Any way to find what process is spawning files?

[LiquidExploit]

Hey there, a long time ago I found this file on my system,
and at the time it only had 3 detections, I proceeded to submit it to more vendors, knowing it was malicious, you can see me in the comments
It now has way more detections and my AV is detecting it but It just keeps spawning over and over on my system, never-ending. The logs are crazy, "Blocked file, blocked file, blocked file"

I don't need a whole virus removal help thing. I just want to see if there is a program that can tell me what process is spawning in these files (They have different names but are exact copies of each other).
And if there isn't that's fine, I'll just dig deeper by myself. (I like doing things by myself).

 

[conceptualclarity]

I had a somewhat similar experience this year. I hope we'll get a good answer.

 

[Sunshine-boy]

I suggest you SysInspetor! it can detect wired stuff!

 

[shmu26]

Many security softwares keep logs of process executions, and if you check the logs, you just might find the answer to your question.
Spyshelter has very good logs. I also like the logs of NoVirusThanks Exe Radar Pro.
Also Voodooshield produces logs.
Use a good security soft that starts up very early, like Spyshelter or NVT ERP, get your hands on a free or trial version, and check the logs to see what happened immediately before your mystery process appeared.

Based on the VT results, I suspect that it is a crack that you ran, of course for "testing" purposes.

 

[LiquidExploit]

Many security softwares keep logs of process executions, and if you check the logs, you just might find the answer to your question.
Spyshelter has very good logs. I also like the logs of NoVirusThanks Exe Radar Pro.
Also Voodooshield produces logs.
Use a good security soft that starts up very early, like Spyshelter or NVT ERP, get your hands on a free or trial version, and check the logs to see what happened immediately before your mystery process appeared.

Based on the VT results, I suspect that it is a crack that you ran, of course for "testing" purposes.

Thanks, Also I don't run cracks, they are always filled with viruses.

I do run some shady antivirus testing programs though

I have voodooshield so I'll use that, I will have to turn off my AV so that voodooshield detects the threats, rather than my AV.

 

[Sunshine-boy]

always filled with viruses.

Well, that is not true! VirusTotal
There are also safe cracks!!!I'm sure this one is safer than many legitimate software that contains adware and Avs detect them as pup
There are a lot of examples out there

 

[LiquidExploit]

Well, I myself wouldn't want to risk it.

 

[shmu26]

Thanks, Also I don't run cracks, they are always filled with viruses.

I do run some shady antivirus testing programs though

I have voodooshield so I'll use that, I will have to turn off my AV so that voodooshield detects the threats, rather than my AV.

You are wise not to run cracks. Sorry I even mentioned it, it was just a guess.

The Voodooshield logs are not as detailed as the other programs I mentioned.