Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: I have some Com Surrogates running and I have not seen them before.

14 Dec 2014   #1
McSeven

W7 Prof 64 bit
 
 
I have some Com Surrogates running and I have not seen them before.

Am I being hacked? There are six of them. Just started today. I have not noticed these before.


My System SpecsSystem Spec
.
14 Dec 2014   #2
DonnaB

Win7 64-bit, Vista 32-bit, XP 32-bit, W2K 32-bit (VM)
 
 

Hi McSeven,

Let's see what you have there. Please do the following....

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Copy FRST to the desktop of the infected system
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.
My System SpecsSystem Spec
15 Dec 2014   #3
McSeven

W7 Prof 64 bit
 
 

Yesterday I found a program called 'Combofix' that cleaned out the 'Com Surrogate' problem.
I believe I got the virus when downloading a mod to a game I play.

Late yesterday I notice a folder named 'Boot' on one of my non-c drives. In it where some lanugage font folders and the exe named 'memtest86.exe'. This made no sense to me and so I had deleted all the font folders, but the 'Boot' folder itself I cannot delete. Anyone have any ideas to get rid of it? Even reassigning the owner of the folder will not allow deletion of it.
My System SpecsSystem Spec
.

15 Dec 2014   #4
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

Generally, it is not recommended to run CombFix without professional guidance. I would stop until otherwise advised.

Follow the suggestions given you in post #2 - don't go off and do your own thing.
My System SpecsSystem Spec
15 Dec 2014   #5
McSeven

W7 Prof 64 bit
 
 

What is 'LanmanWorkstation'? Should that be running?
My System SpecsSystem Spec
15 Dec 2014   #6
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

See post #2
My System SpecsSystem Spec
15 Dec 2014   #7
DonnaB

Win7 64-bit, Vista 32-bit, XP 32-bit, W2K 32-bit (VM)
 
 

McSeven,

Please follow the instructions in my post above and please heed Golden's warning about trying to fix this yourself.

Jacee started a topic here concerning the use of ComboFix without the guidance of a trained professional. That program is not a baby aspirin and I seen the damage that can be done when it is used incorrectly.

If you continue to toss every tool in the shed at your computer, or delete folders that you have no idea if they are needed or not, the members here may not even want to help you further.
My System SpecsSystem Spec
17 Dec 2014   #8
McSeven

W7 Prof 64 bit
 
 

Thanks everyone, I am okay now.
My System SpecsSystem Spec
17 Dec 2014   #9
DonnaB

Win7 64-bit, Vista 32-bit, XP 32-bit, W2K 32-bit (VM)
 
 

I am glad to hear that you are ok, McSeven, but how about your computer? I am concerned. Tools like ComboFix do remove infections but malware drops files and changes system settings that needs to be tended to manually by a trained eye.

It was not my intention to be so harsh on you with my response above. I have seen the damage done when tools like ComboFix are used without the guidance of someone who understands how they work.

If you need further assistance, we are here for you.

Have a nice day!

Donna
My System SpecsSystem Spec
17 Dec 2014   #10
McSeven

W7 Prof 64 bit
 
 

Actually as of this morning I decided to purchase an SSD to use as the 'c' drive, so I will be reinstalling Windows 7.
I figured it was about time I upgraded something to help run Windows and my games faster.
I appreciate your replies very much.
Thanks!
My System SpecsSystem Spec
Reply

 I have some Com Surrogates running and I have not seen them before.




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Are there supposed to be 24 Dllhost.exe com surrogates
Hello My computer is running slow and i noticed in the task manager processes there were 24 of these dllhost.exe working and using up my cpu. A little help would be appreciated. Thanx Ray
General Discussion
!SASCore service running all the time, not running Superantispyware?
Found the the above service was running all the time and I only occasionally use SuperSpyware AntiSpyware as a standalone scan. This is solely as backup check to my Antimalwarebytes Pro. May I stop and disable it, and how would I remove it entirely? Thanks Glenn
General Discussion
Windows Update not running. Error Code 0xc8000247 when running SURT
Please help me out - I replaced my defective HDD with a new Samsung Spinpoint HDD, re-installed my Windows 7 image using the recovery DVDs, and can't update windows at all after that. I tried following the steps from Windows Update Posting Instructions - System Update Readiness Tool (SURT) and...
Windows Updates & Activation
Running dual Boot w/ Vista and Win 7, question on running programs
Greetings, New to the forum! I recently installed Win 7 on a second Hard drive. Is it possible to run the programs I had installed on the Vista Hard drive? Both are HD's are still installed. Thanks, Brad
General Discussion
BSOD running when running intel driver update utility and more apps
hello sorry if my post isnt great im a newbie here but for some time now ive been getting BSODs and finally figured out how to debug it with WinDbg (x86) and set the symbols for windows but i cant read the text. ive tried reinstalling my GPU and Java but no luck. when i try to run intel driver...
BSOD Help and Support
BSOD while running firefox. Computer has been running terrible.
I was not able to get perfmon /report to work, so I only have the BSOD report.
BSOD Help and Support


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 00:25.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App