what is this file?

Has anyone ever heard of a file called mstime.exe? Whenever I search with Google my firewall tells me it is trying to access the internet. Considering that MS is waaaaaay behind Google I'm wondering if they are trying to somehow get more infomation on what's going on with Google users. Any ideas?

Have you tried to run a virus scan on that file?

Oh and run a spyware program. I recomend SpyBot Search & Distroy;)

yah... I dont think there is a file in windows called 'mstime.exe' so yah as 'SecureITGroup' said its probly not a good thing.... good luck

I ran Spybot and came up with 11 entries. I had them fixed but everytime I rebot they are back. Any ideas?

what are they?.. if you can get the names, try to find a patch for them on the microsft site, or your anti-virus zite...

Are you sure it was mstime.exe and not mstime.dll?

yep. This is the message I get

C:\WINNT\system32\mstime.exe is trying to connect to search.requestlookup.net (206.58.237.248) using remote port 80 (HTTP - World Wide Web). Do you want to allow this program to access the network?



Not good...

That sounds like ZoneAlarm; is that what firewall you're using? I googled mstime.exe and found nothing but this post. How weird.

My guess is whatever it is, it's not a good thing. If I was you, I would put a .remove at the end of the file name so it will look something like "mstime.exe.remove" and see what happens. This way you're not deleting it if you find out that you really do need it for something, but if you don't, it should stop it from doing whatever it's doing.

I didn't think of that. It might work, Windows is tricked into all sorts of things. SheDevil, are you following me?

Shhhhh, you weren't supposed to know

Here is what I have come up with so far-

It is somehow related to a searchengine called requestlookup.net. I'm thinking it is trying to send querries to their SE rather than the one I tried to use. I have renamed the file a few minutes ago and everthing seems to be working fine-without anything trying to acccess the net. So, it looks like your idea worked shedevil I'm going to let it sit the way it is for a few days and make sure everything run fine, then delete it.
From what I see this is a shady way for a SE to get traffic so we should all let everyone know what they are doing. Thanks for your help everyone!

Yay glad its working!

glad your problem is resolved, is the spyware still not getting erased?