New Posts  All Forums:Forum Nav:

Malware?

post #1 of 23
Thread Starter 
So I was cleaning up a friends computer and noticed this:



I did a quick google search and could find absolutely no processes with the same name. Any help?

p.s. here is the rest:



    
CPUMotherboardGraphicsRAM
i7 920 D0 @ 4.0 1.2v Rampage II Extreme 7970 12gb 1600mhz @ 7-7-7-21 
Hard DriveOptical DriveCoolingOS
Corsair 128gb SSD 2xSeagate 7200.12 RAID 0 2x... BD-RW Prolimatech Megahalems Windows 7 Ultimate 
MonitorKeyboardPowerCase
1920x1080 48" Samsung TV ione Scorpius M10 Enermax Evo 1250w Custom 
Mouse
Logitech G9 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
i7 920 D0 @ 4.0 1.2v Rampage II Extreme 7970 12gb 1600mhz @ 7-7-7-21 
Hard DriveOptical DriveCoolingOS
Corsair 128gb SSD 2xSeagate 7200.12 RAID 0 2x... BD-RW Prolimatech Megahalems Windows 7 Ultimate 
MonitorKeyboardPowerCase
1920x1080 48" Samsung TV ione Scorpius M10 Enermax Evo 1250w Custom 
Mouse
Logitech G9 
  hide details  
Reply
post #2 of 23
http://www.malwarebytes.org/
The Big(C)ase 2.0
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X4 965 @ 4.0GHZ Asus Crosshair IV Formula ATI 5970 & Asus Matrix 5870 Crossfire! G SKILL Ripjaws 8GB @ 1600Mhz 
Hard DriveOptical DriveOSMonitor
300GB Velociraptor RAID 0(Storage)128G C300(Boot) ASUS Black 24X DVD+ 8X Windows 7 Home Premium 64-bit ASUS MS238H - 23-Inch Wide LED Monitor 
KeyboardPowerCaseMouse
Alienware TactX Corsair HX1000W Antec 1200 Razer Deathadder 3500DPI 
Mouse Pad
Razer Goliathus (Won at Blizzcon =O) 
  hide details  
Reply
The Big(C)ase 2.0
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X4 965 @ 4.0GHZ Asus Crosshair IV Formula ATI 5970 & Asus Matrix 5870 Crossfire! G SKILL Ripjaws 8GB @ 1600Mhz 
Hard DriveOptical DriveOSMonitor
300GB Velociraptor RAID 0(Storage)128G C300(Boot) ASUS Black 24X DVD+ 8X Windows 7 Home Premium 64-bit ASUS MS238H - 23-Inch Wide LED Monitor 
KeyboardPowerCaseMouse
Alienware TactX Corsair HX1000W Antec 1200 Razer Deathadder 3500DPI 
Mouse Pad
Razer Goliathus (Won at Blizzcon =O) 
  hide details  
Reply
post #3 of 23
Carries all the signs. Random characters name, unknown program, running form the temp directory.

What happens if you kill it?
post #4 of 23
Maybe a Trojan try Malewarebytes or spybot to clean it if avast is no use.
TJ Combo
(17 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 ABIT AB9 EVGA GTX570 Corsair DHX 
Hard DriveOptical DriveCoolingOS
Caviar Black lol, no Thermalright Archon Windows 10 
MonitorKeyboardPowerCase
Dell E228WFP Steelseries 6Gv2 Enermax Modu 87+ 750W Lian Li PC-A05FNB 
MouseMouse PadAudioAudio
Logitech MX Revolution QcK steel Auzen X-Fi Prelude Infrasonic Quartet 
Audio
DT 770 PRO 80 ohm 
  hide details  
Reply
TJ Combo
(17 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 ABIT AB9 EVGA GTX570 Corsair DHX 
Hard DriveOptical DriveCoolingOS
Caviar Black lol, no Thermalright Archon Windows 10 
MonitorKeyboardPowerCase
Dell E228WFP Steelseries 6Gv2 Enermax Modu 87+ 750W Lian Li PC-A05FNB 
MouseMouse PadAudioAudio
Logitech MX Revolution QcK steel Auzen X-Fi Prelude Infrasonic Quartet 
Audio
DT 770 PRO 80 ohm 
  hide details  
Reply
post #5 of 23
Thread Starter 
Quote:
Originally Posted by TheBigC View Post
nope

Quote:
Originally Posted by AdmiralThrawn View Post
Carries all the signs. Random characters name, unknown program, running form the temp directory.

What happens if you kill it?
Doesn't show up in task manager, so I just disabled it in msconfig and it doesn't seem to have a negative effect. I would like to get rid of it forever though, and nothing is detecting it at all.

