1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

[Does anyone know what "foycglm.exe" is?]

Discussion in 'Windows XP' started by agraves, 2008/12/04.

  1. 2008/12/04
    agraves

    agraves Inactive Thread Starter

    Joined:
    2008/12/04
    Messages:
    18
    Likes Received:
    0
    I have an execute file on my computer and can't find any information on it anywhere. I have tried all the virus databases, Microsoft and Google. No results anywhere. Does anyone know what "foycglm.exe" is? It is listed as a service and is in my startup system folder.
     
  2. 2008/12/04
    TonyT

    TonyT SuperGeek Staff

    Joined:
    2002/01/18
    Messages:
    9,072
    Likes Received:
    400
    Delete the shortcut AND the executable.
    Then go to the Removing Spyware forum, read the basics posts at the top, and post questions there.
     

  3. to hide this advert.

  4. 2008/12/04
    agraves

    agraves Inactive Thread Starter

    Joined:
    2008/12/04
    Messages:
    18
    Likes Received:
    0
    I want to find out what the file relates to before I do anything with it. It isn't listed in connection with Trojans, Viruses or Worms on any of the Anti-virus websites. I don't think I have ever Googled a file name and had no results returned.
     
  5. 2008/12/04
    wildfire

    wildfire Getting Old

    Joined:
    2008/04/21
    Messages:
    4,649
    Likes Received:
    124
    Tony's advice is still good, many malware generate random filenames, but full logs would give the malware crew something to work with, I'm sure they'll either clean your system or let you know what the suspect file is for.
     
  6. 2008/12/04
    agraves

    agraves Inactive Thread Starter

    Joined:
    2008/12/04
    Messages:
    18
    Likes Received:
    0
    I discovered this file in the clean up phase after I ran Microsoft's Malicious Software removal tool and Malwarebystes' Anti-malware scanner/cleaner. Took off a ton of bad stuff. The system scans clean with both of these now. Would they have not recognized this file if it were associated with malware?
     
  7. 2008/12/04
    wildfire

    wildfire Getting Old

    Joined:
    2008/04/21
    Messages:
    4,649
    Likes Received:
    124
    Sounds good (I think):rolleyes:


    I can't say, perhaps if you posted in the malware and virus removal :rolleyes: forum you'd get answers from better qualified people.
     
  8. 2008/12/04
    agraves

    agraves Inactive Thread Starter

    Joined:
    2008/12/04
    Messages:
    18
    Likes Received:
    0
    hmmmm
     
  9. 2008/12/04
    wildfire

    wildfire Getting Old

    Joined:
    2008/04/21
    Messages:
    4,649
    Likes Received:
    124
    agraves,

    From my previous post...

    Random filenames could well be a reason for no hits on a filename. Full logs as advised by Tony in the correct forum will assist in either confirming it's ok, malicious or unknown.

    I won't bother responding any more to this thread but do hope you take the advice offered.
     
  10. 2008/12/04
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    Arie,
    #9
  11. 2008/12/04
    agraves

    agraves Inactive Thread Starter

    Joined:
    2008/12/04
    Messages:
    18
    Likes Received:
    0
    You mean people like they have at Grisoft and Symantec and Microsoft? Cause I spent several days there posting and logging and things like that. They seem to think my system is clean, they just never heard of "foycglm.exe" and its .dll and .fp files. Come on guys, yes it is plugged in, yes the monitor is on, yes the numlock key is off. I tried all the easy stuff. I know how to deal with this file I just thought maybe someone would know what it goes to.
     
  12. 2008/12/04
    Admin.

    Admin. Administrator Administrator Staff

    Joined:
    2001/12/30
    Messages:
    6,687
    Likes Received:
    107
    If you follow my advise above you have the best chance to get an answer.
     
  13. 2008/12/05
    Steve R Jones

    Steve R Jones SuperGeek Staff

    Joined:
    2001/12/30
    Messages:
    12,315
    Likes Received:
    252
    Agrave - read this one more time-> many malware generate random filenames

    When translated, the file could have been called agrave123.exe for example. No one in the World could tell you what the files does cause no in the world has ever heard of it/seen it or been infected by it;)
     
  14. 2008/12/05
    agraves

    agraves Inactive Thread Starter

    Joined:
    2008/12/04
    Messages:
    18
    Likes Received:
    0
    I have taken everyone's advice and am waiting for a response from the moderator on my post. Thanks everyone for your help and patience.
     
