How to Remove the resrcmon.exe virus from PC

What is resrcmon.exe?

Originally developed by Microsoft Corporation, resrcmon.exe is a legitimate file process. This process is known as Cluster Resource Monitor and it belongs to Windows Operating System. It is located in C:\Windows\System32 by default.
resrcmon.exe virus is created when malware authors write virus files and name them after resrcmon.exe with an aim to spread virus on the internet.

Affected Platform: Windows OS

How to check if your computer is infected with resrcmon.exe malware?

If your system is affected by resrcmon.exe malware, you will notice one or several these symptoms:

resrcmon.exe occupies an unusually large CPU memory
Erratic internet connection
Your browser is bombarded with annoying popup ads
Computer screen freezes
PC's processing speed suffers
You are redirected to unknown websites

To pinpoint the virus file location, take the following steps:

Step 1: Press CTRL+ALT+DEL keys at once to open Task Manager.

Step 2: If you notice the file located outside C:\Windows\System32, you should run an antivirus scan to get rid of the malware.

How to remove resrcmon.exe malware from system using Comodo Cleaning Essentials?

You can either choose to remove resrcmon.exe and other malwares using Comodo Antivirus, or Comodo Cleaning Essentials (CCE) – both of which are absolutely free to download! CCE is a set of computer security tools designed to help you identify and remove malwares and unsafe processes from an infected computer.

To remove malwares using CCE, take the following steps:

1. Check the system requirements and download the feature-rich CCE suite for free.

2. After installation, choose the type of scan you want to perform. CCE offers 3 scan options to get rid of malwares from a PC:

Smart Scan: Does a scan on critical areas of your system.
Full Scan: Does a complete scan of your system.
Custom Scan: Does a scan only on selected items.

The process to initiate the above mentioned scans are self-explanatory and thus, easy-to-use.
Additionally, it's recommended that you approve of any updates that the CCE will prompt you about to ensure it does a better job of identifying all the latest threats.

3. Click 'Next' to view the results.
Regardless of the type of scan you choose, the results will sometimes show false positive (flagging files that are actually safe), which has to be ignored. Only select the files you want to get rid of.

4. Click 'Apply' to apply the selected operations to the threats. The selected operations will be applied.

Malware Entries

Safe Entries

First Seen: 06 November 2010 at 9:35 pm

No.	Company	File Type	SHA1	MD5	Malware Name	Digitally Signed	File Version	Product Version	Submitted From	Malware Behavior
1	Microsoft Corporation	Executable	a07724fff9efb57a dee866c507e5871e d833fb36	d7b1229327c02d78 177d8ab2f0bfcc85	MalCrypt.Ind us!	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Russian Federation	N/A
2	Microsoft Corporation	Executable	c8377bf526e37012 96936b4a3c9b88ab 26375a71	357099a72b7e9912 2eff6c72815294bf	Virus.Win32. Parite.gen	No	5.2.3790.0 (srv03_rtm .030324-20 48)	5.2.3790.0	Taiwan	N/A
3	Microsoft Corporation	Executable	a98ceae41ffcce5e fdcade913a1331cd 1576465d	0eb4892ad686ee2f 975443c174524282	Virus.Win32. Parite.gen	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Taiwan	N/A
4	Microsoft Corporation	Executable	6da02890760991ee cafc6a519ccefc70 da254e0b	329d336c00d3aab6 43f9df9987f81aa6	MalCrypt.Ind us!	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	Russian Federation	N/A
5	Microsoft Corporation	Executable	6ffc8d75fbe9fb25 3e2b5cddf6ea6637 32218701	476e348ddef7a2c0 a8311d15f7861b87	Virus.Win32. Parite.gen	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	China	N/A
6	Microsoft Corporation	Executable	a52c5ae30b0b7efa a86aca030e8c0ca8 ae7fad9f	52bfdbe19c0156be 6ffdb6e9a0a2cef5	Virus.Win32. Sality.gen	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	India	N/A
7	Microsoft Corporation	Executable	b407abe0e23ab909 8ba40d44b3f5346a dc21e88a	1b0eb0271a4fa9ab 1446372b882e27ed	Virus.Win32. Sality.q	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Italy	N/A
8	Microsoft Corporation	Executable	f1c0d54d319bb98b 80d93b4d49db9864 cf05e0ea	a6812d67e02ab7b2 070c1ee78de69507	Virus.Win32. Sality.q	No	5.2.3790.0 (srv03_rtm .030324-20 48)	5.2.3790.0	Russian Federation	N/A
9	Microsoft Corporation	Executable	3711c00a6c38698a 63dee5986b206fbe 6da37a23	e83a999240c56e70 bee3c87feda303d2	Virus.Win32. Sality.l	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	Italy	N/A
10	Microsoft Corporation	Executable	a50cfa27212448c6 d53676ca98392718 1216c624	b8ac33467f2bfb9c 69f2b7578795b88e	Virus.Win32. Parite.gen	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	China	N/A
11	Microsoft Corporation	Executable	7fe23b4e731433c5 72aa6ae234782a3d 4e3907aa	5d7e42a6d98629ae 813bfbcbba7c8ee1	Virus.Win32. Sality.q	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	Italy	N/A
12	Microsoft Corporation	Executable	2e23ee870c0fffff 27564fed0e55c3ef d9deddc3	132adf8a83d0de21 f3bf1742ac45c386	Virus.Win32. Sality.q	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Italy	N/A

