<quote who="Jim McBurnett">
> Ok, I have a machine that has this program running under any user that
> logs into the machine.
> This process spawns anywhere from 1- 10 times, and uses up to 60% of the
> Processor...
> Antivirus found nothing(on the machine and from a web version), Spybot
> found nothing,
> And all web searches prove useless.
>
> I cannot terminate it as it spawns and vanishes constantly changing the
> process ID..
> It is listed in the registry as Microsoft Update machine.
> BUT there is nothing on the Microsoft website about it.
>
> And is is located in the windows\system32 folder as an EXE file and a
> folder called c:\windows\prefetch as a .pf file.
>
>
> It sounds like it may be a Microsoft component, but I just do not know..
> It is not on 3 other Windows XP machines in the office..
> The system is running SP1
>
>
> IDEAS?
The filename might be random. I may be a variation of what's described
over @ http://forums.majorgeeks.com/showthread.php?t=38772
--
Regards
KC Ferguson CIO/CTO
@RescuNET.com
eXtreme Response Mobile HotSpot
-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
<quote who="Jim McBurnett">
> Ok, I have a machine that has this program running under any user that
> logs into the machine.
> This process spawns anywhere from 1- 10 times, and uses up to 60% of the
> Processor...
> Antivirus found nothing(on the machine and from a web version), Spybot
> found nothing,
> And all web searches prove useless.
>
> I cannot terminate it as it spawns and vanishes constantly changing the
> process ID..
> It is listed in the registry as Microsoft Update machine.
> BUT there is nothing on the Microsoft website about it.
>
> And is is located in the windows\system32 folder as an EXE file and a
> folder called c:\windows\prefetch as a .pf file.
>
>
> It sounds like it may be a Microsoft component, but I just do not know..
> It is not on 3 other Windows XP machines in the office..
> The system is running SP1
>
>
> IDEAS?
The filename might be random. I may be a variation of what's described
over @ http://forums.majorgeeks.com/showthread.php?t=38772
--
Regards
KC Ferguson CIO/CTO
@RescuNET.com
eXtreme Response Mobile HotSpot
-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
[ reply ]