What are these processes? cannot delete svchost.exe
- Status
walking-techie
Journeyman
hi all these are basic programs that are required by windows to run in everyday user manner
for more info on each
open google
type teh process name processname here.exe and u will get info and learn what each one of them does u can disable each as pe ur need but dodnt disable any without reading complete infor some applications mght not work properly
for more info on each
open google
type teh process name processname here.exe and u will get info and learn what each one of them does u can disable each as pe ur need but dodnt disable any without reading complete infor some applications mght not work properly
club_pranay
Nokia 7110 to iPhone 5
well, please check "drqjqk.exe" is it spelled correctly?
Source:.....*www.liutilities.com/products/wintaskspro/processlibrary/
----------------------------------------------------------------------------
Process File: alg or alg.exe
Process Name: Application Layer Gateway Service
Description:
alg.exe is a part of the Microsoft Windows operating system. It is a core process for Microsoft Windows Internet Connection sharing and Internet connection firewall. This program is important for the stable and secure running of your computer and should not be terminated
----------------------------------------------------------------------------
Process File: vsmon or vsmon.exe
Process Name: True Vector Internet Monitor
Description:
vsmon.exe is a processs associated with the ZoneAlarm personal firewall. It is used to monitor Internet traffic and generate alerts depending on the security rules configured by the user.
----------------------------------------------------------------------------
Process File: CCAP or CCAP.EXE
Process Name: Symantec AntiVirus
Description:
CCAP.EXE is a process belonging to the Symantec AntiVirus Internet Security suite, which is repsonsible for keeping your computer secure from Internet-bound threats. This program is important for the stable and secure running of your computer and should not be terminated.
----------------------------------------------------------------------------
Process File: ccevtmgr or ccevtmgr.exe
Process Name: Symantec Event Manager Service
Description:
ccevtmgr.exe is a part of the Norton Internet Security Suite. This process acts as a logger for the AntiVirus and firewall application installed. This program is important for the stable and secure running of your computer and should not be terminated.
----------------------------------------------------------------------------
Process File: spoolsv or spoolsv.exe
Process Name: Microsoft Printer Spooler Service
Description:
spoolsv.exe is a Microsoft Windows system executable which handles the printing process to your local printers. Note: spoolsv.exe is also a process which is registered as the Backdoor.Ciadoor.B Trojan. This Trojan allows attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately. Please see additional details regarding this process
----------------------------------------------------------------------------
Process File: ccapp or ccapp.exe
Process Name: Symantec Common Client CC App
Description:
ccapp.exe is a process belonging to Norton AntiVirus 2003. It is responsible for the auto-protect and email checking facilities, both of which will not function correctly if this service is stopped. This program is important for the stable and secure running of your computer and should not be terminated.
----------------------------------------------------------------------------
lsass - lsass.exe - Process Information
Process File: lsass or lsass.exe
Process Name: Local Security Authority Service
Description:
lsass.exe is a system process of the Microsoft Windows security mechanisms. It specifically deals with local security and login policies. Note: lsass.exe also relates to the Windang.worm, irc.ratsou.b, Webus.B, MyDoom.L, Randex.AR, Nimos.worm which spread via floppy disk drives, mass-mailing and peer-to-peer sharing. Please review file path for clarification of this
----------------------------------------------------------------------------
winlogon - winlogon.exe - Process Information
Process File: winlogon or winlogon.exe
Process Name: Microsoft Windows Logon Process
Description:
WinLogon.exe is the Windows NT login manager. It handles the login and logout procedures on your system. This process is an essential part of your OS and should be left alone. Note: winlogon.exe is a process which is registered as the W32.Netsky.D@mm worm. This virus is distributed via the Internet through e-mail and comes in the form of an e-mail message, in the hopes that you open it’s hostile attachment. The worm has it’s own SMTP engine which means it gathers E-mails from your local computer and re-distributes itself. In worst cases this worm can allow attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately. Please see additional details regarding this process
----------------------------------------------------------------------------
smss - smss.exe - Process Information
Process File: smss or smss.exe
Process Name: Session Manager Subsystem
Description:
smss.exe is a process which is a part of the Microsoft Windows Operating System. It is called the Session Manager SubSystem and is responsible for handling sessions on your system. This program is important for the stable and secure running of your computer and should not be terminated. Note: smss.exe is also a process which is registered as the Win32.Ladex.a Trojan. This Trojan allows attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately. Please see additional details regarding this process
----------------------------------------------------------------------------
svchosts - svchosts.exe - Process Information
Process File: svchosts or svchosts.exe
Process Name: Troj/Sdbot-N
Description:
svchosts.exe is a process which is registered as the Troj/Sdbot-N Trojan. This Trojan allows attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately. Please see additional details regarding this process
----------------------------------------------------------------------------
Process File: csrss or csrss.exe
Process Name: Microsoft Client/Server Runtime Server Subsystem
Description:
csrss.exe is the main executable for the Microsoft Client/Server Runtime Server Subsystem. This process manages most graphical commands in Windows. This program is important for the stable and secure running of your computer and should not be terminated.
