Author |
Message |
Roger The Cabin Boy
Master of Master Baiters
Joined: 24 Feb 2008
Posts: 535
Location: Hiding in a lifeboat!
|
Posted:
Sat Feb 14, 2009 2:54 am |
|
Hmm, cracked it at last. if you double click the process in process manager and click the service tab, you get all kinds of helpful info. The service name, .dll it's running from etc. Ah well, and so to bed. Night all |
_________________ Bobby Smith: M7CN $ecure- 2,381 boxes clicked! Then Undetowz broke the record.
Sam's Safari-: oh mum never use again pls they are performg rubbish and all of them are thiefs.
Precious - I cant get enough because being a TW@T is boundless. |
|
|
|
Dutch
Baiting Guru
Joined: 22 Nov 2007
Posts: 4204
Location: Dislocated
|
Posted:
Sat Feb 14, 2009 1:38 pm |
|
Try this tool to get you a view and description of processes and services running: http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
Also very useful: Hijackthis. http://www.hijackthis.de/ , on the top right side there's a download link. Run the analysis with the 'save a logfile' option. It will produce a list with running processes in a text file. Select the whole list, copy and paste it in the online browser window on http://www.hijackthis.de and push the analyze button in the bottom. Based on known processes it will produce a full blown report with safe and (possible) suspicious entries for you to investigate further. It's possible to fix the malicious entries within the Hijackthis application.
It does produce false positive sometimes, so be sure to investigate properly before you delete entries. |
_________________ deadified fake websites) x 374
x11 x a couple
Yes we can! (with a bit of help) |
|
|
|
Roger The Cabin Boy
Master of Master Baiters
Joined: 24 Feb 2008
Posts: 535
Location: Hiding in a lifeboat!
|
Posted:
Sat Feb 14, 2009 3:06 pm |
|
Hmmm, autoruns, lots of info...what the heck does it all mean? (It's ok, I don't expect an answer. ) I'm happy just being able to find out what service each incarnation of svchost is running, and how to find its .dll.
I agree, hijack this is a great tool, but capable of causing havoc if used wrongly. Personally I like to make a back up of the whole boot partition with Acronis true image. If anything gets too out of hand, the whole lot can be replaced. My documents get backed up once a week to a spare hard drive. I haven't tried it yet, but should be able to wipe and replace the whole hard drive in under an hour.
Anti-virus etc is all very well, but it's no substitute for a thorough back up. |
_________________ Bobby Smith: M7CN $ecure- 2,381 boxes clicked! Then Undetowz broke the record.
Sam's Safari-: oh mum never use again pls they are performg rubbish and all of them are thiefs.
Precious - I cant get enough because being a TW@T is boundless. |
|
|
|
|
|
View next topic
View previous topic
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
|