Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Help removing trojans please
New Posts  All Forums:Forum Nav:

Help removing trojans please - Page 2

post #11 of 54
Quote:
Originally Posted by Josh154 View Post
I have a legit copy of windows. The only thing i torrent is music since limewire got shut down.
Do you use Grooveshark? Works on android phones and you've basically got music for free on demand where ever you go. And if you want to go VIP and get the paid version it's only $3 a month....love it
    
CPUMotherboardGraphicsRAM
2600k 4.8 Ghz 1.45v ASRock Z68 PROFESSIONAL GEN3 Intel onboard Mushkin Blackline 10-11-10-28 2133 1.5v 
Hard DriveOptical DriveCoolingOS
Seagate Barracuda N/A Rasa RX360 kit Ubuntu 10.10 
MonitorKeyboardPowerCase
N/A N/A Raidmax 730 Watt IN WIN Dragon Rider 
MouseMouse PadAudio
N/A N/A N/A 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
2600k 4.8 Ghz 1.45v ASRock Z68 PROFESSIONAL GEN3 Intel onboard Mushkin Blackline 10-11-10-28 2133 1.5v 
Hard DriveOptical DriveCoolingOS
Seagate Barracuda N/A Rasa RX360 kit Ubuntu 10.10 
MonitorKeyboardPowerCase
N/A N/A Raidmax 730 Watt IN WIN Dragon Rider 
MouseMouse PadAudio
N/A N/A N/A 
  hide details  
Reply
post #12 of 54
I occasionally still have to handle some desktop support when I am onsite at clients for work and have had probably 100% success rate with the following:

Hitman Pro (allows a 30 days free license)
Immediately Followed by reboot...
Then...
Malwarebytes --> Update & Full Scan

Afterwards... CCleaner to clean up temp files and registry entries...

and finally... Install Microsoft Security Essentials.
    
CPUMotherboardGraphicsRAM
5960x @ 4.4ghz (1.19v) evga x99 micro2 (2) evga gtx 980 ti hybrid 32gb hyperx 2666mhz 
Hard DriveCoolingOSMonitor
samsung 950 pro 512gb NVMe M.2 ssd ek everything win 10 xl2430t / u2515h (x2) / u2913wm 
KeyboardPowerCaseMouse
cm novatouch w/ pbt caps. evga 1200 p2 lian li pc-9f nixeus revel 
Mouse PadAudioOther
steelseries qck heavy gustard U12/X12 -> H10/Lyr presonus 22vsl > mxl770 (mic) 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
5960x @ 4.4ghz (1.19v) evga x99 micro2 (2) evga gtx 980 ti hybrid 32gb hyperx 2666mhz 
Hard DriveCoolingOSMonitor
samsung 950 pro 512gb NVMe M.2 ssd ek everything win 10 xl2430t / u2515h (x2) / u2913wm 
KeyboardPowerCaseMouse
cm novatouch w/ pbt caps. evga 1200 p2 lian li pc-9f nixeus revel 
Mouse PadAudioOther
steelseries qck heavy gustard U12/X12 -> H10/Lyr presonus 22vsl > mxl770 (mic) 
  hide details  
Reply
post #13 of 54
Quote:
Originally Posted by tier View Post
I swear by combofix...

Well worth having around for malware/trojan issues.
^^ This.
Combo fix always gets what the other tools miss in my experience.
You can also grab Hiren's boot CD, launch miniXP and run SuperAnti-Spyware.
post #14 of 54
I find it funny that you havent realized what you posted in that picture, the things coming up as "trojans" such as svchost.exe and explorer.exe which are legitimate processes are being detected and the more you delete the worse your system has become am I right ? If so then dont be surprised if you see mspaint or notepad.exe come up on the scan.
The Hulk
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1055T Thuban 4.02ghz ASUS M4A89GTD PRO/USB3 AM3 AMD 890GX HDMI SATA 6Gb Evga SC gtx480 8gb Gskill (4gbx2) 
Hard DriveOSMonitorKeyboard
Seagate Barracuda 1.5TB 7200 rpm Win7 x64 Two Acer 24'' Monitors Black Widow 
PowerCaseMouse
COOLER MASTER Silent Pro 700 watt HAF 932 DeathAdder 
  hide details  
Reply
The Hulk
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1055T Thuban 4.02ghz ASUS M4A89GTD PRO/USB3 AM3 AMD 890GX HDMI SATA 6Gb Evga SC gtx480 8gb Gskill (4gbx2) 
Hard DriveOSMonitorKeyboard
Seagate Barracuda 1.5TB 7200 rpm Win7 x64 Two Acer 24'' Monitors Black Widow 
PowerCaseMouse
COOLER MASTER Silent Pro 700 watt HAF 932 DeathAdder 
  hide details  
Reply
post #15 of 54
Quote:
Originally Posted by brl3git View Post
I find it funny that you havent realized what you posted in that picture, the things coming up as "trojans" such as svchost.exe and explorer.exe which are legitimate processes are being detected and the more you delete the worse your system has become am I right ? If so then dont be surprised if you see mspaint or notepad.exe come up on the scan.
svchost.exe is just a process name for a dll running....that's likely the virus/trojan...but not always.
    
