Not strictly an SME problem, but I hope someone here knows something at least about the problem outlined below.
I run SME 6 with every update.
I've been getting an odd event at boot time on one of my Windows XP workstations, in which a command line window briefly opens and runs something called shellXP. Then at random, while surfing, a message box pops up on the screen telling me the path of the files representing the current page in my Temporary internet folder [IE6.1], and giving me an OK button to press.
When I investigate the task manager, there is a process running called shellxp.exe and if I terminate this process the pop-up messages cease.
I have completely up-to-date virus protection on all my workstations with EZAntivirus and it doesn't say anything about these events. None of the standard Adware/Malware products raise any objection either.
The only objects to be found on my workstation which are related to this event are a couple of files called shellxp.c, in the temporary internet store, in a sub-folder called after a Dutch website - something like internet-security.nl, but I delated the objects before I noted the name down.
The [rather tenuous] connection with SME is this...
I use a dial-up connection and the modem is shared with a hylafax installation on the SME server. At about the same time as the shellxp events began occurring, I ceased to be able to send or receive faxes, apparently because the modem was connected to my ISP all the time. At first I didn't connect the two things and I reset my connection times to short, which restored the fax system, but I now realise that something to do with this shellxp thing was keeping my internet connection alive, presumably phoning home?????
I clear my IE temp regularly so are these things in the Squid cache????
Anyone have any ideas or experience of such a thing?
I've also sent this message to bugs at mitel, although it seems highly unlikely that it's an SME problem.
Ed Form
3 Replies
526 Views