Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: [Infection] \Winbooterr\svchost.exe

16 Aug 2010   #1
CommandoBob

Windows 8 Professional x64
 
 
[Infection] \Winbooterr\svchost.exe

Hi everyone, i was noticing that my PC was slow, so i run an scan with Microsoft Security Essentials. It detected no threats. So i opened msconfig and go to the startup tab. And saw 2 entries for: %WINDIR%\system32\Winbooterr\svchost.exe

So i googled winbooterr and people said it was an virus.
Microsoft Security Essentials seem to didnt detect anything, while its up-to-date

I installed Malware Anti-Bytes after that, and ran an quick-scan. It detected 12 threats instead of 0 on Security Essentials.

All threats are removed, restarted my computer, ran msconfig utility, still 2 entries for Winbooterr!

I heard this virus can eat up your resources, so how can i remove this virus?

Thanks.


My System SpecsSystem Spec
.
16 Aug 2010   #2
Francis93

Windows 7 Ultimate x64
 
 

Quote   Quote: Originally Posted by CommandoBob View Post
Hi everyone, i was noticing that my PC was slow, so i run an scan with Microsoft Security Essentials. It detected no threats. So i opened msconfig and go to the startup tab. And saw 2 entries for: %WINDIR%\system32\Winbooterr\svchost.exe

So i googled winbooterr and people said it was an virus.
Microsoft Security Essentials seem to didnt detect anything, while its up-to-date

I installed Malware Anti-Bytes after that, and ran an quick-scan. It detected 12 threats instead of 0 on Security Essentials.

All threats are removed, restarted my computer, ran msconfig utility, still 2 entries for Winbooterr!

I heard this virus can eat up your resources, so how can i remove this virus?

Thanks.
Download and install Hitman Pro. It uses 5 Anti-Virus Engines (Emsisoft, Dr. Web, IKARUS, G DATA and PrevX).
My System SpecsSystem Spec
16 Aug 2010   #3
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

You have a "backdoor Trojan" ...
These Trojans are one of the worst infections there are, and they allow the hacker total access to the infected machine, so much access in fact, that they have as much control of the machine as if they were sitting in front of it.

What this Trojan does:

# Turns off anti-virus applications
# Allows others to access the computer
# Steals information
# Downloads code from the internet
# Reduces system security
# Records keystrokes

I've emphasized several issues that, depending on how
you use this system, may put a system owner at risk for identity theft.

The question to ask yourself is: What sort of personal identifying and/or
financial information is on this system?

Frankly, a system that has been compromised by this sort of infection cannot
be trusted, simply because the tools available to us cannot guarantee
it will have been totally cleaned. The only way to be sure is to completely
reformat and rebuild the system.
I'm sorry to be the 'bearer of bad news', but it is important that you be as
fully informed about the risks as possible.
My System SpecsSystem Spec
.

17 Aug 2010   #4
freaky88

MS Windows 7 Home Premium 64-bit
 
 

Quote   Quote: Originally Posted by frzwin7 View Post
Quote   Quote: Originally Posted by CommandoBob View Post
Hi everyone, i was noticing that my PC was slow, so i run an scan with Microsoft Security Essentials. It detected no threats. So i opened msconfig and go to the startup tab. And saw 2 entries for: %WINDIR%\system32\Winbooterr\svchost.exe

So i googled winbooterr and people said it was an virus.
Microsoft Security Essentials seem to didnt detect anything, while its up-to-date

I installed Malware Anti-Bytes after that, and ran an quick-scan. It detected 12 threats instead of 0 on Security Essentials.

All threats are removed, restarted my computer, ran msconfig utility, still 2 entries for Winbooterr!

I heard this virus can eat up your resources, so how can i remove this virus?

Thanks.
Download and install Hitman Pro. It uses 5 Anti-Virus Engines (Emsisoft, Dr. Web, IKARUS, G DATA and PrevX).
finally, someone who suggest hitman instead of mAlwarebytes, YES
My System SpecsSystem Spec
17 Aug 2010   #5
Nem

Win7 Home Premium x64 SP1, Archlinux x86_64. Elementary Luna
 
 

Not likely to pick up anything as the person that created the server(virus) with the name svchost most likely crypted it making it undetectable by everything..untill of course it gets noticed by some AV Campany. Sadly i know of a site that does these things.

Seeing how some of it was detected but not all of it.. he's better to do what Jacee suggested.
My System SpecsSystem Spec
Reply

 [Infection] \Winbooterr\svchost.exe




Thread Tools




Similar help and support threads
Thread Forum
inbox.com infection
One of my club members has a problem on his laptop. When he opens his browser (Chrome) it opens at the page inbox,dot,com. Typed it like that as typing the actual address creates a link which I didn't want to publish as I am not sure how this nastie is spread! So I just reset his homepage to Google...
System Security
Deep Infection?
I am just short of doing a clean install of the system. With the help of Layback Bear over in General discussions I have got my machine running better than it was, but there are still signs that things are not as they should be. I built this machine to be a screamer, but I am not a gamer so what...
System Security
Malware infection.
Hi, so this all started when I clicked on a Shipment Label.exe that arrived on my email, impersonating FedEx, a minute later, I get hit by a Malware denying me internet. So, I start by running Avira which didn't find anything. So, I go onto my laptop to see what I can do, after that, I restart my...
System Security
Help with Zbot infection.
I got infected with 2 Zbots. Malware Bytes removed them. Ran a scan with MBM again, still clean. Ran a scan with Eset, still clean Ran MSE clean. Ran scan with SAS, clean. Windows update still work. Reboot after all. Ran sfc 3 or 4 times with reboots after each. Unable to correct files.
System Security
Getting rid of the Sun infection
Anyone know the percentage of malware that uses java or flash to exploit the system? I decided to boycott it completely and my computers have had no crashes since, even running xp without an antivirus.
System Security
Possible infection?
For some reason when I go to ebay my cursor goes crazy. When I search begin to type anything in the search area it starts typing backwards. After I do this My cursor moves so fast, I can not select anything from drop down boxes etc because it continues to scroll. I think I have an infection. ...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 05:09.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App