This PC is running Windows XP Pro SP1 + other patches.
This system has consistently had AVG (Free version) installed and generally kept up to date in terms of virus definition databases.
However, recently it appears to have been hit by a virus (Or two), and I think that AVG will soon be exchanged for a mainstream (paid-for version).
Anyway the symptoms seem very similar to other help requests posted here: Regedit fails to run & running the Task-manager briefly displays then it vanishes - other than the task-manager remains as an Icon in the task bar (until you attempt to take a mouse pointer to it, then it vanishes from the task manager too).
I ran Panda virus Activescan over it and it detected & disinfected 1 instance of Trojan.Zerolin.B and it detected 18 file infections by the Exploit ByteVerify - A Java based virus, I think.
I am not sure if one of the viruses has allowed some malicious activity to be undertaken on O/S files etc to cause this problem. This pc's internet connection is via a DSL Router with a basic hardware firewall enabled, however of course if my internal PC sends an out going request to another machine, it may have welcomed some un-intended incoming malicious hacker activity! :\
Here is a pasted copy of task list out put the PC, can anyone identify some thing suspicious here?
Image Name PID Session Name Session# Mem Usage
========================= ====== ================ ======== ============
System Idle Process 0 Console 0 20 K
System 4 Console 0 216 K
smss.exe 328 Console 0 464 K
csrss.exe 544 Console 0 4,000 K
winlogon.exe 572 Console 0 3,664 K
services.exe 616 Console 0 3,288 K
lsass.exe 628 Console 0 2,164 K
ati2evxx.exe 776 Console 0 2,276 K
svchost.exe 800 Console 0 3,740 K
svchost.exe 852 Console 0 19,684 K
svchost.exe 952 Console 0 2,172 K
svchost.exe 972 Console 0 4,656 K
spoolsv.exe 1176 Console 0 4,212 K
alg.exe 1304 Console 0 4,348 K
avgserv.exe 1340 Console 0 1,804 K
svchost.exe 1704 Console 0 3,772 K
ati2evxx.exe 1944 Console 0 2,192 K
explorer.exe 144 Console 0 23,492 K
atiptaxx.exe 468 Console 0 4,112 K
jusched.exe 488 Console 0 2,172 K
avgcc32.exe 496 Console 0 1,228 K
realsched.exe 288 Console 0 276 K
PicasaMediaDetector.exe 548 Console 0 4,524 K
MsNet32.exe 744 Console 0 5,880 K
DSP24SET.exe 964 Console 0 3,932 K
qbdagent2002.exe 304 Console 0 9,032 K
pnetaware.exe 1368 Console 0 2,708 K
wuauclt.exe 1640 Console 0 5,060 K
iexplore.exe 3232 Console 0 6,636 K
notepad.exe 4012 Console 0 1,408 K
notepad.exe 4040 Console 0 360 K
cmd.exe 1492 Console 0 1,524 K
tasklist.exe 276 Console 0 3,740 K
wmiprvse.exe 1324 Console 0 4,516 K
I am wondering if I should tell Windows XP that it needs to do a Repair/reinstall?
Thanks all.
Jim.
This system has consistently had AVG (Free version) installed and generally kept up to date in terms of virus definition databases.
However, recently it appears to have been hit by a virus (Or two), and I think that AVG will soon be exchanged for a mainstream (paid-for version).
Anyway the symptoms seem very similar to other help requests posted here: Regedit fails to run & running the Task-manager briefly displays then it vanishes - other than the task-manager remains as an Icon in the task bar (until you attempt to take a mouse pointer to it, then it vanishes from the task manager too).
I ran Panda virus Activescan over it and it detected & disinfected 1 instance of Trojan.Zerolin.B and it detected 18 file infections by the Exploit ByteVerify - A Java based virus, I think.
I am not sure if one of the viruses has allowed some malicious activity to be undertaken on O/S files etc to cause this problem. This pc's internet connection is via a DSL Router with a basic hardware firewall enabled, however of course if my internal PC sends an out going request to another machine, it may have welcomed some un-intended incoming malicious hacker activity! :\
Here is a pasted copy of task list out put the PC, can anyone identify some thing suspicious here?
Image Name PID Session Name Session# Mem Usage
========================= ====== ================ ======== ============
System Idle Process 0 Console 0 20 K
System 4 Console 0 216 K
smss.exe 328 Console 0 464 K
csrss.exe 544 Console 0 4,000 K
winlogon.exe 572 Console 0 3,664 K
services.exe 616 Console 0 3,288 K
lsass.exe 628 Console 0 2,164 K
ati2evxx.exe 776 Console 0 2,276 K
svchost.exe 800 Console 0 3,740 K
svchost.exe 852 Console 0 19,684 K
svchost.exe 952 Console 0 2,172 K
svchost.exe 972 Console 0 4,656 K
spoolsv.exe 1176 Console 0 4,212 K
alg.exe 1304 Console 0 4,348 K
avgserv.exe 1340 Console 0 1,804 K
svchost.exe 1704 Console 0 3,772 K
ati2evxx.exe 1944 Console 0 2,192 K
explorer.exe 144 Console 0 23,492 K
atiptaxx.exe 468 Console 0 4,112 K
jusched.exe 488 Console 0 2,172 K
avgcc32.exe 496 Console 0 1,228 K
realsched.exe 288 Console 0 276 K
PicasaMediaDetector.exe 548 Console 0 4,524 K
MsNet32.exe 744 Console 0 5,880 K
DSP24SET.exe 964 Console 0 3,932 K
qbdagent2002.exe 304 Console 0 9,032 K
pnetaware.exe 1368 Console 0 2,708 K
wuauclt.exe 1640 Console 0 5,060 K
iexplore.exe 3232 Console 0 6,636 K
notepad.exe 4012 Console 0 1,408 K
notepad.exe 4040 Console 0 360 K
cmd.exe 1492 Console 0 1,524 K
tasklist.exe 276 Console 0 3,740 K
wmiprvse.exe 1324 Console 0 4,516 K
I am wondering if I should tell Windows XP that it needs to do a Repair/reinstall?
Thanks all.
Jim.
