Materene Posted November 26, 2013 ID:758206 Share Posted November 26, 2013 Hi, I was running my rootkit tool and for some reason some old dos files for old games flagged as having a few sound file ext mismatches, at the same time the normal install of Malwarebytes Pro does not see this folder as having any issues. I left these files alone not wanting to disable anything in them for they are getting very hard to find now. Not related I was running my rootkit tool specifically to see if there might be an issue with smss.exe since I don't recall seeing this file on my services running in task manager, there again it came up clean, at least the one in the win system32 folder where is should be, also any attempt to disable it in task manager says it is a system file and cannot be turned off, question is I cannot remember if this file runs all the time, I don't recall seeing it and I check my running list every startup after Microsoft screwed up windows XP so bad with updates and we users had that runaway memory leak with their srvhost exe, personally I think this was done purposely by microsoft to force users to quit using XP. What this has done is to damage the security center to where I constantly get the PUM warnings because it is me turning off the notifications simply because they broke it. It's a real mess and was sad to think they would do this on purpose, but they did! Finally this smss.exe is showing up in a search showing about 6 text files and also in the microsoft update folder, so I don't think it is malicious. Is there any way to know for sure thanks Link to post Share on other sites More sharing options...
Staff shadowwar Posted November 26, 2013 Staff ID:758236 Share Posted November 26, 2013 Smss.exe is a valid windows system file and is started by the kernal. It doesnt have a run point that you would see in msconfig. Extension mismatch is a file that should be an executable but with non executable suffix. Its a hueristic and if you are sure the file is supposed to be that way it can be added to the ignore list. You can also add the pum detections to the ignore list being it is something you set. As far as svchost memory leak issues. More often then not this is some third party program causing this and not microsoft. Security center can probably be fixed though and i would recommend visiting our computer help forums. Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now