Dangerous File Processes In Windows - Part 3

Java.exe (Java)
The process called java.exe, is used to run programs written in the Java language. Terminating this process will end any java programs that are running at the time. If you find that it is causing problems from your system, you should terminate it.java.exe is an application that does NOT appear to be a security risk.
The Process Server database currently registers java.exe to Sun Microsystems.
This is part of Java Runtime. java.exe is related to javaw.exe, jucheck.exe, jusched.exe,
Whenever you have a concern about a file like java.exe, feel free to visit our Anonymous Surfing section to help verify your file you are not giving away too much personal information.
The Process Server database is updated often, but inaccuracies may still exist, often caused by viruses named after valid files such as Java. Always verify your results just to play it safe.
Damage Level: Low
Distribution Level: High


Kazza.exe (kazza/Optix Trojan)
If a process named kazza.exe is running on your computer, you may have been infected with a strain of the Optix Trojan. kazza.exe is considered to be a security risk, not only because antivirus programs flag kazza as a trojan, but also because other sites consider it a Trojan as well. kazza is likely a Trojan and as such, presents a serious vulnerability which should be fixed immediately! Delaying the removal of kazza.exe may cause serious harm to your system and will likely cause a number of problems, loss of data, loss of control or leaking private information. The Process Server database currently registers kazza.exe to Optix Trojan.
Damage Level : High
Distribution Level: Low


Nvsc32.exe (Backdoor.IRC.Bot Trojan)
nvsc32.exe is a process which is registered as Backdoor.IRC.Bot Trojan. This Trojan allows attackers to access your computer from remote locations, stealing passwords, Internet banking and personal data. This process is a security risk and should be removed from your system.
Level of Danger: Medium
Distribution Level: Medium


Re_file.exe (W32.Beagle)
This worm spreads via the Internet as an attachment to infected messages. Infected messages will be sent to all email addresses harvested from the victim machine.
The worm is also able to download other files from the Internet without the knowledge or consent of the user. The worm itself is a PE EXE file. The file is 40,565 bytes in size.
Re_file.exe is a mass-mailing worm W32.Beagle.BO@mm.
Re_file.exe spreads by e-mail.
Re_file.exe opens a back door on TCP port 80.
Re_file.exe tries to terminate antiviral programs installed on a user computer.
Related files:
%System%\svc.exe
%System%\re_file.exe
%Windir%\eml.exe
Damage Level: Highly Dangerous
Distribution Level: High


Sagate.exe (GAOBOT.BOW WORM)
Sagate Security Firewall should not be running at startup. It is likely a virus, spyware, trojan, or some other sort of malicious program. Use a virus scanner, and/or spyware removal tool to remove it. Added by the GAOBOT.BOW WORM
Level of Danger: High
Distribution Level: Medium