CPUMotherboardGraphicsRAM
2600k 4.8 Ghz 1.45v ASRock Z68 PROFESSIONAL GEN3 Intel onboard Mushkin Blackline 10-11-10-28 2133 1.5v 
Hard DriveOptical DriveCoolingOS
Seagate Barracuda N/A Rasa RX360 kit Ubuntu 10.10 
MonitorKeyboardPowerCase
N/A N/A Raidmax 730 Watt IN WIN Dragon Rider 
MouseMouse PadAudio
N/A N/A N/A 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
2600k 4.8 Ghz 1.45v ASRock Z68 PROFESSIONAL GEN3 Intel onboard Mushkin Blackline 10-11-10-28 2133 1.5v 
Hard DriveOptical DriveCoolingOS
Seagate Barracuda N/A Rasa RX360 kit Ubuntu 10.10 
MonitorKeyboardPowerCase
N/A N/A Raidmax 730 Watt IN WIN Dragon Rider 
MouseMouse PadAudio
N/A N/A N/A 
  hide details  
Reply
post #16 of 54
Quote:
Originally Posted by CarlosSpiceyWeiner View Post
svchost.exe is just a process name for a dll running....that's likely the virus/trojan...but not always.
So open task manager right now and tell me how many instances of svchost.exe you find running and let me know how many "trojans" you have according to your logic.
The Hulk
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1055T Thuban 4.02ghz ASUS M4A89GTD PRO/USB3 AM3 AMD 890GX HDMI SATA 6Gb Evga SC gtx480 8gb Gskill (4gbx2) 
Hard DriveOSMonitorKeyboard
Seagate Barracuda 1.5TB 7200 rpm Win7 x64 Two Acer 24'' Monitors Black Widow 
PowerCaseMouse
COOLER MASTER Silent Pro 700 watt HAF 932 DeathAdder 
  hide details  
Reply
The Hulk
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1055T Thuban 4.02ghz ASUS M4A89GTD PRO/USB3 AM3 AMD 890GX HDMI SATA 6Gb Evga SC gtx480 8gb Gskill (4gbx2) 
Hard DriveOSMonitorKeyboard
Seagate Barracuda 1.5TB 7200 rpm Win7 x64 Two Acer 24'' Monitors Black Widow 
PowerCaseMouse
COOLER MASTER Silent Pro 700 watt HAF 932 DeathAdder 
  hide details  
Reply
post #17 of 54
Quote:
Originally Posted by brl3git View Post
So open task manager right now and tell me how many instances of svchost.exe you find running and let me know how many "trojans" you have according to your logic.
I don't think you understand what I'm saying. If the trojan running is calling a DLL file it will be called svchost.exe. I DO NOT mean that every instance of svchost.exe is a Trojan LOLz

EDIT: Dub step is good stuff btw
    
CPUMotherboardGraphicsRAM
2600k 4.8 Ghz 1.45v ASRock Z68 PROFESSIONAL GEN3 Intel onboard Mushkin Blackline 10-11-10-28 2133 1.5v 
Hard DriveOptical DriveCoolingOS
Seagate Barracuda N/A Rasa RX360 kit Ubuntu 10.10 
MonitorKeyboardPowerCase
N/A N/A Raidmax 730 Watt IN WIN Dragon Rider 
MouseMouse PadAudio
N/A N/A N/A 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
2600k 4.8 Ghz 1.45v ASRock Z68 PROFESSIONAL GEN3 Intel onboard Mushkin Blackline 10-11-10-28 2133 1.5v 
Hard DriveOptical DriveCoolingOS
Seagate Barracuda N/A Rasa RX360 kit Ubuntu 10.10 
MonitorKeyboardPowerCase
N/A N/A Raidmax 730 Watt IN WIN Dragon Rider 
MouseMouse PadAudio
N/A N/A N/A 
  hide details  
Reply
post #18 of 54
why don't you try to restore your pc?
Ivy-E Defined
(17 items)
 
