Welcome to WebmasterWorld Guest from 54.146.201.80

Forum Moderators: bill

Message Too Old, No Replies

What is the process fylj.exe in Win Task Manager?

     
9:35 pm on Jun 20, 2007 (gmt 0)

Full Member

10+ Year Member

joined:Dec 7, 2000
posts:267
votes: 0


In my Windows Task Manager I am seeing fylj.exe , however am unable to figure it out what it does.

Also, when I check msconfig options, I see that it is set to start at startup and when I disable it, it enable itself again during the next restart. In addition, even under msconfig or regedit it does not show the path for it or what it is suppose to do. Now to make thing worse, when I do search for fylj.exe on google, yahoo, msn, .. etc I don't find any results. Does anyone have any idea what is going on?

Thanks for the help.

10:12 pm on June 20, 2007 (gmt 0)

Senior Member

WebmasterWorld Senior Member jdmorgan is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Mar 31, 2002
posts:25430
votes: 0


Well, it could be anything, but it doen't sound good. The fact that it restarts itself when you end it is an indication that it's probably not "friendly."

Try this search [google.com] for some background info.

I'd recommend running Ad-Aware, Spybot Search & Destroy, Ewido Anti-Spyware (now owned by AVG), Microsoft Anti-Spyware, and any other *reputable* freeware programs you can find to see if they can identify it by signature. If none of these turn up anything, then the next step is to run Hijack This! and post the results for analysis on one of the Hijack This! help forums.

Jim

10:24 pm on June 20, 2007 (gmt 0)

Senior Member

WebmasterWorld Senior Member kaled is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Mar 2, 2003
posts:3710
votes: 0


Locate the file (right-clickŠsearch) and then open its property sheet (right-clickŠproperties).

If it's being reenabled, there must be something else wrong too.

Send the file to your antivirus company. I've only ever done that once (an attachment that didn't trigger an alarm) and received a reply a couple of hours later confirming it was a virus (I wasn't the first to send them a copy) and it was added on the next update.

Kaled.

2:41 am on June 21, 2007 (gmt 0)

Administrator from JP 

WebmasterWorld Administrator bill is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Oct 12, 2000
posts:14487
votes: 49


Good advice here already.

Grab a copy of StartupMonitor [mlin.net] to prevent programs from registering to run at your system start-up without your knowledge.

After your spyware scans and virus checks get yourself a good registry monitor. The free RegistryProt is a good place to start.

4:28 am on June 22, 2007 (gmt 0)

Full Member

10+ Year Member

joined:Dec 7, 2000
posts:267
votes: 0


After doing a scan I discovered following information about it, does it make sense to anyone?

File Name ...................... Path
FYLJ.EXE-121FE169.PF ...................... C:\WINDOWS\Prefetch\
fylj.exe ...................... C:\WINDOWS\system32\

Norton don't seem to be scanning it as anything wrong, however I still plan to shut it down from starting automatically.

3:54 pm on June 22, 2007 (gmt 0)

Senior Member

WebmasterWorld Senior Member kaled is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Mar 2, 2003
posts:3710
votes: 0


You should at least try to discover what it is first - otherwise you might make your system unstable (or even unbootable).

Right-clickŠProperties

Kaled.

6:49 pm on June 22, 2007 (gmt 0)

Full Member

10+ Year Member

joined:Dec 7, 2000
posts: 267
votes: 0


That is the sad thing, as it does not give any other information about it. Just the usual, location, size, ..... created, modified and accessed (all todays date) & all blank for Summary.

Normally before I delete any doubtful file, I prefer to copy the file and place it under other folder after zipping it with different name & see if how system works after restart. In addition, I also write notes about the process, just in case if I encounter any error because of this deletion.