G
Guest
Hi all,
I have a home network, and one friend uses her notebook up in her room. I
have removed tons of spyware/malware etc off her notebook
(I put her outside my network with a different the router)
Since then(her pc cleanup)
I noticed unusually high packet sending & receiving.(I have XP pro SP2 on 3
PC's) I checked, and found the NTOSKNL.EXE process sending & receiving large
amounts of data through my firewall...I have blocked this until I find out
what is going on.
I thought this was the boot kernel, and didn't need to have other use.
Does this mean my OS's are infected?(It shows in sygate firewall on all 3
pc's)
Why would it not show in a SFC /scannow or
an Anti Virus scan in safe-mode?
do I need to re-install XP fresh on the OS's that are doing this?
or can I extract the NTOSKNL.EXE file from the XP CD?
tia,
Jay
I have a home network, and one friend uses her notebook up in her room. I
have removed tons of spyware/malware etc off her notebook
(I put her outside my network with a different the router)
Since then(her pc cleanup)
I noticed unusually high packet sending & receiving.(I have XP pro SP2 on 3
PC's) I checked, and found the NTOSKNL.EXE process sending & receiving large
amounts of data through my firewall...I have blocked this until I find out
what is going on.
I thought this was the boot kernel, and didn't need to have other use.
Does this mean my OS's are infected?(It shows in sygate firewall on all 3
pc's)
Why would it not show in a SFC /scannow or
an Anti Virus scan in safe-mode?
do I need to re-install XP fresh on the OS's that are doing this?
or can I extract the NTOSKNL.EXE file from the XP CD?
tia,
Jay