Re: How do I find process?

From: Tim (noanswer_at_hotmail.com)
Date: 11/17/04 

Date: Wed, 17 Nov 2004 07:53:24 -0000

Hi Karl,
I do thank you for your continued support in helping me to resolve this
matter. I have done as you said and run silentrunners (similar to
hijackthis) and have got the log file. I dont fully understand it, would you
have a look for me and tell me if there is anything untoward there?

Regards

Tim
"Karl Levinson [x y] mvp" <levinson_k@despammed.com> wrote in message
news:Oq5DfV9yEHA.824@TK2MSFTNGP11.phx.gbl...
>
> "Tim" <noanswer@hotmail.com> wrote in message
> news:%23jsbbS7yEHA.2572@tk2msftngp13.phx.gbl...
>> when I boot my pc everything loads (Possibly my Panda AV loads a little
> more
>> slowly than the rest of the stuff, but even so when it loads the icon
>> into
>> the systray this unknown process is still running in the background). As
>> soon as it starts whirring and clicking in the background I open TM but
>> there is nothing in there that is eating into my processor memory. I have
>> tried everything, bootvis, turning everything off and starting one by one
>> but it is still there.It takes about 2.5 mins from boot to silent
>> desktop,
>> can anyone help?
>>
>> Please dont tell me spyware or virus, I check my system everyday with new
>> virus sigs, spybot S&D, adaware and CWSShredder. I also have full pc
>> security (as told by MSBSA) and I use win xp sp2 with firewall on.
>
> Well, just because you're running anti-virus, it could still be a virus.
> And just because your AV icon appears in the system tray, a virus could
> still have disabled it.
>
> What happened when you ran RKDETECT from http://www.security.nnov.ru/soft/
> and Silent Runners from www.silentrunners.org ?
>
> What's the name of the process? Is it still the same as in your initial
> post? Can you find the file on your computer? If so, what happened when
> you submitted the file to one or more anti-virus vendors? If not, you may
> want to use one of the following methods to find and copy the file to a
> floppy disk:
>
> * first, try to find out where the file is located by using Silent Runners
> and/or the MSCONFIG command or something similar to look at what is
> starting
> up automatically on your system and what folder it's in [and let us know
> what folder it's in, post the results here if you have any questions];
> * if you know the file's name and folder, what error message do you get
> when you type COPY C:\FOLDERNAME\FILENAME A: in the Start, Run command
> or
> at a DOS Command Prompt to try to copy the file to a floppy?
> * try rebooting your computer and press F8 to boot into DOS / Command
> Prompt Only mode [not sure if this will help you find the file];
> * make and/or boot to a DOS boot floppy, for example by downloading one
> from www.bootdisk.com and then use NTFSDOS from
> http://www.sysinternals.com/ntw2k/freeware/ntfsdos.shtml if your hard
> drive
> is formatted in NTFS format;
> * download and burn either the Bitdefender Linux rescue CD from
> http://www.bitdefender.com/bd/site/products.php?p_id=40 or Knoppix from
> www.knoppix-std.org or www.knoppix.org to a CD and boot to the Knoppix CD
> to
> find and copy the file to a floppy;
> * If you have another computer that can connect to your computer via
> Windows Explorer / Windows networking, you should also be able to copy the
> file that way too.
>
>
>
>
>
>
>

Relevant Pages

  • Re: off topic question
    ... delete is a GOOD option for trojans & virus ... For evil to prosper requires only that good men remain silent! ... >I recently used AVG antivirus free edition and it detected 7 trojan ... > delete them or is it better to keep it in their "virus vault."? ...
    (microsoft.public.windowsxp.general)
  • Re: OT Ikea names
    ... What's with the Billy bookcase (of which I have loads) then? ... I suspect it's derived from the word Billig (the G is silent), ...
    (uk.media.tv.misc)