DPChallenge: A Digital Photography Contest You are not logged in. (log in or register
 

DPChallenge Forums >> Hardware and Software >> Hidden Processes
Pages:  
Showing posts 1 - 4 of 4, (reverse)
AuthorThread
 09/27/2007 02:29:11 PM · #1
My xp based computer was running slowly last night. I've done all the virus and spyware checks, but today I ran GMER and it shows four hidden processes. I can kill them, but they come back. And I really can't tell anything about them.

I haven't seen any other virus or spyware based symptoms. I used fsecure blacklight and it claims it doesn't see rootkits.

The only other suspicious activity was created by legit programs: I downloaded and installed the trial of Adobe CS3 yesterday. (And I already have CS on the computer, as well as lightroom and Acrobat 7). Adobe needs to clean up its act regarding clearly labeling its installed services as Adobe. It installs some pretty tenuous ones, which I had to investigate.

One other strange service found by Hijack this, but there's no file associated with it.

O23 - Service: Npfcia - NetGroup - Politecnico di Torino - (no file)

That one looks pretty suspicious, but it's not running as far as I can tell and there's no EXE.

So my question: Is it possible that there are LEGITIMATE processes that are "hidden"? Has anyone run GMER (or can they) and tell me if you have any?

Thanks!

09/27/2007 02:35:19 PM · #2
I use PrcView(//www.teamcti.com/pview/prcview.htm) to check the file locations of the processes running. Then you can very carefully use KillBox(//killbox.net)to get rid of those files on restart. Good luck!

edit: looks like GMER already points you to the process location, hope KillBox does the job for you. Neil , can you share the name of the process you're trying to get rid of, and it's file location? tnx

Message edited by author 2007-09-27 14:43:55.
 09/27/2007 03:57:18 PM · #3
There were 10 hidden processes at the point I rebooted again. A lot of them are unidentified in GMER, they say hidden processes. But some of them were hpbpro.exe. There were multiple instances of that. And I am not on an HP, though I do have a HP laser which is currently being shared on my local net.

I installed ZoneAlarm Pro so I could perhaps see if those processes were trying to access the internet. And I'm now also running a scan with A-Squared Free (though it hasn't found anything other than VNC, which I installed a few weeks ago on this machine in order to do remote diagnostics on another machine.) ZoneAlarm also wasn't happy about finding VNC.

Right now, though, I'm running GMER to watch for the processes, and so far, they haven't reappeared. Weird, since I didn't do anything that would "cure" them. I think it's just a matter of time before they do. Unless they are afraid of ZoneAlarm.

On my system, I have AVG Free, AVG Spyware being run regularly. I also periodically run spywareBlaster and SpyBotSD and AsquaredFree. I don't normally run ZoneAlarm, but I just might start.
09/27/2007 04:43:26 PM · #4
Originally posted by nshapiro:
There were 10 hidden processes at the point I rebooted again. A lot of them are unidentified in GMER, they say hidden processes. But some of them were hpbpro.exe. There were multiple instances of that. And I am not on an HP, though I do have a HP laser which is currently being shared on my local net.

Hpbpro.exe looks fine. See the user comments here:

//www.file.net/process/hpbpro.exe.html
Pages:  
Current Server Time: 12/30/2025 06:54:29 AM

Please log in or register to post to the forums.


Home - Challenges - Community - League - Photos - Cameras - Lenses - Learn - Help - Terms of Use - Privacy - Top ^
DPChallenge, and website content and design, Copyright © 2001-2025 Challenging Technologies, LLC.
All digital photo copyrights belong to the photographers and may not be used without permission.
Current Server Time: 12/30/2025 06:54:29 AM EST.