Quote:
Originally Posted by Use View Post
Maybe a Trojan try Malewarebytes or spybot to clean it if avast is no use.
Used malwarebytes, avast, spybot, and a few others. Nothing picks it up.
    
CPUMotherboardGraphicsRAM
i7 920 D0 @ 4.0 1.2v Rampage II Extreme 7970 12gb 1600mhz @ 7-7-7-21 
Hard DriveOptical DriveCoolingOS
Corsair 128gb SSD 2xSeagate 7200.12 RAID 0 2x... BD-RW Prolimatech Megahalems Windows 7 Ultimate 
MonitorKeyboardPowerCase
1920x1080 48" Samsung TV ione Scorpius M10 Enermax Evo 1250w Custom 
Mouse
Logitech G9 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
i7 920 D0 @ 4.0 1.2v Rampage II Extreme 7970 12gb 1600mhz @ 7-7-7-21 
Hard DriveOptical DriveCoolingOS
Corsair 128gb SSD 2xSeagate 7200.12 RAID 0 2x... BD-RW Prolimatech Megahalems Windows 7 Ultimate 
MonitorKeyboardPowerCase
1920x1080 48" Samsung TV ione Scorpius M10 Enermax Evo 1250w Custom 
Mouse
Logitech G9 
  hide details  
Reply
post #6 of 23
If NOTHING picks it up, not even one, then I'm inclined to believe it's an exceedingly poorly-named service for something your friend has installed. (Still paranoid about it, though)

What else is in the temp directory it's located in? Is anything else in there picked up as malware?
post #7 of 23
I always get rid of things like this, uninstall if possible, familiar with jvPowertools, nice soft for cleaning junk. Also try stopping the service and see if it affects anything, if not why keep it
TJ Combo
(17 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 ABIT AB9 EVGA GTX570 Corsair DHX 
Hard DriveOptical DriveCoolingOS
Caviar Black lol, no Thermalright Archon Windows 10 
MonitorKeyboardPowerCase
Dell E228WFP Steelseries 6Gv2 Enermax Modu 87+ 750W Lian Li PC-A05FNB 
MouseMouse PadAudioAudio
Logitech MX Revolution QcK steel Auzen X-Fi Prelude Infrasonic Quartet 
Audio
DT 770 PRO 80 ohm 
  hide details  
Reply
TJ Combo
(17 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 ABIT AB9 EVGA GTX570 Corsair DHX 
Hard DriveOptical DriveCoolingOS
Caviar Black lol, no Thermalright Archon Windows 10 
MonitorKeyboardPowerCase
Dell E228WFP Steelseries 6Gv2 Enermax Modu 87+ 750W Lian Li PC-A05FNB 
MouseMouse PadAudioAudio
Logitech MX Revolution QcK steel Auzen X-Fi Prelude Infrasonic Quartet 
Audio
DT 770 PRO 80 ohm 
  hide details  
Reply
post #8 of 23
Try scanning while in "Safe Mode with Networking."

No legitimate service would just have random characters named executable running from the temp folder.
post #9 of 23
Do you know how long that's been there? Few days? Couple of weeks?
post #10 of 23
Thread Starter 
Quote:
Originally Posted by AdmiralThrawn View Post
If NOTHING picks it up, not even one, then I'm inclined to believe it's an exceedingly poorly-named service for something your friend has installed. (Still paranoid about it, though)

What else is in the temp directory it's located in? Is anything else in there picked up as malware?
I tried to go to that directory but it seems as if it doesn't exist

Quote:
Originally Posted by Use View Post
I always get rid of things like this, uninstall if possible, familiar with jvPowertools, nice soft for cleaning junk. Also try stopping the service and see if it affects anything, if not why keep it
Thanks I'll check it out!

p.s. no clue how long it's been on here, having a hard time locating the actual file sorry
    
CPUMotherboardGraphicsRAM
i7 920 D0 @ 4.0 1.2v Rampage II Extreme 7970 12gb 1600mhz @ 7-7-7-21 
Hard DriveOptical DriveCoolingOS
Corsair 128gb SSD 2xSeagate 7200.12 RAID 0 2x... BD-RW Prolimatech Megahalems Windows 7 Ultimate 
MonitorKeyboardPowerCase
1920x1080 48" Samsung TV ione Scorpius M10 Enermax Evo 1250w Custom 
Mouse
Logitech G9 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
i7 920 D0 @ 4.0 1.2v Rampage II Extreme 7970 12gb 1600mhz @ 7-7-7-21 
Hard DriveOptical DriveCoolingOS
Corsair 128gb SSD 2xSeagate 7200.12 RAID 0 2x... BD-RW Prolimatech Megahalems Windows 7 Ultimate 
MonitorKeyboardPowerCase
1920x1080 48" Samsung TV ione Scorpius M10 Enermax Evo 1250w Custom 
Mouse
Logitech G9 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security