Author |
Message |
|
Posted:
Wed May 09, 2007 7:23 pm
|
|
|
Forum H4xor
Joined: 18 Sep 2005
Posts: 1567
Location: Idaho
|
|
Well, I managed to get my laptop infected with a virus. It's still semi-functional, but it has that annoying virus that keeps on using up all the CPU on svchost.exe. Are there any apps that can easily be downloaded that you recommend for trying to cure this problem, or am I best off just reformatting? |
_________________
-[CfH]-Server Admin |
|
|
|
|
|
Posted:
Wed May 09, 2007 8:09 pm
|
|
|
Forum Scout
Joined: 30 Jun 2005
Posts: 86
Location: Texas
|
|
SpySweeper from www.webroot.com is a very good product. They used to have a free trail version. They still offer a "free scan" download, but they might have neutered it so that it only detects. Its unclear from their website. Still, it might be worthwhile. Its a free download of a very strong detection engine, and if you can ID the virus, you can probably google for a manual fix or a tool to fix it. |
_________________ To let understanding stop at what cannot be understood is a high attainment. Those who cannot do it will be destroyed on the lathe of heaven. (Chuang Tse)
-[CfH]-Server Admin |
|
|
|
|
|
Posted:
Wed May 09, 2007 8:24 pm
|
|
|
Forum H4xor
Joined: 08 Dec 2004
Posts: 2750
Location: Maryland
|
|
Uhoh, Svchost is a virus? I have that too... |
_________________ -[CfH]-Server Admin |
|
|
|
|
|
Posted:
Wed May 09, 2007 8:37 pm
|
|
|
Forum H4xor
Joined: 17 Jun 2005
Posts: 1234
Location: missouri
|
|
pretty sure that comes from pr0n gj guys |
_________________
-SoldierBoy- wrote: |
Since my invitation to CFH in late 2004, my goal has been to see Nirvana's penis. |
WTF
Nerve-ana wrote: |
oh when i woke up i realized i pissed myself lol was walking throught the town with a huge stain on my pants. |
|
|
|
|
|
|
Posted:
Wed May 09, 2007 8:38 pm
|
|
|
Forum HW
Joined: 19 Jul 2006
Posts: 838
Location: Sydney, Australia
|
|
|
|
|
|
|
Posted:
Wed May 09, 2007 9:09 pm
|
|
|
Forum H4xor
Joined: 08 Dec 2004
Posts: 2750
Location: Maryland
|
|
Quote: |
svchost.exe is a system process belonging to the Microsoft Windows Operating System which handles processes executed from DLLs. This program is important for the stable and secure running of your computer and should not be terminated. |
Quote: |
If unaccounted for, this process should be removed immediately.
|
Quote: |
his process is a security risk and should be removed from your system.
|
Quote: |
If you did not intentionally install this program make sure you remove it to protect your privacy.
|
So what...termante it?
Wow, over 250 infections found. |
_________________ -[CfH]-Server Admin |
|
|
|
|
|
Posted:
Wed May 09, 2007 9:26 pm
|
|
|
Forum H4xor
Joined: 26 Feb 2005
Posts: 1131
Location: East Coast - New Jersey
|
|
I use Ad-Aware, HiJack This and Spybot Search & Destroy. All are free and will usually take care of all probs....along with my Nortons A/V |
_________________
Dont mistake my kindness as a sign of weakness!!!!
Offense doesn't win matches.......big friggin' guns do !!! Ole' Painless FTW !!!
-[CfH]-Server Admin |
|
|
|
|
|
Posted:
Wed May 09, 2007 9:27 pm
|
|
|
Grand High Exalted Mystic Ruler
Joined: 23 Nov 2004
Posts: 6505
Location: New Jersey
|
|
Do not terminate it. I have 7 copies running on my main desktop; it's an integral part of the windows os. You very well may have a program hijacking through this functionality...but it's not that file in itself that's the problem...as you now know finding 250 infected files/registry entries. |
_________________
The only good game, is a fair game...
Why do we park on driveways and drive on parkways! George Carlin - 1937-2008
-[CfH]-Server Admin |
|
|
|
|
|
Posted:
Thu May 10, 2007 1:17 am
|
|
|
Forum Scout
Joined: 30 Jun 2005
Posts: 86
Location: Texas
|
|
svchost.exe runs Windows "services" and DLLs. It can be hi-jacked and killing it is not a real solution. Many of those "infections" might be as simple as cookies. Did you try the SpySweeper demo? I run the retail version, and it does a good job of sorting out the serious malware verses the other minor stuff. Not that my machine gets infected, but I have cleaned up systems for many family members and friends.
