Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Two suspicious processes

04 Apr 2011   #11
silenzer

Win7 Ultimate
 
 
Replacing read only files?

Hi,

I'm trying to get rid of a virus by replacing it by another exe with the same filename (svchost.exe) but the virus is read only so I can't replace it. Any way to make the virus non-read only?


My System SpecsSystem Spec
.
04 Apr 2011   #12
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

Hi,

Why don't you use something like Malwarebytes to get rid of the virus? Renaming it doesn't neccessarily prevent it from doing what is was designed to do, depending on what type of virus it is.

I suggest doing a scan with the above recommendation, opting to remove the virus, and then post the log here to see what you are dealing with. Some viruses require a "second course of medication" to completely kill them off, but we need to know exactly what you are delaing with.

Can you also list your existing anti-virus software that is installed on your system?

Regards,
Golden
My System SpecsSystem Spec
05 Apr 2011   #13
silenzer

Win7 Ultimate
 
 

Thanks for the reply but I have already scanned the computer according to instructions from sevenforums and posted the log in another thread: Two suspicious processes

However I'm still in the dark
My System SpecsSystem Spec
.

05 Apr 2011   #14
Carolyn

Windows 7 Ultimate 64 bit
 
 

You really should follows Corrine's advice to format your hard drive and reinstall Windows. She replied to your other topic 2 weeks ago. Corrine's post was HERE.
My System SpecsSystem Spec
05 Apr 2011   #15
Capt.Jack Sparrow

Windows 7 Ultimate - 64-bit | Windows 8 Pro - 64-bit
 
 

Quote   Quote: Originally Posted by silenzer View Post
Thanks for the reply but I have already scanned the computer according to instructions from sevenforums and posted the log in another thread: Two suspicious processes

However I'm still in the dark
Hi there,

I would not recommend to follow advices from another thread when it comes to Malware removal. I would suggest you to run HijackThis HijackThis - Trend Micro USA and post the logs. I'll ask one of the security experts to look at it
My System SpecsSystem Spec
05 Apr 2011   #16
Carolyn

Windows 7 Ultimate 64 bit
 
 

Quote   Quote: Originally Posted by Capt.Jack Sparrow View Post
Quote   Quote: Originally Posted by silenzer View Post
Thanks for the reply but I have already scanned the computer according to instructions from sevenforums and posted the log in another thread: Two suspicious processes

However I'm still in the dark
Hi there,

I would not recommend to follow advices from another thread when it comes to Malware removal. I would suggest you to run HijackThis HijackThis - Trend Micro USA and post the logs. I'll ask one of the security experts to look at it
I agree, never use a fix that was proposed for another computer. However, in this case, this was his thread and Corrine identified that the computer was compromised by a Backdoor.

HijackThis is not designed for 64bit systems so the resulting log will not be of any use.

Please scan with DDS instead:
Please download DDS by sUBs from one of the links below, save it to your Desktop (It must be in this location).
Link1
Link2
Please disable any anti-malware program that will block scripts from running before running DDS.

  • Right-Click on dds.scr And select " Run as administrator "... and a command window will appear. This is normal.
  • Shortly after two logs will appear:
    • DDS.txt
    • Attach.txt
  • A window will open instructing you save & post the logs
  • Save the logs to a convenient place such as your desktop
  • Copy the contents of both logs & post in your next reply
My System SpecsSystem Spec
05 Apr 2011   #17
Corrine

Windows 7 & Windows Vista Ultimate
 
 

Hi, Carolyn! Its good to see you! (At All: Carolyn is trained in malware removal and very knowledgeable.)

It is rather strange to abandon a thread for two weeks and then start a new topic. I see if the Moderators want the topics merged.
My System SpecsSystem Spec
05 Apr 2011   #18
Carolyn

Windows 7 Ultimate 64 bit
 
 

It's good to see you too Corrine and thank you for those kind words!
My System SpecsSystem Spec
Reply

 Two suspicious processes




Thread Tools




Similar help and support threads
Thread Forum
Suspicious E-Mail
I got a very suspicious e-mail. It's in my spam, fortunately but I was wondering if anyone knows anything about this phishing attempt?
Chillout Room
Suspicious file
OK. I need help. There is an unknown file on the desktop which wont go. If I delete, it comes back if I refresh the desktop. When I right click on this file, there are only 3 options: Cut, Create Shortcut and Delete. I have scanned my computer with Hitman Pro, MBAM, Windows Defender and...
System Security
Should I get suspicious?
:sarc: I'm getting this every once in a while in Resource Monitor - Network . It happens a little while after I open an IE window. Open the image and you'll understand what I mean. Is this normal???
General Discussion


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 05:12.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App