Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Task Manager And Processes


  • Please log in to reply
3 replies to this topic

#1 SknknZmbie

SknknZmbie

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:06:04 AM

Posted 23 September 2007 - 03:22 PM

I believe this is my first post on BleepingComputer.com and I hope I can get some help.

I'm running Windows XP and my question is...

How do I find out what the different processes are and is there anyway I can determine where they are coming from? I want to do this b/c I've got 60+ processes running and I'm not using any programs except internet explorer.

BC AdBot (Login to Remove)

 


m

#2 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,073 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:05:04 AM

Posted 23 September 2007 - 03:35 PM

The first place to start would be http://www.blackviper.com - that'll tell you the one's for Windows.

After that, it's a matter of using this link to look up what you find: http://www.bleepingcomputer.com/startups/ If it's not listed there, then try googling for it.

Edited by usasma, 23 September 2007 - 03:36 PM.

My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#3 hamluis

hamluis

    Moderator


  • Moderator
  • 54,839 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:04:04 AM

Posted 23 September 2007 - 04:19 PM

Additional potential help:

Startup Inspector for Windows - http://www.windowsstartup.com/

Task List Programs - AnswersThatWork's famous Database of Processes, Startups & Services - http://www.answersthatwork.com/Tasklist_pages/tasklist_n.htm

Windows Defender

http://www.microsoft.com/technet/sysintern...sutilities.mspx

Louis

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,582 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:05:04 AM

Posted 24 September 2007 - 09:19 AM

Anytime you come across a suspicious file search the name using Google, the links usasma provided, The File Database, File Research Center or the Process ID Database.

Determining whether a file is malware or a legitimate process sometimes depends on the location (path) it is running from. One of the ways that malware tries to hide is to give itself the same name as a critical system file. However, it then places itself in a different location on your computer. A file's properties may give a clue to identifying it. Right-click on the file, Properties and examine the General and Version tabs.

You can download and use Process Explorer or Glarysoft Process Manager to investigate all running processes and gather additional information to identify and resolve problems. These tools will show the process CPU usage, a description and its path location.

The Process Explorer window shows two panes by default: the upper pane is always a process list and the bottom either shows the list of DLLs loaded into the process selected in the upper pane, or the list of operating system resource handles (files, Registry keys, synchronization objects) the process has open. In the menu at the top select View > Lower Pane View to change between DLLs and Handles.

If you have XP Pro, you can use Tasklist to display a list of active processes.
Go to Start > Run and type: cmd
press Ok
At the command prompt type: tasklist /svc >c:\taskList.txt
press Enter

Go to Start > Run and type: C:\taskList.txt
press Ok to view the list of processes

The /SVC switch shows the list of active services in each process. For help and syntax information, type the following command, and then press ENTER:
tasklist /?
or see: Syntax options

You can also use the WMI command-line utility to view and list processes.
Go to Start > Run and type: cmd
press Ok
At the command prompt type: WMIC /OUTPUT:C:\ProcessList.txt PROCESS get Caption,Commandline,Processid
or: WMIC /OUTPUT:C:\ProcessList.txt path win32_process get Caption,Processid,Commandline
press Enter

Go to Start > Run and type: C:\ProcessList.txt
press Ok to view the details of all the processes.

If you come across a suspicious file which you cannot find any information, the file has a legitimate name but is not located where it is supposed to be, or you want a second opinion, submit it to jotti's virusscan or virustotal.com. In the "File to upload & scan" box, browse to the location of the suspicious file and submit (upload) it for scanning/analysis.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users