Prev 1 2 3 Next

Display 4 items per page

4 items per page
8 items per page
16 items per page
32 items per page

Safe Entries

First Seen: 17 June 2008 at 5:30 pm

No.	Company	File Type	SHA1	MD5	Digitally Signed	File Version	Product Version	Submitted From
1	Microsoft Corporation	Executable	106e6624fa99d8f5 f3e900ab54918bc0 7ca8c60c	7b929228e5fb60c5 e7167e129253cae9	No	5.00.2195. 2104	5.00.2195. 2104	France
2	Microsoft Corporation	Executable	bfa2e09ec3423685 cb905a484b1e13d8 6eab36f3	d030e88cebc6a9a6 e19d784463e0022d	No	5.00.2195. 6824	5.00.2195. 6824	Internal Submission
3	Microsoft Corporation	Executable	d6514733e2bf2a4b e37b2cff741a1250 7e2c1cc9	63a944c52f0ac09d 4203a8b4ad9474bf	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Taiwan
4	Microsoft Corporation	Executable	8b81b5b108a6a850 4de6cc56a741e5fd 04f89fd8	0ffb73f349ecf3be d6dba44994b759c5	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	Internal Submission
5	Microsoft Corporation	Executable	ed6314129ae1ea36 d3d4fcb050022bdf 3d2ff661	5c071479f65f5005 9d4c87f9e21e2f84	No	5.00.2195. 4678	5.00.2195. 4678	Czech Republic
6	Microsoft Corporation	Executable	c00aa38ff18f3fc8 9f1cf30ca6490a80 e20fc89c	00a39203bb285166 b484b4e40a7886fd	No	1.00.224.6	1.00.224.6	Internal Submission
7	Microsoft Corporation	Executable	7aa131e483111f8c 5d41c91e06bcb863 21a38874	f75d5b9a5075a55a 24041350dbbd0bb8	No	1.00.224.0	1.00.224.0	198.20.167.84/32
8	Microsoft Corporation	Executable	457d8855b7475ceb 1135e976d6ef551b bef3dd3a	e20e2c82f1bc68f3 1d097e81fd09808f	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Japan
9	Microsoft Corporation	Executable	397e9193b046ec3a 23e4d13a78dc5e87 529bffee	5ea8e3a76ab370d7 a8e825adbce540ca	No	5.2.3790.4 250 (srv03_sp2 _qfe.08031 0-1207)	5.2.3790.4 250	Ukraine
10	Microsoft Corporation	Executable	8b81b5b108a6a850 4de6cc56a741e5fd 04f89fd8	0ffb73f349ecf3be d6dba44994b759c5	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	Internal Submission
11	Microsoft Corporation	Executable	ad2b292ef9250063 688deaf27576d340 0868aa74	fb711b512bebe28c ee18b4c5fc56f1d9	No	1.00.224.6	1.00.224.6	United States
12	Microsoft Corporation	Executable	4464880ea2df57dd 7f0328a4043e6d84 f539bee5	a3a5e0166efcbba4 f6c7eff6f8ade190	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	10.224.1.57/32
13	Microsoft Corporation	Executable	925cebfc5c612390 575cdb0bc622de67 94d073b2	398a5f9a3cd51157 1f71928cab021364	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	Internal Submission
14	Microsoft Corporation	Executable	9fdfec37c4f239e9 0963039afa7343a3 70caa6ad	868e7d599d48e026 040956431e9e1723	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	10.100.130.247/32
15	Microsoft Corporation	Executable	925cebfc5c612390 575cdb0bc622de67 94d073b2	398a5f9a3cd51157 1f71928cab021364	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	10.224.1.65/32
16	Microsoft Corporation	Executable	4464880ea2df57dd 7f0328a4043e6d84 f539bee5	a3a5e0166efcbba4 f6c7eff6f8ade190	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Internal Submission
17	Microsoft Corporation	Executable	c00aa38ff18f3fc8 9f1cf30ca6490a80 e20fc89c	00a39203bb285166 b484b4e40a7886fd	No	1.00.224.6	1.00.224.6	United States
18	Microsoft Corporation	Executable	f5fd818efdc9a241 cd79a3abdcbed59f 2785ed60	04e1bbb2a3a23173 8cfc379381249fca	No	1.00.224.0	1.00.224.0	France
19	Microsoft Corporation	Executable	dc3b11a6f3d1f4ef 3e5849899fe59ef6 777a71aa	f2d27dad27c77af2 14e42e77e5618579	No	1.00.224.0	1.00.224.0	Suriname
20	Microsoft Corporation	Executable	4464880ea2df57dd 7f0328a4043e6d84 f539bee5	a3a5e0166efcbba4 f6c7eff6f8ade190	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	10.224.1.55/32
21	Microsoft Corporation	Executable	9c8edbe39b15a781 036f31b78aed3d9b e579c2a7	5f3ba97e936aaafc 5e601139327e7f59	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Internal Submission
22	Microsoft Corporation	Executable	dc3b11a6f3d1f4ef 3e5849899fe59ef6 777a71aa	f2d27dad27c77af2 14e42e77e5618579	No	1.00.224.0	1.00.224.0	United States
23	Microsoft Corporation	Executable	9fdfec37c4f239e9 0963039afa7343a3 70caa6ad	868e7d599d48e026 040956431e9e1723	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Internal Submission
24	Microsoft Corporation	Executable	9c8edbe39b15a781 036f31b78aed3d9b e579c2a7	5f3ba97e936aaafc 5e601139327e7f59	No	5.2.3790.3 959 (srv03_sp2 _rtm.07021 6-1710)	5.2.3790.3 959	Internal Submission
25	Microsoft Corporation	Executable	4019688c347de04b 1a3fe2a4796edadf 9eda320c	5ba7fabb7255a190 5dcd9b91379e8736	No	5.2.3790.1 830 (srv03_sp1 _rtm.05032 4-1447)	5.2.3790.1 830	Ukraine