how can i determine if ctfmon.exe is running as a trojan or a legitimate Windows process??
Posted on 2006-06-12
i've noticed in one of our servers that ctfmon.exe is running, and i've read that it can be -beside being a legitimate Windows process - also a trojan that allows attackers to access your computer from remote locations, stealing passwords, Internet banking and personal data. but we can Determine whether this process is a virus or a legitimate Windows process depends on the directory location it executes or runs from in WinTasks.
can anyone help me in this so i can find out if it is a trojan or not?