Jump to content
Login new information ×
Login new information

Suspect: New windows process

rudrax

By rudrax
in Software Chat

Recommended Posts

rudrax

rudrax

Posted
Posted

The following is a screenshot of Task manager of a windows 8.1 x64 bit system. There is highlighted a process. What is it?

screenshot_1415003433.png

Link to comment
Share on other sites
  • Replies 16
  • Views 1.7k
  • Created
  • Last Reply
rudrax

rudrax

Posted
  • Author
Posted

Not present on my system - do you use Avast?

Neither Avast nor any products from Avast. I'm on ESET, and you too know that. Don't think that just because of you couldn't be able to prevent ESET from dialing home, I'll leave it :lol:

Terminating that process, no visible effect is seen.

Link to comment
Share on other sites
dcs18

dcs18

Posted
Posted

I'm on ESET, and you too know that. Don't think that just because of you couldn't be able to prevent ESET from dialing home, I'll leave it :lol:

Maybe there is something (about the ESET fix) that I am not disclosing . . . . . . . . . . . . . . . . . .

Link to comment
Share on other sites
rudrax

rudrax

Posted
  • Author
Posted

I'm on ESET, and you too know that. Don't think that just because of you couldn't be able to prevent ESET from dialing home, I'll leave it :lol:

Maybe there is something (about the ESET fix) that I am not disclosing . . . . . . . . . . . . . . . . . .

Anyway, found out that only google IP that nsane.forums requires.

Edit: edited

Link to comment
Share on other sites
menot

menot

Posted
Posted

It seems a legitimate Windows file.

"Leave alone - if this program is running it is because Windows started it automatically in order to support a program that is using WMI. WMI, Windows Management Instrumentation, enables software developers to write scripts and programs for the management or querying of devices, user accounts, Windows services, running programs, networking, and many other internal technical aspects of Windows."

You can get some information here:

http://answers.microsoft.com/en-us/windows/forum/windows_7-windows_programs/unknown-unsecappexe-present-in-wbem-folder/bbfb7189-8ce3-44ec-8d9b-37bd120f852b

Link to comment
Share on other sites
captcha

captcha

Posted
Posted

do you enable ccleaner monitoring?

CCleaner monitoring will execute that process

I have Pro version of Ccleaner with monitoring on & there is no trace of this.

I searched google heavily and found out that avast uses this service(although it is legitimate service). If you switched from avast to eset then it's most likely is the aftereffect. Avast didnt turned off the exe.

Link to comment
Share on other sites
rudrax

rudrax

Posted
  • Author
Posted

do you enable ccleaner monitoring?

CCleaner monitoring will execute that process

I use Ccleaner pro, portable and I do not allow any monitoring from it.
Link to comment
Share on other sites
rudrax

rudrax

Posted
  • Author
Posted

do you enable ccleaner monitoring?

CCleaner monitoring will execute that process

I have Pro version of Ccleaner with monitoring on & there is no trace of this.

I searched google heavily and found out that avast uses this service(although it is legitimate service). If you switched from avast to eset then it's most likely is the aftereffect. Avast didnt turned off the exe.

I did use avast when I was on windows 8. After switching to 8.1 after a clean format, I switched to ESET.
Link to comment
Share on other sites
captcha

captcha

Posted
Posted

do you enable ccleaner monitoring?

CCleaner monitoring will execute that process

I have Pro version of Ccleaner with monitoring on & there is no trace of this.

I searched google heavily and found out that avast uses this service(although it is legitimate service). If you switched from avast to eset then it's most likely is the aftereffect. Avast didnt turned off the exe.

I did use avast when I was on windows 8. After switching to 8.1 after a clean format, I switched to ESET.

Hmm so there may be another application that is using it, now the question is which?

You can google the connection between this exe file and any suspicious software you may have installed that triggered this process.

Link to comment
Share on other sites
Kalju

Kalju

Posted
Posted

Now I found, what it is

____________________

Unsecapp.exe Description :
Sink to receive asynchronous callbacks for WMI client application running in different processes. WMI, Windows Management Instrumentation, enables software developers to write scripts and programs for the management or querying of devices, user accounts, Windows services, running programs, networking, and many other internal technical aspects of Windows - in other words the sort of work TUT does (for example : TUT, The Ultimate Troubleshooter, uses WMI to retrieve all the information that it shows on the System Info tab).

This particular task, UNSECAPP.EXE, is started by Windows Vista when a program needs to use WMI programming - it provides programs with a conduit (sink) to receive from Windows the results of their WMI queries and commands.

Unsecapp.exe Recommendation :
Leave alone - if this program is running it is because Windows Vista started it automatically in order to support a program that is using WMI.

Link to comment
Share on other sites
anuseems

anuseems

Posted
Posted

When I installed the following this exe ran for some days / sometime...

Qihoo

Symantec endpoint

Panda

Turned out to be a safe executable.

Link to comment
Share on other sites
menot

menot

Posted
Posted

It seems a legitimate Windows file.

"Leave alone - if this program is running it is because Windows started it automatically in order to support a program that is using WMI. WMI, Windows Management Instrumentation, enables software developers to write scripts and programs for the management or querying of devices, user accounts, Windows services, running programs, networking, and many other internal technical aspects of Windows."

You can get some information here:

http://answers.microsoft.com/en-us/windows/forum/windows_7-windows_programs/unknown-unsecappexe-present-in-wbem-folder/bbfb7189-8ce3-44ec-8d9b-37bd120f852b

It was the sixth post of the topic that I quoted the necessary information and the source of information about the suspicious file from "answers.microsoft.com". I wonder anyone reads what is posted here? :rolleyes:

Link to comment
Share on other sites
Ballistic Gelatin

Ballistic Gelatin

Posted
Posted

3Qz0kC4.jpg

FWIW, this file has always been present in my running Processes in Windows 7. IIRC, it was also present in Windows XP SP3. Never encountered any issues with it.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...