Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Help please? May still have virus I dont know

03 Dec 2010   #1
Josh7

Windows 7 Home Premium x64
 
 
Help please? May still have virus I dont know

Like an Idiot I download a virus and I should have seen it coming. I quickly found it and ended it's process in the task manager. I download Superantispyware removal and it only found cookies. But then I went into my Mcafee qurranted files and found this (Picture below)

When the virus installed it popped up a fake anti-virus is the .EXE file showed below associated with fake ant-virus?

Also - I no csrss.exe is a critical file. But is it a virus? I tried deleting it says the same message as anything you try to delete but if it such a critical file why should I be aloud to?

My Mcafee didn't pick up anything else but these 3. Even running a scan right now. Nothing. Should I worry?

Thanks




Attached Images
Help please? May still have virus I dont know-untitled.jpg Help please? May still have virus I dont know-untitled2.jpg 
My System SpecsSystem Spec
.
03 Dec 2010   #2
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
 
 

I don't trust McAfee myself, I've had bad experiences with it.

D/L & installing MSE would be the easy path and let it remove it.

http://www.microsoft.com/security_essentials/

Information and removal instructions for syssvc:

How to remove SYSSVC.EXE|Virus Com

BTW, MSE will run and play well with McAfee if you decide to install it. Doesn't hurt to have an extra layer of protection.
My System SpecsSystem Spec
03 Dec 2010   #3
G1LLY

Windows 7 Ultimate x64 SP1
 
 

Have you tried running a scan with Malwarebytes' Anti-Malware?

Also maybe try Hitman Pro - Downloads - SurfRight

Another thing to try is go to a System Restore point before you got the virus
My System SpecsSystem Spec
.

03 Dec 2010   #4
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Establishing Whether Csrss.exe is a Windows Process Or a Virus

Syssvc.exe is a Trojan/Backdoor.
Backdoor Trojans provide the author or ‘master’ of the Trojan with remote ‘administration’ of victim machines. Unlike legitimate remote administration utilities, they install, launch and run invisibly, without the consent or knowledge of the user. Once installed, backdoor Trojans can be instructed to send, receive, execute and delete files, harvest confidential data from the computer, log activity on the computer and more.
If your computer was used for online banking or has credit card information on it, all passwords should be changed immediately to include those used for email, eBay and forums.
You should consider them to be compromised.
They should be changed by using a different computer and not the infected one, if not an attacker may get the new passwords and transaction information.
Banking and credit card institutions should be notified of the possible security breech.

More info can be found below:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
How to report ID theft, fraud, drive-by installs, hijacking and malware? Security | DSLReports.com, ISP Information
When should I re-format? How should I reinstall?
When should I re-format? How should I reinstall? Security | DSLReports.com, ISP Information
My System SpecsSystem Spec
03 Dec 2010   #5
Josh7

Windows 7 Home Premium x64
 
 

Quote   Quote: Originally Posted by Borg 386 View Post
I don't trust McAfee myself, I've had bad experiences with it.

D/L & installing MSE would be the easy path and let it remove it.

http://www.microsoft.com/security_essentials/

Information and removal instructions for syssvc:

How to remove SYSSVC.EXE|Virus Com

BTW, MSE will run and play well with McAfee if you decide to install it. Doesn't hurt to have an extra layer of protection.
May I ask why you don't trust Mcafee? And I don't like security essentials it's installed on my PC already and it's disabled can't remove it. And at the person who suggested system restore...this is a good idea I just fear it will make my system run slow...what do you think should I?
My System SpecsSystem Spec
03 Dec 2010   #6
Josh7

Windows 7 Home Premium x64
 
 

Quote   Quote: Originally Posted by G1LLY View Post
Have you tried running a scan with Malwarebytes' Anti-Malware?

Also maybe try Hitman Pro - Downloads - SurfRight

Another thing to try is go to a System Restore point before you got the virus

I tried MWB,

It found this exactly what I was looking for

This look like it be it though?


Attached Thumbnails
Help please? May still have virus I dont know-untitled.jpg  
My System SpecsSystem Spec
04 Dec 2010   #7
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Be sure that everything is checked, and click Remove Selected (MBam)
My System SpecsSystem Spec
04 Dec 2010   #8
parabellum

Windows 7 Ultimate x64
 
 

I'd also post a HiJackThis log for review, just to make sure everything is gone.
My System SpecsSystem Spec
04 Dec 2010   #9
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Unfortunately, HJT isn't going to show that backdoor trojan
My System SpecsSystem Spec
04 Dec 2010   #10
parabellum

Windows 7 Ultimate x64
 
 

Quote   Quote: Originally Posted by Jacee View Post
Unfortunately, HJT isn't going to show that backdoor trojan
But it may bring something else up, so it would be a good idea to run it anyway. To the OP, I also forget to mention ComboFix if something is still wrong. That should kill any remaining malware.
My System SpecsSystem Spec
Reply

 Help please? May still have virus I dont know




Thread Tools




Similar help and support threads
Thread Forum
Possible Memory Leak Virus - Anti-virus detects nothing?
Hello, I am needing some support on what is exactly taking up all the RAM on my brother's PC as after about 8 hours of uptime, 65% of my Physical Memory is being used up with nothing really open. I did some research and found out it was a possible memory leak or virus, so I first tried to run...
Performance & Maintenance
how to fix / clean windows from ramnit virus and virut virus?
my windows infected ramnit virus and virut virus,how to clean them?
System Security
I have a virus and unable to run/download anti-virus software
Hi, This is my first time posting to the forum. I am not that knowledgeable with computers, but can follow basic instructions. My laptop is acting funny--I think I have a virus. However, I am unable to run any anti-malware or anti-virus software. I try to run McAfee and I get an error...
System Security
Want ideas for Virus removal if virus shows up in safemode CMD
Hi, Looking for general ideas on how everyone else handles a strong virus. If the virus is showing up in Windows regular mode, it opens in safemode and opens in safmode with command prompt. Besides the usual such as boot to repair mode and use system restore, dock hard drive to another pc and...
System Security
Partition Virus/Non-system Drive Virus
I don't think much about virii because I image my system, and can always put it back to before the virus hit. Always worked perfectly. I use Win firewall and MSE. But I've heard there are virii that partition the HD or SSD. And virii that go to non-system drives. Anybody actually run across one...
System Security
Affected by virus, user accounts dont display
by mistake i double clicked a file in mail attached i am sureits some form of virus it affected my pc i removed it by antimalware,mse and kaspersky but still i cant see user accounts check attached pics,do help me i need to take files from desktop and downloads which is hided now else i will...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 20:06.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App