Page 1 of 4 123 ... LastLast
  1.    16 Jul 2015 #1
    Join Date : Jun 2015
    Posts : 287
    windows 10 pro x64 fall creators update

    taskmngr.exe??


    I downloaded build 10240 from an external source, in order to upgrade from the previous build of windows 10.
    after it installed, bitdefender free detected and quarantined a file called taskmngr.exe in the system32 folder.
    It never found such a file before.
    A cursory search on the web revealed that this is not a windows file, and is highly suspicious, especially in said location.
    but maybe windows 10 RTM is different?
    anybody know something about this?
    I then saw in windows task manager that this exe file was set to run at startup, but, strangely, it had a name in french: Gestionnaire des taches. That means "task manager" in french, according to Google.
    Is this normal, or what?
      My ComputerSystem Spec
  2.    16 Jul 2015 #2
    Join Date : Jul 2014
    UK
    Posts : 19,158
    Windows 10

    What external source did you download from?

    are you sure its a genuine version, not a tampered with one
      My ComputerSystem Spec
  3.    16 Jul 2015 #3
    Join Date : Jun 2015
    Posts : 287
    windows 10 pro x64 fall creators update
    Thread Starter

    Quote Originally Posted by paulsalter View Post
    What external source did you download from?

    are you sure its a genuine version, not a tampered with one
    there is a certain well-known bay that has these kinds of torrents.
    I don't know exactly how to check that it is genuine (maybe you could tell me how?), but the reader's comments seemed satisfied with the torrent, and malwarebytes found my system clean after install. (that is, after the said file was already quarantined by bitdefender)
    I just mounted the ISO and had bitdefender scan it, and it came out clean.
      My ComputerSystem Spec
  4.    16 Jul 2015 #4
    Join Date : Feb 2015
    Bamberg Germany
    Posts : 18,011
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu

    That's your task manager, obviously a false positive(the main reason I use Defender and no 3rd party AV's)

    Click image for larger version. 

Name:	001.png 
Views:	156 
Size:	15.0 KB 
ID:	24676Click image for larger version. 

Name:	002.png 
Views:	155 
Size:	16.1 KB 
ID:	24677
      My ComputersSystem Spec
  5.    16 Jul 2015 #5
    Join Date : Jun 2015
    Posts : 287
    windows 10 pro x64 fall creators update
    Thread Starter

    Quote Originally Posted by Cliff S View Post
    That's your task manager, obviously a false positive(the main reason I use Defender and no 3rd party AV's)

    Click image for larger version. 

Name:	001.png 
Views:	156 
Size:	15.0 KB 
ID:	24676Click image for larger version. 

Name:	002.png 
Views:	155 
Size:	16.1 KB 
ID:	24677
    you would think so, but it's not. my task manager works just fine, even after quarantining the file. It bears a name that sounds legit, but sources on the web say it is not a microsoft file, it's a fake.
      My ComputerSystem Spec
  6.    16 Jul 2015 #6
    Join Date : Feb 2015
    Bamberg Germany
    Posts : 18,011
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu

    You can upload the file to VirusTotal to see if it is dangerous.
      My ComputersSystem Spec
  7.    16 Jul 2015 #7
    Join Date : Jun 2015
    Posts : 287
    windows 10 pro x64 fall creators update
    Thread Starter

    Quote Originally Posted by Cliff S View Post
    You can upload the file to VirusTotal to see if it is dangerous.
    did. results are 29 / 55
    interestingly, among the results are
    Microsoft Trojan:Win32/Skeeyah.A!bit
    I ran a program that generated the hash count of the ISO.
    how can I verify it?

    MD5 Checksum: A8FEE16A90B857E6B9993CC8A7E44FB9
    SHA-1 Checksum: 2DAE26929E0E9F841AE4D53BF83705801263BDDB
    SHA-256 Checksum: 934D475EA8FF17DDCEE99B4DD6027530534558D4ECE8701E2E82DD10203339CB
    SHA-512 Checksum: 828B254D41D45EF4C742D165E612ACA43EB7BE001CBC61F9AB93D197D4EE4ECDF7E3C18B663FCEAB852F562F2AD2A9D0FCC0 E9B0C188FA38A8ED94FBCF119C85
    Generated by MD5 & SHA Checksum Utility @ MD5 SHA Checksum Utility | Raymond's WordPress
      My ComputerSystem Spec
  8.    16 Jul 2015 #8
    Join Date : Feb 2015
    Bamberg Germany
    Posts : 18,011
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu

    It tells you how at the MD5 link you just posted:
    Instruction to Verify hash

    1. Download a software that provides MD5, SHA-1 & SHA-256 hash
    2. Copy one of the hashes to clipboard (Ctrl + C)
    3. Drag and drop the downloaded file into the program or use the Browse button to select the downloaded file
    4. Selected hashes will be generated
    5. Click on the Paste button
    6. Click on the Verify button and the result will be displayed in a message box

    You can try generate hash for this software and verify with one of the checksum below.
    Checksums for MD5 & SHA Checksum Utility 2.1 (Free)
    MD5 Checksum: 2D423B85E6684956B817E6C7E36BE3DC
    SHA-1 Checksum: 4B70B5213249014C3785460720B81B5F9BEABEC3
    SHA-256 Checksum: D3D6F3597AEBA37312F61E59BA465E57B19140CC9A4517C7F9C49461F1D0A4BB
    SHA-512 Checksum: 53914AFA0E66C50BBD12D9FFB7833FD5094FA10735D8700BFF9CD87C2A7EB478D6715B34EAE4F53652F0E48EC3526C51C431 C08ACF4EC70E8DD5FCD5FA84C129
    I recommend though that VirusTotal link to keep bookmarked in all your browsers. It can check site links too if you are not sure about them
      My ComputersSystem Spec
  9.    16 Jul 2015 #9
    Join Date : Sep 2014
    Nashville, TN
    Posts : 3,143
    Windows 10 Pro

    Notice the name.. .his was TaskmNgr, while yours is Taskmgr.
      My ComputerSystem Spec
  10.    16 Jul 2015 #10
    Join Date : Jun 2015
    Posts : 287
    windows 10 pro x64 fall creators update
    Thread Starter

    Quote Originally Posted by Mystere View Post
    Notice the name.. .his was TaskmNgr, while yours is Taskmgr.
    I didn't get it. who had the name TaskmNgr?
      My ComputerSystem Spec

 
Page 1 of 4 123 ... LastLast

Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 16:01.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums