Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

CF detecting AV programs that are not running


  • This topic is locked This topic is locked
1 reply to this topic

#1 Phredrick

Phredrick

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:40 AM

Posted 05 November 2009 - 02:38 PM

I am attempting to run combofix on a 32 bit Vista installation and it is encountering two "real time" AV/AM progs. Super antispyware is installed but not running and CF detects it upon initialization. It also detects Trend Micro AV which is not installed. I have looked through the running processes and couldn't find either and even rebooted after disabling all startup programs and the problem persists. It is a Compaq Presario C571NR with a whole bunch of HP bundled software so I'm assuming that Trend Micro is hidden in the recesses of an hp*.exe process but after disabling everything it still comes up when I run CF. Thanks.

BC AdBot (Login to Remove)

 


#2 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:40 AM

Posted 05 November 2009 - 04:05 PM

Hello.

First, you shouldn't be running Combofix anyways unless instructed by a trained staff member authorized to diagnose and read the logs. ComboFix is an extremely powerful tool and you should not be using Combofix unless instructed to do so by a Malware Removal Expert. It is a powerful tool intended by its creator to be "used under the guidance and supervision of an expert", NOT for private use. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again. Please read Combofix's Disclaimer. Furthermore, ComboFix logs are not permitted outside the HijackThis forums and then only when requested by a HJT Team member.

Regarding the problem you have is something how Combofix works. In short basically, those two programs are probably uninstalled but they were not registered from the Windows Management Instrumental which most AVs register itself to and so Combofix detects it as "running". I wouldn't worry about it so much but I don't recommend you run Combofix.

With Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users