Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


What Is Dr. Watson And Is It Possible That It Could Be Infected Or An Infection?

  • Please log in to reply
2 replies to this topic

#1 CHAD71


  • Members
  • 2 posts
  • Local time:10:23 AM

Posted 23 November 2007 - 09:14 PM

I have done some research and it is my understanding that Dr. Watson is a part of windows xp. With all of the things that you find when you research something
it is hard to tell what is right and what is wrong. I think that my problem exists in that particular component. I guess I will just copy my list from task manager and see if anyone can lead me in the right direction. I have a problem with my cpu at start up mostly. My virus protection is turned off even though I did not turn it off. I have to manually start it. My anti spy protection comes on without a problem. I have seen Dr. Watson pop up and I have been told on repeated occasions that there is a problem with Defender Pro and the application needs to be re-installed. Can you help? How do I copy a list of my processes so that I can paste them to this message?


BC AdBot (Login to Remove)


#2 buddy215


  • Moderator
  • 13,397 posts
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:23 AM

Posted 23 November 2007 - 10:03 PM

My best advice to you is to uninstall Defender Pro. If you can. Exit all elements of the program or run the uninstaller while in safe mode.
“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 quietman7


    Bleepin' Janitor

  • Global Moderator
  • 51,907 posts
  • Gender:Male
  • Location:Virginia, USA
  • Local time:10:23 AM

Posted 23 November 2007 - 10:05 PM

Dr. Watson for Windows is a program error debugger that gathers information about your computer when an error (or user-mode fault) occurs with a program. Technical support groups can use the information that Dr. Watson obtains and logs to diagnose a program error. When an error is detected, Dr. Watson creates a text file (Drwtsn32.log) that can be delivered to support personnel by the method they prefer. You also have the option of creating a crash dump file, which is a binary file that a programmer can load into a debugger...

Description of the Dr. Watson for Windows

If you don't know what a process is or you come across a suspicious file, search the name using Google, BC's File Database, File Research Center or the Process ID Database. Also see How to determine what services are running under a SVCHOST.EXE process.

Determining whether a file is malware or a legitimate process sometimes depends on the location (path) it is running from. One of the ways that malware tries to hide is to give itself the same name as a critical system file. However, it then places itself in a different location on your computer. A file's properties may give a clue to identifying it. Right-click on the file, Properties and examine the General and Version tabs.

You can download and use Process Explorer or Glarysoft Process Manager to investigate all running processes and gather additional information to identify and resolve problems. These tools will show the process CPU usage, a description and its path location. If you right-click on the file in question and select properties, you will see more details about the file.

The Process Explorer window shows two panes by default: the upper pane is always a process list and the bottom pane either shows the list of DLLs loaded into the process selected in the upper pane, or the list of operating system resource handles (files, Registry keys, synchronization objects) the process has open. In the menu at the top select View > Lower Pane View to change between DLLs and Handles.

If you have XP Pro, you can use Tasklist to display a list of active processes.
Go to Start > Run and type: cmd
press Ok
At the command prompt type: tasklist /svc >c:\taskList.txt
press Enter

Go to Start > Run and type: C:\taskList.txt
press Ok to view the list of processes

The /SVC switch shows the list of active services in each process. For help and syntax information, type the following command, and then press ENTER:
tasklist /?
or see: Syntax options

You can also use the WMI command-line utility to view and list processes.
Go to Start > Run and type: cmd
press Ok
At the command prompt type:
WMIC /OUTPUT:C:\ProcessList.txt PROCESS get Caption,Commandline,Processid
press Enter.

You can also use (type):
WMIC /OUTPUT:C:\ProcessList.txt path win32_process get Caption,Processid,Commandline
press Enter.

Go to Start > Run and type: C:\ProcessList.txt
press Ok to view the details of all the processes.

Anytime you come across a suspicious file which you cannot find any information, the file has a legitimate name but is not located where it is supposed to be, or you want a second opinion, submit it to jotti's virusscan or virustotal.com. In the "File to upload & scan" box, browse to the location of the suspicious file and submit (upload) it for scanning/analysis.
Post back with the results of the file analysis.

Have your tried running your scans in "Safe Mode"? If not, do so. Then perform any Online Virus Scans.

However, the easier thing to try first is to use System Restore or System Restore from a command prompt in "Safe Mode" to return to a previous state before your problems began?
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users