FAQ FAQ  Forum Search   Register Register  Login Login

Good or Bad process's in tskmnger?

Post Date: 2008-08-16
 Post Reply Post Reply
Author
  Topic Search Topic Search  Topic Options Topic Options
VIDAR View Drop Down
Groupie
Groupie

Email address used to purchase matched with forums account email.

Joined: 07 Jan 2008
Online Status: Offline
Posts: 52 		  Quote VIDAR Quote  Post ReplyReply bullet Topic: Good or Bad process's in tskmnger?
    Posted: 16 Aug 2008 at 11:51pm
How do you find out if the process's that are running in task manager belong and are good or bad?  A friend and I were talking about it and were comparing and I have some that I dont know if they should be there or not. One in particular is www.exe, he said it is malware, but we dont know how to find out what process belongs. Any help woukd be greatly appreciated.
Back to Top
david5182 View Drop Down
Groupie
Groupie

Email address used to purchase matched with forums account email.

Joined: 13 May 2008
Online Status: Offline
Posts: 215 		  Quote david5182 Quote  Post ReplyReply bullet Posted: 17 Aug 2008 at 12:27am
Hmm, looks suspicious.
 
Download both of these free apps to scan your system for all kinds of nasties:
 
Back to Top
DST4ME View Drop Down
DS ELITE
DS ELITE

Email address used to purchase matched with forums account email.

Joined: 14 Apr 2008
Online Status: Offline
Posts: 36758 		  Quote DST4ME Quote  Post ReplyReply bullet Posted: 17 Aug 2008 at 1:09am
you can install and run Hijackthis and post your logs here and I can have a look or you can check your processes one by one by going here.

or you can have spysweeper scan your pc for free





Nvidia Drivers----AMD Drivers
Back to Top
TomD View Drop Down
Groupie
Groupie

Email address used to purchase matched with forums account email.

Joined: 22 Jun 2008
Online Status: Offline
Posts: 289 		  Quote TomD Quote  Post ReplyReply bullet Posted: 17 Aug 2008 at 1:59am
www.exe is a bad thing. To fix it look at the directions here:
 
 
I usually just type the process name in google and usually the first item or two explains it. But the suggestions above are much better.
Back to Top
Seelig View Drop Down
Newbie
Newbie

Email address used to purchase matched with forums account email.

Joined: 12 Jul 2008
Online Status: Offline
Posts: 28 		  Quote Seelig Quote  Post ReplyReply bullet Posted: 17 Aug 2008 at 3:31am
If you have any questions about processes, you can always google them to find out if they are legit or malware.
Core 2 Quad QX6850
nForce 780i
4 GB DDR2 Corsair 1066 Dominator
150GB Raptor + 2x WD 750GB
GTX 260
AC3 Cooling
Back to Top
VIDAR View Drop Down
Groupie
Groupie

Email address used to purchase matched with forums account email.

Joined: 07 Jan 2008
Online Status: Offline
Posts: 52 		  Quote VIDAR Quote  Post ReplyReply bullet Posted: 17 Aug 2008 at 4:03am
Im a tard the process is mmm.exe   so i searched my computer for anything with mmm.exe in it and I found a application that has "power tweaks" and making bootable iso stuff, unlocker or somthin like that its in c:\windows\system32.   Has anyone heard of that stuff?
Back to Top
TomD View Drop Down
Groupie
Groupie

Email address used to purchase matched with forums account email.

Joined: 22 Jun 2008
Online Status: Offline
Posts: 289 		  Quote TomD Quote  Post ReplyReply bullet Posted: 17 Aug 2008 at 10:44am
mmm.exe is another bad thing:
 

AUTOMATED MALWARE PROFILE, ANALYSIS, REMOVAL AND SIGNATURE INFORMATION:

DEFINITION OF: MMM.EXE

  • Safety Rating: Known Malware, do not run
  • Malware Family: Part of Malware group - LSASS Exploit Child
  • Determination: Automatically determined using Prevx centralized heuristics
  • Malware Form: EXPLOIT
Back to Top
DST4ME View Drop Down
DS ELITE
DS ELITE

Email address used to purchase matched with forums account email.

Joined: 14 Apr 2008
Online Status: Offline
Posts: 36758 		  Quote DST4ME Quote  Post ReplyReply bullet Posted: 17 Aug 2008 at 5:08pm
MMM.EXE can belong to Hace Mmm, do you have hace or anything like that installed?

if not you got infected.

Nvidia Drivers----AMD Drivers
Back to Top
VIDAR View Drop Down
Groupie
Groupie

Email address used to purchase matched with forums account email.

