Ever heard of the Diag69xp service??

[Flapjack]

I just noticed this in my Event Viewer the last few days. It's informational, so maybe that's why I didn't notice it before.

The Diag69xp service was successfully sent a start control.
​

I did a search for "diag69xp" on every major search engine and got no results. Any idea what it might be??

 

[drizzt81]

I just noticed this in my Event Viewer the last few days. It's informational, so maybe that's why I didn't notice it before.

The Diag69xp service was successfully sent a start control.
​

I did a search for "diag69xp" on every major search engine and got no results. Any idea what it might be??

Trojan? Spyware?

look in the registry to see what it runs:

HKEY_LOCAL_MACHINE....Current control set ... services

 

[versello]

diagnostics for butt-fscking XP?

 

[Phoenix86]

Hint, if it's not on google, it probably shouldn't be on your PC.

 

[Steel Chicken]

diagnostics for butt-fscking XP?

what are you a virgin? 69 <> butt-fsck

 

[Flapjack]

I did a search in the registry, and this is what I found:


[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_DIAG69XP]
"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_DIAG69XP\0000]
"Service"="Diag69xp"
"Legacy"=dword:00000001
"ConfigFlags"=dword:00000000
"Class"="LegacyDriver"
"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"
"DeviceDesc"="Diag69xp"
"Capabilities"=dword:00000000
"Driver"="{8ECC055D-047F-11D1-A537-0000F8753ED1}\\0017"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_DIAG69XP\0000\LogConf]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_DIAG69XP\0000\Control]
"ActiveService"="Diag69xp"

 

[feigned]

Sorry for being so succint...

http://www.techimo.com/forum/t137826.html

That's not a valid service, no way no how.

 

[Flapjack]

Before I posted here, I already ran "hijack this" and tested my log on the same page you posted. About 10 different legit drivers came up as "potentially nasty", such as my Epson R200, Netgear GA311 GigE car, RAID drivers, etc.. Not to mention, a lot of legitimate programs as well.

Just looking at the reg files, it seems to be some sort of driver. What is the best way to backup then remove the service, to see if my computer shits the bed with it removed?

 

[Flapjack]

Also, I really do appreciate the help. I'm asking to see if anyone had not only heard of that service, but also hoping someone would be familiar enough with that registry info to be able to see if it was a legit driver or not.

Those "analyzers" can be helpful and all, but you can really F things up by blindly following them. For instance, I personally know this is my RAID driver, and it's legit. However: