| Type |
Caption |
Section |
File name |
Description |
 |
Starting up |
|
wvsvc.exe |
Added by the W32/Rbot-NF trojan backdoor. This infection, when started, connects to an IRC server where it sits on a channel awaiting commands. These infections are usually capable of logging keystrokes, retrieve cd keys, and flood other computers.
Read more |
|
Still Image Instrumenta |
|
WinMgnt.exe |
Added by the Troj/Feutel-AP backdoor Trojan. This infection also creates the files c:\windows\WinMgnt.DLL, c:\windows\WinMgntKey.DLL, and c:\windows\WinMgnt_Hook.DLL.
Read more |
|
strtas |
|
l074.exe |
Added by the Troj/Agent-II Trojan. This infection also installs the rootkit file C:\Windows\System32\msdirectx.sys which is used to hide files, processes, and registry keys.
Read more |
|
svchost.exe |
|
svchost.exe |
Added by the Troj/PWSjx-A password stealing trojan. This infections attempts to steal your password for the game MuYangJX.
Read more |
|
svchosts32 |
|
[random filename] |
Added by the Troj/Ranck-L proxy trojan. This infection allows a remote intruder to use your Internet connection to hide his location.
Read more |
|
Sygate Personal Firewall Startup |
|
wint.exe |
Added by the W32/Rbot-OV trojan backdoor. This infection, when started, connects to an IRC server where it sits on a channel awaiting commands. These infections are usually capable of logging keystrokes, retrieve cd keys, and flood other computers.
Read more |
|
sysbo |
|
bsdue32.exe |
Added by the W32/Sdbot-UR trojan. When started this infection connects to a remote IRC server where it waits for commands to execute.
Read more |
|
SysData |
|
[random filename] |
Added by the Troj/Ranck-BA proxy trojan. This infection allows a remote intruder to use your Internet connection to hide his location.
Read more |
|
System |
|
kmc.dll |
Added by the Troj/Dropper-BT dropper Trojan. This infection also makes the file C:\Windows\csrss.exe.br /br /Uses CLSID: b(126024AD-DC8A-48F7-9CD2-4A6FFB867874)/b.
Read more |
|
System Security Updaters |
|
VSMONS.EXE |
Added by the W32/Rbot-EJ trojan backdoor. This infection, when started, connects to an IRC server where it sits on a channel awaiting commands. This infection also attempts to terminate various processes including other infections.
Read more |
|
system server |
|
MSpass.exe |
Added by the Troj/Lineage-BG password-stealing Trojan for the online game Lineage. This infection also creates the file c:\windows\help\mssj.chi.
Read more |
|
System Startup Service |
|
svcproc.exe |
This infection is identified as Trojan.Win32.Stervis.b. It is usually bundled with nail.exe, a Abetterinternet adware variant. It is notoriously difficult to remove and is usually bundled with other malware that are hard to remove as well. One method that we have found that is able to remove this infection and the other malware that are bundled with it is the ewido security suite which you can download and try for free.
Read more |
|
SysTempRegKey Update |
|
Quinst32.exe |
Added by the W32/Rbot-JD trojan backdoor. This infection, when started, connects to an IRC server where it sits on a channel awaiting commands.
Read more |
|
systtray |
|
SMLBSBV4.exe |
Added by the Troj/IMFlood-A Trojan. This infection will attempt to spam the contacts in your Yahoo Instant Messenger contact list.
Read more |
|
Sys_Run |
|
ghost.exe |
Added by the Troj/Lineage-N password stealing trojan. This infection attempts to steal the player information for the game Lineage.
Read more |
Sitemap
Italian
Russian
- unknown program.
- not required - can be disabled.
- user's choice.
- normal to run at start-up.
