Re: msrcsnt.exe
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 08/18/05
- Previous message: Ken McNeil: "Re: msrcsnt.exe"
- In reply to: NETCRAMMER: "msrcsnt.exe"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 18 Aug 2005 15:34:33 -0500
It probably is malware or a parasite [spyware/adware/hijack].
You could try submitting it to http://www.virustotal.com/flash/index_en.html
to see what is found. Also check your services [services.msc] to see if any
bogus services have been added using that file. If your antivirus/parasite
detection and removal programs do not detect it you probably can get rid of
it by booting into safe mode to remove the file and registry entries. Tools
such as Process Explorer, TCPView, and Autoruns from SysInternals can help
determine what is going on. Autoruns will allow you to try and stop the
process from starting and TCPView will let you know if it is associated with
a port being used on your computer. --- Steve
http://www.sysinternals.com/utilities/autoruns.html --- Autoruns and link
to SysInternals
"NETCRAMMER" <netcrammer@yahoo.com> wrote in message
news:uIDP4DDpFHA.1412@TK2MSFTNGP09.phx.gbl...
> Does anyone have a clue what this file is (msrcsnt.exe)? it's found in the
> system32 dir
> and in the HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN
> registry key.
> Virus? Worm?
> I could not find anything on MS site nor on web.
>
> TIA!!!
>
>
- Previous message: Ken McNeil: "Re: msrcsnt.exe"
- In reply to: NETCRAMMER: "msrcsnt.exe"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
