23603dc5523147b29

SHA-1:
c0d045ff8b8ac4b8f3a73c4a5914350c5e00f9ed

SHA-256:
747a0862340122e4f828656dd6cd6dafe8c6deb0886b2948914439a11a27e820

Scanner detections:
4 / 68

Status:
Adware

Analysis date:
11/22/2024 5:39:45 PM UTC  (today)

Scan engine
Detection
Engine version

IKARUS anti.virus
PUA.Linkury
t3scan.1.6.1.0

Reason Heuristics
PUP.Service.ReSoft.F
14.8.8.1

Trend Micro House Call
Suspicious_GEN.F47V0720
7.2.220

VIPRE Antivirus
Adware.Linkury
26354

File size:
31.5 KB (32,288 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2013

Original file name:
srpts.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\lpt\srpts.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
8/1/2013 8:00:00 AM

Valid to:
8/2/2015 7:59:59 AM

Subject:
CN=ReSoft LTD., O=ReSoft LTD., STREET=4th Hanevi'im, L=Tel Aviv, S=Israel, PostalCode=64356, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
51FA31336CEC649121E9A908289950D2

File PE Metadata
Compilation timestamp:
2/7/2014 3:15:25 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:G/2cNkxNtlor6vAQftlN5HD56WsORoEaHxvSvQ4OEWw9lxBzf7o4H+VTPx3ZPF38:GOcNSNt6evfTbNvlOo9lq3IXUXkHME3

Entry address:
0x773E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.0484

Code size:
22 KB (22,528 bytes)

Service
Display name:
LPT System Updater Service

Service name:
LPTSystemUpdater

Description:
LPT Enhance your browser experience.

Type:
Win32OwnProcess


The file srpts.exe has been discovered within the following program.

LPT System Updater Service  by Linkury Ltd.
This is a potentially unwanted web browser extension this is distributed and installed by PINWID LTD, ReSoft LTD., MY POP SHOP LTD and Linkury. It will display advertisements including banners and popups in the user's web browser.
81% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):
Connects to host186.40.62.200.ifxnetworks.com  (200.91.238.186:80)

Remove srpts.exe - Powered by Reason Core Security