Sunday, December 9, 2012

WinXP Processes

Safe Processes (in general, more than one means it's a virus)


alg                Core Windows (internet connection)
ati2evxx (system)  Asus Video Hotkeys
ati2evxx (user)    Asus Video Hotkeys
atiptaxx           Graphic Card Driver/Control
ATKOSD             Asus Volume Control Hotkeys
BatteryLife        Asus Battery
csrss              Core Windows (usermode portion of the win32 subsystem)
ctfmon             Microsoft Language Bar
cvpnd              Entrust (cisco vpn)
eecwatch           Entrust (esp)
eelssrv (system)   Entrust (esp)
eelssrv (user)     Entrust (esp)
eesystray          Entrust (esp)
EvtEng             Related to the Wireless Card Systray Widget
Hcontrol           Asus Keyboard Extended Keys (numpad, numlock, scrlock)
iFrmewrk           Related to the Wireless Card Systray Widget
jqs                Improves the startup time of Java Apps
lsass              Core Windows (local security authentication server)
RegSrvc.exe        Related to the Wireless Card Systray Widget
S24EvMon.exe       Related to Wireless (helps when you are on ethernet and also go wireless at the same time)
services           Core Windows (services control manager)
smss               Core Windows (session manager subsystem)
SOUNDMAN           Audio Driver/Control
spoolsv.exe        For Printing
svchost(x8)        - don't know -
SynTPEnh           Touchpad (enhanced)
SynTPLpr           Touchpad (basic)
System             Seems reasonable enough
SystemIdleProcess  Obvious
taskmgr            This is what is showing you the list of processes
unsecapp           Core Windows (related to the wmi service, lets remote programs query system, updates, etc)
WDDMService        External Drive
WDSmartWare...     External Drive
winlogon           Core Windows (windows login subsystem)
wmiprvse (system)  Core Windows (related to the wmi service, lets remote programs query system, updates, etc)
wmiprvse (network) Core Windows (related to the wmi service, lets remote programs query system, updates, etc)
ZCfgSvc            Related to the Wireless Card Systray Widget

Hot To Disable

ghacks.net - ipodserviceexe
howtogeek.com - bonjour

{ "loggedin": false, "owner": false, "avatar": "", "render": "nothing", "trackingID": "UA-36983794-1", "description": "", "page": { "blogIds": [ 373 ] }, "domain": "holtstrom.com", "base": "\/michael", "url": "https:\/\/holtstrom.com\/michael\/", "frameworkFiles": "https:\/\/holtstrom.com\/michael\/_framework\/_files.4\/", "commonFiles": "https:\/\/holtstrom.com\/michael\/_common\/_files.3\/", "mediaFiles": "https:\/\/holtstrom.com\/michael\/media\/_files.3\/", "tmdbUrl": "http:\/\/www.themoviedb.org\/", "tmdbPoster": "http:\/\/image.tmdb.org\/t\/p\/w342" }