NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  
February 13, 2012, 12:26:58 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: SMF - Just Installed!
 
   Home   Help Search Login Register  

Identifying parasite program files


AddThis Social Bookmark Button AddThis Feed Button
Pages: [1]
« previous next »
  Print  
Author Topic: Identifying parasite program files  (Read 2803 times)
dbg144
Newbie
*
Posts: 1


View Profile Email
« on: February 09, 2006, 10:04:58 AM »
Can someone please help me to identify which of the folloing files shown in the Processes tab of Windows Task Manager are parasites of one kind or another (don't know enough to understand the distinction, if any, between spyware, malware, &c)?  Very grateful for any help received.  Thx.

svchost.exe
taskmgr.exe
WINWORD.EXE
msmsgs.exe
CursorXP.exe
swdoctor.exe
TOSCDSPD.exe
ccApp.exe
AVGNT.EXE
avgcc.exe
hkcmd.exe
igfxtray.exe
links.exe
PadExe.exe
SmoothView.exe
SynTPEnh.exe
SynTPLpr.exe
ctfmon.exe
alg.exe
wscntfy.exe
CFSvcs.exe
AVWUPSRV.EXE
avgupsvc.exe
avgamsvr.exe
AVGUARD.EXE
MULTIS~2.EXE
spoolsv.exe
explorer.exe
ccEvtMgr.exe
SPBBCSvc.exe
SNDSrvc.exe
ISSVC.exe
ccSetMgr.exe
SDMCP.exe
ccProxy.exy
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
lsass.exe
services.exe
winlogon.exe
csrss.exe
smss.exe
wdfmgr.exe
snmp.exe
sdhelp.exe
navapsvc.exe
System.exe
System Idle Process

NB.  Of the 5 entries for svchost.exe, one has User Name LOCAL SERVICE, two have NETWORK SERVICE and the remaining two have SYSTEM as their User Name.

Thanks in advance for any help offered.  If you need further information, please let me know.  I'm using a Toshiba laptop less than a year old.  I connected it to the Internet only once, in an Internet Cafe, and it's got infected with something and is working very slowly and doing some funny (peculiar!) things.
Logged
GTO
Global Moderator
Newbie
*****
Posts: 1519



View Profile
« Reply #1 on: February 10, 2006, 01:09:47 PM »
Hi, dbg144. Welcome to 2-Spyware.com forums!

Your log will be moved to a more appropriate section.
Logged
GTO
Global Moderator
Newbie
*****
Posts: 1519



View Profile
« Reply #2 on: February 12, 2006, 06:00:03 AM »
Hi, dbg144. Sorry for the delay :?.

I can answer to your post. However, my answer would be much more accurate, if I would have your HijackThis log. Malicious processes can have the same name as legitimate ones, and your list lacks some important details. So, please download the HijackThis program, run a system scan and post a fresh log here.

As for different svchost.exe instances of several types - don't worry, this is normal.
Logged
TerryT
Newbie
*
Posts: 28

psychopunk99@hotmail.com
View Profile
« Reply #3 on: May 05, 2007, 01:15:31 AM »
hi dbg144.

According to processlibrary(free process recognizer)::
links.exe = depress worm variant

so far,you have 1 malicious process running.try removing the file itself in safe mode
Logged
Prevention is always better than cure
Pages: [1]
  Print  
« previous next »
 
Jump to:  




Recommended software:
STOPzilla
(90/100)
STOPzilla is a powerful anti-spyware program that detects, blocks, and removes malicious software allowing users to surf the Web not worrying about spyware, Trojan horses,...
Malwarebytes Anti Malware
(88/100)
There are loads of malware removers on the net today and most of them are lightweight applications, which usually means they’re fast and don’t...
Spyware Doctor
(87/100)
Spyware Doctor is a very powerful, but yet highly user-friendly spyware remover, made by PC Tools, reputable computer security experts. This product provides effective and...
SpyHunter
(86/100)
SpyHunter is a quite simple, but yet highly effective spyware remover with an easy-to-use interface. This program is an excellent choice for users, who are...
XoftSpySE Anti Spyware
(84/100)
XoftSpySE, an anti-spyware program made by ParetoLogic, Inc., is a simple, but effective on-demand scanner with the typical set of functions but very easy to...
Encyclopedia of parasites:

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other
Latest Spyware Threats: Internet Security 2012 | Win 7 Total security 2012 | System Check | Win 7 Internet Security 2012 | Win 7 Home Security 2012 | Win 7 Antivirus 2012 | Win 7 Antispyware 2012 | Vista Security 2012 | Vista Antivirus 2012 | Vista Antispyware 2012 | XP Antispyware 2012 | XP Antivirus 2012 | XP Security 2012 | XP Home Security 2012 | Security Shield
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2011 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.