Joined: 07 Jan 2008
Online Status: Offline
Posts: 52 		  Quote VIDAR Quote  Post ReplyReply bullet Posted: 18 Aug 2008 at 10:54pm
Originally posted by DST4ME

MMM.EXE can belong to Hace Mmm, do you have hace or anything like that installed?

if not you got infected.


windows search finds it and i click on it and it says its Hace , but I now need to find out where hace is and uninstall it.   thanks for the help.  kapersky ad-aware and super anti spy cant locate nuthin .  Thanks for the confirmation of hace I can stop worry'n now. have you heard of K-Lite codec Pack? wats it for?
Back to Top
DST4ME View Drop Down
DS ELITE
DS ELITE

Email address used to purchase matched with forums account email.

Joined: 14 Apr 2008
Online Status: Offline
Posts: 36758 		  Quote DST4ME Quote  Post ReplyReply bullet Posted: 19 Aug 2008 at 4:24am
hace is used to configure something about context menu.

if you guys are that worried have him do a free scan with spysweeperif he has anything SS will find it.

Yes I use K-Lite codec Pack. Codec packs basically provide the files you need to view various media files on your PC. without them you would not be able to watch and listen to all media files.

Nvidia Drivers----AMD Drivers
Back to Top
VIDAR View Drop Down
Groupie
Groupie

Email address used to purchase matched with forums account email.

Joined: 07 Jan 2008
Online Status: Offline
Posts: 52 		  Quote VIDAR Quote  Post ReplyReply bullet Posted: 19 Aug 2008 at 2:50pm
I greatly appreciate everyones help and knowledge in helping me resolve this issue. I learned a bit with all of thisThumbs%20Up
Back to Top
DST4ME View Drop Down
DS ELITE
DS ELITE

Email address used to purchase matched with forums account email.

Joined: 14 Apr 2008
Online Status: Offline
Posts: 36758 		  Quote DST4ME Quote  Post ReplyReply bullet Posted: 22 Aug 2008 at 7:46pm
Good luck boss

Nvidia Drivers----AMD Drivers
Back to Top
VIDAR View Drop Down
Groupie
Groupie

Email address used to purchase matched with forums account email.

Joined: 07 Jan 2008
Online Status: Offline
Posts: 52 		  Quote VIDAR Quote  Post ReplyReply bullet Posted: 22 Aug 2008 at 8:04pm
Ya thks I found it  all programs/utillities.  There seems to be a number of functions in this comp Im not familiar with.  somthin called resource hacker and unlocker assistant and task switcherxp pro2.0 and xperos xpander.  Im used to xp not xp pro, maybe its part of it.
Back to Top
DST4ME View Drop Down
DS ELITE
DS ELITE

Email address used to purchase matched with forums account email.

Joined: 14 Apr 2008
Online Status: Offline
Posts: 36758 		  Quote DST4ME Quote  Post ReplyReply bullet Posted: 22 Aug 2008 at 8:47pm
resource hacker = is a tool you use to open an exe file and make modifications to it(basicaly hacking it). I have this app, pretty cool.

unlocker assistant is a part of unlocker, this is a great program that will delete all the stubborn files that are hard to delete. I have this app also its a great tool.

TaskSwitchXP is an advanced task management utility that picks up where the standard Windows Alt+Tab switcher leaves off. It provides the same functionality, and adds visual styles to the dialog and also enhances it by displaying thumbnail preview of the application that will be switched to. this app I don't use.


thats last one I have not idea what it is.

none of those apps are part of xp and are 3rd party software.

I would keep the first 2 and get rid of the second 2




Edited by DST4ME - 22 Aug 2008 at 8:50pm

Nvidia Drivers----AMD Drivers
Back to Top
Randy6500 View Drop Down
Newbie
Newbie

Email address used to purchase matched with forums account email.

Joined: 01 Oct 2008
Online Status: Offline
Posts: 9 		  Quote Randy6500 Quote  Post ReplyReply bullet Posted: 02 Oct 2008 at 1:41pm
http://www.answersthatwork.com/ has a nifty program that you can run (use the free trial).  It'll list the most common tasks that should be running and will flag most of the known bad ones.  Very useful utility.
Back to Top
DST4ME View Drop Down
DS ELITE
DS ELITE

Email address used to purchase matched with forums account email.

Joined: 14 Apr 2008
Online Status: Offline
Posts: 36758 		  Quote DST4ME Quote  Post ReplyReply bullet Posted: 02 Oct 2008 at 3:32pm
that apps is not known Randy, becarfull when it comes to security and free apps

Nvidia Drivers----AMD Drivers
Back to Top
 Post Reply Post Reply

Forum Jump Forum Permissions View Drop Down



This page was generated in 0.0546875 seconds.