|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
PC Pitstop is the undisputed leader in PC diagnostics. Our running process library is culled from our database of over 100 million PC diagnostics and scans.
Tip from the PitCrew Every process running on your computer takes up CPU cycles and valuable memory. For optimal PC performance and resource utilization, you should be aware of every process on your computer. PC Pitstop designed this process library to help you know which processes are worthwhile and others that slow system performance. Furthermore, perhaps the quickest and most straight forward method to detect malware is through a running process analysis. |
More than one possible match was found; all matches are listed below in order of their prevalence. This only tells you what the file and the correct action might be. To understand which possibility is actually running on your own system, perform an Overdrive test and then look at the Software|Processes tab. Match #1winlogon.exe (Legitimate WinLogon)
Percentage of recently scanned PC's with this process running: 38.45% PC Pitstop Analysiswinlogon.exe - This program initializes some functions of Windows each time a user logs in. Usually it should not appear in running programs because it completes its work in less than a minute. If it is still running then there may be some type of configuration problem with your system. See the detailed description for troubleshooting information. Recommendation
winlogon.exe is a user invoked program and a normal part of PC operations. No action required. PC Pitstop recommends WinPatrol Plus for monitoring all of the background activity on your PC. WinPatrol Plus provides a easy to understand descriptions of over 15,000 processes and programs. IdentificationIn addition to the file name, winlogon.exe, the following version information is used to identify the file. If the file does not match this information, it may be a different file. To ensure the file is absolutely correct, run a free and comprehensive scan.
To view version information with Windows Explorer, right-click the file and click Properties, Version. MD5 HashesMD5 hashes is the way that computers can define the uniqueness of a file. Anti malware vendors frequently use this technique to detect and clean malware. It is common for a program to have multiple MD5 hashes as the developers create newer versions of the program. For the program called winlogon.exe, we have detected more than 20 different MD5 hashes. Click on a hash to research the hash in Google.
PC Pitstop Database ComparisonsEvery week, we update our information about the running programs identified during the previous week's testing. winlogon.exe (Legitimate WinLogon) has been seen on 38.45% of systems tested at PC Pitstop. As a point of comparison, it is rare for a particular malicious program (virus or spyware) to be seen on more than one or two percent of all systems tested. The average RAM memory usage for this process was 4 MB. The average CPU load for this program was 0%. Detailed Description and/or Removal Instructionshttp://www.google.com/search?q=winlogon+site%3Asupport.microsoft.com Match #2winlogon.exe (WinLogon trojan)
Percentage of recently scanned PC's with this process running: 0.02% PC Pitstop Analysiswinlogon.exe file name used by the WinLogon trojan has the same name as a legitimate Microsoft file. However, the trojan can be identified by these traits: it does not contain vendor/product information saying it is from Microsoft; it is installed in a directory other than Windows system32; it is always running and often uses large amounts of memory and cpu time. If the file information does not show the vendor being Microsoft, then this is most likely the WinLogon trojan. Recommendation
winlogon.exe is a VIRUS. Stop all work until the virus is removed or you run the risk of spreading the virus to other people. Worse yet, the virus may be doing harm to your computer and your information. winlogon.exe is a virus and should be removed immediately to avoid doing further harm. PC Pitstop recommends CA Antivirus in these types of situations.
IdentificationThe file name alone identifies this program. MD5 HashesMD5 hashes is the way that computers can define the uniqueness of a file. Anti malware vendors frequently use this technique to detect and clean malware. It is common for a program to have multiple MD5 hashes as the developers create newer versions of the program. For the program called winlogon.exe, we have detected more than 20 different MD5 hashes. Click on a hash to research the hash in Google.
PC Pitstop Database ComparisonsEvery week, we update our information about the running programs identified during the previous week's testing. winlogon.exe (WinLogon trojan) has been seen on 0.02% of systems tested at PC Pitstop. As a point of comparison, it is rare for a particular malicious program (virus or spyware) to be seen on more than one or two percent of all systems tested. The average RAM memory usage for this process was 3 MB. The average CPU load for this program was 0%. Detailed Description and/or Removal Instructionshttp://www.pestpatrol.com/pestinfo/w/winlogonexe.asp
Important note:
A file name alone may not be enough for positive identification.
PC Pitstop's
Overdrive tests and spyware scan
use information such as the company name, product name, or install directory.
If you are unable to identify a file, ask about it in our
forums after running our full tests.
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||