Identifying parasite program files
| Author |
Message |
dbg144
Joined: 09 Feb 2006
Posts: 1
|
 Post subject: Identifying parasite program files |
 |
|
Can someone please help me to identify which of the folloing files shown in the Processes tab of Windows Task Manager are parasites of one kind or another (don't know enough to understand the distinction, if any, between spyware, malware, &c)? Very grateful for any help received. Thx.
svchost.exe
taskmgr.exe
WINWORD.EXE
msmsgs.exe
CursorXP.exe
swdoctor.exe
TOSCDSPD.exe
ccApp.exe
AVGNT.EXE
avgcc.exe
hkcmd.exe
igfxtray.exe
links.exe
PadExe.exe
SmoothView.exe
SynTPEnh.exe
SynTPLpr.exe
ctfmon.exe
alg.exe
wscntfy.exe
CFSvcs.exe
AVWUPSRV.EXE
avgupsvc.exe
avgamsvr.exe
AVGUARD.EXE
MULTIS~2.EXE
spoolsv.exe
explorer.exe
ccEvtMgr.exe
SPBBCSvc.exe
SNDSrvc.exe
ISSVC.exe
ccSetMgr.exe
SDMCP.exe
ccProxy.exy
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
lsass.exe
services.exe
winlogon.exe
csrss.exe
smss.exe
wdfmgr.exe
snmp.exe
sdhelp.exe
navapsvc.exe
System.exe
System Idle Process
NB. Of the 5 entries for svchost.exe, one has User Name LOCAL SERVICE, two have NETWORK SERVICE and the remaining two have SYSTEM as their User Name.
Thanks in advance for any help offered. If you need further information, please let me know. I'm using a Toshiba laptop less than a year old. I connected it to the Internet only once, in an Internet Cafe, and it's got infected with something and is working very slowly and doing some funny (peculiar!) things. |
|
Thu Feb 09, 2006 4:04 pm
 |
|
 |
GTO
Joined: 15 Nov 2005
Posts: 1519
|
| Post subject: |
|
|
|
|
Fri Feb 10, 2006 7:09 pm
|
|
|
GTO
Joined: 15 Nov 2005
Posts: 1519
|
| Post subject: |
|
|
Hi, dbg144. Sorry for the delay  .
I can answer to your post. However, my answer would be much more accurate, if I would have your HijackThis log. Malicious processes can have the same name as legitimate ones, and your list lacks some important details. So, please download the HijackThis program, run a system scan and post a fresh log here.
As for different svchost.exe instances of several types - don't worry, this is normal. |
|
Sun Feb 12, 2006 12:00 pm
|
|
|
TerryT
Joined: 27 Jan 2007
Posts: 28
Location: Malaysia
|
| Post subject: Identifying parasite program files |
|
|
hi dbg144.
According to processlibrary(free process recognizer)::
links.exe = depress worm variant
so far,you have 1 malicious process running.try removing the file itself in safe mode
_________________
Prevention is always better than cure |
|
Sat May 05, 2007 7:15 am
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
Recommended software:
Spyware Doctor
 (91/100)
Spyware Doctor is a very powerful, but yet highly user-friendly spyware remover, made by PC Tools, reputable computer security experts. This product provides effective and easy-to-manage...
SUPERAntiSpyware
 (89/100)
SUPERAntiSpyware is a powerful, highly effective spyware remover introducing advanced parasite detection and removal features along with reliable real-time protection. The program is not...
CounterSpy
 (85/100)
CounterSpy is a powerful spyware remover based on revolutionary hybrid engine, which incorporates traditional anti-spyware and advanced antivirus engines. Such combination allows CounterSpy...
Malwarebytes Anti Malware
 (75/100)
There are loads of malware removers on the net today and most of them are lightweight applications, which usually means they’re fast and don’t have many features. One such...
Windows Defender
(75/100)
Windows Defender is a free anti-spyware program made by the leading software company to add native spyware protection to its most popular product - the Microsoft Windows operating...
Encyclopedia of parasites:
|