  15. 2008/12/13
    saturndude

    saturndude Inactive

    Joined:
    2007/12/03
    Messages:
    5
    Likes Received:
    0
    Would this help?

    I hope I am not overstepping my bounds, but here goes.....

    Have you ever received the message that Windows could not find required files or libraries? Have you ever wondered how Windows knows this? When you execute a file, say, turbotax.exe (I made that up), Windows looks inside file(s) you specify to see what .DLLs are needed (say, turbotax.dll). This information is kept in the file's "New Executable" header.

    Wikipedia suggests these "New Executable" headers are not really useful anymore, but YMMV. I have a program lying around somewhere that will look inside the file and list what .DLLs are needed for a given file. I think it was a module in one of the reputable anti-spyware programs. Anyway, similar utilities should be out there.

    If other .DLLs are mentioned, it is a Windows executable. Google the .DLLs mentioned (if it is not obvious, like turbotax.dll would be). If no .DLLs are mentioned (unlikely), you'll be no worse than you are at present (it could always be data like pop-up ads zipped up in some proprietary format or something). This procedure won't necessarily tell you what the file is, but it may help (by saying what .DLLs are needed).

    Also, does the date of the file correspond to when you were likely infected?
     
  16. 2008/12/13
    Rockster2U

    Rockster2U Geek Member

    Joined:
    2002/04/01
    Messages:
    3,181
    Likes Received:
    9
    saturndude,

    Welcome to the BBS. You're certainly not overstepping any bounds. The original poster appears to be kind of a hit & run type - was here for a couple of days and its doubtful we'll see him/her again anytime soon.

    The fact of the matter is, he/she has a badly infected machine with a lot of these types of files. He/she tried to patch it and ran an SP3 installation on top of it. I personally doubt that he/she spent much if any time at Grisoft, Symantec or Microsoft as professed because it sticks out like a sore thumb as TonyT and wildfire first acknowledged in a most polite manner.

    ;)
     
  17. 2008/12/15
    agraves

    agraves Inactive Thread Starter

    Joined:
    2008/12/04
    Messages:
    18
    Likes Received:
    0
    Thank you, yes this is very informative and helped. Evidently, the file is a trojan and was deeply embedded in my system. After numerous scans indicating I had cleaned the system, taking the advice of several knowledgeable individuals on which software to use, I connected the system to the internet and immediately it became clear what the file does. It downloads viruses and spyware and installs them to your system. The system was heavily infected before I could even pull the cable from my system to disconnect. So, it was back to square one. However it proved to be too much for my somewhat older system I am now getting the BSOD when I try to boot. Disk scans indicate I have errors on my hard drive and numerous bad sectors that can't be repaired.

    I have learned a lot from this experience. I want to thank all of the people that tried to help and to apologize for my initial resistance to what I was being told. I had been assured by "Professionals" on the tech support line that by running their software I had cleaned my system and it was completely protected from further attacks as long as I kept the definition file up to date. I have now learned not to be so naive and that just because you pay for something doesn't make it infallible. Also, not to take just one person's advice, but (as I found here) to look for a consensus of opinions before I take any action. Again my thanks and again I apologize if I sounded arrogant, or as my dad puts it, "Hard headed ".
     
  18. 2008/12/16
    Rockster2U

    Rockster2U Geek Member

    Joined:
    2002/04/01
    Messages:
    3,181
    Likes Received:
    9
    agraves,

    Your last post was very thoughtful and it explained a lot. One of the more talented members of this community once said, "we're not here to judge, we're here to help ". Your comments go a long way towards clearing the air and putting this problem back in its proper perspective.

    noahdfear, who picked up your thread in the Malware forum, is one of the most accomplished and capable "white hats" in the industry. Stick with his advice and follow his guidance - he can help you resolve this problem.

    ;)
     
  19. 2008/12/16
    agraves

    agraves Inactive Thread Starter

    Joined:
    2008/12/04
    Messages:
    18
    Likes Received:
    0
    Thank you to everyone.
     

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.