redwolfe_98
join:2001-06-11
 ·RoadRunner Cable
| reply to richtig
Re: wssc.exe
richtig, it is possible that the files are invisible "UPX-packed" files..
you could run a scan with "trojanhunter" and see if it flags the files as being UPX-packed files, or you could install a program called "supercleaner" and add the files' names ie "wssc.exe" to the list of "junk" files to scan for, and then see if it flags the files..
i have found invisible upx-packed files on my computer before, flagged by trojanhunter, but i had to use "supercleaner" to remove the files..
here are the links for "trojanhunter" and "supercleaner", both of which have free trial periods..
»www.misec.net/trojanhunter/
»www.southbaypc.com/SuperCleaner/
you could also try running "dr.web's cureit" and see if it flags the files.. but, again, make sure that any files that are flagged actually are malware before you delete them..
»www.freedrweb.com/cureit/?lng=en |
|
richtig
Music Is Emotion
Premium
join:2003-02-19
Australia
clubs:
| Trojan Hunter found nothing.
I am running KIS 6.0 and it finds nothing.
Is there any reason to think that DrWeb will be any more useful?
The thing is that only Blink is purporting to find this offender. A registry search only finds Blink's firewall entries for these images.
If they are real, something is starting them up. ProcessExplorer only shows explorer.exe as the parent process.
If these processes are real, is there a way to find what is creating them?
For the moment, I simply have Blink denying them access.
--
We are the music makers,We are the dreamers of dreams.Arthur William Edgar O'Shaugnessy |
|
Rocky67
Pencil Neck Geek
Premium
join:2005-01-13
Orange, CA | Try checking your C:\WINDOWS\SYSTEM32 for wssc.exe and wsscserv.exe. They are associated with a trojan which PREVX claims to be able to remove.
--
"The Internet? Is that still around?" - Homer |
|
