Member Avatar for IntegratedTweak

Hi Again!

I need a little bit of help with this DDS Log as i'm trying to pinpoint the exact problem with it. Also some people say that spoolsv.exe is a virus, trojan and worm. Is this correct or is it false acquisition?

I've attached a file so people can look at it.

DDS (Ver_09-12-01.01) - NTFS_AMD64
Internet Explorer: 9.11.9600.17126
Run by User at 20:55:53 on 2015-01-23
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3894.2734 [GMT -6:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\cscript.exe

Some things say "NetworkServiceNetworkRestricted" or "LocalServiceAndNoImpersonation" does this mean the internet is not connecting?
  • 3 Contributors
  • 5 Replies
  • 235 Views
  • 20 Hours Discussion Span
  • Latest Post Latest Post by IntegratedTweak

Recommended Answers

All 5 Replies

Member Avatar for nullptr

Some things say "NetworkServiceNetworkRestricted" or "LocalServiceAndNoImpersonation" does this mean the internet is not connecting?

No, they are basically just service categories, each instance of svchost.exe will be running 1 or more services. For example:

NetworkServiceNetworkRestricted
Commandline: C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
Services:
    PolicyAgent IPsec Policy Agent          C:\Windows\System32\ipsecsvc.dll


LocalServiceNoNetwork
Commandline: C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
Services:
    BFE         Base Filtering Engine       C:\Windows\system32\bfe.dll
    DPS         Diagnostic Policy Service   C:\Windows\system32\dps.dll
    MpsSvc      Windows Firewall            C:\Windows\system32\mpssvc.dll

spoolsv.exe is just the print spooler.

What problem does your computer have?
The DDS log shows nothing of concern.

Member Avatar for IntegratedTweak

It's not a problem with my PC it's from bleepingcomputer.com, because I'm in the Malware Study Hall and i'm about to start the next exercise.

Member Avatar for happygeek

In which case I'm thinking that the "provide evidence of having done some work yourself if posting questions from school or work assignments" rule applies here...

Member Avatar for nullptr

In that case, which program listed in the log is old and vulnerable to exploits?

Member Avatar for IntegratedTweak

I forgotten about that happygeek, so thanks for reminding me.

The actual log had no concerns you were right nullptr, but in the log I found what program that was outdated:

Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe

The new version is around 11 something, maybe a little higher up?

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.