Have you used any specialized fix tools recently? For example, smitfraudfix is a tool to detect and remove smitfraud infections. However, certain files that are part of that tool, such as process.exe
, and reboot.exe
, may at times be detected by some anti-virus programs as a "RiskTool
", "Hacking tool
, "Potentially unwanted tool
" or even "Spyware-Adware
". Anti-virus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user.
However, restart.exe can also be associated with malware.
I did a search and got a few hits on that file when associated with the path.
Most of those were at German sites and I could not understand the discussion even when using the translate feature. I did find one thread where an analyst said he could be related to the CMedia sound card. Navigate to the location of that file, right-click on it and choose properties. Is there any information on the version tab that could help identify it?
You can also get a second opinion by submitting that file to jotti's virusscan
. In the "File to upload & scan
" box, browse to the location of the suspicious file and submit (upload) it for scanning/analysis.
Post back with the results.