Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

svchost in temp folder


  • This topic is locked This topic is locked
6 replies to this topic

#1 Mralexs

Mralexs

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:03 AM

Posted 02 September 2015 - 11:46 AM

So everytime I boot up my pc Panda antivirus quarantines a svchost.exe in the temp folder.

I've scanned with malwarebytes and it looks like my copy of Origin was infected, currently scanning with Panda and Eset online

Attached Files



BC AdBot (Login to Remove)

 


#2 Mralexs

Mralexs
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:03 AM

Posted 02 September 2015 - 03:49 PM

Both scans are still running, Panda detected Trj/CI.A and Eset detected Win64/Coinminer.j and Win32/Outbrowse



#3 Mralexs

Mralexs
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:03 AM

Posted 02 September 2015 - 06:46 PM

I'm going to be away from my main PC until 8:00/8:20, so I won't be able to post any logs form eset/panda



#4 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:03 AM

Posted 03 September 2015 - 05:09 AM

Hey,

can you please post all the logs directly into the thread rather than attaching them. :)


~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#5 Mralexs

Mralexs
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:03 AM

Posted 03 September 2015 - 01:39 PM

Hey,

can you please post all the logs directly into the thread rather than attaching them. :)

Sorry for the late reply, the Eset scan managed to remove it, and it said my logs were too big to post



#6 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:03 AM

Posted 05 September 2015 - 07:06 AM

Do you still need help? If you can not post the logs in one go, then split it up into more than one posts. Thank you. :)


~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#7 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:03 AM

Posted 09 September 2015 - 06:53 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users