----------------------------------------------------------------------------
Source:.....*www.liutilities.com/products/wintaskspro/processlibrary/
----------------------------------------------------------------------------
Process File: alg or alg.exe
Process Name: Application Layer Gateway Service
Description:
alg.exe is a part of the Microsoft Windows operating system. It is a core process for Microsoft Windows Internet Connection sharing and Internet connection firewall. This program is important for the stable and secure running of your computer and should not be terminated
----------------------------------------------------------------------------
Process File: vsmon or vsmon.exe
Process Name: True Vector Internet Monitor
Description:
vsmon.exe is a processs associated with the ZoneAlarm personal firewall. It is used to monitor Internet traffic and generate alerts depending on the security rules configured by the user.
----------------------------------------------------------------------------
Process File: CCAP or CCAP.EXE
Process Name: Symantec AntiVirus
Description:
CCAP.EXE is a process belonging to the Symantec AntiVirus Internet Security suite, which is repsonsible for keeping your computer secure from Internet-bound threats. This program is important for the stable and secure running of your computer and should not be terminated.
----------------------------------------------------------------------------
Process File: ccevtmgr or ccevtmgr.exe
Process Name: Symantec Event Manager Service
Description:
ccevtmgr.exe is a part of the Norton Internet Security Suite. This process acts as a logger for the AntiVirus and firewall application installed. This program is important for the stable and secure running of your computer and should not be terminated.
----------------------------------------------------------------------------
Process File: spoolsv or spoolsv.exe
Process Name: Microsoft Printer Spooler Service
Description:
spoolsv.exe is a Microsoft Windows system executable which handles the printing process to your local printers. Note: spoolsv.exe is also a process which is registered as the Backdoor.Ciadoor.B Trojan. This Trojan allows attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately. Please see additional details regarding this process
----------------------------------------------------------------------------
Process File: ccapp or ccapp.exe
Process Name: Symantec Common Client CC App
Description:
ccapp.exe is a process belonging to Norton AntiVirus 2003. It is responsible for the auto-protect and email checking facilities, both of which will not function correctly if this service is stopped. This program is important for the stable and secure running of your computer and should not be terminated.
----------------------------------------------------------------------------
lsass - lsass.exe - Process Information
Process File: lsass or lsass.exe
Process Name: Local Security Authority Service
Description:
lsass.exe is a system process of the Microsoft Windows security mechanisms. It specifically deals with local security and login policies. Note: lsass.exe also relates to the Windang.worm, irc.ratsou.b, Webus.B, MyDoom.L, Randex.AR, Nimos.worm which spread via floppy disk drives, mass-mailing and peer-to-peer sharing. Please review file path for clarification of this
----------------------------------------------------------------------------
winlogon - winlogon.exe - Process Information
Process File: winlogon or winlogon.exe
Process Name: Microsoft Windows Logon Process
Description:
WinLogon.exe is the Windows NT login manager. It handles the login and logout procedures on your system. This process is an essential part of your OS and should be left alone. Note: winlogon.exe is a process which is registered as the W32.Netsky.D@mm worm. This virus is distributed via the Internet through e-mail and comes in the form of an e-mail message, in the hopes that you open it’s hostile attachment. The worm has it’s own SMTP engine which means it gathers E-mails from your local computer and re-distributes itself. In worst cases this worm can allow attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately. Please see additional details regarding this process
----------------------------------------------------------------------------
smss - smss.exe - Process Information
Process File: smss or smss.exe
Process Name: Session Manager Subsystem
Description:
smss.exe is a process which is a part of the Microsoft Windows Operating System. It is called the Session Manager SubSystem and is responsible for handling sessions on your system. This program is important for the stable and secure running of your computer and should not be terminated. Note: smss.exe is also a process which is registered as the Win32.Ladex.a Trojan. This Trojan allows attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately. Please see additional details regarding this process
----------------------------------------------------------------------------
svchosts - svchosts.exe - Process Information
Process File: svchosts or svchosts.exe
Process Name: Troj/Sdbot-N
Description:
svchosts.exe is a process which is registered as the Troj/Sdbot-N Trojan. This Trojan allows attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately. Please see additional details regarding this process
----------------------------------------------------------------------------
Process File: csrss or csrss.exe
Process Name: Microsoft Client/Server Runtime Server Subsystem
Description:
csrss.exe is the main executable for the Microsoft Client/Server Runtime Server Subsystem. This process manages most graphical commands in Windows. This program is important for the stable and secure running of your computer and should not be terminated.
