Already did some scans with tdsskiller and hitmanpro and they detected Trojan-Spy.Win32.Zbot, Rootkit.Win32.PMax.gen, and rootkit boot.cidox.b, I'm not sure how this machine got so badly infected. The user may have opened a link or some file by accident.
The infected svchost.exe is causing the most problems, creating multiple various connections and slowing down the internet connection. Explorer.exe would also crash and would create connections as well. Internet explorer would pop up to back-linking websites.
No restore cd for this computer. Although I do have a copy of xp meant for dell machines and this is a dell.
Just need to know how i can stop the svchost.exe from creating connections.
dds1.txt 9.67KB 1 downloads
Edited by Outlaw Paxton, 16 April 2014 - 03:32 AM.