|
|||||||
 |
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
08-26-2004, 02:40 PM
|
#1 |
|
Member (10 bit)
Join Date: Dec 2002
Location: Ireland
Posts: 739
|
What is gzikok?
I'm just wondering whether this was some kind of spyware or something as I found it running when I selected Ctrl + Alt + Del on Windows ME system. I ran a search and found it in Windows/System, an application with a creation date just a few days ago. Then my firewall (Zone Alarm) reported that it wanted internet access! Suspicious, I googled it but didn't get a single result! Can anyone help?
Thanks in advance! |
|
|
|
08-26-2004, 02:42 PM
|
#2 |
|
PCMech: Saving Lives
Join Date: Apr 2004
Location: England, the United Kingdom
Posts: 1,839
|
Have you ran spyware scans and an online antivirus scan, such as Housecall: http://housecall.trendmicro.com
__________________
 |
|
|
|
|
08-27-2004, 02:06 AM
|
#3 |
|
Member (12 bit)
Join Date: Nov 2001
Location: Woodland Hills, CA (suburb of Los Angeles)
Posts: 4,014
|
I second ThisBox's suggestion for lots of scanning! And by golly have Zone Alarm disallow that process any access till you're sure it's not spyware. Sure sounds like a randomly generated process name that the nastier spyware use when trying to "stealth" their operations.
In addition to HouseCall (which is a wonderful scanner), you might want to be extra thorough, following up with Panda's Active Scan [ http://www.pandasoftware.com/home/default.asp ]. And if you don't already run AdAware, it's at http://www.lavasoft.de -- and also highly recommended is SpyBot Search&Destroy, at http://www.safer-networking.org |
|
|
|
|
08-30-2004, 06:41 AM
|
#4 |
|
Member (10 bit)
Join Date: Dec 2002
Location: Ireland
Posts: 739
|
I ran scans with AGV, Housecall, Spybot and Adaware and none of them picked up this. So I tried to delete the file itself from Windows/System but the file was in use. In Ctrl + Alt + Delete the program was listed but wouldn't close.
So I booted in safe mode and was able to delete the file. Seems to have solved the problem. Just worrying that it could exist without any of the four above programs picking it up. P.S. 500th Post!! Yay, here's to many more! 
|
|
|
|
|
09-01-2004, 08:55 AM
|
#5 |
|
Member (8 bit)
Join Date: May 2001
Location: Hamilton, ontario
Posts: 147
 |
A really great site for checking out all those processes and apps in your task manager can be found here:
http://www.liutilities.com/products/...library/system Its helped me out alot in the past!! |
|
|
|
|
09-02-2004, 03:45 AM
|
#6 |
|
Member (12 bit)
Join Date: Nov 2001
Location: Woodland Hills, CA (suburb of Los Angeles)
Posts: 4,014
|
JTH - try deleting the file from Safe Mode (or renaming it, copying it to a floppy in case it turns out to be legit, and then deleting the original). If it won't delete from Safe Mode, make sure that your Windows Explorer view is set to "show all files", or you might have to boot to DOS and change the files attributes to delete it.
. . . Gary |
|
|
|
|
09-02-2004, 07:09 AM
|
#7 |
|
Member (10 bit)
Join Date: Dec 2002
Location: Ireland
Posts: 739
|
Gary, take a look at my post #4. I did exactly that and the problem is solved
|
|
|
|
|
09-02-2004, 11:26 PM
|
#8 |
|
Member (12 bit)
Join Date: Nov 2001
Location: Woodland Hills, CA (suburb of Los Angeles)
Posts: 4,014
|
How funny = how did I miss that? (I wonder if I was half-asleep, and only read the first paragraph!)... [at least I gave the right advice
]. . . feeling a little more awake now (just having my after-dinner cup of coffee) . . . Gary [P.S. ...nice to see the 500 posts] Last edited by GaryRouth; 09-02-2004 at 11:40 PM. |
|
|
|
|
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Linear Mode