----------------------------------------------------------------------------
sreevirus
Certified Nutz
click on the respective links to find out more
vsmon.exe 1 2
alg.exe 1 2
ccApp.exe 1
CCEVTMGR.EXE 1 2
SPOOLSV.EXE 1 2
LSASS.EXE 1 2
WINLOGON.EXE 1 2
CSRSS.EXE 1 2
SMSS.EXE 1 2
all the above processes are usually normal system processes, but there are also worms/viruses/trojans with the same names. so take precaution. search ur pc for all the above processes and if any file with the name exists in a folder other than /windows/system32, then there is a chance that ur pc cud be affected by a malware.
SVHOST.EXE
this cud be a virus.
*securityresponse.symantec.com/avcenter/venc/data/backdoor.socksbot.html
normally, a process called svchost.exe runs in the background and it is a system process.
drqjqk.exe <-- i have never heard of this process nor did i find anything on google or any other search engine. run ur AV and also run an anti-spyware program to remove any threats.
also check out these links if u have doubts about any other processes
*www.liutilities.com/products/wintaskspro/processlibrary/system/
*www.liutilities.com/products/wintaskspro/processlibrary/application/
*www.liutilities.com/products/wintaskspro/processlibrary/security/
*www.neuber.com/taskmanager/process/index.html
also, if u have any other doubts as to ur system being infected, post ur hijackthis logfile here...the old big fat bat will solve ur problem.
vsmon.exe 1 2
alg.exe 1 2
ccApp.exe 1
CCEVTMGR.EXE 1 2
SPOOLSV.EXE 1 2
LSASS.EXE 1 2
WINLOGON.EXE 1 2
CSRSS.EXE 1 2
SMSS.EXE 1 2
all the above processes are usually normal system processes, but there are also worms/viruses/trojans with the same names. so take precaution. search ur pc for all the above processes and if any file with the name exists in a folder other than /windows/system32, then there is a chance that ur pc cud be affected by a malware.
SVHOST.EXE
this cud be a virus.
*securityresponse.symantec.com/avcenter/venc/data/backdoor.socksbot.html
normally, a process called svchost.exe runs in the background and it is a system process.
drqjqk.exe <-- i have never heard of this process nor did i find anything on google or any other search engine. run ur AV and also run an anti-spyware program to remove any threats.
also check out these links if u have doubts about any other processes
*www.liutilities.com/products/wintaskspro/processlibrary/system/
*www.liutilities.com/products/wintaskspro/processlibrary/application/
*www.liutilities.com/products/wintaskspro/processlibrary/security/
*www.neuber.com/taskmanager/process/index.html
also, if u have any other doubts as to ur system being infected, post ur hijackthis logfile here...the old big fat bat will solve ur problem.
it_waaznt_me
Coming back to life ..
Grrr... Who says I am fat 
??
??
H
h4ck3r
Guest
You can try this also..
If you think your sys is slow
goto run-->and type msconfig and remove them from startup.
If you think your sys is slow
goto run-->and type msconfig and remove them from startup.
grinning_devil
Cyborg Agent
sarincv said:
when u get the above screen nd the clock is ticking frm 59....58....
go to run nd type "shutdown -a"
ofcourse without quotes!
- Status