Donate SIGN UP
Home > Technology > Internet > Viruses/rogue processes

Viruses/rogue processes

Avatar Image
ConfusedJohn | 18:31 Mon 04th Dec 2006 | Internet
5 Answers
I'm having some issues with a virus my other half accidentally installed. The problem is, none of the processes I have running (which I do not recognise) are coming up as rogue on Process Library so I think it is affecting that. It authenticates to an IP address prior to running the url. Can someone post the name of a process which is definitely a baddie so I can test this - if it comes up as an OK process I'll know that this is corrupted. Thanks in advance.
prev GoDaddy.com
  
next crosswords
Gravatar

Answers

1 to 5 of 5rss feed

Best Answer

No best answer has yet been selected by ConfusedJohn. Once a best answer has been selected, it will be shown here.

For more on marking an answer as the "Best Answer", please visit our FAQ.
Avatar Image mikeyp
teekids.exe - comes up as rogue for me.

If you can't see the virus process, how do you know you have one? I think not all virus' run all the time.
11:54 Tue 05th Dec 2006
Avatar Image ConfusedJohn
Question Author
Thanks for replying. It's something called command.exe. My computer was running far to slowly and I'd had to remove a couple of new dlls. I checked on www.processlibrary.com and it didn't flag it as harmful. I then googled command.exe + virus and it came up with some info - apparently it's a buddy trojan. Need to sort it out tonight. I'd love to get my hands on the people who create these things - I'd tear them a new...
13:48 Tue 05th Dec 2006
Avatar Image mikeyp
If your other half got the virus on the web or via an email, you could try using DropMyRights to run those net facing programs. It runs the program as a limited access user, even if you're an administrator. Virus' find it much harder to install themselves on a limited account. No access to the registry for a start. The slightly improved version (with gui) can be downloaded here:

http://www.tech-forums.net/showthread.php?thre adid=127106
15:01 Tue 05th Dec 2006
Avatar Image ConfusedJohn
Question Author
Thanks mikeyp - will have to have a look at that when I get home. Sounds like a good idea. It turns out she didn't install anything - the virus opened one of her friends' MSN Messengers and sent out an IM to everyone on his contacts and online (including my gf).

Thanks again, John.
15:55 Tue 05th Dec 2006
Avatar Image [eLz]
Have you tried System Restore? (Start - All Programs - Accessories - System Tools - System Restore) It Basicaly removes everything downloaded in a certain time gap chosen. So if it was only last week which your girlfriend downloaded it then try restoring it before then. Sorry if you've alredy tried it.
Elz
19:06 Fri 08th Dec 2006

1 to 5 of 5rss feed

Do you know the answer?

Viruses/rogue processes

Answer Question >>

Related Questions

Sorry, we can't find any related questions. Try using the search bar at the top of the page to search for some keywords, or choose a topic and submit your own question.