  
CPUMotherboardGraphicsRAM
4930K @ 4.5ghz w/ 1.336v RAMPAGE IV FORMULA GTX 980 Jetstream  G.Skill Ripjaws 16GB 1600mhz 
Hard DriveCoolingOSMonitor
120GB Samsung 840 EVO + 6TB (Storage) Corsair H80i w/ 2 x SP120 Windows 7 Ultimate 64-Bit Asus VG278HE  
KeyboardPowerCaseMouse
Ducky Shine 3 - Brown Cherry MX Switch - Green LED Corsair AX860  Fractal Design Define R4 Black Pearl w/ Window  Razer DeathAdder 2013 
Mouse PadAudioAudioAudio
Overclockers Medium Mouse Mat KRK ROKITS Fiio E10K  Audio Technica ATH-M50 
  hide details  
Reply
Ivy-E Defined
(17 items)
 
  
CPUMotherboardGraphicsRAM
4930K @ 4.5ghz w/ 1.336v RAMPAGE IV FORMULA GTX 980 Jetstream  G.Skill Ripjaws 16GB 1600mhz 
Hard DriveCoolingOSMonitor
120GB Samsung 840 EVO + 6TB (Storage) Corsair H80i w/ 2 x SP120 Windows 7 Ultimate 64-Bit Asus VG278HE  
KeyboardPowerCaseMouse
Ducky Shine 3 - Brown Cherry MX Switch - Green LED Corsair AX860  Fractal Design Define R4 Black Pearl w/ Window  Razer DeathAdder 2013 
Mouse PadAudioAudioAudio
Overclockers Medium Mouse Mat KRK ROKITS Fiio E10K  Audio Technica ATH-M50 
  hide details  
Reply
post #19 of 54
Quote:
Originally Posted by brl3git View Post
So open task manager right now and tell me how many instances of svchost.exe you find running and let me know how many "trojans" you have according to your logic.
He wasn't implying that svchost.exe is always a trojan. I believe we all know better. AVG would not have flagged those standard Windows processes had they not been infected. The reason it did flag them is because it couldn't access them and seeing that the AV suite has root access to everything on the machine that's cause for a red flag.
post #20 of 54
Quote:
Originally Posted by CarlosSpiceyWeiner View Post
I don't think you understand what I'm saying. If the trojan running is calling a DLL file it will be called svchost.exe. I DO NOT mean that every instance of svchost.exe is a Trojan LOLz

EDIT: Dub step is good stuff btw
The thing is if it were running under the name svchost.exe it would be ran under the user name and not system or network that would be the sure fire way to tell if it were infact a trojan if you have more than one instance of explorer.exe running under the user name and after you end both processes and they both come back after restarting explorer.exe than it is also a trojan.
The Hulk
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1055T Thuban 4.02ghz ASUS M4A89GTD PRO/USB3 AM3 AMD 890GX HDMI SATA 6Gb Evga SC gtx480 8gb Gskill (4gbx2) 
Hard DriveOSMonitorKeyboard
Seagate Barracuda 1.5TB 7200 rpm Win7 x64 Two Acer 24'' Monitors Black Widow 
PowerCaseMouse
COOLER MASTER Silent Pro 700 watt HAF 932 DeathAdder 
  hide details  
Reply
The Hulk
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1055T Thuban 4.02ghz ASUS M4A89GTD PRO/USB3 AM3 AMD 890GX HDMI SATA 6Gb Evga SC gtx480 8gb Gskill (4gbx2) 
Hard DriveOSMonitorKeyboard
Seagate Barracuda 1.5TB 7200 rpm Win7 x64 Two Acer 24'' Monitors Black Widow 
PowerCaseMouse
COOLER MASTER Silent Pro 700 watt HAF 932 DeathAdder 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Windows
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Help removing trojans please