All of the freeware tools ToughSox mentioned are well known. They are usually run together since coverage is not as good as the retail products. But the price is right.
To answer your question: "Am I best off reformating?", the answer is YES. But that can cause more pain than folks suspect. Especially if you don't have clean backups to restore from.
You could also try Start/Accessories/System Tools/System Restore. It doesn't work as well as it used to since modern malware is very good at spreading and hiding. But it might be worth a try.
I don't think you would do any damage by killing the copy of svchost.exe process that is eating all the CPU as a short term work-around. It might help the machine run better while you back stuff up or continue trying to fix it.
Don't forget to backup your TFC configs and maps. |
_________________ To let understanding stop at what cannot be understood is a high attainment. Those who cannot do it will be destroyed on the lathe of heaven. (Chuang Tse)
-[CfH]-Server Admin |
|
|
|
|
|
Posted:
Thu May 10, 2007 5:57 pm
|
|
|
Forum H4xor
Joined: 18 Sep 2005
Posts: 1567
Location: Idaho
|
|
Bleh, my laptop crashed both times during the scan (through no fault of the program as far as I'm aware).
Since I have my main computer back up and running (installed new power supply woohoo), there's no data of any worth on my laptop, so I'm just going to reformat, and use that as an excuse to install Linux on it, heh.
Much thanks for the help anyways, peeps. |
_________________
-[CfH]-Server Admin |
|
|
|
|
|
Posted:
Fri May 11, 2007 10:24 pm
|
|
|
Forum H4xor
Joined: 25 Nov 2004
Posts: 1269
Location: sacramento ca
|
|
norton and spybot, tra.... nevermind, its not nice so so wont say it.
AVG or avast for antivirus.
Dr. Web's Cureit ( www.drwebfree.com ) for a one-hit-wonder av and malware removal, works when another AV prog cant be installed because an infection is preventing it. |
_________________ Albert Einstein once said “The only reason for time is so that everything doesn’t happen at once.”
-[CfH]-Server Admin
Hanlon's Razor. Never attribute to malice that which can be adequately explained by stupidity. |
|
|
|
|
|
Posted:
Wed May 16, 2007 7:06 pm
|
|
|
Forum H4xor
Joined: 09 Oct 2005
Posts: 1378
Location: California
|
|
sv_chost is a windows thing (Windows Generic Host Process, or some crap like that), and if there are many versions of it running, it's normal. hell, it takes 5 minutes for it to stop taking 99% of my CPU away form me.
If you want to know what sv_chost is doing, read this
http://www.computerhaven.info/svchost.htm
It'll give some info on what to do to check what it is actually managing. |
_________________
|
|
|
|
|
|
Posted:
Thu May 17, 2007 4:53 am
|
|
|
Forum Medic
Joined: 13 Jul 2005
Posts: 184
Location: Las Vegas, NV
|
|
I would try Trend Micro's HouseCall -
http://housecall.trendmicro.com/
I also use Avira AntiVir.. very low-profile virus scan, and it's free.. so even better. |
_________________
Howling Man is 1337 wrote: |
The sniper is what we like to call a 'gateway class'. It opens the door to more unsanitary, unsightly games like Counterstrike. Friends dont' let friends snipe.
Just say no. |
|
|
|
|
|
|
Posted:
Thu May 17, 2007 9:17 am
|
|
|
Forum H4xor
Joined: 05 Oct 2005
Posts: 1172
|
|
star do you even pay attention to ANY of the other posts before you post?
yeah i use spybot, adaware, and avg together as my spyware bundle, norton as my main antivirus. wouldnt mind adding another spy/adware program or two to the list if there are more good ones, the more the merrier |
_________________
0:00:35 IsLeS PiPeS-[AF] HW NO CONC AIM - said over enemy team_chat about Yur_Mom 35 seconds into the match
-[CfH]-Server Admin |
|
|
|
|
|
Posted:
Thu May 17, 2007 2:51 pm
|
|
|
Forum H4xor
Joined: 05 Dec 2004
Posts: 1848
Location: Boston
|
|
Yea I have basically the same as most. Ad-Aware, and Spy-Bot Search and Destroy, and I use Mcafee for my V-Protection. I had the free trial of AVG but I let it expire and really dont need it with the Mcafee bundle I use. Another good program to use that i have is called End It All. Basically it does what it says it ends any no vital program running on your computer which is good to free up some CPU and memory usage. |
_________________
Forever Standing United!!!!
-[CfH]-Server Admin |
|
|
|
|
|